';
-html_print_submit_button(
- __('Add key'),
- 'create',
- false,
- 'class="sub next"'
-);
-echo '
';
-
-?>
-
-
diff --git a/pandora_console/godmode/reporting/reporting_builder.php b/pandora_console/godmode/reporting/reporting_builder.php
index 501d4b9edd..fa2e7440fa 100755
--- a/pandora_console/godmode/reporting/reporting_builder.php
+++ b/pandora_console/godmode/reporting/reporting_builder.php
@@ -1908,7 +1908,7 @@ switch ($action) {
$values['id_agent'] = get_parameter('group');
}
- if ($values['type'] = 'sumatory') {
+ if ($values['type'] == 'sumatory') {
$values['uncompressed_module'] = get_parameter('uncompressed_module', 0);
}
@@ -2469,7 +2469,7 @@ switch ($action) {
$values['id_agent'] = get_parameter('group');
}
- if ($values['type'] = 'sumatory') {
+ if ($values['type'] == 'sumatory') {
$values['uncompressed_module'] = get_parameter('uncompressed_module', 0);
}
diff --git a/pandora_console/godmode/setup/setup_general.php b/pandora_console/godmode/setup/setup_general.php
index ab1d1ef269..1385a9f193 100644
--- a/pandora_console/godmode/setup/setup_general.php
+++ b/pandora_console/godmode/setup/setup_general.php
@@ -58,6 +58,16 @@ global $config;
check_login();
+if (is_ajax()) {
+ enterprise_include_once('include/functions_cron.php');
+
+ $test_address = get_parameter('test_address', '');
+
+ $res = enterprise_hook('send_email_attachment', [$test_address, __('This is an email test sent from Pandora FMS. If you can read this, your configuration works.'), __('Testing Pandora FMS email'), null]);
+
+ echo $res;
+}
+
$table = new StdClass();
$table->class = 'databox filters';
$table->id = 'setup_general';
@@ -68,6 +78,12 @@ $table->size[0] = '30%';
$table->style[0] = 'font-weight:bold';
$table->size[1] = '70%';
+$table_mail_conf = new stdClass();
+$table_mail_conf->width = '100%';
+$table_mail_conf->class = 'databox filters';
+$table_mail_conf->data = [];
+$table_mail_conf->style[0] = 'font-weight: bold';
+
// Current config["language"] could be set by user, not taken from global setup !
$current_system_lang = db_get_sql(
'SELECT `value` FROM tconfig WHERE `token` = "language"'
@@ -330,6 +346,49 @@ echo '';
@@ -337,6 +396,25 @@ html_print_submit_button(__('Update'), 'update_button', false, 'class="sub upd"'
echo '
';
echo '';
+// Print the modal window for the summary of each alerts group
+function print_email_test_modal_window($id)
+{
+ // Email config table.
+ $table_mail_test = new stdClass();
+ $table_mail_test->width = '100%';
+ $table_mail_test->class = 'databox filters';
+ $table_mail_test->data = [];
+ $table_mail_test->style[0] = 'font-weight: bold';
+ $table_mail_test->colspan[1][0] = 2;
+
+ $table_mail_test->data[0][0] = __('Address').ui_print_help_tip(__('Email address to which the test email will be sent. Please check your inbox after email is sent.'), true);
+ $table_mail_test->data[0][1] = html_print_input_text('email_test_address', '', '', 40, 100, true);
+
+ $table_mail_test->data[1][0] = html_print_button(__('Send'), 'email_test', false, '', 'class="sub next"', true).' ';
+ html_print_submit_button(
+ __('Add key'),
+ 'create',
+ false,
+ 'class="sub next"'
+ );
+ echo '
';
+
+ echo $this->loadJS();
+
+ }
+
+
+ /**
+ * Generates inputs for new/update forms.
+ *
+ * @param array $values Values or null.
+ *
+ * @return string Inputs.
+ */
+ public function printInputs($values=null)
+ {
+ if (!is_array($values)) {
+ $values = [];
+ }
+
+ $form = [
+ 'action' => '#',
+ 'id' => 'modal_form',
+ 'onsubmit' => 'return false;',
+ 'class' => 'modal',
+ 'extra' => 'autocomplete="new-password"',
+ ];
+
+ $inputs = [];
+
+ $inputs[] = [
+ 'label' => __('Identifier'),
+ 'id' => 'div-identifier',
+ 'arguments' => [
+ 'name' => 'identifier',
+ 'type' => 'text',
+ 'value' => $values['identifier'],
+ 'disabled' => (bool) $values['identifier'],
+ 'return' => true,
+ ],
+ ];
+
+ $inputs[] = [
+ 'label' => __('Group'),
+ 'arguments' => [
+ 'name' => 'id_group',
+ 'id' => 'id_group',
+ 'input_class' => 'flex-row',
+ 'type' => 'select_groups',
+ 'selected' => $values['id_group'],
+ 'return' => true,
+ 'class' => 'w50p',
+ ],
+ ];
+
+ $inputs[] = [
+ 'label' => __('Product'),
+ 'id' => 'div-product',
+ 'arguments' => [
+ 'name' => 'product',
+ 'input_class' => 'flex-row',
+ 'type' => 'select',
+ 'script' => 'calculate_inputs()',
+ 'fields' => [
+ 'CUSTOM' => __('Custom'),
+ 'AWS' => __('Aws'),
+ 'AZURE' => __('Azure'),
+ // 'GOOGLE' => __('Google'),
+ ],
+ 'selected' => (isset($values['product']) ? $values['product'] : 'CUSTOM'),
+ 'disabled' => (bool) $values['product'],
+ 'return' => true,
+ ],
+ ];
+
+ $user_label = __('Username');
+ $pass_label = __('Password');
+ $extra_1_label = __('Extra');
+ $extra_2_label = __('Extra (2)');
+ $extra1 = true;
+ $extra2 = true;
+
+ // Remember to update credential_store.php also.
+ switch ($values['product']) {
+ case 'AWS':
+ $user_label = __('Access key ID');
+ $pass_label = __('Secret access key');
+ $extra1 = false;
+ $extra2 = false;
+ break;
+
+ case 'AZURE':
+ $user_label = __('Account ID');
+ $pass_label = __('Application secret');
+ $extra_1_label = __('Tenant or domain name');
+ $extra_2_label = __('Subscription id');
+ break;
+
+ case 'GOOGLE':
+ // Need further investigation.
+ case 'CUSTOM':
+ $user_label = __('Account ID');
+ $pass_label = __('Password');
+ $extra1 = false;
+ $extra2 = false;
+ default:
+ // Use defaults.
+ break;
+ }
+
+ $inputs[] = [
+ 'label' => $user_label,
+ 'id' => 'div-username',
+ 'arguments' => [
+ 'name' => 'username',
+ 'input_class' => 'flex-row',
+ 'type' => 'text',
+ 'value' => $values['username'],
+ 'return' => true,
+ ],
+ ];
+
+ $inputs[] = [
+ 'label' => $pass_label,
+ 'id' => 'div-password',
+ 'arguments' => [
+ 'name' => 'password',
+ 'input_class' => 'flex-row',
+ 'type' => 'password',
+ 'value' => $values['password'],
+ 'return' => true,
+ ],
+ ];
+
+ if ($extra1) {
+ $inputs[] = [
+ 'label' => $extra_1_label,
+ 'id' => 'div-extra_1',
+ 'arguments' => [
+ 'name' => 'extra_1',
+ 'input_class' => 'flex-row',
+ 'type' => 'text',
+ 'value' => $values['extra_1'],
+ 'return' => true,
+ ],
+ ];
+ }
+
+ if ($extra2) {
+ $inputs[] = [
+ 'label' => $extra_2_label,
+ 'id' => 'div-extra_2',
+ 'arguments' => [
+ 'name' => 'extra_2',
+ 'input_class' => 'flex-row',
+ 'type' => 'text',
+ 'value' => $values['extra_2'],
+ 'return' => true,
+ 'display' => $extra2,
+ ],
+
+ ];
+ }
+
+ return $this->printForm(
+ [
+ 'form' => $form,
+ 'inputs' => $inputs,
+ ],
+ true
+ );
+ }
+
+
+ /**
+ * Loads JS content.
+ *
+ * @return string JS content.
+ */
+ public function loadJS()
+ {
+ ob_start();
+
+ // Javascript content.
