Merge remote-tracking branch 'origin/develop' into ent-8558-inventario-pasa-de-enterprise-open

.gitattributes

@@ -0,0 +1 @@
+*.exe filter=lfs diff=lfs merge=lfs -text

extras/deploy-scripts/pandora_deploy_community.sh

@@ -170,7 +170,7 @@ http://rpms.remirepo.net/enterprise/remi-release-7.rpm \
 https://repo.percona.com/yum/percona-release-latest.noarch.rpm"
 
 execute_cmd "yum install -y $extra_repos" "Installing extra repositories"
-execute_cmd "yum-config-manager --enable remi-php74" "Configuring PHP"
+execute_cmd "yum-config-manager --enable remi-php80" "Configuring PHP"
 
 # Install percona Database
 #[ -f /etc/my.cnf ] && rm -rf /etc/my.cnf
@@ -282,6 +282,8 @@ server_dependencies=" \
     expect \
 	openssh-clients \
     java \
+    bind-utils \
+    whois \
     http://firefly.artica.es/centos7/xprobe2-0.3-12.2.x86_64.rpm \
     http://firefly.artica.es/centos7/wmic-1.4-1.el7.x86_64.rpm \
     https://firefly.artica.es/centos7/pandorawmic-1.0.0-1.x86_64.rpm"

extras/deploy-scripts/pandora_deploy_community_el8.sh

@@ -20,7 +20,7 @@ LOGFILE="/tmp/pandora-deploy-community-$(date +%F).log"
 # define default variables
 [ "$TZ" ] || TZ="Europe/Madrid"
 [ "$MYVER" ] || MYVER=57
-[ "$PHPVER" ] || PHPVER=7
+[ "$PHPVER" ] || PHPVER=8
 [ "$DBHOST" ] || DBHOST=127.0.0.1
 [ "$DBNAME" ] || DBNAME=pandora
 [ "$DBUSER" ] || DBUSER=pandora
@@ -338,6 +338,8 @@ server_dependencies=" \
     expect \
     openssh-clients \
     java \
+    bind-utils \
+    whois \
     http://firefly.artica.es/centos7/xprobe2-0.3-12.2.x86_64.rpm \
     http://firefly.artica.es/centos7/wmic-1.4-1.el7.x86_64.rpm \
     https://firefly.artica.es/centos8/pandorawmic-1.0.0-1.x86_64.rpm"

