[people/teissler/ipfire-2.x.git] / html / cgi-bin / index.cgi

#!/usr/bin/perl
###############################################################################
#                                                                             #
# IPFire.org - A linux based firewall                                         #
# Copyright (C) 2007-2012  IPFire Team  <info@ipfire.org>                     #
#                                                                             #
# This program is free software: you can redistribute it and/or modify        #
# it under the terms of the GNU General Public License as published by        #
# the Free Software Foundation, either version 3 of the License, or           #
# (at your option) any later version.                                         #
#                                                                             #
# This program is distributed in the hope that it will be useful,             #
# but WITHOUT ANY WARRANTY; without even the implied warranty of              #
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the               #
# GNU General Public License for more details.                                #
#                                                                             #
# You should have received a copy of the GNU General Public License           #
# along with this program.  If not, see <http://www.gnu.org/licenses/>.       #
#                                                                             #
###############################################################################

use strict;
use Net::Telnet;

# enable only the following on debugging purpose
#use warnings;
#use CGI::Carp 'fatalsToBrowser';

require '/var/ipfire/general-functions.pl';
require "${General::swroot}/lang.pl";
require "${General::swroot}/header.pl";
require "/opt/pakfire/lib/functions.pl";

my %cgiparams=();
my %pppsettings=();
my %modemsettings=();
my %netsettings=();
my %ddnssettings=();
my $warnmessage = '';
my $refresh = "";
my $ipaddr='';

my $haveipsec=0;
my $haveovpn=0;

&Header::showhttpheaders();

$cgiparams{'ACTION'} = '';
&Header::getcgihash(\%cgiparams);
$pppsettings{'VALID'} = '';
$pppsettings{'PROFILENAME'} = 'None';
&General::readhash("${General::swroot}/ppp/settings", \%pppsettings);
&General::readhash("${General::swroot}/modem/settings", \%modemsettings);
&General::readhash("${General::swroot}/ethernet/settings", \%netsettings);
&General::readhash("${General::swroot}/ddns/settings", \%ddnssettings);

my %color = ();
my %mainsettings = ();
&General::readhash("${General::swroot}/main/settings", \%mainsettings);
&General::readhash("/srv/web/ipfire/html/themes/".$mainsettings{'THEME'}."/include/colors.txt", \%color);

my $connstate = &Header::connectionstatus();

	if ( -e "/var/ipfire/main/gpl-accepted" ) {
if ($connstate =~ /$Lang::tr{'connecting'}/ || /$Lang::tr{'connection closed'}/ ){
	$refresh = "<meta http-equiv='refresh' content='5;'>";
} elsif ($connstate =~ /$Lang::tr{'dod waiting'}/ || -e "${General::swroot}/main/refreshindex") {
	$refresh = "<meta http-equiv='refresh' content='30;'>";
}
}

if ($cgiparams{'ACTION'} eq $Lang::tr{'dial profile'})
{
	my $profile = $cgiparams{'PROFILE'};
	my %tempcgiparams = ();
	$tempcgiparams{'PROFILE'} = '';
	&General::readhash("${General::swroot}/ppp/settings-$cgiparams{'PROFILE'}",
		\%tempcgiparams);

	# make a link from the selected profile to the "default" one.
	unlink("${General::swroot}/ppp/settings");
	link("${General::swroot}/ppp/settings-$cgiparams{'PROFILE'}",
		"${General::swroot}/ppp/settings");
	system ("/usr/bin/touch", "${General::swroot}/ppp/updatesettings");

	# read in the new params "early" so we can write secrets.
	%cgiparams = ();
	&General::readhash("${General::swroot}/ppp/settings", \%cgiparams);
	$cgiparams{'PROFILE'} = $profile;
	$cgiparams{'BACKUPPROFILE'} = $profile;
	&General::writehash("${General::swroot}/ppp/settings-$cgiparams{'PROFILE'}",
		\%cgiparams);

	# write secrets file.
	open(FILE, ">/${General::swroot}/ppp/secrets") or die "Unable to write secrets file.";
	flock(FILE, 2);
	my $username = $cgiparams{'USERNAME'};
	my $password = $cgiparams{'PASSWORD'};
	print FILE "'$username' * '$password'\n";
	chmod 0600, "${General::swroot}/ppp/secrets";
	close FILE;

	&General::log("$Lang::tr{'profile made current'} $tempcgiparams{'PROFILENAME'}"); 
	$cgiparams{'ACTION'} = "$Lang::tr{'dial'}";
}

if ($cgiparams{'ACTION'} eq $Lang::tr{'dial'}) {
	system('/usr/local/bin/redctrl start > /dev/null') == 0
	or &General::log("Dial failed: $?"); sleep 1;}
elsif ($cgiparams{'ACTION'} eq $Lang::tr{'hangup'}) {
	system('/usr/local/bin/redctrl stop > /dev/null') == 0
	or &General::log("Hangup failed: $?"); sleep 1;}

my $c;
my $maxprofiles = 5;
my @profilenames = ();

for ($c = 1; $c <= $maxprofiles; $c++)
{
	my %temppppsettings = ();
	$temppppsettings{'PROFILENAME'} = '';
	&General::readhash("${General::swroot}/ppp/settings-$c", \%temppppsettings);
	$profilenames[$c] = $temppppsettings{'PROFILENAME'};
}
my %selected;
for ($c = 1; $c <= $maxprofiles; $c++) {
	$selected{'PROFILE'}{$c} = ''; 
}
$selected{'PROFILE'}{$pppsettings{'PROFILE'}} = "selected='selected'";
my $dialButtonDisabled = "disabled='disabled'";


&Header::openpage($Lang::tr{'main page'}, 1, $refresh);
&Header::openbigbox('', 'center');

