首页 发现 帮助
注册 登录
scaniatm
/
TorrentFlux-b4rt-PHP7
1
0
派生 0
文件 工单管理 0 合并请求 0
目录树: 6c88234346
分支列表 标签列表
TorrentFlux-b4r...
/
html
/
inc
/
functions
/
functions.dir.php

functions.dir.php 12 KB
文件历史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441 
  1. <?php
    2. 

  2. 

  3. /* $Id: functions.dir.php 3164 2007-07-23 09:58:35Z warion $ */
    4. 

  4. 

  5. /*******************************************************************************
    6. 

  6. 

  7.  LICENSE
    8. 

  8. 

  9.  This program is free software; you can redistribute it and/or
    10. 

  10.  modify it under the terms of the GNU General Public License (GPL)
    11. 

  11.  as published by the Free Software Foundation; either version 2
    12. 

  12.  of the License, or (at your option) any later version.
    13. 

  13. 

  14.  This program is distributed in the hope that it will be useful,
    15. 

  15.  but WITHOUT ANY WARRANTY; without even the implied warranty of
    16. 

  16.  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
    17. 

  17.  GNU General Public License for more details.
    18. 

  18. 

  19.  To read the license please visit http://www.gnu.org/copyleft/gpl.html
    20. 

  20. 

  21. *******************************************************************************/
    22. 

  22. 

  23. /**
    24. 

  24.  * checks if $user has the $permission on $object
    25. 

  25.  *
    26. 

  26.  * @param $object
    27. 

  27.  * @param $user
    28. 

  28.  * @param $permission
    29. 

  29.  */
    30. 

  30. function hasPermission($object, $user, $permission) {
    31. 

  31. 	global $cfg;
    32. 

  32. 	// if homedirs disabled return true
    33. 

  33. 	if ($cfg["enable_home_dirs"] == 0)
    34. 

  34. 		return true;
    35. 

  35. 	// check permission
    36. 

  36. 	switch ($permission) {
    37. 

  37. 		case 'r':
    38. 

  38. 			// public read enabled return true
    39. 

  39. 			if ($cfg["dir_public_read"] == 1)
    40. 

  40. 				return true;
    41. 

  41. 			break;
    42. 

  42. 		case 'w':
    43. 

  43. 			// public write enabled return true
    44. 

  44. 			if ($cfg["dir_public_write"] == 1)
    45. 

  45. 				return true;
    46. 

  46. 			break;
    47. 

  47. 		default:
    48. 

  48. 			return false;
    49. 

  49. 	}
    50. 

  50. 	// check if object in users home-dir
    51. 

  51. 	if (preg_match("/^".$user."/", $object))
    52. 

  52. 		return true;
    53. 

  53. 	// only admin has right
    54. 

  54. 	return $cfg['isAdmin'];
    55. 

  55. }
    56. 

  56. 

  57. /**
    58. 

  58.  * inits restricted entries array.
    59. 

  59.  */
    60. 

  60. function initRestrictedDirEntries() {
    61. 

  61. 	global $cfg, $restrictedFileEntries;
    62. 

  62. 	$restrictedFileEntries = ((isset($cfg["dir_restricted"])) && (strlen($cfg["dir_restricted"]) > 0))
    63. 

  63. 		? explode(":", trim($cfg["dir_restricted"]))
    64. 

  64. 		: array();
    65. 

  65. }
    66. 

  66. 

  67. /**
    68. 

  68.  * Checks for the location of the incoming directory
    69. 

  69.  * If it does not exist, then it creates it.
    70. 

  70.  */
    71. 

  71. function checkIncomingPath() {
    72. 

  72. 	global $cfg;
    73. 

  73. 	switch ($cfg["enable_home_dirs"]) {
    74. 

  74. 	    case 1:
    75. 

  75. 	    default:
    76. 

  76. 			// is there a user dir?
    77. 

  77. 			checkDirectory($cfg["path"].$cfg["user"], 0777);
    78. 