extras/deploy-scripts/pandora_deploy_community_ubuntu_2204.sh

@@ -0,0 +1,746 @@
+#!/bin/bash
+##############################################################################################################
+# PandoraFMS Community  online installation script for Ubuntu 22.04
+##############################################################################################################
+## Tested versions ##
+# Ubuntu 22.04.1
+
+#avoid promps
+export DEBIAN_FRONTEND=noninteractive
+export NEEDRESTART_SUSPEND=1
+
+#Constants
+PANDORA_CONSOLE=/var/www/html/pandora_console
+PANDORA_SERVER_CONF=/etc/pandora/pandora_server.conf
+PANDORA_AGENT_CONF=/etc/pandora/pandora_agent.conf
+WORKDIR=/opt/pandora/deploy
+
+
+S_VERSION='2022052501'
+LOGFILE="/tmp/pandora-deploy-community-$(date +%F).log"
+
+# define default variables
+[ "$TZ" ] || TZ="Europe/Madrid"
+[ "$PHPVER" ] || PHPVER=8.0
+[ "$DBHOST" ] || DBHOST=127.0.0.1
+[ "$DBNAME" ] || DBNAME=pandora
+[ "$DBUSER" ] || DBUSER=pandora
+[ "$DBPASS" ] || DBPASS=pandora
+[ "$DBPORT" ] || DBPORT=3306
+[ "$DBROOTPASS" ] || DBROOTPASS=pandora
+[ "$SKIP_PRECHECK" ] || SKIP_PRECHECK=0
+[ "$SKIP_DATABASE_INSTALL" ] || SKIP_DATABASE_INSTALL=0
+[ "$SKIP_KERNEL_OPTIMIZATIONS" ] || SKIP_KERNEL_OPTIMIZATIONS=0
+[ "$POOL_SIZE" ] || POOL_SIZE=$(grep -i total /proc/meminfo | head -1 | awk '{printf "%.2f \n", $(NF-1)*0.4/1024}' | sed "s/\\..*$/M/g")
+[ "$PANDORA_BETA" ] || PANDORA_BETA=0
+
+# Ansi color code variables
+red="\e[0;91m"
+green="\e[0;92m"
+cyan="\e[0;36m"
+reset="\e[0m"
+
+# Functions
+
+execute_cmd () {
+    local cmd="$1"
+    local msg="$2"
+
+    echo -e "${cyan}$msg...${reset}"
+    $cmd &>> "$LOGFILE"
+    if [ $? -ne 0 ]; then
+        echo -e "${red}Fail${reset}"
+        [ "$3" ] && echo "$3"
+        echo "Error installing Pandora FMS for detailed error please check log: $LOGFILE"
+        rm -rf "$WORKDIR" &>> "$LOGFILE"
+        exit 1
+    else
+        echo -e "\e[1A\e ${cyan}$msg...${reset} ${green}OK${reset}"
+        return 0
+    fi
+}
+
+check_cmd_status () {
+    if [ $? -ne 0 ]; then
+        echo -e "${red}Fail${reset}"
+        [ "$1" ] && echo "$1"
+        echo "Error installing Pandora FMS for detailed error please check log: $LOGFILE"
+        rm -rf "$WORKDIR" &>> "$LOGFILE"
+        exit 1
+    else
+        echo -e "${green}OK${reset}"
+        return 0
+    fi
+}
+
+check_pre_pandora () {
+    export MYSQL_PWD=$DBPASS
+
+    echo -en "${cyan}Checking environment ... ${reset}"
+    [ -d "$PANDORA_CONSOLE" ] && local fail=true
+    [ -f /usr/bin/pandora_server ] && local fail=true
+    echo "use $DBNAME" | mysql -u$DBUSER -P$DBPORT -h$DBHOST &>> /dev/null && local fail=true
+
+    [ ! $fail ]
+    check_cmd_status 'Error there is a current Pandora FMS installation on this node, please remove it to execute a clean install'
+}
+
+check_repo_connection () {
+    execute_cmd "ping -c 2 firefly.artica.es" "Checking Community repo"
+    execute_cmd "ping -c 2 support.pandorafms.com" "Checking Enterprise repo"
+}
+
+check_root_permissions () {
+    echo -en "${cyan}Checking root account... ${reset}"
+    if [ "$(whoami)" != "root" ]; then
+        echo -e "${red}Fail${reset}"
+        echo "Please use a root account or sudo for installing Pandora FMS"
+        echo "Error installing Pandora FMS for detailed error please check log: $LOGFILE"
+        exit 1
+
+    else
+        echo -e "${green}OK${reset}"
+    fi
+}
+
+## Main
+echo "Starting PandoraFMS Community deployment Ubuntu 22.04 ver. $S_VERSION"
+
+# Ubuntu Version
+if [ ! "$(grep -Ei 'Ubuntu' /etc/lsb-release)" ]; then
+         printf "\n ${red}Error this is not a Ubuntu system, this installer is compatible with Ubuntu systems only${reset}\n"
+         exit 1
+fi
+
+
+echo -en "${cyan}Check Ubuntu Version...${reset}"
+[ $(sed -nr 's/VERSION_ID+=\s*"([0-9][0-9].[0-9][0-9])"$/\1/p' /etc/os-release) == "22.04" ]
+check_cmd_status 'Error OS version, Ubuntu 22.04 is expected'
+
+#Detect OS
+os_name=$(grep ^PRETTY_NAME= /etc/os-release | cut -d '=' -f2 | tr -d '"')
+execute_cmd "echo $os_name" "OS detected: ${os_name}"
+
+# initialice logfile
+execute_cmd "echo 'Starting community deployment' > $LOGFILE" "All installer activity is logged on $LOGFILE"
+echo "Community installer version: $S_VERSION" >> "$LOGFILE"
+
+# Pre checks
+# Root permisions
+check_root_permissions
+
+# Pre installed pandora
+[ "$SKIP_PRECHECK" == 1 ] || check_pre_pandora
+
+#advicing BETA PROGRAM
+[ "$PANDORA_BETA" -ne '0' ] && echo -e "${red}BETA version enable using nightly PandoraFMS packages${reset}"
+
+# Connectivity
+check_repo_connection
+
+#Install awk, sed, grep  if not present
+execute_cmd "apt install -y gawk sed grep" 'Installing needed tools'
+
+# Systemd
+execute_cmd "systemctl --version" "Checking SystemD" 'This is not a SystemD enable system, if tryng to use in a docker env please check: https://github.com/pandorafms/pandorafms/tree/develop/extras/docker/centos8'
+
+# Check memomry greather or equal to 2G
+execute_cmd  "[ $(grep MemTotal /proc/meminfo | awk '{print $2}') -ge 1700000 ]" 'Checking memory (required: 2 GB)'
+
+# Check disk size at least 10 Gb free space
+execute_cmd "[ $(df -BM / | tail -1 | awk '{print $4}' | tr -d M) -gt 10000 ]" 'Checking Disk (required: 10 GB free min)'
+
+# Setting timezone
+rm -rf /etc/localtime &>> "$LOGFILE"
+execute_cmd "timedatectl set-timezone $TZ" "Setting Timezone $TZ"
+
+# Execute tools check
+execute_cmd "awk --version" 'Checking needed tools: awk'
+execute_cmd "grep --version" 'Checking needed tools: grep'
+execute_cmd "sed --version" 'Checking needed tools: sed'
+execute_cmd "apt --version" 'Checking needed tools: apt'
+
+# Creating working directory
+rm -rf "$WORKDIR" &>> "$LOGFILE"
+mkdir -p "$WORKDIR" &>> "$LOGFILE"
+execute_cmd "cd $WORKDIR" "Moving to workdir:  $WORKDIR"
+
+## Install utils
+execute_cmd "apt update" "Updating repos"
+execute_cmd "apt install -y net-tools vim curl wget software-properties-common apt-transport-https" "Installing utils"
+
+#Installing Apache and php-fpm
+[ -e "/etc/apt/sources.list.d/ondrej-ubuntu-php-jammy.list" ] || execute_cmd "add-apt-repository ppa:ondrej/php -y" "Enable ppa:ondrej/php repo"
+execute_cmd "apt update" "Updating repos"
+execute_cmd "apt install -y php$PHPVER-fpm php$PHPVER-common libapache2-mod-fcgid php$PHPVER-cli apache2" "Installing apache and php-fpm"
+#execute_cmd "a2enmod proxy_fcgi setenvif && a2enconf php$PHPVER-fpm" "Enabling php-fpm"
+echo -en "${cyan}Enabling php$PHPVER-fpm...${reset}"
+    a2enmod proxy_fcgi setenvif &>> "$LOGFILE" && a2enconf php$PHPVER-fpm &>> "$LOGFILE"
+check_cmd_status "Error enabling php$PHPVER-fpm "
+systemctl restart php$PHPVER-fpm &>> "$LOGFILE"
+
+# Console dependencies
+	console_dependencies=" \
+	ldap-utils \
+	postfix \
+	wget \
+	graphviz  \
+	xfonts-75dpi \
+	xfonts-100dpi \
+	xfonts-ayu \
+	xfonts-intl-arabic \
+	xfonts-intl-asian \
+	xfonts-intl-phonetic \
+	xfonts-intl-japanese-big \
+	xfonts-intl-european \
+	xfonts-intl-chinese \
+	xfonts-intl-japanese \
+	xfonts-intl-chinese-big \
+	libzstd1 \
+	gir1.2-atk-1.0 \
+	libavahi-common-data \
+	cairo-perf-utils \
+	libfribidi-bin \
+	php$PHPVER-mcrypt \
+	php$PHPVER-gd  \
+	php$PHPVER-curl \
+	php$PHPVER-mysql \
+	php$PHPVER-ldap \
+	php$PHPVER-fileinfo \
+	php$PHPVER-gettext \
+	php$PHPVER-snmp  \
+	php$PHPVER-mbstring \
+	php$PHPVER-zip  \
+	php$PHPVER-xmlrpc \
+	php$PHPVER-xml \
+	php$PHPVER-yaml \
+	libnet-telnet-perl \
+    whois"
+execute_cmd "apt install -y $console_dependencies" "Installing Pandora FMS Console dependencies"
+
+# Server dependencies
+server_dependencies=" \
+	perl  \
+	nmap  \
+	fping \
+	sudo \
+	net-tools \
+	nfdump \
+	expect \
+	openssh-client \
+	postfix \
+	unzip \
+	xprobe \
+	coreutils \
+	libio-compress-perl \
+	libmoosex-role-timer-perl \
+	libdbd-mysql-perl \
+	libcrypt-mysql-perl \
+	libhttp-request-ascgi-perl \
+	liblwp-useragent-chicaching-perl \
+	liblwp-protocol-https-perl \
+	snmp \
+	libnetaddr-ip-perl \
+	libio-socket-ssl-perl \
+	libio-socket-socks-perl \
+	libio-socket-ip-perl \
+	libio-socket-inet6-perl \
+	libnet-telnet-perl \
+	libjson-perl \
+	libencode-perl \
+	libgeo-ip-perl \
+	openjdk-8-jdk "
+execute_cmd "apt install -y $server_dependencies" "Installing Pandora FMS Server dependencies"
+
+# wmic and pandorawmic
+execute_cmd "curl -O https://firefly.artica.es/pandorafms/utils/bin/wmic" "Downloading wmic"
+execute_cmd "curl -O https://firefly.artica.es/pandorafms/utils/bin/pandorawmic" "Downloading pandorawmic"
+echo -en "${cyan}Installing wmic and pandorawmic...${reset}"
+    chmod +x pandorawmic wmic &>> "$LOGFILE" && \
+    cp -a wmic /usr/bin/ &>> "$LOGFILE" && \
+    cp -a pandorawmic /usr/bin/ &>> "$LOGFILE"
+check_cmd_status "Error Installing phanromjs"
+
+# phantomjs
+echo -en "${cyan}Installing phantomjs...${reset}"
+    export PHANTOM_JS="phantomjs-2.1.1-linux-x86_64"
+    export OPENSSL_CONF=/etc/ssl
+    curl -LSs -O "https://firefly.artica.es/pandorafms/utils/$PHANTOM_JS.tar.bz2" &>> "$LOGFILE" && \
