Example #1
0
/**
 * Load a list of package servers.
 */
function PackageServers()
{
    global $txt, $scripturl, $context, $boarddir, $sourcedir, $modSettings, $smcFunc;
    // Ensure we use the correct template, and page title.
    $context['sub_template'] = 'servers';
    $context['page_title'] .= ' - ' . $txt['download_packages'];
    // Load the list of servers.
    $request = $smcFunc['db_query']('', '
		SELECT id_server, name, url
		FROM {db_prefix}package_servers', array());
    $context['servers'] = array();
    while ($row = $smcFunc['db_fetch_assoc']($request)) {
        $context['servers'][] = array('name' => $row['name'], 'url' => $row['url'], 'id' => $row['id_server']);
    }
    $smcFunc['db_free_result']($request);
    $context['package_download_broken'] = !is_writable($boarddir . '/Packages') || !is_writable($boarddir . '/Packages/installed.list');
    if ($context['package_download_broken']) {
        @chmod($boarddir . '/Packages', 0777);
        @chmod($boarddir . '/Packages/installed.list', 0777);
    }
    $context['package_download_broken'] = !is_writable($boarddir . '/Packages') || !is_writable($boarddir . '/Packages/installed.list');
    if ($context['package_download_broken']) {
        if (isset($_POST['ftp_username'])) {
            require_once $sourcedir . '/Class-Package.php';
            $ftp = new ftp_connection($_POST['ftp_server'], $_POST['ftp_port'], $_POST['ftp_username'], $_POST['ftp_password']);
            if ($ftp->error === false) {
                // I know, I know... but a lot of people want to type /home/xyz/... which is wrong, but logical.
                if (!$ftp->chdir($_POST['ftp_path'])) {
                    $ftp_error = $ftp->error;
                    $ftp->chdir(preg_replace('~^/home[2]?/[^/]+?~', '', $_POST['ftp_path']));
                }
            }
        }
        if (!isset($ftp) || $ftp->error !== false) {
            if (!isset($ftp)) {
                require_once $sourcedir . '/Class-Package.php';
                $ftp = new ftp_connection(null);
            } elseif ($ftp->error !== false && !isset($ftp_error)) {
                $ftp_error = $ftp->last_message === null ? '' : $ftp->last_message;
            }
            list($username, $detect_path, $found_path) = $ftp->detect_path($boarddir);
            if ($found_path || !isset($_POST['ftp_path'])) {
                $_POST['ftp_path'] = $detect_path;
            }
            if (!isset($_POST['ftp_username'])) {
                $_POST['ftp_username'] = $username;
            }
            $context['package_ftp'] = array('server' => isset($_POST['ftp_server']) ? $_POST['ftp_server'] : (isset($modSettings['package_server']) ? $modSettings['package_server'] : 'localhost'), 'port' => isset($_POST['ftp_port']) ? $_POST['ftp_port'] : (isset($modSettings['package_port']) ? $modSettings['package_port'] : '21'), 'username' => isset($_POST['ftp_username']) ? $_POST['ftp_username'] : (isset($modSettings['package_username']) ? $modSettings['package_username'] : ''), 'path' => $_POST['ftp_path'], 'error' => empty($ftp_error) ? null : $ftp_error);
        } else {
            $context['package_download_broken'] = false;
            $ftp->chmod('Packages', 0777);
            $ftp->chmod('Packages/installed.list', 0777);
            $ftp->close();
        }
    }
}
Example #2
0
function CheckFilesWritable()
{
    global $txt, $incontext;
    $incontext['page_title'] = $txt['ftp_checking_writable'];
    $incontext['sub_template'] = 'chmod_files';
    $writable_files = array('attachments', 'avatars', 'cache', 'template_cache', 'Packages', 'Packages/installed.list', 'Smileys', 'Themes', 'agreement.txt', 'Settings.php', 'Settings_bak.php');
    $extra_files = array('Themes/classic/index.template.php', 'Themes/classic/style.css');
    foreach ($incontext['detected_languages'] as $lang => $temp) {
        $extra_files[] = 'Themes/default/languages/' . $lang;
    }
    // With mod_security installed, we could attempt to fix it with .htaccess.
    if (function_exists('apache_get_modules') && in_array('mod_security', apache_get_modules())) {
        $writable_files[] = file_exists(dirname(__FILE__) . '/.htaccess') ? '.htaccess' : '.';
    }
    $failed_files = array();
    // On linux, it's easy - just use is_writable!
    if (substr(__FILE__, 1, 2) != ':\\') {
        foreach ($writable_files as $file) {
            if (!is_writable(dirname(__FILE__) . '/' . $file)) {
                @chmod(dirname(__FILE__) . '/' . $file, 0755);
                // Well, 755 hopefully worked... if not, try 777.
                if (!is_writable(dirname(__FILE__) . '/' . $file) && !@chmod(dirname(__FILE__) . '/' . $file, 0777)) {
                    $failed_files[] = $file;
                }
            }
        }
        foreach ($extra_files as $file) {
            @chmod(dirname(__FILE__) . (empty($file) ? '' : '/' . $file), 0777);
        }
    } else {
        foreach ($writable_files as $file) {
            // Folders can't be opened for write... but the index.php in them can ;)
            if (is_dir(dirname(__FILE__) . '/' . $file)) {
                $file .= '/index.php';
            }
            // Funny enough, chmod actually does do something on windows - it removes the read only attribute.
