v4.2.1.0

https://haproxy-wi.org/changelog.py#4_2_1
5 years ago · 8c9b471363
parent e0424af2e7
commit 8c9b471363
6 changed files with 27 additions and 10 deletions
--- a/app/funct.py
+++ b/app/funct.py
@ -1,4 +1,4 @@
-# -*- coding: utf-8 -*-"
+# -*- coding: utf-8 -*-
 import cgi
 import os, sys

@ -455,7 +455,7 @@ def waf_install(serv, **kwargs):
 	os.system("rm -f %s" % script)
 	
 	stderr = ssh_command(serv, commands, print_out="1")
-	if stderr is None:
+	
 	sql.insert_waf_metrics_enable(serv, "0")
 		

@ -961,3 +961,10 @@ def check_group(group, role_id):
 	else:
 		logging('localhost', ' has tried to actions in not own group ', haproxywi=1, login=1)
 		return False
+		
+		
+def check_service(serv, service_name):
+	commands = [ "systemctl status "+service_name+" |grep Active |awk '{print $1}'" ]
+	return ssh_command(serv, commands)
+
+	
--- a/app/options.py
+++ b/app/options.py
@ -691,6 +691,10 @@ if form.getvalue('master'):
 	if ssh_enable == 0:
 		ssh_key_name = ''
 		
+	servers = sql.select_servers(server=master)
+	for server in servers:
+		ssh_port = str(server[10])
+	
 	if proxy is not None and proxy != '' and proxy != 'None':
 		proxy_serv = proxy 
 	else:
@ -706,7 +710,7 @@ if form.getvalue('master'):
 		funct.install_nginx(master)
 		funct.install_nginx(slave)
 		
-	commands = [ "chmod +x "+script +" &&  ./"+script +" PROXY=" + proxy_serv+ 
+	commands = [ "chmod +x "+script +" &&  ./"+script +" PROXY=" + proxy_serv+" SSH_PORT="+ssh_port+
 				" ETH="+ETH+" IP="+str(IP)+" MASTER=MASTER"+" SYN_FLOOD="+syn_flood+" HOST="+str(master)+
 				" USER="+str(ssh_user_name)+" PASS="+str(ssh_user_password)+" KEY="+str(ssh_key_name) ]
 	
@ -734,7 +738,11 @@ if form.getvalue('master'):
 	if ssh_enable == 0:
 		ssh_key_name = ''
 	
-	commands = [ "chmod +x "+script +" &&  ./"+script +" PROXY=" +proxy_serv+ 
+	servers = sql.select_servers(server=slave)
+	for server in servers:
+		ssh_port = str(server[10])
+	
+	commands = [ "chmod +x "+script +" &&  ./"+script +" PROXY=" +proxy_serv+" SSH_PORT="+ssh_port+
 				" ETH="+ETH+" IP="+IP+" MASTER=BACKUP"+" HOST="+str(slave)+
 				" USER="+str(ssh_user_name)+" PASS="+str(ssh_user_password)+" KEY="+str(ssh_key_name) ]
 	
--- a/app/scripts/ansible/roles/haproxy/tasks/main.yml
+++ b/app/scripts/ansible/roles/haproxy/tasks/main.yml
@ -83,7 +83,7 @@
  
  
 - name: Disble SELINUX in env
-  shell: setenforce 0
+  shell: setenforce 0 2> /dev/null
  ignore_errors: yes
  debugger: never
  
--- a/app/scripts/ansible/roles/keepalived/tasks/install.yml
+++ b/app/scripts/ansible/roles/keepalived/tasks/install.yml
@ -62,7 +62,7 @@
  ignore_errors: yes
  
 - name: Disble SELINUX in env
-  shell: setenforce 0
+  shell: setenforce 0 2> /dev/null
  ignore_errors: yes
  debugger: never
  
--- a/app/scripts/ansible/roles/nginx.yml
+++ b/app/scripts/ansible/roles/nginx.yml
@ -65,7 +65,7 @@
      ignore_errors: yes
  
    - name: Disble SELINUX in env
-      shell: setenforce 0 
+      shell: setenforce 0 2> /dev/null
      ignore_errors: yes
      debugger: never
      
--- a/app/scripts/waf.sh
+++ b/app/scripts/waf.sh
@ -143,6 +143,8 @@ sudo sed -i 's/#SecAction/SecAction/' $HAPROXY_PATH/waf/rules/modsecurity_crs_10
 sudo sed -i 's/SecRuleEngine DetectionOnly/SecRuleEngine On/' $HAPROXY_PATH/waf/modsecurity.conf
 sudo sed -i 's/SecAuditLogParts ABIJDEFHZ/SecAuditLogParts ABIJDEH/' $HAPROXY_PATH/waf/modsecurity.conf
 sudo rm -f /tmp/owasp.tar.gz
+sudo rm -f /tmp/owasp-modsecurity-crs-2.2.9
+sudo rm -f /tmp/haproxy-$VERSION

 sudo bash -c cat << EOF > /tmp/waf.service 
 [Unit]