+    tar xvjf "$PHANTOM_JS.tar.bz2" &>> "$LOGFILE" && \
+    mv $PHANTOM_JS/bin/phantomjs /usr/bin &>> "$LOGFILE" && \
+    /usr/bin/phantomjs --version &>> "$LOGFILE" 
+check_cmd_status "Error Installing phanromjs"
+
+
+# SDK VMware perl dependencies
+vmware_dependencies=" \
+	lib32z1  \
+    lib32z1 \
+    build-essential \
+    uuid uuid-dev \
+    libssl-dev \
+    perl-doc \
+    libxml-libxml-perl \
+    libcrypt-ssleay-perl \
+    libsoap-lite-perl \
+    libmodule-build-perl"
+execute_cmd "apt install -y $vmware_dependencies" "Installing VMware SDK dependencies"
+execute_cmd "wget https://firefly.artica.es/pandorafms/utils/VMware-vSphere-Perl-SDK-7.0.0-16453907.x86_64.tar.gz" "Downloading VMware SDK"
+echo -en "${cyan}Installing VMware SDK...${reset}"
+    tar xvzf VMware-vSphere-Perl-SDK-7.0.0-16453907.x86_64.tar.gz &>> "$LOGFILE"
+    cd vmware-vsphere-cli-distrib/ &>> "$LOGFILE"
+    sed --follow-symlinks -i -e "s/[^#].*show_EULA().*/  #show_EULA();/g" vmware-install.pl &>> "$LOGFILE"
+    ./vmware-install.pl --default &>> "$LOGFILE"
+check_cmd_status "Error Installing VMware SDK"
+execute_cmd "cpan Crypt::OpenSSL::AES" "Installing extra vmware dependencie" 
+cd $WORKDIR &>> "$LOGFILE"
+
+
+
+# Instant client Oracle
+execute_cmd "mkdir -p /opt/oracle" "Creating Oracle instant client directory /opt/oracle"
+execute_cmd "wget https://download.oracle.com/otn_software/linux/instantclient/19800/instantclient-basic-linux.x64-19.8.0.0.0dbru.zip" "Downloading Oracle instant client"
+execute_cmd "wget https://download.oracle.com/otn_software/linux/instantclient/19800/instantclient-sqlplus-linux.x64-19.8.0.0.0dbru.zip" "Downloading Oracle sqlplus"
+echo -en "${cyan}Installing Oracle instant client...${reset}"
+    rm -fr /opt/oracle/* &>> "$LOGFILE"
+    unzip instantclient-basic-linux.x64-19.8.0.0.0dbru.zip -d /opt/oracle/ &>> "$LOGFILE"
+    unzip instantclient-sqlplus-linux.x64-19.8.0.0.0dbru.zip -d /opt/oracle/ &>> "$LOGFILE"
+check_cmd_status "Error Installing Oracle instant client"
+
+#Configuring env variables
+cat >> /root/.profile << 'EOF_ENV'
+#!/bin/bash
+VERSION=19.8
+export PATH=$PATH:/opt/oracle/instantclient_19_8
+export LD_LIBRARY_PATH=$LD_LIBRARY_PATH:/opt/oracle/instantclient_19_8
+export ORACLE_HOME=/opt/oracle/instantclient_19_8
+EOF_ENV
+
+source '/root/.profile' &>> "$LOGFILE"
+
+#ipam dependencies
+ipam_dependencies=" \
+    xprobe \
+    libnetaddr-ip-perl \
+    coreutils \
+    libdbd-mysql-perl \
+    libxml-simple-perl \
+    libgeo-ip-perl \
+    libio-socket-inet6-perl \
+    libxml-twig-perl \
+    libnetaddr-ip-perl"
+execute_cmd "apt install -y $ipam_dependencies" "Installing IPAM Dependencies"
+
+# MSSQL dependencies el8
+curl -sSL https://packages.microsoft.com/keys/microsoft.asc | tee /etc/apt/trusted.gpg.d/microsoft.asc &>> "$LOGFILE"
+curl -sSL https://packages.microsoft.com/config/ubuntu/20.04/prod.list | tee /etc/apt/sources.list.d/microsoft-prod.list &>> "$LOGFILE"
+apt update &>> "$LOGFILE"
+execute_cmd "env ACCEPT_EULA=Y apt install -y msodbcsql17" "Installing ODBC Driver for Microsoft(R) SQL Server(R)"
+MS_ID=$(head -1 /etc/odbcinst.ini | tr -d '[]') &>> "$LOGFILE"
+
+# Disabling apparmor and ufw
+systemctl stop ufw.service &>> "$LOGFILE"
+systemctl disable ufw &>> "$LOGFILE"
+systemctl stop apparmor &>> "$LOGFILE"
+systemctl disable apparmor &>> "$LOGFILE"
+
+#install mysql
+debconf-set-selections <<< $(echo -n "mysql-server mysql-server/root_password password $DBROOTPASS") &>> "$LOGFILE"
+debconf-set-selections <<< $(echo -n "mysql-server mysql-server/root_password_again password $DBROOTPASS") &>> "$LOGFILE"
+echo -en "${cyan}Installing MySql Server...${reset}"
+    env DEBIAN_FRONTEND=noninteractive apt install -y mysql-server &>> "$LOGFILE"
+check_cmd_status "Error Installing MySql Server"
+
+
+#Configuring Database
+if [ "$SKIP_DATABASE_INSTALL" -eq '0' ] ; then
+    execute_cmd "systemctl start mysql" "Starting database engine"
+
+    export MYSQL_PWD=$DBROOTPASS
+    echo -en "${cyan}Creating Pandora FMS database...${reset}"
+    echo "create database $DBNAME" | mysql -uroot -P$DBPORT -h$DBHOST
+    check_cmd_status "Error creating database $DBNAME, is this an empty node? if you have a previus installation please contact with support."
+
+    echo "CREATE USER  \"$DBUSER\"@'%' IDENTIFIED BY \"$DBPASS\";" | mysql -uroot -P$DBPORT -h$DBHOST
+    echo "ALTER USER \"$DBUSER\"@'%' IDENTIFIED WITH mysql_native_password BY \"$DBPASS\"" | mysql -uroot -P$DBPORT -h$DBHOST        
+    echo "GRANT ALL PRIVILEGES ON $DBNAME.* TO \"$DBUSER\"@'%'" | mysql -uroot -P$DBPORT -h$DBHOST
+fi
+export MYSQL_PWD=$DBPASS
+
+#Generating my.cnf
+cat > /etc/mysql/my.cnf << EOF_DB
+[mysqld]
+datadir=/var/lib/mysql
+user=mysql
+character-set-server=utf8
+skip-character-set-client-handshake
+# Disabling symbolic-links is recommended to prevent assorted security risks
+symbolic-links=0
+# Mysql optimizations for Pandora FMS
+# Please check the documentation in http://pandorafms.com for better results
+
+max_allowed_packet = 64M
+innodb_buffer_pool_size = $POOL_SIZE
+innodb_lock_wait_timeout = 90
+innodb_file_per_table
+innodb_flush_log_at_trx_commit = 0
+innodb_flush_method = O_DIRECT
+innodb_log_file_size = 64M
+innodb_log_buffer_size = 16M
+innodb_io_capacity = 100
+thread_cache_size = 8
+thread_stack    = 256K
+max_connections = 100
+
+key_buffer_size=4M
+read_buffer_size=128K
+
+read_rnd_buffer_size=128K
+sort_buffer_size=128K
+join_buffer_size=4M
+
+sql_mode=""
+
+log-error=/var/log/mysql/error.log
+[mysqld_safe]
+log-error=/var/log/mysqld.log
+pid-file=/var/run/mysqld/mysqld.pid
+
+EOF_DB
+
+execute_cmd "systemctl restart mysql" "Configuring and restarting database engine"
+
+
+#Define packages
+if [ "$PANDORA_BETA" -eq '0' ] ; then
+    [ "$PANDORA_SERVER_PACKAGE" ]       || PANDORA_SERVER_PACKAGE="http://firefly.artica.es/pandorafms/latest/Tarball/pandorafms_server-7.0NG.tar.gz"
+    [ "$PANDORA_CONSOLE_PACKAGE" ]      || PANDORA_CONSOLE_PACKAGE="http://firefly.artica.es/pandorafms/latest/Tarball/pandorafms_console-7.0NG.tar.gz"
+    [ "$PANDORA_AGENT_PACKAGE" ]        || PANDORA_AGENT_PACKAGE="http://firefly.artica.es/pandorafms/latest/Tarball/pandorafms_agent_unix-7.0NG.tar.gz"
+elif [ "$PANDORA_BETA" -ne '0' ] ; then
+    [ "$PANDORA_SERVER_PACKAGE" ]       || PANDORA_SERVER_PACKAGE="http://firefly.artica.es/pandora_enterprise_nightlies/pandorafms_server-latest_x86_64.tar.gz"
+    [ "$PANDORA_CONSOLE_PACKAGE" ]      || PANDORA_CONSOLE_PACKAGE="http://firefly.artica.es/pandora_enterprise_nightlies/pandorafms_console-latest.tar.gz"
+    [ "$PANDORA_AGENT_PACKAGE" ]        || PANDORA_AGENT_PACKAGE="http://firefly.artica.es/pandorafms/latest/Tarball/pandorafms_agent_unix-7.0NG.tar.gz"
+fi
+
+# Downloading Pandora Packages
+cd $WORKDIR &>> "$LOGFILE"
+
+curl -LSs --output pandorafms_console-7.0NG.tar.gz "${PANDORA_CONSOLE_PACKAGE}" &>> "$LOGFILE"
+curl -LSs --output pandorafms_server-7.0NG.tar.gz "${PANDORA_SERVER_PACKAGE}" &>> "$LOGFILE"
+curl -LSs --output pandorafms_agent_unix-7.0NG.tar.gz "${PANDORA_AGENT_PACKAGE}" &>> "$LOGFILE"
+
+# Install PandoraFMS Console
+echo -en "${cyan}Installing PandoraFMS Console...${reset}"
+    tar xvzf pandorafms_console-7.0NG.tar.gz &>> "$LOGFILE" && cp -Ra pandora_console /var/www/html/ &>> "$LOGFILE"
+check_cmd_status "Error installing PandoraFMS  Console"
+rm -f $PANDORA_CONSOLE/*.spec &>> "$LOGFILE"
+
+# Install Pandora FMS Server
+echo -en "${cyan}Installing PandoraFMS Server...${reset}"
+    useradd pandora  &>> "$LOGFILE"
+    tar xvfz $WORKDIR/pandorafms_server-7.0NG.tar.gz &>> $LOGFILE && cd pandora_server && ./pandora_server_installer --install &>> $LOGFILE && cd $WORKDIR &>> $LOGFILE
+check_cmd_status "Error installing PandoraFMS  Server"
+
+#Install agent:
+execute_cmd "apt install -y libyaml-tiny-perl perl coreutils wget curl unzip procps python3 python3-pip" "Installing PandoraFMS Agent Dependencies"
+echo -en "${cyan}Installing PandoraFMS Agent...${reset}"
+    tar xvzf $WORKDIR/pandorafms_agent_unix-7.0NG.tar.gz &>> "$LOGFILE" && cd unix && ./pandora_agent_installer --install &>> $LOGFILE && cp -a tentacle_client /usr/local/bin/ &>> $LOGFILE && cd $WORKDIR
+check_cmd_status "Error installing PandoraFMS Agent"
+
+# Copy gotty utility
+cd $WORKDIR &>> "$LOGFILE"
+execute_cmd "wget https://pandorafms.com/library/wp-content/uploads/2019/11/gotty_linux_amd64.tar.gz" 'Dowloading gotty util'
+tar xvzf gotty_linux_amd64.tar.gz &>> $LOGFILE
+execute_cmd "mv gotty /usr/bin/" 'Installing gotty util'
+
+# Config servicesa
+#Configure apache2
+#Enable SSL connections
+cat > /etc/apache2/conf-available/ssl-params.conf << EOF_PARAM
+SSLCipherSuite EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH
+    
+    SSLProtocol All -SSLv2 -SSLv3 -TLSv1 -TLSv1.1
+    
+    SSLHonorCipherOrder On
+    
+    
+    Header always set X-Frame-Options DENY
+    
+    Header always set X-Content-Type-Options nosniff
+    
+    # Requires Apache >= 2.4
+    
+    SSLCompression off
+    
+    SSLUseStapling on
+    