  78. 	        break;
    79. 

  79. 	    case 0:
    80. 

  80. 			// is there a incoming dir?
    81. 

  81. 			checkDirectory($cfg["path"].$cfg["path_incoming"], 0777);
    82. 

  82. 	        break;
    83. 

  83. 	}
    84. 

  84. }
    85. 

  85. 

  86. /**
    87. 

  87.  * deletes a dir-entry. recursive process via avddelete
    88. 

  88.  *
    89. 

  89.  * @param $del entry to delete
    90. 

  90.  * @return string with current
    91. 

  91.  */
    92. 

  92. function delDirEntry($del) {
    93. 

  93. 	global $cfg;
    94. 

  94. 

  95. 	$current = "";
    96. 

  96. 

  97. 	if (tfb_isValidPath($del)) {
    98. 

  98. 		avddelete($cfg["path"].$del);
    99. 

  99. 		$arTemp = explode("/", $del);
    100. 

  100. 		if (count($arTemp) > 1) {
    101. 

  101. 			array_pop($arTemp);
    102. 

  102. 			$current = implode("/", $arTemp);
    103. 

  103. 		}
    104. 

  104. 		AuditAction($cfg["constants"]["fm_delete"], $del);
    105. 

  105. 	} else {
    106. 

  106. 		AuditAction($cfg["constants"]["error"], "ILLEGAL DELETE: ".$cfg["user"]." tried to delete ".$del);
    107. 

  107. 	}
    108. 

  108. 	return $current;
    109. 

  109. }
    110. 

  110. 

  111. /**
    112. 

  112.  * downloads a file.
    113. 

  113.  *
    114. 

  114.  * @param $down
    115. 

  115.  * @return string with current
    116. 

  116.  */
    117. 

  117. function downloadFile($down) {
    118. 

  118. 	global $cfg;
    119. 

  119. 	$current = "";
    120. 

  120. 	// we need to strip slashes twice in some circumstances
    121. 

  121. 	// Ex.	If we are trying to download test/tester's file/test.txt
    122. 

  122. 	// $down will be "test/tester\\\'s file/test.txt"
    123. 

  123. 	// one strip will give us "test/tester\'s file/test.txt
    124. 

  124. 	// the second strip will give us the correct
    125. 

  125. 	//	"test/tester's file/test.txt"
    126. 

  126. 	$down = stripslashes(stripslashes($down));
    127. 

  127. 	if (tfb_isValidPath($down)) {
    128. 

  128. 		$path = $cfg["path"].$down;
    129. 

  129. 		$p = explode(".", $path);
    130. 

  130. 		$pc = count($p);
    131. 

  131. 		$f = explode("/", $path);
    132. 

  132. 		$file = array_pop($f);
    133. 

  133. 		$arTemp = explode("/", $down);
    134. 

  134. 		if (count($arTemp) > 1) {
    135. 

  135. 			array_pop($arTemp);
    136. 

  136. 			$current = implode("/", $arTemp);
    137. 

  137. 		}
    138. 

  138. 		if (file_exists($path)) {
    139. 

  139. 			// size
    140. 

  140. 			$filesize = file_size($path);
    141. 

  141. 			// filenames in IE containing dots will screw up the filename
    142. 

  142. 			$headerName = (strstr($_SERVER['HTTP_USER_AGENT'], "MSIE"))
    143. 

  143. 				? preg_replace('/\./', '%2e', $file, substr_count($file, '.') - 1)
    144. 

  144. 				: $file;
    145. 

  145. 			// partial or full ?
    146. 

  146. 			if (isset($_SERVER['HTTP_RANGE'])) {
    147. 

  147. 				// Partial download
    148. 

  148. 				$bufsize = 32768;
    149. 

  149. 				if (preg_match("/^bytes=(\\d+)-(\\d*)$/D", $_SERVER['HTTP_RANGE'], $matches)) {
    150. 

