[pmg-api.git] / PMG / Config.pm

package PMG::Config::Base;

use strict;
use warnings;
use Data::Dumper;

use PVE::Tools;
use PVE::JSONSchema qw(get_standard_option);
use PVE::SectionConfig;

use base qw(PVE::SectionConfig);

my $defaultData = {
    propertyList => {
	type => { description => "Section type." },
	section_id => {
	    description => "Secion ID.",
	    type => 'string', format => 'pve-configid',
	},
    },
};

sub private {
    return $defaultData;
}

sub format_section_header {
    my ($class, $type, $sectionId) = @_;

    if ($type eq 'ldap') {
	$sectionId =~ s/^ldap_//;
	return "$type: $sectionId\n";
    } else {
	return "section: $type\n";
    }
}


sub parse_section_header {
    my ($class, $line) = @_;

    if ($line =~ m/^(ldap|section):\s*(\S+)\s*$/) {
	my ($raw_type, $raw_id) = (lc($1), $2);
	my $type = $raw_type eq 'section' ? $raw_id : $raw_type;
	my $section_id =  "${raw_type}_${raw_id}";
	my $errmsg = undef; # set if you want to skip whole section
	eval { PVE::JSONSchema::pve_verify_configid($raw_id); };
	$errmsg = $@ if $@;
	my $config = {}; # to return additional attributes
	return ($type, $section_id, $errmsg, $config);
    }
    return undef;
}

package PMG::Config::Admin;

use strict;
use warnings;

use base qw(PMG::Config::Base);

sub type {
    return 'admin';
}

sub properties {
    return {
	dailyreport => {
	    description => "Send daily reports.",
	    type => 'boolean',
	    default => 1,
	},
	demo => {
	    description => "Demo mode - do not start SMTP filter.",
	    type => 'boolean',
	    default => 0,
	},
	email => {
	    description => "Administrator E-Mail address.",
	    type => 'string', format => 'email',
	    default => 'admin@domain.tld',
	},
	proxyport => {
	    description => "HTTP proxy port.",
	    type => 'integer',
	    minimum => 1,
	    default => 8080,
	},
	proxyserver => {
	    description => "HTTP proxy server address.",
	    type => 'string',
	},
	proxyuser => {
	    description => "HTTP proxy user name.",
	    type => 'string',
	},
	proxypassword => {
	    description => "HTTP proxy password.",
	    type => 'string',
	},
    };
}

sub options {
    return {
	dailyreport => { optional => 1 },
	demo => { optional => 1 },
	proxyport => { optional => 1 },
	proxyserver => { optional => 1 },
	proxyuser => { optional => 1 },
	proxypassword => { optional => 1 },
    };
}

package PMG::Config::Spam;

use strict;
use warnings;

use base qw(PMG::Config::Base);

sub type {
    return 'spam';
}

sub properties {
    return {
	languages => {
	    description => "This option is used to specify which languages are considered OK for incoming mail.",
	    type => 'string',
	    pattern => '(all|([a-z][a-z])+( ([a-z][a-z])+)*)',
	    default => 'all',
	},
	use_bayes => {
	    description => "Whether to use the naive-Bayesian-style classifier.",
	    type => 'boolean',
	    default => 1,
	},
	use_awl => {
	    description => "Use the Auto-Whitelist plugin.",
	    type => 'boolean',
	    default => 1,
	},
	use_razor => {
	    description => "Whether to use Razor2, if it is available.",
	    type => 'boolean',
	    default => 1,
	},
	use_ocr => {
	    description => "Enable OCR to scan pictures.",
	    type => 'boolean',
	    default => 0,
	},
	wl_bounce_relays => {
	    description => "Whitelist legitimate bounce relays.",
	    type => 'string',
	},
	bounce_score => {
	    description => "Additional score for bounce mails.",
	    type => 'integer',
	    minimum => 0,
	    maximum => 1000,
	    default => 0,
	},
	rbl_checks => {
	    description => "Enable real time blacklists (RBL) checks.",
	    type => 'boolean',
	    default => 1,
	},
	maxspamsize => {
	    description => "Maximum size of spam messages in bytes.",
	    type => 'integer',
	    minimim => 64,
	    default => 200*1024,
	},
    };
}