+    SSLStaplingCache "shmcb:logs/stapling-cache(150000)"
+    
+    
+    # Requires Apache >= 2.4.11
+    
+    SSLSessionTickets Off
+EOF_PARAM
+
+a2enmod ssl &>> "$LOGFILE"
+a2enmod headers &>> "$LOGFILE"
+a2enconf ssl-params &>> "$LOGFILE"
+a2ensite default-ssl &>> "$LOGFILE"
+a2enconf ssl-params &>> "$LOGFILE"
+apache2ctl configtest &>> "$LOGFILE"
+
+execute_cmd "systemctl restart apache2" "Enable SSL mod and Restarting Apache2"
+
+execute_cmd "systemctl enable mysql --now" "Enabling Database service"
+execute_cmd "systemctl enable apache2 --now" "Enabling Apache2 service"
+execute_cmd "systemctl enable php$PHPVER-fpm --now" "Enabling php$PHPVER-fpm service"
+
+
+# Populate Database
+echo -en "${cyan}Loading pandoradb.sql to $DBNAME database...${reset}"
+mysql -u$DBUSER -P$DBPORT -h$DBHOST $DBNAME < $PANDORA_CONSOLE/pandoradb.sql &>> "$LOGFILE"
+check_cmd_status 'Error Loading database schema'
+
+echo -en "${cyan}Loading pandoradb_data.sql to $DBNAME database...${reset}"
+mysql -u$DBUSER -P$DBPORT -h$DBHOST $DBNAME < $PANDORA_CONSOLE/pandoradb_data.sql &>> "$LOGFILE"
+check_cmd_status 'Error Loading database schema data'
+
+# Configure console
+# Set console config file
+cat > $PANDORA_CONSOLE/include/config.php << EO_CONFIG_F
+<?php
+\$config["dbtype"] = "mysql";
+\$config["dbname"]="$DBNAME";
+\$config["dbuser"]="$DBUSER";
+\$config["dbpass"]="$DBPASS";
+\$config["dbhost"]="$DBHOST";
+\$config["homedir"]="$PANDORA_CONSOLE";
+\$config["homeurl"]="/pandora_console";
+error_reporting(0);
+\$ownDir = dirname(__FILE__) . '/';
+include (\$ownDir . "config_process.php");
+EO_CONFIG_F
+
+#Enable allow Override
+cat > /etc/apache2/conf-enabled/pandora_security.conf << EO_CONFIG_F
+<Directory "/var/www/html">
+    Options Indexes FollowSymLinks
+    AllowOverride All
+    Require all granted
+</Directory>
+EO_CONFIG_F
+
+#Enable quickshell proxy
+cat >> /etc/apache2/mods-enabled/00-proxy.conf << 'EO_HTTPD_WSTUNNEL'
+ProxyRequests Off
+<Proxy *>
+    Require all granted
+</Proxy>
+
+ProxyPass /ws ws://127.0.0.1:8080
+ProxyPassReverse /ws ws://127.0.0.1:8080
+EO_HTTPD_WSTUNNEL
+
+# Fixing console permissions
+chmod 600 $PANDORA_CONSOLE/include/config.php &>> "$LOGFILE"
+chown -R www-data:www-data $PANDORA_CONSOLE &>> "$LOGFILE"
+mv $PANDORA_CONSOLE/install.php $PANDORA_CONSOLE/install.done &>> "$LOGFILE"
+
+# Prepare php.ini
+## Prepare php config
+ln -s /etc/php/$PHPVER/fpm/php.ini /etc/
+sed --follow-symlinks -i -e "s/^max_input_time.*/max_input_time = -1/g" /etc/php.ini
+sed --follow-symlinks -i -e "s/^max_execution_time.*/max_execution_time = 0/g" /etc/php.ini
+sed --follow-symlinks -i -e "s/^upload_max_filesize.*/upload_max_filesize = 800M/g" /etc/php.ini
+sed --follow-symlinks -i -e "s/^memory_limit.*/memory_limit = 800M/g" /etc/php.ini
+sed --follow-symlinks -i -e "s/.*post_max_size =.*/post_max_size = 800M/" /etc/php.ini
+sed --follow-symlinks -i -e "s/^disable_functions/;disable_functions/" /etc/php.ini
+
+#adding 900s to httpd timeout
+#echo 'TimeOut 900' > /etc/httpd/conf.d/timeout.conf
+
+cat > /var/www/html/index.html << EOF_INDEX
+<meta HTTP-EQUIV="REFRESH" content="0; url=/pandora_console/">
+EOF_INDEX
+
+execute_cmd "systemctl restart apache2" "Restarting apache2 after configuration"
+execute_cmd "systemctl restart php$PHPVER-fpm" "Restarting php$PHPVER-fpm after configuration"
+
+# prepare snmptrapd
+cat > /etc/snmp/snmptrapd.conf << EOF
+authCommunity log public
+disableAuthorization yes
+EOF
+
+# Prepare Server conf
+sed -i -e "s/^dbhost.*/dbhost $DBHOST/g" $PANDORA_SERVER_CONF
+sed -i -e "s/^dbname.*/dbname $DBNAME/g" $PANDORA_SERVER_CONF
+sed -i -e "s/^dbuser.*/dbuser $DBUSER/g" $PANDORA_SERVER_CONF
+sed -i -e "s|^dbpass.*|dbpass $DBPASS|g" $PANDORA_SERVER_CONF
+sed -i -e "s/^dbport.*/dbport $DBPORT/g" $PANDORA_SERVER_CONF
+sed -i -e "s/^#.mssql_driver.*/mssql_driver $MS_ID/g" $PANDORA_SERVER_CONF
+
+# Adding group www-data to pandora server conf.
+grep -q "group www-data" $PANDORA_SERVER_CONF || \
+cat >> $PANDORA_SERVER_CONF << EOF_G
+
+#Adding group www-data to assing remote-config permission correctly for ubuntu 22.04
+group www-data
+EOF_G
+
+# Enable agent remote config
+sed -i "s/^remote_config.*$/remote_config 1/g" $PANDORA_AGENT_CONF 
+
+# Set Oracle environment for pandora_server
+cat > /etc/pandora/pandora_server.env << 'EOF_ENV'
+#!/bin/bash
+VERSION=19.8
+export PATH=$PATH:/opt/oracle/instantclient_19_8
+export LD_LIBRARY_PATH=$LD_LIBRARY_PATH:/opt/oracle/instantclient_19_8
+export ORACLE_HOME=/opt/oracle/instantclient_19_8
+export OPENSSL_CONF=/etc/ssl
+EOF_ENV
+
+# Kernel optimization
+
+if [ "$SKIP_KERNEL_OPTIMIZATIONS" -eq '0' ] ; then
+cat >> /etc/sysctl.conf <<EO_KO
+# Pandora FMS Optimization
+
+# default=5
+net.ipv4.tcp_syn_retries = 3
+
+# default=5
+net.ipv4.tcp_synack_retries = 3
+
+# default=1024
+net.ipv4.tcp_max_syn_backlog = 65536
+
+# default=124928
+net.core.wmem_max = 8388608
+
+# default=131071
+net.core.rmem_max = 8388608
+
+# default = 128
+net.core.somaxconn = 1024
+
+# default = 20480
+net.core.optmem_max = 81920
+
+EO_KO
+
+[ -d /dev/lxd/ ] || execute_cmd "sysctl --system" "Applying Kernel optimization"
+fi
+
+# Fix pandora_server.{log,error} permissions to allow Console check them
+chown pandora:www-data /var/log/pandora
+chmod g+s /var/log/pandora
+
+cat > /etc/logrotate.d/pandora_server <<EO_LR
+/var/log/pandora/pandora_server.log
+/var/log/pandora/web_socket.log
+/var/log/pandora/pandora_server.error {
+        su root apache
+        weekly
+        missingok
+        size 300000
+        rotate 3
+        maxage 90
+        compress
+        notifempty
+        copytruncate
+        create 660 pandora apache
+}
+
+/var/log/pandora/pandora_snmptrap.log {
+        su root apache
+        weekly
+        missingok
+        size 500000
+        rotate 1
+        maxage 30
+        notifempty
+        copytruncate
+        create 660 pandora apache
+}
+
+EO_LR
+
+cat > /etc/logrotate.d/pandora_agent <<EO_LRA
+/var/log/pandora/pandora_agent.log {
+        su root apache
+        weekly
+        missingok
+        size 300000
+        rotate 3
+        maxage 90
+        compress
+        notifempty
+        copytruncate
+}
+
+EO_LRA
+
+chmod 0644 /etc/logrotate.d/pandora_server
+chmod 0644 /etc/logrotate.d/pandora_agent
+
+# Add websocket engine start script.
+mv /var/www/html/pandora_console/pandora_websocket_engine /etc/init.d/ &>> "$LOGFILE"
+chmod +x /etc/init.d/pandora_websocket_engine
+
+# Start Websocket engine
+/etc/init.d/pandora_websocket_engine start &>> "$LOGFILE"
+
+# Configure websocket to be started at start.
+systemctl enable pandora_websocket_engine &>> "$LOGFILE"
+
+# Enable pandora ha service
+execute_cmd "/etc/init.d/pandora_server start" "Starting Pandora FMS Server"
+systemctl enable pandora_server &>> "$LOGFILE"
+
+# starting tentacle server
+execute_cmd "service tentacle_serverd start" "Starting Tentacle Server"
+systemctl enable tentacle_serverd &>> "$LOGFILE"
+
+# Enabling condole cron
+execute_cmd "echo \"* * * * * root wget -q -O - --no-check-certificate http://127.0.0.1/pandora_console/enterprise/cron.php >> $PANDORA_CONSOLE/log/cron.log\" >> /etc/crontab" "Enabling Pandora FMS Console cron"
+echo "* * * * * root wget -q -O - --no-check-certificate http://127.0.0.1/pandora_console/enterprise/cron.php >> $PANDORA_CONSOLE/log/cron.log" >> /etc/crontab
+
+## Enabling agent adn configuring Agente
+sed -i "s/^remote_config.*$/remote_config 1/g" $PANDORA_AGENT_CONF &>> "$LOGFILE"
+execute_cmd "/etc/init.d/pandora_agent_daemon start" "Starting PandoraFSM Agent"
+systemctl enable pandora_agent_daemon &>> "$LOGFILE"
+
+#fix path phantomjs
+sed --follow-symlinks -i -e "s/^openssl_conf = openssl_init/#openssl_conf = openssl_init/g" /etc/ssl/openssl.cnf &>> "$LOGFILE"
+
+#SSH banner
+[ "$(curl -s ifconfig.me)" ] && ipplublic=$(curl -s ifconfig.me)
+
+cat > /etc/issue.net << EOF_banner
+
+Welcome to Pandora FMS appliance on CentOS
+------------------------------------------
+Go to Public http://$ipplublic/pandora_console$to to login web console
+$(ip addr | grep -w "inet" | grep -v "127.0.0.1" | grep -v "172.17.0.1" | awk '{print $2}' | awk -F '/' '{print "Go to Local http://"$1"/pandora_console to login web console"}')
+
+You can find more information at http://pandorafms.com
+
+EOF_banner
+
+rm -f /etc/issue
+ln -s /etc/issue.net /etc/issue
+
+echo 'Banner /etc/issue.net' >> /etc/ssh/sshd_config
+
+# Remove temporary files
+execute_cmd "echo done" "Pandora FMS Community installed"
+cd "$HOME"
+execute_cmd "rm -rf $WORKDIR" "Removing temporary files"
+
+# Print nice finish message
+GREEN='\033[01;32m'
+NONE='\033[0m'
+printf " -> Go to Public ${green}http://"$ipplublic"/pandora_console${reset} to manage this server"
+ip addr | grep -w "inet" | grep -v "127.0.0.1" | grep -v -e "172.1[0-9].0.1" | awk '{print $2}' | awk -v g=$GREEN -v n=$NONE -F '/' '{printf "\n -> Go to Local "g"http://"$1"/pandora_console"n" to manage this server \n -> Use these credentials to log in Pandora Console "g"[ User: admin / Password: pandora ]"n" \n"}'

