kumistatus/servertools/__init__.py

import datetime
import encodings.idna
import httptools
import os
import porttools
import setuptools
import skstools
import socket
import socketserver
import ssltools
import sys
import syslog
import threading

SYSLOG = 0
STDOUT = 1
STDDEB = 2 # STDOUT + Debug
SILENT = 9 # Quiet mode

SSL = 0
PORT = 1
SKS = 2
HTTP = 3

logging = STDOUT

try:
 exec("logging = " + setuptools.getSetting("Log", "sink"))
except:
 pass

def logger(message, prio=syslog.LOG_INFO, sink=logging):
 if sink in (STDOUT, STDDEB):
  if prio not in (syslog.LOG_NOTICE, syslog.LOG_INFO, syslog.LOG_DEBUG):
   print(message)
   sys.stderr.write(message)
  elif prio != syslog.LOG_DEBUG or sink == STDDEB:
   print(message)
 elif sink == SYSLOG:
  syslog.openlog("KumiStatusServer", syslog.LOG_PID)
  syslog.syslog(prio, message)
 elif sink != SILENT:
  try:
   sys.stderr.write("Unknown logging level %s, assuming STDOUT from now on." % str(sink))
  except:
   pass
  logging = STDOUT
  logger(message, prio, logging)

def listIncluded(host, section):
 if not setuptools.getListSetting("Server", "ignorelist"):
  for i in setuptools.getListSetting("HTTP" if section == HTTP else "SSL" if section == SSL else "Ports" if section == PORT else "SKS", "sites" if section == HTTP else "hosts"):
   if encodings.idna.ToASCII(i[0].lower()).decode("UTF-8") == encodings.idna.ToASCII(host.lower()).decode("UTF-8"):
    return True
  return False
 return True

class TCPHandler(socketserver.StreamRequestHandler):
 def readString(self):
  return self.rfile.readline().strip()

 def sendString(self, string):
  self.request.sendall((string + "\n").encode('utf8'))

 def requestHandler(self, request):
  pass

 def worker(self, message):
  content = message.split()
  command = content[0].lower()
  try:
   if command == "hi":
    try:
     return "HI: Kumi Status v0.8.15 (KSP) at %s" % setuptools.getSetting("Server", "host") or socket.gethostname()
    except Exception as e:
     print(e)

   elif command in ("heartbeat", "hb", "ping"):
    return "OK: Still here? Wow."

   elif command in ("stat", "status"):
    return "UA: Not currently implemented."

   elif command in ("ssl", "tls"):
    try:
     host = encodings.idna.ToASCII(str(content[1])).decode("UTF-8")
     try:
      port = int(content[2])
     except IndexError:
      port = 443
     if listIncluded(host, SSL):
      expiry = ssltools.getRemoteExpiry(host, port)
      if expiry > datetime.datetime.now():
       dm = "%s certificate is valid until: %s" % (content[1], expiry)
       try:
        delta = int(content[3])
       except:
        delta = 0
       if expiry < datetime.datetime.now() + datetime.timedelta(days=delta):
        return "AL: %s" % dm
       return "OK: %s" % dm
      else:
       return "AL: %s certificate has expired on: %s" % (content[1], expiry)
     else:
      return "NM: %s is not being monitored!" % content[1]
    except Exception as e:
     print(e)
     return "ER: Could not verify SSL certificate on %s:%i. Is the server down?" % (content[1], int(content[2]))

   elif command == "port":
    host = encodings.idna.ToASCII(str(content[1])).decode("UTF-8")
    port = int(content[2])
    if listIncluded(host, PORT):
     if porttools.isPortOpen(host, port):
      return "OK: Port %i is open on %s." % (port, content[1])
     else:
      return "ER: Port %i is not open on %s." % (port, content[1])
    else:
     return "NM: %s is not being monitored!" % content[1]

   elif command in ("sks", "keyserver"):
    host = encodings.idna.ToASCII(str(content[1])).decode("UTF-8")
    if listIncluded(host, SKS):
     if skstools.getStatus(host):
      return "OK: SKS is running on %s and included in the pools." % content[0]
     else:
      return "ER: The SKS keyserver at %s is not included in the pools." % content[1]
    else:
     return "NM: %s is not being monitored!" % content[1]

   elif command in ("req", "request"):
    return "NI: Requesting monitoring is not yet implemented."

   elif command == "help":
    return "UA: Not currently implemented."