# licence agreement
if ($cgiparams{'ACTION'} eq $Lang::tr{'yes'} && $cgiparams{'gpl_accepted'} eq '1') {
	system('touch /var/ipfire/main/gpl_accepted')
}
if ( -e "/var/ipfire/main/gpl_accepted" ) {
&Header::openbox('100%', 'center', '');


if ( ( $pppsettings{'VALID'} eq 'yes' && $modemsettings{'VALID'} eq 'yes' ) || ( $netsettings{'CONFIG_TYPE'} =~ /^(1|2|3|4)$/ && $netsettings{'RED_TYPE'} =~ /^(DHCP|STATIC)$/ )) {
	if (open(IPADDR,"${General::swroot}/ddns/ipcache")) {
   	    $ipaddr = <IPADDR>;
    	    close IPADDR;
    	    chomp ($ipaddr);
	}
	if (open(IPADDR,"${General::swroot}/red/local-ipaddress")) {
	    $ipaddr = <IPADDR>;
	    close IPADDR;
	    chomp ($ipaddr);
	}
} elsif ($modemsettings{'VALID'} eq 'no') {
	print "$Lang::tr{'modem settings have errors'}\n </b></font>\n";
} else {
	print "$Lang::tr{'profile has errors'}\n </b></font>\n";
}

print <<END;
<!-- Table of networks -->
<table width=80% class='tbl'>
  <tr>  <th bgcolor='$color{'color20'}'>$Lang::tr{'network'}</th>
        <th bgcolor='$color{'color20'}'>$Lang::tr{'ip address'}</th>
        <th bgcolor='$color{'color20'}'>$Lang::tr{'status'}</th></tr>
  <tr>  <td align='center' bgcolor='$Header::colourred' width='25%'><a href="/cgi-bin/pppsetup.cgi"><font size='2' color='white'><b>$Lang::tr{'internet'}</b></font></a><br></td>
        <td width='30%' align='center'>$ipaddr </td>
        <td width='45%' align='center'>$connstate 
END
	my $HOSTNAME = (gethostbyaddr(pack("C4", split(/\./, $ipaddr)), 2))[0];
	if ( "$HOSTNAME" ne "" ) {
		print <<END;
	<tr><td><b>Hostname:</b><td align='center'>$HOSTNAME<td>&nbsp;
END
	}

	if ( -e "/var/ipfire/red/remote-ipaddress" ) {
		my $GATEWAY = `cat /var/ipfire/red/remote-ipaddress`;
		chomp($GATEWAY);
		print <<END;
	<tr><td><b>Gateway:</b><td align='center'>$GATEWAY<td>&nbsp;
END
	}

	my $DNS1 = `cat /var/ipfire/red/dns1`;
	my $DNS2 = `cat /var/ipfire/red/dns2`;
	chomp($DNS1);
	chomp($DNS1);

	if ( $DNS1 ) { print <<END;
	<tr><td><b>DNS-Server:</b><td align='center'>$DNS1
END
	}
	if ( $DNS2 ) { print <<END;
	<td align='center'>$DNS2
END
	} else { print <<END;
	<td>&nbsp;</td>
	</tr>
	</table>
END
	}

#Dial profiles
if ( $netsettings{'RED_TYPE'} ne "STATIC" && $netsettings{'RED_TYPE'} ne "DHCP" ){
print `/usr/local/bin/dialctrl.pl show`;
print <<END;
<br>
		<table width='80%'>
		<tr><td>
		<form method='post' action='$ENV{'SCRIPT_NAME'}'>$Lang::tr{'profile'}:
			<select name='PROFILE'>
END
	for ($c = 1; $c <= $maxprofiles; $c++)
	{
		if ($profilenames[$c] ne '') {
			$dialButtonDisabled = "";
			print "\t<option value='$c' $selected{'PROFILE'}{$c}>$c. $profilenames[$c]</option>\n";
		}
	}
	$dialButtonDisabled = "disabled='disabled'" if (-e '/var/run/ppp-ipfire.pid' || -e "${General::swroot}/red/active");
	if ( ( $pppsettings{'VALID'} eq 'yes' ) || ( $netsettings{'CONFIG_TYPE'} =~ /^(1|2|3|4)$/ && $netsettings{'RED_TYPE'} =~ /^(DHCP|STATIC)$/ ) ) {
		print <<END;
				</select>
				<input type='submit' name='ACTION' value='$Lang::tr{'dial profile'}' $dialButtonDisabled />
			</form>
			<td align='center'>
				<table width='100%' border='0'>
					<tr>
					<td width='50%' align='right'>	<form method='post' action='$ENV{'SCRIPT_NAME'}'>
											<input type='submit' name='ACTION' value='$Lang::tr{'dial'}'>
										</form>
					<td width='50%' align='left'>	<form method='post' action='$ENV{'SCRIPT_NAME'}'>
											<input type='submit' name='ACTION' value='$Lang::tr{'hangup'}'>
										</form>
				</table>
END
	} else {
	print "$Lang::tr{'profile has errors'}\n </b></font>\n";
	}
	print"</tr></table>";
}
	if ( $netsettings{'GREEN_DEV'} ) {
		my $sub=&General::iporsubtocidr($netsettings{'GREEN_NETMASK'});
		print <<END;
		<br>
		<table width='80%' class='tbl'>
		<tr>
			<th>$Lang::tr{'network'}</th>
			<th>$Lang::tr{'ip address'}</th>
			<th>$Lang::tr{'status'}</th>
		</tr>
		<tr><td align='center' bgcolor='$Header::colourgreen' width='25%'><a href="/cgi-bin/dhcp.cgi"><font size='2' color='white'><b>$Lang::tr{'lan'}</b></font></a>
		<td width='30%' align='center'>$netsettings{'GREEN_ADDRESS'}/$sub
		<td width='45%' align='center'>
END
		if ( `cat /var/ipfire/proxy/advanced/settings | grep ^ENABLE=on` ) { 
			print $Lang::tr{'advproxy on'}; 
			if ( `cat /var/ipfire/proxy/advanced/settings | grep ^TRANSPARENT=on` ) { print " (transparent)"; }
		}	else { print $Lang::tr{'advproxy off'};  }
	}
	if ( $netsettings{'BLUE_DEV'} ) {
		my $sub=&General::iporsubtocidr($netsettings{'BLUE_NETMASK'});
		print <<END;
		<tr><td align='center' bgcolor='$Header::colourblue' width='25%'><a href="/cgi-bin/wireless.cgi"><font size='2' color='white'><b>$Lang::tr{'wireless'}</b></font></a><br>
		<td width='30%' align='center'>$netsettings{'BLUE_ADDRESS'}/$sub
		<td width='45%' align='center'>
END
		if ( `cat /var/ipfire/proxy/advanced/settings | grep ^ENABLE_BLUE=on` ) { 
			print $Lang::tr{'advproxy on'};  
			if ( `cat /var/ipfire/proxy/advanced/settings | grep ^TRANSPARENT_BLUE=on` ) { print " (transparent)"; }
		}	else { print $Lang::tr{'advproxy off'};  }
	}
	if ( $netsettings{'ORANGE_DEV'} ) {
		my $sub=&General::iporsubtocidr($netsettings{'ORANGE_NETMASK'});
		print <<END;
		<tr><td align='center' bgcolor='$Header::colourorange' width='25%'><a href="/cgi-bin/firewall.cgi"><font size='2' color='white'><b>$Lang::tr{'dmz'}</b></font></a><br>
		<td width='30%' align='center'>$netsettings{'ORANGE_ADDRESS'}/$sub
		<td width='45%' align='center'><font color=$Header::colourgreen>Online</font>
END
	}
#check if IPSEC is running
if ( `cat /var/ipfire/vpn/settings | grep ^ENABLED=on` ||
	`cat /var/ipfire/vpn/settings | grep ^ENABLED_BLUE=on` ) {
	$haveipsec=1;
	my $ipsecip = `cat /var/ipfire/vpn/settings | grep ^VPN_IP= | cut -c 8-`;
print<<END;
		<tr><td align='center' bgcolor='$Header::colourvpn' width='25%'><a href="/cgi-bin/vpnmain.cgi"><font size='2' color='white'><b>$Lang::tr{'ipsec'}</b></font></a><br>
		<td width='30%' align='center'>$ipsecip
		<td width='45%' align='center'><font color=$Header::colourgreen>Online</font>
END
}