sub options {
    return {
	use_awl => { optional => 1 },
	use_razor => { optional => 1 },
	use_ocr => { optional => 1 },
	wl_bounce_relays => { optional => 1 },
	languages => { optional => 1 },
	use_bayes => { optional => 1 },
	bounce_score => { optional => 1 },
	rbl_checks => { optional => 1 },
	maxspamsize => { optional => 1 },
    };
}

package PMG::Config::ClamAV;

use strict;
use warnings;

use base qw(PMG::Config::Base);

sub type {
    return 'clamav';
}

sub properties {
    return {
	dbmirror => {
	    description => "ClamAV database mirror server.",
	    type => 'string',
	    default => 'database.clamav.net',
	},
	archiveblockencrypted => {
	    description => "Wether to block encrypted archives. Mark encrypted archives as viruses.",
	    type => 'boolean',
	    default => 0,
	},
	archivemaxrec => {
	    description => "Nested archives are scanned recursively, e.g. if a ZIP archive contains a TAR  file,  all files within it will also be scanned. This options specifies how deeply the process should be continued. Warning: setting this limit too high may result in severe damage to the system.",
	    minimum => 1,
	    default => 5,
	},
	archivemaxfiles => {
	    description => "Number of files to be scanned within an archive, a document, or any other kind of container. Warning: disabling this limit or setting it too high may result in severe damage to the system.",
	    type => 'integer',
	    minimum => 0,
	    default => 1000,
	},
	archivemaxsize => {
	    description => "Files larger than this limit won't be scanned.",
	    type => 'integer',
	    minimum => 1000000,
	    default => 25000000,
	},
	maxscansize => {
	    description => "Sets the maximum amount of data to be scanned for each input file.",
	    type => 'integer',
	    minimum => 1000000,
	    default => 100000000,
	},
	maxcccount => {
	    description => "This option sets the lowest number of Credit Card or Social Security numbers found in a file to generate a detect.",
	    type => 'integer',
	    minimum => 0,
	    default => 0,
	},
    };
}

sub options {
    return {
	archiveblockencrypted => { optional => 1 },
	archivemaxrec => { optional => 1 },
	archivemaxfiles => { optional => 1 },
	archivemaxsize => { optional => 1 },
	maxscansize  => { optional => 1 },
	dbmirror => { optional => 1 },
	maxcccount => { optional => 1 },
    };
}

package PMG::Config::LDAP;

use strict;
use warnings;

use base qw(PMG::Config::Base);

sub type {
    return 'ldap';
}

sub properties {
    return {
	mode => {
	    description => "LDAP protocol mode ('ldap' or 'ldaps').",
	    type => 'string',
	    enum => ['ldap', 'ldaps'],
	    default => 'ldap',
	},
    };
}

sub options {
    return {
	mode => { optional => 1 },
    };
}

package PMG::Config::Mail;

use strict;
use warnings;

use PVE::ProcFSTools;

use base qw(PMG::Config::Base);

sub type {
    return 'mail';
}

my $physicalmem = 0;
sub physical_memory {

    return $physicalmem if $physicalmem;

    my $info = PVE::ProcFSTools::read_meminfo();
    my $total = int($info->{memtotal} / (1024*1024));

    return $total;
}

sub get_max_filters {
    # estimate optimal number of filter servers

    my $max_servers = 5;
    my $servermem = 120;
    my $memory = physical_memory();
    my $add_servers = int(($memory - 512)/$servermem);
    $max_servers += $add_servers if $add_servers > 0;
    $max_servers = 40 if  $max_servers > 40;