   elif command in ("http", "web"):
    site = encodings.idna.ToASCII(str(content[1])).decode("UTF-8")
    if listIncluded(site, HTTP):
     status = httptools.getStatus(site)
     if status == 200:
      return "OK: Site %s seems to be working fine." % content[1]
     elif status == None:
      return "ER: Site %s looks down from here!" % content[1]
     else:
      return "ER: Site %s returns status code %s!" % (content[1], status)
    else:
     return "NM: %s is not being monitored!" % content[1]

   else:
    return "IM: Unknown command %s." % command

  except TypeError as e:
   return "IM: Invalid values passed to %s. Try HELP %s." % (command, command)
  except IndexError as e:
   return "IM: Invalid values passed to %s. Try HELP %s." % (command, command)

 def handle(self):
  try:
   remote = self.client_address[0] + ":" + str(self.client_address[1])
   logger("New connection from %s." % remote, syslog.LOG_INFO)
   self.sendString(self.worker("hi"))
   while True:
    message = self.readString().decode('utf8')
    if not message:
     logger("Connection from %s closed." % remote, syslog.LOG_DEBUG)
     break
    logger("%s said: %s" % (remote, message))
    try:
     response = self.worker(message)
    except:
     response = "EM: Something went terribly wrong. Sorry about that."
    if response:
     self.sendString(response)
     logger("Sent to %s: %s" % (remote, response), syslog.LOG_DEBUG)
  except Exception as e:
   logger(e, syslog.LOG_CRIT)

class TCPServer(socketserver.ThreadingMixIn, socketserver.TCPServer):
 pass

def shutdown(reboot = False, status = 0):
 if reboot:
  args = sys.argv[:]
  args.insert(0, sys.executable)
  try:
   os.execv(sys.executable, args)
  except:
   logger("Restart failed. Shutting down.")
  exit(status)
Include SKS in server 2017-06-22 15:54:11 +00:00			`import datetime`
			`import encodings.idna`
Replace portsopen.py, siteup.py, sksup.py and sslexpiry.py by twitter.py 2017-06-23 19:52:50 +00:00			`import httptools`
Include SKS in server 2017-06-22 15:54:11 +00:00			`import os`
			`import porttools`
			`import setuptools`
			`import skstools`
			`import socket`
			`import socketserver`
			`import ssltools`
			`import sys`
			`import syslog`
			`import threading`
Restructured server -> Moved most functions to servertools Started implementation of message handler 2016-07-18 15:08:14 +00:00
			`SYSLOG = 0`
			`STDOUT = 1`
			`STDDEB = 2 # STDOUT + Debug`
			`SILENT = 9 # Quiet mode`

Implement SSL monitoring through server 2016-07-18 20:19:58 +00:00			`SSL = 0`
			`PORT = 1`
Include SKS in server 2017-06-22 15:54:11 +00:00			`SKS = 2`
Replace portsopen.py, siteup.py, sksup.py and sslexpiry.py by twitter.py 2017-06-23 19:52:50 +00:00			`HTTP = 3`
Implement SSL monitoring through server 2016-07-18 20:19:58 +00:00
Add support for punycode, some bug fixing 2016-07-20 16:46:46 +00:00			`logging = STDOUT`

			`try:`
			`exec("logging = " + setuptools.getSetting("Log", "sink"))`
			`except:`
			`pass`
Restructured server -> Moved most functions to servertools Started implementation of message handler 2016-07-18 15:08:14 +00:00
			`def logger(message, prio=syslog.LOG_INFO, sink=logging):`
			`if sink in (STDOUT, STDDEB):`
			`if prio not in (syslog.LOG_NOTICE, syslog.LOG_INFO, syslog.LOG_DEBUG):`
			`print(message)`
			`sys.stderr.write(message)`
			`elif prio != syslog.LOG_DEBUG or sink == STDDEB:`
			`print(message)`
			`elif sink == SYSLOG:`
			`syslog.openlog("KumiStatusServer", syslog.LOG_PID)`
			`syslog.syslog(prio, message)`
			`elif sink != SILENT:`
			`try:`
			`sys.stderr.write("Unknown logging level %s, assuming STDOUT from now on." % str(sink))`
			`except:`
			`pass`
			`logging = STDOUT`
			`logger(message, prio, logging)`