#check if OpenVPN is running
my %confighash=();
&General::readhash("${General::swroot}/ovpn/settings", \%confighash);

if (($confighash{'ENABLED'} eq "on") ||
    ($confighash{'ENABLED_BLUE'} eq "on") ||
    ($confighash{'ENABLED_ORANGE'} eq "on")) {
	my ($ovpnip,$sub) = split("/",$confighash{'DOVPN_SUBNET'});
	$sub=&General::iporsubtocidr($sub);
	$ovpnip="$ovpnip/$sub";
	$haveovpn=1;
print <<END;
	<tr>
		<td align='center' bgcolor='$Header::colourovpn' width='25%'>
			<a href="/cgi-bin/ovpnmain.cgi"><font size='2' color='white'><b>OpenVPN</b></font></a><br>
		</td>
		<td width='30%' align='center'>$ovpnip
	<td width='45%' align='center'><font color=$Header::colourgreen>Online</font>
END
	}
print"</td></tr></table>";
&Header::closebox();

# Start of Box wich contains all vpn connections
	&Header::openbox('100%', 'center', $Lang::tr{'vpn'}) if ($haveipsec || $haveovpn);

#show ipsec connectiontable
	if ( $haveipsec ) {
		my $ipsecip = `cat /var/ipfire/vpn/settings | grep ^VPN_IP= | cut -c 8-`;
		my @status = `/usr/local/bin/ipsecctrl I`;
		my %confighash = ();
		&General::readhasharray("${General::swroot}/vpn/config", \%confighash);
		print <<END;
		<br>
		<table width='80%' class='tbl'>
		<tr>
			<th>$Lang::tr{'ipsec network'}</th>
			<th>$Lang::tr{'ip address'}</th>
			<th>$Lang::tr{'status'}</th>
		</tr>
END
		my $id = 0;
		my $gif;
		my $col="";
		foreach my $key (sort { uc($confighash{$a}[1]) cmp uc($confighash{$b}[1]) } keys %confighash) {
			if ($confighash{$key}[0] eq 'on') { $gif = 'on.gif'; } else { $gif = 'off.gif'; }
			my ($vpnip,$vpnsub) = split("/",$confighash{$key}[11]);
			$vpnsub=&General::iporsubtocidr($vpnsub);
			$vpnip="$vpnip/$vpnsub";
			if ($id % 2) {
				$col="bgcolor='$color{'color20'}'";
				print "<tr><td align='left' nowrap='nowrap' bgcolor='$Header::colourvpn' width='50%'><font color=white>$confighash{$key}[1] / " . $Lang::tr{"$confighash{$key}[3]"} . " (" . $Lang::tr{"$confighash{$key}[4]"} . ")</td><td align='center' $col>$vpnip</td>";
			} else {
				$col="bgcolor='$color{'color22'}'";
				print "<tr></td><td align='left' nowrap='nowrap' bgcolor='$Header::colourvpn' width='50%'><font color=white>$confighash{$key}[1] / " . $Lang::tr{"$confighash{$key}[3]"} . " (" . $Lang::tr{"$confighash{$key}[4]"} . ")</td><td align='center' $col>$vpnip</td>";
			}
			
			my $active = "<td bgcolor='${Header::colourred}' width='15%' align='center'><b><font color='#FFFFFF'>$Lang::tr{'capsclosed'}</font></b></td>";
			if ($confighash{$key}[0] eq 'off') {
			    $active = "<td bgcolor='${Header::colourblue}' width='15%' align='center'><b><font color='#FFFFFF'>$Lang::tr{'capsclosed'}</font></b></td>";
			} else {
			    foreach my $line (@status) {
				if (($line =~ /\"$confighash{$key}[1]\".*IPsec SA established/) ||
				    ($line =~/$confighash{$key}[1]\{.*INSTALLED/ ))
				    {
				    $active = "<table cellpadding='2' cellspacing='0' bgcolor='${Header::colourgreen}' width='100%'><tr><td align='center'><b><font color='#FFFFFF'>$Lang::tr{'capsopen'}</font></b></td></tr></table>";
				}
			   }
			}
			print "$active</td>";
		}
		print "</tr></table>";
	}

###
# Check if there is any OpenVPN connection configured.
###

if ( $haveovpn )
{
	print <<END;
	<br>
	<table width='80%' class='tbl'>
	<tr>
		<th>$Lang::tr{'openvpn network'}</th>
		<th>$Lang::tr{'ip address'}</th>
		<th>$Lang::tr{'status'}</th>
END
	# Check if the OpenVPN server for Road Warrior Connections is running and display status information.
	my %confighash=();

	&General::readhash("${General::swroot}/ovpn/settings", \%confighash);
	# Print the OpenVPN N2N connection status.
	if ( -d "${General::swroot}/ovpn/n2nconf") {
		my %confighash=();