pandora_agents/pc/AIX/pandora_agent.conf

@@ -1,5 +1,5 @@
 # Base config file for Pandora FMS agents
-# Version 7.0NG.764, AIX version
+# Version 7.0NG.767, AIX version
 # Licensed under GPL license v2,
 # Copyright (c) 2003-2021 Artica Soluciones Tecnologicas
 # http://www.pandorafms.com

pandora_agents/pc/FreeBSD/pandora_agent.conf

@@ -1,5 +1,5 @@
 # Base config file for Pandora FMS agents
-# Version 7.0NG.764, FreeBSD Version
+# Version 7.0NG.767, FreeBSD Version
 # Licensed under GPL license v2,
 # Copyright (c) 2003-2021 Artica Soluciones Tecnologicas
 # http://www.pandorafms.com

pandora_agents/pc/HP-UX/pandora_agent.conf

@@ -1,5 +1,5 @@
 # Base config file for Pandora FMS agents
-# Version 7.0NG.764, HP-UX Version
+# Version 7.0NG.767, HP-UX Version
 # Licensed under GPL license v2,
 # Copyright (c) 2003-2021 Artica Soluciones Tecnologicas
 # http://www.pandorafms.com

pandora_agents/pc/Linux/pandora_agent.conf

@@ -1,5 +1,5 @@
 # Base config file for Pandora FMS agents
-# Version 7.0NG.764, GNU/Linux
+# Version 7.0NG.767, GNU/Linux
 # Licensed under GPL license v2,
 # Copyright (c) 2003-2021 Artica Soluciones Tecnologicas
 # http://www.pandorafms.com

pandora_agents/pc/NT4/pandora_agent.conf

@@ -1,5 +1,5 @@
 # Base config file for Pandora FMS agents
-# Version 7.0NG.764, GNU/Linux
+# Version 7.0NG.767, GNU/Linux
 # Licensed under GPL license v2,
 # Copyright (c) 2003-2021 Artica Soluciones Tecnologicas
 # http://www.pandorafms.com

pandora_agents/pc/SunOS/pandora_agent.conf

@@ -1,5 +1,5 @@
 # Base config file for Pandora FMS agents
-# Version 7.0NG.764, Solaris Version
+# Version 7.0NG.767, Solaris Version
 # Licensed under GPL license v2,
 # Copyright (c) 2003-2021 Artica Soluciones Tecnologicas
 # http://www.pandorafms.com

pandora_agents/pc/Win32/pandora_agent.conf

@@ -1,6 +1,6 @@
 # Base config file for Pandora FMS Windows Agent
 # (c) 2006-2021 Artica Soluciones Tecnologicas 
-# Version 7.0NG.764
+# Version 7.0NG.767
 # This program is Free Software, you can redistribute it and/or modify it
 # under the terms of the GNU General Public Licence as published by the Free Software
 # Foundation; either version 2 of the Licence or any later version

pandora_agents/pc/tentacle_server

@@ -5,7 +5,7 @@
 # Tentacle have IANA assigned port tpc/41121 as official port.
 ##########################################################################
 # Copyright (c) 2007-2008  Ramon Novoa  <rnovoa@artica.es>
-# Copyright (c) 2005-2010 Artica Soluciones Tecnologicas S.L
+# Copyright (c) 2005-2022 Artica Soluciones Tecnologicas S.L
 #
 # tentacle_server.pl	Tentacle Server. See https://pandorafms.com/docs/ for
 #                       protocol description.
@@ -1740,6 +1740,19 @@ sub callback_stop {
 	Win32::Daemon::StopService();
 }
 
+
+################################################################################
+## SUB check_ssleay_version
+## Print a message if the installed version of Net::SSLeay may leak memory.
+################################################################################
+sub check_ssleay_version {
+	eval {
+		require Net::SSLeay;
+		return unless defined($Net::SSLeay::VERSION) && $Net::SSLeay::VERSION =~ m/^(\d+)\.(\d+)/ && $1 <= 1 && $2 < 88;
+		print_log ("Net::SSLeay version $Net::SSLeay::VERSION detected. Versions prior to 1.88 may leak memory. To upgrade it see: https://metacpan.org/pod/Net::SSLeay");
+	};
+}
+
 ################################################################################
 # Main
 ################################################################################
@@ -1753,12 +1766,20 @@ if ($> == 0 && $^O ne 'MSWin32') {
 # Parse command line options
 parse_options ();
 
+# Try to open the log file.
+if (defined($log_file)) {
+    open(my $fh, ">>", $log_file) || die("Error opening the log file '$log_file': $!.\n");
+    close($fh);
+}
+
 # Check command line arguments
 if ($#ARGV != -1) {
 	print_help ();
 	exit 1;
 }
 
+check_ssleay_version() if $t_ssl == 1;
+
 # Show IPv6 status
 if ($SOCKET_MODULE eq 'IO::Socket::INET') {
 	print_log ("IO::Socket::INET6 is not found. IPv6 is disabled.");

pandora_agents/shellscript/aix/pandora_agent.conf

@@ -1,6 +1,6 @@
 # Fichero de configuracion base de agentes de Pandora
 # Base config file for Pandora agents
-# Version 7.0NG.764, AIX version
+# Version 7.0NG.767, AIX version
 
 # General Parameters
 # ==================

pandora_agents/shellscript/bsd-ipso/pandora_agent.conf

@@ -1,6 +1,6 @@
 # Fichero de configuracion base de agentes de Pandora
 # Base config file for Pandora agents
-# Version 7.0NG.764
+# Version 7.0NG.767
 # FreeBSD/IPSO version
 # Licenced under GPL licence, 2003-2007 Sancho Lerena
 

pandora_agents/shellscript/hp-ux/pandora_agent.conf

@@ -1,6 +1,6 @@
 # Fichero de configuracion base de agentes de Pandora
 # Base config file for Pandora agents
-# Version 7.0NG.764, HPUX Version
+# Version 7.0NG.767, HPUX Version
 
