Skip to content

UPLOAD_WORKFLOW_BEHAVIOR.md

Latest commit

ย 

History

History
274 lines (214 loc) ยท 7.71 KB

UPLOAD_WORKFLOW_BEHAVIOR.md

File metadata and controls

274 lines (214 loc) ยท 7.71 KB

Upload Workflow Behavior Documentation

Overview

This document explains how file uploads behave in different scenarios with and without ClamAV virus scanning available.

๐Ÿ” Quick Answer

YES, the upload workflow works even if you don't have the ClamAV Docker container running, but the behavior depends on your environment and configuration.

๐Ÿ“Š Behavior Matrix

Scenario ClamAV Status Environment REQUIRE_VIRUS_SCAN Upload Result
Development (Default) โŒ Not Running development not set โœ… ALLOWED with warning
Development (Strict) โŒ Not Running development true โŒ BLOCKED
Development (Skip) โŒ Not Running development any + SKIP_VIRUS_SCAN=true โœ… ALLOWED (no scan)
Production (Default) โŒ Not Running production not set โŒ BLOCKED
Production (Fail-Open) โŒ Not Running production any + VIRUS_SCAN_FAIL_OPEN=true โœ… ALLOWED with warning
Any Environment โœ… Running any any โœ… ALLOWED (with scan)

๐Ÿ› ๏ธ Default Behavior

Development Mode (Lenient)

# Start server normally in development
bin/rails server

# Result: Uploads work WITHOUT ClamAV
# Response includes:
{
  "file": {
    "virus_scan": {
      "status": "clean",
      "safe": true,
      "warning": "Virus scanning unavailable - allowed in development"
    }
  }
}

Production Mode (Strict)

# In production environment
RAILS_ENV=production bin/rails server

# Result: Uploads BLOCKED without ClamAV
# Response:
{
  "message": "File upload rejected: Virus scanning service unavailable"
}

๐Ÿ”ง Configuration Options

1. Require Virus Scanning (Strict Mode)

# Force virus scanning requirement
REQUIRE_VIRUS_SCAN=true bin/rails server

# Behavior: Uploads blocked if ClamAV unavailable
# Use case: Security-critical development/staging

2. Skip Virus Scanning (Fast Development)

# Completely skip virus scanning
SKIP_VIRUS_SCAN=true bin/rails server

# Behavior: No virus scanning attempted
# Use case: Fast local development, testing

3. Fail-Open Policy (Production Fallback)

# Allow uploads when scanner unavailable (NOT RECOMMENDED for production)
VIRUS_SCAN_FAIL_OPEN=true bin/rails server

# Behavior: Uploads allowed with warning if ClamAV down
# Use case: Emergency production fallback

๐Ÿงช Test Results

Scenario 1: Development Without ClamAV

# Setup
docker-compose stop clamav
bin/rails server

# Test Result
โœ… File uploaded successfully in development mode
   Scan status: clean
   Safe: true  
   Warning: Virus scanning unavailable - allowed in development

Scenario 2: Strict Mode Without ClamAV

# Setup
docker-compose stop clamav
REQUIRE_VIRUS_SCAN=true bin/rails server

# Test Result
โŒ Upload correctly blocked in strict mode
   Message: File upload rejected: Virus scanning service unavailable

Scenario 3: With ClamAV Running

# Setup
docker-compose up -d clamav
bin/rails server

# Test Result
โœ… File uploaded successfully with virus scanning
   Scan status: clean (or infected if virus detected)
   Safe: true (or false if virus detected)
   Scanned at: 2025-06-19T13:28:32.459Z

๐Ÿ“ Code Logic

The upload workflow follows this decision tree:

def perform_virus_scan(file)
  # Skip in test environment if configured
  if Rails.env.test? && ENV['SKIP_VIRUS_SCAN'] == 'true'
    return safe_result_with_skip_reason
  end

  scanner = FileProcessing::VirusScanner.instance

  # Check if ClamAV is available
  unless scanner.service_available?
    # In development, be lenient unless explicitly required
    if Rails.env.development? && ENV['REQUIRE_VIRUS_SCAN'] != 'true'
      return safe_result_with_warning  # โœ… ALLOW
    else
      return unsafe_result_with_error  # โŒ BLOCK
    end
  end

