Home Explore Help
Register Sign In
RISCI_ATOM
/
nextcloud-server
mirror of https://github.com/nextcloud/server.git
1
0
Fork 0
Files Issues 21 Wiki
Tree: 689b7c19de
Branches Tags
nextcloud-serve...
/
settings
/
Controller
/
CheckSetupController.php

CheckSetupController.php 22 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * @copyright Copyright (c) 2016, ownCloud, Inc.
    4. 

  4.  *
    5. 

  5.  * @author Arthur Schiwon <blizzz@arthur-schiwon.de>
    6. 

  6.  * @author Bjoern Schiessle <bjoern@schiessle.org>
    7. 

  7.  * @author Derek <derek.kelly27@gmail.com>
    8. 

  8.  * @author Joas Schilling <coding@schilljs.com>
    9. 

  9.  * @author Ko- <k.stoffelen@cs.ru.nl>
    10. 

  10.  * @author Lukas Reschke <lukas@statuscode.ch>
    11. 

  11.  * @author Morris Jobke <hey@morrisjobke.de>
    12. 

  12.  * @author Robin McCorkell <robin@mccorkell.me.uk>
    13. 

  13.  * @author Roeland Jago Douma <roeland@famdouma.nl>
    14. 

  14.  *
    15. 

  15.  * @license AGPL-3.0
    16. 

  16.  *
    17. 

  17.  * This code is free software: you can redistribute it and/or modify
    18. 

  18.  * it under the terms of the GNU Affero General Public License, version 3,
    19. 

  19.  * as published by the Free Software Foundation.
    20. 

  20.  *
    21. 

  21.  * This program is distributed in the hope that it will be useful,
    22. 

  22.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
    23. 

  23.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
    24. 

  24.  * GNU Affero General Public License for more details.
    25. 

  25.  *
    26. 

  26.  * You should have received a copy of the GNU Affero General Public License, version 3,
    27. 

  27.  * along with this program.  If not, see <http://www.gnu.org/licenses/>
    28. 

  28.  *
    29. 

  29.  */
    30. 

  30. 

  31. namespace OC\Settings\Controller;
    32. 

  32. 

  33. use bantu\IniGetWrapper\IniGetWrapper;
    34. 

  34. use DirectoryIterator;
    35. 

  35. use Doctrine\DBAL\DBALException;
    36. 

  36. use Doctrine\DBAL\Platforms\SqlitePlatform;
    37. 

  37. use Doctrine\DBAL\Types\Type;
    38. 

  38. use GuzzleHttp\Exception\ClientException;
    39. 

  39. use OC;
    40. 

  40. use OC\AppFramework\Http;
    41. 

  41. use OC\DB\Connection;
    42. 

  42. use OC\DB\MissingIndexInformation;
    43. 

  43. use OC\DB\SchemaWrapper;
    44. 

  44. use OC\IntegrityCheck\Checker;
    45. 

  45. use OC\Lock\NoopLockingProvider;
    46. 

  46. use OC\MemoryInfo;
    47. 

  47. use OCP\AppFramework\Controller;
    48. 

  48. use OCP\AppFramework\Http\DataDisplayResponse;
    49. 

  49. use OCP\AppFramework\Http\DataResponse;
    50. 

  50. use OCP\AppFramework\Http\RedirectResponse;
    51. 

  51. use OCP\Http\Client\IClientService;
    52. 

  52. use OCP\IConfig;
    53. 

  53. use OCP\IDateTimeFormatter;
    54. 

  54. use OCP\IDBConnection;
    55. 

  55. use OCP\IL10N;
    56. 

  56. use OCP\ILogger;
    57. 

  57. use OCP\IRequest;
    58. 

  58. use OCP\IURLGenerator;
    59. 

  59. use OCP\Lock\ILockingProvider;
    60. 

  60. use OCP\Security\ISecureRandom;
    61. 

  61. use Symfony\Component\EventDispatcher\EventDispatcherInterface;
    62. 

  62. use Symfony\Component\EventDispatcher\GenericEvent;
    63. 

  63. 

  64. /**
    65. 

  65.  * @package OC\Settings\Controller
    66. 

  66.  */
    67. 

  67. class CheckSetupController extends Controller {
    68. 

  68. 	/** @var IConfig */
    69. 

  69. 	private $config;
    70. 

  70. 	/** @var IClientService */
    71. 

  71. 	private $clientService;
    72. 

  72. 	/** @var \OC_Util */
    73. 

  73. 	private $util;
    74. 

  74. 	/** @var IURLGenerator */
    75. 

  75. 	private $urlGenerator;
    76. 

  76. 	/** @var IL10N */
    77. 

  77. 	private $l10n;
    78. 

  78. 	/** @var Checker */
    79. 

  79. 	private $checker;
    80. 

  80. 	/** @var ILogger */
    81. 

  81. 	private $logger;
    82. 

  82. 	/** @var EventDispatcherInterface */
    83. 

  83. 	private $dispatcher;
    84. 

  84. 	/** @var IDBConnection|Connection */
    85. 

  85. 	private $db;
    86. 

  86. 	/** @var ILockingProvider */
    87. 

  87. 	private $lockingProvider;
    88. 