            @chmod(dirname(__FILE__) . '/' . $file, 0777);
            $fp = @fopen(dirname(__FILE__) . '/' . $file, 'r+');
            // Hmm, okay, try just for write in that case...
            if (!is_resource($fp)) {
                $fp = @fopen(dirname(__FILE__) . '/' . $file, 'w');
            }
            if (!is_resource($fp)) {
                $failed_files[] = $file;
            }
            @fclose($fp);
        }
        foreach ($extra_files as $file) {
            @chmod(dirname(__FILE__) . (empty($file) ? '' : '/' . $file), 0777);
        }
    }
    $failure = count($failed_files) >= 1;
    if (!isset($_SERVER)) {
        return !$failure;
    }
    // Put the list into context.
    $incontext['failed_files'] = $failed_files;
    // It's not going to be possible to use FTP on windows to solve the problem...
    if ($failure && substr(__FILE__, 1, 2) == ':\\') {
        $incontext['error'] = $txt['error_windows_chmod'] . '
					<ul style="margin: 2.5ex; font-family: monospace;">
						<li>' . implode('</li>
						<li>', $failed_files) . '</li>
					</ul>';
        return false;
    } elseif ($failure) {
        // Load any session data we might have...
        if (!isset($_POST['ftp_username']) && isset($_SESSION['installer_temp_ftp'])) {
            $_POST['ftp_server'] = $_SESSION['installer_temp_ftp']['server'];
            $_POST['ftp_port'] = $_SESSION['installer_temp_ftp']['port'];
            $_POST['ftp_username'] = $_SESSION['installer_temp_ftp']['username'];
            $_POST['ftp_password'] = $_SESSION['installer_temp_ftp']['password'];
            $_POST['ftp_path'] = $_SESSION['installer_temp_ftp']['path'];
        }
        $incontext['ftp_errors'] = array();
        if (isset($_POST['ftp_username'])) {
            $ftp = new ftp_connection($_POST['ftp_server'], $_POST['ftp_port'], $_POST['ftp_username'], $_POST['ftp_password']);
            if ($ftp->error === false) {
                // Try it without /home/abc just in case they messed up.
                if (!$ftp->chdir($_POST['ftp_path'])) {
                    $incontext['ftp_errors'][] = $ftp->last_message;
                    $ftp->chdir(preg_replace('~^/home[2]?/[^/]+?~', '', $_POST['ftp_path']));
                }
            }
        }
        if (!isset($ftp) || $ftp->error !== false) {
            if (!isset($ftp)) {
                $ftp = new ftp_connection(null);
            } elseif ($ftp->error !== false && empty($incontext['ftp_errors']) && !empty($ftp->last_message)) {
                $incontext['ftp_errors'][] = $ftp->last_message;
            }
            list($username, $detect_path, $found_path) = $ftp->detect_path(dirname(__FILE__));
            if (empty($_POST['ftp_path']) && $found_path) {
                $_POST['ftp_path'] = $detect_path;
            }
            if (!isset($_POST['ftp_username'])) {
                $_POST['ftp_username'] = $username;
            }
            // Set the username etc, into context.
            $incontext['ftp'] = array('server' => isset($_POST['ftp_server']) ? $_POST['ftp_server'] : 'localhost', 'port' => isset($_POST['ftp_port']) ? $_POST['ftp_port'] : '21', 'username' => isset($_POST['ftp_username']) ? $_POST['ftp_username'] : '', 'path' => isset($_POST['ftp_path']) ? $_POST['ftp_path'] : '/', 'path_msg' => !empty($found_path) ? $txt['ftp_path_found_info'] : $txt['ftp_path_info']);
            return false;
        } else {
            $_SESSION['installer_temp_ftp'] = array('server' => $_POST['ftp_server'], 'port' => $_POST['ftp_port'], 'username' => $_POST['ftp_username'], 'password' => $_POST['ftp_password'], 'path' => $_POST['ftp_path']);
            $failed_files_updated = array();
            foreach ($failed_files as $file) {
                if (!is_writable(dirname(__FILE__) . '/' . $file)) {
                    $ftp->chmod($file, 0755);
                }
                if (!is_writable(dirname(__FILE__) . '/' . $file)) {
                    $ftp->chmod($file, 0777);
                }
                if (!is_writable(dirname(__FILE__) . '/' . $file)) {
                    $failed_files_updated[] = $file;
                    $incontext['ftp_errors'][] = rtrim($ftp->last_message) . ' -> ' . $file . "\n";
                }
            }
            $ftp->close();
            // Are there any errors left?
            if (count($failed_files_updated) >= 1) {
                // Guess there are...
                $incontext['failed_files'] = $failed_files_updated;
                // Set the username etc, into context.
                $incontext['ftp'] = $_SESSION['installer_temp_ftp'] += array('path_msg' => $txt['ftp_path_info']);
                return false;
            }
        }
    }
    return true;
}
Example #3
0
function fetch_web_data($url, $post_data = '', $keep_alive = false, $redirection_level = 0)
{
    global $webmaster_email;
    static $keep_alive_dom = null, $keep_alive_fp = null;
    preg_match('~^(http|ftp)(s)?://([^/:]+)(:(\\d+))?(.+)$~', $url, $match);
    // An FTP url. We should try connecting and RETRieving it...
    if (empty($match[1])) {
        return false;
    } elseif ($match[1] == 'ftp') {
        // Include the file containing the ftp_connection class.
        loadClassFile('Class-Package.php');
        // Establish a connection and attempt to enable passive mode.
        $ftp = new ftp_connection(($match[2] ? 'ssl://' : '') . $match[3], empty($match[5]) ? 21 : $match[5], 'anonymous', $webmaster_email);
        if ($ftp->error !== false || !$ftp->passive()) {
            return false;
        }
        // I want that one *points*!
        fwrite($ftp->connection, 'RETR ' . $match[6] . "\r\n");
        // Since passive mode worked (or we would have returned already!) open the connection.
        $fp = @fsockopen($ftp->pasv['ip'], $ftp->pasv['port'], $err, $err, 5);
        if (!$fp) {
            return false;
        }
        // The server should now say something in acknowledgement.