		&General::readhasharray("${General::swroot}/ovpn/ovpnconfig", \%confighash);
		my $lines;
		my $col="";
		foreach my $dkey (keys %confighash) {
			$lines++;
			if (($confighash{$dkey}[3] eq 'net') && (-e "/var/run/$confighash{$dkey}[1]n2n.pid")) {
				my $tport = $confighash{$dkey}[22];
				next if ($tport eq '');

				my $tnet = new Net::Telnet ( Timeout=>5, Errmode=>'return', Port=>$tport); 
				$tnet->open('127.0.0.1');
				my @output = $tnet->cmd(String => 'state', Prompt => '/(END.*\n|ERROR:.*\n)/');
				my @tustate = split(/\,/, $output[1]);

				my $display;
				my $display_colour = $Header::colourred;
				if ( $tustate[1] eq 'CONNECTED') {
					$display_colour = $Header::colourgreen;
					$display = $Lang::tr{'capsopen'};
				} else {
					$display = $tustate[1];
				}
				if ($lines %2){
					$col="bgcolor='$color{'color20'}'";
				}else{
					$col="bgcolor='$color{'color22'}'";
				}
				#make cidr from ip
				my ($vpnip,$vpnsub) = split("/",$confighash{$dkey}[11]);
				my $vpnsub=&General::iporsubtocidr($vpnsub);
				my $vpnip="$vpnip/$vpnsub";
				print <<END;
				<tr>
					<td align='left' nowrap='nowrap' bgcolor='$Header::colourovpn' width='50%'><font color=white>
						$confighash{$dkey}[1]
					</td>
					<td align='center' $col>
						$vpnip
					</td>
					<td align='center' bgcolor='$display_colour' width='15%'>
						<b>
							<font color='#FFFFFF'>
								$display
							</font>
						</b>
					</td>
				</tr>
END
			}
		}
	}
}
&Header::closebox();
# Fireinfo
if ( ! -e "/var/ipfire/main/send_profile") {
	$warnmessage .= "<li><a style='color: white;' href='fireinfo.cgi'>$Lang::tr{'fireinfo please enable'}</a></li>";
}

# Memory usage warning
my @free = `/usr/bin/free`;
$free[1] =~ m/(\d+)/;
my $mem = $1;
$free[2] =~ m/(\d+)/;
my $used = $1;
my $pct = int 100 * ($mem - $used) / $mem;
if ($used / $mem > 90) {
	$warnmessage .= "<li> $Lang::tr{'high memory usage'}: $pct% !</li>\n";
}

# Diskspace usage warning
my @temp=();
my $temp2=();
my @df = `/bin/df -B M -P -x rootfs`;
foreach my $line (@df) {
	next if $line =~ m/^Filesystem/;
	if ($line =~ m/root/ ) {
		$line =~ m/^.* (\d+)M.*$/;
		@temp = split(/ +/,$line);
		if ($1<5) {
			# available:plain value in MB, and not %used as 10% is too much to waste on small disk
			# and root size should not vary during time
			$warnmessage .= "<li> $Lang::tr{'filesystem full'}: $temp[0] <b>$Lang::tr{'free'}=$1M</b> !</li>\n";
		}
		
	} else {
		# $line =~ m/^.* (\d+)m.*$/;
		$line =~ m/^.* (\d+)\%.*$/;
		if ($1>90) {
			@temp = split(/ /,$line);
			$temp2=int(100-$1);
			$warnmessage .= "<li> $Lang::tr{'filesystem full'}: $temp[0] <b>$Lang::tr{'free'}=$temp2%</b> !</li>\n";
		}
	}
}

# S.M.A.R.T. health warning
my @files = `/bin/ls /var/run/smartctl_out_hddtemp-* 2>/dev/null`;
foreach my $file (@files) {
	chomp ($file);
	my $disk=`echo $file | cut -d"-" -f2`;
	chomp ($disk);
	if (`/bin/grep "SAVE ALL DATA" $file`) {
		$warnmessage .= "<li> $Lang::tr{'smartwarn1'} /dev/$disk $Lang::tr{'smartwarn2'} !</li>\n\n";
	}
}

# Reiser4 warning
my @files = `mount | grep " reiser4 (" 2>/dev/null`;
foreach my $disk (@files) {
	chomp ($disk);
	$warnmessage .= "<li>$disk - $Lang::tr{'deprecated fs warn'}</li>\n\n";
}


if ($warnmessage) {
	print "<tr><td align='center' bgcolor=$Header::colourred colspan='3'><font color='white'>$warnmessage</font></table>";
}
print <<END;
</table>
END
;
&Pakfire::dblist("upgrade", "notice");
print <<END;
END
if ( -e "/var/run/need_reboot" ) {
	print "<br /><br /><font color='red'>$Lang::tr{'needreboot'}!</font>";
}
&Header::closebox();
}

else {
&Header::openbox('100%', 'left', $Lang::tr{'gpl license agreement'});
print <<END;
	$Lang::tr{'gpl please read carefully the general public license and accept it below'}.
	<br /><br />
END
;	
if ( -e "/usr/share/doc/licenses/GPLv3" ) {
	print '<textarea rows=\'25\' cols=\'75\' readonly=\'true\'>';
	print `cat /usr/share/doc/licenses/GPLv3`;
	print '</textarea>';
}
else {
	print '<br /><a href=\'http://www.gnu.org/licenses/gpl-3.0.txt\' target=\'_blank\'>GNU GENERAL PUBLIC LICENSE</a><br />';
}
print <<END;
	<p>
		<form method='post' action='$ENV{'SCRIPT_NAME'}'>
			<input type='checkbox' name='gpl_accepted' value='1'/> $Lang::tr{'gpl i accept these terms and conditions'}.
			<br/ >
			<input type='submit' name='ACTION' value=$Lang::tr{'yes'} />
		</form>
	</p>
	<a href='http://www.gnu.org/licenses/translations.html' target='_blank'>$Lang::tr{'gpl unofficial translation of the general public license v3'}</a>