+ ?>
+
+ 0) {
- $propagate = db_get_value(
- 'propagate',
- 'tgrupo',
- 'id_grupo',
- $filter['filter_id_group']
- );
-
- if (!$propagate) {
- $sql_filters[] = sprintf(
- ' AND cs.id_group = %d ',
- $filter['filter_id_group']
- );
- } else {
- $groups = [ $filter['filter_id_group'] ];
- $childrens = groups_get_childrens($id_group, null, true);
- if (!empty($childrens)) {
- foreach ($childrens as $child) {
- $groups[] = (int) $child['id_grupo'];
- }
- }
-
- $filter['filter_id_group'] = $groups;
- $sql_filters[] = sprintf(
- ' AND cs.id_group IN (%s) ',
- join(',', $filter['filter_id_group'])
- );
- }
- }
-
- if (isset($filter['group_list']) && is_array($filter['group_list'])) {
- $sql_filters[] = sprintf(
- ' AND cs.id_group IN (%s) ',
- join(',', $filter['group_list'])
- );
- }
-
- if (isset($order)) {
- $dir = 'asc';
- if ($order == 'desc') {
- $dir = 'desc';
- };
-
- if (in_array(
- $sort_field,
- [
- 'group',
- 'identifier',
- 'product',
- 'username',
- 'options',
- ]
- )
- ) {
- $order_by = sprintf(
- 'ORDER BY `%s` %s',
- $sort_field,
- $dir
- );
- }
- }
-
- if (isset($limit) && $limit > 0
- && isset($offset) && $offset >= 0
- ) {
- $pagination = sprintf(
- ' LIMIT %d OFFSET %d ',
- $limit,
- $offset
- );
- }
-
- $sql = sprintf(
- 'SELECT %s
- FROM tcredential_store cs
- LEFT JOIN tgrupo tg
- ON tg.id_grupo = cs.id_group
- WHERE 1=1
- %s
- %s
- %s',
- join(',', $fields),
- join(' ', $sql_filters),
- $order_by,
- $pagination
- );
-
- if ($count) {
- $sql = sprintf('SELECT count(*) as n FROM ( %s ) tt', $sql);
-
- return db_get_value_sql($sql);
- }
-
- return db_get_all_rows_sql($sql);
-}
-
-
-/**
- * Retrieves target key from keystore or false in case of error.
- *
- * @param string $identifier Key identifier.
- *
- * @return array Key or false if error.
- */
-function get_key($identifier)
-{
- return db_get_row_filter(
- 'tcredential_store',
- [ 'identifier' => $identifier ]
- );
-}
-
-
-/**
- * Minor function to dump json message as ajax response.
- *
- * @param string $type Type: result || error.
- * @param string $msg Message.
- * @param boolean $delete Deletion messages.
- *
- * @return void
- */
-function ajax_msg($type, $msg, $delete=false)
-{
- $msg_err = 'Failed while saving: %s';
- $msg_ok = 'Successfully saved into keystore ';
-
- if ($delete) {
- $msg_err = 'Failed while removing: %s';
- $msg_ok = 'Successfully deleted ';
- }
-
- if ($type == 'error') {
- echo json_encode(
- [
- $type => ui_print_error_message(
- __(
- $msg_err,
- $msg
- ),
- '',
- true
- ),
- ]
- );
- } else {
- echo json_encode(
- [
- $type => ui_print_success_message(
- __(
- $msg_ok,
- $msg
- ),
- '',
- true
- ),
- ]
- );
- }
-
- exit;
-}
-
-
-/**
- * Generates inputs for new/update forms.
- *
- * @param array $values Values or null.
- *
- * @return string Inputs.
- */
-function print_inputs($values=null)
-{
- if (!is_array($values)) {
- $values = [];
- }
-
- $return = '';
- $return .= html_print_input(
- [
- 'label' => __('Identifier'),
- 'name' => 'identifier',
- 'input_class' => 'flex-row',
- 'type' => 'text',
- 'value' => $values['identifier'],
- 'disabled' => (bool) $values['identifier'],
- 'return' => true,
- 'script' => 'alert(\'puta\')',
- ]
- );
- $return .= html_print_input(
- [
- 'label' => __('Group'),
- 'name' => 'id_group',
- 'id' => 'id_group',
- 'input_class' => 'flex-row',
- 'type' => 'select_groups',
- 'selected' => $values['id_group'],
- 'return' => true,
- 'class' => 'w50p',
- ]
- );
- $return .= html_print_input(
- [
- 'label' => __('Product'),
- 'name' => 'product',
- 'input_class' => 'flex-row',
- 'type' => 'select',
- 'script' => 'calculate_inputs()',
- 'fields' => [
- 'CUSTOM' => __('Custom'),
- 'AWS' => __('Aws'),
- 'AZURE' => __('Azure'),
- // 'GOOGLE' => __('Google'),
- ],
- 'selected' => $values['product'],
- 'disabled' => (bool) $values['product'],
- 'return' => true,
- ]
- );
- $user_label = __('Username');
- $pass_label = __('Password');
- $extra_1_label = __('Extra');
- $extra_2_label = __('Extra (2)');
- $extra1 = true;
- $extra2 = true;
-
- // Remember to update credential_store.php also.
- switch ($values['product']) {
- case 'AWS':
- $user_label = __('Access key ID');
- $pass_label = __('Secret access key');
- $extra1 = false;
- $extra2 = false;
- break;
-
- case 'AZURE':
- $user_label = __('Account ID');
- $pass_label = __('Application secret');
- $extra_1_label = __('Tenant or domain name');
- $extra_2_label = __('Subscription id');
- break;
-
- case 'GOOGLE':
- // Need further investigation.
- case 'CUSTOM':
- $user_label = __('Account ID');
- $pass_label = __('Password');
- $extra1 = false;
- $extra2 = false;
- default:
- // Use defaults.
- break;
- }
-
- $return .= html_print_input(
- [
- 'label' => $user_label,
- 'name' => 'username',
- 'input_class' => 'flex-row',
- 'type' => 'text',
- 'value' => $values['username'],
- 'return' => true,
- ]
- );
- $return .= html_print_input(
- [
- 'label' => $pass_label,
- 'name' => 'password',
- 'input_class' => 'flex-row',
- 'type' => 'password',
- 'value' => $values['password'],
- 'return' => true,
- ]
- );
- if ($extra1) {
- $return .= html_print_input(
- [
- 'label' => $extra_1_label,
- 'name' => 'extra_1',
- 'input_class' => 'flex-row',
- 'type' => 'text',
- 'value' => $values['extra_1'],
- 'return' => true,
- ]
- );
- }
-
- if ($extra2) {
- $return .= html_print_input(
- [
- 'label' => $extra_2_label,
- 'name' => 'extra_2',
- 'input_class' => 'flex-row',
- 'type' => 'text',
- 'value' => $values['extra_2'],
- 'return' => true,
- 'display' => $extra2,
- ]
- );
- }
-
- return $return;
-}
-
-
-/**
- * Retrieve all identifiers available for current user.
- *
- * @param string $product Target product.
- *
- * @return array Of account identifiers.
- */
-function credentials_list_accounts($product)
-{
- global $config;
-
- check_login();
-
- include_once $config['homedir'].'/include/functions_users.php';
-
- static $user_groups;
-
- if (!isset($user_groups)) {
- $user_groups = users_get_groups(
- $config['id_user'],
- 'AR'
- );
-
- // Always add group 'ALL' because 'ALL' group credentials
- // must be available for all users.
- if (is_array($user_groups)) {
- $user_groups = ([0] + array_keys($user_groups));
- } else {
- $user_groups = [0];
- }
- }
-
- $creds = credentials_get_all(
- ['identifier'],
- [
- 'product' => $product,
- 'group_list' => $user_groups,
- ]
- );
-
- if ($creds === false) {
- return [];
- }
-
- $ret = array_reduce(
- $creds,
- function ($carry, $item) {
- $carry[$item['identifier']] = $item['identifier'];
- return $carry;
- }
- );
-
- return $ret;
-}
+// Deprecated.
diff --git a/pandora_console/include/functions_db.php b/pandora_console/include/functions_db.php
index 3efbf59628..a99ab2e41e 100644
--- a/pandora_console/include/functions_db.php
+++ b/pandora_console/include/functions_db.php
@@ -46,6 +46,25 @@ function db_select_engine()
}
+/**
+ * Connects to target DB.
+ *
+ * @param array $setup Database definition.
+ *
+ * @return mixed Dbconnection or null.