        $ftp->check_response(150);
        $data = '';
        while (!feof($fp)) {
            $data .= fread($fp, 4096);
        }
        fclose($fp);
        // All done, right?  Good.
        $ftp->check_response(226);
        $ftp->close();
    } elseif (isset($match[1]) && $match[1] == 'http') {
        if ($keep_alive && $match[3] == $keep_alive_dom) {
            $fp = $keep_alive_fp;
        }
        if (empty($fp)) {
            // Open the socket on the port we want...
            $fp = @fsockopen(($match[2] ? 'ssl://' : '') . $match[3], empty($match[5]) ? $match[2] ? 443 : 80 : $match[5], $err, $err, 5);
            if (!$fp) {
                return false;
            }
        }
        if ($keep_alive) {
            $keep_alive_dom = $match[3];
            $keep_alive_fp = $fp;
        }
        // I want this, from there, and I'm not going to be bothering you for more (probably.)
        if (empty($post_data)) {
            fwrite($fp, 'GET ' . $match[6] . ' HTTP/1.0' . "\r\n");
            fwrite($fp, 'Host: ' . $match[3] . (empty($match[5]) ? $match[2] ? ':443' : '' : ':' . $match[5]) . "\r\n");
            fwrite($fp, 'User-Agent: PHP/SMF' . "\r\n");
            if ($keep_alive) {
                fwrite($fp, 'Connection: Keep-Alive' . "\r\n\r\n");
            } else {
                fwrite($fp, 'Connection: close' . "\r\n\r\n");
            }
        } else {
            fwrite($fp, 'POST ' . $match[6] . ' HTTP/1.0' . "\r\n");
            fwrite($fp, 'Host: ' . $match[3] . (empty($match[5]) ? $match[2] ? ':443' : '' : ':' . $match[5]) . "\r\n");
            fwrite($fp, 'User-Agent: PHP/SMF' . "\r\n");
            if ($keep_alive) {
                fwrite($fp, 'Connection: Keep-Alive' . "\r\n");
            } else {
                fwrite($fp, 'Connection: close' . "\r\n");
            }
            fwrite($fp, 'Content-Type: application/x-www-form-urlencoded' . "\r\n");
            fwrite($fp, 'Content-Length: ' . strlen($post_data) . "\r\n\r\n");
            fwrite($fp, $post_data);
        }
        $response = fgets($fp, 768);
        // Redirect in case this location is permanently or temporarily moved.
        if ($redirection_level < 3 && preg_match('~^HTTP/\\S+\\s+30[127]~i', $response) === 1) {
            $header = '';
            $location = '';
            while (!feof($fp) && trim($header = fgets($fp, 4096)) != '') {
                if (strpos($header, 'Location:') !== false) {
                    $location = trim(substr($header, strpos($header, ':') + 1));
                }
            }
            if (empty($location)) {
                return false;
            } else {
                if (!$keep_alive) {
                    fclose($fp);
                }
                return fetch_web_data($location, $post_data, $keep_alive, $redirection_level + 1);
            }
        } elseif (preg_match('~^HTTP/\\S+\\s+20[01]~i', $response) === 0) {
            return false;
        }
        // Skip the headers...
        while (!feof($fp) && trim($header = fgets($fp, 4096)) != '') {
            if (preg_match('~content-length:\\s*(\\d+)~i', $header, $match) != 0) {
                $content_length = $match[1];
            } elseif (preg_match('~connection:\\s*close~i', $header) != 0) {
                $keep_alive_dom = null;
                $keep_alive = false;
            }
            continue;
        }
        $data = '';
        if (isset($content_length)) {
            while (!feof($fp) && strlen($data) < $content_length) {
                $data .= fread($fp, $content_length - strlen($data));
            }
        } else {
            while (!feof($fp)) {
                $data .= fread($fp, 4096);
            }
        }
        if (!$keep_alive) {
            fclose($fp);
        }
    } else {
        // Umm, this shouldn't happen?
        trigger_error('fetch_web_data(): Bad URL', E_USER_NOTICE);
        $data = false;
    }
    return $data;
}
Example #4
0
function PackagePermissions()
{
    global $context, $txt, $modSettings, $boarddir, $sourcedir, $cachedir, $package_ftp;
    // Let's try and be good, yes?
    checkSession('get');
    // If we're restoring permissions this is just a pass through really.
    if (isset($_GET['restore'])) {
        create_chmod_control(array(), array(), true);
        fatal_lang_error('no_access', false);
    }
    // This is a memory eat.
    @ini_set('memory_limit', '128M');
    @set_time_limit(600);
    // Load up some FTP stuff.
    create_chmod_control();
    if (empty($package_ftp) && !isset($_POST['skip_ftp'])) {
        loadClassFile('Class-Package.php');
        $ftp = new ftp_connection(null);
        list($username, $detect_path, $found_path) = $ftp->detect_path($boarddir);
        $context['package_ftp'] = array('server' => isset($modSettings['package_server']) ? $modSettings['package_server'] : 'localhost', 'port' => isset($modSettings['package_port']) ? $modSettings['package_port'] : '21', 'username' => empty($username) ? isset($modSettings['package_username']) ? $modSettings['package_username'] : '' : $username, 'path' => $detect_path, 'form_elements_only' => true);
    } else {
        $context['ftp_connected'] = true;
    }
    // Define the template.
    $context['page_title'] = $txt['package_file_perms'];
    $context['sub_template'] = 'file_permissions';
    // Define what files we're interested in, as a tree.