    return $max_servers - 2;
}

sub properties {
    return {
	banner => {
	    description => "ESMTP banner.",
	    type => 'string',
	    maxLength => 1024,
	    default => 'ESMTP Proxmox',
	},
	max_filters => {
	    description => "Maximum number of filter processes.",
	    type => 'integer',
	    minimum => 3,
	    maximum => 40,
	    default => get_max_filters(),
	},
	hide_received => {
	    description => "Hide received header in outgoing mails.",
	    type => 'boolean',
	    default => 0,
	},
	max_size => {
	    description => "Maximum email size. Larger mails are rejected.",
	    type => 'integer',
	    minimum => 1024,
	    default => 1024*1024*10,
	},
    };
}

sub options {
    return {
	max_size => { optional => 1 },
	banner => { optional => 1 },
	max_filters => { optional => 1 },
	hide_received => { optional => 1 },
    };
}
package PMG::Config;

use strict;
use warnings;
use IO::File;
use Data::Dumper;

use PVE::SafeSyslog;
use PVE::Tools;
use PVE::INotify;

PMG::Config::Admin->register();
PMG::Config::Mail->register();
PMG::Config::Spam->register();
PMG::Config::LDAP->register();
PMG::Config::ClamAV->register();

# initialize all plugins
PMG::Config::Base->init();


sub new {
    my ($type) = @_;

    my $class = ref($type) || $type;

    my $cfg = PVE::INotify::read_file("pmg.conf");

    return bless $cfg, $class;
}

# get section value or default
# this does not work for ldap entries
sub get {
    my ($self, $section, $key) = @_;

    my $pdata = PMG::Config::Base->private();
    return undef if !defined($pdata->{options}->{$section});
    return undef if !defined($pdata->{options}->{$section}->{$key});
    my $pdesc = $pdata->{propertyList}->{$key};
    return undef if !defined($pdesc);

    my $configid = "section_$section";
    if (defined($self->{ids}->{$configid}) &&
	defined(my $value = $self->{ids}->{$configid}->{$key})) {
	return $value;
    }

    return $pdesc->{default};
}

# get a whole section with default value
# this does not work for ldap entries
sub get_section {
    my ($self, $section) = @_;

    my $pdata = PMG::Config::Base->private();
    return undef if !defined($pdata->{options}->{$section});

    my $res = {};

    foreach my $key (keys %{$pdata->{options}->{$section}}) {

	my $pdesc = $pdata->{propertyList}->{$key};

	my $configid = "section_$section";
	if (defined($self->{ids}->{$configid}) &&
	    defined(my $value = $self->{ids}->{$configid}->{$key})) {
	    $res->{$key} = $value;
	    next;
	}
	$res->{$key} = $pdesc->{default};
    }

    return $res;
}

# get a whole config with default values
# this does not work for ldap entries
sub get_config {
    my ($self) = @_;

    my $res = {};

    foreach my $key (keys %{$self->{ids}}) {
	if ($key =~ m/^section_(\S+)$/) {
	    my $section = $1;
	    $res->{$section} = $self->get_section($section);
	}
    }

    return $res;
}

sub read_pmg_conf {
    my ($filename, $fh) = @_;

    local $/ = undef; # slurp mode

    my $raw = <$fh>;

    return  PMG::Config::Base->parse_config($filename, $raw);
}

sub write_pmg_conf {
    my ($filename, $fh, $cfg) = @_;

    my $raw = PMG::Config::Base->write_config($filename, $cfg);

    PVE::Tools::safe_print($filename, $fh, $raw);
}

PVE::INotify::register_file('pmg.conf', "/etc/proxmox/pmg.conf",
			    \&read_pmg_conf,
			    \&write_pmg_conf);


# rewrite spam configuration
sub rewrite_config_spam {
    my ($self) = @_;

    my $use_awl = $self->get('spam', 'use_awl');
    my $use_bayes = $self->get('spam', 'use_bayes');
    my $use_razor = $self->get('spam', 'use_razor');

    # delete AW and bayes databases if those features are disabled
    unlink '/root/.spamassassin/auto-whitelist' if !$use_awl;
    if (!$use_bayes) {
	unlink '/root/.spamassassin/bayes_journal';
	unlink '/root/.spamassassin/bayes_seen';
	unlink '/root/.spamassassin/bayes_toks';
    }

