#!/usr/bin/python2.6

#

# Univention System Info

#  Stores files uploaded via HTTP POST

#

# Copyright 2009-2014 Univention GmbH

#

# http://www.univention.de/

#

# All rights reserved.

#

# The source code of this program is made available

# under the terms of the GNU Affero General Public License version 3

# (GNU AGPL V3) as published by the Free Software Foundation.

#

# Binary versions of this program provided by Univention to you as

# well as other copyrighted, protected or trademarked materials like

# Logos, graphics, fonts, specific documentations and configurations,

# cryptographic keys etc. are subject to a license agreement between

# you and Univention and not subject to the GNU AGPL V3.

#

# In the case you use this program under the terms of the GNU AGPL V3,

# the program is provided in the hope that it will be useful,

# but WITHOUT ANY WARRANTY; without even the implied warranty of

# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the

# GNU Affero General Public License for more details.

#

# You should have received a copy of the GNU Affero General Public

# License with the Debian GNU/Linux or Univention distribution in file

# /usr/share/common-licenses/AGPL-3; if not, see

# <http://www.gnu.org/licenses/>.

import univention.config_registry as ucr

import cgi

from email.MIMEText import MIMEText

import os

import socket

import smtplib

import time

import tarfile

configRegistry = ucr.ConfigRegistry()

configRegistry.load()

def save_uploaded_file(form_field, upload_dir, max_size):

	form = cgi.FieldStorage()

	if form_field not in form:

		return (False, None, None)

	fileitem = form[form_field]

	if not fileitem.filename.endswith('.tar.gz'):

		return (False, fileitem.filename, None)

	basename = fileitem.filename[:-len('.tar.gz')]

	filename = os.path.join(upload_dir, fileitem.filename)

	if not os.path.abspath(filename).startswith(upload_dir):

		return (False, None, None)

	if os.path.exists(filename):

		filename += '.%s' % str(time.time() * 100)

	fout = file(filename, 'wb')

	size = 0

	while True:

		chunk = fileitem.file.read(100000)

		if not chunk:

			break

		size += len(chunk)

		if size > max_size:

			fout.close()

			os.unlink(fout.name)

			return (False, filename, basename)

		fout.write(chunk)

	fout.close()

	return (True, filename, basename)

# make HTTP happy

print 'Content-Type: text/plain\n'

path = configRegistry.get('umc/sysinfo/upload/path', '/var/lib/univention-system-info/archives/')

ok, filepath, basename = save_uploaded_file('filename', path, configRegistry.get('umc/sysinfo/upload/size', '2000000'))

filename = filepath[len(path):]

if not ok:

	print 'ERROR: wrong file type or file too big'

else:

	infoTable = ''

	# get contents of info file

	try:

		tarFile = tarfile.open(os.path.join(path, filepath), 'r')

		infoTable = '<table>\n'

		infoDict = {}

		for line in tarFile.extractfile(tarFile.getmember('%s/info' % basename)).readlines():

			key, val = line.strip().split(':', 1)

			if isinstance(key, unicode):

				key = key.encode('UTF-8')

				val = val.encode('UTF-8')

			infoTable += '<tr><td>%s:</td><td>%s</td></tr>\n' % (key.strip(), val.strip())

			infoDict[key.strip()] = val.strip()

		infoTable += '</table>'

	except:

		import traceback

		infoTable += traceback.format_exc()

	msg = MIMEText('''

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"

  "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">

<html>

<head/>

<body>

<p>A new Univention system info archive has been uploaded.</p>

%s

<p>

Archive: <a href="https://%s/univention-system-info-upload/archives/%s">%s</a>

</p>

</body>

</html>

''' % (infoTable, socket.getfqdn(), filename, filename), 'html', 'utf-8')

	if 'Ticket No' in infoDict.keys() and infoDict['Ticket No']:

		msg['Subject'] = '[Ticket#%s] Univention System Info Upload' % (infoDict['Ticket No'],)

	else:

		msg['Subject'] = 'Univention System Info Upload'

	if 'Email' in infoDict.keys() and infoDict['Email']:

		sender = infoDict['Email']

	else:

		sender = configRegistry.get('umc/sysinfo/upload/sender', 'root')

	recipient = configRegistry.get('umc/sysinfo/upload/recipient', 'feedback@univention.de')

	msg['From'] = sender

	msg['To'] = recipient

	s = smtplib.SMTP()

	s.connect()

	s.sendmail(sender, [recipient], msg.as_string())

	s.close()

	print 'OK: file saved successfully'

#: umc/js/sysinfo.js:267 umc/js/sysinfo.js:338

#, fuzzy

msgid "Uploading informations"

msgstr "Hochladen fehlgeschlagen"

#: umc/js/sysinfo.js:90

msgid "phone number"

msgstr ""

#~ msgid ""

#~ "<p>Additionally to the information listed above some more details about "

#~ "the system has been collected. The whole set of collected data that will "

#~ "be transmitted to Univention can be downloaded at the following URL:</p>"

