首頁 探索 說明
註冊 登入
scaniatm
/
TorrentFlux-b4rt-PHP7
1
0
複刻 0
檔案 問題管理 0 合併請求 0
分支: master
分支列表 標籤列表
TorrentFlux-b4r...
/
html
/
inc
/
iid
/
dir.php

dir.php 13 KB
永久連結 文件歷史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419 
  1. <?php
    2. 

  2. 

  3. /* $Id: dir.php 3225 2007-09-27 21:23:13Z danez $ */
    4. 

  4. 

  5. /*******************************************************************************
    6. 

  6. 

  7.  LICENSE
    8. 

  8. 

  9.  This program is free software; you can redistribute it and/or
    10. 

  10.  modify it under the terms of the GNU General Public License (GPL)
    11. 

  11.  as published by the Free Software Foundation; either version 2
    12. 

  12.  of the License, or (at your option) any later version.
    13. 

  13. 

  14.  This program is distributed in the hope that it will be useful,
    15. 

  15.  but WITHOUT ANY WARRANTY; without even the implied warranty of
    16. 

  16.  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
    17. 

  17.  GNU General Public License for more details.
    18. 

  18. 

  19.  To read the license please visit http://www.gnu.org/copyleft/gpl.html
    20. 

  20. 

  21. *******************************************************************************/
    22. 

  22. 

  23. /*
    24. 

  24. munk TODO:
    25. 

  25. Check each of these items for correct functionality with encoding/decoding
    26. 

  26. of HTML and URLs, including inc/iid/item.php and any templates associated with
    27. 

  27. the item:
    28. 

  28. 

  29. vlc
    30. 

  30. */
    31. 

  31. 

  32. // prevent direct invocation
    33. 

  33. if ((!isset($cfg['user'])) || (isset($_REQUEST['cfg']))) {
    34. 

  34. 	@ob_end_clean();
    35. 

  35. 	@header("location: ../../index.php");
    36. 

  36. 	exit();
    37. 

  37. }
    38. 

  38. 

  39. /******************************************************************************/
    40. 

  40. 

  41. // common functions
    42. 

  42. require_once('inc/functions/functions.common.php');
    43. 

  43. 

  44. // dir functions
    45. 

  45. require_once('inc/functions/functions.dir.php');
    46. 

  46. 

  47. // config
    48. 

  48. initRestrictedDirEntries();
    49. 

  49. 

  50. // check incoming path
    51. 

  51. checkIncomingPath();
    52. 

  52. 

  53. // get request-vars
    54. 

  54. $chmod = UrlHTMLSlashesDecode(tfb_getRequestVar('chmod'));
    55. 

  55. $del = UrlHTMLSlashesDecode(tfb_getRequestVar('del'));
    56. 

  56. $down = UrlHTMLSlashesDecode(tfb_getRequestVar('down'));
    57. 

  57. $tar = UrlHTMLSlashesDecode(tfb_getRequestVar('tar'));
    58. 

  58. $multidel = UrlHTMLSlashesDecode(tfb_getRequestVar('multidel'));
    59. 

  59. $dir = UrlHTMLSlashesDecode(tfb_getRequestVar('dir'));
    60. 

  60. 

  61. // check dir-var
    62. 

  62. if (tfb_isValidPath($dir) !== true) {
    63. 

  63. 	AuditAction($cfg["constants"]["error"], "ILLEGAL DIR: ".$cfg["user"]." tried to access ".$dir);
    64. 

  64. 	@error("Invalid Dir", "index.php?iid=dir", "", array($dir));
    65. 

  65. }
    66. 

  66. 

  67. /*******************************************************************************
    68. 

  68.  * chmod
    69. 

  69.  ******************************************************************************/
    70. 

  70. if ($chmod != "") {
    71. 

  71. 	// is enabled ?
    72. 

  72. 	if ($cfg["dir_enable_chmod"] != 1) {
    73. 

  73. 		AuditAction($cfg["constants"]["error"], "ILLEGAL ACCESS: ".$cfg["user"]." tried to use chmod (".$dir.")");
    74. 

  74. 		@error("chmod is disabled", "index.php?iid=index", "");
    75. 