  150. 					$from = $matches[1];
    151. 

  151. 					$to = $matches[2];
    152. 

  152. 					if (empty($to))
    153. 

  153. 						$to = $filesize - 1;
    154. 

  154. 					$content_size = $to - $from + 1;
    155. 

  155. 					@header("HTTP/1.1 206 Partial Content");
    156. 

  156. 					@header("Content-Range: $from - $to / $filesize");
    157. 

  157. 					@header("Content-Length: $content_size");
    158. 

  158. 					@header("Content-Type: application/force-download");
    159. 

  159. 					@header("Content-Disposition: attachment; filename=\"".$headerName."\"");
    160. 

  160. 					@header("Content-Transfer-Encoding: binary");
    161. 

  161. 					// write the session to close so you can continue to browse on the site.
    162. 

  162. 					@session_write_close();
    163. 

  163. 					$fh = fopen($path, "rb");
    164. 

  164. 					fseek($fh, $from);
    165. 

  165. 					$cur_pos = ftell($fh);
    166. 

  166. 					while ($cur_pos !== FALSE && ftell($fh) + $bufsize < $to + 1) {
    167. 

  167. 						$buffer = fread($fh, $bufsize);
    168. 

  168. 						echo $buffer;
    169. 

  169. 						$cur_pos = ftell($fh);
    170. 

  170. 					}
    171. 

  171. 					$buffer = fread($fh, $to + 1 - $cur_pos);
    172. 

  172. 					echo $buffer;
    173. 

  173. 					fclose($fh);
    174. 

  174. 				} else {
    175. 

  175. 					AuditAction($cfg["constants"]["error"], "Partial download : ".$cfg["user"]." tried to download ".$down);
    176. 

  176. 					@header("HTTP/1.1 500 Internal Server Error");
    177. 

  177. 					exit();
    178. 

  178. 				}
    179. 

  179. 			} else {
    180. 

  180. 				// standard download
    181. 

  181. 				@header("Content-type: application/octet-stream\n");
    182. 

  182. 				@header("Content-disposition: attachment; filename=\"".$headerName."\"\n");
    183. 

  183. 				@header("Content-transfer-encoding: binary\n");
    184. 

  184. 				@header("Content-length: " . $filesize . "\n");
    185. 

  185. 				// write the session to close so you can continue to browse on the site.
    186. 

  186. 				@session_write_close();
    187. 

  187. 				$fp = popen("cat ".tfb_shellencode($path), "r");
    188. 

  188. 				fpassthru($fp);
    189. 

  189. 				pclose($fp);
    190. 

  190. 			}
    191. 

  191. 			// log
    192. 

  192. 			AuditAction($cfg["constants"]["fm_download"], $down);
    193. 

  193. 			exit();
    194. 

  194. 		} else {
    195. 

  195. 			AuditAction($cfg["constants"]["error"], "File Not found for download: ".$cfg["user"]." tried to download ".$down);
    196. 

  196. 		}
    197. 

  197. 	} else {
    198. 

  198. 		AuditAction($cfg["constants"]["error"], "ILLEGAL DOWNLOAD: ".$cfg["user"]." tried to download ".$down);
    199. 

  199. 	}
    200. 

  200. 	return $current;
    201. 

  201. }
    202. 

  202. 

  203. /**
    204. 

  204.  * downloads as archive.
    205. 

  205.  *
    206. 

  206.  * @param $down
    207. 

  207.  * @return string with current
    208. 

  208.  */
    209. 

  209. function downloadArchive($down) {
    210. 

  210. 	global $cfg;
    211. 

  211. 	$current = "";
    212. 

  212. 

  213. 	if (tfb_isValidPath($down)) {
    214. 

  214. 		// This prevents the script from getting killed off when running lengthy tar jobs.
    215. 

  215. 		@ini_set("max_execution_time", 3600);
    216. 

  216. 		$down = $cfg["path"].$down;
    217. 

