2010-11-02 07:54:50 -04:00
< ? php
2011-04-13 08:21:07 -04:00
if ( $_SERVER [ 'SCRIPT_FILENAME' ] == str_replace ( '\\' , '/' , __FILE__ )) {
// You cannot request this file directly.
header ( 'Location: ../' , true , 302 );
exit ;
}
2011-10-11 06:49:14 -04:00
require 'contrib/gettext/gettext.inc' ;
2011-12-07 01:47:36 -05:00
register_shutdown_function ( 'fatal_error_handler' );
mb_internal_encoding ( 'UTF-8' );
2011-02-16 00:21:14 -05:00
loadConfig ();
function loadConfig () {
2011-10-10 12:00:04 -04:00
global $board , $config , $__ip , $debug , $__version ;
2011-02-16 00:21:14 -05:00
2011-12-02 23:54:30 -05:00
if ( ! isset ( $_SERVER [ 'REMOTE_ADDR' ]))
$_SERVER [ 'REMOTE_ADDR' ] = '0.0.0.0' ;
2011-10-09 01:26:34 -04:00
require 'inc/config.php' ;
2011-02-16 00:21:14 -05:00
if ( file_exists ( 'inc/instance-config.php' )) {
2011-07-30 06:23:02 -04:00
require 'inc/instance-config.php' ;
2011-02-16 00:21:14 -05:00
}
2011-02-16 03:41:34 -05:00
if ( isset ( $board [ 'dir' ]) && file_exists ( $board [ 'dir' ] . '/config.php' )) {
require $board [ 'dir' ] . '/config.php' ;
}
2011-02-16 00:21:14 -05:00
2011-10-10 06:40:31 -04:00
if ( ! isset ( $__version ))
2011-11-08 21:44:34 -05:00
$__version = file_exists ( '.installed' ) ? trim ( file_get_contents ( '.installed' )) : false ;
2011-10-10 06:40:31 -04:00
$config [ 'version' ] = $__version ;
2011-05-21 01:21:45 -04:00
if ( $config [ 'debug' ]) {
2011-05-25 01:21:59 -04:00
if ( ! isset ( $debug )) {
2011-10-07 01:51:19 -04:00
$debug = Array ( 'sql' => Array (), 'purge' => Array (), 'cached' => Array ());
2011-05-25 01:21:59 -04:00
$debug [ 'start' ] = microtime ( true );
}
2011-05-21 01:21:45 -04:00
}
2011-05-21 08:49:47 -04:00
date_default_timezone_set ( $config [ 'timezone' ]);
2011-02-16 00:24:23 -05:00
if ( ! isset ( $config [ 'post_url' ]))
2011-02-16 00:26:02 -05:00
$config [ 'post_url' ] = $config [ 'root' ] . $config [ 'file_post' ];
2011-02-16 00:21:14 -05:00
2011-10-03 03:38:19 -04:00
if ( ! isset ( $config [ 'referer_match' ]))
$config [ 'referer_match' ] = '/^' .
2011-02-16 00:24:23 -05:00
( preg_match ( $config [ 'url_regex' ], $config [ 'root' ]) ? '' :
2011-12-06 01:24:30 -05:00
'https?:\/\/' . $_SERVER [ 'HTTP_HOST' ]) .
2011-02-16 00:24:23 -05:00
preg_quote ( $config [ 'root' ], '/' ) .
'(' .
2011-10-03 03:38:19 -04:00
str_replace ( '%s' , '\w+' , preg_quote ( $config [ 'board_path' ], '/' )) .
2011-12-06 01:21:26 -05:00
'(' .
preg_quote ( $config [ 'file_index' ], '/' ) . '|' .
str_replace ( '%d' , '\d+' , preg_quote ( $config [ 'file_page' ])) .
')?' .
2011-02-16 00:24:23 -05:00
'|' .
2011-10-03 03:38:19 -04:00
str_replace ( '%s' , '\w+' , preg_quote ( $config [ 'board_path' ], '/' )) .
preg_quote ( $config [ 'dir' ][ 'res' ], '/' ) .
2011-02-16 00:24:23 -05:00
str_replace ( '%d' , '\d+' , preg_quote ( $config [ 'file_page' ], '/' )) .
'|' .
2011-10-03 03:38:19 -04:00
preg_quote ( $config [ 'file_mod' ], '/' ) . '\?\/.+' .
