closed-social
/
mastodon
3
0
Fork 2
Code Issues 5 Pull Requests 0 Projects 0 Releases 3 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7512 Commits
4 Branches
567 MiB
Tree: 7e2b6da57f
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '7e2b6da57f'
${ noResults }
mastodon/app/lib/spam_check.rb

173 lines
4.5 KiB
Raw Normal View History

Add a spam check (#11217) * Add a spam check * Use Nilsimsa to generate locality-sensitive hashes and compare using Levenshtein distance * Add more tests * Add exemption when the message is a reply to something that mentions the sender * Use Nilsimsa Compare Value instead of Levenshtein distance * Use MD5 for messages shorter than 10 characters * Add message to automated report, do not add non-public statuses to automated report, add trust level to accounts and make unsilencing raise the trust level to prevent repeated spam checks on that account * Expire spam check data after 3 months * Add support for local statuses, reduce expiration to 1 week, always create a report * Add content warnings to the spam check and exempt empty statuses * Change Nilsimsa threshold to 95 and make sure removed statuses are removed from the spam check * Add all matched statuses into automatic report
4 years ago
Add setting to disable the anti-spam (#11296) * Add environment variable to disable the anti-spam * Move antispam setting to admin settings * Fix typo * antispam → spam_check
4 years ago
Add a spam check (#11217) * Add a spam check * Use Nilsimsa to generate locality-sensitive hashes and compare using Levenshtein distance * Add more tests * Add exemption when the message is a reply to something that mentions the sender * Use Nilsimsa Compare Value instead of Levenshtein distance * Use MD5 for messages shorter than 10 characters * Add message to automated report, do not add non-public statuses to automated report, add trust level to accounts and make unsilencing raise the trust level to prevent repeated spam checks on that account * Expire spam check data after 3 months * Add support for local statuses, reduce expiration to 1 week, always create a report * Add content warnings to the spam check and exempt empty statuses * Change Nilsimsa threshold to 95 and make sure removed statuses are removed from the spam check * Add all matched statuses into automatic report
4 years ago
Add setting to disable the anti-spam (#11296) * Add environment variable to disable the anti-spam * Move antispam setting to admin settings * Fix typo * antispam → spam_check
4 years ago
Add a spam check (#11217) * Add a spam check * Use Nilsimsa to generate locality-sensitive hashes and compare using Levenshtein distance * Add more tests * Add exemption when the message is a reply to something that mentions the sender * Use Nilsimsa Compare Value instead of Levenshtein distance * Use MD5 for messages shorter than 10 characters * Add message to automated report, do not add non-public statuses to automated report, add trust level to accounts and make unsilencing raise the trust level to prevent repeated spam checks on that account * Expire spam check data after 3 months * Add support for local statuses, reduce expiration to 1 week, always create a report * Add content warnings to the spam check and exempt empty statuses * Change Nilsimsa threshold to 95 and make sure removed statuses are removed from the spam check * Add all matched statuses into automatic report
4 years ago
 
  1. # frozen_string_literal: true
  2. 

  3. class SpamCheck
  4.   include Redisable
  5.   include ActionView::Helpers::TextHelper
  6. 

  7.   NILSIMSA_COMPARE_THRESHOLD = 95

  8.   NILSIMSA_MIN_SIZE          = 10

  9.   EXPIRE_SET_AFTER           = 1.week.seconds
  10. 

  11.   def initialize(status)
  12.     @account = status.account
  13.     @status  = status
  14.   end
  15. 

  16.   def skip?
  17.     disabled? || already_flagged? || trusted? || no_unsolicited_mentions? || solicited_reply?
  18.   end
  19. 

  20.   def spam?
  21.     if insufficient_data?
  22.       false
  23.     elsif nilsimsa?
  24.       any_other_digest?('nilsimsa') { |_, other_digest| nilsimsa_compare_value(digest, other_digest) >= NILSIMSA_COMPARE_THRESHOLD }
  25.     else
  26.       any_other_digest?('md5') { |_, other_digest| other_digest == digest }
  27.     end
  28.   end
  29. 

  30.   def flag!
  31.     auto_silence_account!
  32.     auto_report_status!
  33.   end
  34. 

  35.   def remember!
  36.     # The scores in sorted sets don't actually have enough bits to hold an exact
  37.     # value of our snowflake IDs, so we use it only for its ordering property. To
  38.     # get the correct status ID back, we have to save it in the string value
  39. 

  40.     redis.zadd(redis_key, @status.id, digest_with_algorithm)
  41.     redis.zremrangebyrank(redis_key, '0', '-10')
  42.     redis.expire(redis_key, EXPIRE_SET_AFTER)
  43.   end
  44. 

  45.   def reset!
  46.     redis.del(redis_key)
  47.   end
  48. 

