# # Copyright 2017 Centreon (http://www.centreon.com/) # # Centreon is a full-fledged industry-strength solution that meets # the needs in IT infrastructure and application monitoring for # service performance. # # Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. # package apps::antivirus::clamav::local::mode::updatestatus; use base qw(centreon::plugins::templates::counter); use strict; use warnings; use centreon::plugins::misc; use Net::DNS; use DateTime; my $instance_mode; sub custom_status_threshold { my ($self, %options) = @_; my $status = 'ok'; my $message; eval { local $SIG{__WARN__} = sub { $message = $_[0]; }; local $SIG{__DIE__} = sub { $message = $_[0]; }; my $label = $self->{label}; $label =~ s/-/_/g; if (defined($instance_mode->{option_results}->{'critical_' . $label}) && $instance_mode->{option_results}->{'critical_' . $label} ne '' && eval "$instance_mode->{option_results}->{'critical_' . $label}") { $status = 'critical'; } elsif (defined($instance_mode->{option_results}->{'warning_' . $label}) && $instance_mode->{option_results}->{'warning_' . $label} ne '' && eval "$instance_mode->{option_results}->{'warning_' . $label}") { $status = 'warning'; } }; if (defined($message)) { $self->{output}->output_add(long_msg => 'filter status issue: ' . $message); } return $status; } sub custom_engine_status_output { my ($self, %options) = @_; my $msg = "clamav engine version '" . $self->{result_values}->{current_engine_version} . "/" . $self->{result_values}->{last_engine_version} . "'"; return $msg; } sub custom_maindb_status_output { my ($self, %options) = @_; my $msg = "main.cvd version '" . $self->{result_values}->{current_maindb_version} . "/" . $self->{result_values}->{last_maindb_version} . "', last update " . centreon::plugins::misc::change_seconds(value => $self->{result_values}->{current_maindb_timediff}); return $msg; } sub custom_dailydb_status_output { my ($self, %options) = @_; my $msg = "daily.cvd version '" . $self->{result_values}->{current_dailydb_version} . "/" . $self->{result_values}->{last_dailydb_version} . "', last update " . centreon::plugins::misc::change_seconds(value => $self->{result_values}->{current_dailydb_timediff}); return $msg; } sub custom_engine_status_calc { my ($self, %options) = @_; $self->{result_values}->{current_engine_version} = $options{new_datas}->{$self->{instance} . '_current_engine_version'}; $self->{result_values}->{last_engine_version} = $options{new_datas}->{$self->{instance} . '_last_engine_version'}; return 0; } sub custom_maindb_status_calc { my ($self, %options) = @_; $self->{result_values}->{current_maindb_version} = $options{new_datas}->{$self->{instance} . '_current_maindb_version'}; $self->{result_values}->{last_maindb_version} = $options{new_datas}->{$self->{instance} . '_last_maindb_version'}; $self->{result_values}->{current_maindb_timediff} = $options{new_datas}->{$self->{instance} . '_current_maindb_timediff'}; return 0; } sub custom_dailydb_status_calc { my ($self, %options) = @_; $self->{result_values}->{current_dailydb_version} = $options{new_datas}->{$self->{instance} . '_current_dailydb_version'}; $self->{result_values}->{last_dailydb_version} = $options{new_datas}->{$self->{instance} . '_last_dailydb_version'}; $self->{result_values}->{current_dailydb_timediff} = $options{new_datas}->{$self->{instance} . '_current_dailydb_timediff'}; return 0; } sub set_counters { my ($self, %options) = @_; $self->{maps_counters_type} = [ { name => 'update', type => 0, message_separator => ' - ' }, ]; $self->{maps_counters}->{update} = [ { label => 'engine-status', threshold => 0, set => { key_values => [ { name => 'last_engine_version' }, { name => 'current_engine_version' } ], closure_custom_calc => $self->can('custom_engine_status_calc'), closure_custom_output => $self->can('custom_engine_status_output'), closure_custom_perfdata => sub { return 0; }, closure_custom_threshold_check => $self->can('custom_status_threshold'), } }, { label => 'maindb-status', threshold => 0, set => { key_values => [ { name => 'last_maindb_version' }, { name => 'current_maindb_version' }, { name => 'current_maindb_timediff' } ], closure_custom_calc => $self->can('custom_maindb_status_calc'), closure_custom_output => $self->can('custom_maindb_status_output'), closure_custom_perfdata => sub { return 0; }, closure_custom_threshold_check => $self->can('custom_status_threshold'), } }, { label => 'dailydb-status', threshold => 0, set => { key_values => [ { name => 'last_dailydb_version' }, { name => 'current_dailydb_version' }, { name => 'current_dailydb_timediff' } ], closure_custom_calc => $self->can('custom_dailydb_status_calc'), closure_custom_output => $self->can('custom_dailydb_status_output'), closure_custom_perfdata => sub { return 0; }, closure_custom_threshold_check => $self->can('custom_status_threshold'), } }, ]; } sub new { my ($class, %options) = @_; my $self = $class->SUPER::new(package => __PACKAGE__, %options); bless $self, $class; $self->{version} = '1.0'; $options{options}->add_options(arguments => { "hostname:s" => { name => 'hostname' }, "remote" => { name => 'remote' }, "ssh-option:s@" => { name => 'ssh_option' }, "ssh-path:s" => { name => 'ssh_path' }, "ssh-command:s" => { name => 'ssh_command', default => 'ssh' }, "timeout:s" => { name => 'timeout', default => 30 }, "sudo" => { name => 'sudo' }, "command:s" => { name => 'command' }, "command-path:s" => { name => 'command_path' }, "command-options:s" => { name => 'command_options' }, "warning-engine-status:s" => { name => 'warning_engine_status', default => '' }, "critical-engine-status:s" => { name => 'critical_engine_status', default => '%{last_engine_version} ne %{current_engine_version}' }, "warning-maindb-status:s" => { name => 'warning_maindb_status', default => '' }, "critical-maindb-status:s" => { name => 'critical_maindb_status', default => '%{last_maindb_version} ne %{current_maindb_version}' }, "warning-dailydb-status:s" => { name => 'warning_dailydb_status', default => '' }, "critical-dailydb-status:s" => { name => 'critical_dailydb_status', default => '%{last_dailydb_version} ne %{current_dailydb_version} || %{current_dailydb_timediff} > 432000' }, "nameservers:s@" => { name => 'nameservers' }, "maindb-file:s" => { name => 'maindb_file', default => '/var/lib/clamav/main.cvd' }, "dailydb-file:s" => { name => 'dailydb_file', default => '/var/lib/clamav/daily.cvd' }, }); return $self; } sub check_options { my ($self, %options) = @_; $self->SUPER::check_options(%options); $instance_mode = $self; $self->change_macros(); } sub change_macros { my ($self, %options) = @_; foreach (('warning_engine_status', 'critical_engine_status', 'warning_maindb_status', 'critical_maindb_status', 'warning_dailydb_status', 'critical_dailydb_status')) { if (defined($self->{option_results}->{$_})) { $self->{option_results}->{$_} =~ s/%\{(.*?)\}/\$self->{result_values}->{$1}/g; } } $self->{clamav_command} = 'echo "==== CLAMD ===" ; clamd -V ; echo "==== DAILY ===="; sigtool --info ' . $self->{option_results}->{dailydb_file} . '; echo "==== MAIN ====" ; sigtool --info ' . $self->{option_results}->{maindb_file}; } sub get_clamav_last_update { my ($self, %options) = @_; #0.99.2:57:23114:1487851834:1:63:45614:290 # field 2 = main.cvd version number # field 3 = daily.cvd version number my $nameservers = []; if (defined($self->{option_results}->{nameservers})) { $nameservers = [@{$self->{option_results}->{nameservers}}]; } my $handle = Net::DNS::Resolver->new( nameservers => $nameservers ); my $txt_query = $handle->query("current.cvd.clamav.net", "TXT"); if (!$txt_query) { $self->{output}->add_option_msg(short_msg => "Unable to get TXT Record : " . $handle->errorstring . "."); $self->{output}->option_exit(); } my @fields = split /:/, ($txt_query->answer)[0]->txtdata; ($self->{last_engine_version}, $self->{last_maindb_version}, $self->{last_dailydb_version}) = ($fields[0], $fields[1], $fields[2]); } sub get_clamav_current_signature_info { my ($self, %options) = @_; if ($options{content} !~ /====\s+$options{label}.*?Build\s+time:\s+(.*?)\n.*?Version:\s+(\d+)/msi) { return ; } $self->{'current_' . $options{label} . 'db_version'} = $2; #13 Jun 2016 09:53 -0400 my $time = $1; if ($time =~ /^\s*(\d+)\s+(\S+)\s+(\d+)\s+(\d+):(\d+)\s+(\S+)/) { my %months = ("Jan" => 1, "Feb" => 2, "Mar" => 3, "Apr" => 4, "May" => 5, "Jun" => 6, "Jul" => 7, "Aug" => 8, "Sep" => 9, "Oct" => 10, "Nov" => 11, "Dec" => 12); my $dt = DateTime->new( year => $3, month => $months{$2}, day => $1, hour => $4, minute => $5, second => 0, time_zone => $6, ); $self->{'current_' . $options{label} . 