  88. 	/** @var IDateTimeFormatter */
    89. 

  89. 	private $dateTimeFormatter;
    90. 

  90. 	/** @var MemoryInfo */
    91. 

  91. 	private $memoryInfo;
    92. 

  92. 	/** @var ISecureRandom */
    93. 

  93. 	private $secureRandom;
    94. 

  94. 

  95. 	public function __construct($AppName,
    96. 

  96. 								IRequest $request,
    97. 

  97. 								IConfig $config,
    98. 

  98. 								IClientService $clientService,
    99. 

  99. 								IURLGenerator $urlGenerator,
    100. 

  100. 								\OC_Util $util,
    101. 

  101. 								IL10N $l10n,
    102. 

  102. 								Checker $checker,
    103. 

  103. 								ILogger $logger,
    104. 

  104. 								EventDispatcherInterface $dispatcher,
    105. 

  105. 								IDBConnection $db,
    106. 

  106. 								ILockingProvider $lockingProvider,
    107. 

  107. 								IDateTimeFormatter $dateTimeFormatter,
    108. 

  108. 								MemoryInfo $memoryInfo,
    109. 

  109. 								ISecureRandom $secureRandom) {
    110. 

  110. 		parent::__construct($AppName, $request);
    111. 

  111. 		$this->config = $config;
    112. 

  112. 		$this->clientService = $clientService;
    113. 

  113. 		$this->util = $util;
    114. 

  114. 		$this->urlGenerator = $urlGenerator;
    115. 

  115. 		$this->l10n = $l10n;
    116. 

  116. 		$this->checker = $checker;
    117. 

  117. 		$this->logger = $logger;
    118. 

  118. 		$this->dispatcher = $dispatcher;
    119. 

  119. 		$this->db = $db;
    120. 

  120. 		$this->lockingProvider = $lockingProvider;
    121. 

  121. 		$this->dateTimeFormatter = $dateTimeFormatter;
    122. 

  122. 		$this->memoryInfo = $memoryInfo;
    123. 

  123. 		$this->secureRandom = $secureRandom;
    124. 

  124. 	}
    125. 

  125. 

  126. 	/**
    127. 

  127. 	 * Checks if the server can connect to the internet using HTTPS and HTTP
    128. 

  128. 	 * @return bool
    129. 

  129. 	 */
    130. 

  130. 	private function isInternetConnectionWorking() {
    131. 

  131. 		if ($this->config->getSystemValue('has_internet_connection', true) === false) {
    132. 

  132. 			return false;
    133. 

  133. 		}
    134. 

  134. 

  135. 		$siteArray = $this->config->getSystemValue('connectivity_check_domains', [
    136. 

  136. 			'www.nextcloud.com', 'www.startpage.com', 'www.eff.org', 'www.edri.org'
    137. 

  137. 		]);
    138. 

  138. 

  139. 		foreach($siteArray as $site) {
    140. 

  140. 			if ($this->isSiteReachable($site)) {
    141. 

  141. 				return true;
    142. 

  142. 			}
    143. 

  143. 		}
    144. 

  144. 		return false;
    145. 

  145. 	}
    146. 

  146. 

  147. 	/**
    148. 

  148. 	* Checks if the Nextcloud server can connect to a specific URL using both HTTPS and HTTP
    149. 

  149. 	* @return bool
    150. 

  150. 	*/
    151. 

  151. 	private function isSiteReachable($sitename) {
    152. 

  152. 		$httpSiteName = 'http://' . $sitename . '/';
    153. 

  153. 		$httpsSiteName = 'https://' . $sitename . '/';
    154. 

  154. 

  155. 		try {
    156. 

  156. 			$client = $this->clientService->newClient();
    157. 

  157. 			$client->get($httpSiteName);
    158. 

  158. 			$client->get($httpsSiteName);
    159. 

  159. 		} catch (\Exception $e) {
    160. 

  160. 			$this->logger->logException($e, ['app' => 'internet_connection_check']);
    161. 

  161. 			return false;
    162. 

  162. 		}
    163. 

  163. 		return true;
    164. 

  164. 	}
    165. 

  165. 

  166. 	/**
    167. 

  167. 	 * Checks whether a local memcache is installed or not
    168. 

  168. 	 * @return bool
    169. 

  169. 	 */
    170. 

  170. 	private function isMemcacheConfigured() {
    171. 

  171. 		return $this->config->getSystemValue('memcache.local', null) !== null;
    172. 

  172. 	}
    173. 

  173. 

  174. 	/**
    175. 

  175. 	 * Whether PHP can generate "secure" pseudorandom integers
    176. 

  176. 	 *
    177. 

  177. 	 * @return bool
    178. 

  178. 	 */
    179. 

  179. 	private function isRandomnessSecure() {
    180. 

  180. 		try {
    181. 

  181. 			$this->secureRandom->generate(1);
    182. 

  182. 		} catch (\Exception $ex) {
    183. 

  183. 			return false;
    184. 

  184. 		}
    185. 

  185. 		return true;
    186. 

  186. 	}
    187. 

  187. 

  188. 	/**
    189. 

  189. 	 * Public for the sake of unit-testing
    190. 

  190. 	 *
    191. 

