the first remote-action (os update) is implemented (for debian)

abdc67d2 · vogelor · f836a142 · abdc67d2 · abdc67d2 · abdc67d2
Commit abdc67d2 authored May 01, 2010 by vogelor
3 changed files
--- a/install/lib/installer_base.lib.php
+++ b/install/lib/installer_base.lib.php
--- a/install/sql/ispconfig3.sql
+++ b/install/sql/ispconfig3.sql
@@ -1159,9 +1159,10 @@ CREATE TABLE `sys_remoteaction` (
  `tstamp` int(11) NOT NULL,
  `action_type` varchar(20) NOT NULL,
  `action_param` mediumtext NOT NULL,
-  `action_status` enum('pending','ok','warning','error') NOT NULL,
+  `action_state` enum('pending','ok','warning','error') NOT NULL,
  `response` mediumtext NOT NULL,
-  PRIMARY KEY  (`action_id`)
+  PRIMARY KEY  (`action_id`),
+  KEY `server_id` (`server_id`)
 ) ENGINE=MyISAM;

 -- --------------------------------------------------------

--- a/server/mods-available/remoteaction_core_module.inc.php
+++ b/server/mods-available/remoteaction_core_module.inc.php
+<?php
+/*
+Copyright (c) 2007-2010, Till Brehm, projektfarm Gmbh and Oliver Vogel www.muv.com
+All rights reserved.
+
+Redistribution and use in source and binary forms, with or without modification,
+are permitted provided that the following conditions are met:
+
+    * Redistributions of source code must retain the above copyright notice,
+      this list of conditions and the following disclaimer.
+    * Redistributions in binary form must reproduce the above copyright notice,
+      this list of conditions and the following disclaimer in the documentation
+      and/or other materials provided with the distribution.
+    * Neither the name of ISPConfig nor the names of its contributors
+      may be used to endorse or promote products derived from this software without
+      specific prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
+IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT,
+INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,
+BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY
+OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
+NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE,
+EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+*/
+
+class remoteaction_core_module {
+	var $module_name = 'remoteaction_core_module';
+	var $class_name = 'remoteaction_core_module';
+	/* No actions at this time. maybe later... */
+	var $actions_available = array();
+	//* This function is called during ispconfig installation to determine
+	//  if a symlink shall be created for this plugin.
+	function onInstall() {
+		return true;
+	}
+
+	/*
+        This function is called when the module is loaded
+	*/
+	function onLoad() {
+		/*
+       	 * Check for actions to execute
+		*/
+		$this->_execActions();
+	}
+
+	/*
+     This function is called when a change in one of the registered tables is detected.
+     The function then raises the events for the plugins.
+	*/
+	function process($tablename, $action, $data) {
+		// not needed
+	} // end function
+
+	private function _actionDone($id, $state) {
+		/*
+		 * First set the state
+		 */
+		global $app;
+		$sql = "UPDATE sys_remoteaction " .
+				"SET action_state = '" . $app->dbmaster->quote($state) . "' " .
+				"WHERE action_id = " . intval($id);
+		$app->dbmaster->query($sql);
+
+		/*
+		 * Then save the maxid for the next time...
+		 */
+		$fp = fopen(dirname(__FILE__) .  "/../lib/remote_action.inc.php", 'wb');
+		$content = '<?php' . "\n" . '$maxid_remote_action = ' . $id . ';' . "\n?>";
+		fwrite($fp, $content);
+		fclose($fp);
+	}
+
+
+	/**
+	 * This method searches for scheduled actions and exec then
+	 */
+	private function _execActions() {
+		global $app;
+		global $conf;
+
+		/* the id of the server as int */
+		$server_id = intval($conf["server_id"]);
+
+		/*
+		 * First we (till and i, oliver) thought, it was enough to write
+		 * "select from where action_status = 'pending'" and then execute this actions.
+		 * But it is not!
+		 * If a hacker can hack into a server, she can change the valus of action_status
+		 * and so re-exec a action, executed some days bevore. So she can (for example)
+		 * stop a service, a admin stopped some days before! To avoid this, we ignore
+		 * the status (it is only for the interface to show) and use our own maxid
+		*/
+		include_once (dirname(__FILE__) .  "/../lib/remote_action.inc.php");
+
+		/*
+		 * Get all actions this server should execute
+		*/
+		$sql = "SELECT action_id, action_type, action_param " .
+				"FROM sys_remoteaction " .
+				"WHERE server_id = " . $server_id . " ".
+				" AND  action_id > " . intval($maxid_remote_action) . " ".
+				"ORDER BY action_id";
+		$actions = $app->dbmaster->queryAllRecords($sql);
+
+		/*
+		 * process all actions
+		*/
+		foreach ($actions as $action) {
+			if ($action['action_type'] == 'os_update') {
+				/* do the update */
+				$this->_doOsUpdate($action);
+				/* this action takes so much time,
+				  * we stop executing the actions not to waste more time */
+				return;
+			}
+		}
+	}
+
+	private function _doOsUpdate($action) {
+		/*
+		 * Do the update
+		 */
+		exec("aptitude update");
+		exec("aptitude upgrade -y");
+
+		/*
+		 * All well done!
+		 */
+		$this->_actionDone($action['action_id'], 'ok');
+	}
+
+}
+?>
\ No newline at end of file