2011-12-06 01:24:30 -05:00
')([#?].+)?$/i' ;
2011-02-16 00:21:14 -05:00
2011-03-27 11:22:48 -04:00
if ( ! isset ( $config [ 'cookies' ][ 'path' ]))
2011-05-24 01:39:07 -04:00
$config [ 'cookies' ][ 'path' ] = & $config [ 'root' ];
2011-03-27 11:22:48 -04:00
2011-02-16 00:24:23 -05:00
if ( ! isset ( $config [ 'dir' ][ 'static' ]))
2011-02-16 00:26:02 -05:00
$config [ 'dir' ][ 'static' ] = $config [ 'root' ] . 'static/' ;
2011-02-16 00:21:14 -05:00
2011-02-16 00:24:23 -05:00
if ( ! isset ( $config [ 'image_sticky' ]))
2011-02-16 00:26:02 -05:00
$config [ 'image_sticky' ] = $config [ 'dir' ][ 'static' ] . 'sticky.gif' ;
2011-02-16 00:24:23 -05:00
if ( ! isset ( $config [ 'image_locked' ]))
2011-02-16 00:26:02 -05:00
$config [ 'image_locked' ] = $config [ 'dir' ][ 'static' ] . 'locked.gif' ;
2011-10-10 07:37:39 -04:00
if ( ! isset ( $config [ 'image_bumplocked' ]))
$config [ 'image_bumplocked' ] = $config [ 'dir' ][ 'static' ] . 'sage.gif' ;
2011-02-16 00:24:23 -05:00
if ( ! isset ( $config [ 'image_deleted' ]))
2011-02-16 00:26:02 -05:00
$config [ 'image_deleted' ] = $config [ 'dir' ][ 'static' ] . 'deleted.png' ;
2011-02-16 00:24:23 -05:00
if ( ! isset ( $config [ 'image_zip' ]))
2011-02-16 00:26:02 -05:00
$config [ 'image_zip' ] = $config [ 'dir' ][ 'static' ] . 'zip.png' ;
2011-02-16 03:29:56 -05:00
2011-03-17 03:56:18 -04:00
if ( ! isset ( $config [ 'uri_thumb' ]))
$config [ 'uri_thumb' ] = $config [ 'root' ] . $board [ 'dir' ] . $config [ 'dir' ][ 'thumb' ];
2011-12-29 08:36:20 -05:00
elseif ( isset ( $board [ 'dir' ]))
2011-03-17 03:56:18 -04:00
$config [ 'uri_thumb' ] = sprintf ( $config [ 'uri_thumb' ], $board [ 'dir' ]);
if ( ! isset ( $config [ 'uri_img' ]))
$config [ 'uri_img' ] = $config [ 'root' ] . $board [ 'dir' ] . $config [ 'dir' ][ 'img' ];
2011-12-29 08:36:20 -05:00
elseif ( isset ( $board [ 'dir' ]))
2011-03-17 03:56:18 -04:00
$config [ 'uri_img' ] = sprintf ( $config [ 'uri_img' ], $board [ 'dir' ]);
2011-03-26 11:36:32 -04:00
if ( ! isset ( $config [ 'uri_stylesheets' ]))
2011-07-07 08:35:35 -04:00
$config [ 'uri_stylesheets' ] = $config [ 'root' ] . 'stylesheets/' ;
if ( ! isset ( $config [ 'url_stylesheet' ]))
$config [ 'url_stylesheet' ] = $config [ 'uri_stylesheets' ] . 'style.css' ;
if ( ! isset ( $config [ 'url_javascript' ]))
$config [ 'url_javascript' ] = $config [ 'root' ] . 'main.js' ;
2011-03-26 11:36:32 -04:00
2011-02-16 03:29:56 -05:00
if ( $config [ 'root_file' ]) {
chdir ( $config [ 'root_file' ]);
}
if ( $config [ 'verbose_errors' ]) {
error_reporting ( E_ALL );
ini_set ( 'display_errors' , 1 );
}
2011-02-17 04:58:34 -05:00
2011-11-24 11:02:34 -05:00
// Keep the original address to properly comply with other board configurations
if ( ! isset ( $__ip ))
$__ip = $_SERVER [ 'REMOTE_ADDR' ];
// ::ffff:0.0.0.0
if ( preg_match ( '/^\:\:(ffff\:)?(\d+\.\d+\.\d+\.\d+)$/' , $__ip , $m ))
$_SERVER [ 'REMOTE_ADDR' ] = $m [ 2 ];
2011-04-22 10:24:15 -04:00
2011-10-11 06:49:14 -04:00
if ( _setlocale ( LC_ALL , $config [ 'locale' ]) === false ) {
$error = function_exists ( 'error' ) ? 'error' : 'basic_error_function_because_the_other_isnt_loaded_yet' ;
$error ( 'The specified locale (' . $config [ 'locale' ] . ') does not exist on your platform!' );
}
2011-11-16 11:13:49 -05:00