  191. 	 * @return array
    192. 

  192. 	 */
    193. 

  193. 	protected function getCurlVersion() {
    194. 

  194. 		return curl_version();
    195. 

  195. 	}
    196. 

  196. 

  197. 	/**
    198. 

  198. 	 * Check if the used  SSL lib is outdated. Older OpenSSL and NSS versions do
    199. 

  199. 	 * have multiple bugs which likely lead to problems in combination with
    200. 

  200. 	 * functionality required by ownCloud such as SNI.
    201. 

  201. 	 *
    202. 

  202. 	 * @link https://github.com/owncloud/core/issues/17446#issuecomment-122877546
    203. 

  203. 	 * @link https://bugzilla.redhat.com/show_bug.cgi?id=1241172
    204. 

  204. 	 * @return string
    205. 

  205. 	 */
    206. 

  206. 	private function isUsedTlsLibOutdated() {
    207. 

  207. 		// Don't run check when:
    208. 

  208. 		// 1. Server has `has_internet_connection` set to false
    209. 

  209. 		// 2. AppStore AND S2S is disabled
    210. 

  210. 		if(!$this->config->getSystemValue('has_internet_connection', true)) {
    211. 

  211. 			return '';
    212. 

  212. 		}
    213. 

  213. 		if(!$this->config->getSystemValue('appstoreenabled', true)
    214. 

  214. 			&& $this->config->getAppValue('files_sharing', 'outgoing_server2server_share_enabled', 'yes') === 'no'
    215. 

  215. 			&& $this->config->getAppValue('files_sharing', 'incoming_server2server_share_enabled', 'yes') === 'no') {
    216. 

  216. 			return '';
    217. 

  217. 		}
    218. 

  218. 

  219. 		$versionString = $this->getCurlVersion();
    220. 

  220. 		if(isset($versionString['ssl_version'])) {
    221. 

  221. 			$versionString = $versionString['ssl_version'];
    222. 

  222. 		} else {
    223. 

  223. 			return '';
    224. 

  224. 		}
    225. 

  225. 

  226. 		$features = (string)$this->l10n->t('installing and updating apps via the app store or Federated Cloud Sharing');
    227. 

  227. 		if(!$this->config->getSystemValue('appstoreenabled', true)) {
    228. 

  228. 			$features = (string)$this->l10n->t('Federated Cloud Sharing');
    229. 

  229. 		}
    230. 

  230. 

  231. 		// Check if at least OpenSSL after 1.01d or 1.0.2b
    232. 

  232. 		if(strpos($versionString, 'OpenSSL/') === 0) {
    233. 

  233. 			$majorVersion = substr($versionString, 8, 5);
    234. 

  234. 			$patchRelease = substr($versionString, 13, 6);
    235. 

  235. 

  236. 			if(($majorVersion === '1.0.1' && ord($patchRelease) < ord('d')) ||
    237. 

  237. 				($majorVersion === '1.0.2' && ord($patchRelease) < ord('b'))) {
    238. 

  238. 				return $this->l10n->t('cURL is using an outdated %1$s version (%2$s). Please update your operating system or features such as %3$s will not work reliably.', ['OpenSSL', $versionString, $features]);
    239. 

  239. 			}
    240. 

  240. 		}
    241. 

  241. 

  242. 		// Check if NSS and perform heuristic check
    243. 

  243. 		if(strpos($versionString, 'NSS/') === 0) {
    244. 

  244. 			try {
    245. 

  245. 				$firstClient = $this->clientService->newClient();
    246. 

  246. 				$firstClient->get('https://nextcloud.com/');
    247. 

  247. 

  248. 				$secondClient = $this->clientService->newClient();
    249. 

  249. 				$secondClient->get('https://nextcloud.com/');
    250. 

  250. 			} catch (ClientException $e) {
    251. 

  251. 				if($e->getResponse()->getStatusCode() === 400) {
    252. 

  252. 					return $this->l10n->t('cURL is using an outdated %1$s version (%2$s). Please update your operating system or features such as %3$s will not work reliably.', ['NSS', $versionString, $features]);
    253. 

  253. 				}
    254. 

  254. 			}
    255. 

  255. 		}
    256. 

  256. 

  257. 		return '';
    258. 

  258. 	}
    259. 

  259. 

  260. 	/**
    261. 

  261. 	 * Whether the version is outdated
    262. 

  262. 	 *
    263. 

  263. 	 * @return bool
    264. 

  264. 	 */
    265. 

  265. 	protected function isPhpOutdated() {
    266. 

  266. 		if (version_compare(PHP_VERSION, '7.1.0', '<')) {
    267. 

  267. 			return true;
    268. 

  268. 		}
    269. 

  269. 

  270. 		return false;
    271. 

  271. 	}
    272. 

  272. 

  273. 	/**
    274. 

  274. 	 * Whether the php version is still supported (at time of release)
    275. 

  275. 	 * according to: https://secure.php.net/supported-versions.php
    276. 

  276. 	 *
    277. 

  277. 	 * @return array
    278. 

  278. 	 */
    279. 

  279. 	private function isPhpSupported() {
    280. 

