Главная Обзор contacts
Вход
dyokunev
/
nextcloud-mephi
Следить 1
В избранное 0
Ответвить 0
Файлы Обсуждения 0 Запросы на слияние 0 Вики
Дерево: 6e210d960c
Ветки Метки
nextcloud-me...
/
settings
/
controller
/
checksetupcontroller.php

checksetupcontroller.php 6.6 KB
История Исходник

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * @author Joas Schilling <nickvergessen@owncloud.com>
    4. 

  4.  * @author Lukas Reschke <lukas@owncloud.com>
    5. 

  5.  * @author Morris Jobke <hey@morrisjobke.de>
    6. 

  6.  *
    7. 

  7.  * @copyright Copyright (c) 2015, ownCloud, Inc.
    8. 

  8.  * @license AGPL-3.0
    9. 

  9.  *
    10. 

  10.  * This code is free software: you can redistribute it and/or modify
    11. 

  11.  * it under the terms of the GNU Affero General Public License, version 3,
    12. 

  12.  * as published by the Free Software Foundation.
    13. 

  13.  *
    14. 

  14.  * This program is distributed in the hope that it will be useful,
    15. 

  15.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
    16. 

  16.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
    17. 

  17.  * GNU Affero General Public License for more details.
    18. 

  18.  *
    19. 

  19.  * You should have received a copy of the GNU Affero General Public License, version 3,
    20. 

  20.  * along with this program.  If not, see <http://www.gnu.org/licenses/>
    21. 

  21.  *
    22. 

  22.  */
    23. 

  23. 

  24. namespace OC\Settings\Controller;
    25. 

  25. 

  26. use GuzzleHttp\Exception\ClientException;
    27. 

  27. use OCP\AppFramework\Controller;
    28. 

  28. use OCP\AppFramework\Http\DataResponse;
    29. 

  29. use OCP\Http\Client\IClientService;
    30. 

  30. use OCP\IConfig;
    31. 

  31. use OCP\IL10N;
    32. 

  32. use OCP\IRequest;
    33. 

  33. use OC_Util;
    34. 

  34. use OCP\IURLGenerator;
    35. 

  35. 

  36. /**
    37. 

  37.  * @package OC\Settings\Controller
    38. 

  38.  */
    39. 

  39. class CheckSetupController extends Controller {
    40. 

  40. 	/** @var IConfig */
    41. 

  41. 	private $config;
    42. 

  42. 	/** @var IClientService */
    43. 

  43. 	private $clientService;
    44. 

  44. 	/** @var \OC_Util */
    45. 

  45. 	private $util;
    46. 

  46. 	/** @var IURLGenerator */
    47. 

  47. 	private $urlGenerator;
    48. 

  48. 	/** @var IL10N */
    49. 

  49. 	private $l10n;
    50. 

  50. 

  51. 	/**
    52. 

  52. 	 * @param string $AppName
    53. 

  53. 	 * @param IRequest $request
    54. 

  54. 	 * @param IConfig $config
    55. 

  55. 	 * @param IClientService $clientService
    56. 

  56. 	 * @param IURLGenerator $urlGenerator
    57. 

  57. 	 * @param \OC_Util $util
    58. 

  58. 	 * @param IL10N $l10n
    59. 

  59. 	 */
    60. 

  60. 	public function __construct($AppName,
    61. 

  61. 								IRequest $request,
    62. 

  62. 								IConfig $config,
    63. 

  63. 								IClientService $clientService,
    64. 

  64. 								IURLGenerator $urlGenerator,
    65. 

  65. 								\OC_Util $util,
    66. 

  66. 								IL10N $l10n) {
    67. 

  67. 		parent::__construct($AppName, $request);
    68. 

  68. 		$this->config = $config;
    69. 

  69. 		$this->clientService = $clientService;
    70. 

  70. 		$this->util = $util;
    71. 

  71. 		$this->urlGenerator = $urlGenerator;
    72. 

  72. 		$this->l10n = $l10n;
    73. 

  73. 	}
    74. 

  74. 

  75. 	/**
    76. 

  76. 	 * Checks if the ownCloud server can connect to the internet using HTTPS and HTTP
    77. 

  77. 	 * @return bool
    78. 