END

&Header::closebox();
}

&Header::closebigbox();
&Header::closepage();
Commit	Line	Data
	1	#!/usr/bin/perl
	2	###############################################################################
	3	# #
	4	# IPFire.org - A linux based firewall #
	5	# Copyright (C) 2007-2012 IPFire Team <info@ipfire.org> #
	6	# #
	7	# This program is free software: you can redistribute it and/or modify #
	8	# it under the terms of the GNU General Public License as published by #
	9	# the Free Software Foundation, either version 3 of the License, or #
	10	# (at your option) any later version. #
	11	# #
	12	# This program is distributed in the hope that it will be useful, #
	13	# but WITHOUT ANY WARRANTY; without even the implied warranty of #
	14	# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
	15	# GNU General Public License for more details. #
	16	# #
	17	# You should have received a copy of the GNU General Public License #
	18	# along with this program. If not, see <http://www.gnu.org/licenses/>. #
	19	# #
	20	###############################################################################
	21
	22	use strict;
	23	use Net::Telnet;
	24
	25	# enable only the following on debugging purpose
	26	#use warnings;
	27	#use CGI::Carp 'fatalsToBrowser';
	28
	29	require '/var/ipfire/general-functions.pl';
	30	require "${General::swroot}/lang.pl";
	31	require "${General::swroot}/header.pl";
	32	require "/opt/pakfire/lib/functions.pl";
	33
	34	my %cgiparams=();
	35	my %pppsettings=();
	36	my %modemsettings=();
	37	my %netsettings=();
	38	my %ddnssettings=();
	39	my $warnmessage = '';
	40	my $refresh = "";
	41	my $ipaddr='';
	42
	43	my $haveipsec=0;
	44	my $haveovpn=0;
	45
	46	&Header::showhttpheaders();
	47
	48	$cgiparams{'ACTION'} = '';
	49	&Header::getcgihash(\%cgiparams);
	50	$pppsettings{'VALID'} = '';
	51	$pppsettings{'PROFILENAME'} = 'None';
	52	&General::readhash("${General::swroot}/ppp/settings", \%pppsettings);
	53	&General::readhash("${General::swroot}/modem/settings", \%modemsettings);
	54	&General::readhash("${General::swroot}/ethernet/settings", \%netsettings);
	55	&General::readhash("${General::swroot}/ddns/settings", \%ddnssettings);
	56
	57	my %color = ();
	58	my %mainsettings = ();
	59	&General::readhash("${General::swroot}/main/settings", \%mainsettings);
	60	&General::readhash("/srv/web/ipfire/html/themes/".$mainsettings{'THEME'}."/include/colors.txt", \%color);
	61
	62	my $connstate = &Header::connectionstatus();
	63
	64	if ( -e "/var/ipfire/main/gpl-accepted" ) {
	65	if ($connstate =~ /$Lang::tr{'connecting'}/ \|\| /$Lang::tr{'connection closed'}/ ){
	66	$refresh = "<meta http-equiv='refresh' content='5;'>";
	67	} elsif ($connstate =~ /$Lang::tr{'dod waiting'}/ \|\| -e "${General::swroot}/main/refreshindex") {
	68	$refresh = "<meta http-equiv='refresh' content='30;'>";
	69	}
	70	}
	71
	72	if ($cgiparams{'ACTION'} eq $Lang::tr{'dial profile'})
	73	{
	74	my $profile = $cgiparams{'PROFILE'};
	75	my %tempcgiparams = ();
	76	$tempcgiparams{'PROFILE'} = '';
	77	&General::readhash("${General::swroot}/ppp/settings-$cgiparams{'PROFILE'}",
	78	\%tempcgiparams);
	79
	80	# make a link from the selected profile to the "default" one.
	81	unlink("${General::swroot}/ppp/settings");
	82	link("${General::swroot}/ppp/settings-$cgiparams{'PROFILE'}",
	83	"${General::swroot}/ppp/settings");
	84	system ("/usr/bin/touch", "${General::swroot}/ppp/updatesettings");
	85
	86	# read in the new params "early" so we can write secrets.
	87	%cgiparams = ();
	88	&General::readhash("${General::swroot}/ppp/settings", \%cgiparams);
	89	$cgiparams{'PROFILE'} = $profile;
	90	$cgiparams{'BACKUPPROFILE'} = $profile;
	91	&General::writehash("${General::swroot}/ppp/settings-$cgiparams{'PROFILE'}",
	92	\%cgiparams);
	93
	94	# write secrets file.
	95	open(FILE, ">/${General::swroot}/ppp/secrets") or die "Unable to write secrets file.";
	96	flock(FILE, 2);
	97	my $username = $cgiparams{'USERNAME'};
	98	my $password = $cgiparams{'PASSWORD'};
	99	print FILE "'$username' * '$password'\n";
	100	chmod 0600, "${General::swroot}/ppp/secrets";
	101	close FILE;
	102
	103	&General::log("$Lang::tr{'profile made current'} $tempcgiparams{'PROFILENAME'}");
	104	$cgiparams{'ACTION'} = "$Lang::tr{'dial'}";
	105	}
	106
	107	if ($cgiparams{'ACTION'} eq $Lang::tr{'dial'}) {
	108	system('/usr/local/bin/redctrl start > /dev/null') == 0
	109	or &General::log("Dial failed: $?"); sleep 1;}
	110	elsif ($cgiparams{'ACTION'} eq $Lang::tr{'hangup'}) {
	111	system('/usr/local/bin/redctrl stop > /dev/null') == 0
	112	or &General::log("Hangup failed: $?"); sleep 1;}
	113
	114	my $c;
	115	my $maxprofiles = 5;
	116	my @profilenames = ();
	117
	118	for ($c = 1; $c <= $maxprofiles; $c++)
	119	{
	120	my %temppppsettings = ();
	121	$temppppsettings{'PROFILENAME'} = '';
	122	&General::readhash("${General::swroot}/ppp/settings-$c", \%temppppsettings);
	123	$profilenames[$c] = $temppppsettings{'PROFILENAME'};
	124	}
	125	my %selected;
	126	for ($c = 1; $c <= $maxprofiles; $c++) {
	127	$selected{'PROFILE'}{$c} = '';
	128	}
	129	$selected{'PROFILE'}{$pppsettings{'PROFILE'}} = "selected='selected'";
	130	my $dialButtonDisabled = "disabled='disabled'";
	131
	132
	133	&Header::openpage($Lang::tr{'main page'}, 1, $refresh);