  280. 		return ['eol' => $this->isPhpOutdated(), 'version' => PHP_VERSION];
    281. 

  281. 	}
    282. 

  282. 

  283. 	/**
    284. 

  284. 	 * Check if the reverse proxy configuration is working as expected
    285. 

  285. 	 *
    286. 

  286. 	 * @return bool
    287. 

  287. 	 */
    288. 

  288. 	private function forwardedForHeadersWorking() {
    289. 

  289. 		$trustedProxies = $this->config->getSystemValue('trusted_proxies', []);
    290. 

  290. 		$remoteAddress = $this->request->getHeader('REMOTE_ADDR');
    291. 

  291. 

  292. 		if (\is_array($trustedProxies) && \in_array($remoteAddress, $trustedProxies)) {
    293. 

  293. 			return $remoteAddress !== $this->request->getRemoteAddress();
    294. 

  294. 		}
    295. 

  295. 		// either not enabled or working correctly
    296. 

  296. 		return true;
    297. 

  297. 	}
    298. 

  298. 

  299. 	/**
    300. 

  300. 	 * Checks if the correct memcache module for PHP is installed. Only
    301. 

  301. 	 * fails if memcached is configured and the working module is not installed.
    302. 

  302. 	 *
    303. 

  303. 	 * @return bool
    304. 

  304. 	 */
    305. 

  305. 	private function isCorrectMemcachedPHPModuleInstalled() {
    306. 

  306. 		if ($this->config->getSystemValue('memcache.distributed', null) !== '\OC\Memcache\Memcached') {
    307. 

  307. 			return true;
    308. 

  308. 		}
    309. 

  309. 

  310. 		// there are two different memcached modules for PHP
    311. 

  311. 		// we only support memcached and not memcache
    312. 

  312. 		// https://code.google.com/p/memcached/wiki/PHPClientComparison
    313. 

  313. 		return !(!extension_loaded('memcached') && extension_loaded('memcache'));
    314. 

  314. 	}
    315. 

  315. 

  316. 	/**
    317. 

  317. 	 * Checks if set_time_limit is not disabled.
    318. 

  318. 	 *
    319. 

  319. 	 * @return bool
    320. 

  320. 	 */
    321. 

  321. 	private function isSettimelimitAvailable() {
    322. 

  322. 		if (function_exists('set_time_limit')
    323. 

  323. 			&& strpos(@ini_get('disable_functions'), 'set_time_limit') === false) {
    324. 

  324. 			return true;
    325. 

  325. 		}
    326. 

  326. 

  327. 		return false;
    328. 

  328. 	}
    329. 

  329. 

  330. 	/**
    331. 

  331. 	 * @return RedirectResponse
    332. 

  332. 	 */
    333. 

  333. 	public function rescanFailedIntegrityCheck() {
    334. 

  334. 		$this->checker->runInstanceVerification();
    335. 

  335. 		return new RedirectResponse(
    336. 

  336. 			$this->urlGenerator->linkToRoute('settings.AdminSettings.index')
    337. 

  337. 		);
    338. 

  338. 	}
    339. 

  339. 

  340. 	/**
    341. 

  341. 	 * @NoCSRFRequired
    342. 

  342. 	 * @return DataResponse
    343. 

  343. 	 */
    344. 

  344. 	public function getFailedIntegrityCheckFiles() {
    345. 

  345. 		if(!$this->checker->isCodeCheckEnforced()) {
    346. 

  346. 			return new DataDisplayResponse('Integrity checker has been disabled. Integrity cannot be verified.');
    347. 

  347. 		}
    348. 

  348. 

  349. 		$completeResults = $this->checker->getResults();
    350. 

  350. 

  351. 		if(!empty($completeResults)) {
    352. 

  352. 			$formattedTextResponse = 'Technical information
    353. 

  353. =====================
    354. 

  354. The following list covers which files have failed the integrity check. Please read
    355. 

  355. the previous linked documentation to learn more about the errors and how to fix
    356. 

  356. them.
    357. 

  357. 

  358. Results
    359. 

  359. =======
    360. 

  360. ';
    361. 

  361. 			foreach($completeResults as $context => $contextResult) {
    362. 

  362. 				$formattedTextResponse .= "- $context\n";
    363. 

  363. 

  364. 				foreach($contextResult as $category => $result) {
    365. 

  365. 					$formattedTextResponse .= "\t- $category\n";
    366. 

  366. 					if($category !== 'EXCEPTION') {
    367. 

  367. 						foreach ($result as $key => $results) {
    368. 

  368. 							$formattedTextResponse .= "\t\t- $key\n";
    369. 

  369. 						}
    370. 

  370. 					} else {
    371. 

  371. 						foreach ($result as $key => $results) {
    372. 

  372. 							$formattedTextResponse .= "\t\t- $results\n";
    373. 

  373. 						}
    374. 

  374. 					}
    375. 

  375. 

  376. 				}
    377. 

  377. 			}
    378. 

  378. 

  379. 			$formattedTextResponse .= '
    380. 

  380. Raw output
    381. 

  381. ==========
    382. 

  382. ';
    383. 

  383. 			$formattedTextResponse .= print_r($completeResults, true);
    384. 

  384. 		} else {
    385. 

