PNG  IHDRX cHRMz&u0`:pQ<bKGD pHYsodtIME MeqIDATxw]Wug^Qd˶ 6`!N:!@xI~)%7%@Bh&`lnjVF29gΨ4E$|>cɚ{gk= %,a KX%,a KX%,a KX%,a KX%,a KX%,a KX%, b` ǟzeאfp]<!SJmɤY޲ڿ,%c ~ع9VH.!Ͳz&QynֺTkRR.BLHi٪:l;@(!MԴ=žI,:o&N'Kù\vRmJ雵֫AWic H@" !: Cé||]k-Ha oݜ:y F())u]aG7*JV@J415p=sZH!=!DRʯvɱh~V\}v/GKY$n]"X"}t@ xS76^[bw4dsce)2dU0 CkMa-U5tvLƀ~mlMwfGE/-]7XAƟ`׮g ewxwC4\[~7@O-Q( a*XGƒ{ ՟}$_y3tĐƤatgvێi|K=uVyrŲlLӪuܿzwk$m87k( `múcE)"@rK( z4$D; 2kW=Xb$V[Ru819קR~qloѱDyįݎ*mxw]y5e4K@ЃI0A D@"BDk_)N\8͜9dz"fK0zɿvM /.:2O{ Nb=M=7>??Zuo32 DLD@D| &+֎C #B8ַ`bOb $D#ͮҪtx]%`ES`Ru[=¾!@Od37LJ0!OIR4m]GZRJu$‡c=%~s@6SKy?CeIh:[vR@Lh | (BhAMy=݃  G"'wzn޺~8ԽSh ~T*A:xR[ܹ?X[uKL_=fDȊ؂p0}7=D$Ekq!/t.*2ʼnDbŞ}DijYaȲ(""6HA;:LzxQ‘(SQQ}*PL*fc\s `/d'QXW, e`#kPGZuŞuO{{wm[&NBTiiI0bukcA9<4@SӊH*؎4U/'2U5.(9JuDfrޱtycU%j(:RUbArLֺN)udA':uGQN"-"Is.*+k@ `Ojs@yU/ H:l;@yyTn}_yw!VkRJ4P)~y#)r,D =ě"Q]ci'%HI4ZL0"MJy 8A{ aN<8D"1#IJi >XjX֔#@>-{vN!8tRݻ^)N_╗FJEk]CT՟ YP:_|H1@ CBk]yKYp|og?*dGvzنzӴzjֺNkC~AbZƷ`.H)=!QͷVTT(| u78y֮}|[8-Vjp%2JPk[}ԉaH8Wpqhwr:vWª<}l77_~{s۴V+RCģ%WRZ\AqHifɤL36: #F:p]Bq/z{0CU6ݳEv_^k7'>sq*+kH%a`0ԣisqにtү04gVgW΂iJiS'3w.w}l6MC2uԯ|>JF5`fV5m`Y**Db1FKNttu]4ccsQNnex/87+}xaUW9y>ͯ骵G{䩓Գ3+vU}~jJ.NFRD7<aJDB1#ҳgSb,+CS?/ VG J?|?,2#M9}B)MiE+G`-wo߫V`fio(}S^4e~V4bHOYb"b#E)dda:'?}׮4繏`{7Z"uny-?ǹ;0MKx{:_pÚmFמ:F " .LFQLG)Q8qN q¯¯3wOvxDb\. BKD9_NN &L:4D{mm o^tֽ:q!ƥ}K+<"m78N< ywsard5+Š²z~mnG)=}lYݧNj'QJS{S :UYS-952?&O-:W}(!6Mk4+>A>j+i|<<|;ر^߉=HE|V#F)Emm#}/"y GII웻Jі94+v뾧xu~5C95~ūH>c@덉pʃ1/4-A2G%7>m;–Y,cyyaln" ?ƻ!ʪ<{~h~i y.zZB̃/,雋SiC/JFMmBH&&FAbϓO^tubbb_hZ{_QZ-sύodFgO(6]TJA˯#`۶ɟ( %$&+V'~hiYy>922 Wp74Zkq+Ovn錄c>8~GqܲcWꂎz@"1A.}T)uiW4="jJ2W7mU/N0gcqܗOO}?9/wìXžΏ0 >֩(V^Rh32!Hj5`;O28؇2#ݕf3 ?sJd8NJ@7O0 b־?lldщ̡&|9C.8RTWwxWy46ah嘦mh٤&l zCy!PY?: CJyв]dm4ǜҐR޻RլhX{FƯanшQI@x' ao(kUUuxW_Ñ줮[w8 FRJ(8˼)_mQ _!RJhm=!cVmm ?sFOnll6Qk}alY}; "baӌ~M0w,Ggw2W:G/k2%R,_=u`WU R.9T"v,<\Ik޽/2110Ӿxc0gyC&Ny޽JҢrV6N ``یeA16"J³+Rj*;BϜkZPJaÍ<Jyw:NP8/D$ 011z֊Ⱳ3ι֘k1V_"h!JPIΣ'ɜ* aEAd:ݺ>y<}Lp&PlRfTb1]o .2EW\ͮ]38؋rTJsǏP@芎sF\> P^+dYJLbJ C-xϐn> ι$nj,;Ǖa FU *择|h ~izť3ᤓ`K'-f tL7JK+vf2)V'-sFuB4i+m+@My=O҈0"|Yxoj,3]:cо3 $#uŘ%Y"y죯LebqtҢVzq¼X)~>4L׶m~[1_k?kxֺQ`\ |ٛY4Ѯr!)N9{56(iNq}O()Em]=F&u?$HypWUeB\k]JɩSع9 Zqg4ZĊo oMcjZBU]B\TUd34ݝ~:7ڶSUsB0Z3srx 7`:5xcx !qZA!;%͚7&P H<WL!džOb5kF)xor^aujƍ7 Ǡ8/p^(L>ὴ-B,{ۇWzֺ^k]3\EE@7>lYBȝR.oHnXO/}sB|.i@ɥDB4tcm,@ӣgdtJ!lH$_vN166L__'Z)y&kH;:,Y7=J 9cG) V\hjiE;gya~%ks_nC~Er er)muuMg2;֫R)Md) ,¶ 2-wr#F7<-BBn~_(o=KO㭇[Xv eN_SMgSҐ BS헃D%g_N:/pe -wkG*9yYSZS.9cREL !k}<4_Xs#FmҶ:7R$i,fi!