	134	&Header::openbigbox('', 'center');
	135
	136	# licence agreement
	137	if ($cgiparams{'ACTION'} eq $Lang::tr{'yes'} && $cgiparams{'gpl_accepted'} eq '1') {
	138	system('touch /var/ipfire/main/gpl_accepted')
	139	}
	140	if ( -e "/var/ipfire/main/gpl_accepted" ) {
	141	&Header::openbox('100%', 'center', '');
	142
	143
	144	if ( ( $pppsettings{'VALID'} eq 'yes' && $modemsettings{'VALID'} eq 'yes' ) \|\| ( $netsettings{'CONFIG_TYPE'} =~ /^(1\|2\|3\|4)$/ && $netsettings{'RED_TYPE'} =~ /^(DHCP\|STATIC)$/ )) {
	145	if (open(IPADDR,"${General::swroot}/ddns/ipcache")) {
	146	$ipaddr = <IPADDR>;
	147	close IPADDR;
	148	chomp ($ipaddr);
	149	}
	150	if (open(IPADDR,"${General::swroot}/red/local-ipaddress")) {
	151	$ipaddr = <IPADDR>;
	152	close IPADDR;
	153	chomp ($ipaddr);
	154	}
	155	} elsif ($modemsettings{'VALID'} eq 'no') {
	156	print "$Lang::tr{'modem settings have errors'}\n </b></font>\n";
	157	} else {
	158	print "$Lang::tr{'profile has errors'}\n </b></font>\n";
	159	}
	160
	161	print <<END;
	162	<!-- Table of networks -->
	163	<table width=80% class='tbl'>
	164	<tr> <th bgcolor='$color{'color20'}'>$Lang::tr{'network'}</th>
	165	<th bgcolor='$color{'color20'}'>$Lang::tr{'ip address'}</th>
	166	<th bgcolor='$color{'color20'}'>$Lang::tr{'status'}</th></tr>
	167	<tr> <td align='center' bgcolor='$Header::colourred' width='25%'><a href="/cgi-bin/pppsetup.cgi"><font size='2' color='white'><b>$Lang::tr{'internet'}</b></font></a><br></td>
	168	<td width='30%' align='center'>$ipaddr </td>
	169	<td width='45%' align='center'>$connstate
	170	END
	171	my $HOSTNAME = (gethostbyaddr(pack("C4", split(/\./, $ipaddr)), 2))[0];
	172	if ( "$HOSTNAME" ne "" ) {
	173	print <<END;
	174	<tr><td><b>Hostname:</b><td align='center'>$HOSTNAME<td>
	175	END
	176	}
	177
	178	if ( -e "/var/ipfire/red/remote-ipaddress" ) {
	179	my $GATEWAY = `cat /var/ipfire/red/remote-ipaddress`;
	180	chomp($GATEWAY);
	181	print <<END;
	182	<tr><td><b>Gateway:</b><td align='center'>$GATEWAY<td>
	183	END
	184	}
	185
	186	my $DNS1 = `cat /var/ipfire/red/dns1`;
	187	my $DNS2 = `cat /var/ipfire/red/dns2`;
	188	chomp($DNS1);
	189	chomp($DNS1);
	190
	191	if ( $DNS1 ) { print <<END;
	192	<tr><td><b>DNS-Server:</b><td align='center'>$DNS1
	193	END
	194	}
	195	if ( $DNS2 ) { print <<END;
	196	<td align='center'>$DNS2
	197	END
	198	} else { print <<END;
	199	<td> </td>
	200	</tr>
	201	</table>
	202	END
	203	}
	204
	205	#Dial profiles
	206	if ( $netsettings{'RED_TYPE'} ne "STATIC" && $netsettings{'RED_TYPE'} ne "DHCP" ){
	207	print `/usr/local/bin/dialctrl.pl show`;
	208	print <<END;
	209	<br>
	210	<table width='80%'>
	211	<tr><td>
	212	<form method='post' action='$ENV{'SCRIPT_NAME'}'>$Lang::tr{'profile'}:
	213	<select name='PROFILE'>
	214	END
	215	for ($c = 1; $c <= $maxprofiles; $c++)
	216	{
	217	if ($profilenames[$c] ne '') {
	218	$dialButtonDisabled = "";
	219	print "\t<option value='$c' $selected{'PROFILE'}{$c}>$c. $profilenames[$c]</option>\n";
	220	}
	221	}
	222	$dialButtonDisabled = "disabled='disabled'" if (-e '/var/run/ppp-ipfire.pid' \|\| -e "${General::swroot}/red/active");
	223	if ( ( $pppsettings{'VALID'} eq 'yes' ) \|\| ( $netsettings{'CONFIG_TYPE'} =~ /^(1\|2\|3\|4)$/ && $netsettings{'RED_TYPE'} =~ /^(DHCP\|STATIC)$/ ) ) {
	224	print <<END;
	225	</select>
	226	<input type='submit' name='ACTION' value='$Lang::tr{'dial profile'}' $dialButtonDisabled />
	227	</form>
	228	<td align='center'>
	229	<table width='100%' border='0'>
	230	<tr>
	231	<td width='50%' align='right'> <form method='post' action='$ENV{'SCRIPT_NAME'}'>
	232	<input type='submit' name='ACTION' value='$Lang::tr{'dial'}'>
	233	</form>
	234	<td width='50%' align='left'> <form method='post' action='$ENV{'SCRIPT_NAME'}'>
	235	<input type='submit' name='ACTION' value='$Lang::tr{'hangup'}'>
	236	</form>
	237	</table>
	238	END
	239	} else {
	240	print "$Lang::tr{'profile has errors'}\n </b></font>\n";
	241	}
	242	print"</tr></table>";
	243	}
	244	if ( $netsettings{'GREEN_DEV'} ) {
	245	my $sub=&General::iporsubtocidr($netsettings{'GREEN_NETMASK'});
	246	print <<END;
	247	<br>
	248	<table width='80%' class='tbl'>
	249	<tr>
	250	<th>$Lang::tr{'network'}</th>
	251	<th>$Lang::tr{'ip address'}</th>
	252	<th>$Lang::tr{'status'}</th>
	253	</tr>
	254	<tr><td align='center' bgcolor='$Header::colourgreen' width='25%'><a href="/cgi-bin/dhcp.cgi"><font size='2' color='white'><b>$Lang::tr{'lan'}</b></font></a>
	255	<td width='30%' align='center'>$netsettings{'GREEN_ADDRESS'}/$sub
	256	<td width='45%' align='center'>
	257	END
	258	if ( `cat /var/ipfire/proxy/advanced/settings \| grep ^ENABLE=on` ) {
	259	print $Lang::tr{'advproxy on'};
	260	if ( `cat /var/ipfire/proxy/advanced/settings \| grep ^TRANSPARENT=on` ) { print " (transparent)"; }
	261	} else { print $Lang::tr{'advproxy off'}; }
	262	}
	263	if ( $netsettings{'BLUE_DEV'} ) {
	264	my $sub=&General::iporsubtocidr($netsettings{'BLUE_NETMASK'});
	265	print <<END;
	266	<tr><td align='center' bgcolor='$Header::colourblue' width='25%'><a href="/cgi-bin/wireless.cgi"><font size='2' color='white'><b>$Lang::tr{'wireless'}</b></font></a><br>
	267	<td width='30%' align='center'>$netsettings{'BLUE_ADDRESS'}/$sub
	268	<td width='45%' align='center'>
	269	END