  75. 	}
    76. 

  76. 	// only valid entry with permission
    77. 

  77. 	if ((isValidEntry(basename($dir))) && (hasPermission($dir, $cfg["user"], 'w')))
    78. 

  78. 		chmodRecursive($cfg["path"].$dir);
    79. 

  79. 	else
    80. 

  80. 		AuditAction($cfg["constants"]["error"], "ILLEGAL CHMOD: ".$cfg["user"]." tried to chmod ".$dir);
    81. 

  81. 	@header("Location: index.php?iid=dir&dir=".UrlHTMLSlashesEncode($dir));
    82. 

  82. 	exit();
    83. 

  83. }
    84. 

  84. 

  85. /*******************************************************************************
    86. 

  86.  * delete
    87. 

  87.  ******************************************************************************/
    88. 

  88. if ($del != "") {
    89. 

  89. 	// only valid entry with permission
    90. 

  90. 	if ((isValidEntry(basename($del))) && (hasPermission($del, $cfg["user"], 'w'))) {
    91. 

  91. 		$current = delDirEntry($del);
    92. 

  92. 	} else {
    93. 

  93. 		AuditAction($cfg["constants"]["error"], "ILLEGAL DELETE: ".$cfg["user"]." tried to delete (".$del.")");
    94. 

  94. 		$current = $del;
    95. 

  95. 

  96. 		if (tfb_isValidPath($del)) {
    97. 

  97. 			$arTemp = explode("/", $del);
    98. 

  98. 			if (count($arTemp) > 1) {
    99. 

  99. 				array_pop($arTemp);
    100. 

  100. 				$current = implode("/", $arTemp);
    101. 

  101. 			}
    102. 

  102. 		}
    103. 

  103. 	}
    104. 

  104. 	@header("Location: index.php?iid=dir&dir=".UrlHTMLSlashesEncode($current));
    105. 

  105. 	exit();
    106. 

  106. }
    107. 

  107. 

  108. /*******************************************************************************
    109. 

  109.  * multi-delete
    110. 

  110.  ******************************************************************************/
    111. 

  111. if ($multidel != "") {
    112. 

  112. 	foreach($_POST['file'] as $key => $element) {
    113. 

  113. 		$element = urldecode($element);
    114. 

  114. 		// only valid entry with permission
    115. 

  115. 		if ((isValidEntry(basename($element))) && (hasPermission($element, $cfg["user"], 'w')))
    116. 

  116. 			delDirEntry($element);
    117. 

  117. 		else
    118. 

  118. 			AuditAction($cfg["constants"]["error"], "ILLEGAL DELETE: ".$cfg["user"]." tried to delete ".$element);
    119. 

  119. 	}
    120. 

  120. 	@header("Location: index.php?iid=dir&dir=".UrlHTMLSlashesEncode($dir));
    121. 

  121. 	exit();
    122. 

  122. }
    123. 

  123. 

  124. /*******************************************************************************
    125. 

  125.  * download
    126. 

  126.  ******************************************************************************/
    127. 

  127. if ($down != "") {
    128. 

  128. 	// is enabled ?
    129. 

  129. 	if ($cfg["enable_file_download"] != 1) {
    130. 

  130. 		AuditAction($cfg["constants"]["error"], "ILLEGAL ACCESS: ".$cfg["user"]." tried to use download (".$down.")");
    131. 

  131. 		@error("download is disabled", "index.php?iid=index", "");
    132. 

  132. 	}
    133. 

  133. 	// only valid entry with permission
    134. 

  134. 	if ((isValidEntry(basename($down))) && (hasPermission($down, $cfg["user"], 'r'))) {
    135. 

  135. 		$current = downloadFile($down);
    136. 

  136. 	} else {
    137. 

  137. 		AuditAction($cfg["constants"]["error"], "ILLEGAL DOWNLOAD: ".$cfg["user"]." tried to download ".$down);
    138. 

  138. 		$current = $down;
    139. 

  139. 

  140. 		if (tfb_isValidPath($down)) {
    141. 

  141. 			$path = $cfg["path"].$down;
    142. 

