class.ilVirusScannerClamAV.php

Go to the documentation of this file.

<?php
 
declare(strict_types=1);
 
class ilVirusScannerClamAV extends ilVirusScanner
{
    private const ADD_SCAN_PARAMS = '--no-summary -i';
 
    public function __construct(string $scan_command, string $clean_command)
    {
        parent::__construct($scan_command, $clean_command);
        $this->type = 'clamav';
        $this->scanZipFiles = true;
    }
 
    public function scanBuffer(string $buffer): bool
    {
        if (!$this->isBufferScanPossible()) {
            return $this->scanFileFromBuffer($buffer);
        }
 
        return $this->processBufferScan($buffer);
    }
 
    protected function isBufferScanPossible(): bool
    {
        $functions = ['proc_open', 'proc_close'];
 
        foreach ($functions as $func) {
            if (function_exists($func)) {
                continue;
            }
 
            return false;
        }
 
        return true;
    }
 
    protected function processBufferScan(string $buffer): bool
    {
        $descriptor_spec = [
            0 => ['pipe', 'r'],  // stdin is a pipe that the child will read from
            1 => ['pipe', 'w'],  // stdout is a pipe that the child will write to
            2 => ['pipe', 'w']        // stderr for the child
        ];
 
        $pipes = []; // will look like follows after passing
        // 0 => writeable handle connected to child stdin
        // 1 => readable handle connected to child stdout
 
        $process = proc_open($this->buildScanCommand(), $descriptor_spec, $pipes);
 
        if (!is_resource($process)) {
            return false; // no scan, no virus detected
        }
 
        fwrite($pipes[0], $buffer);
        fclose($pipes[0]);
 
        $detectionReport = stream_get_contents($pipes[1]);
        fclose($pipes[1]);
 
        $errorReport = stream_get_contents($pipes[2]);
        fclose($pipes[2]);
 
        $return = proc_close($process);
 
        return (bool) $this->hasDetections($detectionReport);
    }
 
    protected function buildScanCommand(string $file = '-'): string
    {
        return $this->scanCommand . ' ' . self::ADD_SCAN_PARAMS . ' ' . $file;
    }
    protected function buildScanCommandArguments($file = '-') // default means piping
    {
        return ' ' . self::ADD_SCAN_PARAMS . ' ' . $file;
    }
 
 
    protected function hasDetections(string $detectionReport): int
    {
        return preg_match('/FOUND/', $detectionReport);
    }
 
    public function scanFile(string $file_path, string $org_name = ''): string
    {
        $this->scanFilePath = $file_path;
        $this->scanFileOrigName = $org_name;
        // Make group readable for clamdscan
        $currentPermission = fileperms($file_path);
        $perm = $currentPermission | 0640;
        chmod($file_path, $perm);
 
        $a_filepath = realpath($file_path);
        if (file_exists($file_path)) {
            $args = ilShellUtil::escapeShellArg($file_path);
            $arguments = $this->buildScanCommandArguments($args) . ' 2>&1';
            $cmd = ilShellUtil::escapeShellCmd($this->scanCommand);
            $out = ilShellUtil::execQuoted($cmd, $arguments);
            $this->scanResult = implode("\n", $out);
 
            if ($perm != $currentPermission) {
                chmod($a_filepath, $currentPermission);
            }
 
            if ($this->hasDetections($this->scanResult)) {
                $this->scanFileIsInfected = true;
                $this->logScanResult();
                return $this->scanResult;
            } else {
                $this->scanFileIsInfected = false;
                return '';
            }
        }
 
        $return_error = 'ERROR (Virus Scanner failed): '
            . $this->scanResult
            . '; Path=' . $a_filepath;
        $this->log->write($return_error);
        return $return_error;
    }
}