#~ msgstr ""

#~ "<p>Zusätzlich zu den oben angezeigten Informationen wurden weitere "

#~ "Details über das System ermittelt. Die gesamten Informationen, die an "

#~ "Univention übertragen werden sollen, können unter der folgenden URL "

#~ "heruntergeladen werden:</p>"

#~ msgid ""

#~ "<p>If a Univention Support Engineer has asked you to provide this "

#~ "information, then please insert the ticket number of the related support "

#~ "ticket into the following text field. The ticket number can be found in "

#~ "the subject of a support mail of the ticket. This information will speed "

#~ "up the processing of the ticket.</p>"

#~ msgstr ""

#~ "<p>Wenn Sie durch den Univention-Support gebeten worden sind, diese "

#~ "Informationen zu ermitteln, dann geben Sie bitte im folgenden Feld die "

#~ "Ticketnummer an, welche sich dem Betreff der Support-Mails entnehmen "

#~ "lässt. Die Ticketnummer hilft bei der Zuordnung zu dem Supportfall und "

#~ "beschleunigt die Bearbeitung.</p>"

#~ msgid ""

#~ "<p>In the next step the information about the hardware of your system "

#~ "will be collected and a summary will be shown. During this step, no "

#~ "information will be sent to Univention.</p>"

#~ msgstr ""

#~ "<p>Im nächsten Schritt werden die Informationen des Systems ermittelt "

#~ "sowie eine Zusammenfassung darüber angezeigt. Während dieses Vorganges "

#~ "werden keine Informationen an Univention übertragen.</p>"

#~ msgid ""

#~ "<p>The following information has been collected and will be transfered to "

#~ "Univention with your acceptance.</p>"

#~ msgstr ""

#~ "<p>Die folgenden Informationen wurden ermittelt und werden mit Ihrer "

#~ "Zustimmung an Univention übertragen:</p>"

#~ msgid "CPU"

#~ msgstr "CPU"

#~ msgid "Collected data"

#~ msgstr "Ermittelte Daten"

#~ msgid "Comment"

#~ msgstr "Kommentar"

#~ msgid "Graphics card"

#~ msgstr "Grafikkarte"

#~ msgid ""

#~ "If this is related to a support case the next step will be to enter the "

#~ "ticket number. Otherwise the information about your system will be "

#~ "collected and a summary is shown."

#~ msgstr ""

#~ "Wenn sich dies auf einen Supportfall bezieht, wird im nächsten Schritt "

#~ "die Ticketnummer abgefragt. Anderenfalls werden die Informationen zu "

#~ "Ihrem System ermittelt und eine Zusammenfassung angezeigt."

#~ msgid ""

#~ "In the following step two possibilities to transmit the information to "

#~ "Univention will be described."

#~ msgstr ""

#~ "Im folgenden Schritt werden Ihnen zwei Möglichkeiten geboten, die "

#~ "Informationen an Univention zu übermitteln."

#~ msgid "Manufacturer"

#~ msgstr "Hersteller"

#~ msgid "Memory"

#~ msgstr "Arbeitsspeicher"

#~ msgid "Method"

#~ msgstr "Methode"

#~ msgid "Model"

#~ msgstr "Modell"

#~ msgid "Network adapter"

#~ msgstr "Netzwerkkarte"

#~ msgid "Number of CPUs"

#~ msgstr "Anzahl der CPUs"

#~ msgid "This is related to a support case"

#~ msgstr "Dies bezieht sich auf einen Supportfall"

#~ msgid "Transfer the information"

#~ msgstr "Übertragung der Informationen"

#~ msgid "Transfer via mail"

#~ msgstr "Übertragung via Mail"

#~ msgid "Upload"

#~ msgstr "Hochladen"

	"umc/widgets/RadioButton",

	"umc/widgets/ProgressBar",

		_ticketNumberUsed: false,

		gerValidationMessage: function(widget) {

			// manual trigger for the "required filed" functionality

			widget._hasBeenBlurred = true;

			widget.validate();

		},

		downloadUSI: function() {

			this._progressBar.setInfo(_('Processing'), _('Downloading newest Version of Univention-System-Information'), 20);

			return tools.umcpCommand('sysinfo/download_usi');

		},

		executeUSI: function() {

			return tools.umcpCommand('sysinfo/general').then(

				lang.hitch(this, function(data) {

					var generalValues = data.result;

					var ticketNumber = this.getWidget('general', 'ticketNumber').get('value');

					var comment = this.getWidget('general', 'comment').get('value');

					var email = this.getWidget('general', 'emailBox').get('value');

					var requestValues = {

						'manufacturer': generalValues.manufacturer,

						'model': generalValues.model,

						'comment': comment,

						'ticket': ticketNumber,

						'email': email

					};

					return tools.umcpCommand('sysinfo/execute_usi', requestValues);

				})

			);