+ */
+function get_dbconnection(array $setup)
+{
+ return mysqli_connect(
+ $setup['dbhost'],
+ $setup['dbuser'],
+ $setup['dbpass'],
+ $setup['dbname'],
+ $setup['dbport']
+ );
+}
+
+
function db_connect($host=null, $db=null, $user=null, $pass=null, $port=null, $critical=true, $charset=null)
{
global $config;
diff --git a/pandora_console/include/functions_events.php b/pandora_console/include/functions_events.php
index ffb36aa3ae..75533f7f56 100644
--- a/pandora_console/include/functions_events.php
+++ b/pandora_console/include/functions_events.php
@@ -2739,6 +2739,10 @@ function events_get_agent(
$date = time_w_fixed_tz($date);
}
+ if (is_metaconsole() && $events_group === false) {
+ $id_server = true;
+ }
+
if (empty($date)) {
$date = get_system_time();
}
diff --git a/pandora_console/include/functions_html.php b/pandora_console/include/functions_html.php
index 08d60dbb6e..12d4aecc01 100644
--- a/pandora_console/include/functions_html.php
+++ b/pandora_console/include/functions_html.php
@@ -98,6 +98,23 @@ function hd($var, $file='', $oneline=false)
}
+/**
+ * Encapsulation (ob) for debug print function.
+ *
+ * @param mixed $var Variable to be dumped.
+ * @param string $file Target file path.
+ * @param boolean $oneline Show in oneline.
+ *
+ * @return string Dump string.
+ */
+function obhd($var, $file='', $oneline=false)
+{
+ ob_start();
+ hd($var, $file, $oneline);
+ return ob_get_clean();
+}
+
+
function debug()
{
$args_num = func_num_args();
@@ -1458,6 +1475,14 @@ function html_print_input_password(
$attr['class'] = $class;
}
+ if ($disabled === false) {
+ // Trick to avoid password completion on most browsers.
+ if ($autocomplete !== 'on') {
+ $disabled = true;
+ $attr['onfocus'] = "this.removeAttribute('readonly');";
+ }
+ }
+
return html_print_input_text_extended($name, $value, 'password-'.$name, $alt, $size, $maxlength, $disabled, '', $attr, $return, true, '', $autocomplete);
}
@@ -1570,6 +1595,7 @@ function html_print_input_image($name, $src, $value, $style='', $return=false, $
'onkeypress',
'onkeydown',
'onkeyup',
+ 'class',
];
foreach ($attrs as $attribute) {
@@ -3152,7 +3178,8 @@ function html_print_input($data, $wrapper='div', $input_only=false)
((isset($data['return']) === true) ? $data['return'] : false),
((isset($data['disabled']) === true) ? $data['disabled'] : false),
((isset($data['required']) === true) ? $data['required'] : false),
- ((isset($data['class']) === true) ? $data['class'] : '')
+ ((isset($data['class']) === true) ? $data['class'] : ''),
+ ((isset($data['autocomplete']) === true) ? $data['autocomplete'] : 'off')
);
break;
diff --git a/pandora_console/include/functions_io.php b/pandora_console/include/functions_io.php
index 32c66ca1e3..baddb18531 100755
--- a/pandora_console/include/functions_io.php
+++ b/pandora_console/include/functions_io.php
@@ -507,7 +507,7 @@ function ___($string /*, variable arguments */)
}
-/*
+/**
* json_encode for multibyte characters.
*
* @param string Text string to be encoded.
@@ -528,7 +528,7 @@ function io_json_mb_encode($string, $encode_options=0)
}
-/*
+/**
* Prepare the given password to be stored in the Pandora FMS Database,
* encrypting it if necessary.
*
@@ -541,16 +541,22 @@ function io_input_password($password)
global $config;
enterprise_include_once('include/functions_crypto.php');
- $ciphertext = enterprise_hook('openssl_encrypt_decrypt', ['encrypt', io_safe_output($password)]);
+ $ciphertext = enterprise_hook(
+ 'openssl_encrypt_decrypt',
+ [
+ 'encrypt',
+ io_safe_input($password),
+ ]
+ );
if ($ciphertext === ENTERPRISE_NOT_HOOK) {
- return $password;
+ return io_safe_input($password);
}
return $ciphertext;
}
-/*
+/**
* Process the given password read from the Pandora FMS Database,
* decrypting it if necessary.
*
@@ -563,10 +569,17 @@ function io_output_password($password)
global $config;
enterprise_include_once('include/functions_crypto.php');
- $plaintext = enterprise_hook('openssl_encrypt_decrypt', ['decrypt', io_safe_output($password)]);
+ $plaintext = enterprise_hook(
+ 'openssl_encrypt_decrypt',
+ [
+ 'decrypt',
+ $password,
+ ]
+ );
+
if ($plaintext === ENTERPRISE_NOT_HOOK) {
- return $password;
+ return io_safe_output($password);
}
- return $plaintext;
+ return io_safe_output($plaintext);
}
diff --git a/pandora_console/include/functions_ui.php b/pandora_console/include/functions_ui.php
index 008c05b8d7..06c4b579ea 100755
--- a/pandora_console/include/functions_ui.php
+++ b/pandora_console/include/functions_ui.php
@@ -2679,6 +2679,7 @@ function get_shape_status_set($type)
case STATUS_MODULE_UNKNOWN:
case STATUS_AGENT_UNKNOWN:
case STATUS_AGENT_DOWN:
+ case STATUS_AGENT_NO_MONITORS:
$return = ['class' => 'status_rounded_rectangles'];
break;
diff --git a/pandora_console/include/javascript/pandora.js b/pandora_console/include/javascript/pandora.js
index 05009e7292..33ab956a1f 100644
--- a/pandora_console/include/javascript/pandora.js
+++ b/pandora_console/include/javascript/pandora.js
@@ -1890,6 +1890,16 @@ function load_modal(settings) {
width = settings.onshow.width;
}
+ settings.target.html("Loading modal...");
+ settings.target
+ .dialog({
+ title: "Loading",
+ close: false,
+ width: 200,
+ buttons: []
+ })
+ .show();
+
$.ajax({
method: "post",
url: settings.url,
@@ -1898,6 +1908,9 @@ function load_modal(settings) {
data: data,
success: function(data) {
settings.target.html(data);
+ if (settings.onload != undefined) {
+ settings.onload(data);
+ }
settings.target.dialog({
resizable: true,
draggable: true,
@@ -1915,7 +1928,9 @@ function load_modal(settings) {
text: settings.modal.cancel,
click: function() {
$(this).dialog("close");
- settings.cleanup();
+ if (typeof settings.cleanup == "function") {
+ settings.cleanup();
+ }
}
},
{
@@ -1925,6 +1940,9 @@ function load_modal(settings) {
click: function() {
if (AJAX_RUNNING) return;
AJAX_RUNNING = 1;
+ if (settings.onsubmit.preaction != undefined) {
+ settings.onsubmit.preaction();
+ }
var formdata = new FormData();
if (settings.extradata) {
settings.extradata.forEach(function(item) {
@@ -1952,7 +1970,9 @@ function load_modal(settings) {
contentType: false,
data: formdata,
success: function(data) {
- settings.ajax_callback(data);
+ if (settings.ajax_callback != undefined) {
+ settings.ajax_callback(data);
+ }
AJAX_RUNNING = 0;
}
});
diff --git a/pandora_console/include/styles/credential_store.css b/pandora_console/include/styles/credential_store.css
index aa77985188..5707d90780 100644
--- a/pandora_console/include/styles/credential_store.css
+++ b/pandora_console/include/styles/credential_store.css
@@ -10,3 +10,33 @@
#new_key select {
width: 60%;
}
+
+ul.wizard li > label:not(.p-switch) {
+ width: auto;
+}
+
+form.top-action-buttons ul.wizard {
+ display: flex;
+ flex-direction: row;
+}
+
+ul.wizard li {
+ margin-right: 1em;
+}
+
+form.modal ul.wizard li {
+ display: flex;
+ flex-direction: row;
+ width: 90%;
+ margin: 0 auto;
+ justify-items: center;
+}
+
+form.modal ul.wizard li * {
+ flex: 1;
+}
+
+ul.wizard li.flex-indep {
+ flex: 1;
+ margin: 0;
+}
diff --git a/pandora_console/include/styles/pandora.css b/pandora_console/include/styles/pandora.css
index 8c12d11d04..27b3094027 100644
--- a/pandora_console/include/styles/pandora.css
+++ b/pandora_console/include/styles/pandora.css
@@ -452,6 +452,9 @@ select:-internal-list-box {
.mw120px {
min-width: 120px;
}
+.mw180px {
+ min-width: 180px;
+}
.mw250px {
min-width: 250px;
}
@@ -3182,6 +3185,7 @@ table#policy_modules td * {
#news_board {
min-width: 530px;
+ width: 100%;
}
#right_column_logon_ok {
diff --git a/pandora_console/include/styles/pandoraPDF.css b/pandora_console/include/styles/pandoraPDF.css
index 9a55b6a1e4..4d78d5c81b 100644
--- a/pandora_console/include/styles/pandoraPDF.css
+++ b/pandora_console/include/styles/pandoraPDF.css
@@ -27,9 +27,6 @@
* GNU General Public License for more details.
