UNPKG

@internxt/scan

Version:

Use Node JS to scan files on your server with ClamAV's clamscan/clamdscan binary or via TCP to a remote server or local UNIX Domain socket. This is especially useful for scanning uploaded files provided by un-trusted sources.

1,185 lines (1,049 loc) • 78.2 kB

JavaScript

/* eslint-disable no-unused-vars */ /* eslint-disable no-useless-catch */ /* eslint-env mocha */ const fs = require('fs'); const path = require('path'); const { Agent } = require('https'); const axios = require('axios'); const chai = require('chai'); const { promisify } = require('util'); const { PassThrough, Readable } = require('stream'); const chaiAsPromised = require('chai-as-promised'); const eicarGen = require('./eicargen'); const should = chai.should(); const { expect } = chai; const config = require('./test_config'); const goodScanDir = `${__dirname}/good_scan_dir`; const emptyFile = `${goodScanDir}/empty_file.txt`; const goodScanFile = `${goodScanDir}/good_file_1.txt`; const goodScanFile2 = `${goodScanDir}/good_file_2.txt`; const goodFileList = `${__dirname}/good_files_list.txt`; const badScanDir = `${__dirname}/bad_scan_dir`; const badScanFile = `${badScanDir}/bad_file_1.txt`; const spacedVirusFile = `${badScanDir}/bad file 1.txt`; const badFileList = `${__dirname}/bad_files_list.txt`; const mixedScanDir = `${__dirname}/mixed_scan_dir`; const passthruFile = `${__dirname}/output`; const noVirusUrl = 'https://raw.githubusercontent.com/kylefarris/clamscan/master/README.md'; const fakeVirusFalseNegatives = [ 'eicar: OK.exe', 'OK.exe', 'OK eicar.exe', ': OK.exe', 'eicar.OK', ' OK.exe', 'ok.exe', 'OK', ].map((v) => `${badScanDir}/${v}`); const eicarSignatureRgx = /eicar/i; const fsState = promisify(fs.stat); const fsReadfile = promisify(fs.readFile); const fsCopyfile = promisify(fs.copyFile); chai.use(chaiAsPromised); const NodeClam = require('../index'); const check = (done, f) => { try { f(); done(); } catch (e) { done(e); } }; // Fix goodFiles list to have full paths const goodFileListContents = fs.readFileSync(goodFileList).toString(); const modifiedGoodFileList = `${__dirname}/good_files_list_tmp.txt`; fs.writeFileSync( modifiedGoodFileList, goodFileListContents .split('\n') .map((v) => v.replace(/^\./, __dirname)) .join('\n'), 'utf8' ); // Help to find unhandled promise rejections process.on('unhandledRejection', (reason, p) => { if (reason && typeof reason === 'object' && 'actual' in reason) { console.log('Reason: ', reason.message, reason.actual); } if (reason === null) { console.log("No reason... here's the promise: ", p); } console.log('Unhandled Rejection reason:', reason); }); const resetClam = async (overrides = {}) => { overrides = overrides || {}; const clamdscan = { ...config.clamdscan, ...('clamdscan' in overrides ? overrides.clamdscan : {}) }; const clamscan = { ...config.clamscan, ...('clamscan' in overrides ? overrides.clamscan : {}) }; delete overrides.clamdscan; delete overrides.clamscan; const newConfig = { ...config, ...overrides, clamdscan, clamscan }; return new NodeClam().init(newConfig); }; describe('NodeClam Module', () => { it('should return an object', () => { NodeClam.should.be.a('function'); }); it('should not be initialized immediately', () => { const clamscan = new NodeClam(); should.exist(clamscan.initialized); expect(clamscan.initialized).to.eql(false); }); }); describe('Initialized NodeClam module', () => { it('should have certain config properties defined', async () => { const clamscan = await resetClam(); expect(clamscan.defaults.removeInfected, 'removeInfected').to.not.be.undefined; expect(clamscan.defaults.quarantineInfected, 'quarantineInfected').to.not.be.undefined; expect(clamscan.defaults.scanLog, 'scanLog').to.not.be.undefined; expect(clamscan.defaults.debugMode, 'debugMode').to.not.be.undefined; expect(clamscan.defaults.fileList, 'fileList').to.not.be.undefined; expect(clamscan.defaults.scanRecursively, 'scanRecursively').to.not.be.undefined; expect(clamscan.defaults.clamscan, 'clamscan').to.not.be.undefined; expect(clamscan.defaults.clamdscan, 'clamdscan').to.not.be.undefined; expect(clamscan.defaults.preference, 'preference').to.not.be.undefined; }); it('should have the proper global default values set', async () => { const clamscan = await resetClam(); expect(clamscan.defaults.removeInfected).to.eql(false); expect(clamscan.defaults.quarantineInfected).to.eql(false); expect(clamscan.defaults.scanLog).to.eql(null); expect(clamscan.defaults.debugMode).to.eql(false); expect(clamscan.defaults.fileList).to.eql(null); expect(clamscan.defaults.scanRecursively).to.eql(true); expect(clamscan.defaults.preference).to.eql('clamdscan'); }); it('should have the proper clamscan default values set', async () => { const clamscan = await