 # General Parameters
 # ==================

pandora_agents/shellscript/linux/pandora_agent.conf

@@ -1,5 +1,5 @@
 # Base config file for Pandora FMS agents
-# Version 7.0NG.764
+# Version 7.0NG.767
 # Licensed under GPL license v2,
 # (c) 2003-2021 Artica Soluciones Tecnologicas
 # please visit http://pandora.sourceforge.net

pandora_agents/shellscript/mac_osx/pandora_agent.conf

@@ -1,5 +1,5 @@
 # Base config file for Pandora FMS agents
-# Version 7.0NG.764
+# Version 7.0NG.767
 # Licensed under GPL license v2,
 # (c) 2003-2021 Artica Soluciones Tecnologicas
 # please visit http://pandora.sourceforge.net

pandora_agents/shellscript/openWRT/pandora_agent.conf

@@ -1,5 +1,5 @@
 # Base config file for Pandora FMS agents
-# Version 7.0NG.764
+# Version 7.0NG.767
 # Licensed under GPL license v2,
 # please visit http://pandora.sourceforge.net
 

pandora_agents/shellscript/solaris/pandora_agent.conf

@@ -1,6 +1,6 @@
 # Fichero de configuracion base de agentes de Pandora
 # Base config file for Pandora agents
-# Version 7.0NG.764, Solaris version
+# Version 7.0NG.767, Solaris version
 
 # General Parameters
 # ==================

pandora_agents/unix/AIX/pandora_agent.conf

@@ -1,5 +1,5 @@
 # Base config file for Pandora FMS agents
-# Version 7.0NG.764, AIX version
+# Version 7.0NG.767, AIX version
 # Licensed under GPL license v2,
 # Copyright (c) 2003-2021 Artica Soluciones Tecnologicas
 # http://www.pandorafms.com

pandora_agents/unix/DEBIAN/control

@@ -1,5 +1,5 @@
 package: pandorafms-agent-unix
-Version: 7.0NG.764-220913
+Version: 7.0NG.767-221219
 Architecture: all
 Priority: optional
 Section: admin

pandora_agents/unix/DEBIAN/make_deb_package.sh

@@ -14,7 +14,7 @@
 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 # GNU General Public License for more details.
 
-pandora_version="7.0NG.764-220913"
+pandora_version="7.0NG.767-221219"
 
 echo "Test if you has the tools for to make the packages."
 whereis dpkg-deb | cut -d":" -f2 | grep dpkg-deb > /dev/null

pandora_agents/unix/Darwin/dmg/build_darwin_dmg.sh

@@ -31,7 +31,7 @@ fi
 if [ "$#" -ge 2 ]; then
 	VERSION="$2"
 else
-	VERSION="7.0NG.764"
+	VERSION="7.0NG.767"
 fi
 
 # Path for the generated DMG file

pandora_agents/unix/Darwin/dmg/extras/distribution.xml

@@ -19,11 +19,11 @@
     <choice id="com.pandorafms.pandorafms_src" visible="false">
         <pkg-ref id="com.pandorafms.pandorafms_src"/>
     </choice>
-    <pkg-ref id="com.pandorafms.pandorafms_src" version="7.0NG.764" onConclusion="none">pandorafms_src.pdk</pkg-ref>
+    <pkg-ref id="com.pandorafms.pandorafms_src" version="7.0NG.767" onConclusion="none">pandorafms_src.pdk</pkg-ref>
     <choice id="com.pandorafms.pandorafms_uninstall" visible="true" customLocation="/Applications">
         <pkg-ref id="com.pandorafms.pandorafms_uninstall"/>
     </choice>
-    <pkg-ref id="com.pandorafms.pandorafms_uninstall" version="7.0NG.764" onConclusion="none">pandorafms_uninstall.pdk</pkg-ref>
+    <pkg-ref id="com.pandorafms.pandorafms_uninstall" version="7.0NG.767" onConclusion="none">pandorafms_uninstall.pdk</pkg-ref>
 <!-- <installation-check script="check()" />
 	<script>
 	<![CDATA[

pandora_agents/unix/Darwin/dmg/files/pandorafms_uninstall/PandoraFMS agent uninstaller.app/Contents/Info.plist

@@ -5,9 +5,9 @@
 	<key>CFBundleIconFile</key>                  <string>pandorafms.icns</string>
     <key>CFBundleIdentifier</key> <string>com.pandorafms.pandorafms_uninstall</string>
 
-    <key>CFBundleVersion</key>            <string>7.0NG.764</string>
-    <key>CFBundleGetInfoString</key>      <string>7.0NG.764 Pandora FMS Agent uninstaller for MacOS by Artica ST on Aug 2020</string>
-    <key>CFBundleShortVersionString</key> <string>7.0NG.764</string>
+    <key>CFBundleVersion</key>            <string>7.0NG.767</string>
+    <key>CFBundleGetInfoString</key>      <string>7.0NG.767 Pandora FMS Agent uninstaller for MacOS by Artica ST on Aug 2020</string>
+    <key>CFBundleShortVersionString</key> <string>7.0NG.767</string>
 	
     <key>NSPrincipalClass</key><string>NSApplication</string>
     <key>NSMainNibFile</key><string>MainMenu</string>

pandora_agents/unix/Darwin/pandora_agent.conf

@@ -1,5 +1,5 @@
 # Base config file for Pandora FMS agents
-# Version 7.0NG.764, GNU/Linux
+# Version 7.0NG.767, GNU/Linux
 # Licensed under GPL license v2,
 # Copyright (c) 2003-2021 Artica Soluciones Tecnologicas
 # http://www.pandorafms.com

pandora_agents/unix/FreeBSD/pandora_agent.conf

@@ -1,5 +1,5 @@
 # Base config file for Pandora FMS agents
-# Version 7.0NG.764, FreeBSD Version
+# Version 7.0NG.767, FreeBSD Version
 # Licensed under GPL license v2,
 # Copyright (c) 2003-2021 Artica Soluciones Tecnologicas
 # http://www.pandorafms.com

pandora_agents/unix/HP-UX/pandora_agent.conf

@@ -1,5 +1,5 @@
 # Base config file for Pandora FMS agents
-# Version 7.0NG.764, HP-UX Version
+# Version 7.0NG.767, HP-UX Version
 # Licensed under GPL license v2,
 # Copyright (c) 2003-2021 Artica Soluciones Tecnologicas
 # http://www.pandorafms.com

pandora_agents/unix/Linux/pandora_agent.conf

@@ -1,5 +1,5 @@
 # Base config file for Pandora FMS agents
-# Version 7.0NG.764, GNU/Linux
+# Version 7.0NG.767, GNU/Linux
 # Licensed under GPL license v2,
 # Copyright (c) 2003-2021 Artica Soluciones Tecnologicas
 # http://www.pandorafms.com
@@ -165,9 +165,15 @@ remote_config 0
 # should consider changing the temporal directory, since /tmp is world writable.
 xml_buffer 1
 
-# Minimum available bytes in the temporal directory to enable the XML buffer
+# Minimum available megabytes in the temporal directory to enable the XML buffer
 temporal_min_size 1024
 
+# Maximum size (in megabytes) allowed for the XML buffer.
+temporal_max_size 1024
+
+# Maximum number of files allowed for the XML buffer.
+temporal_max_files 1024
+
 # Agent mode: Learn (default), No-learn, Autodisable
 # agent_mode autodisable
 

pandora_agents/unix/NT4/pandora_agent.conf

@@ -1,5 +1,5 @@
 # Base config file for Pandora FMS agents
-# Version 7.0NG.764, GNU/Linux
+# Version 7.0NG.767, GNU/Linux
 # Licensed under GPL license v2,
 # Copyright (c) 2003-2021 Artica Soluciones Tecnologicas
 # http://www.pandorafms.com

pandora_agents/unix/NetBSD/pandora_agent.conf

@@ -1,5 +1,5 @@
 # Base config file for Pandora FMS agents
-# Version 7.0NG.764, NetBSD Version
+# Version 7.0NG.767, NetBSD Version
 # Licensed under GPL license v2,
 # Copyright (c) 2003-2021 Artica Soluciones Tecnologicas
 # http://www.pandorafms.com

pandora_agents/unix/SunOS/pandora_agent.conf

@@ -1,5 +1,5 @@
 # Base config file for Pandora FMS agents
-# Version 7.0NG.764, Solaris Version
+# Version 7.0NG.767, Solaris Version
 # Licensed under GPL license v2,
 # Copyright (c) 2003-2021 Artica Soluciones Tecnologicas
 # http://www.pandorafms.com

pandora_agents/unix/pandora_agent

@@ -1014,8 +1014,8 @@ my $Sem = undef;
 # Semaphore used to control the number of threads
 my $ThreadSem = undef;
 
-use constant AGENT_VERSION => '7.0NG.764';
-use constant AGENT_BUILD => '220913';
+use constant AGENT_VERSION => '7.0NG.767';
+use constant AGENT_BUILD => '221219';
 
 # Agent log default file size maximum and instances
 use constant DEFAULT_MAX_LOG_SIZE => 600000;
@@ -1145,7 +1145,9 @@ my %DefaultConf = (
 	'secondary_server_opts' => '',
 	'secondary_temporal' => '/var/spool/pandora',
 	'autotime' => 0,
-	'temporal_min_size' => 1,
+	'temporal_min_size' => 1024,
+	'temporal_max_files' => 1024,
+	'temporal_max_size' => 1024,
 	'timezone_offset' => 0,
 	'pandora_exec' => 'pandora_agent_exec',
 	'agent_threads' => 1,
@@ -2110,13 +2112,13 @@ sub send_xml_file ($) {
 		swap_servers();
 