  385. 			$formattedTextResponse = 'No errors have been found.';
    386. 

  386. 		}
    387. 

  387. 

  388. 

  389. 		$response = new DataDisplayResponse(
    390. 

  390. 			$formattedTextResponse,
    391. 

  391. 			Http::STATUS_OK,
    392. 

  392. 			[
    393. 

  393. 				'Content-Type' => 'text/plain',
    394. 

  394. 			]
    395. 

  395. 		);
    396. 

  396. 

  397. 		return $response;
    398. 

  398. 	}
    399. 

  399. 

  400. 	/**
    401. 

  401. 	 * Checks whether a PHP opcache is properly set up
    402. 

  402. 	 * @return bool
    403. 

  403. 	 */
    404. 

  404. 	protected function isOpcacheProperlySetup() {
    405. 

  405. 		$iniWrapper = new IniGetWrapper();
    406. 

  406. 

  407. 		if(!$iniWrapper->getBool('opcache.enable')) {
    408. 

  408. 			return false;
    409. 

  409. 		}
    410. 

  410. 

  411. 		if(!$iniWrapper->getBool('opcache.save_comments')) {
    412. 

  412. 			return false;
    413. 

  413. 		}
    414. 

  414. 

  415. 		if(!$iniWrapper->getBool('opcache.enable_cli')) {
    416. 

  416. 			return false;
    417. 

  417. 		}
    418. 

  418. 

  419. 		if($iniWrapper->getNumeric('opcache.max_accelerated_files') < 10000) {
    420. 

  420. 			return false;
    421. 

  421. 		}
    422. 

  422. 

  423. 		if($iniWrapper->getNumeric('opcache.memory_consumption') < 128) {
    424. 

  424. 			return false;
    425. 

  425. 		}
    426. 

  426. 

  427. 		if($iniWrapper->getNumeric('opcache.interned_strings_buffer') < 8) {
    428. 

  428. 			return false;
    429. 

  429. 		}
    430. 

  430. 

  431. 		return true;
    432. 

  432. 	}
    433. 

  433. 

  434. 	/**
    435. 

  435. 	 * Check if the required FreeType functions are present
    436. 

  436. 	 * @return bool
    437. 

  437. 	 */
    438. 

  438. 	protected function hasFreeTypeSupport() {
    439. 

  439. 		return function_exists('imagettfbbox') && function_exists('imagettftext');
    440. 

  440. 	}
    441. 

  441. 

  442. 	protected function hasMissingIndexes(): array {
    443. 

  443. 		$indexInfo = new MissingIndexInformation();
    444. 

  444. 		// Dispatch event so apps can also hint for pending index updates if needed
    445. 

  445. 		$event = new GenericEvent($indexInfo);
    446. 

  446. 		$this->dispatcher->dispatch(IDBConnection::CHECK_MISSING_INDEXES_EVENT, $event);
    447. 

  447. 

  448. 		return $indexInfo->getListOfMissingIndexes();
    449. 

  449. 	}
    450. 

  450. 

  451. 	/**
    452. 

  452. 	 * warn if outdated version of a memcache module is used
    453. 

  453. 	 */
    454. 

  454. 	protected function getOutdatedCaches(): array {
    455. 

  455. 		$caches = [
    456. 

  456. 			'apcu'	=> ['name' => 'APCu', 'version' => '4.0.6'],
    457. 

  457. 			'redis'	=> ['name' => 'Redis', 'version' => '2.2.5'],
    458. 

  458. 		];
    459. 

  459. 		$outdatedCaches = [];
    460. 

  460. 		foreach ($caches as $php_module => $data) {
    461. 

  461. 			$isOutdated = extension_loaded($php_module) && version_compare(phpversion($php_module), $data['version'], '<');
    462. 

  462. 			if ($isOutdated) {
    463. 

  463. 				$outdatedCaches[] = $data;
    464. 

  464. 			}
    465. 

  465. 		}
    466. 

  466. 

  467. 		return $outdatedCaches;
    468. 

  468. 	}
    469. 

  469. 

  470. 	protected function isSqliteUsed() {
    471. 

  471. 		return strpos($this->config->getSystemValue('dbtype'), 'sqlite') !== false;
    472. 

  472. 	}
    473. 

  473. 

  474. 	protected function isReadOnlyConfig(): bool {
    475. 

  475. 		return \OC_Helper::isReadOnlyConfigEnabled();
    476. 

  476. 	}
    477. 

  477. 

  478. 	protected function hasValidTransactionIsolationLevel(): bool {
    479. 

  479. 		try {
    480. 

  480. 			if ($this->db->getDatabasePlatform() instanceof SqlitePlatform) {
    481. 

  481. 				return true;
    482. 

  482. 			}
    483. 

  483. 

  484. 			return $this->db->getTransactionIsolation() === Connection::TRANSACTION_READ_COMMITTED;
    485. 

  485. 		} catch (DBALException $e) {
    486. 

  486. 			// ignore
    487. 

  487. 		}
    488. 

  488. 

  489. 		return true;
    490. 

  490. 	}
    491. 

  491. 

  492. 	protected function hasFileinfoInstalled(): bool {
    493. 