		},

		usiProcess: function() {

			this._progressBar.setInfo(_('Processing'), _('Starting USI process'), 10);

			this.standby(true, this._progressBar);

			this.downloadUSI().then(

				lang.hitch(this, function() {

					this._progressBar.setInfo(_('Processing'), _('Executing USI'), 40);

					this.executeUSI().then(

						lang.hitch(this, function(data) {

							this._archiveFilename = data.result;

							var name = data.result.replace('/var/www/univention-management-console/system-info/','');

							// create Link on uploaded page so user can easily downlad the created archive

							this._archiveLink = lang.replace('<a href="{url}">{text}</a>', {

								'url': '/univention-management-console/system-info/' + name,

								'text': _('Archive with system information')

							});

							// implement link ind uploaded page

							this.getWidget('uploaded', 'secondText').set('content', this._archiveLink);

							this._progressBar.setInfo(_('Processing'),_('Uploading informations'), 70);

							this.uploadArchive().then(lang.hitch(this, function() {

								// upload successful

								this.standby(false);

							}), lang.hitch(this, function() {

								// upload failed

								this.setUploadFailedCaptions()

								this.standby(false);

							}));

						})

					);

				})

			);

		},

import stat

from shutil import copyfile

import tarfile

import tempfile

import bz2

import gzip

import pwd

import grp

import socket

import ssl

SYSINFO_PATH = '/var/www/univention-management-console/system-info/'

		result = self.gather_general_info()

		if not result:

			message = _('Failed to execute command')

			request.status = MODULE_ERR

			self.finished(request.id, None, message)

			return

		request.status = SUCCESS

		self.finished(request.id, result)

	def gather_general_info(self):

		self._upload_archive(archive)

	def _upload_archive(self, archive):

	@simple_response

	def download_usi_script(self):

		self._download_usi_script()

	def _download_usi_script(self):

		# TODO error handling

		TMP_FOLDER = "/tmp"

		usi_file = "%s/usi.py" % (TMP_FOLDER,)

		url = "https://updates.software-univention.de/download/scripts/univention-support-info"

		usi_fallback = "/usr/share/pyshared/univention/management/console/modules/sysinfo/univention-system-information"

		try:

			# create custom https handler for a secure connection

			url_opener = urllib2.build_opener(HTTPSHandler)

			# set as default url opener

			urllib2.install_opener(url_opener)

			_usi = urllib2.urlopen(url)

			with open(usi_file, "wb") as _download_file:

				_download_file.write(_usi.read())

		except (urllib2.HTTPError, urllib2.URLError, httplib.HTTPException):

			# fallback to integrated usi in case the download fails

			copyfile(usi_fallback, usi_file)

		else:

			# make the script executable

			st = os.stat(usi_file)

			os.chmod(usi_file, st.st_mode | stat.S_IEXEC)

	@simple_response

	def execute_usi_script(self, manufacturer='', model='', comment='', ticket='', email=''):

		return self._execute_usi_script(manufacturer, model, comment, ticket, email)

	def _execute_usi_script(self, manufacturer='', model='', comment='', ticket='', email=''):

		TMP_FOLDER = "/tmp"

		usi_file = "/tmp/usi.py"

		output_file = None

		# test if usi.py exists

		if os.path.isfile(usi_file):

			# execute usi script

			_usi_exec = self._call(usi_file)

			if not _usi_exec[0]:  # if no error

				# parse the output and get the filename

				if len(_usi_exec) == 3 and _usi_exec[1]:

					_usi_output = _usi_exec[1].split('\n')

					usi_output = [entry for entry in _usi_output if entry]  # remove empty strings from list

					for entry in usi_output:

						# TODO better use regex

						if entry.strip().startswith(TMP_FOLDER):

							output_file = entry.strip()

		# get and append general system info and ticket number if existent

		general_info = {

			'Manufacturer': manufacturer,

			'Model': model,

			'Comment': comment,

			'Ticket No': ticket,

			'Email': email

		}

		output_file = self.append_general_info_to_archive(output_file, general_info)

		output_file = self.copy_to_upload_path(output_file)  # copy finished archive to the right directory and change path accordingly

		return output_file

	def append_general_info_to_archive(self, archive, info):

		# create temp files

		_tmp_file = tempfile.NamedTemporaryFile(delete=False)

		_tmp_file.close()  # we just need the name

		_tmp_archive = tempfile.NamedTemporaryFile(delete=False)

		_tmp_archive.close()  # we just need the name

		# decompress archive

		with open(_tmp_archive.name, 'wb') as uncompressed_file, bz2.BZ2File(archive, 'rb') as compressed_file:

			for data in iter(lambda: compressed_file.read(100 * 1024), b''):

				uncompressed_file.write(data)

		# open archive in read mode to get folder name

		tar = tarfile.open(_tmp_archive.name, "r")

		archive_folder = os.path.commonprefix(tar.getnames())

		tar.close()

		# correct archive name

		gz_archive = archive_folder.rstrip('/') + '.tar.gz'

		info['archive'] = gz_archive.split('/')[-1]