resetClam(); expect(clamscan.defaults.clamscan.path).to.eql('/usr/bin/clamscan'); expect(clamscan.defaults.clamscan.db).to.eql(null); expect(clamscan.defaults.clamscan.scanArchives).to.be.eql(true); expect(clamscan.defaults.clamscan.active).to.eql(true); }); it('should have the proper clamdscan default values set', async () => { const clamscan = await resetClam(); expect(clamscan.defaults.clamdscan.socket).to.eql(false); expect(clamscan.defaults.clamdscan.host).to.eql(false); expect(clamscan.defaults.clamdscan.port).to.eql(false); expect(clamscan.defaults.clamdscan.localFallback).to.eql(true); expect(clamscan.defaults.clamdscan.path).to.eql('/usr/bin/clamdscan'); expect(clamscan.defaults.clamdscan.configFile).to.eql(null); expect(clamscan.defaults.clamdscan.multiscan).to.be.eql(true); expect(clamscan.defaults.clamdscan.reloadDb).to.eql(false); expect(clamscan.defaults.clamdscan.active).to.eql(true); }); it('should accept an options array and merge them with the object defaults', async () => { const clamscan = await resetClam({ removeInfected: true, quarantineInfected: config.quarantineInfected, scanLog: config.scanLog, debugMode: false, fileList: `${__dirname}/files_list.txt`, scanRecursively: true, clamscan: { path: config.clamscan.path, db: '/usr/bin/better_clam_db', scanArchives: false, active: false, }, clamdscan: { socket: config.clamdscan.socket, host: config.clamdscan.host, port: config.clamdscan.port, path: config.clamdscan.path, localFallback: false, configFile: config.clamdscan.configFile, multiscan: false, reloadDb: true, active: false, timeout: 300000, bypassTest: true, }, preference: 'clamscan', }); // General expect(clamscan.settings.removeInfected).to.eql(true); expect(clamscan.settings.quarantineInfected).to.eql(config.quarantineInfected); expect(clamscan.settings.scanLog).to.be.eql(config.scanLog); expect(clamscan.settings.debugMode).to.eql(false); expect(clamscan.settings.fileList).to.eql(`${__dirname}/files_list.txt`); expect(clamscan.settings.scanRecursively).to.eql(true); expect(clamscan.settings.preference).to.eql('clamscan'); // clamscan expect(clamscan.settings.clamscan.path).to.eql(config.clamscan.path); expect(clamscan.settings.clamscan.db).to.eql('/usr/bin/better_clam_db'); expect(clamscan.settings.clamscan.scanArchives).to.be.eql(false); expect(clamscan.settings.clamscan.active).to.eql(false); // clamdscan expect(clamscan.settings.clamdscan.socket).to.eql(config.clamdscan.socket); expect(clamscan.settings.clamdscan.host).to.eql(config.clamdscan.host); expect(clamscan.settings.clamdscan.port).to.eql(config.clamdscan.port); expect(clamscan.settings.clamdscan.path).to.eql(config.clamdscan.path); expect(clamscan.settings.clamdscan.localFallback).to.eql(false); expect(clamscan.settings.clamdscan.configFile).to.eql(config.clamdscan.configFile); expect(clamscan.settings.clamdscan.multiscan).to.be.eql(false); expect(clamscan.settings.clamdscan.reloadDb).to.eql(true); expect(clamscan.settings.clamdscan.active).to.eql(false); expect(clamscan.settings.clamdscan.timeout).to.eql(300000); expect(clamscan.settings.clamdscan.bypassTest).to.eql(true); }); it('should failover to alternate scanner if preferred scanner is inactive', async () => { const clamscan = await resetClam({ clamdscan: { active: false } }); expect(clamscan.scanner).to.eql('clamscan'); }); it('should fail if an invalid scanner preference is supplied when socket or port or host is not specified and localFallback is not false', () => { expect(resetClam({ preference: 'clamscan' }), 'valid scanner').to.not.be.rejectedWith(Error); expect(resetClam({ preference: 'badscanner' }), 'invalid scanner').to.not.be.rejectedWith(Error); expect( resetClam({ clamdscan: { localFallback: true, socket: false, port: false, host: false }, preference: 'badscanner', }), 'invalid scanner - no socket or host for local fallback' ).to.be.rejectedWith(Error); }); it('should fail to load if no active & valid scanner is found and socket is not available', () => { const clamdScanOptions = { ...config.clamdscan, path: `${__dirname}/should/not/exist`, active: true, localFallback: true, socket: false, port: false, host: false, }; const clamscanOptions = { ...config.clamscan, path: `${__dirname}/should/not/exist`, active: true }; const options = { ...config, clamdscan: clamdScanOptions, clamscan: clamscanOptions }; expect(resetClam(options), 'no active and valid scanner').to.be.rejectedWith(Error); }); it('should fail to load if quarantine path (if specified) does not exist or is not writable and socket is not available', () => { const clamdScanOptions = { ...config.clamdscan, active: true, localFallback: true, socket: false, port: false, host: false, }; const clamscanOptions = { ...config.clamscan, active: true }; const options = { ...config, clamdscan: clamdScanOptions, clamscan: clamscanOptions, funky: true }; options.quarantineInfected = `${__dirname}/should/not/exist`; expect(resetClam(options), 'bad quarantine