 		# Secondary buffer.
-		if ($rc_sec != 0 && $Conf{'xml_buffer'} == 1 && temporal_freedisk () > $Conf{'temporal_min_size'}) {
+		if ($rc_sec != 0 && write_to_buffer($Conf{'secondary_temporal'}) == 1) {
 			copy($file, $Conf{'secondary_temporal'}) || die("Error copying file $file to " . $Conf{'secondary_temporal'} . ": $!");
 		}
 	}
 
 	# Primary buffer.
-	if ($rc == 0 || $Conf{'xml_buffer'} == 0 || temporal_freedisk () <= $Conf{'temporal_min_size'}) {
+	if ($rc == 0 || write_to_buffer($Conf{'temporal'}) == 0) {
 		if ($Conf{'debug'} eq '1') {
 			rename($file, $file . "sent");
 		} else {
@@ -2401,6 +2403,11 @@ sub check_collections () {
 			if (open (MD5_FILE, "< $ConfDir/collections/$collection_md5_file")) {
 				$local_collection_md5 = <MD5_FILE>;
 				close MD5_FILE;
+				if ( ! defined ($local_collection_md5) ) {
+					log_message ('Collection', "Size of $ConfDir/collections/$collection_md5_file is 0");
+					unlink ("$ConfDir/collections/$collection_md5_file");
+					$local_collection_md5 = "Size 0";
+				}
 			} else {
 				log_message ('Collection', "Could not open dir $ConfDir/collections/$collection_md5_file");
 				next;
@@ -3761,20 +3768,45 @@ sub kill_signal_handler (){
 }
 
 ################################################################################
-# Get the free disk space in the temporal directory (in bytes).
+# Get the free disk space in the temporal directory (in megabytes).
 ################################################################################
-sub temporal_freedisk () {
+sub temporal_freedisk {
+	my ($temporal) = @_;
 
 	# Call df
 	return 0 unless defined (DF_CMDS->{$OS});
-	my $cmd = DF_CMDS->{$OS} . ' ' . $Conf{'temporal'} . ' | awk \'NR > 1 {print $4}\'';	
+	my $cmd = DF_CMDS->{$OS} . ' ' . $temporal . ' | awk \'NR > 1 {print $4}\'';	
 	my $temporal_freedisk = `$cmd`;
 
 	# Check for errors
 	return 0 unless ($? eq 0);
 
-	# Convert to bytes
-	return 1024 * int ($temporal_freedisk);
+	# Convert from KB to MB.
+	return $temporal_freedisk / 1024;
+}
+
+################################################################################
+# Return the number of data files in the temporal directory and their total
+# size (in megabytes).
+################################################################################
+sub temporal_stats {
+	my ($temporal) = @_;
+	
+	my $file_count = 0;
+	my $file_size = 0;
+	opendir(my $dir, $temporal) or die($!);
+	while (my $f = readdir($dir)) {
+		if ($f =~ m/.data$/ || $f =~ m/.datasent$/) {
+			$file_count += 1;
+			$file_size += (stat $temporal . '/' . $f)[7];
+		}
+	}
+	closedir($dir);
+
+	# Convert from B to MB.
+	$file_size /= 1048576;
+
+	return ($file_count, $file_size);
 }
 
 ################################################################################
@@ -3960,6 +3992,27 @@ sub get_ehkey {
 	return '';
 }
 
+################################################################################
+# Return 1 if XML files should be written to the buffer. 0 otherwise.
+################################################################################
+sub write_to_buffer {
+	my ($temporal) = @_;
+
+	# The XML buffer is disabled.
+	return 0 if ($Conf{'xml_buffer'} == 0);
+
+	# Check available disk space.
+	return 0 if ($Conf{'temporal_min_size'} != 0 && temporal_freedisk($temporal) < $Conf{'temporal_min_size'});
+
+	# Check buffer file count and size limits.
+	my ($file_count, $file_size) = temporal_stats($temporal);
+	return 0 if ($Conf{'temporal_max_files'} != 0 && $file_count > $Conf{'temporal_max_files'});
+	return 0 if ($Conf{'temporal_max_size'} != 0 && $file_size > $Conf{'temporal_max_size'});
+
+	# It's OK to write to the buffer.
+	return 1;
+}
+	
 ################################################################################
 # Main.
 ################################################################################

pandora_agents/unix/pandora_agent.redhat.spec

@@ -2,8 +2,8 @@
 #Pandora FMS Linux Agent
 #
 %define name        pandorafms_agent_unix
-%define version     7.0NG.764
-%define release     220913
+%define version     7.0NG.767
+%define release     221219
 
 Summary:            Pandora FMS Linux agent, PERL version
 Name:               %{name}

pandora_agents/unix/pandora_agent.spec

@@ -2,8 +2,8 @@
 #Pandora FMS Linux Agent
 #
 %define name        pandorafms_agent_unix
-%define version     7.0NG.764
-%define release     220913
+%define version     7.0NG.767
+%define release     221219
 
 Summary:            Pandora FMS Linux agent, PERL version
 Name:               %{name}

pandora_agents/unix/pandora_agent_installer

@@ -9,8 +9,8 @@
 # Please see http://www.pandorafms.org. This code is licensed under GPL 2.0 license.
 # **********************************************************************
 
-PI_VERSION="7.0NG.764"
-PI_BUILD="220913"
+PI_VERSION="7.0NG.767"
+PI_BUILD="221219"
 OS_NAME=`uname -s`
 
 FORCE=0

pandora_agents/unix/plugins/autodiscover

@@ -12,32 +12,34 @@
 #
 ###################################################
 
-from sys import argv
-from sys import path
-from sys import stderr
-from sys import exit
-from subprocess import Popen
-from subprocess import PIPE
-from subprocess import DEVNULL
-from subprocess import getstatusoutput
-import psutil
+try:
+    from sys import argv
+    from sys import stderr
+    from sys import exit
+    from subprocess import Popen
+    from subprocess import PIPE
+    from subprocess import DEVNULL
+    from subprocess import getstatusoutput
+    import psutil
+except ModuleNotFoundError as err:
+    print("{} error: {}. Exiting...".format(argv[0], err), file=stderr)
+    exit(1)
 
-global module_list
 module_list = []
-version = "1.1"
+VERSION = "1.2"
 
 
 #########################################################################################
 # Powershell class
 #########################################################################################
 class PSCheck:
-    @staticmethod 
+    @staticmethod
     def check_service(servicename, option=False, memcpu=False):
         """Check services with powershell by parsing their DisplayName. Returns a dict\
-        list with the name of the service and a boolean with its status.\n 
+        list with the name of the service and a boolean with its status.\n
         Requires service name (case insensitive)."""
         pscall = Popen(["powershell", "Get-Service", "-Name", "'*"+ str(servicename) + "*'",
-                        "|", "Select-Object", "-ExpandProperty", "Name"], 
+                        "|", "Select-Object", "-ExpandProperty", "Name"],
                         stdout=PIPE, stdin=DEVNULL, stderr=DEVNULL, universal_newlines=True)
         result = pscall.communicate()
         result = str(result[0]).strip().split("\n")
@@ -50,15 +52,15 @@ class PSCheck:
                     procname = PSCheck.get_serviceprocess(element)
                     # Get process status
                     parstatus = PSCheck.getstatus(element)
-                    if memcpu == True and parstatus == 1:
+                    if memcpu and parstatus == 1:
                         usage = get_memcpu(str(procname), str(element))
                         output += usage
                     # Generate module with name and status
                     parent = service_module(str(element), parstatus)
                     output += parent
-                    if option == True:
+                    if option:
                         children = PSCheck.getchildren(element, memcpu)
-                        if type(children) == list and len(children) > 1:
+                        if isinstance(children, list) and len(children) > 1:
                             for child in children:
                                 output += child
                         else:
@@ -66,7 +68,6 @@ class PSCheck:
                 else:
                     next
 
-            #if output != '':
             if output and element and procname:
                 return ({"name" : element, "process" : procname, "modules": output})
             else:
@@ -84,22 +85,22 @@ class PSCheck:
             status = PSCheck.getstatus(child)
             kids += service_module(str(child), status, "Service " + str(servicename) + " - Status")
             if status:
-                if memcpu == True:
+                if memcpu:
                     kidsusage = get_memcpu(str(child))
                     for usage in kidsusage:
                         kids += usage
             else:
                 next
-        return (kids)
+        return kids
 
     @staticmethod
     def getstatus(servicename):
         """Gets the status of a given Windows service"""
         running = Popen(["powershell", "Get-Service", "-Name '" + str(servicename) +
-                    "' |", "Select-Object", "-ExpandProperty", "Status"],
-                    stdout=PIPE, stdin=DEVNULL, stderr=DEVNULL, universal_newlines=True)
+                "' |", "Select-Object", "-ExpandProperty", "Status"],
+                stdout=PIPE, stdin=DEVNULL, stderr=DEVNULL, universal_newlines=True)
         status = running.communicate()[0].strip()
-        return (int(status == "Running"))
+        return int(status == "Running")
 
     @staticmethod
     def get_serviceprocess(servicename):
@@ -108,7 +109,7 @@ class PSCheck:
         srv_pid = service.pid()
         process = psutil.Process(srv_pid)
         proc_name = process.name()
-        return (proc_name)
+        return proc_name
 