  78. 	 */
    79. 

  79. 	private function isInternetConnectionWorking() {
    80. 

  80. 		if ($this->config->getSystemValue('has_internet_connection', true) === false) {
    81. 

  81. 			return false;
    82. 

  82. 		}
    83. 

  83. 

  84. 		try {
    85. 

  85. 			$client = $this->clientService->newClient();
    86. 

  86. 			$client->get('https://www.owncloud.org/');
    87. 

  87. 			$client->get('http://www.owncloud.org/');
    88. 

  88. 			return true;
    89. 

  89. 		} catch (\Exception $e) {
    90. 

  90. 			return false;
    91. 

  91. 		}
    92. 

  92. 	}
    93. 

  93. 

  94. 	/**
    95. 

  95. 	 * Checks whether a local memcache is installed or not
    96. 

  96. 	 * @return bool
    97. 

  97. 	 */
    98. 

  98. 	private function isMemcacheConfigured() {
    99. 

  99. 		return $this->config->getSystemValue('memcache.local', null) !== null;
    100. 

  100. 	}
    101. 

  101. 

  102. 	/**
    103. 

  103. 	 * Whether /dev/urandom is available to the PHP controller
    104. 

  104. 	 *
    105. 

  105. 	 * @return bool
    106. 

  106. 	 */
    107. 

  107. 	private function isUrandomAvailable() {
    108. 

  108. 		if(@file_exists('/dev/urandom')) {
    109. 

  109. 			$file = fopen('/dev/urandom', 'rb');
    110. 

  110. 			if($file) {
    111. 

  111. 				fclose($file);
    112. 

  112. 				return true;
    113. 

  113. 			}
    114. 

  114. 		}
    115. 

  115. 

  116. 		return false;
    117. 

  117. 	}
    118. 

  118. 

  119. 	/**
    120. 

  120. 	 * Public for the sake of unit-testing
    121. 

  121. 	 *
    122. 

  122. 	 * @return array
    123. 

  123. 	 */
    124. 

  124. 	public function getCurlVersion() {
    125. 

  125. 		return curl_version();
    126. 

  126. 	}
    127. 

  127. 

  128. 	/**
    129. 

  129. 	 * Check if the used  SSL lib is outdated. Older OpenSSL and NSS versions do
    130. 

  130. 	 * have multiple bugs which likely lead to problems in combination with
    131. 

  131. 	 * functionality required by ownCloud such as SNI.
    132. 

  132. 	 *
    133. 

  133. 	 * @link https://github.com/owncloud/core/issues/17446#issuecomment-122877546
    134. 

  134. 	 * @link https://bugzilla.redhat.com/show_bug.cgi?id=1241172
    135. 

  135. 	 * @return string
    136. 

  136. 	 */
    137. 

  137. 	private function isUsedTlsLibOutdated() {
    138. 

  138. 		$versionString = $this->getCurlVersion();
    139. 

  139. 		if(isset($versionString['ssl_version'])) {
    140. 

  140. 			$versionString = $versionString['ssl_version'];
    141. 

  141. 		} else {
    142. 

  142. 			return '';
    143. 

  143. 		}
    144. 

  144. 

  145. 		$features = (string)$this->l10n->t('installing and updating apps via the app store or Federated Cloud Sharing');
    146. 

  146. 		if(OC_Util::getEditionString() !== '') {
    147. 

  147. 			$features = (string)$this->l10n->t('Federated Cloud Sharing');
    148. 

  148. 		}
    149. 

  149. 

  150. 		// Check if at least OpenSSL after 1.01d or 1.0.2b
    151. 

  151. 		if(strpos($versionString, 'OpenSSL/') === 0) {
    152. 

  152. 			$majorVersion = substr($versionString, 8, 5);
    153. 

  153. 			$patchRelease = substr($versionString, 13, 6);
    154. 

  154. 

  155. 			if(($majorVersion === '1.0.1' && ord($patchRelease) < ord('d')) ||
    156. 

  156. 				($majorVersion === '1.0.2' && ord($patchRelease) < ord('b'))) {
    157. 

  157. 				return (string) $this->l10n->t('cURL is using an outdated %s version (%s). Please update your operating system or features such as %s will not work reliably.', ['OpenSSL', $versionString, $features]);
    158. 