if ( extension_loaded ( 'gettext' )) {
bindtextdomain ( 'tinyboard' , './inc/locale' );
bind_textdomain_codeset ( 'tinyboard' , 'UTF-8' );
textdomain ( 'tinyboard' );
} else {
_bindtextdomain ( 'tinyboard' , './inc/locale' );
_bind_textdomain_codeset ( 'tinyboard' , 'UTF-8' );
_textdomain ( 'tinyboard' );
}
2011-10-11 06:49:14 -04:00
2011-11-18 07:39:13 -05:00
if ( $config [ 'syslog' ])
openlog ( 'tinyboard' , LOG_ODELAY , LOG_SYSLOG ); // open a connection to sysem logger
2011-06-15 14:59:16 -04:00
if ( $config [ 'recaptcha' ])
require_once 'inc/contrib/recaptcha/recaptchalib.php' ;
2011-10-07 01:51:19 -04:00
if ( $config [ 'cache' ][ 'enabled' ])
require_once 'inc/cache.php' ;
2011-04-30 04:52:04 -04:00
}
2011-11-18 07:39:13 -05:00
function basic_error_function_because_the_other_isnt_loaded_yet ( $message , $priority = true ) {
global $config ;
if ( $config [ 'syslog' ] && $priority !== false ) {
// Use LOG_NOTICE instead of LOG_ERR or LOG_WARNING because most error message are not significant.
_syslog ( $priority !== true ? $priority : LOG_NOTICE , $message );
}
2011-04-30 04:52:04 -04:00
// Yes, this is horrible.
die ( '<!DOCTYPE html><html><head><title>Error</title>' .
'<style type="text/css">' .
'body{text-align:center;font-family:arial, helvetica, sans-serif;font-size:10pt;}' .
'p{padding:0;margin:20px 0;}' .
'p.c{font-size:11px;}' .
'</style></head>' .
'<body><h2>Error</h2>' . $message . '<hr/>' .
'<p class="c">This alternative error page is being displayed because the other couldn\'t be found or hasn\'t loaded yet.</p></body></html>' );
2011-04-22 10:24:15 -04:00
}
2011-04-22 10:45:32 -04:00
function fatal_error_handler () {
if ( $error = error_get_last ()) {
2011-04-22 10:55:51 -04:00
if ( $error [ 'type' ] == E_ERROR ) {
if ( function_exists ( 'error' )) {
2011-11-18 07:39:13 -05:00
error ( 'Caught fatal error: ' . $error [ 'message' ] . ' in <strong>' . $error [ 'file' ] . '</strong> on line ' . $error [ 'line' ], LOG_ERR );
2011-04-22 10:55:51 -04:00
} else {
2011-11-18 07:39:13 -05:00
basic_error_function_because_the_other_isnt_loaded_yet ( 'Caught fatal error: ' . $error [ 'message' ] . ' in ' . $error [ 'file' ] . ' on line ' . $error [ 'line' ], LOG_ERR );
2011-04-22 10:55:51 -04:00
}
}
2011-04-22 10:45:32 -04:00
}
}
2011-11-18 07:39:13 -05:00
function _syslog ( $priority , $message ) {
2011-12-05 11:04:46 -05:00
if ( isset ( $_SERVER [ 'REMOTE_ADDR' ]) &&
isset ( $_SERVER [ 'REQUEST_METHOD' ]) &&
isset ( $_SERVER [ 'REQUEST_URI' ])) {
// CGI
syslog ( $priority , $message . ' - client: ' . $_SERVER [ 'REMOTE_ADDR' ] . ', request: "' . $_SERVER [ 'REQUEST_METHOD' ] . ' ' . $_SERVER [ 'REQUEST_URI' ] . '"' );
} else {
syslog ( $priority , $message );
}
2011-11-18 07:39:13 -05:00
}
2011-04-13 09:47:47 -04:00
function loadThemeConfig ( $_theme ) {
global $config ;
2011-05-27 11:47:59 -04:00
if ( ! file_exists ( $config [ 'dir' ][ 'themes' ] . '/' . $_theme . '/info.php' ))
2011-04-14 03:10:59 -04:00
return false ;
2011-04-13 09:47:47 -04:00
// Load theme information into $theme
2011-05-27 11:47:59 -04:00
include $config [ 'dir' ][ 'themes' ] . '/' . $_theme . '/info.php' ;
2011-04-13 09:47:47 -04:00
return $theme ;
}
2011-06-07 01:21:54 -04:00
function rebuildTheme ( $theme , $action ) {