path').to.be.rejectedWith(Error); options.quarantineInfected = `${__dirname}/infected`; expect(resetClam(options), 'good quarantine path').to.not.be.rejectedWith(Error); }); it('should set definition database (clamscan) to null if specified db is not found', async () => { const clamdScanOptions = { ...config.clamdscan, socket: false, port: false, host: false }; const clamscanOptions = { ...config.clamscan, db: '/usr/bin/better_clam_db', active: true }; const options = { ...config, clamdscan: clamdScanOptions, clamscan: clamscanOptions, preference: 'clamscan' }; const clamscan = await resetClam(options); expect(clamscan.settings.clamscan.db).to.be.null; }); it('should set scanLog to null if specified scanLog is not found', async () => { const options = { ...config, scanLog: `${__dirname}/should/not/exist`, preference: 'clamdscan', clamdscan: { localFallback: true }, foobar: true, }; const clamscan = await resetClam(options); expect(clamscan.settings.scanLog).to.be.null; }); it('should be able have configuration settings changed after instantiation', async () => { expect(resetClam({ scanLog: null })).to.not.be.rejectedWith(Error); const clamscan = await resetClam({ scanLog: null }); expect(clamscan.settings.scanLog).to.be.null; clamscan.settings.scanLog = config.scanLog; expect(clamscan.settings.scanLog).to.be.eql(config.scanLog); }); it('should initialize successfully with a custom config file, even if the default config file does not exist', async () => { /** * For this test, the test runner needs to ensure that the default clamdscan configuration file * is *not* available. This file may reside at `../etc/clamav/clamd.conf` * relative to the clamdscan executable. Making this file unavailable can be as simple as * renaming it. Only if this file is unavailable will this test be meaningful. If present, * NodeClam.init will fall back to using the clamscan binary and the default config file. * * NodeClam.init should execute successfully using the custom config file only. */ const clamscan = await resetClam({ preference: 'clamdscan', clamdscan: { active: true, configFile: 'tests/clamd.conf', }, }); expect(clamscan.scanner).to.eq('clamdscan'); // Verify that the scanner did not fall back to another binary }); it('should initialize with only a port (no host or socket provided)', async () => { expect( resetClam({ preference: 'clamdscan', clamdscan: { host: null, port: config.clamdscan.port }, }) ).to.not.be.rejectedWith(Error); }); }); describe('_buildClamFlags', () => { let clamscan; beforeEach(async () => { clamscan = await resetClam(); }); it('should build an array', () => { expect(clamscan.clamFlags).to.not.be.undefined; expect(clamscan.clamFlags).to.be.an('array'); }); it('should build a series of flags', () => { if (clamscan.settings.preference === 'clamdscan') { const flags = [ '--no-summary', '--fdpass', config.clamdscan.configFile ? `--config-file=${config.clamdscan.configFile}` : null, '--multiscan', `--move=${config.quarantineInfected}`, config.scanLog ? `--log=${config.scanLog}` : null, ].filter((v) => !!v); clamscan.clamFlags.should.be.eql(flags); } else { clamscan.clamFlags.should.be.eql(['--no-summary', `--log=${config.scanLog}`]); } }); }); describe('getVersion', () => { let clamscan; beforeEach(async () => { clamscan = await resetClam(); }); it('should exist', () => { should.exist(clamscan.getVersion); }); it('should be a function', () => { clamscan.getVersion.should.be.a('function'); }); it('should respond with some version (Promise API)', async () => { const version = await clamscan.getVersion(); expect(version).to.be.a('string'); // This may not always be the case... so, it can be removed if necessary expect(version).to.match(/^ClamAV \d+\.\d+\.\d+\/\d+\//); }); it('should respond with some version (Callback API)', (done) => { clamscan.getVersion((err, version) => { check(done, () => { expect(err).to.not.be.instanceof(Error); expect(version).to.be.a('string'); expect(version).to.match(/^ClamAV \d+\.\d+\.\d+\/\d+\//); }); }); }); }); describe('_initSocket', () => { let clamscan; beforeEach(async () => { clamscan = await resetClam(); }); it('should exist', () => { should.exist(clamscan._initSocket); }); it('should be a function', () => { clamscan._initSocket.should.be.a('function'); }); it('should return a valid socket client', async () => { const client = await clamscan._initSocket(); expect(client).to.be.an('object'); expect(client.writable).to.eql(true); expect(client.readable).to.eql(true); expect(client._hadError).to.eql(false); expect(client).to.respondTo('on'); expect(client).to.not.respondTo('foobar'); }); // TODO: earlier versions of Node (<=10.0.0) have no public way of determining the timeout it.skip('should have the same timeout as the one configured through this module', async () => { clamscan = await resetClam({ clamdscan: { timeout: 300000 } }); const client = await clamscan._initSocket(); expect(client.timeout).to.eql(clamscan.settings.clamdscan.timeout); }); }); describe('ping', () => { let clamscan; beforeEach(async () => { clamscan = await resetClam(); }); it('should exist', () => { should.exist(clamscan.ping); }); it('should be a function', () => { clamscan.ping.should.be.a('function'); }); it('should respond with a socket client (Promise API)', async () => { const client = await clamscan.ping(); expect(client).to.be.an('object'); expect(client.readyState).to.eql('open'); expect(client.writable).to.eql(true); expect(client.readable).to.eql(true); expect(client._hadError).to.eql(false); expect(client).to.respondTo('on'); expect(client).to.respondTo('end'); expect(client).to.not.respondTo('foobar'); client.end(); }); it('should respond with a socket client (Callback API)', (done) => { clamscan.ping((err, client) => { check(done, () => { expect(err).to.not.be.instanceof(Error); expect(client).to.be.an('object'); expect(client.writable).to.eql(true); expect(client.readable).to.eql(true); expect(client._hadError).to.eql(false); expect(client).to.respondTo('on'); expect(client).to.respondTo('end'); expect(client).to.not.respondTo('foobar'); }); }); }); }); describe('_ping', () => { let clamscan; beforeEach(async () => { clamscan = await resetClam(); }); it('should exist', () => { should.exist(clamscan._ping); }); it('should be a function', () => { clamscan._ping.should.be.a('function'); }); it('should respond with a socket client (Promise API)', async () => { const client = await clamscan._ping(); expect(client).to.be.an('object'); expect(client.readyState).to.eql('open'); expect(client.writable).to.eql(true); expect(client.readable).to.eql(true); expect(client._hadError).to.eql(false); expect(client).to.respondTo('on'); expect(client).to.respondTo('end'); expect(client).to.not.respondTo('foobar'); client.end(); }); it('should respond with a socket client (Callback API)', (done) => { clamscan._ping((err, client) => { check(done, () => { expect(err).to.not.be.instanceof(Error); expect(client).to.be.an('object'); expect(client.writable).to.eql(true); expect(client.readable).to.eql(true); expect(client._hadError).to.eql(false); expect(client).to.respondTo('on'); expect(client).to.respondTo('end'); expect(client).to.not.respondTo('foobar'); }); }); }); }); describe('isInfected', () => { let clamscan; beforeEach(async () => { clamscan = await resetClam(); }); it('should exist', () => { should.exist(clamscan.isInfected); }); it('should be a function', () => { clamscan.isInfected.should.be.a('function'); }); it('should require second parameter to be a callback function (if truthy value provided)', () => { expect(() => clamscan.isInfected(goodScanFile), 'nothing provided').to.not.throw(Error); expect(() => clamscan.isInfected(goodScanFile, () => {}), 'good function provided').to.not.throw(Error); expect(() => clamscan.isInfected(goodScanFile, undefined), 'undefined provided').to.not.throw(Error); expect(() => clamscan.isInfected(goodScanFile, null), 'null provided').to.not.throw(Error); expect(() => clamscan.isInfected(goodScanFile, ''), 'empty string provided').to.not.throw(Error); expect(() => clamscan.isInfected(goodScanFile, false), 'false provided').to.not.throw(Error); expect(() => clamscan.isInfected(goodScanFile, NaN), 'NaN provided').to.not.throw(Error); expect(() => clamscan.isInfected(goodScanFile, true), 'true provided').to.throw(Error); expect(() => clamscan.isInfected(goodScanFile, 5), 'integer provided').to.throw(Error); expect(() => clamscan.isInfected(goodScanFile, 5.4), 'float provided').to.throw(Error); expect(() => clamscan.isInfected(goodScanFile, Infinity), 'Infinity provided').to.throw(Error); expect(() => clamscan.isInfected(goodScanFile, /^\/path/), 'RegEx provided').to.throw(Error); expect(() => clamscan.isInfected(goodScanFile, ['foo']), 'Array provided').to.throw(Error); expect(() => clamscan.isInfected(goodScanFile, {}), 'Object provided').to.throw(Error); }); it('should require a string representing the path to a file to be scanned', (done) => { Promise.all([ expect(clamscan.isInfected(goodScanFile), 'valid file').to.eventually.eql({ file: `${__dirname}/good_scan_dir/good_file_1.txt`, isInfected: false, viruses: [], }), expect(clamscan.isInfected(), 'nothing provided').to.be.rejectedWith(Error), expect(clamscan.isInfected(undefined), 'undefined provided').to.be.rejectedWith(Error), expect(clamscan.isInfected(null), 'null provided').to.be.rejectedWith(Error), expect(clamscan.isInfected(''), 'empty string provided').to.be.rejectedWith(Error), expect(clamscan.isInfected(false), 'false provided').to.be.rejectedWith(Error), expect(clamscan.isInfected(true), 'true provided').to.be.rejectedWith(Error), expect(clamscan.isInfected(5), 'integer provided').to.be.rejectedWith(Error), expect(clamscan.isInfected(5.4), 