;;; GNU Guix --- Functional package management for GNU ;;; Copyright © 2016, 2017, 2018, 2019, 2020 Eric Bavier ;;; Copyright © 2018 Christopher Baines ;;; Copyright © 2023 Jakob Kirsch ;;; Copyright © 2019–2021 Tobias Geerinckx-Rice ;;; Copyright © 2024 Nicolas Graves ;;; ;;; This file is part of GNU Guix. ;;; ;;; GNU Guix is free software; you can redistribute it and/or modify it ;;; under the terms of the GNU General Public License as published by ;;; the Free Software Foundation; either version 3 of the License, or (at ;;; your option) any later version. ;;; ;;; GNU Guix is distributed in the hope that it will be useful, but ;;; WITHOUT ANY WARRANTY; without even the implied warranty of ;;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the ;;; GNU General Public License for more details. ;;; ;;; You should have received a copy of the GNU General Public License ;;; along with GNU Guix. If not, see . (define-module (gnu packages antivirus) #:use-module ((guix licenses) #:prefix license:) #:use-module (guix build-system cargo) #:use-module (guix build-system cmake) #:use-module (guix build-system gnu) #:use-module (guix gexp) #:use-module (guix packages) #:use-module (guix download) #:use-module (guix git-download) #:use-module (guix utils) #:use-module (gnu packages) #:use-module (gnu packages autotools) #:use-module (gnu packages bash) #:use-module (gnu packages check) #:use-module (gnu packages compression) #:use-module (gnu packages cmake) #:use-module (gnu packages crates-compression) #:use-module (gnu packages crates-crypto) #:use-module (gnu packages crates-graphics) #:use-module (gnu packages crates-io) #:use-module (gnu packages curl) #:use-module (gnu packages ncurses) #:use-module (gnu packages pcre) #:use-module (gnu packages pkg-config) #:use-module (gnu packages protobuf) #:use-module (gnu packages python) #:use-module (gnu packages python-check) #:use-module (gnu packages rust-apps) #:use-module (gnu packages rust) #:use-module (gnu packages tls) #:use-module (gnu packages web) #:use-module (gnu packages xml)) (define-public clamav (package (name "clamav") (version "1.4.2") (source (origin (method url-fetch) (uri (list (string-append "https://www.clamav.net/downloads/production/" "clamav-" version ".tar.gz") (string-append "https://github.com/Cisco-Talos/clamav/" "releases/download/clamav-" version "/clamav-" version ".tar.gz"))) (sha256 (base32 "0k60wv40jrqwjz80dkjdsxjzkjpnazp667cdd3bckwm8wanzi4lc")) (modules '((guix build utils))) (snippet '(begin (for-each delete-file-recursively '(".cargo" ; vendored rust inputs "win32" ; unnecessary "libclamunrar")))))) ; non-free license (build-system cargo-build-system) (arguments (list #:install-source? #f #:cargo-inputs `(("rust-flate2" ,rust-flate2-1) ("rust-hex" ,rust-hex-0.4) ("rust-libc" ,rust-libc-0.2) ("rust-log" ,rust-log-0.4) ("rust-sha2" ,rust-sha2-0.10) ("rust-tempfile" ,rust-tempfile-3) ("rust-thiserror" ,rust-thiserror-1) ("rust-image" ,rust-image-0.24) ("rust-rustdct" ,rust-rustdct-0.7) ("rust-transpose" ,rust-transpose-0.2) ("rust-num-traits" ,rust-num-traits-0.2) ("rust-base64" ,rust-base64-0.21) ("rust-sha1" ,rust-sha1-0.10) ("rust-unicode-segmentation" ,rust-unicode-segmentation-1) ("rust-bindgen" ,rust-bindgen-0.65) ("rust-onenote-parser-for-clamav" ,rust-onenote-parser-for-clamav) ("rust-hex-literal" ,rust-hex-literal-0.4) ("rust-inflate" ,rust-inflate-0.4) ("rust-bzip2-rs" ,rust-bzip2-rs-0.1) ("rust-byteorder" ,rust-byteorder-1) ("rust-delharc" ,rust-delharc-0.6) ("rust-cbindgen" ,rust-cbindgen)) #:vendor-dir ".cargo/vendor" #:imported-modules `(,@%cmake-build-system-modules ,@%cargo-build-system-modules) #:modules '((guix build cargo-build-system) ((guix build cmake-build-system) #:prefix cmake:) (guix build utils)) #:phases #~(modify-phases %standard-phases ;; There is a test.exe file