~' # !6/S6y@kZkZcX)%5V4P]VGYq%H1!;e1MV<!ϐHO021Dp= HMs~~a)ަu7G^];git!Frl]H/L$=AeUvZE4P\.,xi {-~p?2b#amXAHq)MWǾI_r`S Hz&|{ +ʖ_= (YS(_g0a03M`I&'9vl?MM+m~}*xT۲(fY*V4x@29s{DaY"toGNTO+xCAO~4Ϳ;p`Ѫ:>Ҵ7K 3}+0 387x\)a"/E>qpWB=1 ¨"MP(\xp߫́A3+J] n[ʼnӼaTbZUWb={~2ooKױӰp(CS\S筐R*JغV&&"FA}J>G֐p1ٸbk7 ŘH$JoN <8s^yk_[;gy-;߉DV{c B yce% aJhDȶ 2IdйIB/^n0tNtџdcKj4϶v~- CBcgqx9= PJ) dMsjpYB] GD4RDWX +h{y`,3ꊕ$`zj*N^TP4L:Iz9~6s) Ga:?y*J~?OrMwP\](21sZUD ?ܟQ5Q%ggW6QdO+\@ ̪X'GxN @'4=ˋ+*VwN ne_|(/BDfj5(Dq<*tNt1х!MV.C0 32b#?n0pzj#!38}޴o1KovCJ`8ŗ_"]] rDUy޲@ Ȗ-;xџ'^Y`zEd?0„ DAL18IS]VGq\4o !swV7ˣι%4FѮ~}6)OgS[~Q vcYbL!wG3 7띸*E Pql8=jT\꘿I(z<[6OrR8ºC~ډ]=rNl[g|v TMTղb-o}OrP^Q]<98S¤!k)G(Vkwyqyr޽Nv`N/e p/~NAOk \I:G6]4+K;j$R:Mi #*[AȚT,ʰ,;N{HZTGMoּy) ]%dHء9Պ䠬|<45,\=[bƟ8QXeB3- &dҩ^{>/86bXmZ]]yޚN[(WAHL$YAgDKp=5GHjU&99v簪C0vygln*P)9^͞}lMuiH!̍#DoRBn9l@ xA/_v=ȺT{7Yt2N"4!YN`ae >Q<XMydEB`VU}u]嫇.%e^ánE87Mu\t`cP=AD/G)sI"@MP;)]%fH9'FNsj1pVhY&9=0pfuJ&gޤx+k:!r˭wkl03׼Ku C &ѓYt{.O.zҏ z}/tf_wEp2gvX)GN#I ݭ߽v/ .& и(ZF{e"=V!{zW`, ]+LGz"(UJp|j( #V4, 8B 0 9OkRrlɱl94)'VH9=9W|>PS['G(*I1==C<5"Pg+x'K5EMd؞Af8lG ?D FtoB[je?{k3zQ vZ;%Ɠ,]E>KZ+T/ EJxOZ1i #T<@ I}q9/t'zi(EMqw`mYkU6;[t4DPeckeM;H}_g pMww}k6#H㶏+b8雡Sxp)&C $@'b,fPߑt$RbJ'vznuS ~8='72_`{q纶|Q)Xk}cPz9p7O:'|G~8wx(a 0QCko|0ASD>Ip=4Q, d|F8RcU"/KM opKle M3#i0c%<7׿p&pZq[TR"BpqauIp$ 8~Ĩ!8Սx\ւdT>>Z40ks7 z2IQ}ItԀ<-%S⍤};zIb$I 5K}Q͙D8UguWE$Jh )cu4N tZl+[]M4k8֦Zeq֮M7uIqG 1==tLtR,ƜSrHYt&QP윯Lg' I,3@P'}'R˪e/%-Auv·ñ\> vDJzlӾNv5:|K/Jb6KI9)Zh*ZAi`?S {aiVDԲuy5W7pWeQJk֤#5&V<̺@/GH?^τZL|IJNvI:'P=Ϛt"¨=cud S Q.Ki0 !cJy;LJR;G{BJy޺[^8fK6)=yʊ+(k|&xQ2`L?Ȓ2@Mf 0C`6-%pKpm')c$׻K5[J*U[/#hH!6acB JA _|uMvDyk y)6OPYjœ50VT K}cǻP[ $:]4MEA.y)|B)cf-A?(e|lɉ#P9V)[9t.EiQPDѠ3ϴ;E:+Օ t ȥ~|_N2,ZJLt4! %ա]u {+=p.GhNcŞQI?Nd'yeh n7zi1DB)1S | S#ًZs2|Ɛy$F SxeX{7Vl.Src3E℃Q>b6G ўYCmtկ~=K0f(=LrAS GN'ɹ9<\!a`)֕y[uՍ[09` 9 +57ts6}b4{oqd+J5fa/,97J#6yν99mRWxJyѡyu_TJc`~W>l^q#Ts#2"nD1%fS)FU w{ܯ R{ ˎ󅃏џDsZSQS;LV;7 Od1&1n$ N /.q3~eNɪ]E#oM~}v֯FڦwyZ=<<>Xo稯lfMFV6p02|*=tV!c~]fa5Y^Q_WN|Vs 0ҘދU97OI'N2'8N֭fgg-}V%y]U4 峧p*91#9U kCac_AFңĪy뚇Y_AiuYyTTYЗ-(!JFLt›17uTozc. S;7A&&<ԋ5y;Ro+:' *eYJkWR[@F %SHWP 72k4 qLd'J "zB6{AC0ƁA6U.'F3:Ȅ(9ΜL;D]m8ڥ9}dU "v!;*13Rg^fJyShyy5auA?ɩGHRjo^]׽S)Fm\toy 4WQS@mE#%5ʈfFYDX ~D5Ϡ9tE9So_aU4?Ѽm%&c{n>.KW1Tlb}:j uGi(JgcYj0qn+>) %\!4{LaJso d||u//P_y7iRJ߬nHOy) l+@$($VFIQ9%EeKʈU. ia&FY̒mZ=)+qqoQn >L!qCiDB;Y<%} OgBxB!ØuG)WG9y(Ą{_yesuZmZZey'Wg#C~1Cev@0D $a@˲(.._GimA:uyw֬%;@!JkQVM_Ow:P.s\)ot- ˹"`B,e CRtaEUP<0'}r3[>?G8xU~Nqu;Wm8\RIkբ^5@k+5(By'L&'gBJ3ݶ!