    # make sure we have a custom.cf file (else cluster sync fails)
    IO::File->new('/etc/mail/spamassassin/custom.cf', 'a', 0644);

    PMG::Utils::rewrite_config_file($self, 'local.cf.in', '/etc/mail/spamassassin/local.cf');
    PMG::Utils::rewrite_config_file($self, 'init.pre.in', '/etc/mail/spamassassin/init.pre');
    PMG::Utils::rewrite_config_file($self, 'v310.pre.in', '/etc/mail/spamassassin/v310.pre');
    PMG::Utils::rewrite_config_file($self, 'v320.pre.in', '/etc/mail/spamassassin/v320.pre');

    if ($use_razor) {
	mkdir "/root/.razor";
	PMG::Utils::rewrite_config_file(
	    $self, 'razor-agent.conf.in', '/root/.razor/razor-agent.conf');
	if (! -e '/root/.razor/identity') {
	    eval {
		my $timeout = 30;
		PVE::Tools::run_command (['razor-admin', '-discover'], timeout => $timeout);
		PVE::Tools::run_command (['razor-admin', '-register'], timeout => $timeout);
	    };
	    my $err = $@;
	    syslog('info', msgquote ("registering razor failed: $err")) if $err;
	}
    }
}

# rewrite ClamAV configuration
sub rewrite_config_clam {
    my ($self) = @_;

    PMG::Utils::rewrite_config_file($self, 'clamd.conf.in', '/etc/clamav/clamd.conf');
    PMG::Utils::rewrite_config_file($self, 'freshclam.conf.in', '/etc/clamav/freshclam.conf');
}