used in unit tests. (delete 'check-for-pregenerated-files) (add-after 'configure 'fix-cargo-inputs-vendoring (lambda _ ;; Reproduce the original layout, fails with config. (rename-file ".cargo/config" ".cargo/config.toml") ;; Wrongly placed by configure (delete-file-recursively (string-append ".cargo/vendor/clamav-" #$version ".tar.zst")))) (add-after 'patch-cargo-checksums 'cmake-configure (lambda* (#:key outputs #:allow-other-keys) ((assoc-ref cmake:%standard-phases 'configure) #:configure-flags (list "-DENABLE_MILTER=OFF" "-DENABLE_UNRAR=OFF") #:outputs outputs))) (replace 'build (assoc-ref cmake:%standard-phases 'build)) (add-after 'patch-cargo-checksums 'patch-rust-requirements (lambda _ (substitute* "libclamav_rust/Cargo.toml" ;; We make sure we use their fork. (("onenote_parser = .*") "onenote_parser = \"*\"\n") ;; As long as it builds later versions of (c)bindgen are fine (("cbindgen = \\{ version =\".*\",") "cbindgen = { version = \"*\",")))) (replace 'install (assoc-ref cmake:%standard-phases 'install)) (replace 'check (lambda* (#:key tests? #:allow-other-keys) ((assoc-ref cmake:%standard-phases 'check) #:tests? tests? #:test-target "test"))) (add-after 'unpack 'skip-clamd-tests ;; XXX: The check?_clamd tests fail inside the build ;; chroot, but pass outside. (lambda* (#:key tests? #:allow-other-keys) (when tests? (substitute* "unit_tests/CMakeLists.txt" (("clamd_test\\.py" test) (string-append test " -k \"not test_clamd_08_VirusEvent\""))))))))) (native-inputs (list check ; for tests cmake-minimal pkg-config python-minimal python-pytest)) (inputs (list bzip2 curl json-c libressl libxml2 ncurses pcre2 zlib)) (home-page "https://www.clamav.net") (synopsis "Antivirus engine") (description "Clam AntiVirus is an anti-virus toolkit, designed especially for e-mail scanning on mail gateways. It provides a number of utilities including a flexible and scalable multi-threaded daemon, a command line scanner, and advanced tool for automatic database updates. The core of the package is an anti-virus engine available in the form of a shared library.") (properties `((release-monitoring-url . "https://github.com/Cisco-Talos/clamav/releases"))) (license (list license:gpl2+ ;ClamAV itself license:lgpl2.1 ;libclamav/mspack.[ch] license:public-domain ;libclamav/7z/*, libclamav/rijndael.[ch], etc... (package-license bzip2) ;modified bzip2 source in libclamav/nsis license:bsd-2 ;several files in libclamav license:bsd-3 ;libclamav/{regex,qsort.c,swf.[ch] license:ncsa ;libclamav/c++/PointerTracking.cpp license:zlib ;libclamav/inf*.h license:x11 ;libclamav/lzw (license:non-copyleft "libclamav/strlcat.c") ;"OpenBSD" license license:asl2.0 ;libclamav/yara* license:expat)))) ;shared/getopt.[ch] (define-public yara (package (name "yara") (version "4.5.2") (source (origin (method git-fetch) (uri (git-reference (url "https://github.com/VirusTotal/yara") (commit (string-append "v" version)))) (file-name (git-file-name name version)) (sha256 (base32 "1qaw1zv618jkqa5g39p1sdv8s6a7q23ayqfrqv0bj2z1g4nmn95g")))) (build-system gnu-build-system) (arguments (list #:phases #~(modify-phases %standard-phases (add-after 'unpack 'patch-tests (lambda _ (substitute* "tests/test-rules.c" (("/bin/sh") (string-append #$(this-package-input "bash-minimal") "/bin/sh")))))))) (inputs (list openssl bash-minimal)) (native-inputs (list autoconf automake libtool protobuf pkg-config)) (home-page "https://github.com/VirusTotal/yara") (synopsis "Pattern matching swiss knife") (description "YARA is a tool aimed at helping malware researchers to identify and classify malware samples. With YARA you can create rules that evaluate conditions based on textual and binary patterns. This package also provides an executable to scan files, folders, and running processes and report those that match said rules.") (license license:bsd-3)))