global $config , $_theme ;
$_theme = $theme ;
2011-06-07 04:52:40 -04:00
$theme = loadThemeConfig ( $_theme );
2011-06-07 01:21:54 -04:00
if ( file_exists ( $config [ 'dir' ][ 'themes' ] . '/' . $_theme . '/theme.php' )) {
require_once $config [ 'dir' ][ 'themes' ] . '/' . $_theme . '/theme.php' ;
$theme [ 'build_function' ]( $action , themeSettings ( $_theme ));
}
}
2011-05-27 11:43:04 -04:00
function rebuildThemes ( $action ) {
2011-04-14 14:59:04 -04:00
global $config , $_theme ;
2011-04-14 08:12:56 -04:00
2011-05-27 11:43:04 -04:00
// List themes
$query = query ( " SELECT `theme` FROM `theme_settings` WHERE `name` IS NULL AND `value` IS NULL " ) or error ( db_error ());
while ( $theme = $query -> fetch ()) {
2011-06-07 04:52:40 -04:00
rebuildTheme ( $theme [ 'theme' ], $action );
2011-04-14 03:03:12 -04:00
}
}
2011-05-30 03:35:20 -04:00
function themeSettings ( $theme ) {
$query = prepare ( " SELECT `name`, `value` FROM `theme_settings` WHERE `theme` = :theme AND `name` IS NOT NULL " );
$query -> bindValue ( ':theme' , $theme );
$query -> execute () or error ( db_error ( $query ));
2011-04-13 09:47:47 -04:00
2011-05-30 03:35:20 -04:00
$settings = Array ();
2011-04-13 09:47:47 -04:00
while ( $s = $query -> fetch ()) {
$settings [ $s [ 'name' ]] = $s [ 'value' ];
}
return $settings ;
}
2010-11-04 07:58:51 -04:00
function sprintf3 ( $str , $vars , $delim = '%' ) {
$replaces = array ();
foreach ( $vars as $k => $v ) {
$replaces [ $delim . $k . $delim ] = $v ;
2010-11-04 07:30:23 -04:00
}
2010-11-04 07:58:51 -04:00
return str_replace ( array_keys ( $replaces ),
array_values ( $replaces ), $str );
}
2010-11-30 04:24:09 -05:00
function setupBoard ( $array ) {
2011-02-12 01:25:15 -05:00
global $board , $config ;
2010-11-30 04:24:09 -05:00
$board = Array (
'id' => $array [ 'id' ],
'uri' => $array [ 'uri' ],
'name' => $array [ 'title' ],
'title' => $array [ 'subtitle' ]);
2011-02-12 01:25:15 -05:00
$board [ 'dir' ] = sprintf ( $config [ 'board_path' ], $board [ 'uri' ]);
$board [ 'url' ] = sprintf ( $config [ 'board_abbreviation' ], $board [ 'uri' ]);
2010-11-30 04:24:09 -05:00
2011-02-16 03:41:34 -05:00
loadConfig ();
2011-11-19 11:38:57 -05:00
if ( ! file_exists ( $board [ 'dir' ]))
mkdir ( $board [ 'dir' ], 0777 ) or error ( " Couldn't create " . $board [ 'dir' ] . " . Check permissions. " , true );
if ( ! file_exists ( $board [ 'dir' ] . $config [ 'dir' ][ 'img' ]))
@ mkdir ( $board [ 'dir' ] . $config [ 'dir' ][ 'img' ], 0777 ) or error ( " Couldn't create " . $board [ 'dir' ] . $config [ 'dir' ][ 'img' ] . " . Check permissions. " , true );
if ( ! file_exists ( $board [ 'dir' ] . $config [ 'dir' ][ 'thumb' ]))
@ mkdir ( $board [ 'dir' ] . $config [ 'dir' ][ 'thumb' ], 0777 ) or error ( " Couldn't create " . $board [ 'dir' ] . $config [ 'dir' ][ 'img' ] . " . Check permissions. " , true );
if ( ! file_exists ( $board [ 'dir' ] . $config [ 'dir' ][ 'res' ]))
@ mkdir ( $board [ 'dir' ] . $config [ 'dir' ][ 'res' ], 0777 ) or error ( " Couldn't create " . $board [ 'dir' ] . $config [ 'dir' ][ 'img' ] . " . Check permissions. " , true );
2010-11-30 04:24:09 -05:00
}
2010-11-30 04:38:36 -05:00
function openBoard ( $uri ) {
2011-10-08 02:46:48 -04:00
global $config ;