1;
Commit	Line	Data
7e0e6dbe DM	1	package PMG::Config::Base;
	2
	3	use strict;
	4	use warnings;
	5	use Data::Dumper;
	6
	7	use PVE::Tools;
	8	use PVE::JSONSchema qw(get_standard_option);
	9	use PVE::SectionConfig;
	10
	11	use base qw(PVE::SectionConfig);
	12
	13	my $defaultData = {
	14	propertyList => {
	15	type => { description => "Section type." },
	16	section_id => {
	17	description => "Secion ID.",
	18	type => 'string', format => 'pve-configid',
	19	},
	20	},
	21	};
	22
	23	sub private {
	24	return $defaultData;
	25	}
	26
	27	sub format_section_header {
	28	my ($class, $type, $sectionId) = @_;
	29
	30	if ($type eq 'ldap') {
	31	$sectionId =~ s/^ldap_//;
	32	return "$type: $sectionId\n";
	33	} else {
	34	return "section: $type\n";
	35	}
	36	}
	37
	38
	39	sub parse_section_header {
	40	my ($class, $line) = @_;
	41
	42	if ($line =~ m/^(ldap\|section):\s(\S+)\s$/) {
	43	my ($raw_type, $raw_id) = (lc($1), $2);
	44	my $type = $raw_type eq 'section' ? $raw_id : $raw_type;
	45	my $section_id = "${raw_type}_${raw_id}";
	46	my $errmsg = undef; # set if you want to skip whole section
	47	eval { PVE::JSONSchema::pve_verify_configid($raw_id); };
	48	$errmsg = $@ if $@;
	49	my $config = {}; # to return additional attributes
	50	return ($type, $section_id, $errmsg, $config);
	51	}
	52	return undef;
	53	}
	54
ac5d1312	55	package PMG::Config::Admin;
7e0e6dbe DM	56
	57	use strict;
	58	use warnings;
	59
	60	use base qw(PMG::Config::Base);
	61
	62	sub type {
ac5d1312	63	return 'admin';
7e0e6dbe DM	64	}
	65
	66	sub properties {
	67	return {
	68	dailyreport => {
	69	description => "Send daily reports.",
	70	type => 'boolean',
	71	default => 1,
	72	},
f62194b2 DM	73	demo => {
	74	description => "Demo mode - do not start SMTP filter.",
	75	type => 'boolean',
	76	default => 0,
	77	},
	78	email => {
	79	description => "Administrator E-Mail address.",
	80	type => 'string', format => 'email',
	81	default => 'admin@domain.tld',
ac5d1312 DM	82	},
	83	proxyport => {
	84	description => "HTTP proxy port.",
	85	type => 'integer',
	86	minimum => 1,
	87	default => 8080,
	88	},
	89	proxyserver => {
	90	description => "HTTP proxy server address.",
	91	type => 'string',
	92	},
	93	proxyuser => {
	94	description => "HTTP proxy user name.",
	95	type => 'string',
	96	},
	97	proxypassword => {
	98	description => "HTTP proxy password.",
	99	type => 'string',
	100	},
7e0e6dbe DM	101	};
	102	}
	103
	104	sub options {
	105	return {
	106	dailyreport => { optional => 1 },
f62194b2	107	demo => { optional => 1 },
ac5d1312 DM	108	proxyport => { optional => 1 },
	109	proxyserver => { optional => 1 },
	110	proxyuser => { optional => 1 },
	111	proxypassword => { optional => 1 },
7e0e6dbe DM	112	};
	113	}
	114
	115	package PMG::Config::Spam;
	116
	117	use strict;
	118	use warnings;
	119
	120	use base qw(PMG::Config::Base);
	121
	122	sub type {
	123	return 'spam';
	124	}
	125
	126	sub properties {
	127	return {
1ccc8e95 DM	128	languages => {
	129	description => "This option is used to specify which languages are considered OK for incoming mail.",
	130	type => 'string',
	131	pattern => '(all\|([a-z][a-z])+( ([a-z][a-z])+)*)',
	132	default => 'all',
	133	},
	134	use_bayes => {
	135	description => "Whether to use the naive-Bayesian-style classifier.",
	136	type => 'boolean',
	137	default => 1,
	138	},
582cfacf DM	139	use_awl => {
	140	description => "Use the Auto-Whitelist plugin.",
	141	type => 'boolean',
	142	default => 1,
	143	},
	144	use_razor => {
	145	description => "Whether to use Razor2, if it is available.",
	146	type => 'boolean',
	147	default => 1,
	148	},
03ac6d8f DM	149	use_ocr => {