 
 #########################################################################################
@@ -124,13 +125,13 @@ def service_module(name, value, parent=None):
             "module_parent"     :   parent,
         }]
     #print ("service_module END "+str(now(0,1)))
-    return (module)
+    return module
 
-def get_memcpu (process, servicename):
+def get_memcpu (process, servicename=None):
     """Creates a module for Memory and CPU for a given process. Returns a list of dictionaries."""
     modules = []
     if process:
-        if servicename != None:
+        if servicename is not None:
             parentname = servicename
         else:
             parentname = process
@@ -147,7 +148,7 @@ def get_memcpu (process, servicename):
                 "unit"          :     "%",
                 "module_parent" :    "Service "+ parentname + " - Status",
                 }]
-    return (modules)
+    return modules
 
 def proc_percentbyname(procname): ############# 03/03/2020
     """Gets Memory and CPU usage for a given process. Returns a list."""
@@ -165,7 +166,7 @@ def proc_percentbyname(procname): ############# 03/03/2020
     except psutil.NoSuchProcess:
         next
     #print ("proc_percentbyname END "+str(now(0,1)))
-    return ([sum(memory),sum(cpu)])
+    return [sum(memory),sum(cpu)]
 
 def win_service(servicelist, option=False, memcpu=False):
     """Creates modules for Windows servers."""
@@ -173,7 +174,7 @@ def win_service(servicelist, option=False, memcpu=False):
     for srvc in servicelist:
         if srvc and len(srvc) > 2:
             output = PSCheck.check_service(srvc, option, memcpu)
-            if output != None and output["modules"]:
+            if output is not None and output["modules"]:
                 modules += PSCheck.check_service(srvc.strip(), option, memcpu)["modules"]
                 module_list.append(srvc)
                 #winprocess = output["name"]
@@ -197,9 +198,9 @@ def lnx_service(services_list, memcpu=False):
         if sysctl == 0: 
             ### Systemd available
             syscall = Popen(["systemctl", "show", "-pLoadState", "-pActiveState", srvc], stdout=PIPE,
-                                stdin=DEVNULL, universal_newlines=True)
+                            stdin=DEVNULL, universal_newlines=True)
             result = syscall.communicate()
-            srvstatus= result[0].strip().lower().split("\n")
+            srvstatus = result[0].strip().lower().split("\n")
             if srvstatus[0] == "loadstate=not-found":
                 next
             else:
@@ -212,7 +213,7 @@ def lnx_service(services_list, memcpu=False):
         elif sysctl != 0 and servic == 0: 
             ### Systemd not available, switch to service command
             syscall = Popen(["service", srvc, "status"], stdout=PIPE,
-                                stdin=DEVNULL, stderr=DEVNULL, universal_newlines=True)
+                            stdin=DEVNULL, stderr=DEVNULL, universal_newlines=True)
             result = syscall.communicate()[0].lower()
             if "is running" in result:
                 modules += service_module(srvc, 1)
@@ -223,15 +224,15 @@ def lnx_service(services_list, memcpu=False):
             else:
                 next
         else:
-            print ("No systemd or service commands available. Exiting...", file=stderr)
+            print("No systemd or service commands available. Exiting...", file=stderr)
             exit()
         if status:
             module_list.append(srvc)
-            if memcpu == True:
+            if memcpu:
                 modules += get_memcpu(srvc, None)
     
     for m in modules:
-        print_module (m, 1)
+        print_module(m, 1)
 
 
 #########################################################################################
@@ -339,7 +340,7 @@ def print_module(module, str_flag=False):
 
     #### Print flag
     if str_flag is not False:
-        print (module_xml)
+        print(module_xml)
 
     return (module_xml)
 
@@ -362,7 +363,7 @@ def main():
                         "postfix", "mysqld", "postgres", "oracle", "mongod"]
         discover(OS, service_list)
     else:
-        print ("OS not recognized. Exiting...", file=stderr)
+        print("OS not recognized. Exiting...", file=stderr)
         exit()
 
 def discover(osyst, servicelist):
@@ -383,24 +384,24 @@ def discover(osyst, servicelist):
         elif osyst == "Linux":
             lnx_service(servicelist, memcpu)
     else:
-        print ("\nPandora FMS Autodiscovery plugin v{}".format(version))
-        print ("Checks the status of the services in list and monitors CPU and Memory for each of them.\n")
-        print ("Usage:")
-        print ("{} [options] [--usage]".format(argv[0]))
-        print ("--help")
-        print ("\tPrints this help screen")
-        print ("--default")
-        print ("\tRuns this tool with default monitoring.")
-        print ("\tServices monitored by default for {}:".format(osyst))
-        print ("\t",", ".join(servicelist))
-        print ("--list \"<srvc1,srvc2,srvc3>\"")
-        print ("\tReplaces default services for a given list (comma-separated)")
+        print("\nPandora FMS Autodiscovery plugin v{}".format(VERSION))
+        print("Checks the status of the services in list and monitors CPU and Memory for each of them.\n")
+        print("Usage:")
+        print("{} [options] [--usage]".format(argv[0]))
+        print("--help")
+        print("\tPrints this help screen")
+        print("--default")
+        print("\tRuns this tool with default monitoring.")
+        print("\tServices monitored by default for {}:".format(osyst))
+        print("\t", ", ".join(servicelist))
+        print("--list \"<srvc1,srvc2,srvc3>\"")
+        print("\tReplaces default services for a given list (comma-separated)")
         if osyst == "Windows":
-            print ("\tEach element of the list will be treated as a regexp, but they must be over 2 characters.")
-            print ("\tElements under 2 characters will be discarded.")
-        print ("--usage")
-        print ("\tAdds modules for CPU and Memory usage per service/process (optional, can take some time).\n")
+            print("\tEach element of the list will be treated as a regexp, but they must be over 2 characters.")
+            print("\tElements under 2 characters will be discarded.")
+        print("--usage")
+        print("\tAdds modules for CPU and Memory usage per service/process (optional, can take some time).\n")
 
 
 ##### RUN ####
-main()
+main()

pandora_agents/unix/tentacle_server

@@ -5,7 +5,7 @@
 # Tentacle have IANA assigned port tpc/41121 as official port.
 ##########################################################################
 # Copyright (c) 2007-2008  Ramon Novoa  <rnovoa@artica.es>
-# Copyright (c) 2005-2010 Artica Soluciones Tecnologicas S.L
+# Copyright (c) 2005-2022 Artica Soluciones Tecnologicas S.L
 #
 # tentacle_server.pl	Tentacle Server. See https://pandorafms.com/docs/ for
 #                       protocol description.
@@ -1740,6 +1740,19 @@ sub callback_stop {
 	Win32::Daemon::StopService();
 }
 
+
+################################################################################
+## SUB check_ssleay_version
+## Print a message if the installed version of Net::SSLeay may leak memory.
+################################################################################
+sub check_ssleay_version {
+	eval {
+		require Net::SSLeay;
+		return unless defined($Net::SSLeay::VERSION) && $Net::SSLeay::VERSION =~ m/^(\d+)\.(\d+)/ && $1 <= 1 && $2 < 88;
+		print_log ("Net::SSLeay version $Net::SSLeay::VERSION detected. Versions prior to 1.88 may leak memory. To upgrade it see: https://metacpan.org/pod/Net::SSLeay");
+	};
+}
+
 ################################################################################
 # Main
 ################################################################################
@@ -1753,12 +1766,20 @@ if ($> == 0 && $^O ne 'MSWin32') {
 # Parse command line options
 parse_options ();
 
+# Try to open the log file.
+if (defined($log_file)) {
+    open(my $fh, ">>", $log_file) || die("Error opening the log file '$log_file': $!.\n");
+    close($fh);
+}
+
 # Check command line arguments
 if ($#ARGV != -1) {
 	print_help ();
 	exit 1;
 }
 
+check_ssleay_version() if $t_ssl == 1;
+
 # Show IPv6 status
 if ($SOCKET_MODULE eq 'IO::Socket::INET') {
 	print_log ("IO::Socket::INET6 is not found. IPv6 is disabled.");

pandora_agents/win32/bin/pandora_agent.conf

@@ -1,6 +1,6 @@
 # Base config file for Pandora FMS Windows Agent
 # (c) 2006-2021 Artica Soluciones Tecnologicas 
-# Version 7.0NG.764
+# Version 7.0NG.767
 # This program is Free Software, you can redistribute it and/or modify it
 # under the terms of the GNU General Public Licence as published by the Free Software
 # Foundation; either version 2 of the Licence or any later version
@@ -55,9 +55,15 @@ address auto
 # or setting a fixed IP address, like for example:
 #address 192.168.36.73
 
-# This limits operation if temporal dir has not enough free disk.
+# This limits operation if temporal dir has not enough free disk (in megabytes).
 #temporal_min_size 1024
 
+# Maximum size (in megabytes) allowed for the XML buffer.
+temporal_max_size 1024
+
+# Maximum number of files allowed for the XML buffer.
+temporal_max_files 1024
+
 # Delay start execution X second before start to monitoring nothing 
 #startup_delay 30