/㮻w҅ yqPWUg<e"Qy*167΃sJ\oz]T*UQ<\FԎ`HaNmڜ6DysCask8wP8y9``GJ9lF\G g's Nn͵MLN֪u$| /|7=]O)6s !ĴAKh]q_ap $HH'\1jB^s\|- W1:=6lJBqjY^LsPk""`]w)󭃈,(HC ?䔨Y$Sʣ{4Z+0NvQkhol6C.婧/u]FwiVjZka&%6\F*Ny#8O,22+|Db~d ~Çwc N:FuuCe&oZ(l;@ee-+Wn`44AMK➝2BRՈt7g*1gph9N) *"TF*R(#'88pm=}X]u[i7bEc|\~EMn}P瘊J)K.0i1M6=7'_\kaZ(Th{K*GJyytw"IO-PWJk)..axӝ47"89Cc7ĐBiZx 7m!fy|ϿF9CbȩV 9V-՛^pV̌ɄS#Bv4-@]Vxt-Z, &ֺ*diؠ2^VXbs֔Ìl.jQ]Y[47gj=幽ex)A0ip׳ W2[ᎇhuE^~q흙L} #-b۸oFJ_QP3r6jr+"nfzRJTUqoaۍ /$d8Mx'ݓ= OՃ| )$2mcM*cЙj}f };n YG w0Ia!1Q.oYfr]DyISaP}"dIӗթO67jqR ҊƐƈaɤGG|h;t]䗖oSv|iZqX)oalv;۩meEJ\!8=$4QU4Xo&VEĊ YS^E#d,yX_> ۘ-e\ "Wa6uLĜZi`aD9.% w~mB(02G[6y.773a7 /=o7D)$Z 66 $bY^\CuP. (x'"J60׿Y:Oi;F{w佩b+\Yi`TDWa~|VH)8q/=9!g߆2Y)?ND)%?Ǐ`k/sn:;O299yB=a[Ng 3˲N}vLNy;*?x?~L&=xyӴ~}q{qE*IQ^^ͧvü{Huu=R|>JyUlZV, B~/YF!Y\u_ݼF{_C)LD]m {H 0ihhadd nUkf3oٺCvE\)QJi+֥@tDJkB$1!Đr0XQ|q?d2) Ӣ_}qv-< FŊ߫%roppVBwü~JidY4:}L6M7f٬F "?71<2#?Jyy4뷢<_a7_=Q E=S1И/9{+93֮E{ǂw{))?maÆm(uLE#lïZ  ~d];+]h j?!|$F}*"4(v'8s<ŏUkm7^7no1w2ؗ}TrͿEk>p'8OB7d7R(A 9.*Mi^ͳ; eeUwS+C)uO@ =Sy]` }l8^ZzRXj[^iUɺ$tj))<sbDJfg=Pk_{xaKo1:-uyG0M ԃ\0Lvuy'ȱc2Ji AdyVgVh!{]/&}}ċJ#%d !+87<;qN޼Nفl|1N:8ya  8}k¾+-$4FiZYÔXk*I&'@iI99)HSh4+2G:tGhS^繿 Kتm0 вDk}֚+QT4;sC}rՅE,8CX-e~>G&'9xpW,%Fh,Ry56Y–hW-(v_,? ; qrBk4-V7HQ;ˇ^Gv1JVV%,ik;D_W!))+BoS4QsTM;gt+ndS-~:11Sgv!0qRVh!"Ȋ(̦Yl.]PQWgٳE'`%W1{ndΗBk|Ž7ʒR~,lnoa&:ü$ 3<a[CBݮwt"o\ePJ=Hz"_c^Z.#ˆ*x z̝grY]tdkP*:97YľXyBkD4N.C_[;F9`8& !AMO c `@BA& Ost\-\NX+Xp < !bj3C&QL+*&kAQ=04}cC!9~820G'PC9xa!w&bo_1 Sw"ܱ V )Yl3+ס2KoXOx]"`^WOy :3GO0g;%Yv㐫(R/r (s } u B &FeYZh0y> =2<Ϟc/ -u= c&׭,.0"g"7 6T!vl#sc>{u/Oh Bᾈ)۴74]x7 gMӒ"d]U)}" v4co[ ɡs 5Gg=XR14?5A}D "b{0$L .\4y{_fe:kVS\\O]c^W52LSBDM! C3Dhr̦RtArx4&agaN3Cf<Ԉp4~ B'"1@.b_/xQ} _߃҉/gٓ2Qkqp0շpZ2fԫYz< 4L.Cyυι1t@鎫Fe sYfsF}^ V}N<_`p)alٶ "(XEAVZ<)2},:Ir*#m_YӼ R%a||EƼIJ,,+f"96r/}0jE/)s)cjW#w'Sʯ5<66lj$a~3Kʛy 2:cZ:Yh))+a߭K::N,Q F'qB]={.]h85C9cr=}*rk?vwV렵ٸW Rs%}rNAkDv|uFLBkWY YkX מ|)1!$#3%y?pF<@<Rr0}: }\J [5FRxY<9"SQdE(Q*Qʻ)q1E0B_O24[U'],lOb ]~WjHޏTQ5Syu wq)xnw8~)c 쫬gٲߠ H% k5dƝk> kEj,0% b"vi2Wس_CuK)K{n|>t{P1򨾜j>'kEkƗBg*H%'_aY6Bn!TL&ɌOb{c`'d^{t\i^[uɐ[}q0lM˕G:‚4kb祔c^:?bpg… +37stH:0}en6x˟%/<]BL&* 5&fK9Mq)/iyqtA%kUe[ڛKN]Ě^,"`/ s[EQQm?|XJ߅92m]G.E΃ח U*Cn.j_)Tѧj̿30ڇ!A0=͜ar I3$C^-9#|pk!)?7.x9 @OO;WƝZBFU keZ75F6Tc6"ZȚs2y/1 ʵ:u4xa`C>6Rb/Yм)^=+~uRd`/|_8xbB0?Ft||Z\##|K 0>>zxv8۴吅q 8ĥ)"6>~\8:qM}#͚'ĉ#p\׶ l#bA?)