	150	description => "Enable OCR to scan pictures.",
	151	type => 'boolean',
	152	default => 0,
	153	},
1ccc8e95 DM	154	wl_bounce_relays => {
	155	description => "Whitelist legitimate bounce relays.",
	156	type => 'string',
	157	},
7e0e6dbe DM	158	bounce_score => {
	159	description => "Additional score for bounce mails.",
	160	type => 'integer',
	161	minimum => 0,
	162	maximum => 1000,
	163	default => 0,
	164	},
f62194b2 DM	165	rbl_checks => {
	166	description => "Enable real time blacklists (RBL) checks.",
	167	type => 'boolean',
	168	default => 1,
	169	},
	170	maxspamsize => {
	171	description => "Maximum size of spam messages in bytes.",
	172	type => 'integer',
	173	minimim => 64,
	174	default => 200*1024,
	175	},
7e0e6dbe DM	176	};
	177	}
	178
	179	sub options {
	180	return {
582cfacf DM	181	use_awl => { optional => 1 },
582cfacf DM	182	use_razor => { optional => 1 },
03ac6d8f	183	use_ocr => { optional => 1 },
1ccc8e95 DM	184	wl_bounce_relays => { optional => 1 },
	185	languages => { optional => 1 },
	186	use_bayes => { optional => 1 },
7e0e6dbe	187	bounce_score => { optional => 1 },
f62194b2 DM	188	rbl_checks => { optional => 1 },
	189	maxspamsize => { optional => 1 },
	190	};
	191	}
	192
	193	package PMG::Config::ClamAV;
	194
	195	use strict;
	196	use warnings;
	197
	198	use base qw(PMG::Config::Base);
	199
	200	sub type {
	201	return 'clamav';
	202	}
	203
	204	sub properties {
	205	return {
ac5d1312 DM	206	dbmirror => {
	207	description => "ClamAV database mirror server.",
	208	type => 'string',
	209	default => 'database.clamav.net',
	210	},
	211	archiveblockencrypted => {
	212	description => "Wether to block encrypted archives. Mark encrypted archives as viruses.",
	213	type => 'boolean',
	214	default => 0,
	215	},
	216	archivemaxrec => {
	217	description => "Nested archives are scanned recursively, e.g. if a ZIP archive contains a TAR file, all files within it will also be scanned. This options specifies how deeply the process should be continued. Warning: setting this limit too high may result in severe damage to the system.",
	218	minimum => 1,
	219	default => 5,
	220	},
f62194b2	221	archivemaxfiles => {
ac5d1312	222	description => "Number of files to be scanned within an archive, a document, or any other kind of container. Warning: disabling this limit or setting it too high may result in severe damage to the system.",
f62194b2 DM	223	type => 'integer',
	224	minimum => 0,
	225	default => 1000,
	226	},
ac5d1312 DM	227	archivemaxsize => {
	228	description => "Files larger than this limit won't be scanned.",
	229	type => 'integer',
	230	minimum => 1000000,
	231	default => 25000000,
	232	},
	233	maxscansize => {
	234	description => "Sets the maximum amount of data to be scanned for each input file.",
	235	type => 'integer',
	236	minimum => 1000000,
	237	default => 100000000,
	238	},
	239	maxcccount => {
	240	description => "This option sets the lowest number of Credit Card or Social Security numbers found in a file to generate a detect.",
	241	type => 'integer',
	242	minimum => 0,
	243	default => 0,
	244	},
f62194b2 DM	245	};
	246	}
	247
	248	sub options {
	249	return {
ac5d1312 DM	250	archiveblockencrypted => { optional => 1 },
ac5d1312 DM	251	archivemaxrec => { optional => 1 },
f62194b2	252	archivemaxfiles => { optional => 1 },
ac5d1312 DM	253	archivemaxsize => { optional => 1 },
	254	maxscansize => { optional => 1 },
	255	dbmirror => { optional => 1 },
	256	maxcccount => { optional => 1 },
7e0e6dbe DM	257	};
	258	}
	259
	260	package PMG::Config::LDAP;
	261
	262	use strict;
	263	use warnings;
	264
	265	use base qw(PMG::Config::Base);
	266
	267	sub type {
	268	return 'ldap';