  49.   def hashable_text
  50.     return @hashable_text if defined?(@hashable_text)
  51. 

  52.     @hashable_text = @status.text
  53.     @hashable_text = remove_mentions(@hashable_text)
  54.     @hashable_text = strip_tags(@hashable_text) unless @status.local?
  55.     @hashable_text = normalize_unicode(@status.spoiler_text + ' ' + @hashable_text)
  56.     @hashable_text = remove_whitespace(@hashable_text)
  57.   end
  58. 

  59.   def insufficient_data?
  60.     hashable_text.blank?
  61.   end
  62. 

  63.   def digest
  64.     @digest ||= begin
  65.       if nilsimsa?
  66.         Nilsimsa.new(hashable_text).hexdigest
  67.       else
  68.         Digest::MD5.hexdigest(hashable_text)
  69.       end
  70.     end
  71.   end
  72. 

  73.   def digest_with_algorithm
  74.     if nilsimsa?
  75.       ['nilsimsa', digest, @status.id].join(':')
  76.     else
  77.       ['md5', digest, @status.id].join(':')
  78.     end
  79.   end
  80. 

  81.   private
  82. 

  83.   def disabled?
  84.     !Setting.spam_check_enabled
  85.   end
  86. 

  87.   def remove_mentions(text)
  88.     return text.gsub(Account::MENTION_RE, '') if @status.local?
  89. 

  90.     Nokogiri::HTML.fragment(text).tap do |html|
  91.       mentions = @status.mentions.map { |mention| ActivityPub::TagManager.instance.url_for(mention.account) }
  92. 

  93.       html.traverse do |element|
  94.         element.unlink if element.name == 'a' && mentions.include?(element['href'])
  95.       end
  96.     end.to_s
  97.   end
  98. 

  99.   def normalize_unicode(text)
  100.     text.unicode_normalize(:nfkc).downcase
  101.   end
  102. 

  103.   def remove_whitespace(text)
  104.     text.gsub(/\s+/, ' ').strip
  105.   end
  106. 

  107.   def auto_silence_account!
  108.     @account.silence!
  109.   end
  110. 

  111.   def auto_report_status!
  112.     status_ids = Status.where(visibility: %i(public unlisted)).where(id: matching_status_ids).pluck(:id) + [@status.id] if @status.distributable?
  113.     ReportService.new.call(Account.representative, @account, status_ids: status_ids, comment: I18n.t('spam_check.spam_detected_and_silenced'))
  114.   end
  115. 

  116.   def already_flagged?
  117.     @account.silenced?
  118.   end
  119. 

  120.   def trusted?
  121.     @account.trust_level > Account::TRUST_LEVELS[:untrusted]
  122.   end
  123. 

  124.   def no_unsolicited_mentions?
  125.     @status.mentions.all? { |mention| mention.silent? || (!@account.local? && !mention.account.local?) || mention.account.following?(@account) }
  126.   end
  127. 

  128.   def solicited_reply?
  129.     !@status.thread.nil? && @status.thread.mentions.where(account: @account).exists?
  130.   end
  131. 

  132.   def nilsimsa_compare_value(first, second)
  133.     first  = [first].pack('H*')
  134.     second = [second].pack('H*')
  135.     bits   = 0

  136. 

  137.     0.upto(31) do |i|
  138.       bits += Nilsimsa::POPC[255 & (first[i].ord ^ second[i].ord)].ord
  139.     end
  140. 

  141.     128 - bits # -128 <= Nilsimsa Compare Value <= 128
  142.   end
  143. 

  144.   def nilsimsa?
  145.     hashable_text.size > NILSIMSA_MIN_SIZE
  146.   end
  147. 

  148.   def other_digests
  149.     redis.zrange(redis_key, 0, -1)
  150.   end
  151. 

  152.   def any_other_digest?(filter_algorithm)
  153.     other_digests.any? do |record|
  154.       algorithm, other_digest, status_id = record.split(':')
  155. 

  156.       next unless algorithm == filter_algorithm
  157. 

  158.       yield algorithm, other_digest, status_id
  159.     end
  160.   end
  161. 

  162.   def matching_status_ids
  163.     if nilsimsa?
  164.       other_digests.select { |record| record.start_with?('nilsimsa') && nilsimsa_compare_value(digest, record.split(':')[1]) >= NILSIMSA_COMPARE_THRESHOLD }.map { |record| record.split(':')[2] }.compact
  165.     else
  166.       other_digests.select { |record| record.start_with?('md5') && record.split(':')[1] == digest }.map { |record| record.split(':')[2] }.compact
  167.     end
  168.   end
  169. 

  170.   def redis_key
  171.     @redis_key ||= "spam_check:#{@account.id}"
  172.   end
  173. end