* ============================================================================
*/
-table {
- text-align: center;
-}
table.header_table {
width: 100%;
@@ -72,6 +69,7 @@ table.table_beauty tbody tr td {
table.databox {
margin-bottom: 20px;
+ text-align: center;
}
th.title_table_pdf {
diff --git a/pandora_console/include/visual-console-client/vc.main.css b/pandora_console/include/visual-console-client/vc.main.css
index 6b88893b75..a0470c8fcd 100644
--- a/pandora_console/include/visual-console-client/vc.main.css
+++ b/pandora_console/include/visual-console-client/vc.main.css
@@ -307,4 +307,4 @@ form.visual-console-item-edition > input[type="submit"] {
}
-/*# sourceMappingURL=vc.main.css.map*/
\ No newline at end of file
+/*# sourceMappingURL=vc.main.css.map*/
diff --git a/pandora_console/include/web2image.js b/pandora_console/include/web2image.js
index bf183a73c4..09f840e45e 100644
--- a/pandora_console/include/web2image.js
+++ b/pandora_console/include/web2image.js
@@ -61,6 +61,7 @@ page.onConsoleMessage = function(msg) {
page.onError = function(msg) {
console.log(msg);
page.close();
+ phantom.exit();
};
page.onCallback = function(st) {
@@ -74,4 +75,9 @@ page.onCallback = function(st) {
phantom.exit();
};
-page.open(url, "POST", post_data, function(status) {});
+page.open(url, "POST", post_data, function(status) {
+ if (status == "fail") {
+ console.out("Failed to generate chart.");
+ phantom.exit();
+ }
+});
diff --git a/pandora_console/install.php b/pandora_console/install.php
index 5ba3926259..610185a0bf 100644
--- a/pandora_console/install.php
+++ b/pandora_console/install.php
@@ -129,7 +129,7 @@
'index.php?sec=reporting&sec2=godmode/reporting/reporting_builder', 'text' => __('Reporting')]);
diff --git a/pandora_console/pandora_console.redhat.spec b/pandora_console/pandora_console.redhat.spec
index 57c654851d..e25c49aa2f 100644
--- a/pandora_console/pandora_console.redhat.spec
+++ b/pandora_console/pandora_console.redhat.spec
@@ -3,7 +3,7 @@
#
%define name pandorafms_console
%define version 7.0NG.738
-%define release 190919
+%define release 190924
# User and Group under which Apache is running
%define httpd_name httpd
diff --git a/pandora_console/pandora_console.rhel7.spec b/pandora_console/pandora_console.rhel7.spec
index 505c7f7640..13fc340121 100644
--- a/pandora_console/pandora_console.rhel7.spec
+++ b/pandora_console/pandora_console.rhel7.spec
@@ -3,7 +3,7 @@
#
%define name pandorafms_console
%define version 7.0NG.738
-%define release 190919
+%define release 190924
# User and Group under which Apache is running
%define httpd_name httpd
diff --git a/pandora_console/pandora_console.spec b/pandora_console/pandora_console.spec
index 8127bedc75..c56f8c41c9 100644
--- a/pandora_console/pandora_console.spec
+++ b/pandora_console/pandora_console.spec
@@ -3,7 +3,7 @@
#
%define name pandorafms_console
%define version 7.0NG.738
-%define release 190919
+%define release 190924
%define httpd_name httpd
# User and Group under which Apache is running
%define httpd_name apache2
diff --git a/pandora_console/pandoradb.sql b/pandora_console/pandoradb.sql
index 232b340b46..3786c4dad3 100644
--- a/pandora_console/pandoradb.sql
+++ b/pandora_console/pandoradb.sql
@@ -2439,14 +2439,17 @@ CREATE TABLE IF NOT EXISTS `tdashboard` (
-- Table `tdatabase`
-- ---------------------------------------------------------------------
CREATE TABLE IF NOT EXISTS `tdatabase` (
- `id` int(10) unsigned NOT NULL auto_increment,
- `host` varchar(100) default '',
- `os_port` int(4) unsigned default '22',
- `os_user` varchar(100) default '',
- `db_port` int(4) unsigned default '3306',
+ `id` INT(10) unsigned NOT NULL auto_increment,
+ `host` VARCHAR(255) default '',
+ `label` VARCHAR(255) default '',
+ `os_port` INT UNSIGNED NOT NULL DEFAULT 22,
+ `os_user` VARCHAR(255) default '',
+ `db_port` INT UNSIGNED NOT NULL DEFAULT 3306,
`status` tinyint(1) unsigned default '0',
`action` tinyint(1) unsigned default '0',
- `last_error` varchar(255) default '',
+ `ssh_key` TEXT,
+ `ssh_pubkey` TEXT,
+ `last_error` TEXT,
PRIMARY KEY (`id`)
) ENGINE = InnoDB DEFAULT CHARSET=utf8 ;
diff --git a/pandora_console/pandoradb_data.sql b/pandora_console/pandoradb_data.sql
index a02f88fe5f..01f069b8b6 100644
--- a/pandora_console/pandoradb_data.sql
+++ b/pandora_console/pandoradb_data.sql
@@ -1317,7 +1317,8 @@ UPDATE `tnotification_source` SET `enabled`=1 WHERE `description` = 'System
--
INSERT INTO `tlayout`
VALUES
- (1, 'Demo visual console', 0, 'fondo.jpg', 1080, 1920, 'white', 0);
+ (1, 'Demo visual console', 0, 'fondo.jpg', 1080, 1920, 'white', 0),
+ (2,'Demo visual console 2',0,'fondo-keep-alive.jpg',1080,1920,'#FFF',0);
--
-- Dumping data for table `tlayout_data`
@@ -1420,5 +1421,20 @@ VALUES
(94,1,580,904,0,0,'<p style="text-align: center; overflow: hidden;"><span class="visual_font_size_28pt" style="color: #ffffff; font-family: opensans;"><strong><span class="visual_font_size_28pt" style="color: #ffffff; font-family: opensans;">Office 7 - </span></strong></span><span class="visual_font_size_28pt" style="color: #ffffff; font-family: opensans;">Rack 2</span></p>','white',4,3600,1,1,0,0,1,0,0,0,0,'line','down','','',0,0,'default',0,'0.000','0.000',0,0,'analogic_1','time','Europe/Madrid',0,0),
(95,1,132,907,0,0,'<p style="text-align: center; overflow: hidden;"><span class="visual_font_size_28pt" style="color: #ffffff; font-family: opensans;"><strong><span class="visual_font_size_28pt" style="color: #ffffff; font-family: opensans;">Office 7 - </span></strong></span><span class="visual_font_size_28pt" style="color: #ffffff; font-family: opensans;">Rack 1</span></p>','white',4,3600,1,1,0,0,1,0,0,0,0,'line','down','','',0,0,'default',0,'0.000','0.000',0,0,'analogic_1','time','Europe/Madrid',0,0),
(96,1,733,20,0,0,'<p style="overflow: hidden;"><span class="visual_font_size_48pt"><strong><span style="color: #ffffff; font-family: opensans;">OFFICE RACKS</span></strong></span></p>','white',4,3600,1,1,0,0,1,0,0,0,0,'line','down','','',0,0,'default',0,'0.000','0.000',0,0,'analogic_1','time','Europe/Madrid',0,0),
- (97,1,1479,260,174,29,'','rack_server_rack',0,3600,1,1,0,0,1,0,0,0,0,'line','down','','',0,0,'default',0,'0.000','0.000',0,0,'analogic_1','time','Europe/Madrid',0,60)
-;
\ No newline at end of file
+ (97,1,1479,260,174,29,'','rack_server_rack',0,3600,1,1,0,0,1,0,0,0,0,'line','down','','',0,0,'default',0,'0.000','0.000',0,0,'analogic_1','time','Europe/Madrid',0,60),
+ (98,2,709,103,0,400,'','white',19,3600,0,0,0,0,1,0,0,0,0,'line','down','','#FFFFFF',0,0,'default',0,0.000,0.000,0,0,'digital_1','timedate','Europe/Madrid',0,0),
+ (99,2,178,481,111,111,'','status',0,3600,11556,430,0,0,1,0,0,0,0,'line','down','','',0,0,'default',0,0.000,0.000,0,0,'analogic_1','time','Europe/Madrid',0,0),