	270	if ( `cat /var/ipfire/proxy/advanced/settings \| grep ^ENABLE_BLUE=on` ) {
	271	print $Lang::tr{'advproxy on'};
	272	if ( `cat /var/ipfire/proxy/advanced/settings \| grep ^TRANSPARENT_BLUE=on` ) { print " (transparent)"; }
	273	} else { print $Lang::tr{'advproxy off'}; }
	274	}
	275	if ( $netsettings{'ORANGE_DEV'} ) {
	276	my $sub=&General::iporsubtocidr($netsettings{'ORANGE_NETMASK'});
	277	print <<END;
	278	<tr><td align='center' bgcolor='$Header::colourorange' width='25%'><a href="/cgi-bin/firewall.cgi"><font size='2' color='white'><b>$Lang::tr{'dmz'}</b></font></a><br>
	279	<td width='30%' align='center'>$netsettings{'ORANGE_ADDRESS'}/$sub
	280	<td width='45%' align='center'><font color=$Header::colourgreen>Online</font>
	281	END
	282	}
	283	#check if IPSEC is running
	284	if ( `cat /var/ipfire/vpn/settings \| grep ^ENABLED=on` \|\|
	285	`cat /var/ipfire/vpn/settings \| grep ^ENABLED_BLUE=on` ) {
	286	$haveipsec=1;
	287	my $ipsecip = `cat /var/ipfire/vpn/settings \| grep ^VPN_IP= \| cut -c 8-`;
	288	print<<END;
	289	<tr><td align='center' bgcolor='$Header::colourvpn' width='25%'><a href="/cgi-bin/vpnmain.cgi"><font size='2' color='white'><b>$Lang::tr{'ipsec'}</b></font></a><br>
	290	<td width='30%' align='center'>$ipsecip
	291	<td width='45%' align='center'><font color=$Header::colourgreen>Online</font>
	292	END
	293	}
	294
	295	#check if OpenVPN is running
	296	my %confighash=();
	297	&General::readhash("${General::swroot}/ovpn/settings", \%confighash);
	298
	299	if (($confighash{'ENABLED'} eq "on") \|\|
	300	($confighash{'ENABLED_BLUE'} eq "on") \|\|
	301	($confighash{'ENABLED_ORANGE'} eq "on")) {
	302	my ($ovpnip,$sub) = split("/",$confighash{'DOVPN_SUBNET'});
	303	$sub=&General::iporsubtocidr($sub);
	304	$ovpnip="$ovpnip/$sub";
	305	$haveovpn=1;
	306	print <<END;
	307	<tr>
	308	<td align='center' bgcolor='$Header::colourovpn' width='25%'>
	309	<a href="/cgi-bin/ovpnmain.cgi"><font size='2' color='white'><b>OpenVPN</b></font></a><br>
	310	</td>
	311	<td width='30%' align='center'>$ovpnip
	312	<td width='45%' align='center'><font color=$Header::colourgreen>Online</font>
	313	END
	314	}
	315	print"</td></tr></table>";
	316	&Header::closebox();
	317
	318	# Start of Box wich contains all vpn connections
	319	&Header::openbox('100%', 'center', $Lang::tr{'vpn'}) if ($haveipsec \|\| $haveovpn);
	320
	321	#show ipsec connectiontable
	322	if ( $haveipsec ) {
	323	my $ipsecip = `cat /var/ipfire/vpn/settings \| grep ^VPN_IP= \| cut -c 8-`;
	324	my @status = `/usr/local/bin/ipsecctrl I`;
	325	my %confighash = ();
	326	&General::readhasharray("${General::swroot}/vpn/config", \%confighash);
	327	print <<END;
	328	<br>
	329	<table width='80%' class='tbl'>
	330	<tr>
	331	<th>$Lang::tr{'ipsec network'}</th>
	332	<th>$Lang::tr{'ip address'}</th>
	333	<th>$Lang::tr{'status'}</th>
	334	</tr>
	335	END
	336	my $id = 0;
	337	my $gif;
	338	my $col="";
	339	foreach my $key (sort { uc($confighash{$a}[1]) cmp uc($confighash{$b}[1]) } keys %confighash) {
	340	if ($confighash{$key}[0] eq 'on') { $gif = 'on.gif'; } else { $gif = 'off.gif'; }
	341	my ($vpnip,$vpnsub) = split("/",$confighash{$key}[11]);
	342	$vpnsub=&General::iporsubtocidr($vpnsub);
	343	$vpnip="$vpnip/$vpnsub";
	344	if ($id % 2) {
	345	$col="bgcolor='$color{'color20'}'";
	346	print "<tr><td align='left' nowrap='nowrap' bgcolor='$Header::colourvpn' width='50%'><font color=white>$confighash{$key}[1] / " . $Lang::tr{"$confighash{$key}[3]"} . " (" . $Lang::tr{"$confighash{$key}[4]"} . ")</td><td align='center' $col>$vpnip</td>";
	347	} else {
	348	$col="bgcolor='$color{'color22'}'";
	349	print "<tr></td><td align='left' nowrap='nowrap' bgcolor='$Header::colourvpn' width='50%'><font color=white>$confighash{$key}[1] / " . $Lang::tr{"$confighash{$key}[3]"} . " (" . $Lang::tr{"$confighash{$key}[4]"} . ")</td><td align='center' $col>$vpnip</td>";
	350	}
	351
	352	my $active = "<td bgcolor='${Header::colourred}' width='15%' align='center'><b><font color='#FFFFFF'>$Lang::tr{'capsclosed'}</font></b></td>";
	353	if ($confighash{$key}[0] eq 'off') {
	354	$active = "<td bgcolor='${Header::colourblue}' width='15%' align='center'><b><font color='#FFFFFF'>$Lang::tr{'capsclosed'}</font></b></td>";
	355	} else {
	356	foreach my $line (@status) {
	357	if (($line =~ /\"$confighash{$key}[1]\".*IPsec SA established/) \|\|
	358	($line =~/$confighash{$key}[1]\{.*INSTALLED/ ))
	359	{
	360	$active = "<table cellpadding='2' cellspacing='0' bgcolor='${Header::colourgreen}' width='100%'><tr><td align='center'><b><font color='#FFFFFF'>$Lang::tr{'capsopen'}</font></b></td></tr></table>";
	361	}
	362	}
	363	}
	364	print "$active</td>";
	365	}
	366	print "</tr></table>";
	367	}
	368
	369	###
	370	# Check if there is any OpenVPN connection configured.
	371	###
	372
	373	if ( $haveovpn )
	374	{
	375	print <<END;
	376	<br>
	377	<table width='80%' class='tbl'>
	378	<tr>
	379	<th>$Lang::tr{'openvpn network'}</th>
	380	<th>$Lang::tr{'ip address'}</th>
	381	<th>$Lang::tr{'status'}</th>
	382	END
	383	# Check if the OpenVPN server for Road Warrior Connections is running and display status information.
	384	my %confighash=();
	385
	386	&General::readhash("${General::swroot}/ovpn/settings", \%confighash);