    $context['file_tree'] = array(strtr($boarddir, array('\\' => '/')) => array('type' => 'dir', 'contents' => array('agreement.txt' => array('type' => 'file', 'writable_on' => 'standard'), 'Settings.php' => array('type' => 'file', 'writable_on' => 'restrictive'), 'Settings_bak.php' => array('type' => 'file', 'writable_on' => 'restrictive'), 'attachments' => array('type' => 'dir', 'writable_on' => 'restrictive'), 'avatars' => array('type' => 'dir', 'writable_on' => 'standard'), 'cache' => array('type' => 'dir', 'writable_on' => 'restrictive'), 'custom_avatar_dir' => array('type' => 'dir', 'writable_on' => 'restrictive'), 'Smileys' => array('type' => 'dir_recursive', 'writable_on' => 'standard'), 'Sources' => array('type' => 'dir', 'list_contents' => true, 'writable_on' => 'standard'), 'Themes' => array('type' => 'dir_recursive', 'writable_on' => 'standard', 'contents' => array('default' => array('type' => 'dir_recursive', 'list_contents' => true, 'contents' => array('languages' => array('type' => 'dir', 'list_contents' => true))))), 'Packages' => array('type' => 'dir', 'writable_on' => 'standard', 'contents' => array('temp' => array('type' => 'dir'), 'backup' => array('type' => 'dir'), 'installed.list' => array('type' => 'file', 'writable_on' => 'standard'))))));
    // Directories that can move.
    if (substr($sourcedir, 0, strlen($boarddir)) != $boarddir) {
        unset($context['file_tree'][strtr($boarddir, array('\\' => '/'))]['contents']['Sources']);
        $context['file_tree'][strtr($sourcedir, array('\\' => '/'))] = array('type' => 'dir', 'list_contents' => true, 'writable_on' => 'standard');
    }
    // Moved the cache?
    if (substr($cachedir, 0, strlen($boarddir)) != $boarddir) {
        unset($context['file_tree'][strtr($boarddir, array('\\' => '/'))]['contents']['cache']);
        $context['file_tree'][strtr($cachedir, array('\\' => '/'))] = array('type' => 'dir', 'list_contents' => false, 'writable_on' => 'restrictive');
    }
    // Are we using multiple attachment directories?
    if (!empty($modSettings['currentAttachmentUploadDir'])) {
        unset($context['file_tree'][strtr($boarddir, array('\\' => '/'))]['contents']['attachments']);
        if (!is_array($modSettings['attachmentUploadDir'])) {
            $modSettings['attachmentUploadDir'] = unserialize($modSettings['attachmentUploadDir']);
        }
        // !!! Should we suggest non-current directories be read only?
        foreach ($modSettings['attachmentUploadDir'] as $dir) {
            $context['file_tree'][strtr($dir, array('\\' => '/'))] = array('type' => 'dir', 'writable_on' => 'restrictive');
        }
    } elseif (substr($modSettings['attachmentUploadDir'], 0, strlen($boarddir)) != $boarddir) {
        unset($context['file_tree'][strtr($boarddir, array('\\' => '/'))]['contents']['attachments']);
        $context['file_tree'][strtr($modSettings['attachmentUploadDir'], array('\\' => '/'))] = array('type' => 'dir', 'writable_on' => 'restrictive');
    }
    if (substr($modSettings['smileys_dir'], 0, strlen($boarddir)) != $boarddir) {
        unset($context['file_tree'][strtr($boarddir, array('\\' => '/'))]['contents']['Smileys']);
        $context['file_tree'][strtr($modSettings['smileys_dir'], array('\\' => '/'))] = array('type' => 'dir_recursive', 'writable_on' => 'standard');
    }
    if (substr($modSettings['avatar_directory'], 0, strlen($boarddir)) != $boarddir) {
        unset($context['file_tree'][strtr($boarddir, array('\\' => '/'))]['contents']['avatars']);
        $context['file_tree'][strtr($modSettings['avatar_directory'], array('\\' => '/'))] = array('type' => 'dir', 'writable_on' => 'standard');
    }
    if (isset($modSettings['custom_avatar_dir']) && substr($modSettings['custom_avatar_dir'], 0, strlen($boarddir)) != $boarddir) {
        unset($context['file_tree'][strtr($boarddir, array('\\' => '/'))]['contents']['custom_avatar_dir']);
        $context['file_tree'][strtr($modSettings['custom_avatar_dir'], array('\\' => '/'))] = array('type' => 'dir', 'writable_on' => 'restrictive');
    }
    // Load up any custom themes.
    $request = smf_db_query('
		SELECT value
		FROM {db_prefix}themes
		WHERE id_theme > {int:default_theme_id}
			AND id_member = {int:guest_id}
			AND variable = {string:theme_dir}
		ORDER BY value ASC', array('default_theme_id' => 1, 'guest_id' => 0, 'theme_dir' => 'theme_dir'));
    while ($row = mysql_fetch_assoc($request)) {
        if (substr(strtolower(strtr($row['value'], array('\\' => '/'))), 0, strlen($boarddir) + 7) == strtolower(strtr($boarddir, array('\\' => '/')) . '/Themes')) {
            $context['file_tree'][strtr($boarddir, array('\\' => '/'))]['contents']['Themes']['contents'][substr($row['value'], strlen($boarddir) + 8)] = array('type' => 'dir_recursive', 'list_contents' => true, 'contents' => array('languages' => array('type' => 'dir', 'list_contents' => true)));
        } else {
            $context['file_tree'][strtr($row['value'], array('\\' => '/'))] = array('type' => 'dir_recursive', 'list_contents' => true, 'contents' => array('languages' => array('type' => 'dir', 'list_contents' => true)));
        }
    }
    mysql_free_result($request);
    // If we're submitting then let's move on to another function to keep things cleaner..
    if (isset($_POST['action_changes'])) {
        return PackagePermissionsAction();
    }
    $context['look_for'] = array();
    // Are we looking for a particular tree - normally an expansion?
    if (!empty($_REQUEST['find'])) {
        $context['look_for'][] = base64_decode($_REQUEST['find']);
    }
    // Only that tree?