+ (100,2,542,481,111,111,'','status',0,3600,13,2,0,0,1,0,0,0,0,'line','down','','',0,0,'default',0,0.000,0.000,0,0,'analogic_1','time','Europe/Madrid',0,0),
+ (101,2,905,481,111,111,'','status',0,3600,114,11,0,0,1,0,0,0,0,'line','down','','',0,0,'default',0,0.000,0.000,0,0,'analogic_1','time','Europe/Madrid',0,0),
+ (102,2,1276,481,111,111,'','status',0,3600,7,1,0,0,1,0,0,0,0,'line','down','','',0,0,'default',0,0.000,0.000,0,0,'analogic_1','time','Europe/Madrid',0,0),
+ (103,2,1631,482,111,111,'','status',0,3600,11547,1,0,0,1,0,0,0,0,'line','down','','',0,0,'default',0,0.000,0.000,0,0,'analogic_1','time','Europe/Madrid',0,0),
+ (104,2,157,393,0,0,'
Backups
\n
','white',
+4,3600,0,0,0,0,1,0,0,0,0,'line','down','','',0,0,'default',0,0.000,0.000,0,0,'analogic_1','time','Europe/Madrid',0,0),
+ (105,2,512,382,96,172,'<p style="overflow: hidden;"><span class="visual_font_size_28pt" style="font-family: opensans; color: #ffffff;">DB Status</span></p>
<p style="overflow: hidden;"> </p>','white',4,3600,0,0,0,0,1,0,0,0,0,'line','down','','',0,0,'default',0,0.000,0.000,0,0,'analogic_1','time','Europe/Madrid',0,0),
+ (106,2,886,382,0,0,'
Disk slave
\n
','white',4,3600,0,0,0,0,1,0,0,0,0,'line','down','','',0,0,'default',0,0.000,0.000,0,0,'analogic_1','time','Europe/Madrid',0,0),
+ (107,2,1251,382,0,0,'
Disk /var
\n
','white',4,3600,0,0,0,0,1,0,0,0,0,'line','down','','',0,0,'default',0,0.000,0.000,0,0,'analogic_1','time','Europe/Madrid',0,0),
+ (108,2,1547,382,0,0,'<p style="line-height: 18px; overflow: hidden;"><span class="visual_font_size_28pt" style="color: #ffffff; font-family: opensans;">Authentification</span></p>','white',4,3600,0,0,0,0,1,0,0,0,0,'line','down','','',0,0,'default',0,0.000,0.000,0,0,'analogic_1','time','Europe/Madrid',0,0),
+ (109,2,126,820,0,0,'<p style="line-height: 18px; overflow: hidden;"><strong><span class="visual_font_size_36pt" style="font-family: opensans; color: #ffffff;">Processing</span></strong></p>','white',4,3600,0,0,0,0,1,0,0,0,0,'line','down','','',0,0,'default',0,0.000,0.000,0,0,'analogic_1','time','Europe/Madrid',0,0),
+ (110,2,755,820,0,0,'<p style="line-height: 18px; overflow: hidden;"><strong><span class="visual_font_size_36pt" style="font-family: opensans; color: #ffffff;">Network</span></strong></p>','white',4,3600,0,0,0,0,1,0,0,0,0,'line','down','','',0,0,'default',0,0.000,0.000,0,0,'analogic_1','time','Europe/Madrid',0,0),
+ (111,2,1281,820,0,0,'<p style="line-height: 18px; overflow: hidden;"><strong><span class="visual_font_size_36pt" style="color: #ffffff; font-family: opensans;">Storage</span></strong></p>','white',4,3600,0,0,0,0,1,0,0,0,0,'line','down','','',0,0,'default',0,0.000,0.000,0,0,'analogic_1','time','Europe/Madrid',0,0)
+;
diff --git a/pandora_server/DEBIAN/control b/pandora_server/DEBIAN/control
index ad82103ea8..7cd9b0c5cd 100644
--- a/pandora_server/DEBIAN/control
+++ b/pandora_server/DEBIAN/control
@@ -1,10 +1,10 @@
package: pandorafms-server
-Version: 7.0NG.738-190919
+Version: 7.0NG.738-190924
Architecture: all
Priority: optional
Section: admin
Installed-Size: 640
Maintainer: ÁRTICA ST
Homepage: http://pandorafms.org/
-Depends: perl (>= 5.8), libdbi-perl, libdbd-mysql-perl, libtime-format-perl, libnetaddr-ip-perl, libtime-format-perl, libxml-simple-perl, libxml-twig-perl, libhtml-parser-perl, snmp, snmpd, traceroute, xprobe2, nmap, sudo, libwww-perl, libsocket6-perl, libio-socket-inet6-perl, snmp-mibs-downloader, libjson-perl, libnet-telnet-perl, libencode-locale-perl, libgeo-ip-perl
+Depends: perl (>= 5.8), libdbi-perl, libdbd-mysql-perl, libtime-format-perl, libnetaddr-ip-perl, libtime-format-perl, libxml-simple-perl, libxml-twig-perl, libhtml-parser-perl, snmp, snmpd, traceroute, xprobe2, nmap, sudo, libwww-perl, libsocket6-perl, libio-socket-inet6-perl, libio-socket-ssl-perl, snmp-mibs-downloader, libjson-perl, libnet-telnet-perl, libencode-locale-perl, libgeo-ip-perl
Description: Pandora FMS is a monitoring system for big IT environments. It uses remote tests, or local agents to grab information. Pandora supports all standard OS (Linux, AIX, HP-UX, Solaris and Windows XP,2000/2003), and support multiple setups in HA enviroments. This is the server package. Server makes the remote checks and process information transfer by Pandora FMS agents to the server.
diff --git a/pandora_server/DEBIAN/make_deb_package.sh b/pandora_server/DEBIAN/make_deb_package.sh
index 33b89f2f2e..79c391dbb1 100644
--- a/pandora_server/DEBIAN/make_deb_package.sh
+++ b/pandora_server/DEBIAN/make_deb_package.sh
@@ -14,7 +14,7 @@
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
-pandora_version="7.0NG.738-190919"
+pandora_version="7.0NG.738-190924"
package_cpan=0
package_pandora=1
diff --git a/pandora_server/bin/pandora_server b/pandora_server/bin/pandora_server
index bb177be783..1209922537 100755
--- a/pandora_server/bin/pandora_server
+++ b/pandora_server/bin/pandora_server
@@ -365,9 +365,11 @@ sub pandora_server_tasks ($) {
# COMMON TASKS (master and non-master)
# ---------------------------------------------------------------
-
- # Rotate Log File
if (($counter % 30) == 0) {
+ # Update configuration options from the console.
+ pandora_get_sharedconfig ($pa_config, $dbh);
+
+ # Rotate the log file.
pandora_rotate_logfile($pa_config);
# Set event storm protection
diff --git a/pandora_server/conf/pandora_server.conf.new b/pandora_server/conf/pandora_server.conf.new
index 33d34082c0..6d92d7417d 100644
--- a/pandora_server/conf/pandora_server.conf.new
+++ b/pandora_server/conf/pandora_server.conf.new
@@ -226,8 +226,9 @@ recon_threads 1
dataserver_threads 1
# mta_address: External Mailer (MTA) IP Address to be used by Pandora FMS internal email capabilities
+# If not set, the MTA configuration specified in the Pandora FMS Console will be used.
-mta_address localhost
+#mta_address localhost
# mta_port, this is the mail server port (default 25)
@@ -250,6 +251,10 @@ mta_address localhost
#mta_from Pandora FMS
+# SMTP encryption protocol (none, ssl, starttls)
+
+#mta_encryption none
+
# Set 1 if want eMail deliver alert in separate mail (default).
# Set 0 if want eMail deliver shared mail by all destination.
mail_in_separate 1
diff --git a/pandora_server/conf/pandora_server.conf.windows b/pandora_server/conf/pandora_server.conf.windows
index a602f7abc4..c7c5db64b4 100644
--- a/pandora_server/conf/pandora_server.conf.windows
+++ b/pandora_server/conf/pandora_server.conf.windows
@@ -214,6 +214,7 @@ recon_threads 2
dataserver_threads 2
# mta_address: External Mailer (MTA) IP Address to be used by Pandora FMS internal email capabilities
+# If not set, the MTA configuration specified in the Pandora FMS Console will be used.