Implement SSL monitoring through server 2016-07-18 20:19:58 +00:00			`def listIncluded(host, section):`
Implement port monitoring, improve punycode handling, other minor improvements 2016-07-26 11:28:02 +00:00			`if not setuptools.getListSetting("Server", "ignorelist"):`
Replace portsopen.py, siteup.py, sksup.py and sslexpiry.py by twitter.py 2017-06-23 19:52:50 +00:00			`for i in setuptools.getListSetting("HTTP" if section == HTTP else "SSL" if section == SSL else "Ports" if section == PORT else "SKS", "sites" if section == HTTP else "hosts"):`
Implement port monitoring, improve punycode handling, other minor improvements 2016-07-26 11:28:02 +00:00			`if encodings.idna.ToASCII(i[0].lower()).decode("UTF-8") == encodings.idna.ToASCII(host.lower()).decode("UTF-8"):`
			`return True`
			`return False`
			`return True`
Implement SSL monitoring through server 2016-07-18 20:19:58 +00:00
Restructured server -> Moved most functions to servertools Started implementation of message handler 2016-07-18 15:08:14 +00:00			`class TCPHandler(socketserver.StreamRequestHandler):`
			`def readString(self):`
			`return self.rfile.readline().strip()`

			`def sendString(self, string):`
			`self.request.sendall((string + "\n").encode('utf8'))`

			`def requestHandler(self, request):`
			`pass`

			`def worker(self, message):`
			`content = message.split()`
			`command = content[0].lower()`
Implement SSL monitoring through server 2016-07-18 20:19:58 +00:00			`try:`
Implement port monitoring, improve punycode handling, other minor improvements 2016-07-26 11:28:02 +00:00			`if command == "hi":`
			`try:`
			`return "HI: Kumi Status v0.8.15 (KSP) at %s" % setuptools.getSetting("Server", "host") or socket.gethostname()`
			`except Exception as e:`
			`print(e)`
Include SKS in server 2017-06-22 15:54:11 +00:00
Implement SSL monitoring through server 2016-07-18 20:19:58 +00:00			`elif command in ("heartbeat", "hb", "ping"):`
			`return "OK: Still here? Wow."`
Include SKS in server 2017-06-22 15:54:11 +00:00
Implement SSL monitoring through server 2016-07-18 20:19:58 +00:00			`elif command in ("stat", "status"):`
Add meaningful message for services that are not yet implemented. 2016-07-18 20:21:32 +00:00			`return "UA: Not currently implemented."`
Include SKS in server 2017-06-22 15:54:11 +00:00
Implement SSL monitoring through server 2016-07-18 20:19:58 +00:00			`elif command in ("ssl", "tls"):`
			`try:`
Some punycode bug fixing 2016-07-20 17:14:45 +00:00			`host = encodings.idna.ToASCII(str(content[1])).decode("UTF-8")`
Add support for punycode, some bug fixing 2016-07-20 16:46:46 +00:00			`try:`
			`port = int(content[2])`
			`except IndexError:`
			`port = 443`
			`if listIncluded(host, SSL):`
			`expiry = ssltools.getRemoteExpiry(host, port)`
Implement SSL monitoring through server 2016-07-18 20:19:58 +00:00			`if expiry > datetime.datetime.now():`
Finalize SSL command implementation 2016-07-20 16:17:06 +00:00			`dm = "%s certificate is valid until: %s" % (content[1], expiry)`
			`try:`
			`delta = int(content[3])`
			`except:`
			`delta = 0`
			`if expiry < datetime.datetime.now() + datetime.timedelta(days=delta):`
			`return "AL: %s" % dm`
			`return "OK: %s" % dm`
			`else:`
Add support for punycode, some bug fixing 2016-07-20 16:46:46 +00:00			`return "AL: %s certificate has expired on: %s" % (content[1], expiry)`
Implement SSL monitoring through server 2016-07-18 20:19:58 +00:00			`else:`
			`return "NM: %s is not being monitored!" % content[1]`
Some punycode bug fixing 2016-07-20 17:14:45 +00:00			`except Exception as e:`
			`print(e)`
Add support for punycode, some bug fixing 2016-07-20 16:46:46 +00:00			`return "ER: Could not verify SSL certificate on %s:%i. Is the server down?" % (content[1], int(content[2]))`
Include SKS in server 2017-06-22 15:54:11 +00:00
Implement SSL monitoring through server 2016-07-18 20:19:58 +00:00			`elif command == "port":`
Implement port monitoring, improve punycode handling, other minor improvements 2016-07-26 11:28:02 +00:00			`host = encodings.idna.ToASCII(str(content[1])).decode("UTF-8")`
			`port = int(content[2])`
			`if listIncluded(host, PORT):`
			`if porttools.isPortOpen(host, port):`
			`return "OK: Port %i is open on %s." % (port, content[1])`
			`else:`
			`return "ER: Port %i is not open on %s." % (port, content[1])`
			`else:`
			`return "NM: %s is not being monitored!" % content[1]`
Include SKS in server 2017-06-22 15:54:11 +00:00
			`elif command in ("sks", "keyserver"):`
			`host = encodings.idna.ToASCII(str(content[1])).decode("UTF-8")`
			`if listIncluded(host, SKS):`
			`if skstools.getStatus(host):`
Replace portsopen.py, siteup.py, sksup.py and sslexpiry.py by twitter.py 2017-06-23 19:52:50 +00:00			`return "OK: SKS is running on %s and included in the pools." % content[0]`
Include SKS in server 2017-06-22 15:54:11 +00:00			`else:`
			`return "ER: The SKS keyserver at %s is not included in the pools." % content[1]`
			`else:`
			`return "NM: %s is not being monitored!" % content[1]`