    $context['only_find'] = isset($_GET['xml']) && !empty($_REQUEST['onlyfind']) ? $_REQUEST['onlyfind'] : '';
    if ($context['only_find']) {
        $context['look_for'][] = $context['only_find'];
    }
    // Have we got a load of back-catalogue trees to expand from a submit etc?
    if (!empty($_GET['back_look'])) {
        $potententialTrees = unserialize(base64_decode($_GET['back_look']));
        foreach ($potententialTrees as $tree) {
            $context['look_for'][] = $tree;
        }
    }
    // ... maybe posted?
    if (!empty($_POST['back_look'])) {
        $context['only_find'] = array_merge($context['only_find'], $_POST['back_look']);
    }
    $context['back_look_data'] = base64_encode(serialize(array_slice($context['look_for'], 0, 15)));
    // Are we finding more files than first thought?
    $context['file_offset'] = !empty($_REQUEST['fileoffset']) ? (int) $_REQUEST['fileoffset'] : 0;
    // Don't list more than this many files in a directory.
    $context['file_limit'] = 150;
    // How many levels shall we show?
    $context['default_level'] = empty($context['only_find']) ? 2 : 25;
    // This will be used if we end up catching XML data.
    $context['xml_data'] = array('roots' => array('identifier' => 'root', 'children' => array(array('value' => preg_replace('~[^A-Za-z0-9_\\-=:]~', ':-:', $context['only_find'])))), 'folders' => array('identifier' => 'folder', 'children' => array()));
    foreach ($context['file_tree'] as $path => $data) {
        // Run this directory.
        if (file_exists($path) && (empty($context['only_find']) || substr($context['only_find'], 0, strlen($path)) == $path)) {
            // Get the first level down only.
            fetchPerms__recursive($path, $context['file_tree'][$path], 1);
            $context['file_tree'][$path]['perms'] = array('chmod' => @is_writable($path), 'perms' => @fileperms($path));
        } else {
            unset($context['file_tree'][$path]);
        }
    }
    // Is this actually xml?
    if (isset($_GET['xml'])) {
        loadTemplate('Xml');
        $context['sub_template'] = 'generic_xml';
        $context['template_layers'] = array();
    }
}
Example #5
0
function fetch_web_data($url, $post_data = '', $keep_alive = false, $redirection_level = 0)
{
    global $webmaster_email;
    static $keep_alive_dom = null, $keep_alive_fp = null;
    preg_match('~^(http|ftp)(s)?://([^/:]+)(:(\\d))?(.+)$~', $url, $match);
    // An FTP url. We should try connecting and RETRieving it...
    if (empty($match[1])) {
        return false;
    } elseif ($match[1] == 'ftp') {
        // Establish a connection and attempt to enable passive mode.
        $ftp = new ftp_connection(($match[2] ? 'ssl://' : '') . $match[3], empty($match[5]) ? 21 : $match[5], 'anonymous', '*****@*****.**');
        if ($ftp->error !== false || !$ftp->passive()) {
            return false;
        }
        // I want that one *points*!
        $ftp->send_command('RETR ' . $match[6]);
        // Since passive mode worked (or we would have returned already!) open the connection.
        $fp = $ftp->connect_passive();
        if (!$fp) {
            return false;
        }
        // The server should now say something in acknowledgement.
        $ftp->check_response(150);
        $data = '';
        while (!feof($fp)) {
            $data .= fread($fp, 4096);
        }
        fclose($fp);
        // All done, right?  Good.
        $ftp->check_response(226);
        $ftp->close();
    } elseif (isset($match[1]) && $match[1] == 'http') {
        // Figure out the origin (Host header, also for keepalive.)
        $origin = $match[3];
        if (!empty($match[5])) {
            $origin .= ':' . $match[5];
        } elseif (!empty($match[2])) {
            $origin .= ':443';
        }
        if ($keep_alive && $origin == $keep_alive_dom) {
            $fp = $keep_alive_fp;
        }
        if (empty($fp) || feof($fp)) {
            // Open the socket on the port we want...
            $fp = @fsockopen(($match[2] ? 'ssl://' : '') . $match[3], empty($match[5]) ? $match[2] ? 443 : 80 : $match[5], $err, $err, 5);
            if (!$fp) {
                return false;
            }
        }
        if ($keep_alive) {
            $keep_alive_dom = $origin;
            $keep_alive_fp = $fp;
        }
        // I want this, from there, and I'm not going to be bothering you for more (probably.)
        if (empty($post_data)) {
            fwrite($fp, 'GET ' . $match[6] . ' HTTP/1.0' . "\r\n");
        } else {
            fwrite($fp, 'POST ' . $match[6] . ' HTTP/1.0' . "\r\n");
        }
        fwrite($fp, 'Host: ' . $origin . "\r\n");
        fwrite($fp, 'User-Agent: PHP/SMF' . "\r\n");
        if (!empty($_SESSION['webinstall_state']['can_svn']) && strpos($match[6], '-dev') !== false && !empty($_SESSION['webinstall_state']['member_info'])) {
            // Don't go giving this to the wrong places.
            if ($origin === 'devel.simplemachines.org:443') {
                fwrite($fp, 'Authorization: Basic ' . base64_encode(strtolower($_SESSION['webinstall_state']['member_info'][0]) . ':' . $_SESSION['webinstall_state']['member_info'][1]) . "\r\n");
            }
        }
        if ($keep_alive) {
            fwrite($fp, 'Connection: Keep-Alive' . "\r\n");
        } else {
            fwrite($fp, 'Connection: close' . "\r\n");
        }
        if (!empty($post_data)) {
            fwrite($fp, 'Content-Type: application/x-www-form-urlencoded' . "\r\n");
            fwrite($fp, 'Content-Length: ' . strlen($post_data) . "\r\n\r\n");
            fwrite($fp, $post_data);
        } else {
            fwrite($fp, "\r\n");
        }
        $response = fgets($fp, 768);
        // Redirect in case this location is permanently or temporarily moved.
