mirror of
https://github.com/librenms/librenms.git
synced 2024-09-22 02:48:37 +00:00
151 lines
6.2 KiB
PHP
151 lines
6.2 KiB
PHP
<?php
|
|
/**
|
|
* Php.php
|
|
*
|
|
* Check that various PHP modules and functions exist.
|
|
*
|
|
* This program is free software: you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License as published by
|
|
* the Free Software Foundation, either version 3 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program. If not, see <https://www.gnu.org/licenses/>.
|
|
*
|
|
* @link https://www.librenms.org
|
|
*
|
|
* @copyright 2017 Tony Murray
|
|
* @author Tony Murray <murraytony@gmail.com>
|
|
*/
|
|
|
|
namespace LibreNMS\Validations;
|
|
|
|
use LibreNMS\Config;
|
|
use LibreNMS\Validator;
|
|
|
|
class Php extends BaseValidation
|
|
{
|
|
const PHP_MIN_VERSION = '8.1';
|
|
const PHP_MIN_VERSION_DATE = 'September, 2022';
|
|
const PHP_RECOMMENDED_VERSION = '8.1';
|
|
|
|
/**
|
|
* Validate this module.
|
|
* To return ValidationResults, call ok, warn, fail, or result methods on the $validator
|
|
*
|
|
* @param Validator $validator
|
|
*/
|
|
public function validate(Validator $validator): void
|
|
{
|
|
$this->checkVersion($validator);
|
|
$this->checkExtensions($validator);
|
|
$this->checkFunctions($validator);
|
|
$this->checkTimezone($validator);
|
|
}
|
|
|
|
private function checkVersion(Validator $validator)
|
|
{
|
|
// if update is not set to false and version is min or newer
|
|
if (Config::get('update') && version_compare(PHP_VERSION, self::PHP_MIN_VERSION, '<')) {
|
|
$validator->warn('PHP version ' . self::PHP_MIN_VERSION . ' is the minimum supported version as of ' . self::PHP_MIN_VERSION_DATE . '. We recommend you update PHP to a supported version (' . self::PHP_RECOMMENDED_VERSION . ' suggested) to continue to receive updates. If you do not update PHP, LibreNMS will continue to function but stop receiving bug fixes and updates.');
|
|
}
|
|
|
|
$web_version = PHP_VERSION;
|
|
$cli_version = rtrim(shell_exec('php -r "echo PHP_VERSION;"'));
|
|
if (version_compare($web_version, $cli_version, '!=')) {
|
|
$validator->fail("PHP version of your webserver ($web_version) does not match the cli version ($cli_version)", 'If you updated PHP recently, restart php-fpm or apache to switch to the new version');
|
|
}
|
|
}
|
|
|
|
private function checkExtensions(Validator $validator)
|
|
{
|
|
$required_modules = ['mysqlnd', 'mbstring', 'pcre', 'curl', 'xml', 'gd', 'sockets', 'dom'];
|
|
|
|
if (Config::get('distributed_poller')) {
|
|
$required_modules[] = 'memcached';
|
|
}
|
|
|
|
foreach ($required_modules as $extension) {
|
|
if (! extension_loaded($extension)) {
|
|
$validator->fail("Missing PHP extension: $extension", "Please install $extension");
|
|
} elseif (shell_exec("php -r \"var_export(extension_loaded('$extension'));\"") == 'false') {
|
|
$validator->fail("Missing CLI PHP extension: $extension", "Please install $extension");
|
|
}
|
|
}
|
|
|
|
$suggested_extensions = ['posix' => 'php-process'];
|
|
foreach ($suggested_extensions as $extension => $packages) {
|
|
if (! extension_loaded($extension)) {
|
|
$validator->warn("Missing optional PHP extension: $extension", "It is suggested you install $packages or the one that matches your php version");
|
|
}
|
|
}
|
|
}
|
|
|
|
private function checkFunctions(Validator $validator)
|
|
{
|
|
$disabled_functions = explode(',', ini_get('disable_functions'));
|
|
$required_functions = [
|
|
'exec',
|
|
'passthru',
|
|
'shell_exec',
|
|
'escapeshellarg',
|
|
'escapeshellcmd',
|
|
'proc_close',
|
|
'proc_open',
|
|
'popen',
|
|
];
|
|
|
|
foreach ($required_functions as $function) {
|
|
if (in_array($function, $disabled_functions)) {
|
|
$validator->fail("$function is disabled in php.ini");
|
|
}
|
|
}
|
|
|
|
if (! function_exists('openssl_random_pseudo_bytes')) {
|
|
$validator->warn('openssl_random_pseudo_bytes is not being used for user password hashing. This is a recommended function (https://secure.php.net/openssl_random_pseudo_bytes)');
|
|
if (! is_readable('/dev/urandom')) {
|
|
$validator->warn("It also looks like we can't use /dev/urandom for user password hashing. We will fall back to generating our own hash - be warned");
|
|
}
|
|
}
|
|
}
|
|
|
|
private function checkTimezone(Validator $validator)
|
|
{
|
|
// collect data
|
|
$ini_tz = ini_get('date.timezone');
|
|
$sh_tz = rtrim(shell_exec('date +%Z'));
|
|
$php_tz = date('T');
|
|
$php_cli_tz = rtrim(shell_exec('php -r "echo date(\'T\');"'));
|
|
|
|
if (empty($ini_tz)) {
|
|
// make sure timezone is set
|
|
$validator->fail(
|
|
'You have no timezone set for php.',
|
|
'https://php.net/manual/en/datetime.configuration.php#ini.date.timezone'
|
|
);
|
|
} elseif ($sh_tz !== $php_tz) {
|
|
// check if system timezone matches the timezone of the current running php
|
|
$ini_file = php_ini_loaded_file();
|
|
$validator->fail(
|
|
"You have a different system timezone ($sh_tz) than the php configured timezone ($php_tz)",
|
|
"Please correct either your system timezone or your timezone set in $ini_file."
|
|
);
|
|
} elseif ($php_tz !== $php_cli_tz) {
|
|
// check if web and cli timezones match (this does nothing if validate.php is run on cli)
|
|
// some distros have different php.ini for cli and the web server
|
|
if ($sh_tz !== $php_cli_tz) {
|
|
$ini_file = rtrim(shell_exec('php -r "echo php_ini_loaded_file();"'));
|
|
$validator->fail(
|
|
"The CLI php.ini ($php_cli_tz) timezone is different than your system's timezone ($sh_tz)",
|
|
"Edit your CLI ini file $ini_file and set the correct timezone ($sh_tz)."
|
|
);
|
|
}
|
|
}
|
|
}
|
|
}
|