		# write info file

		tmp_file = open(_tmp_file.name, "w")

		for entry in info:

			tmp_file.write("%s: %s%s" % (entry, info.get(entry), os.linesep,))

		tmp_file.close()

		# append info file to archive

		tar = tarfile.open(_tmp_archive.name, "a")

		tar.add(_tmp_file.name, arcname="%sinfo" % (archive_folder))

		tar.close()

		# re-compress archive as .gz, upload server takes only this format

		with open(_tmp_archive.name, 'rb') as uncompressed_file, gzip.open(gz_archive, 'wb') as compressed_file:

			for data in iter(lambda: uncompressed_file.read(100 * 1024), b''):

				compressed_file.write(data)

		compressed_file.close()

		return gz_archive

	def copy_to_upload_path(self, archive):

		# copy file to upload folder

		archive_name = archive.split('/')[-1]

		upload_file = SYSINFO_PATH + archive_name

		copyfile(archive, upload_file)

		# set owner and group

		uid = pwd.getpwnam("www-data").pw_uid

		gid = grp.getgrnam("www-data").gr_gid

		os.chown(upload_file, uid, gid)

		return upload_file

class HTTPSConnection(httplib.HTTPSConnection):

	'''override httplib so we can check certificates against ca bundle'''

	def connect(self):

		sock = socket.create_connection((self.host, self.port), self.timeout)

		if self._tunnel_host:

			self.sock = sock

			self._tunnel()

		self.sock = ssl.wrap_socket(sock, self.key_file, self.cert_file, cert_reqs=ssl.CERT_REQUIRED, ca_certs="/etc/ssl/certs/ca-certificates.crt")

	def getreply(self):

		response = self.getresponse()

		self.file = response.fp

		return response.status, response.reason, response.msg

	def getfile(self):

		return self.file

class HTTPSHandler(urllib2.HTTPSHandler):

	''' handler to force certificate verification '''

	def https_open(self, req):

		return self.do_open(HTTPSConnection, req)

#!/usr/bin/env python

# -*- coding: utf-8 -*-

#

# univention-support-info - collect system information

#

# Copyright 2011 Univention GmbH

#

# http://www.univention.de/

#

# All rights reserved.

#

# The source code of this program is made available

# under the terms of the GNU Affero General Public License version 3

# (GNU AGPL V3) as published by the Free Software Foundation.

#

# Binary versions of this program provided by Univention to you as

# well as other copyrighted, protected or trademarked materials like

# Logos, graphics, fonts, specific documentations and configurations,

# cryptographic keys etc. are subject to a license agreement between

# you and Univention and not subject to the GNU AGPL V3.

#

# In the case you use this program under the terms of the GNU AGPL V3,

# the program is provided in the hope that it will be useful,

# but WITHOUT ANY WARRANTY; without even the implied warranty of

# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the

# GNU Affero General Public License for more details.

#

# You should have received a copy of the GNU Affero General Public

# License with the Debian GNU/Linux or Univention distribution in file

# /usr/share/common-licenses/AGPL-3; if not, see

# <http://www.gnu.org/licenses/>.

keyID = '18B913ABF3C1550B8C2DFDA994F01970E89E3BEC'

