2020-02-22 23:47:36 +01:00
|
|
|
|
/* Copyright (c) Citrix Systems, Inc.
|
|
|
|
|
* All rights reserved.
|
|
|
|
|
*
|
|
|
|
|
* Redistribution and use in source and binary forms,
|
|
|
|
|
* with or without modification, are permitted provided
|
|
|
|
|
* that the following conditions are met:
|
|
|
|
|
*
|
|
|
|
|
* * Redistributions of source code must retain the above
|
|
|
|
|
* copyright notice, this list of conditions and the
|
|
|
|
|
* following disclaimer.
|
|
|
|
|
* * Redistributions in binary form must reproduce the above
|
|
|
|
|
* copyright notice, this list of conditions and the
|
|
|
|
|
* following disclaimer in the documentation and/or other
|
|
|
|
|
* materials provided with the distribution.
|
|
|
|
|
*
|
|
|
|
|
* THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND
|
|
|
|
|
* CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES,
|
|
|
|
|
* INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
|
|
|
|
|
* MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
|
|
|
|
|
* DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR
|
|
|
|
|
* CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
|
|
|
|
|
* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,
|
|
|
|
|
* BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
|
|
|
|
|
* SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
|
|
|
|
|
* INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
|
|
|
|
|
* WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
|
|
|
|
|
* NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
|
|
|
|
|
* OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
|
|
|
|
|
* SUCH DAMAGE.
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
using System;
|
|
|
|
|
using System.Collections.Generic;
|
|
|
|
|
using XenAdmin.Core;
|
2020-03-27 02:15:55 +01:00
|
|
|
|
using XenAdmin.Diagnostics.Hotfixing;
|
2020-02-22 23:47:36 +01:00
|
|
|
|
using XenAdmin.Diagnostics.Problems;
|
2020-03-27 02:15:55 +01:00
|
|
|
|
using XenAdmin.Diagnostics.Problems.HostProblem;
|
2020-02-22 23:47:36 +01:00
|
|
|
|
using XenAdmin.Diagnostics.Problems.PoolProblem;
|
|
|
|
|
using XenAPI;
|
|
|
|
|
|
|
|
|
|
namespace XenAdmin.Diagnostics.Checks
|
|
|
|
|
{
|
|
|
|
|
class PoolLegacySslCheck : HostPostLivenessCheck
|
|
|
|
|
{
|
|
|
|
|
private readonly Dictionary<string, string> _installMethodConfig;
|
|
|
|
|
private readonly Pool _pool;
|
2020-03-27 02:15:55 +01:00
|
|
|
|
private readonly XenServerVersion _newVersion;
|
|
|
|
|
private readonly bool _manualUpgrade;
|
2020-02-22 23:47:36 +01:00
|
|
|
|
|
|
|
|
|
public PoolLegacySslCheck(Host host, XenServerVersion newVersion)
|
|
|
|
|
: base(host)
|
|
|
|
|
{
|
|
|
|
|
_newVersion = newVersion;
|
|
|
|
|
_pool = Helpers.GetPoolOfOne(Host?.Connection);
|
|
|
|
|
}
|
|
|
|
|
|
2020-03-27 02:15:55 +01:00
|
|
|
|
public PoolLegacySslCheck(Host host, Dictionary<string, string> installMethodConfig, bool manualUpgrade)
|
2020-02-22 23:47:36 +01:00
|
|
|
|
: base(host)
|
|
|
|
|
{
|
|
|
|
|
_installMethodConfig = installMethodConfig;
|
|
|
|
|
_pool = Helpers.GetPoolOfOne(Host?.Connection);
|
2020-03-27 02:15:55 +01:00
|
|
|
|
_manualUpgrade = manualUpgrade;
|
2020-02-22 23:47:36 +01:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public override string Description => Messages.CHECKING_SECURITY_PROTOCOL;
|
|
|
|
|
|
|
|
|
|
protected override Problem RunHostCheck()
|
|
|
|
|
{
|
|
|
|
|
if (!_pool.ssl_legacy() || Helpers.StockholmOrGreater(Host))
|
|
|
|
|
return null;
|
|
|
|
|
|
|
|
|
|
//update case
|
|
|
|
|
if (_newVersion != null)
|
|
|
|
|
{
|
|
|
|
|
if (_newVersion.Version.CompareTo(new Version(BrandManager.ProductVersion82)) >= 0)
|
|
|
|
|
return new LegacySslProblem(this, _pool);
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
//upgrade case
|
2020-03-27 02:15:55 +01:00
|
|
|
|
|
|
|
|
|
if (!_manualUpgrade)
|
|
|
|
|
{
|
|
|
|
|
var hotfix = HotfixFactory.Hotfix(Host);
|
|
|
|
|
if (hotfix != null && hotfix.ShouldBeAppliedTo(Host))
|
|
|
|
|
return new HostDoesNotHaveHotfixWarning(this, Host);
|
|
|
|
|
}
|
|
|
|
|
|
2020-02-22 23:47:36 +01:00
|
|
|
|
string upgradePlatformVersion = null;
|
|
|
|
|
|
|
|
|
|
if (_installMethodConfig != null)
|
|
|
|
|
Host.TryGetUpgradeVersion(Host, _installMethodConfig, out upgradePlatformVersion, out _);
|
|
|
|
|
|
|
|
|
|
// we don't know the upgrade version, so add generic warning
|
|
|
|
|
// (this is the case of the manual upgrade or when the rpu plugin doesn't have the function)
|
|
|
|
|
if (string.IsNullOrEmpty(upgradePlatformVersion))
|
|
|
|
|
return new LegacySslWarning(this, _pool);
|
|
|
|
|
|
|
|
|
|
// we know they are upgrading to Stockholm or greater, so block them
|
|
|
|
|
if (Helpers.StockholmOrGreater(upgradePlatformVersion))
|
|
|
|
|
return new LegacySslProblem(this, _pool);
|
|
|
|
|
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|