#mta_address localhost
@@ -235,6 +236,10 @@ dataserver_threads 2
# probably you need to change it to avoid problems with your antispam
#mta_from pandora@sampledomain.com
+# SMTP encryption protocol (none, ssl, starttls)
+
+#mta_encryption none
+
# xprobe2: Optional package to detect OS types using advanced TCP/IP
# fingerprinting tecniques, much more accurates than stadard nmap.
# If not provided, nmap is used insted xprobe2
diff --git a/pandora_server/lib/PandoraFMS/Config.pm b/pandora_server/lib/PandoraFMS/Config.pm
index 7941e627b6..20934859c7 100644
--- a/pandora_server/lib/PandoraFMS/Config.pm
+++ b/pandora_server/lib/PandoraFMS/Config.pm
@@ -45,7 +45,7 @@ our @EXPORT = qw(
# version: Defines actual version of Pandora Server for this module only
my $pandora_version = "7.0NG.738";
-my $pandora_build = "190919";
+my $pandora_build = "190924";
our $VERSION = $pandora_version." ".$pandora_build;
# Setup hash
@@ -187,6 +187,33 @@ sub pandora_get_sharedconfig ($$) {
[$dbh]
);
$pa_config->{'rb_product_name'} = 'Pandora FMS' unless (defined ($pa_config->{'rb_product_name'}) && $pa_config->{'rb_product_name'} ne '');
+
+ # Mail transport agent configuration. Local configuration takes precedence.
+ if ($pa_config->{"mta_local"} eq 0) {
+ $pa_config->{"mta_address"} = pandora_get_tconfig_token ($dbh, 'email_smtpServer', '');
+ $pa_config->{"mta_from"} = '"' . pandora_get_tconfig_token ($dbh, 'email_from_name', 'Pandora FMS') . '" <' .
+ pandora_get_tconfig_token ($dbh, 'email_from_dir', 'pandora@pandorafms.org') . '>';
+ $pa_config->{"mta_pass"} = pandora_get_tconfig_token ($dbh, 'email_password', '');
+ $pa_config->{"mta_port"} = pandora_get_tconfig_token ($dbh, 'email_smtpPort', '');
+ $pa_config->{"mta_user"} = pandora_get_tconfig_token ($dbh, 'email_username', '');
+ $pa_config->{"mta_encryption"} = pandora_get_tconfig_token ($dbh, 'email_encryption', '');
+
+ # Auto-negotiate the auth mechanism, since it cannot be set from the console.
+ # Do not include PLAIN, it generates the following error:
+ # 451 4.5.0 SMTP protocol violation, see RFC 2821
+ $pa_config->{"mta_auth"} = 'DIGEST-MD5 CRAM-MD5 LOGIN';
+
+ # Fix the format of mta_encryption.
+ if ($pa_config->{"mta_encryption"} eq 'tls') {
+ $pa_config->{"mta_encryption"} = 'starttls';
+ }
+ elsif ($pa_config->{"mta_encryption"} =~ m/^ssl/) {
+ $pa_config->{"mta_encryption"} = 'ssl';
+ }
+ else {
+ $pa_config->{"mta_encryption"} = 'none';
+ }
+ }
}
##########################################################################
@@ -303,12 +330,14 @@ sub pandora_load_config {
$pa_config->{"dynamic_constant"} = 10; # 7.0
# Internal MTA for alerts, each server need its own config.
- $pa_config->{"mta_address"} = '127.0.0.1'; # Introduced on 2.0
- $pa_config->{"mta_port"} = '25'; # Introduced on 2.0
+ $pa_config->{"mta_address"} = ''; # Introduced on 2.0
+ $pa_config->{"mta_port"} = ''; # Introduced on 2.0
$pa_config->{"mta_user"} = ''; # Introduced on 2.0
$pa_config->{"mta_pass"} = ''; # Introduced on 2.0
$pa_config->{"mta_auth"} = 'none'; # Introduced on 2.0 (Support LOGIN PLAIN CRAM-MD5 DIGEST-MD)
$pa_config->{"mta_from"} = 'pandora@localhost'; # Introduced on 2.0
+ $pa_config->{"mta_encryption"} = 'none'; # 7.0 739
+ $pa_config->{"mta_local"} = 0; # 7.0 739
$pa_config->{"mail_in_separate"} = 1; # 1: eMail deliver alert mail in separate mails.
# 0: eMail deliver 1 mail with all destination.
@@ -582,6 +611,7 @@ sub pandora_load_config {
}
elsif ($parametro =~ m/^mta_address\s(.*)/i) {
$pa_config->{'mta_address'}= clean_blank($1);
+ $pa_config->{'mta_local'}=1;
}
elsif ($parametro =~ m/^mta_port\s(.*)/i) {
$pa_config->{'mta_port'}= clean_blank($1);
@@ -592,6 +622,9 @@ sub pandora_load_config {
elsif ($parametro =~ m/^mta_from\s(.*)/i) {
$pa_config->{'mta_from'}= clean_blank($1);
}
+ elsif ($parametro =~ m/^mta_encryption\s(.*)/i) {
+ $pa_config->{'mta_encryption'}= clean_blank($1);
+ }
elsif ($parametro =~ m/^mail_in_separate\s+([0-9]*)/i) {
$pa_config->{'mail_in_separate'}= clean_blank($1);
}
@@ -1004,7 +1037,7 @@ sub pandora_load_config {
$pa_config->{'console_pass'}= safe_input(clean_blank($1));
}
elsif ($parametro =~ m/^encryption_passphrase\s(.*)/i) { # 6.0
- $pa_config->{'encryption_passphrase'}= safe_input(clean_blank($1));
+ $pa_config->{'encryption_passphrase'} = clean_blank($1);
}
elsif ($parametro =~ m/^unknown_interval\s+([0-9]*)/i) { # > 5.1SP2
$pa_config->{'unknown_interval'}= clean_blank($1);
diff --git a/pandora_server/lib/PandoraFMS/Core.pm b/pandora_server/lib/PandoraFMS/Core.pm
index e1556d74b6..667cd7c909 100644
--- a/pandora_server/lib/PandoraFMS/Core.pm
+++ b/pandora_server/lib/PandoraFMS/Core.pm
@@ -3155,11 +3155,20 @@ sub pandora_get_config_value ($$) {
##########################################################################
## Get credential from credential store
##########################################################################
-sub pandora_get_credential ($$) {
- my ($dbh, $identifier) = @_;
+sub pandora_get_credential ($$$) {
+ my ($pa_config, $dbh, $identifier) = @_;
my $key = get_db_single_row($dbh, 'SELECT * FROM tcredential_store WHERE identifier = ?', $identifier);
+ $key->{'username'} = pandora_output_password(
+ $pa_config,
+ safe_output($key->{'username'})
+ );
+ $key->{'password'} = pandora_output_password(
+ $pa_config,
+ safe_output($key->{'password'})
+ );
+
return $key;
}
diff --git a/pandora_server/lib/PandoraFMS/PluginTools.pm b/pandora_server/lib/PandoraFMS/PluginTools.pm
index 1fd4edcf4a..d96e359a76 100644
--- a/pandora_server/lib/PandoraFMS/PluginTools.pm
+++ b/pandora_server/lib/PandoraFMS/PluginTools.pm
@@ -32,7 +32,7 @@ our @ISA = qw(Exporter);
# version: Defines actual version of Pandora Server for this module only
my $pandora_version = "7.0NG.738";
-my $pandora_build = "190919";
+my $pandora_build = "190924";
our $VERSION = $pandora_version." ".$pandora_build;
our %EXPORT_TAGS = ( 'all' => [ qw() ] );
diff --git a/pandora_server/lib/PandoraFMS/Sendmail.pm b/pandora_server/lib/PandoraFMS/Sendmail.pm
index 394add6d1f..08819c78ab 100644
--- a/pandora_server/lib/PandoraFMS/Sendmail.pm
+++ b/pandora_server/lib/PandoraFMS/Sendmail.pm
@@ -32,7 +32,9 @@ $VERSION = '0.79_16';
'tz' => '', # only to override automatic detection
'port' => 25, # change it if you always use a non-standard port
- 'debug' => 0 # prints stuff to STDERR
+ 'debug' => 0, # prints stuff to STDERR
+ 'encryption' => 'none', # no, ssl or starttls
+ 'timeout' => 5, # timeout for socket reads/writes in seconds
);
# *******************************************************************
@@ -54,7 +56,8 @@ use vars qw(
$auth_support
);
-use Socket;
+use IO::Socket::INET;
+use IO::Select;
use Time::Local; # for automatic time zone detection
use Sys::Hostname; # for use of hostname in HELO
@@ -62,6 +65,12 @@ use Sys::Hostname; # for use of hostname in HELO
$auth_support = 'DIGEST-MD5 CRAM-MD5 PLAIN LOGIN';
+# IO::Socket object.