# create with: gpg --armor --export --export-options export-minimal $keyID

keyData = '\n'.join(('-----BEGIN PGP PUBLIC KEY BLOCK-----',

					 'Version: GnuPG v1.4.9 (GNU/Linux)',

					 '',

					 'mQGiBEA2RhgRBADee7hGh5TPPwqs+z5tfLett9xaVxmRkUfBvqesVIj93WzrKsU3',

					 'S7hjnMlh+JieFjJLy6jTJYtvqqFIxh3vw5btCwhntrTQnu00U/r3UdznqE/zGH2L',

					 'A734aHaSaq6UFKE5kwX0DECgSI1hwc20d7guLJXSqOpwfYktXiB+27GRCwCgh4OR',

					 'MWncPkhaJhusO8YCSnSN0GED/2ez8utubP1FloTfTof4/OLfBvPwdgJ5Q7FRqeF9',

					 'wDmfd8Hetzr+Fh4zMs6dY0c5+unUQiLXjY9F01WT7SM+yFrs5EHzb+gyjIdTmTtn',

					 'mtNTL2cZK8freAv9LPWCHfQ1rii+Qd71+/CKLDfwwLqQxEAkOsrpOsUD4dip6vkm',

					 'ZtaRBACUYoOtB738OzjPqOpbnmNQjQYVtGCocDjfKs+bMyq+LPOyC31NVC4LvqhC',

					 'nwXSUSy8jfXLzInPXgEUiHvGAEvnNzRLAIh6W/pIaK7tIITESmV/C3PBvxLEkJNm',

					 '8Ll+2qGVspYnGTUFe6JzxARzcTVow4JlB+dX40bk7LNqUe6Au7QqVW5pdmVudGlv',

					 'biBTdXBwb3J0IDxzdXBwb3J0QHVuaXZlbnRpb24uZGU+iF4EExECAB4GCwkIBwMC',

					 'AxUCAwMWAgECHgECF4AFAkm+NOYCGQEACgkQlPAZcOieO+xhXwCfdZ7+eWGpJfhz',

					 'CnrfuzgdzqsetMMAn3oUbDZCqzH083DKCNS5547V8XkCtCpVbml2ZW50aW9uIFN1',

					 'cHBvcnQgPHNlcnZpY2VAdW5pdmVudGlvbi5kZT6IYAQTEQIAIAUCSNdW8wIbIwYL',

					 'CQgHAwIEFQIIAwQWAgMBAh4BAheAAAoJEJTwGXDonjvsQcoAn2b9FNPECtPus0Sf',

					 '3ENGafyXSIq7AJ9sbNm+QryXW1rtvtsHlNgYI9eGpLQrVW5pdmVudGlvbiBTdXBw',

					 'b3J0IDxmZWVkYmFja0B1bml2ZW50aW9uLmRlPohgBBMRAgAgBQJI11aYAhsjBgsJ',

					 'CAcDAgQVAggDBBYCAwECHgECF4AACgkQlPAZcOieO+wmzACfVmZKVc37T7W9FQGN',

					 'K+dXsLbDplkAniAYh0l9Nd8wMh/QZrxcRdlgOBrhtDRVbml2ZW50aW9uIFN1cHBv',

					 'cnQgPHBhcnRuZXItdGVjaG5pY2FsQHVuaXZlbnRpb24uZGU+iGAEExECACAFAkho',

					 'p9gCGyMGCwkIBwMCBBUCCAMEFgIDAQIeAQIXgAAKCRCU8Blw6J477IMYAJ9oZoTS',

					 'vHsxF7TYJSGo3pcutuV4RACfbxLxxjU7suCGs+khvINRl9pJel60KlVuaXZlbnRp',

					 'b24gU2VydmljZSA8c2VydmljZUB1bml2ZW50aW9uLmRlPohgBBMRAgAgBQJJvjVV',

					 'AhsjBgsJCAcDAgQVAggDBBYCAwECHgECF4AACgkQlPAZcOieO+ycGwCeM8pJxUrL',

					 'oiKylTxiKZ4MwQoV/L0An3y/9GafqT8SaUgSjYO+9P4szWATtCtQYXJ0bmVyLUxp',

					 'c3RzIDxwYXJ0bmVyLWxpc3RzQHVuaXZlbnRpb24uZGU+iGAEExECACAFAkm+NQEC',

					 'GyMGCwkIBwMCBBUCCAMEFgIDAQIeAQIXgAAKCRCU8Blw6J477C67AJ93Pv9Dcq7g',

					 'HreBv3f1Q07IjDI3bACfUZgClXNISIewXER8FzV5cC08LRm0LFVuaXZlbnRpb24g',

					 'RmVlZGJhY2sgPGZlZWRiYWNrQHVuaXZlbnRpb24uZGU+iGAEExECACAFAkm+NSsC',

					 'GyMGCwkIBwMCBBUCCAMEFgIDAQIeAQIXgAAKCRCU8Blw6J477E8QAJ0XE91GawgL',

					 'lVGfeiiT7c32P35IDACePCNLSzHA6K6JrV7CP98BeZUUNYu0LFVuaXZlbnRpb24g',

					 'SGVscGRlc2sgPGhlbHBkZXNrQHVuaXZlbnRpb24uZGU+iGAEExECACAFAkm+NUMC',

					 'GyMGCwkIBwMCBBUCCAMEFgIDAQIeAQIXgAAKCRCU8Blw6J477JNxAJ4l9wqf+WtV',

					 'C0sAtu91aGWvgW/JQACfTJUCWf1DTqn1sDhbNiCG2jA+B9K0LFVuaXZlbnRpb24g',

					 'VmVydHJpZWIgPHZlcnRyaWViQHVuaXZlbnRpb24uZGU+iGAEExECACAFAkm+NWwC',

					 'GyMGCwkIBwMCBBUCCAMEFgIDAQIeAQIXgAAKCRCU8Blw6J477Jq3AJ9fN/6oKbqY',

					 'exKHPdLQw31wC8HGTgCfZ5gn5zDd2JSY9tirDtMw5SSdfk20M1BhcnRuZXItVGVj',

					 'aG5pY2FsIDxwYXJ0bmVyLXRlY2huaWNhbEB1bml2ZW50aW9uLmRlPohgBBMRAgAg',

					 'BQJJvjUPAhsjBgsJCAcDAgQVAggDBBYCAwECHgECF4AACgkQlPAZcOieO+wlNQCf',

					 'eZ7Z4PeCx7SF+k1CK0bC8oouICkAn3/NYT1ASQLFP8CBqku1shs1lFCstDNQcmVt',

					 'aXVtLVRlY2huaWNhbCA8cHJlbWl1bS10ZWNobmljYWxAdW5pdmVudGlvbi5kZT6I',

					 'YAQTEQIAIAUCSb41GgIbIwYLCQgHAwIEFQIIAwQWAgMBAh4BAheAAAoJEJTwGXDo',

					 'njvsxqcAnjRmgwWtXJqEbptTSSkaamNmGp9KAJ0R7b4RYDSKr+aFGPhhgetqLNXO',

					 'MrQwVW5pdmVudGlvbiBPWCBTdXBwb3J0IDxveC1zdXBwb3J0QHVuaXZlbnRpb24u',