'float provided').to.be.rejectedWith(Error), expect(clamscan.isInfected(Infinity), 'Infinity provided').to.be.rejectedWith(Error), expect(clamscan.isInfected(/^\/path/), 'RegEx provided').to.be.rejectedWith(Error), expect(clamscan.isInfected(['foo']), 'Array provided').to.be.rejectedWith(Error), expect(clamscan.isInfected({}), 'Object provided').to.be.rejectedWith(Error), expect(clamscan.isInfected(NaN), 'NaN provided').to.be.rejectedWith(Error), expect( clamscan.isInfected(() => '/path/to/string'), 'Function provided' ).to.be.rejectedWith(Error), // eslint-disable-next-line no-new-wrappers expect(clamscan.isInfected(new String('/foo/bar')), 'String object provided').to.be.rejectedWith(Error), ]).should.notify(done); }); describe('callback-style', () => { beforeEach(async () => { clamscan = await resetClam(); }); it('should return error if file not found', (done) => { clamscan.isInfected(`${__dirname}/missing_file.txt`, (err) => { check(done, () => { expect(err).to.be.instanceof(Error); }); }); }); it('should supply filename with path back after the file is scanned', (done) => { clamscan.isInfected(goodScanFile, (err, file) => { check(done, () => { expect(err).to.not.be.instanceof(Error); expect(file).to.not.be.empty; file.should.be.a('string'); file.should.eql(goodScanFile); }); }); }); it('should respond with FALSE when file is not infected', (done) => { clamscan.isInfected(goodScanFile, (err, file, isInfected) => { check(done, () => { expect(err).to.not.be.instanceof(Error); expect(isInfected).to.be.a('boolean'); expect(isInfected).to.eql(false); }); }); }); it('should respond with TRUE when non-archive file is infected', (done) => { eicarGen.writeFile(); clamscan.isInfected(badScanFile, (err, file, isInfected) => { check(done, () => { expect(err).to.not.be.instanceof(Error); expect(isInfected).to.be.a('boolean'); expect(isInfected).to.eql(true); if (fs.existsSync(badScanFile)) fs.unlinkSync(badScanFile); }); }); }); it('should respond with an empty array of viruses when file is NOT infected', (done) => { clamscan.isInfected(goodScanFile, (err, file, isInfected, viruses) => { check(done, () => { expect(err).to.not.be.instanceof(Error); expect(viruses).to.be.an('array'); expect(viruses).to.have.length(0); }); }); }); it('should respond with name of virus when file is infected', (done) => { eicarGen.writeFile(); clamscan.isInfected(badScanFile, (err, file, isInfected, viruses) => { check(done, () => { expect(viruses).to.be.an('array'); expect(viruses).to.have.length(1); expect(viruses[0]).to.match(eicarSignatureRgx); if (fs.existsSync(badScanFile)) fs.unlinkSync(badScanFile); }); }); }); }); describe('promise-style', () => { beforeEach(async () => { clamscan = await resetClam(); }); it('should return error if file not found', (done) => { clamscan.isInfected(`${__dirname}/missing_file.txt`).should.be.rejectedWith(Error).notify(done); }); it('should supply filename with path back after the file is scanned', (done) => { clamscan .isInfected(goodScanFile) .then((result) => { const { file, isInfected } = result; expect(file).to.not.be.empty; file.should.be.a('string'); file.should.eql(goodScanFile); done(); }) .catch((err) => { done(err); }); }); it('should respond with FALSE when file is not infected', (done) => { clamscan .isInfected(goodScanFile) .then((result) => { const { file, isInfected } = result; expect(isInfected).to.be.a('boolean'); expect(isInfected).to.eql(false); done(); }) .catch((err) => { done(err); }); }); it('should respond with an empty array of viruses when file is NOT infected', (done) => { clamscan .isInfected(goodScanFile) .then((result) => { const { viruses } = result; expect(viruses).to.be.an('array'); expect(viruses).to.have.length(0); done(); }) .catch((err) => { done(err); }); }); it('should respond with name of virus when file is infected', (done) => { eicarGen.writeFile(); clamscan .isInfected(badScanFile) .then((result) => { const { viruses } = result; expect(viruses).to.be.an('array'); expect(viruses).to.have.length(1); expect(viruses[0]).to.match(eicarSignatureRgx); done(); }) .catch((err) => { done(err); }) .finally(() => { if (fs.existsSync(badScanFile)) fs.unlinkSync(badScanFile); }); }); }); describe('async/await-style', () => { beforeEach(async () => { clamscan = await resetClam(); }); it('should supply filename with path back after the file is scanned', async () => { const { file, isInfected } = await clamscan.isInfected(goodScanFile); expect(file).to.not.be.empty; file.should.be.a('string'); file.should.eql(goodScanFile); }); it('should respond with FALSE when file is not infected', async () => { const { file, isInfected } = await clamscan.isInfected(goodScanFile); expect(isInfected).to.be.a('boolean'); expect(isInfected).to.eql(false); }); it('should respond with TRUE when non-archive file is infected', async () => { eicarGen.writeFile(); try { const { isInfected } = await clamscan.isInfected(badScanFile); expect(isInfected).to.be.a('boolean'); expect(isInfected).to.eql(true); // eslint-disable-next-line no-useless-catch } catch (err) { throw err; } finally { if (fs.existsSync(badScanFile)) fs.unlinkSync(badScanFile); } }); it('should respond with an empty array of viruses when file is NOT infected', async () => { const { viruses } = await clamscan.isInfected(goodScanFile); expect(viruses).to.be.an('array'); expect(viruses).to.have.length(0); }); it('should respond with name of virus when file is infected', async () => { eicarGen.writeFile(); try { const { viruses } = await clamscan.isInfected(badScanFile); expect(viruses).to.be.an('array'); expect(viruses).to.have.length(1); expect(viruses[0]).to.match(eicarSignatureRgx); // eslint-disable-next-line no-useless-catch } catch (err) { throw err; } finally { if (fs.existsSync(badScanFile)) fs.unlinkSync(badScanFile); } }); }); describe('Edge Cases', () => { it('should not provide false negatives in the event of a filename containing "OK"', async () => { eicarGen.writeFile(); try { // Make copies of the test virus file and rename it to various possible false-negative names await Promise.all([fakeVirusFalseNegatives.map((v) => fsCopyfile(badScanFile, v))]); // Get list of all files to scan const toScan = [].concat(fakeVirusFalseNegatives).concat([badScanFile]); // Scan all the files // eslint-disable-next-line no-restricted-syntax for (const virus of toScan) { // eslint-disable-next-line no-await-in-loop const { isInfected } = await clamscan.isInfected(virus); expect(isInfected).to.be.a('boolean'); expect(isInfected).to.eql(true); } // eslint-disable-next-line no-useless-catch } catch (err) { throw err; } finally { if (fs.existsSync(badScanFile)) fs.unlinkSync(badScanFile); fakeVirusFalseNegatives.forEach((v) => { if (fs.existsSync(v)) fs.unlinkSync(v); }); } }); it('should be okay when scanning a file with consecutive (or any) spaces in it while doing a local scan', async () => { // Make sure we're forced to scan locally clamscan = await resetClam({ clamdscan: { host: null, port: null, socket: null, localFallback: true }, debugMode: false, quarantineInfected: false, }); // Write virus file with spaces in its name eicarGen.writeFileSpaced(); // Check if infected try { const { file, isInfected, viruses } = await clamscan.isInfected(spacedVirusFile); expect(isInfected, 'isInfected should be true').to.be.true; expect(file, 'spaced file name should be the same').to.eql(spacedVirusFile); expect(viruses, 'viruses found should be an array').to.be.an('array'); expect(viruses, 'viruses found should have 1 element').to.have.length(1); expect(viruses[0], 'element should match eicar').to.match(eicarSignatureRgx); // eslint-disable-next-line no-useless-catch } catch (err) { throw err; } finally { if (fs.existsSync(spacedVirusFile)) fs.unlinkSync(spacedVirusFile); } }); }); }); // This is just an alias to 'isInfected', so, no need to test much more. describe('scanFile', () => { let clamscan; beforeEach(async () => { clamscan = await resetClam(); }); it('should exist', () => { should.exist(clamscan.scanFile); }); it('should be a function', () => { clamscan.scanFile.should.be.a('function'); }); it('should behave just like isInfected (callback)', (done) => { clamscan.scanFile(goodScanFile, (err, file, isInfected, viruses) => { check(done, () => { expect(err).to.not.be.instanceof(Error); expect(file).to.not.be.empty; file.should.be.a('string'); file.should.eql(goodScanFile); expect(isInfected).to.be.a('boolean'); expect(isInfected).to.eql(false); expect(viruses).to.be.an('array'); expect(viruses).to.have.length(0); }); }); }); it('should behave just like isInfected (promise)', (done) => { clamscan .scanFile(goodScanFile) .then((result) => { const { file, isInfected, viruses } = result; expect(file).to.not.be.empty; file.should.be.a('string'); file.should.eql(goodScanFile); expect(isInfected).to.be.a('boolean'); expect(isInfected).to.eql(false); expect(viruses).to.be.an('array'); expect(viruses).to.have.length(0); done(); }) .catch((err) => { done(err); }); }); it('should behave just like isInfected (async/await)', async () => { const { file, isInfected, viruses } = await clamscan.scanFile(goodScanFile); expect(file).to.not.be.empty; expect(file).to.be.a('string'); expect(file).to.eql(goodScanFile); expect(isInfected).to.be.a('boolean'); expect(isInfected).to.eql(false); expect(viruses).to.be.an('array'); expect(viruses).to.have.length(0); }); }); describe('scanFiles', () => { let clamscan; beforeEach(async () => { clamscan = await resetClam({ scanLog: null }); }); it('should exist', () => { should.exist(clamscan.scanFiles); }); it('should be a function', () => { clamscan.scanFiles.should.be.a('function'); }); describe('callback