  217. 		$arTemp = explode("/", $down);
    218. 

  218. 		if (count($arTemp) > 1) {
    219. 

  219. 			array_pop($arTemp);
    220. 

  220. 			$current = implode("/", $arTemp);
    221. 

  221. 		}
    222. 

  222. 		// Find out if we're really trying to access a file within the
    223. 

  223. 		// proper directory structure. Sadly, this way requires that $cfg["path"]
    224. 

  224. 		// is a REAL path, not a symlinked one. Also check if $cfg["path"] is part
    225. 

  225. 		// of the REAL path.
    226. 

  226. 		if (is_dir($down)) {
    227. 

  227. 			$sendname = basename($down);
    228. 

  228. 			switch ($cfg["package_type"]) {
    229. 

  229. 				Case "tar":
    230. 

  230. 					$command = "tar cf - \"".addslashes($sendname)."\"";
    231. 

  231. 					break;
    232. 

  232. 				Case "zip":
    233. 

  233. 					$command = "zip -0r - \"".addslashes($sendname)."\"";
    234. 

  234. 					break;
    235. 

  235. 				default:
    236. 

  236. 					$cfg["package_type"] = "tar";
    237. 

  237. 					$command = "tar cf - \"".addslashes($sendname)."\"";
    238. 

  238. 					break;
    239. 

  239. 			}
    240. 

  240. 			// filenames in IE containing dots will screw up the filename
    241. 

  241. 			$headerName = (strstr($_SERVER['HTTP_USER_AGENT'], "MSIE"))
    242. 

  242. 				? preg_replace('/\./', '%2e', $sendname, substr_count($sendname, '.') - 1)
    243. 

  243. 				: $sendname;
    244. 

  244. 			@header("Cache-Control: no-cache");
    245. 

  245. 			@header("Pragma: no-cache");
    246. 

  246. 			@header("Content-Description: File Transfer");
    247. 

  247. 			@header("Content-Type: application/force-download");
    248. 

  248. 			@header('Content-Disposition: attachment; filename="'.$headerName.'.'.$cfg["package_type"].'"');
    249. 

  249. 			// write the session to close so you can continue to browse on the site.
    250. 

  250. 			@session_write_close();
    251. 

  251. 			// Make it a bit easier for tar/zip.
    252. 

  252. 			chdir(dirname($down));
    253. 

  253. 			passthru($command);
    254. 

  254. 			AuditAction($cfg["constants"]["fm_download"], $sendname.".".$cfg["package_type"]);
    255. 

  255. 			exit();
    256. 

  256. 		} else {
    257. 

  257. 			AuditAction($cfg["constants"]["error"], "Illegal download: ".$cfg["user"]." tried to download ".$down);
    258. 

  258. 		}
    259. 

  259. 	} else {
    260. 

  260. 		AuditAction($cfg["constants"]["error"], "ILLEGAL TAR DOWNLOAD: ".$cfg["user"]." tried to download ".$down);
    261. 

  261. 	}
    262. 

  262. 	return $current;
    263. 

  263. }
    264. 

  264. 

  265. /**
    266. 

  266.  * This function returns the extension of a given file.
    267. 

  267.  * Where the extension is the part after the last dot.
    268. 

  268.  * When no dot is found the noExtensionFile string is
    269. 

  269.  * returned. This should point to a 'unknown-type' image
    270. 

  270.  * time by default. This string is also returned when the
    271. 

  271.  * file starts with an dot.
    272. 

  272.  *
    273. 

  273.  * @param $fileName
    274. 

  274.  * @return
    275. 

  275.  */
    276. 

  276. function getExtension($fileName) {
    277. 

  277. 	$noExtensionFile="unknown"; // The return when no extension is found
    278. 

  278. 	// Prepare the loop to find an extension
    279. 

  279. 	$length = -1*(strlen($fileName)); // The maximum negative value for $i
    280. 

  280. 	$i=-1; //The counter which counts back to $length
    281. 

