test: Check clamscan --scan-image and --scan-image-fuzzy-hash

Use the existing clamscan image fuzzy hash tests to verify that both --scan-image=no and also --scan-image-fuzzy-hash=no will disable image fuzzy hash based detection (at least for PNG files).
Cisco-Talos · Mar 14, 2024 · 63e4318 · 63e4318
1 parent 48393b6
commit 63e4318
Showing 1 changed file with 20 additions and 0 deletions.
diff --git a/unit_tests/clamscan/fuzzy_img_hash_test.py b/unit_tests/clamscan/fuzzy_img_hash_test.py
@@ -60,6 +60,26 @@ def test_sigs_good_allmatch(self):
         ]
         self.verify_output(output.out, expected=expected_stdout)
 
+        # Try again with image fuzzy hashing disabled to verify the flag will disable this feature (at least for PNG files)
+        command = '{valgrind} {valgrind_args} {clamscan} -d {path_db} {testfiles} --allmatch --scan-image-fuzzy-hash=no'.format(
+            valgrind=TC.valgrind, valgrind_args=TC.valgrind_args, clamscan=TC.clamscan,
+            path_db=TC.path_tmp / 'good.ldb',
+            testfiles=TC.testfiles,
+        )
+        output = self.execute_command(command)
+
+        assert output.ec == 0  # virus
+
+        # Try again with image scanning disabled to verify that the flag disables this feature (at least for PNG files)
+        command = '{valgrind} {valgrind_args} {clamscan} -d {path_db} {testfiles} --allmatch --scan-image=no'.format(
+            valgrind=TC.valgrind, valgrind_args=TC.valgrind_args, clamscan=TC.clamscan,
+            path_db=TC.path_tmp / 'good.ldb',
+            testfiles=TC.testfiles,
+        )
+        output = self.execute_command(command)
+
+        assert output.ec == 0  # virus
+
     #
     # Next check with the bad signatures
     #