|g g9|8jP(cr,BwV (WliVxxᡁ@0Okn;ɥh$_ckCgriv}>=wGzβ KkBɛ[˪ !J)h&k2%07δt}!d<9;I&0wV/ v 0<H}L&8ob%Hi|޶o&h1L|u֦y~󛱢8fٲUsւ)0oiFx2}X[zVYr_;N(w]_4B@OanC?gĦx>мgx>ΛToZoOMp>40>V Oy V9iq!4 LN,ˢu{jsz]|"R޻&'ƚ{53ўFu(<٪9:΋]B;)B>1::8;~)Yt|0(pw2N%&X,URBK)3\zz&}ax4;ǟ(tLNg{N|Ǽ\G#C9g$^\}p?556]/RP.90 k,U8/u776s ʪ_01چ|\N 0VV*3H鴃J7iI!wG_^ypl}r*jɤSR 5QN@ iZ#1ٰy;_\3\BQQ x:WJv츟ٯ$"@6 S#qe딇(/P( Dy~TOϻ<4:-+F`0||;Xl-"uw$Цi󼕝mKʩorz"mϺ$F:~E'ҐvD\y?Rr8_He@ e~O,T.(ފR*cY^m|cVR[8 JҡSm!ΆԨb)RHG{?MpqrmN>߶Y)\p,d#xۆWY*,l6]v0h15M˙MS8+EdI='LBJIH7_9{Caз*Lq,dt >+~ّeʏ?xԕ4bBAŚjﵫ!'\Ը$WNvKO}ӽmSşذqsOy?\[,d@'73'j%kOe`1.g2"e =YIzS2|zŐƄa\U,dP;jhhhaxǶ?КZ՚.q SE+XrbOu%\GتX(H,N^~]JyEZQKceTQ]VGYqnah;y$cQahT&QPZ*iZ8UQQM.qo/T\7X"u?Mttl2Xq(IoW{R^ ux*SYJ! 4S.Jy~ BROS[V|žKNɛP(L6V^|cR7i7nZW1Fd@ Ara{詑|(T*dN]Ko?s=@ |_EvF]׍kR)eBJc" MUUbY6`~V޴dJKß&~'d3i WWWWWW

F1l3 Manager

Current Directory: /opt/imunify360/venv/lib/python3.11/site-packages/imav/malwarelib/rpc/endpoints
/opt/imunify360/venv/lib/python3.11/site-packages/imav/malwarelib/rpc/endpoints/
Viewing File: /opt/imunify360/venv/lib/python3.11/site-packages/imav/malwarelib/rpc/endpoints/ondemand.py
""" This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program.  If not, see <https://www.gnu.org/licenses/>. Copyright © 2019 Cloud Linux Software Inc. This software is also available under ImunifyAV commercial license, see <https://www.imunify360.com/legal/eula> """ import logging import os import socket import time from operator import itemgetter from typing import ( Any, Callable, Dict, Iterable, List, Optional, Set, Tuple, Type, ) from defence360agent.contracts.config import ( GENERIC_SENSOR_SOCKET_PATH, Core, Malware, MalwareScanIntensity, ) from defence360agent.contracts.permissions import ( MS_ON_DEMAND_SCAN, check_permission, ) from defence360agent.rpc_tools import ValidationError from defence360agent.rpc_tools.lookup import ( CommonEndpoints, RootEndpoints, bind, ) from defence360agent.utils import antivirus_mode, get_abspath_from_user_dir from imav.malwarelib.config import ( ExitDetachedScanType, MalwareScanResourceType, QueuedScanState, ) from imav.malwarelib.model import MalwareScan from imav.malwarelib.scan.ai_bolit.detached import ( AiBolitDetachedScan, ) from imav.malwarelib.scan.crontab import get_crontab from imav.malwarelib.scan.detached import ( PROCESS_START_TIME, DetachedOperation, DetachedState, ) from imav.malwarelib.scan.queue_supervisor_sync import ( QueueSupervisorSync as ScanQueue, ) logger = logging.getLogger(__name__) if