if ( $config [ 'cache' ][ 'enabled' ] && ( $board = cache :: get ( 'board_' . $uri ))) {
setupBoard ( $board );
return true ;
}
2010-12-17 09:18:03 -05:00
$query = prepare ( " SELECT * FROM `boards` WHERE `uri` = :uri LIMIT 1 " );
$query -> bindValue ( ':uri' , $uri );
$query -> execute () or error ( db_error ( $query ));
if ( $board = $query -> fetch ()) {
2011-10-08 02:46:48 -04:00
if ( $config [ 'cache' ][ 'enabled' ])
cache :: set ( 'board_' . $uri , $board );
2010-12-17 09:18:03 -05:00
setupBoard ( $board );
2010-11-30 04:38:36 -05:00
return true ;
} else return false ;
}
2011-09-20 15:49:07 -04:00
function boardTitle ( $uri ) {
2011-10-08 15:55:56 -04:00
global $config ;
2011-10-08 02:46:48 -04:00
if ( $config [ 'cache' ][ 'enabled' ] && ( $board = cache :: get ( 'board_' . $uri ))) {
return $board [ 'title' ];
}
2011-09-20 15:49:07 -04:00
$query = prepare ( " SELECT `title` FROM `boards` WHERE `uri` = :uri LIMIT 1 " );
$query -> bindValue ( ':uri' , $uri );
$query -> execute () or error ( db_error ( $query ));
if ( $title = $query -> fetch ()) {
return $title [ 'title' ];
} else return false ;
}
2011-05-21 11:12:57 -04:00
function purge ( $uri ) {
2011-05-25 01:21:59 -04:00
global $config , $debug ;
2011-10-03 03:38:19 -04:00
if ( preg_match ( $config [ 'referer_match' ], $config [ 'root' ])) {
2011-05-23 01:29:58 -04:00
$uri = ( str_replace ( '\\' , '/' , dirname ( $_SERVER [ 'REQUEST_URI' ])) == '/' ? '/' : str_replace ( '\\' , '/' , dirname ( $_SERVER [ 'REQUEST_URI' ])) . '/' ) . $uri ;
} else {
$uri = $config [ 'root' ] . $uri ;
}
2011-05-25 01:21:59 -04:00
if ( $config [ 'debug' ]) {
$debug [ 'purge' ][] = $uri ;
}
2011-05-23 01:29:58 -04:00
2011-05-21 11:12:57 -04:00
foreach ( $config [ 'purge' ] as & $purge ) {
2011-05-24 01:39:07 -04:00
$host = & $purge [ 0 ];
$port = & $purge [ 1 ];
2011-05-21 11:19:06 -04:00
$http_host = isset ( $purge [ 2 ]) ? $purge [ 2 ] : $_SERVER [ 'HTTP_HOST' ];
$request = " PURGE { $uri } HTTP/1.0 \r \n Host: { $http_host } \r \n User-Agent: Tinyboard \r \n Connection: Close \r \n \r \n " ;
2011-05-21 11:12:57 -04:00
if ( $fp = fsockopen ( $host , $port , $errno , $errstr , $config [ 'purge_timeout' ])) {
fwrite ( $fp , $request );
fclose ( $fp );
} else {
// Cannot connect?
error ( 'Could not PURGE for ' . $host );
}
}
}
2011-06-04 04:55:05 -04:00
function file_write ( $path , $data , $simple = false , $skip_purge = false ) {
2011-05-20 08:44:35 -04:00
global $config ;
2011-06-04 04:55:05 -04:00
if ( preg_match ( '/^remote:\/\/(.+)\:(.+)$/' , $path , $m )) {
if ( isset ( $config [ 'remote' ][ $m [ 1 ]])) {
require_once 'inc/remote.php' ;
$remote = new Remote ( $config [ 'remote' ][ $m [ 1 ]]);
$remote -> write ( $data , $m [ 2 ]);
return ;
} else {
error ( 'Invalid remote server: ' . $m [ 1 ]);
}
2011-05-20 08:44:35 -04:00
}
2011-06-04 04:55:05 -04:00
if ( ! $fp = fopen ( $path , $simple ? 'w' : 'c' ))
2011-05-20 03:22:08 -04:00
error ( 'Unable to open file for writing: ' . $path );
2011-05-20 08:44:35 -04:00
2011-05-20 03:19:27 -04:00
// File locking
2011-06-04 04:55:05 -04:00
if ( ! $simple && ! flock ( $fp , LOCK_EX )) {
2011-05-20 03:22:08 -04:00
error ( 'Unable to lock file: ' . $path );
2011-05-20 03:19:27 -04:00
}
// Truncate file
2011-06-04 04:55:05 -04:00