  142. 			$p = explode(".", $path);
    143. 

  143. 			$pc = count($p);
    144. 

  144. 			$f = explode("/", $path);
    145. 

  145. 			$file = array_pop($f);
    146. 

  146. 			$arTemp = explode("/", $down);
    147. 

  147. 			if (count($arTemp) > 1) {
    148. 

  148. 				array_pop($arTemp);
    149. 

  149. 				$current = implode("/", $arTemp);
    150. 

  150. 			}
    151. 

  151. 		}
    152. 

  152. 	}
    153. 

  153. 	@header("Location: index.php?iid=dir&dir=".UrlHTMLSlashesEncode($current));
    154. 

  154. 	exit();
    155. 

  155. }
    156. 

  156. 

  157. /*******************************************************************************
    158. 

  158.  * download as archive
    159. 

  159.  ******************************************************************************/
    160. 

  160. if ($tar != "") {
    161. 

  161. 	// is enabled ?
    162. 

  162. 	if ($cfg["enable_file_download"] != 1) {
    163. 

  163. 		AuditAction($cfg["constants"]["error"], "ILLEGAL ACCESS: ".$cfg["user"]." tried to use download (".$tar.")");
    164. 

  164. 		@error("download is disabled", "index.php?iid=index", "");
    165. 

  165. 	}
    166. 

  166. 	// only valid entry with permission
    167. 

  167. 	if ((isValidEntry(basename($tar))) && (hasPermission($tar, $cfg["user"], 'r'))) {
    168. 

  168. 		$current = downloadArchive($tar);
    169. 

  169. 	} else {
    170. 

  170. 		AuditAction($cfg["constants"]["error"], "ILLEGAL TAR DOWNLOAD: ".$cfg["user"]." tried to download ".$tar);
    171. 

  171. 		$current = $tar;
    172. 

  172. 

  173. 		if (tfb_isValidPath($tar)) {
    174. 

  174. 			$arTemp = explode("/", $tar);
    175. 

  175. 			if (count($arTemp) > 1) {
    176. 

  176. 				array_pop($arTemp);
    177. 

  177. 				$current = implode("/", $arTemp);
    178. 

  178. 			}
    179. 

  179. 		}
    180. 

  180. 	}
    181. 

  181. 	@header("Location: index.php?iid=dir&dir=".UrlHTMLSlashesEncode($current));
    182. 

  182. 	exit();
    183. 

  183. }
    184. 

  184. 

  185. /*******************************************************************************
    186. 

  186.  * dir-page
    187. 

  187.  ******************************************************************************/
    188. 

  188. 

  189. // check dir-var
    190. 

  190. if (isset($dir)) {
    191. 

  191. 	if ($dir != "")
    192. 

  192. 		$dir = $dir."/";
    193. 

  193. } else {
    194. 

  194. 	$dir = "";
    195. 

  195. }
    196. 

  196. 

  197. // dir-name
    198. 

  198. $dirName = $cfg["path"].$dir;
    199. 

  199. 

  200. // dir-check
    201. 

  201. if (!(@is_dir($dirName))) {
    202. 

  202. 	// our dir is no dir but a file. use parent-directory.
    203. 

  203. 	if (preg_match("/^(.+)\/.+$/", $dir, $matches) == 1)
    204. 

  204. 		header("Location: index.php?iid=dir&dir=".UrlHTMLSlashesEncode($matches[1]));
    205. 

  205. 	else
    206. 

  206. 		header("Location: index.php?iid=dir");
    207. 

  207. 	exit();
    208. 

  208. }
    209. 

  209. if (($dir != "") && (isValidEntry($dir) !== true)) {
    210. 

  210. 	AuditAction($cfg["constants"]["error"], "ILLEGAL DIR: ".$cfg["user"]." tried to access ".$dir);
    211. 

  211. 	@error("Invalid Dir", "index.php?iid=dir", "", array($dir));
    212. 

  212. }
    213. 

  213. 

  214. // init template-instance
    215. 

  215. tmplInitializeInstance($cfg["theme"], "page.dir.tmpl");
    216. 

  216. 

  217. // dirstats
    218. 