antivirus_mode.enabled: ABORTABLE_DETACHED_OPERATIONS: Set[Type[DetachedOperation]] = { AiBolitDetachedScan, } else: from imav.malwarelib.scan.mds.detached import ( MDSDetachedCleanup, MDSDetachedRestore, MDSDetachedScan, ) ABORTABLE_DETACHED_OPERATIONS: Set[Type[DetachedOperation]] = { AiBolitDetachedScan, MDSDetachedCleanup, MDSDetachedRestore, MDSDetachedScan, } def _get_prepared_scan_list( since, to, limit, offset, order_by, queue: ScanQueue, user=None ) -> Tuple[int, List[Dict[str, Any]]]: db_kwargs = {} user_paths = [] if user is not None: user_paths = [str(get_abspath_from_user_dir(user)), get_crontab(user)] db_kwargs["paths"] = user_paths max_count, scans_from_db = MalwareScan.ondemand_list( since, to, limit, offset, order_by, **db_kwargs ) for scan in scans_from_db: scan["scan_status"] = QueuedScanState.stopped.value if scan["started"] is None or scan["completed"] is None: scan["duration"] = None else: scan["duration"] = scan["completed"] - scan["started"] queued_scans = {} if user is None: queued_scans = queue.scan_summaries() else: # only user scan user_queued_scans = [ scan for scan, _ in queue.get_scans_from_paths(paths=user_paths) ] if user_queued_scans: queued_scans = queue.scan_summaries(scans=user_queued_scans) # Filter out incomplete scans incomplete_scans = [] # Add incomplete scans with actual info for scanid, scan in queued_scans.items(): if scan["started"] is None: scan["duration"] = None else: scan["duration"] = int(time.time()) - scan["started"] scan["completed"] = None incomplete_scans.append({"scanid": scanid, **scan}) complete_scans = [ scan for scan in scans_from_db if scan["scanid"] not in queued_scans ] scans = incomplete_scans + complete_scans for scan in scans: # FIXME: remove total? Ask UI team. if scan.get("total") is None: scan["total"] = scan["total_resources"] if scan.get("started") is None: scan["started"] = scan["created"] if scan.get("created") is None: scan["created"] = scan["started"] scans = [u for u in scans if since <= u["created"] <= to] if order_by: for order in reversed(order_by): scans.sort(key=itemgetter(order.column_name), reverse=order.desc) return max_count, scans[:limit] # TODO: Change CommonEndpoints -> UserOnlyEndpoints # cause in fact it is used by users: # it is not available via CLI and called from user UI. class OnDemandUserEndpoints(CommonEndpoints): def __init__(self, sink): super().