Implement SSL monitoring through server 2016-07-18 20:19:58 +00:00			`elif command in ("req", "request"):`
			`return "NI: Requesting monitoring is not yet implemented."`
Include SKS in server 2017-06-22 15:54:11 +00:00
Implement SSL monitoring through server 2016-07-18 20:19:58 +00:00			`elif command == "help":`
Add meaningful message for services that are not yet implemented. 2016-07-18 20:21:32 +00:00			`return "UA: Not currently implemented."`
Include SKS in server 2017-06-22 15:54:11 +00:00
Replace portsopen.py, siteup.py, sksup.py and sslexpiry.py by twitter.py 2017-06-23 19:52:50 +00:00			`elif command in ("http", "web"):`
			`site = encodings.idna.ToASCII(str(content[1])).decode("UTF-8")`
			`if listIncluded(site, HTTP):`
			`status = httptools.getStatus(site)`
			`if status == 200:`
			`return "OK: Site %s seems to be working fine." % content[1]`
			`elif status == None:`
			`return "ER: Site %s looks down from here!" % content[1]`
			`else:`
			`return "ER: Site %s returns status code %s!" % (content[1], status)`
			`else:`
			`return "NM: %s is not being monitored!" % content[1]`

Implement SSL monitoring through server 2016-07-18 20:19:58 +00:00			`else:`
			`return "IM: Unknown command %s." % command`
Include SKS in server 2017-06-22 15:54:11 +00:00
Add support for punycode, some bug fixing 2016-07-20 16:46:46 +00:00			`except TypeError as e:`
Finalize SSL command implementation 2016-07-20 16:17:06 +00:00			`return "IM: Invalid values passed to %s. Try HELP %s." % (command, command)`
Add support for punycode, some bug fixing 2016-07-20 16:46:46 +00:00			`except IndexError as e:`
Finalize SSL command implementation 2016-07-20 16:17:06 +00:00			`return "IM: Invalid values passed to %s. Try HELP %s." % (command, command)`
Restructured server -> Moved most functions to servertools Started implementation of message handler 2016-07-18 15:08:14 +00:00
			`def handle(self):`
Replace portsopen.py, siteup.py, sksup.py and sslexpiry.py by twitter.py 2017-06-23 19:52:50 +00:00			`try:`
			`remote = self.client_address[0] + ":" + str(self.client_address[1])`
			`logger("New connection from %s." % remote, syslog.LOG_INFO)`
			`self.sendString(self.worker("hi"))`
			`while True:`
			`message = self.readString().decode('utf8')`
			`if not message:`
			`logger("Connection from %s closed." % remote, syslog.LOG_DEBUG)`
			`break`
			`logger("%s said: %s" % (remote, message))`
			`try:`
			`response = self.worker(message)`
			`except:`
			`response = "EM: Something went terribly wrong. Sorry about that."`
			`if response:`
			`self.sendString(response)`
			`logger("Sent to %s: %s" % (remote, response), syslog.LOG_DEBUG)`
			`except Exception as e:`
			`logger(e, syslog.LOG_CRIT)`
Restructured server -> Moved most functions to servertools Started implementation of message handler 2016-07-18 15:08:14 +00:00
			`class TCPServer(socketserver.ThreadingMixIn, socketserver.TCPServer):`
			`pass`

			`def shutdown(reboot = False, status = 0):`
			`if reboot:`
			`args = sys.argv[:]`
			`args.insert(0, sys.executable)`
			`try:`
			`os.execv(sys.executable, args)`
			`except:`
			`logger("Restart failed. Shutting down.")`
			`exit(status)`