  493. 		return \OC_Util::fileInfoLoaded();
    494. 

  494. 	}
    495. 

  495. 

  496. 	protected function hasWorkingFileLocking(): bool {
    497. 

  497. 		return !($this->lockingProvider instanceof NoopLockingProvider);
    498. 

  498. 	}
    499. 

  499. 

  500. 	protected function getSuggestedOverwriteCliURL(): string {
    501. 

  501. 		$suggestedOverwriteCliUrl = '';
    502. 

  502. 		if ($this->config->getSystemValue('overwrite.cli.url', '') === '') {
    503. 

  503. 			$suggestedOverwriteCliUrl = $this->request->getServerProtocol() . '://' . $this->request->getInsecureServerHost() . \OC::$WEBROOT;
    504. 

  504. 			if (!$this->config->getSystemValue('config_is_read_only', false)) {
    505. 

  505. 				// Set the overwrite URL when it was not set yet.
    506. 

  506. 				$this->config->setSystemValue('overwrite.cli.url', $suggestedOverwriteCliUrl);
    507. 

  507. 				$suggestedOverwriteCliUrl = '';
    508. 

  508. 			}
    509. 

  509. 		}
    510. 

  510. 		return $suggestedOverwriteCliUrl;
    511. 

  511. 	}
    512. 

  512. 

  513. 	protected function getLastCronInfo(): array {
    514. 

  514. 		$lastCronRun = $this->config->getAppValue('core', 'lastcron', 0);
    515. 

  515. 		return [
    516. 

  516. 			'diffInSeconds' => time() - $lastCronRun,
    517. 

  517. 			'relativeTime' => $this->dateTimeFormatter->formatTimeSpan($lastCronRun),
    518. 

  518. 			'backgroundJobsUrl' => $this->urlGenerator->linkToRoute('settings.AdminSettings.index', ['section' => 'server']) . '#backgroundjobs',
    519. 

  519. 		];
    520. 

  520. 	}
    521. 

  521. 

  522. 	protected function getCronErrors() {
    523. 

  523. 		$errors = json_decode($this->config->getAppValue('core', 'cronErrors', ''), true);
    524. 

  524. 

  525. 		if (is_array($errors)) {
    526. 

  526. 			return $errors;
    527. 

  527. 		}
    528. 

  528. 

  529. 		return [];
    530. 

  530. 	}
    531. 

  531. 

  532. 	protected function isPHPMailerUsed(): bool {
    533. 

  533. 		return $this->config->getSystemValue('mail_smtpmode', 'smtp') === 'php';
    534. 

  534. 	}
    535. 

  535. 

  536. 	protected function hasOpcacheLoaded(): bool {
    537. 

  537. 		return function_exists('opcache_get_status');
    538. 

  538. 	}
    539. 

  539. 

  540. 	/**
    541. 

  541. 	 * Iterates through the configured app roots and
    542. 

  542. 	 * tests if the subdirectories are owned by the same user than the current user.
    543. 

  543. 	 *
    544. 

  544. 	 * @return array
    545. 

  545. 	 */
    546. 

  546. 	protected function getAppDirsWithDifferentOwner(): array {
    547. 

  547. 		$currentUser = posix_getuid();
    548. 

  548. 		$appDirsWithDifferentOwner = [[]];
    549. 

  549. 

  550. 		foreach (OC::$APPSROOTS as $appRoot) {
    551. 

  551. 			if ($appRoot['writable'] === true) {
    552. 

  552. 				$appDirsWithDifferentOwner[] = $this->getAppDirsWithDifferentOwnerForAppRoot($currentUser, $appRoot);
    553. 

  553. 			}
    554. 

  554. 		}
    555. 

  555. 

  556. 		$appDirsWithDifferentOwner = array_merge(...$appDirsWithDifferentOwner);
    557. 

  557. 		sort($appDirsWithDifferentOwner);
    558. 

  558. 

  559. 		return $appDirsWithDifferentOwner;
    560. 

  560. 	}
    561. 

  561. 

  562. 	/**
    563. 

  563. 	 * Tests if the directories for one apps directory are writable by the current user.
    564. 

  564. 	 *
    565. 

  565. 	 * @param int $currentUser The current user
    566. 

  566. 	 * @param array $appRoot The app root config
    567. 

  567. 	 * @return string[] The none writable directory paths inside the app root
    568. 

  568. 	 */
    569. 

  569. 	private function getAppDirsWithDifferentOwnerForAppRoot(int $currentUser, array $appRoot): array {
    570. 

  570. 		$appDirsWithDifferentOwner = [];
    571. 

  571. 		$appsPath = $appRoot['path'];
    572. 

  572. 		$appsDir = new DirectoryIterator($appRoot['path']);
    573. 

  573. 

  574. 		foreach ($appsDir as $fileInfo) {
    575. 

  575. 			if ($fileInfo->isDir() && !$fileInfo->isDot()) {
    576. 

  576. 				$absAppPath = $appsPath . DIRECTORY_SEPARATOR . $fileInfo->getFilename();
    577. 

  577. 				$appDirUser = fileowner($absAppPath);
    578. 

  578. 				if ($appDirUser !== $currentUser) {
    579. 