__init__(sink) self.queue = ScanQueue(sink=sink) @bind("malware", "on-demand", "start-user") async def ondemand_start(self, user): await check_permission(MS_ON_DEMAND_SCAN, user) path = str(get_abspath_from_user_dir(user)) scan_args = { "intensity_cpu": MalwareScanIntensity.USER_CPU, "intensity_io": MalwareScanIntensity.USER_IO, "intensity_ram": MalwareScanIntensity.USER_RAM, "initiator": user, } resource_types = [MalwareScanResourceType.FILE] if antivirus_mode.disabled and Malware.DATABASE_SCAN_ENABLED: resource_types.insert(0, MalwareScanResourceType.DB) for resource_type in resource_types: await self.queue.put( paths=[path], resource_type=resource_type, **scan_args, ) @bind("malware", "on-demand", "stop-user") async def ondemand_stop(self, user) -> None: await check_permission(MS_ON_DEMAND_SCAN, user) current_scan = self.queue.queue.current_scan path = str(get_abspath_from_user_dir(user)) for scan, _ in self.queue.get_scans_from_paths([path]): self.queue.remove([scan.scanid]) kill = scan.scanid == current_scan.scanid await scan.detached_scan.handle_aborted_process( sink=self._sink, exit_type=ExitDetachedScanType.STOPPED, kill=kill, scan_started=scan.started, ) @bind("malware", "on-demand", "status-user") async def ondemand_status(self, user) -> Dict[str, Dict[str, str]]: path = str(get_abspath_from_user_dir(user)) scan = self.queue.queue.find(path=path) status = ( scan.status() if scan is not None else {"status": QueuedScanState.stopped.value} ) result = {"items": {"status": status["status"]}} if "progress" in status: result["items"]["progress"] = status["progress"] return result @bind("malware", "on-demand", "list-user") async def ondemand_list( self, user, since, to, limit, offset, order_by=None ) -> Tuple[int, List[Dict[str, Any]]]: """Get list of user scans. - Parses info about scans from DB - Updates info about scans in scan_queue and parses it :param since: scan start timestamp :param to: scan end timestamp :param limit: count of scans to print :param offset: offset of scans in DB to print :param order_by: name of column, by which sort data :return: (number of returned scans, list of data about scans) """ assert user.strip() not in ("", "root"), f"Unexpected user '{user}'" return _get_prepared_scan_list( since, to, limit, offset, order_by, queue=self.queue.queue, user=user, ) class OnDemandEndpoints(RootEndpoints): def __init__(self, sink): super().