  158. 			}
    159. 

  159. 		}
    160. 

  160. 

  161. 		// Check if NSS and perform heuristic check
    162. 

  162. 		if(strpos($versionString, 'NSS/') === 0) {
    163. 

  163. 			try {
    164. 

  164. 				$firstClient = $this->clientService->newClient();
    165. 

  165. 				$firstClient->get('https://www.owncloud.org/');
    166. 

  166. 

  167. 				$secondClient = $this->clientService->newClient();
    168. 

  168. 				$secondClient->get('https://owncloud.org/');
    169. 

  169. 			} catch (ClientException $e) {
    170. 

  170. 				if($e->getResponse()->getStatusCode() === 400) {
    171. 

  171. 					return (string) $this->l10n->t('cURL is using an outdated %s version (%s). Please update your operating system or features such as %s will not work reliably.', ['NSS', $versionString, $features]);
    172. 

  172. 				}
    173. 

  173. 			}
    174. 

  174. 		}
    175. 

  175. 

  176. 		return '';
    177. 

  177. 	}
    178. 

  178. 	
    179. 

  179. 	/*
    180. 

  180. 	 * Whether the php version is still supported (at time of release)
    181. 

  181. 	 * according to: https://secure.php.net/supported-versions.php
    182. 

  182. 	 *
    183. 

  183. 	 * @return array
    184. 

  184. 	 */
    185. 

  185. 	private function isPhpSupported() {
    186. 

  186. 		$eol = false;
    187. 

  187. 

  188. 		//PHP 5.4 is EOL on 14 Sep 2015
    189. 

  189. 		if (version_compare(PHP_VERSION, '5.5.0') === -1) {
    190. 

  190. 			$eol = true;
    191. 

  191. 		}
    192. 

  192. 

  193. 		return ['eol' => $eol, 'version' => PHP_VERSION];
    194. 

  194. 	}
    195. 

  195. 

  196. 	/*
    197. 

  197. 	 * Check if the reverse proxy configuration is working as expected
    198. 

  198. 	 *
    199. 

  199. 	 * @return bool
    200. 

  200. 	 */
    201. 

  201. 	private function forwardedForHeadersWorking() {
    202. 

  202. 		$trustedProxies = $this->config->getSystemValue('trusted_proxies', []);
    203. 

  203. 		$remoteAddress = $this->request->getRemoteAddress();
    204. 

  204. 

  205. 		if (is_array($trustedProxies) && in_array($remoteAddress, $trustedProxies)) {
    206. 

  206. 			return false;
    207. 

  207. 		}
    208. 

  208. 

  209. 		// either not enabled or working correctly
    210. 

  210. 		return true;
    211. 

  211. 	}
    212. 

  212. 

  213. 	/**
    214. 

  214. 	 * @return DataResponse
    215. 

  215. 	 */
    216. 

  216. 	public function check() {
    217. 

  217. 		return new DataResponse(
    218. 

  218. 			[
    219. 

  219. 				'serverHasInternetConnection' => $this->isInternetConnectionWorking(),
    220. 

  220. 				'dataDirectoryProtected' => $this->util->isHtaccessWorking($this->config),
    221. 

  221. 				'isMemcacheConfigured' => $this->isMemcacheConfigured(),
    222. 

  222. 				'memcacheDocs' => $this->urlGenerator->linkToDocs('admin-performance'),
    223. 

  223. 				'isUrandomAvailable' => $this->isUrandomAvailable(),
    224. 

  224. 				'securityDocs' => $this->urlGenerator->linkToDocs('admin-security'),
    225. 

  225. 				'isUsedTlsLibOutdated' => $this->isUsedTlsLibOutdated(),
    226. 

  226. 				'phpSupported' => $this->isPhpSupported(),
    227. 

  227. 				'forwardedForHeadersWorking' => $this->forwardedForHeadersWorking(),
    228. 

  228. 				'reverseProxyDocs' => $this->urlGenerator->linkToDocs('admin-reverse-proxy'),
    229. 

  229. 			]
    230. 

  230. 		);
    231. 

  231. 	}
    232. 

  232. }
    233. 

  233.