  # ClamAV is available - perform actual scan
  scanner.scan_file(file)
end

๐Ÿš€ Practical Usage

For Development

# Option 1: Default (works without ClamAV)
bin/rails server

# Option 2: Fast development (skip scanning)
SKIP_VIRUS_SCAN=true bin/rails server

# Option 3: Test with ClamAV
docker-compose up -d clamav
bin/rails server

For Production

# Recommended: Always require ClamAV
RAILS_ENV=production REQUIRE_VIRUS_SCAN=true bin/rails server

# With ClamAV running
docker-compose up -d clamav
RAILS_ENV=production bin/rails server

For Testing

# Test without virus scanning (faster)
SKIP_VIRUS_SCAN=true bin/rails test

# Test with virus scanning
docker-compose up -d clamav
bin/rails test

๐Ÿ›ก๏ธ Security Implications

โœ… Safe Configurations

  • Production with ClamAV: Full virus protection
  • Development default: Allows development without ClamAV setup
  • Strict mode: Ensures virus scanning when security is critical

โš ๏ธ Caution Required

  • Fail-open in production: Could allow malware if ClamAV fails
  • Skip scanning: No virus protection at all

โŒ Dangerous Configurations

  • Production without ClamAV + fail-open: Security vulnerability

๐Ÿ” How to Check Current Behavior

Check ClamAV Status

# Check if container is running
docker-compose ps clamav

# Test from Rails
bundle exec rails runner "puts FileProcessing::VirusScanner.instance.service_available?"

Test Upload Behavior

# Quick test
ruby script/simple_virus_test.rb

# Comprehensive test
ruby script/test_virus_scanning.rb

# Test without ClamAV
ruby script/test_no_clamav.rb

# Test strict mode
ruby script/test_strict_mode.rb

๐Ÿ“‹ Environment Variables Summary

Variable Default Effect
REQUIRE_VIRUS_SCAN false Force virus scanning requirement
SKIP_VIRUS_SCAN false Skip virus scanning entirely
VIRUS_SCAN_FAIL_OPEN false Allow uploads when scanner fails
CLAMAV_HOST localhost ClamAV server hostname
CLAMAV_PORT 3310 ClamAV server port

๐ŸŽฏ Recommendations

For Development Teams

  1. Default setup: Use normal development mode (works without ClamAV)
  2. Security testing: Periodically test with ClamAV enabled
  3. CI/CD: Use SKIP_VIRUS_SCAN=true for faster automated tests

For Production Deployments

  1. Always run ClamAV: Use docker-compose up -d clamav
  2. Set strict mode: Use REQUIRE_VIRUS_SCAN=true
  3. Monitor health: Check ClamAV container status regularly
  4. Never use fail-open: Avoid VIRUS_SCAN_FAIL_OPEN=true in production

For Security-Critical Applications

  1. Mandatory scanning: Always require ClamAV
  2. Fail-closed policy: Block uploads when scanning fails
  3. Regular testing: Use virus scanning test scripts
  4. Monitor logs: Watch for virus detection events

๐Ÿšจ Troubleshooting

Upload Blocked Unexpectedly

  1. Check if ClamAV container is running: docker-compose ps clamav
  2. Verify Rails can connect: bundle exec rails runner "puts FileProcessing::VirusScanner.instance.service_available?"
  3. Check environment variables: echo $REQUIRE_VIRUS_SCAN

Upload Allowed When It Shouldn't Be

  1. Verify you're not in development mode with default settings
  2. Check if VIRUS_SCAN_FAIL_OPEN=true is set
  3. Confirm ClamAV is actually scanning: check logs

ClamAV Connection Issues

  1. Wait for container to be healthy: docker-compose logs -f clamav
  2. Check port binding: docker-compose ps clamav
  3. Test direct connection: telnet localhost 3310

๐Ÿ“š Related Documentation

  • VIRUS_SCANNING_TEST_RESULTS.md - Detailed test results
  • script/simple_virus_test.rb - Quick verification script
  • script/test_virus_scanning.rb - Comprehensive test suite
  • README.md - General setup and configuration