+my $S;
+
+# IO::Select object.
+my $Sel;
+
# use MIME::QuotedPrint if available and configured in %mailcfg
eval("use MIME::QuotedPrint");
$mailcfg{'mime'} &&= (!$@);
@@ -178,9 +187,9 @@ sub sendmail {
local $_;
my (%mail, $k,
- $smtp, $server, $port, $connected, $localhost,
+ $smtp, $server, $port, $localhost,
$fromaddr, $recip, @recipients, $to, $header,
- %esmtp, @wanted_methods,
+ %esmtp, @wanted_methods, $encryption
);
use vars qw($server_reply);
# -------- a few internal subs ----------
@@ -191,7 +200,7 @@ sub sendmail {
$error .= "Server said: $server_reply\n";
print STDERR "Server said: $server_reply\n" if $^W;
}
- close S;
+ close $S if defined($S);
return 0;
}
@@ -200,31 +209,40 @@ sub sendmail {
for $i (0..$#_) {
# accept references, so we don't copy potentially big data
my $data = ref($_[$i]) ? $_[$i] : \$_[$i];
- if ($mailcfg{'debug'} > 5) {
+ if ($mailcfg{'debug'} > 9) {
if (length($$data) < 500) {
- print ">", $$data;
+ print STDERR ">", $$data;
}
else {
- print "> [...", length($$data), " bytes sent ...]\n";
+ print STDERR "> [...", length($$data), " bytes sent ...]\n";
}
}
- print(S $$data) || return 0;
+ my @sockets = $Sel->can_write($mailcfg{'timeout'});
+ return 0 if (!@sockets);
+ syswrite($sockets[0], $$data) || return 0;
}
1;
}
sub socket_read {
+ my $buffer;
$server_reply = "";
- do {
- $_ = ;
- $server_reply .= $_;
- #chomp $_;
- print "<$_" if $mailcfg{'debug'} > 5;
- if (/^[45]/ or !$_) {
- chomp $server_reply;
- return; # return false
- }
- } while (/^[\d]+-/);
+
+ while (my @sockets = $Sel->can_read($mailcfg{'timeout'})) {
+ return if (!@sockets);
+ # 16kByte is the maximum size of an SSL frame and because sysread
+ # returns data from only a single SSL frame you can guarantee that
+ # there are no pending data.
+ sysread($sockets[0], $buffer, 65535) || return;
+ $server_reply .= $buffer;
+ last if ($buffer =~ m/\n$/);
+ }
+
+ print STDERR "<$server_reply" if $mailcfg{'debug'} > 9;
+ if ($server_reply =~ /^[45]/) {
+ chomp $server_reply;
+ return; # return false
+ }
chomp $server_reply;
return $server_reply;
}
@@ -260,13 +278,15 @@ sub sendmail {
}
$smtp = $mail{'Smtp'} || $mail{'Server'};
- unshift @{$mailcfg{'smtp'}}, $smtp if ($smtp and $mailcfg{'smtp'}->[0] ne $smtp);
+ $mailcfg{'smtp'}->[0] = $smtp if ($smtp and $mailcfg{'smtp'}->[0] ne $smtp);
+
+ $encryption = $mail{'Encryption'} || $mail{'Encryption'};
# delete non-header keys, so we don't send them later as mail headers
# I like this syntax, but it doesn't seem to work with AS port 5.003_07:
# delete @mail{'Smtp', 'Server'};
# so instead:
- delete $mail{'Smtp'}; delete $mail{'Server'};
+ delete $mail{'Smtp'}; delete $mail{'Server'}; delete $mail{'Encryption'};
$mailcfg{'port'} = $mail{'Port'} || $mailcfg{'port'} || 25;
delete $mail{'Port'};
@@ -343,48 +363,36 @@ sub sendmail {
$localhost = hostname() || 'localhost';
foreach $server ( @{$mailcfg{'smtp'}} ) {
- # open socket needs to be inside this foreach loop on Linux,
- # otherwise all servers fail if 1st one fails !??! why?
- unless ( socket S, AF_INET, SOCK_STREAM, scalar(getprotobyname 'tcp') ) {
- return fail("socket failed ($!)")
- }
-
- print "- trying $server\n" if $mailcfg{'debug'} > 1;
+ print STDERR "- trying $server\n" if $mailcfg{'debug'} > 9;
$server =~ s/\s+//go; # remove spaces just in case of a typo
# extract port if server name like "mail.domain.com:2525"
$port = ($server =~ s/:(\d+)$//o) ? $1 : $mailcfg{'port'};
$smtp = $server; # save $server for use outside foreach loop
- my $smtpaddr = inet_aton $server;
- unless ($smtpaddr) {
- $error .= "$server not found\n";
- next; # next server
+ # load IO::Socket SSL if needed
+ if ($encryption ne 'none') {
+ eval "require IO::Socket::SSL" || return fail("IO::Socket::SSL is not available");
}
-
my $retried = 0; # reset retries for each server
- while ( ( not $connected = connect S, pack_sockaddr_in($port, $smtpaddr) )
- and ( $retried < $mailcfg{'retries'} )
- ) {
- $retried++;
- $error .= "connect to $server failed ($!)\n";
- print "- connect to $server failed ($!)\n" if $mailcfg{'debug'} > 1;
- print "retrying in $mailcfg{'delay'} seconds...\n" if $mailcfg{'debug'} > 1;
- sleep $mailcfg{'delay'};
+ if ($encryption ne 'ssl') {
+ $S = new IO::Socket::INET(PeerPort => $port, PeerAddr => $server, Proto => 'tcp');
}
-
- if ( $connected ) {
- print "- connected to $server\n" if $mailcfg{'debug'} > 3;
+ else {
+ $S = new IO::Socket::SSL(PeerPort => $port, PeerAddr => $server, Proto => 'tcp', SSL_verify_mode => IO::Socket::SSL::SSL_VERIFY_NONE(), Domain => AF_INET);
+ }
+ if ( $S ) {
+ print STDERR "- connected to $server\n" if $mailcfg{'debug'} > 9;
last;
}
else {
$error .= "connect to $server failed\n";
- print "- connect to $server failed, next server...\n" if $mailcfg{'debug'} > 1;
+ print STDERR "- connect to $server failed, next server...\n" if $mailcfg{'debug'} > 9;
next; # next server
}
}
- unless ( $connected ) {
+ unless ( $S ) {
return fail("connect to $smtp failed ($!) no (more) retries!")
};
@@ -397,8 +405,9 @@ sub sendmail {
;
}
- my($oldfh) = select(S); $| = 1; select($oldfh);
-
+ $Sel = new IO::Select() || return fail("IO::Select error");
+ $Sel->add($S);
+
socket_read()
|| return fail("Connection error from $smtp on port $port ($_)");
socket_write("EHLO $localhost$CRLF")
@@ -418,8 +427,37 @@ sub sendmail {
|| return fail("send HELO error (lost connection?)");
}
- if ($auth) {
- warn "AUTH requested\n" if ($mailcfg{debug} > 4);
+ # STARTTLS
+ if ($encryption eq 'starttls') {
+ defined($esmtp{'STARTTLS'})
+ || return fail('STARTTLS not supported');
+ socket_write("STARTTLS$CRLF") || return fail("send STARTTLS error");
+ socket_read()
+ || return fail('STARTTLS error');
+ IO::Socket::SSL->start_SSL($S, SSL_hostname => $server, SSL_verify_mode => IO::Socket::SSL::SSL_VERIFY_NONE())
+ || return fail("start_SSL failed");
+
+ # The client SHOULD send an EHLO command as the
+ # first command after a successful TLS negotiation.
+ socket_write("EHLO $localhost$CRLF")
+ || return fail("send EHLO error (lost connection?)");
+ my $ehlo = socket_read();
+ if ($ehlo) {
+ # The server MUST discard any knowledge
+ # obtained from the client.