	387	# Print the OpenVPN N2N connection status.
	388	if ( -d "${General::swroot}/ovpn/n2nconf") {
	389	my %confighash=();
	390
	391	&General::readhasharray("${General::swroot}/ovpn/ovpnconfig", \%confighash);
	392	my $lines;
	393	my $col="";
	394	foreach my $dkey (keys %confighash) {
	395	$lines++;
	396	if (($confighash{$dkey}[3] eq 'net') && (-e "/var/run/$confighash{$dkey}[1]n2n.pid")) {
	397	my $tport = $confighash{$dkey}[22];
	398	next if ($tport eq '');
	399
	400	my $tnet = new Net::Telnet ( Timeout=>5, Errmode=>'return', Port=>$tport);
	401	$tnet->open('127.0.0.1');
	402	my @output = $tnet->cmd(String => 'state', Prompt => '/(END.\n\|ERROR:.\n)/');
	403	my @tustate = split(/\,/, $output[1]);
	404
	405	my $display;
	406	my $display_colour = $Header::colourred;
	407	if ( $tustate[1] eq 'CONNECTED') {
	408	$display_colour = $Header::colourgreen;
	409	$display = $Lang::tr{'capsopen'};
	410	} else {
	411	$display = $tustate[1];
	412	}
	413	if ($lines %2){
	414	$col="bgcolor='$color{'color20'}'";
	415	}else{
	416	$col="bgcolor='$color{'color22'}'";
	417	}
	418	#make cidr from ip
	419	my ($vpnip,$vpnsub) = split("/",$confighash{$dkey}[11]);
	420	my $vpnsub=&General::iporsubtocidr($vpnsub);
	421	my $vpnip="$vpnip/$vpnsub";
	422	print <<END;
	423	<tr>
	424	<td align='left' nowrap='nowrap' bgcolor='$Header::colourovpn' width='50%'><font color=white>
	425	$confighash{$dkey}[1]
	426	</td>
	427	<td align='center' $col>
	428	$vpnip
	429	</td>
	430	<td align='center' bgcolor='$display_colour' width='15%'>
	431	<b>
	432	<font color='#FFFFFF'>
	433	$display
	434	</font>
	435	</b>
	436	</td>
	437	</tr>
	438	END
	439	}
	440	}
	441	}
	442	}
	443	&Header::closebox();
	444	# Fireinfo
	445	if ( ! -e "/var/ipfire/main/send_profile") {
	446	$warnmessage .= "<li><a style='color: white;' href='fireinfo.cgi'>$Lang::tr{'fireinfo please enable'}</a></li>";
	447	}
	448
	449	# Memory usage warning
	450	my @free = `/usr/bin/free`;
	451	$free[1] =~ m/(\d+)/;
	452	my $mem = $1;
	453	$free[2] =~ m/(\d+)/;
	454	my $used = $1;
	455	my $pct = int 100 * ($mem - $used) / $mem;
	456	if ($used / $mem > 90) {
	457	$warnmessage .= "<li> $Lang::tr{'high memory usage'}: $pct% !</li>\n";
	458	}
	459
	460	# Diskspace usage warning
	461	my @temp=();
	462	my $temp2=();
	463	my @df = `/bin/df -B M -P -x rootfs`;
	464	foreach my $line (@df) {
	465	next if $line =~ m/^Filesystem/;
	466	if ($line =~ m/root/ ) {
	467	$line =~ m/^.* (\d+)M.*$/;
	468	@temp = split(/ +/,$line);
	469	if ($1<5) {
	470	# available:plain value in MB, and not %used as 10% is too much to waste on small disk
	471	# and root size should not vary during time
	472	$warnmessage .= "<li> $Lang::tr{'filesystem full'}: $temp[0] <b>$Lang::tr{'free'}=$1M</b> !</li>\n";
	473	}
	474
	475	} else {
	476	# $line =~ m/^.* (\d+)m.*$/;
	477	$line =~ m/^.* (\d+)\%.*$/;
	478	if ($1>90) {
	479	@temp = split(/ /,$line);
	480	$temp2=int(100-$1);
	481	$warnmessage .= "<li> $Lang::tr{'filesystem full'}: $temp[0] <b>$Lang::tr{'free'}=$temp2%</b> !</li>\n";
	482	}
	483	}
	484	}
	485
	486	# S.M.A.R.T. health warning
	487	my @files = `/bin/ls /var/run/smartctl_out_hddtemp-* 2>/dev/null`;
	488	foreach my $file (@files) {
	489	chomp ($file);
	490	my $disk=`echo $file \| cut -d"-" -f2`;
	491	chomp ($disk);
	492	if (`/bin/grep "SAVE ALL DATA" $file`) {
	493	$warnmessage .= "<li> $Lang::tr{'smartwarn1'} /dev/$disk $Lang::tr{'smartwarn2'} !</li>\n\n";
	494	}
	495	}
	496
	497	# Reiser4 warning
	498	my @files = `mount \| grep " reiser4 (" 2>/dev/null`;
	499	foreach my $disk (@files) {
	500	chomp ($disk);
	501	$warnmessage .= "<li>$disk - $Lang::tr{'deprecated fs warn'}</li>\n\n";
	502	}
	503
	504
	505	if ($warnmessage) {
	506	print "<tr><td align='center' bgcolor=$Header::colourred colspan='3'><font color='white'>$warnmessage</font></table>";
	507	}
	508	print <<END;
	509	</table>
	510	END
	511	;
	512	&Pakfire::dblist("upgrade", "notice");
	513	print <<END;
	514	END
	515	if ( -e "/var/run/need_reboot" ) {
	516	print "<br /><br /><font color='red'>$Lang::tr{'needreboot'}!</font>";
	517	}
	518	&Header::closebox();
	519	}
	520
	521	else {
	522	&Header::openbox('100%', 'left', $Lang::tr{'gpl license agreement'});
	523	print <<END;
	524	$Lang::tr{'gpl please read carefully the general public license and accept it below'}.
	525	<br /><br />
	526	END
	527	;
	528	if ( -e "/usr/share/doc/licenses/GPLv3" ) {
	529	print '<textarea rows=\'25\' cols=\'75\' readonly=\'true\'>';
	530	print `cat /usr/share/doc/licenses/GPLv3`;
	531	print '</textarea>';
	532	}
	533	else {
	534	print '<br /><a href=\'http://www.gnu.org/licenses/gpl-3.0.txt\' target=\'_blank\'>GNU GENERAL PUBLIC LICENSE</a><br />';
	535	}
	536	print <<END;
	537	<p>
	538	<form method='post' action='$ENV{'SCRIPT_NAME'}'>
	539	<input type='checkbox' name='gpl_accepted' value='1'/> $Lang::tr{'gpl i accept these terms and conditions'}.
	540	<br/ >
	541	<input type='submit' name='ACTION' value=$Lang::tr{'yes'} />
	542	</form>
	543	</p>
	544	<a href='http://www.gnu.org/licenses/translations.html' target='_blank'>$Lang::tr{'gpl unofficial translation of the general public license v3'}</a>
	545
	546	END
	547
	548	&Header::closebox();
	549	}
	550
	551	&Header::closebigbox();
	552	&Header::closepage();