if ( ! $simple && ! ftruncate ( $fp , 0 ))
error ( 'Unable to truncate file: ' . $path );
2011-05-20 03:19:27 -04:00
// Write data
2011-06-04 04:55:05 -04:00
if ( fwrite ( $fp , $data ) === false )
error ( 'Unable to write to file: ' . $path );
// Unlock
if ( ! $simple )
flock ( $fp , LOCK_UN );
// Close
if ( ! fclose ( $fp ))
error ( 'Unable to close file: ' . $path );
2011-05-21 11:13:44 -04:00
2011-06-04 04:55:05 -04:00
if ( ! $skip_purge && isset ( $config [ 'purge' ]) && isset ( $_SERVER [ 'HTTP_HOST' ])) {
2011-05-21 11:13:44 -04:00
// Purge cache
if ( basename ( $path ) == $config [ 'file_index' ]) {
// Index file (/index.html); purge "/" as well
2011-05-21 11:31:29 -04:00
$uri = dirname ( $path );
// root
if ( $uri == '.' )
$uri = '' ;
else
$uri .= '/' ;
purge ( $uri );
2011-05-21 11:13:44 -04:00
}
purge ( $path );
}
2011-05-20 03:19:27 -04:00
}
2011-05-23 01:29:58 -04:00
function file_unlink ( $path ) {
2011-05-25 01:21:59 -04:00
global $config , $debug ;
if ( $config [ 'debug' ]) {
if ( ! isset ( $debug [ 'unlink' ]))
$debug [ 'unlink' ] = Array ();
$debug [ 'unlink' ][] = $path ;
}
2011-05-23 01:29:58 -04:00
2011-06-15 13:48:29 -04:00
$ret = @ unlink ( $path );
2011-10-08 11:58:56 -04:00
if ( isset ( $config [ 'purge' ]) && $path [ 0 ] != '/' && isset ( $_SERVER [ 'HTTP_HOST' ])) {
2011-05-23 01:29:58 -04:00
// Purge cache
if ( basename ( $path ) == $config [ 'file_index' ]) {
// Index file (/index.html); purge "/" as well
$uri = dirname ( $path );
// root
if ( $uri == '.' )
$uri = '' ;
else
$uri .= '/' ;
purge ( $uri );
}
purge ( $path );
}
2011-06-15 13:48:29 -04:00
return $ret ;
2011-05-23 01:29:58 -04:00
}
2010-12-02 02:15:50 -05:00
function listBoards () {
2011-10-08 02:46:48 -04:00
global $config ;
if ( $config [ 'cache' ][ 'enabled' ] && ( $boards = cache :: get ( 'all_boards' )))
return $boards ;
2011-01-20 03:24:23 -05:00
$query = query ( " SELECT * FROM `boards` ORDER BY `uri` " ) or error ( db_error ());
2010-12-17 09:18:03 -05:00
$boards = $query -> fetchAll ();
2011-10-08 02:46:48 -04:00
if ( $config [ 'cache' ][ 'enabled' ])
cache :: set ( 'all_boards' , $boards );
2010-12-02 02:15:50 -05:00
return $boards ;
}
2011-01-18 01:11:28 -05:00
function checkFlood ( $post ) {
2011-02-12 01:25:15 -05:00
global $board , $config ;
2011-01-18 01:11:28 -05:00
2011-11-16 03:59:21 -05:00
$query = prepare ( sprintf ( " SELECT * FROM `posts_%s` WHERE (`ip` = :ip AND `time` >= :floodtime) OR (`ip` = :ip AND `body` != '' AND `body` = :body AND `time` >= :floodsameiptime) OR (`body` != '' AND `body` = :body AND `time` >= :floodsametime) LIMIT 1 " , $board [ 'uri' ]));
2011-01-18 01:11:28 -05:00
$query -> bindValue ( ':ip' , $_SERVER [ 'REMOTE_ADDR' ]);
$query -> bindValue ( ':body' , $post [ 'body' ], PDO :: PARAM_INT );
2011-02-12 01:25:15 -05:00
$query -> bindValue ( ':floodtime' , time () - $config [ 'flood_time' ], PDO :: PARAM_INT );
$query -> bindValue ( ':floodsameiptime' , time () - $config [ 'flood_time_ip' ], PDO :: PARAM_INT );
$query -> bindValue ( ':floodsametime' , time () - $config [ 'flood_time_same' ], PDO :: PARAM_INT );
2011-01-18 01:11:28 -05:00
$query -> execute () or error ( db_error ( $query ));
return ( bool ) $query -> fetch ();
}
2011-01-01 09:37:52 -05:00