  218. if ($cfg['enable_dirstats'] == 1) {
    219. 

  219. 	$tmpl->setvar('enable_dirstats', 1);
    220. 

  220. 	$du = dirsize($dirName);
    221. 

  221. 	$tmpl->setvar('duTotal', formatBytesTokBMBGBTB($du));
    222. 

  222. 	$tmpl->setvar('_TDDU', $cfg['_TDDU']);
    223. 

  223. } 
    224. 

  224. else 
    225. 

  225. {
    226. 

  226. 	$tmpl->setvar('enable_dirstats', 0);
    227. 

  227. }
    228. 

  228. 

  229. // read in entries
    230. 

  230. $entrys = array();
    231. 

  231. $handle = opendir($dirName);
    232. 

  232. while (false !== ($entry = readdir($handle))) {
    233. 

  233. 	if (empty($dir)) { // parent dir
    234. 

  234. 		if ((isValidEntry($entry)) && (hasPermission($entry, $cfg["user"], 'r')))
    235. 

  235. 			array_push($entrys, $entry);
    236. 

  236. 	} else { // sub-dir
    237. 

  237. 		if (hasPermission($dir, $cfg["user"], 'r')) {
    238. 

  238. 			if (isValidEntry($entry))
    239. 

  239. 				array_push($entrys, $entry);
    240. 

  240. 		}
    241. 

  241. 	}
    242. 

  242. }
    243. 

  243. closedir($handle);
    244. 

  244. natsort($entrys);
    245. 

  245. 

  246. // process entries and fill dir- + file-array
    247. 

  247. $list = array();
    248. 

  248. 

  249. foreach ($entrys as $entry) {
    250. 

  250. 	// acl-write-check
    251. 

  251. 	if (empty($dir)) /* parent dir */
    252. 

  252. 		$aclWrite = (hasPermission($entry, $cfg["user"], 'w')) ? 1 : 0;
    253. 

  253. 	else /* sub-dir */
    254. 

  254. 		$aclWrite = (hasPermission($dir, $cfg["user"], 'w')) ? 1 : 0;
    255. 

  255. 		
    256. 

  256. 	// symbolic links
    257. 

  257. 	if(!is_link($dirName.$entry))
    258. 

  258. 	{
    259. 

  259. 		$islink = 0;
    260. 

  260. 	}
    261. 

  261. 	else
    262. 

  262. 	{
    263. 

  263. 		if(!($slink = readlink($dirName.$entry)))
    264. 

  264. 			$slink = "";
    265. 

  265. 		$islink = 1;
    266. 

  266. 	}
    267. 

  267. 	// dirstats
    268. 

  268. 	if ($cfg['enable_dirstats'] == 1) 
    269. 

  269. 	{
    270. 

  270. 		if($islink == 0) // it's not a symbolic link
    271. 

  271. 		{
    272. 

  272. 			$size = (is_dir($dirName.$entry))? formatBytesTokBMBGBTB(dirsize($dirName.$entry)):formatBytesTokBMBGBTB(filesize($dirName.$entry));
    273. 

  273. 			$timeStamp = filemtime($dirName.$entry);
    274. 

  274. 			$date = date("m-d-Y h:i a", $timeStamp);
    275. 

  275. 		}
    276. 

  276. 		else // it's a symbolic link
    277. 

  277. 		{
    278. 

  278. 			$size = 0;
    279. 

  279. 			$date = "";
    280. 

  280. 		}
    281. 

  281. 	} 
    282. 

  282. 	else 
    283. 

  283. 	{
    284. 

  284. 		$size = 0;
    285. 

  285. 		$date = "";
    286. 

  286. 	}	
    287. 

  287. 	if (is_dir($dirName.$entry)) // dir
    288. 

  288. 	{ 
    289. 

  289. 		// sfv
    290. 

  290. 		if (($cfg['enable_sfvcheck'] == 1) && (false !== ($sfv = findSFV($dirName.$entry)))) 
    291. 

  291. 		{
    292. 

  292. 			$show_sfv = 1;
    293. 

  293. 			$sfvdir = $sfv['dir'];
    294. 

  294. 			$sfvsfv = $sfv['sfv'];
    295. 