__init__(sink) self.queue = ScanQueue(sink=sink) @bind("malware", "on-demand", "start") async def ondemand_start(self, path, scan_file, scan_db, **scan_args): if not scan_file and not scan_db: raise ValidationError( "Either --scan-file or --scan-db should be specified" ) if not self.queue.is_empty(): raise ValidationError("On-demand scan is already running") if scan_db: await self.queue.put( paths=[path], resource_type=MalwareScanResourceType.DB, initiator=None, **split_args(scan_args), ) if scan_file: await self.queue.put( paths=[path], resource_type=MalwareScanResourceType.FILE, initiator=None, **split_args(scan_args), ) @bind("malware", "on-demand", "stop") async def ondemand_stop(self, all: bool) -> None: """CLI method to remove scans from ScanQueue - Handles removed scans as aborted if they are detached :param all """ current_scan = self.queue.queue.current_scan if not all and current_scan: scans_to_stop = [current_scan] else: scans_to_stop = list(reversed(self.queue.queue.scans)) scan_ids = [scan.scanid for scan in scans_to_stop] self.queue.remove(scan_ids=scan_ids) for scan in scans_to_stop: kill = scan.scanid == current_scan.scanid await scan.detached_scan.handle_aborted_process( sink=self._sink, kill=kill, exit_type=ExitDetachedScanType.STOPPED, scan_started=scan.started, ) @bind("malware", "on-demand", "status") async def ondemand_status(self): status = self.queue.status() return {"items": status} @bind("malware", "on-demand", "list") async def ondemand_list( self, since, to, limit, offset, order_by=None ) -> Tuple[int, List[Dict[str, Any]]]: """CLI method to print list of scans. - Parses info about scans from DB - Updates info about scans in scan_queue and parses it :param since: scan start timestamp :param to: scan end timestamp :param limit: count of scans to print :param offset: offset of scans in DB to print :param order_by: name of column, by which sort data :return: (number of returned scans, list of data about scans) """ return _get_prepared_scan_list( since, to, limit, offset, order_by, queue=self.queue.queue ) @bind("malware", "on-demand", "queue", "put") async def ondemand_queue_put( self, paths, scan_file, scan_db, prioritize=False, **scan_args ): if not scan_file and not scan_db: raise ValidationError( "Either --scan-file or --scan-db should be specified" ) if scan_db: await self.queue.put( paths=paths, resource_type=MalwareScanResourceType.DB, prioritize=prioritize, **split_args(scan_args), ) if