Server : Apache System : Linux indy02.toastserver.com 3.10.0-962.3.2.lve1.5.85.el7.x86_64 #1 SMP Thu Apr 18 15:18:36 UTC 2024 x86_64 User : palandch ( 1163) PHP Version : 7.1.33 Disable Function : NONE Directory : /opt/imunify360/venv/lib64/python3.11/site-packages/imav/malwarelib/subsys/ |
""" This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program. If not, see <https://www.gnu.org/licenses/>. Copyright © 2019 Cloud Linux Software Inc. This software is also available under ImunifyAV commercial license, see <https://www.imunify360.com/legal/eula> """ import asyncio import datetime from logging import getLogger from typing import Tuple from imav.malwarelib.config import MalwareScanType from imav.malwarelib.scan.scanner import MalwareScanner from defence360agent.contracts.config import BackupRestore logger = getLogger(__name__) def _get_scan_function(sink, tmpdir=None): async def _custom_scan_function(files: list) -> list: """Used for checking files from backups before their recovering""" if not files: return [] still_infected = [] scanner = MalwareScanner(sink=sink, tmpdir=tmpdir) scanner.start( files, scan_type=MalwareScanType.RESTORE_FROM_BACKUP, use_filters=False, ) result = await scanner.async_wait() if result is not None: still_infected = [r["file_name"] for r in result["results"]] return still_infected return _custom_scan_function async def restore_files( files: list, until: datetime, sink, tmp_dir=None ) -> Tuple[list, list]: from restore_infected.restore import async_restore_infected backend = BackupRestore.backup_system() assert backend, "Backup system is not selected!" restored, not_restored = [], files try: scan_function = _get_scan_function(sink) restored, not_restored = await async_restore_infected( backend=backend, files=files, until=until, scan_func=scan_function, tmp_dir=tmp_dir, ) except asyncio.CancelledError: raise except Exception as e: logger.exception("Error during restore from backup") return restored, not_restored