					 'ZGU+iGAEExECACAFAk1GmXcCGyMGCwkIBwMCBBUCCAMEFgIDAQIeAQIXgAAKCRCU',

					 '8Blw6J477JwmAJ9WeeR2SzUtHY7pPolhm4fQmtM20QCfaebVO97CHdKkcAqPjJ3K',

					 'RwWVtpC5AQ0EQDZGGxAEAJotyyct6jvNscl9q2stDB+BUuXefdd7UMdSySSGqt5c',

					 '7f/6IEX/eiG/2nIsqX1IsSQ+Bw0ZQTQUhgI8hICUsmjdjvWnBCyHX8xnMESITDv/',

					 'fJmxgaP8fbMSJexhnizjlz8m74OgnfFew6EuRWRXA/SDeTwmsaUafTv7biKaDlU7',

					 'AAMFA/9hJUqdh+tSaEfwUzPgHdFT8EIM2B0VSmVnqHSWwCjuJTLTWJi+DDe2hq7p',

					 'QPpcATzgEg5qu5lsqh0AAXV998fD/RiO3B+ct1rwYbNlchACIXtgDTe43dmUaKkp',

					 'fPRxeQZr8iym706LJOyppF+jXqOm2oy6Sf++/YElcCBmPPDIwIhGBBgRAgAGBQJA',

					 'NkYbAAoJEJTwGXDonjvsqD0AnRVxlYyWk3DrKL0ZCxRZrtpW6pbwAJ9R/HZLaaH+',

					 '043H7VXVPPTjhs6Tig==',

					 '=BE0y',

					 '-----END PGP PUBLIC KEY BLOCK-----',

					 ))

toprc = '\n'.join(('RCfile for "top with windows"		   # shameless braggin\'',

				   'Id:a, Mode_altscr=0, Mode_irixps=1, Delay_time=3.000, Curwin=0',

				   'Def	 fieldscur=AEHIOQTWKNMbcdfgjplrsuvyzX',

				   '		winflags=62905, sortindx=10, maxtasks=0',

				   '		summclr=1, msgsclr=1, headclr=3, taskclr=1',

				   'Job	 fieldscur=ABcefgjlrstuvyzMKNHIWOPQDX',

				   '		winflags=62777, sortindx=0, maxtasks=0',

				   '		summclr=6, msgsclr=6, headclr=7, taskclr=6',

				   'Mem	 fieldscur=ANOPQRSTUVbcdefgjlmyzWHIKX',

				   '		winflags=62777, sortindx=13, maxtasks=0',

				   '		summclr=5, msgsclr=5, headclr=4, taskclr=5',

				   'Usr	 fieldscur=ABDECGfhijlopqrstuvyzMKNWX',

				   '		winflags=62777, sortindx=4, maxtasks=0',

				   '		summclr=3, msgsclr=3, headclr=2, taskclr=3',

				   '',

				   ))

import cStringIO

import glob

import gzip

import optparse

import os

import shutil

import socket

import stat

import subprocess

import sys

import tarfile

import tempfile

import time

from distutils.spawn import find_executable

# ignore apt's "API not stable yet" warning

import warnings

warnings.filterwarnings("ignore", category=FutureWarning, append=True)

import apt

import apt_pkg

try:

	from univention import config_registry

except ImportError:

	if os.path.isfile('/usr/share/pyshared/univention/config_registry.py'):

		import imp

		config_registry = imp.load_source('config_registry', '/usr/share/pyshared/univention/config_registry.py')

	else:

		sys.path.append('/usr/share/pyshared')

		from univention import config_registry

ucr = config_registry.ConfigRegistry()

ucr.load()

timeString = time.strftime('%Y-%m-%d_%H-%M-%SZ', time.gmtime())

hostname = socket.gethostname()

def Popen(CommandTuple, Input=None):

	try:

		process = subprocess.Popen(CommandTuple, stdin=subprocess.PIPE, stdout=subprocess.PIPE, stderr=subprocess.PIPE, close_fds=True, env=env)

		(stdoutdata, stderrdata) = process.communicate(input=Input)

		return (process.returncode, stdoutdata, stderrdata)

	except (OSError, IOError), error:

		return ('Could not execute %s: %s' % (repr(CommandTuple), repr(' '.join(map(str, error.args)))), '', '')

def _ldapsearchCommand():

	''' Get ldapsearch command depending on UCS version '''

	if find_executable('univention-ldapsearch'):

		return 'univention-ldapsearch'

	return 'ldapsearch'

def _sprint(string):

	''' write status string to stdout without newline '''

	sys.stdout.write(string)

	sys.stdout.flush()

def U32(i):

	'''

	Return i as an unsigned integer, assuming it fits in 32 bits.