  295. 		} 
    296. 

  296. 		else 
    297. 

  297. 		{
    298. 

  298. 			$show_sfv = 0;
    299. 

  299. 			$sfvdir = "";
    300. 

  300. 			$sfvsfv = "";
    301. 

  301. 		}
    302. 

  302. 		$isdir = 1;
    303. 

  303. 		$show_nfo = 0;
    304. 

  304. 		$show_rar = 0;
    305. 

  305. 	} 
    306. 

  306. 	else if (!@is_dir($dirName.$entry)) // file
    307. 

  307. 	{ 
    308. 

  308. 		// image
    309. 

  309. 		$image = "themes/".$cfg['theme']."/images/time.gif";
    310. 

  310. 		$imageOption = "themes/".$cfg['theme']."/images/files/".getExtension($entry).".png";
    311. 

  311. 		if (file_exists("./".$imageOption))
    312. 

  312. 			$image = $imageOption;
    313. 

  313. 		// nfo
    314. 

  314. 		$show_nfo = ($cfg["enable_view_nfo"] == 1) ? isNfo($entry) : 0;
    315. 

  315. 		// rar
    316. 

  316. 		$show_rar = (($cfg["enable_rar"] == 1) && ($aclWrite == 1)) ? isRar($entry) : 0;
    317. 

  317. 		// add entry to file-array
    318. 

  318. 		$isdir = 0;
    319. 

  319. 		$show_sfv = 0;
    320. 

  320. 		$sfvdir = "";
    321. 

  321. 		$sfvsfv = "";
    322. 

  322. 	}
    323. 

  323. 	// get Permission and format it userfriendly
    324. 

  324. 	if(($fperm = fileperms($dirName.$entry)) !== FALSE)
    325. 

  325. 	{
    326. 

  326. 		$permission_oct = substr(decoct($fperm),-3);
    327. 

  327. 		$permission = (is_dir($dirName.$entry))? "d":"-";
    328. 

  328. 		for($i=0;$i<=2;$i++)
    329. 

  329. 		{
    330. 

  330. 			$permission_bin = decbin($permission_oct[$i]);
    331. 

  331. 			$permission .= ($permission_bin[0] == 1)? "r":"-";
    332. 

  332. 			$permission .= ($permission_bin[1] == 1)? "w":"-";
    333. 

  333. 			$permission .= ($permission_bin[2] == 1)? "x":"-";
    334. 

  334. 		}
    335. 

  335. 		$permission .= " (0".$permission_oct.")";
    336. 

  336. 	}
    337. 

  337. 	if(function_exists('mb_detect_encoding') && function_exists('utf8_decode') && mb_detect_encoding(" ".$entry." ",'UTF-8,ISO-8859-1') == 'UTF-8')
    338. 

  338. 		$entry = utf8_decode($entry);
    339. 

  339. 	
    340. 

  340. 	// add entry to dir-array
    341. 

  341. 	array_push($list, array(
    342. 

  342. 		'is_dir'      => $isdir,
    343. 

  343. 		'is_link'     => $islink,
    344. 

  344. 		'aclWrite'    => $aclWrite,
    345. 

  345. 		'permission'  => $permission,
    346. 

  346. 		'entry'       => $entry,
    347. 

  347. 		'real_entry'  => $slink,
    348. 

  348. 		'urlencode1'  => UrlHTMLSlashesEncode($dir.$entry),
    349. 

  349. 		'urlencode2'  => UrlHTMLSlashesEncode($dir),
    350. 

  350. 		'urlencode3'  => UrlHTMLSlashesEncode($entry),
    351. 

  351. 		'addslashes1' => addslashes($entry),
    352. 

  352. 		'size'        => $size,
    353. 

  353. 		'date'        => $date,
    354. 

  354. 		'image'       => $image,
    355. 

  355. 		'show_sfv'    => $show_sfv,
    356. 

  356. 		'sfvdir'      => UrlHTMLSlashesEncode($sfvdir),
    357. 

  357. 		'sfvsfv'      => UrlHTMLSlashesEncode($sfvsfv),
    358. 

  358. 		'show_nfo'    => $show_nfo,
    359. 