'db_timediff'} = time() - $dt->epoch; } } sub manage_selection { my ($self, %options) = @_; $self->get_clamav_last_update(); my ($stdout) = centreon::plugins::misc::execute(output => $self->{output}, options => $self->{option_results}, sudo => $self->{option_results}->{sudo}, command => defined($self->{option_results}->{command}) && $self->{option_results}->{command} ne '' ? $self->{option_results}->{command} : $self->{clamav_command}, command_path => $self->{option_results}->{command_path}, command_options => defined($self->{option_results}->{command_options}) && $self->{option_results}->{command_options} ne '' ? $self->{option_results}->{command_options} : undef); #==== CLAMD === #ClamAV 0.99.2/21723/Mon Jun 13 14:53:00 2016 #==== DAILY ==== #File: /var/lib/clamav/daily.cvd #Build time: 13 Jun 2016 09:53 -0400 #Version: 21723 #Signatures: 276682 #Functionality level: 63 #Builder: neo #MD5: 280928f25d175359e6e6a0270d9d4fb2 #Digital signature: yLfcgb9dbgKO2rWpXGa238252jqH7VDsAjnqQsHc+9cbIwiM9wnz3fqyl33G15S4YsMbRR6CYbSTxccKXBJvvxRhgZQJmpCYiThslUKBPo5QhIFcI1QBMfoHKCpf8riB2/xAgI401UkZVJip+6eWFpUJ9aeaFai+Mvinif5BRzi #LibClamAV Warning: ************************************************** #LibClamAV Warning: *** The virus database is older than 7 days! *** #LibClamAV Warning: *** Please update it as soon as possible. *** #LibClamAV Warning: ************************************************** #Verification OK. #==== MAIN ==== #File: /var/lib/clamav/main.cvd #Build time: 16 Mar 2016 23:17 +0000 #Version: 57 #Signatures: 4218790 #Functionality level: 60 #Builder: amishhammer #MD5: 06386f34a16ebeea2733ab037f0536be #Digital signature: AIzk/LYbX8K9OEbR5GMyJ6LWTqSu9ffa5bONcA0FN3+onMlZ2BMRzuyvVURBvAZvOaGPdtMBcgDJSl7fGxDfcxRWhIrQ98f8FPdAQaFPgWu3EX46ufw+IRZnM4irKKYuh1GdCIbsGs6jejWo9iNErsbDqkFSobVBkUJYxBgvqfd #Verification OK. $self->get_clamav_current_signature_info(label => 'daily', content => $stdout); $self->get_clamav_current_signature_info(label => 'main', content => $stdout); if ($stdout =~ /==== CLAMD.*?ClamAV (.*?)\//msi) { $self->{current_engine_version} = $1; } $self->{update} = { last_engine_version => $self->{last_engine_version}, last_maindb_version => $self->{last_maindb_version}, last_dailydb_version => $self->{last_dailydb_version}, current_engine_version => $self->{current_engine_version}, current_maindb_version => $self->{current_maindb_version}, current_maindb_timediff => $self->{current_maindb_timediff}, current_dailydb_version => $self->{current_dailydb_version}, current_dailydb_timediff => $self->{current_dailydb_timediff}, }; } 1; __END__ =head1 MODE Check antivirus update status. =over 8 =item B<--nameservers> Set nameserver to query (can be multiple). The system configuration is used by default. =item B<--remote> Execute command remotely in 'ssh'. =item B<--hostname> Hostname to query (need --remote). =item B<--ssh-option> Specify multiple options like the user (example: --ssh-option='-l=centreon-engine' --ssh-option='-p=52'). =item B<--ssh-path> Specify ssh command path (default: none) =item B<--ssh-command> Specify ssh command (default: 'ssh'). Useful to use 'plink'. =item B<--timeout> Timeout in seconds for the command (Default: 30). =item B<--sudo> Use 'sudo' to execute the command. =item B<--command> Command to get information. Used it you have output in a file. =item B<--command-path> Command path. =item B<--command-options> Command options (Default: '-report -most_columns'). =item B<--maindb-file> Antivirus main.cvd file (Default: '/var/lib/clamav/main.cvd'). =item B<--dailydb-file> Antivirus daily.cvd file (Default: '/var/lib/clamav/daily.cvd'). =item B<--warning-engine-status> Set warning threshold for status (Default: '') Can used special variables like: %{last_engine_version}, %{current_engine_version} =item B<--critical-engine-status> Set critical threshold for status (Default: '%{last_engine_version} ne %{current_engine_version}'). Can used special variables like: %{last_engine_version}, %{current_engine_version} =item B<--warning-maindb-status> Set warning threshold for status (Default: '') Can used special variables like: %{last_maindb_version}, %{current_maindb_version}, %{current_maindb_timediff} =item B<--critical-maindb-status> Set critical threshold for status (Default: '%{last_maindb_version} ne %{current_maindb_version}'). Can used special variables like: %{last_maindb_version}, %{current_maindb_version}, %{current_maindb_timediff} =item B<--warning-dailydb-status> Set warning threshold for status (Default: '') Can used special variables like: %{last_dailydb_version}, %{current_dailydb_version}, %{current_dailydb_timediff} =item B<--critical-dailydb-status> Set critical threshold for status (Default: '%{last_dailydb_version} ne %{current_dailydb_version} || %{current_dailydb_timediff} > 432000'). Can used special variables like: %{last_dailydb_version}, %{current_dailydb_version}, %{current_dailydb_timediff} =back =cut