scan_file: await self.queue.put( paths=paths, resource_type=MalwareScanResourceType.FILE, prioritize=prioritize, **split_args(scan_args), ) @bind("malware", "on-demand", "queue", "remove") async def ondemand_queue_remove(self, scan_ids: Optional[List[str]]): current_scan = self.queue.queue.current_scan if not scan_ids: queued_scans = [current_scan] if current_scan else [] self.queue.remove() else: queued_scans = self.queue.queue.find_all(scan_ids) self.queue.remove(scan_ids) for scan in queued_scans: await scan.detached_scan.handle_aborted_process( sink=self._sink, exit_type=ExitDetachedScanType.STOPPED, kill=scan is current_scan, ) @bind("malware", "on-demand", "check-detached") async def ondemand_check_detached(self): """ Check if there are failed on-demand scans and start the agent so that we can handle aborted scans and proceed with the next scan in the queue """ logger.info("Checking detached scan directory for failed scans") for detached_op in _active_detached_ops(dir_lister=_list_dir): _state = detached_op.get_detached_process_state( start_time=PROCESS_START_TIME ) if _state == DetachedState.ABORTED: logger.info("Found failed scan. Waking up agent") _try_wake_up_agent() break if _state == DetachedState.FINISHED: logger.info("Finished scan found. Waking up agent") _try_wake_up_agent() break else: # no break logger.info("No failed on-demand scans found") def _list_dir(_dir): try: yield from os.listdir(_dir) except FileNotFoundError: return [] def _active_detached_ops(*, dir_lister: Callable[[str], Iterable[str]]): for detached_op_cls in ABORTABLE_DETACHED_OPERATIONS: for _id in dir_lister(detached_op_cls.DETACHED_DIR_CLS.DETACHED_DIR): yield detached_op_cls(_id) def _try_wake_up_agent(): try: with socket.socket(socket.AF_UNIX, socket.SOCK_STREAM) as s: s.settimeout(Core.DEFAULT_SOCKET_TIMEOUT) s.connect(GENERIC_SENSOR_SOCKET_PATH) s.send(b'{"method": "MALWARE_CHECK_DETACHED_SCANS"}\n') except (ConnectionRefusedError, FileNotFoundError, socket.timeout): pass def _split_mask(mask): if mask is not None: return list(map(str.strip, mask.split(","))) def split_args(scan_args): args = dict(scan_args) if "file_mask" in args: args["file_patterns"] = _split_mask(args.pop("file_mask")) if "ignore_mask" in args: args["exclude_patterns"] = _split_mask(args.pop("ignore_mask")) return args
webs 1.0 - Enhanced UI