	269	}
	270
	271	sub properties {
	272	return {
	273	mode => {
	274	description => "LDAP protocol mode ('ldap' or 'ldaps').",
	275	type => 'string',
	276	enum => ['ldap', 'ldaps'],
	277	default => 'ldap',
	278	},
	279	};
	280	}
	281
	282	sub options {
	283	return {
	284	mode => { optional => 1 },
	285	};
	286	}
f62194b2	287
d9dc3c08 DM	288	package PMG::Config::Mail;
	289
	290	use strict;
	291	use warnings;
	292
f62194b2 DM	293	use PVE::ProcFSTools;
f62194b2 DM	294
d9dc3c08 DM	295	use base qw(PMG::Config::Base);
	296
	297	sub type {
	298	return 'mail';
	299	}
	300
f62194b2 DM	301	my $physicalmem = 0;
	302	sub physical_memory {
	303
	304	return $physicalmem if $physicalmem;
	305
	306	my $info = PVE::ProcFSTools::read_meminfo();
	307	my $total = int($info->{memtotal} / (1024*1024));
	308
	309	return $total;
	310	}
	311
	312	sub get_max_filters {
	313	# estimate optimal number of filter servers
	314
	315	my $max_servers = 5;
	316	my $servermem = 120;
	317	my $memory = physical_memory();
	318	my $add_servers = int(($memory - 512)/$servermem);
	319	$max_servers += $add_servers if $add_servers > 0;
	320	$max_servers = 40 if $max_servers > 40;
	321
	322	return $max_servers - 2;
	323	}
	324
d9dc3c08 DM	325	sub properties {
	326	return {
	327	banner => {
	328	description => "ESMTP banner.",
	329	type => 'string',
	330	maxLength => 1024,
	331	default => 'ESMTP Proxmox',
	332	},
f62194b2 DM	333	max_filters => {
	334	description => "Maximum number of filter processes.",
	335	type => 'integer',
	336	minimum => 3,
	337	maximum => 40,
	338	default => get_max_filters(),
	339	},
	340	hide_received => {
	341	description => "Hide received header in outgoing mails.",
	342	type => 'boolean',
ac5d1312 DM	343	default => 0,
	344	},
	345	max_size => {
	346	description => "Maximum email size. Larger mails are rejected.",
	347	type => 'integer',
	348	minimum => 1024,
	349	default => 1024102410,
f62194b2	350	},
d9dc3c08 DM	351	};
	352	}
	353
	354	sub options {
	355	return {
ac5d1312	356	max_size => { optional => 1 },
d9dc3c08	357	banner => { optional => 1 },
f62194b2 DM	358	max_filters => { optional => 1 },
f62194b2 DM	359	hide_received => { optional => 1 },
d9dc3c08 DM	360	};
d9dc3c08 DM	361	}
7e0e6dbe DM	362	package PMG::Config;
	363
	364	use strict;
	365	use warnings;
9123cab5	366	use IO::File;
7e0e6dbe DM	367	use Data::Dumper;
7e0e6dbe DM	368
9123cab5	369	use PVE::SafeSyslog;
7e0e6dbe DM	370	use PVE::Tools;
	371	use PVE::INotify;
	372
ac5d1312	373	PMG::Config::Admin->register();
d9dc3c08	374	PMG::Config::Mail->register();
7e0e6dbe DM	375	PMG::Config::Spam->register();
7e0e6dbe DM	376	PMG::Config::LDAP->register();
f62194b2	377	PMG::Config::ClamAV->register();
7e0e6dbe DM	378
	379	# initialize all plugins
	380	PMG::Config::Base->init();
	381
f62194b2 DM	382
	383	sub new {
	384	my ($type) = @_;
	385
	386	my $class = ref($type) \|\| $type;
	387
	388	my $cfg = PVE::INotify::read_file("pmg.conf");
	389
	390	return bless $cfg, $class;
	391	}
	392
	393	# get section value or default
	394	# this does not work for ldap entries
	395	sub get {
	396	my ($self, $section, $key) = @_;
	397
	398	my $pdata = PMG::Config::Base->private();
	399	return undef if !defined($pdata->{options}->{$section});
	400	return undef if !defined($pdata->{options}->{$section}->{$key});
	401	my $pdesc = $pdata->{propertyList}->{$key};
	402	return undef if !defined($pdesc);
	403
	404	my $configid = "section_$section";
	405	if (defined($self->{ids}->{$configid}) &&
	406	defined(my $value = $self->{ids}->{$configid}->{$key})) {
	407	return $value;
1ccc8e95	408	}
f62194b2 DM	409
	410	return $pdesc->{default};
	411	}
	412