  359. 		'show_rar'    => $show_rar
    360. 

  360. 		)
    361. 

  361. 	);
    362. 

  362. }
    363. 

  363. 

  364. // set template-loop
    365. 

  365. $tmpl->setloop('list', $list);
    366. 

  366. 

  367. // define some things
    368. 

  368. 

  369. // dir
    370. 

  370. $tmpl->setvar('dir', $dir);
    371. 

  371. if($dirName != "/")
    372. 

  372. 	$tmpl->setvar('parentdir', preg_replace("/.*\/(.+?)\//",'$1',$dirName));
    373. 

  373. else
    374. 

  374. 	$tmpl->setvar('parentdir', "/ (root)");
    375. 

  375. // parent url
    376. 

  376. if($dir != "")
    377. 

  377. {
    378. 

  378. 	if (preg_match("/^(.+)\/.+$/", $dir, $matches) == 1)
    379. 

  379. 		$tmpl->setvar('parentURL', "index.php?iid=dir&dir=" . UrlHTMLSlashesEncode($matches[1]));
    380. 

  380. 	else
    381. 

  381. 		$tmpl->setvar('parentURL', "index.php?iid=dir");
    382. 

  382. 	$tmpl->setvar('showparentURL', TRUE);
    383. 

  383. }
    384. 

  384. else
    385. 

  385. 	$tmpl->setvar('showparentURL', FALSE);
    386. 

  386. // chmod, parent-dir cannot be chmodded
    387. 

  387. if ($dir == "")
    388. 

  388. 	$tmpl->setvar('show_chmod', 0);
    389. 

  389. else
    390. 

  390. 	$tmpl->setvar('show_chmod', (($cfg["dir_enable_chmod"] == 1) && (hasPermission($dir, $cfg['user'], 'w'))) ? 1 : 0);
    391. 

  391. //
    392. 

  392. $tmpl->setvar('enable_rename', $cfg["enable_rename"]);
    393. 

  393. $tmpl->setvar('enable_move', $cfg["enable_move"]);
    394. 

  394. $tmpl->setvar('enable_sfvcheck',  $cfg['enable_sfvcheck']);
    395. 

  395. $tmpl->setvar('enable_vlc',  $cfg['enable_vlc']);
    396. 

  396. $tmpl->setvar('enable_rar', $cfg["enable_rar"]);
    397. 

  397. $tmpl->setvar('enable_view_nfo', $cfg["enable_view_nfo"]);
    398. 

  398. $tmpl->setvar('enable_file_download', $cfg["enable_file_download"]);
    399. 

  399. $tmpl->setvar('package_type', $cfg["package_type"]);
    400. 

  400. $tmpl->setvar('enable_maketorrent', $cfg["enable_maketorrent"]);
    401. 

  401. $tmpl->setvar('bgDark', $cfg['bgDark']);
    402. 

  402. $tmpl->setvar('bgLight', $cfg['bgLight']);
    403. 

  403. //
    404. 

  404. $tmpl->setvar('_DELETE', $cfg['_DELETE']);
    405. 

  405. $tmpl->setvar('_DIR_REN_LINK', $cfg['_DIR_REN_LINK']);
    406. 

  406. $tmpl->setvar('_DIR_MOVE_LINK', $cfg['_DIR_MOVE_LINK']);
    407. 

  407. $tmpl->setvar('_ABOUTTODELETE', $cfg['_ABOUTTODELETE']);
    408. 

  408. $tmpl->setvar('_BACKTOPARRENT', $cfg['_BACKTOPARRENT']);
    409. 

  409. $tmpl->setvar('_ID_IMAGES', $cfg['_ID_IMAGES']);
    410. 

  410. //
    411. 

  411. tmplSetTitleBar($cfg["pagetitle"].' - '.$cfg['_DIRECTORYLIST']);
    412. 

  412. tmplSetDriveSpaceBar();
    413. 

  413. tmplSetFoot();
    414. 

  414. tmplSetIidVars();
    415. 

  415. 

  416. // parse template
    417. 

  417. $tmpl->pparse();
    418. 

  418. 

  419. ?>
    420.