	If it's >= 2GB when viewed as a 32-bit unsigned int, return a long.

	'''

	if i < 0:

		i += 1L << 32

	return i

def addFile(name, size, fileobj):

	# try to determine filesize

	if size == None or size == False:

		fileobj.seek(0,os.SEEK_END)

		size = fileobj.tell()

	if fileobj.tell() > 0:

		fileobj.seek(0)

	info = tarfile.TarInfo()

	info.size = size

	info.name = 'univention-support-info-' + hostname + '-' + timeString + '/' + name

	info.mode = stat.S_IRUSR

	info.mtime = time.time()

	archive.addfile(info, fileobj)

def addFileByPath(filename):

	if filename.startswith('/proc/'):

		# This is a /proc/ file, os.stat(filename).st_size will always return 0

		tmpf = tempfile.mkstemp(prefix='univention-support-info.')[1]

		try:

			shutil.copy(filename, tmpf)

		except (OSError, IOError), error:

			error = '\n'.join(map(str, error.args))

			addFile('files/' + filename.strip('/').replace('/', '_') + '.ERROR', len(error), cStringIO.StringIO(error))

			os.unlink(tmpf)

		filesize = os.stat(tmpf).st_size

		os.unlink(tmpf)

	else:

		try:

			filesize = os.stat(filename).st_size

		except (OSError, IOError), error:

			filesize = 0

	try:

		fileobj = open(filename, 'rb')

	except (OSError, IOError), error:

		error = '\n'.join(map(str, error.args))

		addFile('files/' + filename.strip('/').replace('/', '_') + '.ERROR', len(error), cStringIO.StringIO(error))

	else:

		addFile('files/' + filename.strip('/').replace('/', '_'), filesize, fileobj)

		fileobj.close()

def certificateValidity(CertificatePath):

	try:

		import M2Crypto

	except ImportError, error:

		error = '\n'.join(map(str, error.args))

		addFile('info/ssl/' + CertificatePath.strip('/').replace('/', '_') + '.ERROR', len(error), cStringIO.StringIO(error))

		return

	try:

		cert = M2Crypto.X509.load_cert(CertificatePath)

		validity = '%s\nNot Before: %s\nNot After : %s\n' % (CertificatePath, cert.get_not_before(), cert.get_not_after(), )

		addFile('info/ssl/' + CertificatePath.strip('/').replace('/', '_'), len(validity), cStringIO.StringIO(validity))

	except (OSError, IOError, M2Crypto.X509.X509Error), error:

		error = '\n'.join(map(str, error.args))

		addFile('info/ssl/' + CertificatePath.strip('/').replace('/', '_') + '.ERROR', len(error), cStringIO.StringIO(error))

def certificateValidities():

	_sprint( 'Checking certificate validity: ' )

	CertificatePatterns = [

		'/etc/univention/ssl/*.*/cert.pem',

		'/etc/univention/ssl/ucsCA/CAcert.pem',

		]

	for CertificatePattern in CertificatePatterns:

		for CertificatePath in glob.glob(CertificatePattern):

			certificateValidity(CertificatePath)

	print 'done.'

def simpleFiles():

	FilePatterns = [

		'/boot/config-*',

		'/etc/apache2/*',

		'/etc/apache2/*/*',

		'/etc/apt/*',

		'/etc/apt/*/*',

		'/etc/cron*/*',

		'/etc/fstab',

		'/etc/imapd/*',

		'/etc/mtab',

		'/etc/passwd',

		'/etc/procmailrc',

		'/etc/spamassassin/*',

		'/etc/univention/connector/ad/mapping.py',

		'/etc/univention/installation_profile',

		'/etc/ox-secrets/*',

		'/opt/open-xchange/etc/*',

		'/opt/open-xchange/etc/*/*',

		'/opt/open-xchange/etc/*/*/*',

		'/proc/mounts*',

		'/proc/mdstat',

		'/proc/drbd',

		'/proc/cmdline',

		'/var/lib/univention-directory-replication/failed.ldif',

		'/etc/postfix/*',

		'/etc/imapd/*',

		'/var/univention-backup/ad-takeover/*',

		'/etc/*/local.conf*',

		'/root/.bash_history',

		'/var/log/installer/*',

		'/etc/ldap/slapd.conf',

		]

	FileExcludePatterns = [ '/etc/apache2/mods-available/*', '/etc/apache2/sites-available/*' ]

	Files = set()

	ExcludeFiles = list()

	for FileExcludePattern in FileExcludePatterns:

		ExcludeFiles.extend(glob.glob(FileExcludePattern))

	for FilePattern in FilePatterns:

		for Filename in glob.glob(FilePattern):

			if not Filename in ExcludeFiles:

				Files.add(Filename)

	_sprint( 'Collecting files: ' )

	for Filename in sorted(list(Files)):

		if os.path.isfile(Filename):

			addFileByPath(Filename)