  579. 					$appDirsWithDifferentOwner[] = $absAppPath;
    580. 

  580. 				}
    581. 

  581. 			}
    582. 

  582. 		}
    583. 

  583. 

  584. 		return $appDirsWithDifferentOwner;
    585. 

  585. 	}
    586. 

  586. 

  587. 	/**
    588. 

  588. 	 * Checks for potential PHP modules that would improve the instance
    589. 

  589. 	 *
    590. 

  590. 	 * @return string[] A list of PHP modules that is recommended
    591. 

  591. 	 */
    592. 

  592. 	protected function hasRecommendedPHPModules(): array {
    593. 

  593. 		$recommendedPHPModules = [];
    594. 

  594. 

  595. 		if (!function_exists('grapheme_strlen')) {
    596. 

  596. 			$recommendedPHPModules[] = 'intl';
    597. 

  597. 		}
    598. 

  598. 

  599. 		if ($this->config->getAppValue('theming', 'enabled', 'no') === 'yes') {
    600. 

  600. 			if (!extension_loaded('imagick')) {
    601. 

  601. 				$recommendedPHPModules[] = 'imagick';
    602. 

  602. 			}
    603. 

  603. 		}
    604. 

  604. 

  605. 		return $recommendedPHPModules;
    606. 

  606. 	}
    607. 

  607. 

  608. 	protected function isMysqlUsedWithoutUTF8MB4(): bool {
    609. 

  609. 		return ($this->config->getSystemValue('dbtype', 'sqlite') === 'mysql') && ($this->config->getSystemValue('mysql.utf8mb4', false) === false);
    610. 

  610. 	}
    611. 

  611. 

  612. 	protected function hasBigIntConversionPendingColumns(): array {
    613. 

  613. 		// copy of ConvertFilecacheBigInt::getColumnsByTable()
    614. 

  614. 		$tables = [
    615. 

  615. 			'activity' => ['activity_id', 'object_id'],
    616. 

  616. 			'activity_mq' => ['mail_id'],
    617. 

  617. 			'filecache' => ['fileid', 'storage', 'parent', 'mimetype', 'mimepart', 'mtime', 'storage_mtime'],
    618. 

  618. 			'mimetypes' => ['id'],
    619. 

  619. 			'storages' => ['numeric_id'],
    620. 

  620. 		];
    621. 

  621. 

  622. 		$schema = new SchemaWrapper($this->db);
    623. 

  623. 		$isSqlite = $this->db->getDatabasePlatform() instanceof SqlitePlatform;
    624. 

  624. 		$pendingColumns = [];
    625. 

  625. 

  626. 		foreach ($tables as $tableName => $columns) {
    627. 

  627. 			if (!$schema->hasTable($tableName)) {
    628. 

  628. 				continue;
    629. 

  629. 			}
    630. 

  630. 

  631. 			$table = $schema->getTable($tableName);
    632. 

  632. 			foreach ($columns as $columnName) {
    633. 

  633. 				$column = $table->getColumn($columnName);
    634. 

  634. 				$isAutoIncrement = $column->getAutoincrement();
    635. 

  635. 				$isAutoIncrementOnSqlite = $isSqlite && $isAutoIncrement;
    636. 

  636. 				if ($column->getType()->getName() !== Type::BIGINT && !$isAutoIncrementOnSqlite) {
    637. 

  637. 					$pendingColumns[] = $tableName . '.' . $columnName;
    638. 

  638. 				}
    639. 

  639. 			}
    640. 

  640. 		}
    641. 

  641. 

  642. 		return $pendingColumns;
    643. 

  643. 	}
    644. 

  644. 

  645. 	protected function isEnoughTempSpaceAvailableIfS3PrimaryStorageIsUsed(): bool {
    646. 

  646. 		$objectStore = $this->config->getSystemValue('objectstore', null);
    647. 

  647. 		$objectStoreMultibucket = $this->config->getSystemValue('objectstore_multibucket', null);
    648. 

  648. 

  649. 		if (!isset($objectStoreMultibucket) && !isset($objectStore)) {
    650. 

  650. 			return true;
    651. 

  651. 		}
    652. 

  652. 

  653. 		if (isset($objectStoreMultibucket['class']) && $objectStoreMultibucket['class'] !== 'OC\\Files\\ObjectStore\\S3') {
    654. 

  654. 			return true;
    655. 

  655. 		}
    656. 

  656. 

  657. 		if (isset($objectStore['class']) && $objectStore['class'] !== 'OC\\Files\\ObjectStore\\S3') {
    658. 

  658. 			return true;
    659. 

  659. 		}
    660. 

  660. 

  661. 		$tempPath = sys_get_temp_dir();
    662. 

  662. 		if (!is_dir($tempPath)) {
    663. 

  663. 			$this->logger->error('Error while checking the temporary PHP path - it was not properly set to a directory. value: ' . $tempPath);
    664. 

  664. 			return false;
    665. 

  665. 		}
    666. 

  666. 		$freeSpaceInTemp = disk_free_space($tempPath);
    667. 

  667. 		if ($freeSpaceInTemp === false) {
    668. 

  668. 			$this->logger->error('Error while checking the available disk space of temporary PHP path - no free disk space returned. temporary path: ' . $tempPath);
    669. 