  281. 	// Find the last dot in an string
    282. 

  282. 	while (substr($fileName,$i,1) != "." && $i > $length) {$i -= 1; }
    283. 

  283. 	// Get the extension (with dot)
    284. 

  284. 	$ext = substr($fileName,$i);
    285. 

  285. 	// Decide what to return.
    286. 

  286. 	$ext = (substr($ext,0,1)==".") ? substr($ext,((-1 * strlen($ext))+1)) : $noExtensionFile;
    287. 

  287. 	// Return the extension
    288. 

  288. 	return strtolower($ext);
    289. 

  289. }
    290. 

  290. 

  291. /**
    292. 

  292.  * checks if file/dir is valid.
    293. 

  293.  *
    294. 

  294.  * @param $fileEntry
    295. 

  295.  * @return true/false
    296. 

  296.  */
    297. 

  297. function isValidEntry($entry) {
    298. 

  298. 	global $restrictedFileEntries;
    299. 

  299. 	// is set
    300. 

  300. 	if (!(isset($entry)))
    301. 

  301. 		return false;
    302. 

  302. 	// check if empty
    303. 

  303. 	if ((strlen($entry)) < 1)
    304. 

  304. 		return false;
    305. 

  305. 	// check if dot-entry
    306. 

  306. 	if (substr($entry, 0, 1) == ".")
    307. 

  307. 		return false;
    308. 

  308. 	if (strpos($entry, "/.") !== false)
    309. 

  309. 		return false;
    310. 

  310. 	// check if weirdo macos-entry
    311. 

  311. 	if (substr($entry, 0, 1) == ":")
    312. 

  312. 		return false;
    313. 

  313. 	// check if in restricted array
    314. 

  314. 	if (in_array($entry, $restrictedFileEntries))
    315. 

  315. 		return false;
    316. 

  316. 	// entry ok
    317. 

  317. 	return true;
    318. 

  318. }
    319. 

  319. 

  320. /**
    321. 

  321.  * checks if file is nfo.
    322. 

  322.  *
    323. 

  323.  * @param $entry
    324. 

  324.  * @return 0|1
    325. 

  325.  */
    326. 

  326. function isNfo($entry) {
    327. 

  327. 	$subst = strtolower(substr($entry, -4));
    328. 

  328. 	if ($subst == ".nfo")
    329. 

  329. 		return 1;
    330. 

  330. 	if ($subst == ".txt")
    331. 

  331. 		return 1;
    332. 

  332. 	if ($subst == ".log")
    333. 

  333. 		return 1;
    334. 

  334. 	return 0;
    335. 

  335. }
    336. 

  336. 

  337. /**
    338. 

  338.  * checks if file is rar.
    339. 

  339.  *
    340. 

  340.  * @param $entry
    341. 

  341.  * @return 0|1|2 ; 0 = no match, 1 = rar-file, 2 = zip-file
    342. 

  342.  */
    343. 

  343. function isRar($entry) {
    344. 

  344. 	if ((strpos($entry, '.rar') !== FALSE AND strpos($entry, '.Part') === FALSE) OR (strpos($entry, '.part01.rar') !== FALSE ) OR (strpos($entry, '.part1.rar') !== FALSE ))
    345. 

  345. 		return 1;
    346. 

  346. 	if (strpos($entry, '.zip') !== FALSE)
    347. 

  347. 		return 2;
    348. 

  348. 	return 0;
    349. 

  349. }
    350. 

  350. 

  351. /**
    352. 

  352.  * SFV Check hack
    353. 

  353.  *
    354. 

  354.  * @param $dirName
    355. 

  355.  * @return
    356. 

  356.  */
    357. 

  357. function findSFV($dirName) {
    358. 

  358. 	$sfv = false;
    359. 

  359. 	$d = dir($dirName);
    360. 

  360. 	while (false !== ($entry = $d->read())) {
    361. 