			_sprint('.')

	print 'done.'

def licenseObject():

	''' Get license object from ldap (cn=license) '''	

	stdout = executeCommand( 'univention-license-object', (_ldapsearchCommand(), '-x' , '-b', 'cn=license,cn=univention,'+ucr.get('ldap/base')) )

	addFile('info/univention-license-object', len(stdout), cStringIO.StringIO(stdout))

def checkMaintenance():

	''' Check if UCS-Version is in maintenance '''

	if ucr.get('version/version') <= '3.1' and ucr.get('server/role') != 'ucc':

		tmpf = tempfile.TemporaryFile(prefix='univention-support-info.')

		print "Please note, system is no longer maintained, security updates are no longer available for current UCS Version %s" % (ucr.get('version/version'))

		print >> tmpf, "Please note, system is no longer maintained, security updates are no longer available for current UCS Version %s" % (ucr.get('version/version'))

		addFile( 'info/no_maintenance', None, tmpf )

def checkEntryUUID():

	''' Check if ldap base is searchable by its entryUUID '''

	entryuuid=""

	basedn=""

	tmpf = tempfile.TemporaryFile(prefix='univention-support-info.')

	(exitcode, stdout, stderr, ) = Popen( (_ldapsearchCommand(), '-xLLL', '-sbase', 'entryUUID', ) )

	if exitcode == 0:

		entryuuid = stdout.split()[3]

	else:

		print >> tmpf, "ERROR: ldapsearch for base failed: %s" % str(stderr)

		addFile( 'info/entryUUID.stderr', None, tmpf )

		return

	(exitcode, stdout, stderr, ) = Popen( (_ldapsearchCommand(), '-xLLL', 'entryUUID='+entryuuid, 'dn', ) )

	if exitcode == 0:

		basedn = stdout.split()[1]

	else:

		print >> tmpf, "ERROR: ldapsearch by entryUUID failed: %s" % str(stderr)

		addFile( 'info/entryUUID.stderr', None, tmpf )

		return

	if ucr.get('ldap/base') == basedn:

		print >> tmpf, "OK: ldap base found by entryUUID"

	else:

		print >> tmpf, "ERROR: ldap base not found by entryUUID, check ldap index"

	addFile( 'info/entryUUID', None, tmpf )

def aptPackageList():

	"""List installed packages and their source repository."""

	_sprint( 'Collecting package lists: ' )

	cache = apt.Cache()

	packagesAll = tempfile.TemporaryFile(prefix='univention-support-info.')

	packagesUnknownSource = tempfile.TemporaryFile(prefix='univention-support-info.')

	if not hasattr(apt, 'deprecation'):  # python apt 0.7.7 in UCS < 3.0

		packages = [_ for _ in cache if _.isInstalled]

		for pkg in packages:

			pkg._lookupRecord(True)

			try:

				path = apt_pkg.ParseSection(pkg._records.Record)["Filename"]

			except KeyError:

				print >> packagesUnknownSource, "%s\tUNKNOWN" % (pkg.name,)

				continue

			cand = pkg._depcache.GetCandidateVer(pkg._pkg)

			for packagefile, _ in cand.FileList:

				indexfile = cache._list.FindIndex(packagefile)

				if indexfile:

					uri = indexfile.ArchiveURI(path)

					print >> packagesAll, "%s\t%s" % (pkg.name, uri)

	else:

		packages = [_ for _ in cache if _.is_installed]

		for pkg in packages:

			version = pkg.installed.version

			package = pkg.versions[version]

			try:

				uri = package.uri

			except StopIteration:

				print >> packagesUnknownSource, "%s\tUNKNOWN" % (pkg.name,)

				continue

			print >> packagesAll, "%s\t%s" % (pkg.name, uri)

	addFile( 'info/packages_all', None, packagesAll )

	addFile( 'info/packages_unknown-source', None, packagesUnknownSource )

	print 'done.'

def executeCommand(commandName, command, log_stderr = False):

	(exitcode, stdout, stderr, ) = Popen(command)

	if exitcode or log_stderr:

		if type(exitcode) is int:

			stderr += '\nExitcode was %d\n' % exitcode

		else:

			stderr += exitcode + '\n'

		addFile('info/' + commandName + '.stderr', len(stderr), cStringIO.StringIO(stderr))

	return stdout

def templateFiles():

	_sprint( 'Searching for changed template files: ' )

	stdout = executeCommand('check-templates', ('find', '/etc/univention/templates/files/', '(', '-name', '*.dpkg-new', '-o', '-name', '*.dpkg-dist', ')', '-print0', ))

	files = [templatefile for templatefile in stdout.split('\0') if templatefile]

	message = ('Found %d:\n' % len(files)) + '\n'.join(files) + '\n'

	addFile('info/check-templates', len(message), cStringIO.StringIO(message))

	for templatefile in files:

		addFileByPath(templatefile)

		if templatefile.endswith('.dpkg-new'):

			addFileByPath(templatefile[:-len('.dpkg-new')])