1ccc8e95 DM	413	# get a whole section with default value
	414	# this does not work for ldap entries
	415	sub get_section {
	416	my ($self, $section) = @_;
	417
	418	my $pdata = PMG::Config::Base->private();
	419	return undef if !defined($pdata->{options}->{$section});
	420
	421	my $res = {};
	422
	423	foreach my $key (keys %{$pdata->{options}->{$section}}) {
	424
	425	my $pdesc = $pdata->{propertyList}->{$key};
	426
	427	my $configid = "section_$section";
	428	if (defined($self->{ids}->{$configid}) &&
	429	defined(my $value = $self->{ids}->{$configid}->{$key})) {
	430	$res->{$key} = $value;
	431	next;
	432	}
	433	$res->{$key} = $pdesc->{default};
	434	}
	435
	436	return $res;
	437	}
	438
be16be07 DM	439	# get a whole config with default values
	440	# this does not work for ldap entries
	441	sub get_config {
	442	my ($self) = @_;
	443
	444	my $res = {};
	445
	446	foreach my $key (keys %{$self->{ids}}) {
	447	if ($key =~ m/^section_(\S+)$/) {
	448	my $section = $1;
	449	$res->{$section} = $self->get_section($section);
	450	}
	451	}
	452
	453	return $res;
	454	}
	455
7e0e6dbe DM	456	sub read_pmg_conf {
7e0e6dbe DM	457	my ($filename, $fh) = @_;
f62194b2	458
7e0e6dbe	459	local $/ = undef; # slurp mode
f62194b2	460
7e0e6dbe DM	461	my $raw = <$fh>;
	462
	463	return PMG::Config::Base->parse_config($filename, $raw);
	464	}
	465
	466	sub write_pmg_conf {
	467	my ($filename, $fh, $cfg) = @_;
	468
	469	my $raw = PMG::Config::Base->write_config($filename, $cfg);
	470
	471	PVE::Tools::safe_print($filename, $fh, $raw);
	472	}
	473
f62194b2 DM	474	PVE::INotify::register_file('pmg.conf', "/etc/proxmox/pmg.conf",
f62194b2 DM	475	\&read_pmg_conf,
7e0e6dbe DM	476	\&write_pmg_conf);
	477
	478
9123cab5 DM	479	# rewrite spam configuration
	480	sub rewrite_config_spam {
	481	my ($self) = @_;
	482
	483	my $use_awl = $self->get('spam', 'use_awl');
	484	my $use_bayes = $self->get('spam', 'use_bayes');
	485	my $use_razor = $self->get('spam', 'use_razor');
	486
	487	# delete AW and bayes databases if those features are disabled
	488	unlink '/root/.spamassassin/auto-whitelist' if !$use_awl;
	489	if (!$use_bayes) {
	490	unlink '/root/.spamassassin/bayes_journal';
	491	unlink '/root/.spamassassin/bayes_seen';
	492	unlink '/root/.spamassassin/bayes_toks';
	493	}
	494
	495	# make sure we have a custom.cf file (else cluster sync fails)
	496	IO::File->new('/etc/mail/spamassassin/custom.cf', 'a', 0644);
	497
	498	PMG::Utils::rewrite_config_file($self, 'local.cf.in', '/etc/mail/spamassassin/local.cf');
	499	PMG::Utils::rewrite_config_file($self, 'init.pre.in', '/etc/mail/spamassassin/init.pre');
	500	PMG::Utils::rewrite_config_file($self, 'v310.pre.in', '/etc/mail/spamassassin/v310.pre');
	501	PMG::Utils::rewrite_config_file($self, 'v320.pre.in', '/etc/mail/spamassassin/v320.pre');
	502
	503	if ($use_razor) {
	504	mkdir "/root/.razor";
	505	PMG::Utils::rewrite_config_file(
	506	$self, 'razor-agent.conf.in', '/root/.razor/razor-agent.conf');
	507	if (! -e '/root/.razor/identity') {
	508	eval {
	509	my $timeout = 30;
	510	PVE::Tools::run_command (['razor-admin', '-discover'], timeout => $timeout);
	511	PVE::Tools::run_command (['razor-admin', '-register'], timeout => $timeout);
	512	};
	513	my $err = $@;
	514	syslog('info', msgquote ("registering razor failed: $err")) if $err;
	515	}
	516	}
	517	}
	518
ac5d1312 DM	519	# rewrite ClamAV configuration
	520	sub rewrite_config_clam {
	521	my ($self) = @_;
	522
	523	PMG::Utils::rewrite_config_file($self, 'clamd.conf.in', '/etc/clamav/clamd.conf');
	524	PMG::Utils::rewrite_config_file($self, 'freshclam.conf.in', '/etc/clamav/freshclam.conf');
	525	}
	526
7e0e6dbe	527	1;