        if ($redirection_level < 3 && preg_match('~^HTTP/\\S+\\s+30[127]~i', $response) === 1) {
            $header = '';
            $location = '';
            while (!feof($fp) && trim($header = fgets($fp, 4096)) != '') {
                if (strpos($header, 'Location:') !== false) {
                    $location = trim(substr($header, strpos($header, ':') + 1));
                }
            }
            if (empty($location)) {
                return false;
            } else {
                if (!$keep_alive) {
                    fclose($fp);
                }
                return fetch_web_data($location, $post_data, $keep_alive, $redirection_level + 1);
            }
        } elseif (preg_match('~^HTTP/\\S+\\s+20[01]~i', $response) === 0) {
            return false;
        }
        // Skip the headers...
        while (!feof($fp) && trim($header = fgets($fp, 4096)) != '') {
            if (preg_match('~content-length:\\s*(\\d+)~i', $header, $match) != 0) {
                $content_length = $match[1];
            } elseif (preg_match('~connection:\\s*close~i', $header) != 0) {
                $keep_alive_dom = null;
                $keep_alive = false;
            }
            continue;
        }
        $data = '';
        if (isset($content_length)) {
            while (!feof($fp) && strlen($data) < $content_length) {
                $data .= fread($fp, $content_length - strlen($data));
            }
        } else {
            while (!feof($fp)) {
                $data .= fread($fp, 4096);
            }
        }
        if (!$keep_alive) {
            fclose($fp);
        }
    } else {
        // Umm, this shouldn't happen?
        trigger_error('fetch_web_data(): Bad URL', E_USER_NOTICE);
        $data = false;
    }
    return $data;
}
Example #6
0
function make_files_writable()
{
    global $txt;
    $writable_files = array('attachments', 'avatars', 'Packages', 'Packages/installed.list', 'Smileys', 'Themes', 'agreement.txt', 'Settings.php', 'Settings_bak.php');
    $extra_files = array('Themes/classic/index.template.php', 'Themes/classic/style.css');
    foreach ($GLOBALS['detected_languages'] as $lang => $temp) {
        $extra_files[] = 'Themes/default/languages/' . $lang;
    }
    $failure = false;
    // With mod_security installed, we could attempt to fix it with .htaccess.
    if (function_exists('apache_get_modules') && in_array('mod_security', apache_get_modules())) {
        $writable_files[] = file_exists(dirname(__FILE__) . '/.htaccess') ? '.htaccess' : '.';
    }
    // On linux, it's easy - just use is_writable!
    if (substr(__FILE__, 1, 2) != ':\\') {
        foreach ($writable_files as $file) {
            if (!is_writable(dirname(__FILE__) . '/' . $file)) {
                @chmod(dirname(__FILE__) . '/' . $file, 0755);
                // Well, 755 hopefully worked... if not, try 777.
                $failure |= !is_writable(dirname(__FILE__) . '/' . $file) && !@chmod(dirname(__FILE__) . '/' . $file, 0777);
            }
        }
        foreach ($extra_files as $file) {
            @chmod(dirname(__FILE__) . (empty($file) ? '' : '/' . $file), 0777);
        }
    } else {
        foreach ($writable_files as $file) {
            // Folders can't be opened for write... but the index.php in them can ;).
            if (is_dir(dirname(__FILE__) . '/' . $file)) {
                $file .= '/index.php';
            }
            // Funny enough, chmod actually does do something on windows - it removes the read only attribute.
            @chmod(dirname(__FILE__) . '/' . $file, 0777);
            $fp = @fopen(dirname(__FILE__) . '/' . $file, 'r+');
            // Hmm, okay, try just for write in that case...
            if (!$fp) {
                $fp = @fopen(dirname(__FILE__) . '/' . $file, 'w');
            }
            $failure |= !$fp;
            @fclose($fp);
        }
        foreach ($extra_files as $file) {
            @chmod(dirname(__FILE__) . (empty($file) ? '' : '/' . $file), 0777);
        }
    }
    if (!isset($_SERVER)) {
        return !$failure;
    }
    // It's not going to be possible to use FTP on windows to solve the problem...
    if ($failure && substr(__FILE__, 1, 2) == ':\\') {
        echo '
				<div class="error_message">
					<div style="color: red;">', $txt['error_windows_chmod'], '</div>
					<ul style="margin: 2.5ex; font-family: monospace;">
						<li>', implode('</li>
						<li>', $writable_files), '</li>
					</ul>
					<a href="', $_SERVER['PHP_SELF'], '?step=0&amp;overphp=true">', $txt['error_message_click'], '</a> ', $txt['error_message_try_again'], '
				</div>';
        return false;
    } elseif ($failure) {
        // Load any session data we might have...
        if (!isset($_POST['ftp_username']) && isset($_SESSION['installer_temp_ftp'])) {
            $_POST['ftp_server'] = $_SESSION['installer_temp_ftp']['server'];
            $_POST['ftp_port'] = $_SESSION['installer_temp_ftp']['port'];
            $_POST['ftp_username'] = $_SESSION['installer_temp_ftp']['username'];
            $_POST['ftp_password'] = $_SESSION['installer_temp_ftp']['password'];
            $_POST['ftp_path'] = $_SESSION['installer_temp_ftp']['path'];
        }
        if (isset($_POST['ftp_username'])) {
            $ftp = new ftp_connection($_POST['ftp_server'], $_POST['ftp_port'], $_POST['ftp_username'], $_POST['ftp_password']);
            if ($ftp->error === false) {
                // Try it without /home/abc just in case they messed up.