api', () => { it('should return err to the "err" parameter of the "endCb" callback if an array with a bad string is provided as first parameter', (done) => { clamscan.scanFiles([''], (err, goodFiles, badFiles) => { check(done, () => { expect(err).to.be.instanceof(Error); expect(goodFiles).to.be.empty; }); }); }); it('should return err to the "err" parameter of the "endCb" callback if an empty array is provided as first parameter', (done) => { clamscan.scanFiles([], (err, goodFiles, badFiles) => { check(done, () => { expect(err).to.be.instanceof(Error); expect(goodFiles).to.be.empty; }); }); }); it('should return err to the "err" parameter of the "endCb" callback if nothing is provided as first parameter', (done) => { clamscan.scanFiles(undefined, (err, goodFiles, badFiles) => { check(done, () => { expect(err).to.be.instanceof(Error); expect(goodFiles).to.be.empty; }); }); }); it('should return err to the "err" parameter of the "endCb" callback if null is provided as first parameter', (done) => { clamscan.scanFiles(null, (err, goodFiles, badFiles) => { check(done, () => { expect(err).to.be.instanceof(Error); expect(goodFiles).to.be.empty; }); }); }); it('should return err to the "err" parameter of the "endCb" callback if an empty string is provided as first parameter', (done) => { clamscan.scanFiles('', (err, goodFiles, badFiles) => { check(done, () => { expect(err).to.be.instanceof(Error); expect(goodFiles).to.be.empty; }); }); }); it('should return err to the "err" parameter of the "endCb" callback if TRUE is provided as first parameter', (done) => { clamscan.scanFiles(true, (err, goodFiles, badFiles) => { check(done, () => { expect(err).to.be.instanceof(Error); expect(goodFiles).to.be.empty; }); }); }); it('should return err to the "err" parameter of the "endCb" callback if an integer is provided as first parameter', (done) => { clamscan.scanFiles(5, (err, goodFiles, badFiles) => { check(done, () => { expect(err).to.be.instanceof(Error); expect(goodFiles).to.be.empty; }); }); }); it('should return err to the "err" parameter of the "endCb" callback if a float is provided as first parameter', (done) => { clamscan.scanFiles(5.5, (err, goodFiles, badFiles) => { check(done, () => { expect(err).to.be.instanceof(Error); expect(goodFiles).to.be.empty; }); }); }); it('should return err to the "err" parameter of the "endCb" callback if Infinity is provided as first parameter', (done) => { clamscan.scanFiles(Infinity, (err, goodFiles, badFiles) => { check(done, () => { expect(err).to.be.instanceof(Error); expect(goodFiles).to.be.empty; }); }); }); it('should return err to the "err" parameter of the "endCb" callback if a RegEx is provided as first parameter', (done) => { clamscan.scanFiles(/foobar/, (err, goodFiles, badFiles) => { check(done, () => { expect(err).to.be.instanceof(Error); expect(goodFiles).to.be.empty; }); }); }); it('should return err to the "err" parameter of the "endCb" callback if an Standard Object is provided as first parameter', (done) => { clamscan.scanFiles({}, (err, goodFiles, badFiles) => { check(done, () => { expect(err).to.be.instanceof(Error); expect(goodFiles).to.be.empty; }); }); }); it('should return err to the "err" parameter of the "endCb" callback if a NaN is provided as first parameter', (done) => { clamscan.scanFiles(NaN, (err, goodFiles, badFiles) => { check(done, () => { expect(err).to.be.instanceof(Error); expect(goodFiles).to.be.empty; }); }); }); it('should return err to the "err" parameter of the "endCb" callback if a string-returning function is provided as first parameter', (done) => { clamscan.scanFiles( () => { return goodScanFile; }, (err, goodFiles, badFiles) => { check(done, () => { expect(err).to.be.instanceof(Error); expect(goodFiles).to.be.empty; }); } ); }); it('should return err to the "err" parameter of the "endCb" callback if a String object is provided as first parameter', (done) => { // eslint-disable-next-line no-new-wrappers clamscan.scanFiles(new String(goodScanFile), (err, goodFiles, badFiles) => { check(done, () => { expect(err).to.be.instanceof(Error); expect(goodFiles).to.be.empty; }); }); }); it('should NOT return err to the "err" parameter of the "endCb" callback if an array with a non-empty string or strings is provided as first parameter', (done) => { clamscan.scanFiles([goodScanFile], (err, goodFiles, badFiles) => { check(done, () => { expect(err).to.not.be.instanceof(Error); expect(badFiles).to.be.empty; expect(goodFiles).to.not.be.empty; expect(goodFiles).to.eql([goodScanFile]); }); }); }); it('should NOT return err to the "err" parameter of the "endCb" callback if a non-empty string is provided as first parameter', (done) => { clamscan.scanFiles(goodScanFile, (err, goodFiles, badFiles) => { check(done, () => { expect(err).to.not.be.instanceof(Error); expect(badFiles).to.be.empty; expect(goodFiles).to.not.be.empty; expect(goodFiles).to.eql([goodScanFile]); }); }); }); it('should