+ %esmtp = ();
+
+ # parse EHLO response
+ map {
+ s/^\d+[- ]//;
+ my ($k, $v) = split /\s+/, $_, 2;
+ $esmtp{$k} = $v || 1 if $k;
+ } split(/\n/, $ehlo);
+ }
+ }
+
+ if (defined($auth) && $auth->{'user'} ne '') {
+ warn "AUTH requested\n" if ($mailcfg{debug} > 9);
# reduce wanted methods to those supported
my @methods = grep {$esmtp{'AUTH'}=~/(^|\s)$_(\s|$)/i}
grep {$auth_support =~ /(^|\s)$_(\s|$)/i}
@@ -480,9 +518,9 @@ sub sendmail {
my $challenge = socket_read()
|| return fail("AUTH DIGEST-MD5 failed: $server_reply");
$challenge =~ s/^\d+\s+//; $challenge =~ s/[\r\n]+$//;
- warn "\nCHALLENGE=", decode_base64($challenge), "\n" if ($mailcfg{debug} > 10);
+ warn "\nCHALLENGE=", decode_base64($challenge), "\n" if ($mailcfg{debug} > 9);
my $response = _digest_md5($auth->{user}, $auth->{password}, decode_base64($challenge), $auth->{realm});
- warn "\nRESPONSE=$response\n" if ($mailcfg{debug} > 10);
+ warn "\nRESPONSE=$response\n" if ($mailcfg{debug} > 9);
socket_write(encode_base64($response, ""), $CRLF)
|| return fail("AUTH DIGEST-MD5 failed: $server_reply");
my $status = socket_read()
@@ -562,7 +600,7 @@ sub sendmail {
socket_write("QUIT$CRLF")
|| return fail("send QUIT error");
socket_read();
- close S;
+ close $S;
return 1;
} # end sub sendmail
diff --git a/pandora_server/lib/PandoraFMS/Tools.pm b/pandora_server/lib/PandoraFMS/Tools.pm
index 36050e4275..715703b5b6 100755
--- a/pandora_server/lib/PandoraFMS/Tools.pm
+++ b/pandora_server/lib/PandoraFMS/Tools.pm
@@ -140,6 +140,7 @@ our @EXPORT = qw(
generate_agent_name_hash
long_to_ip
ip_to_long
+ get_enabled_servers
);
# ID of the different servers
@@ -518,7 +519,14 @@ sub pandora_sendmail {
Smtp => $pa_config->{"mta_address"},
Port => $pa_config->{"mta_port"},
From => $pa_config->{"mta_from"},
+ Encryption => $pa_config->{"mta_encryption"},
);
+
+ # Set the timeout.
+ $PandoraFMS::Sendmail::mailcfg{'timeout'} = $pa_config->{"tcp_timeout"};
+
+ # Enable debugging.
+ $PandoraFMS::Sendmail::mailcfg{'debug'} = $pa_config->{"verbosity"};
if (defined($content_type)) {
$mail{'Content-Type'} = $content_type;
@@ -535,15 +543,12 @@ sub pandora_sendmail {
$mail{auth} = {user=>$pa_config->{"mta_user"}, password=>$pa_config->{"mta_pass"}, method=>$pa_config->{"mta_auth"}, required=>1 };
}
- if (sendmail %mail) {
- return;
- }
- else {
- logger ($pa_config, "[ERROR] Sending email to $to_address with subject $subject", 1);
- if (defined($Mail::Sendmail::error)){
- logger ($pa_config, "ERROR Code: $Mail::Sendmail::error", 5);
+ eval {
+ if (!sendmail(%mail)) {
+ logger ($pa_config, "[ERROR] Sending email to $to_address with subject $subject", 1);
+ logger ($pa_config, "ERROR Code: $Mail::Sendmail::error", 5) if (defined($Mail::Sendmail::error));
}
- }
+ };
}
##########################################################################
@@ -619,7 +624,7 @@ sub logger ($$;$) {
$message = safe_output ($message);
$level = 1 unless defined ($level);
- return if ($level > $pa_config->{'verbosity'});
+ return if (!defined ($pa_config->{'verbosity'}) || $level > $pa_config->{'verbosity'});
if (!defined($pa_config->{'log_file'})) {
print strftime ("%Y-%m-%d %H:%M:%S", localtime()) . " [V". $level ."] " . $message . "\n";
@@ -2049,6 +2054,25 @@ sub long_to_ip {
return inet_ntoa pack("N", ($ip_long));
}
+###############################################################################
+# Returns a list with enabled servers.
+###############################################################################
+sub get_enabled_servers {
+ my $conf = shift;
+
+ if (ref($conf) ne "HASH") {
+ return ();
+ }
+
+ my @server_list = map {
+ if ($_ =~ /server$/i && $conf->{$_} > 0) {
+ $_
+ } else {
+ }
+ } keys %{$conf};
+
+ return @server_list;
+}
# End of function declaration
# End of defined Code
diff --git a/pandora_server/pandora_server.redhat.spec b/pandora_server/pandora_server.redhat.spec
index 2376c07b2c..08a4ee2de5 100644
--- a/pandora_server/pandora_server.redhat.spec
+++ b/pandora_server/pandora_server.redhat.spec
@@ -3,7 +3,7 @@
#
%define name pandorafms_server
%define version 7.0NG.738
-%define release 190919
+%define release 190924
Summary: Pandora FMS Server
Name: %{name}
@@ -27,7 +27,7 @@ Requires: perl(DBI) perl(DBD::mysql)
Requires: perl(HTTP::Request::Common) perl(LWP::Simple) perl(LWP::UserAgent)
Requires: perl(XML::Simple) perl(XML::Twig) net-snmp-utils
Requires: perl(NetAddr::IP) net-snmp net-tools
-Requires: perl(IO::Socket::INET6) perl(Net::Telnet)
+Requires: perl(IO::Socket::INET6) perl(IO::Socket::SSL) perl(Net::Telnet)
Requires: nmap sudo perl(JSON)
Requires: perl(Time::HiRes) perl(Encode::Locale)
Requires: perl perl(Sys::Syslog) perl(HTML::Entities) perl(Geo::IP)
diff --git a/pandora_server/pandora_server.spec b/pandora_server/pandora_server.spec
index 58a9a051fc..089fece9fc 100644
--- a/pandora_server/pandora_server.spec
+++ b/pandora_server/pandora_server.spec
@@ -3,7 +3,7 @@
#
%define name pandorafms_server
%define version 7.0NG.738
-%define release 190919
+%define release 190924
Summary: Pandora FMS Server
Name: %{name}
@@ -24,7 +24,7 @@ Provides: %{name}-%{version}
Requires: perl-DBI perl-DBD-mysql perl-libwww-perl
Requires: perl-NetAddr-IP net-snmp net-tools perl-XML-Twig
Requires: nmap sudo perl-HTML-Tree perl-XML-Simple perl-Net-Telnet
-Requires: perl-IO-Socket-INET6 perl-Socket6 snmp-mibs perl-JSON
+Requires: perl-IO-Socket-INET6 perl-Socket6 perl-IO-Socket-SSL snmp-mibs perl-JSON
Requires: perl-Encode-Locale perl-Geo-IP
%description
diff --git a/pandora_server/pandora_server_installer b/pandora_server/pandora_server_installer
index 40e9c53839..6afd51d072 100755
--- a/pandora_server/pandora_server_installer
+++ b/pandora_server/pandora_server_installer
@@ -9,7 +9,7 @@
# **********************************************************************
PI_VERSION="7.0NG.738"
-PI_BUILD="190919"
+PI_BUILD="190924"
MODE=$1
if [ $# -gt 1 ]; then
diff --git a/pandora_server/util/pandora_db.pl b/pandora_server/util/pandora_db.pl
index e0ba24f054..0ac8ad2b9e 100644
--- a/pandora_server/util/pandora_db.pl
+++ b/pandora_server/util/pandora_db.pl
@@ -34,7 +34,7 @@ use PandoraFMS::Config;
use PandoraFMS::DB;
# version: define current version
-my $version = "7.0NG.738 PS190919";
+my $version = "7.0NG.738 PS190924";
# Pandora server configuration
my %conf;
diff --git a/pandora_server/util/pandora_manage.pl b/pandora_server/util/pandora_manage.pl
index ab951ab0f7..d82f947ef6 100755
--- a/pandora_server/util/pandora_manage.pl
+++ b/pandora_server/util/pandora_manage.pl
@@ -36,7 +36,7 @@ use Encode::Locale;
Encode::Locale::decode_argv;
# version: define current version
-my $version = "7.0NG.738 PS190919";
+my $version = "7.0NG.738 PS190924";
# save program name for logging
my $progname = basename($0);