  361.    		if($entry != '.' && $entry != '..' && !empty($entry)) {
    362. 

  362. 			if((isFile($dirName.'/'.$entry)) && (strtolower(substr($entry, -4, 4)) == '.sfv')) {
    363. 

  363. 				$sfv['dir'] = $dirName;
    364. 

  364. 				$sfv['sfv'] = $dirName.'/'.$entry;
    365. 

  365. 			}
    366. 

  366. 	   	}
    367. 

  367. 	}
    368. 

  368. 	$d->close();
    369. 

  369. 	return $sfv;
    370. 

  370. }
    371. 

  371. 

  372. /**
    373. 

  373.  * recursive chmod
    374. 

  374.  *
    375. 

  375.  * @param $path
    376. 

  376.  * @param $mode
    377. 

  377.  * @return boolean
    378. 

  378.  */
    379. 

  379. function chmodRecursive($path, $mode = 0777) {
    380. 

  380. 	if ((! @is_dir($path)) && (isValidEntry(basename($path))))
    381. 

  381. 		return @chmod($path, $mode);
    382. 

  382. 	$dirHandle = opendir($path);
    383. 

  383. 	while ($file = readdir($dirHandle)) {
    384. 

  384. 		if (isValidEntry(basename($file))) {
    385. 

  385. 			$fullpath = $path.'/'.$file;
    386. 

  386. 			if (!@is_dir($fullpath)) {
    387. 

  387. 				if (!@chmod($fullpath, $mode))
    388. 

  388. 					return false;
    389. 

  389. 			} else {
    390. 

  390. 				if (!chmodRecursive($fullpath, $mode))
    391. 

  391. 					return false;
    392. 

  392. 			}
    393. 

  393. 		}
    394. 

  394. 	}
    395. 

  395. 	closedir($dirHandle);
    396. 

  396. 	return ((isValidEntry(basename($path))) && (@chmod($path, $mode)));
    397. 

  397. }
    398. 

  398. 

  399. 

  400. /**
    401. 

  401. *  Encode a string for safe transport across GET transfers, adding
    402. 

  402. *  slashes if magic quoting is off
    403. 

  403. *
    404. 

  404. * @param	string	$input to apply encoding to
    405. 

  405. * @return	string	$return string with encoded string
    406. 

  406. */
    407. 

  407. function UrlHTMLSlashesEncode($input){
    408. 

  408. 	$return=htmlentities(rawurlencode($input), ENT_QUOTES);
    409. 

  409. 

  410. 	// Add slashes if magic quotes off:
    411. 

  411. 	if(get_magic_quotes_gpc() === 0){
    412. 

  412. 		$return=addslashes($return);
    413. 

  413. 	}
    414. 

  414. 	return($return);
    415. 

  415. }
    416. 

  416. 

  417. /**
    418. 

  418. *  Decode a string encoded with UrlHTMLSlashesEncode()
    419. 

  419. *
    420. 

  420. * @param	string	$input string to decode
    421. 

  421. * @return	string	$return string with decoded string
    422. 

  422. */
    423. 

  423. function UrlHTMLSlashesDecode($input){
    424. 

  424. 	return(stripslashes(html_entity_decode(rawurldecode($input), ENT_QUOTES)));
    425. 

  425. }
    426. 

  426. 

  427. /**
    428. 

  428. *  Get the size in bytes of a directory()
    429. 

  429. *
    430. 

  430. * @param	string	$path 
    431. 

  431. * @return	string	$size bytes
    432. 

  432. */
    433. 

  433. function dirsize($path)
    434. 

  434. {
    435. 

  435. 	if(!is_dir($path)) return -1;
    436. 

  436. 	$size = shell_exec("du -sb ".tfb_shellencode($path));
    437. 

  437. 	$size = (float) preg_replace("/(.+)[\t\s]*.*/","$1", $size);
    438. 

  438. 	return $size;
    439. 

  439. }
    440. 

  440. 

  441. ?>
    442.