NOT return error to the "err" parameter of the "endCb" callback if nothing is provided as first parameter but fileList is configured in settings', (done) => { clamscan.settings.fileList = modifiedGoodFileList; clamscan.scanFiles(undefined, (err, goodFiles, badFiles) => { check(done, () => { expect(err).to.not.be.instanceof(Error); expect(goodFiles).to.not.be.empty; expect(goodFiles).to.have.length(2); expect(badFiles).to.be.empty; }); }); }); it('should NOT return error to the "err" parameter of the "endCb" callback if nothing is provided as first parameter and fileList is configured in settings but has inaccessible files. Should return list of inaccessible files', (done) => { clamscan.settings.fileList = badFileList; clamscan.scanFiles(undefined, (err, goodFiles, badFiles, errorFiles) => { check(done, () => { expect(err).to.not.be.instanceof(Error); expect(badFiles).to.be.empty; expect(goodFiles).to.be.empty; expect(errorFiles).to.be.an('object'); const fileNames = Object.keys(errorFiles).map((v) => path.basename(v)); expect(fileNames).to.be.eql([ 'wont_be_able_to_find_this_file.txt', 'wont_find_this_one_either.txt', ]); }); }); }); it('should NOT return error to the "err" parameter of the "endCb" callback if FALSE is provided as first parameter but fileList is configured in settings', (done) => { clamscan.settings.fileList = modifiedGoodFileList; clamscan.scanFiles(false, (err, goodFiles, badFiles) => { check(done, () => { expect(err).to.not.be.instanceof(Error); expect(goodFiles).to.not.be.empty; expect(goodFiles).to.have.length(2); expect(badFiles).to.be.empty; }); }); }); it('should NOT return error to the "err" parameter of the "endCb" callback if NaN is provided as first parameter but fileList is configured in settings', (done) => { clamscan.settings.fileList = modifiedGoodFileList; clamscan.scanFiles(NaN, (err, goodFiles, badFiles) => { check(done, () => { expect(err).to.not.be.instanceof(Error); expect(goodFiles).to.not.be.empty; expect(goodFiles).to.have.length(2); expect(badFiles).to.be.empty; }); }); }); it('should NOT return error to the "err" parameter of the "endCb" callback if NULL is provided as first parameter but fileList is configured in settings', (done) => { clamscan.settings.fileList = modifiedGoodFileList; clamscan.scanFiles(null, (err, goodFiles, badFiles) => { check(done, () => { expect(err).to.not.be.instanceof(Error); expect(goodFiles).to.not.be.empty; expect(goodFiles).to.have.length(2); expect(badFiles).to.be.empty; }); }); }); it('should NOT return error to the "err" parameter of the "endCb" callback if an empty string is provided as first parameter but fileList is configured in settings', (done) => { clamscan.settings.fileList = modifiedGoodFileList; clamscan.scanFiles('', (err, goodFiles, badFiles) => { check(done, () => { expect(err).to.not.be.instanceof(Error); expect(goodFiles).to.not.be.empty; expect(goodFiles).to.have.length(2); expect(badFiles).to.be.empty; }); }); }); it('should provide an empty array for the "viruses" parameter if no infected files are found', (done) => { clamscan.scanFiles(goodScanFile, (err, goodFiles, badFiles, errorFiles, viruses) => { check(done, () => { expect(err).to.not.be.instanceof(Error); expect(goodFiles).to.have.length(1); expect(badFiles).to.have.length(0); expect(viruses).to.be.an('array'); expect(viruses).to.have.length(0); }); }); }); it('should provide a list of viruses found if the any of the files in the list is infected', (done) => { eicarGen.writeFile(); clamscan.scanFiles( [badScanFile, `${__dirname}/good_scan_dir/good_file_1.txt`], (err, goodFiles, badFiles, errorFiles, viruses) => { // console.log('Check: ', err, goodFiles, badFiles, errorFiles, viruses); check(done, () => { expect(err).to.not.be.instanceof(Error); expect(goodFiles).to.not.be.empty; expect(goodFiles).to.be.an('array'); expect(goodFiles).to.have.length(1); expect(badFiles).to.not.be.empty; expect(badFiles).to.be.an('array'); expect(badFiles).to.have.length(1); expect(errorFiles).to.be.eql({}); expect(viruses).to.not.be.empty; expect(viruses).to.be.an('array'); expect(viruses).to.have.length(1); expect(viruses[0]).to.match(eicarSignatureRgx); if (fs.existsSync(badScanFile)) fs.unlinkSync(badScanFile); }); } ); }); }); describe('async/await api', () => { it('should provide a list of viruses found if the any of the files in the list is infected', async () => { eicarGen.writeFile(); try { const { goodFiles, badFiles, errors, viruses } = await clamscan.scanFiles([badScanFile, goodScanFile]); expect(goodFiles).to.not.be.empty; expect(goodFiles).to.be.an('array'); expect(goodFiles).to.have.length(1); expect(badFiles).to.not.be.empty; expect(badFiles).to.be.an('array'); expect(badFiles).to.have.length(1); expect(errors).to.be.eql({}); expect(viruses).to.not.b