                if (!$ftp->chdir($_POST['ftp_path'])) {
                    $ftp_error = $ftp->last_message;
                    $ftp->chdir(preg_replace('~^/home[2]?/[^/]+?~', '', $_POST['ftp_path']));
                }
            }
        }
        if (!isset($ftp) || $ftp->error !== false) {
            if (!isset($ftp)) {
                $ftp = new ftp_connection(null);
            } elseif ($ftp->error !== false && !isset($ftp_error)) {
                $ftp_error = $ftp->last_message === null ? '' : $ftp->last_message;
            }
            list($username, $detect_path, $found_path) = $ftp->detect_path(dirname(__FILE__));
            if ($found_path || !isset($_POST['ftp_path'])) {
                $_POST['ftp_path'] = $detect_path;
            }
            if (!isset($_POST['ftp_username'])) {
                $_POST['ftp_username'] = $username;
            }
            echo '
				<div class="panel">
					<h2>', $txt['ftp_setup'], '</h2>
					<h3>', $txt['ftp_setup_info'], '</h3>';
            if (isset($ftp_error)) {
                echo '
					<div class="error_message">
						<div style="color: red;">
							', $txt['error_ftp_no_connect'], '<br />
							<br />
							<code>', $ftp_error, '</code>
						</div>
					</div>
					<br />';
            }
            echo '
					<form action="', $_SERVER['PHP_SELF'], '?step=0&amp;overphp=true" method="post">

						<table width="520" cellspacing="0" cellpadding="0" border="0" align="center" style="margin-bottom: 1ex;">
							<tr>
								<td width="26%" valign="top" class="textbox"><label for="ftp_server">', $txt['ftp_server'], ':</label></td>
								<td>
									<div style="float: ', empty($txt['lang_rtl']) ? 'right' : 'left', '; margin-', empty($txt['lang_rtl']) ? 'right' : 'left', ': 1px;"><label for="ftp_port" class="textbox"><b>', $txt['ftp_port'], ':&nbsp;</b></label> <input type="text" size="3" name="ftp_port" id="ftp_port" value="', isset($_POST['ftp_port']) ? $_POST['ftp_port'] : '21', '" /></div>
									<input type="text" size="30" name="ftp_server" id="ftp_server" value="', isset($_POST['ftp_server']) ? $_POST['ftp_server'] : 'localhost', '" style="width: 70%;" />
									<div style="font-size: smaller; margin-bottom: 2ex;">', $txt['ftp_server_info'], '</div>
								</td>
							</tr><tr>
								<td width="26%" valign="top" class="textbox"><label for="ftp_username">', $txt['ftp_username'], ':</label></td>
								<td>
									<input type="text" size="50" name="ftp_username" id="ftp_username" value="', isset($_POST['ftp_username']) ? $_POST['ftp_username'] : '', '" style="width: 99%;" />
									<div style="font-size: smaller; margin-bottom: 2ex;">', $txt['ftp_username_info'], '</div>
								</td>
							</tr><tr>
								<td width="26%" valign="top" class="textbox"><label for="ftp_password">', $txt['ftp_password'], ':</label></td>
								<td>
									<input type="password" size="50" name="ftp_password" id="ftp_password" style="width: 99%;" />
									<div style="font-size: smaller; margin-bottom: 3ex;">', $txt['ftp_password_info'], '</div>
								</td>
							</tr><tr>
								<td width="26%" valign="top" class="textbox"><label for="ftp_path">', $txt['ftp_path'], ':</label></td>
								<td style="padding-bottom: 1ex;">
									<input type="text" size="50" name="ftp_path" id="ftp_path" value="', $_POST['ftp_path'], '" style="width: 99%;" />
									<div style="font-size: smaller; margin-bottom: 2ex;">', !empty($found_path) ? $txt['ftp_path_found_info'] : $txt['ftp_path_info'], '</div>
								</td>
							</tr>
						</table>

						<div style="margin: 1ex; margin-top: 2ex; text-align: ', empty($txt['lang_rtl']) ? 'right' : 'left', ';"><input type="submit" value="', $txt['ftp_connect'], '" /></div>
					</form>

					<h2>', $txt['ftp_setup_why'], '</h2>
					<h3>', $txt['ftp_setup_why_info'], '</h3>

					<ul style="margin: 2.5ex; font-family: monospace;">
						<li>', implode('</li>
						<li>', $writable_files), '</li>
					</ul>
					<a href="', $_SERVER['PHP_SELF'], '?step=0&amp;overphp=true">', $txt['error_message_click'], '</a> ', $txt['ftp_setup_again'], '

				</div>';
            return false;
        } else {
            $_SESSION['installer_temp_ftp'] = array('server' => $_POST['ftp_server'], 'port' => $_POST['ftp_port'], 'username' => $_POST['ftp_username'], 'password' => $_POST['ftp_password'], 'path' => $_POST['ftp_path']);
            foreach ($writable_files as $file) {
                if (!is_writable(dirname(__FILE__) . '/' . $file)) {
                    $ftp->chmod($file, 0755);
                }
                if (!is_writable(dirname(__FILE__) . '/' . $file)) {
                    $ftp->chmod($file, 0777);
                }
            }
            $ftp->close();
        }
    }
    return true;
}
Example #7
0
function makeFilesWritable(&$files)
{
    global $upcontext, $boarddir;
    if (empty($files)) {
        return true;
    }
    $failure = false;
    // On linux, it's easy - just use is_writable!
    if (substr(__FILE__, 1, 2) != ':\\') {
        foreach ($files as $k => $file) {
            if (!is_writable($file)) {
                @chmod($file, 0755);
                // Well, 755 hopefully worked... if not, try 777.
                if (!is_writable($file) && !@chmod($file, 0777)) {
                    $failure = true;
                } else {
                    unset($files[$k]);
                }
            } else {
                unset($files[$k]);
            }
        }
    } else {
        foreach ($files as $k => $file) {
            // Folders can't be opened for write... but the index.php in them can ;).
            if (is_dir($file)) {
                $file .= '/index.php';
            }
            // Funny enough, chmod actually does do something on windows - it removes the read only attribute.