function until ( $timestamp ) {
$difference = $timestamp - time ();
if ( $difference < 60 ) {
return $difference . ' second' . ( $difference != 1 ? 's' : '' );
} elseif ( $difference < 60 * 60 ) {
return ( $num = round ( $difference / ( 60 ))) . ' minute' . ( $num != 1 ? 's' : '' );
} elseif ( $difference < 60 * 60 * 24 ) {
return ( $num = round ( $difference / ( 60 * 60 ))) . ' hour' . ( $num != 1 ? 's' : '' );
} elseif ( $difference < 60 * 60 * 24 * 7 ) {
return ( $num = round ( $difference / ( 60 * 60 * 24 ))) . ' day' . ( $num != 1 ? 's' : '' );
2011-01-02 11:27:34 -05:00
} elseif ( $difference < 60 * 60 * 24 * 365 ) {
2011-01-01 09:37:52 -05:00
return ( $num = round ( $difference / ( 60 * 60 * 24 * 7 ))) . ' week' . ( $num != 1 ? 's' : '' );
2011-03-01 05:26:04 -05:00
} else {
return ( $num = round ( $difference / ( 60 * 60 * 24 * 365 ))) . ' year' . ( $num != 1 ? 's' : '' );
}
}
function ago ( $timestamp ) {
$difference = time () - $timestamp ;
if ( $difference < 60 ) {
return $difference . ' second' . ( $difference != 1 ? 's' : '' );
} elseif ( $difference < 60 * 60 ) {
return ( $num = round ( $difference / ( 60 ))) . ' minute' . ( $num != 1 ? 's' : '' );
} elseif ( $difference < 60 * 60 * 24 ) {
return ( $num = round ( $difference / ( 60 * 60 ))) . ' hour' . ( $num != 1 ? 's' : '' );
} elseif ( $difference < 60 * 60 * 24 * 7 ) {
return ( $num = round ( $difference / ( 60 * 60 * 24 ))) . ' day' . ( $num != 1 ? 's' : '' );
} elseif ( $difference < 60 * 60 * 24 * 365 ) {
return ( $num = round ( $difference / ( 60 * 60 * 24 * 7 ))) . ' week' . ( $num != 1 ? 's' : '' );
2011-01-01 09:37:52 -05:00
} else {
2011-01-02 11:27:34 -05:00
return ( $num = round ( $difference / ( 60 * 60 * 24 * 365 ))) . ' year' . ( $num != 1 ? 's' : '' );
2011-01-01 09:37:52 -05:00
}
}
2011-04-22 10:24:15 -04:00
function displayBan ( $ban ) {
2011-02-12 01:25:15 -05:00
global $config ;
2011-11-23 00:12:19 -05:00
$ban [ 'ip' ] = $_SERVER [ 'REMOTE_ADDR' ];
2011-04-22 10:24:15 -04:00
// Show banned page and exit
2011-11-23 00:12:19 -05:00
die (
Element ( 'page.html' , Array (
'title' => 'Banned!' ,
2011-04-22 10:24:15 -04:00
'config' => $config ,
2011-11-23 00:12:19 -05:00
'body' => Element ( 'banned.html' , Array (
'config' => $config ,
'ban' => $ban
)
))
2011-04-22 10:24:15 -04:00
));
}
2011-07-26 23:40:27 -04:00
function checkBan ( $board = 0 ) {
2011-10-07 01:51:19 -04:00
global $config ;
2011-04-22 10:24:15 -04:00
if ( ! isset ( $_SERVER [ 'REMOTE_ADDR' ])) {
// Server misconfiguration
return ;
2011-11-21 08:25:00 -05:00
}
2011-08-13 02:21:45 -04:00
$query = prepare ( " SELECT `set`, `expires`, `reason`, `board`, `uri`, `bans`.`id` FROM `bans` LEFT JOIN `boards` ON `boards`.`id` = `board` WHERE (`board` IS NULL OR `uri` = :board) AND `ip` = :ip ORDER BY `expires` IS NULL DESC, `expires` DESC, `expires` DESC LIMIT 1 " );
2011-04-22 10:24:15 -04:00
$query -> bindValue ( ':ip' , $_SERVER [ 'REMOTE_ADDR' ]);
2011-07-26 23:40:27 -04:00
$query -> bindValue ( ':board' , $board );
2011-04-22 10:24:15 -04:00
$query -> execute () or error ( db_error ( $query ));
if ( $query -> rowCount () < 1 && $config [ 'ban_range' ]) {
2011-11-23 06:24:48 -05:00