  669. 			return false;
    670. 

  670. 		}
    671. 

  671. 

  672. 		$freeSpaceInTempInGB = $freeSpaceInTemp / 1024 / 1024 / 1024;
    673. 

  673. 		if ($freeSpaceInTempInGB > 50) {
    674. 

  674. 			return true;
    675. 

  675. 		}
    676. 

  676. 

  677. 		$this->logger->warning('Checking the available space in the temporary path resulted in ' . round($freeSpaceInTempInGB, 1) . ' GB instead of the recommended 50GB. Path: ' . $tempPath);
    678. 

  678. 		return false;
    679. 

  679. 	}
    680. 

  680. 

  681. 	/**
    682. 

  682. 	 * @return DataResponse
    683. 

  683. 	 */
    684. 

  684. 	public function check() {
    685. 

  685. 		return new DataResponse(
    686. 

  686. 			[
    687. 

  687. 				'isGetenvServerWorking' => !empty(getenv('PATH')),
    688. 

  688. 				'isReadOnlyConfig' => $this->isReadOnlyConfig(),
    689. 

  689. 				'hasValidTransactionIsolationLevel' => $this->hasValidTransactionIsolationLevel(),
    690. 

  690. 				'outdatedCaches' => $this->getOutdatedCaches(),
    691. 

  691. 				'hasFileinfoInstalled' => $this->hasFileinfoInstalled(),
    692. 

  692. 				'hasWorkingFileLocking' => $this->hasWorkingFileLocking(),
    693. 

  693. 				'suggestedOverwriteCliURL' => $this->getSuggestedOverwriteCliURL(),
    694. 

  694. 				'cronInfo' => $this->getLastCronInfo(),
    695. 

  695. 				'cronErrors' => $this->getCronErrors(),
    696. 

  696. 				'serverHasInternetConnection' => $this->isInternetConnectionWorking(),
    697. 

  697. 				'isMemcacheConfigured' => $this->isMemcacheConfigured(),
    698. 

  698. 				'memcacheDocs' => $this->urlGenerator->linkToDocs('admin-performance'),
    699. 

  699. 				'isRandomnessSecure' => $this->isRandomnessSecure(),
    700. 

  700. 				'securityDocs' => $this->urlGenerator->linkToDocs('admin-security'),
    701. 

  701. 				'isUsedTlsLibOutdated' => $this->isUsedTlsLibOutdated(),
    702. 

  702. 				'phpSupported' => $this->isPhpSupported(),
    703. 

  703. 				'forwardedForHeadersWorking' => $this->forwardedForHeadersWorking(),
    704. 

  704. 				'reverseProxyDocs' => $this->urlGenerator->linkToDocs('admin-reverse-proxy'),
    705. 

  705. 				'isCorrectMemcachedPHPModuleInstalled' => $this->isCorrectMemcachedPHPModuleInstalled(),
    706. 

  706. 				'hasPassedCodeIntegrityCheck' => $this->checker->hasPassedCheck(),
    707. 

  707. 				'codeIntegrityCheckerDocumentation' => $this->urlGenerator->linkToDocs('admin-code-integrity'),
    708. 

  708. 				'isOpcacheProperlySetup' => $this->isOpcacheProperlySetup(),
    709. 

  709. 				'hasOpcacheLoaded' => $this->hasOpcacheLoaded(),
    710. 

  710. 				'phpOpcacheDocumentation' => $this->urlGenerator->linkToDocs('admin-php-opcache'),
    711. 

  711. 				'isSettimelimitAvailable' => $this->isSettimelimitAvailable(),
    712. 

  712. 				'hasFreeTypeSupport' => $this->hasFreeTypeSupport(),
    713. 

  713. 				'missingIndexes' => $this->hasMissingIndexes(),
    714. 

  714. 				'isSqliteUsed' => $this->isSqliteUsed(),
    715. 

  715. 				'databaseConversionDocumentation' => $this->urlGenerator->linkToDocs('admin-db-conversion'),
    716. 

  716. 				'isPHPMailerUsed' => $this->isPHPMailerUsed(),
    717. 

  717. 				'mailSettingsDocumentation' => $this->urlGenerator->getAbsoluteURL('index.php/settings/admin'),
    718. 

  718. 				'isMemoryLimitSufficient' => $this->memoryInfo->isMemoryLimitSufficient(),
    719. 

  719. 				'appDirsWithDifferentOwner' => $this->getAppDirsWithDifferentOwner(),
    720. 

  720. 				'recommendedPHPModules' => $this->hasRecommendedPHPModules(),
    721. 

  721. 				'pendingBigIntConversionColumns' => $this->hasBigIntConversionPendingColumns(),
    722. 

  722. 				'isMysqlUsedWithoutUTF8MB4' => $this->isMysqlUsedWithoutUTF8MB4(),
    723. 

  723. 				'isEnoughTempSpaceAvailableIfS3PrimaryStorageIsUsed' => $this->isEnoughTempSpaceAvailableIfS3PrimaryStorageIsUsed(),
    724. 

  724. 			]
    725. 

  725. 		);
    726. 

  726. 	}
    727. 

  727. }
    728.