            @chmod($file, 0777);
            $fp = @fopen($file, 'r+');
            // Hmm, okay, try just for write in that case...
            if (!$fp) {
                $fp = @fopen($file, 'w');
            }
            if (!$fp) {
                $failure = true;
            } else {
                unset($files[$k]);
            }
            @fclose($fp);
        }
    }
    if (empty($files)) {
        return true;
    }
    if (!isset($_SERVER)) {
        return !$failure;
    }
    // What still needs to be done?
    $upcontext['chmod']['files'] = $files;
    // If it's windows it's a mess...
    if ($failure && substr(__FILE__, 1, 2) == ':\\') {
        $upcontext['chmod']['ftp_error'] = 'total_mess';
        return false;
    } elseif ($failure) {
        // Load any session data we might have...
        if (!isset($_POST['ftp_username']) && isset($_SESSION['installer_temp_ftp'])) {
            $upcontext['chmod']['server'] = $_SESSION['installer_temp_ftp']['server'];
            $upcontext['chmod']['port'] = $_SESSION['installer_temp_ftp']['port'];
            $upcontext['chmod']['username'] = $_SESSION['installer_temp_ftp']['username'];
            $upcontext['chmod']['password'] = $_SESSION['installer_temp_ftp']['password'];
            $upcontext['chmod']['path'] = $_SESSION['installer_temp_ftp']['path'];
        } elseif (isset($_POST['ftp_username'])) {
            $upcontext['chmod']['server'] = $_POST['ftp_server'];
            $upcontext['chmod']['port'] = $_POST['ftp_port'];
            $upcontext['chmod']['username'] = $_POST['ftp_username'];
            $upcontext['chmod']['password'] = $_POST['ftp_password'];
            $upcontext['chmod']['path'] = $_POST['ftp_path'];
        }
        if (isset($upcontext['chmod']['username'])) {
            $ftp = new ftp_connection($upcontext['chmod']['server'], $upcontext['chmod']['port'], $upcontext['chmod']['username'], $upcontext['chmod']['password']);
            if ($ftp->error === false) {
                // Try it without /home/abc just in case they messed up.
                if (!$ftp->chdir($upcontext['chmod']['path'])) {
                    $upcontext['chmod']['ftp_error'] = $ftp->last_message;
                    $ftp->chdir(preg_replace('~^/home[2]?/[^/]+?~', '', $upcontext['chmod']['path']));
                }
            }
        }
        if (!isset($ftp) || $ftp->error !== false) {
            if (!isset($ftp)) {
                $ftp = new ftp_connection(null);
            } elseif ($ftp->error !== false && !isset($upcontext['chmod']['ftp_error'])) {
                $upcontext['chmod']['ftp_error'] = $ftp->last_message === null ? '' : $ftp->last_message;
            }
            list($username, $detect_path, $found_path) = $ftp->detect_path(dirname(__FILE__));
            if ($found_path || !isset($upcontext['chmod']['path'])) {
                $upcontext['chmod']['path'] = $detect_path;
            }
            if (!isset($upcontext['chmod']['username'])) {
                $upcontext['chmod']['username'] = $username;
            }
            return false;
        } else {
            // We want to do a relative path for FTP.
            if (!in_array($upcontext['chmod']['path'], array('', '/'))) {
                $ftp_root = strtr($boarddir, array($upcontext['chmod']['path'] => ''));
                if (substr($ftp_root, -1) == '/' && ($upcontext['chmod']['path'] == '' || substr($upcontext['chmod']['path'], 0, 1) == '/')) {
                    $ftp_root = substr($ftp_root, 0, -1);
                }
            } else {
                $ftp_root = $boarddir;
            }
            // Save the info for next time!
            $_SESSION['installer_temp_ftp'] = array('server' => $upcontext['chmod']['server'], 'port' => $upcontext['chmod']['port'], 'username' => $upcontext['chmod']['username'], 'password' => $upcontext['chmod']['password'], 'path' => $upcontext['chmod']['path'], 'root' => $ftp_root);
            foreach ($files as $k => $file) {
                if (!is_writable($file)) {
                    $ftp->chmod($file, 0755);
                }
                if (!is_writable($file)) {
                    $ftp->chmod($file, 0777);
                }
                // Assuming that didn't work calculate the path without the boarddir.
                if (!is_writable($file)) {
                    if (strpos($file, $boarddir) === 0) {
                        $ftp_file = strtr($file, array($_SESSION['installer_temp_ftp']['root'] => ''));
                        $ftp->chmod($ftp_file, 0755);
                        if (!is_writable($file)) {
                            $ftp->chmod($ftp_file, 0777);
                        }
                        // Sometimes an extra slash can help...
                        $ftp_file = '/' . $ftp_file;
                        if (!is_writable($file)) {
                            $ftp->chmod($ftp_file, 0755);
                        }
                        if (!is_writable($file)) {
                            $ftp->chmod($ftp_file, 0777);
                        }
                    }
                }
                if (is_writable($file)) {
                    unset($files[$k]);
                }
            }
            $ftp->close();
        }
    }
    // What remains?
    $upcontext['chmod']['files'] = $files;
    if (empty($files)) {
        return true;
    }
    return false;
}