$query = prepare ( " SELECT `set`, `expires`, `reason`, `board`, `uri`, `bans`.`id` FROM `bans` LEFT JOIN `boards` ON `boards`.`id` = `board` WHERE (`board` IS NULL OR `uri` = :board) AND :ip LIKE REPLACE(REPLACE(`ip`, '%', '!%'), '*', '%') ESCAPE '!' ORDER BY `expires` IS NULL DESC, `expires` DESC LIMIT 1 " );
2011-04-22 10:24:15 -04:00
$query -> bindValue ( ':ip' , $_SERVER [ 'REMOTE_ADDR' ]);
2011-07-26 23:40:27 -04:00
$query -> bindValue ( ':board' , $board );
2011-04-22 10:24:15 -04:00
$query -> execute () or error ( db_error ( $query ));
}
2011-12-02 19:52:31 -05:00
2011-11-23 00:12:19 -05:00
if ( $query -> rowCount () < 1 && $config [ 'ban_cidr' ] && ! isIPv6 ()) {
2011-11-21 08:25:00 -05:00
// my most insane SQL query yet
$query = prepare ( " SELECT `set`, `expires`, `reason`, `board`, `uri`, `bans`.`id` FROM `bans` LEFT JOIN `boards` ON `boards`.`id` = `board` WHERE (`board` IS NULL OR `uri` = :board)
AND (
`ip` REGEXP '^(\[0-9]+\.\[0-9]+\.\[0-9]+\.\[0-9]+\)\/(\[0-9]+)$'
AND
: ip >= INET_ATON ( SUBSTRING_INDEX ( `ip` , '/' , 1 ))
AND
: ip < INET_ATON ( SUBSTRING_INDEX ( `ip` , '/' , 1 )) + POW ( 2 , 32 - SUBSTRING_INDEX ( `ip` , '/' , - 1 ))
)
ORDER BY `expires` IS NULL DESC , `expires` DESC LIMIT 1 " );
$query -> bindValue ( ':ip' , ip2long ( $_SERVER [ 'REMOTE_ADDR' ]));
$query -> bindValue ( ':board' , $board );
$query -> execute () or error ( db_error ( $query ));
}
2011-04-22 10:24:15 -04:00
if ( $ban = $query -> fetch ()) {
if ( $ban [ 'expires' ] && $ban [ 'expires' ] < time ()) {
// Ban expired
2011-08-13 02:21:45 -04:00
$query = prepare ( " DELETE FROM `bans` WHERE `id` = :id LIMIT 1 " );
$query -> bindValue ( ':id' , $ban [ 'id' ], PDO :: PARAM_INT );
2011-04-22 10:24:15 -04:00
$query -> execute () or error ( db_error ( $query ));
return ;
}
2011-01-01 09:37:52 -05:00
2011-04-22 10:24:15 -04:00
displayBan ( $ban );
2011-01-01 09:37:52 -05:00
}
}
2011-01-02 09:23:34 -05:00
function threadLocked ( $id ) {
global $board ;
$query = prepare ( sprintf ( " SELECT `locked` FROM `posts_%s` WHERE `id` = :id AND `thread` IS NULL LIMIT 1 " , $board [ 'uri' ]));
$query -> bindValue ( ':id' , $id , PDO :: PARAM_INT );
$query -> execute () or error ( db_error ());
if ( ! $post = $query -> fetch ()) {
// Non-existant, so it can't be locked...
return false ;
}
return ( bool ) $post [ 'locked' ];
}
2011-10-10 07:37:39 -04:00
function threadSageLocked ( $id ) {
global $board ;
$query = prepare ( sprintf ( " SELECT `sage` FROM `posts_%s` WHERE `id` = :id AND `thread` IS NULL LIMIT 1 " , $board [ 'uri' ]));
$query -> bindValue ( ':id' , $id , PDO :: PARAM_INT );
$query -> execute () or error ( db_error ());
if ( ! $post = $query -> fetch ()) {
// Non-existant, so it can't be locked...
return false ;
}
return ( bool ) $post [ 'sage' ];
}
2010-11-30 07:12:54 -05:00
function threadExists ( $id ) {
2010-12-17 09:18:03 -05:00
global $board ;
$query = prepare ( sprintf ( " SELECT 1 FROM `posts_%s` WHERE `id` = :id AND `thread` IS NULL LIMIT 1 " , $board [ 'uri' ]));
2010-12-17 23:07:07 -05:00
$query -> bindValue ( ':id' , $id , PDO :: PARAM_INT );
2010-12-17 09:18:03 -05:00
$query -> execute () or error ( db_error ());
2010-11-30 07:12:54 -05:00
2010-12-17 09:18:03 -05:00
if ( $query -> rowCount ()) {
2010-11-30 07:12:54 -05:00
return true ;
} else return false ;
}
2010-11-04 07:58:51 -04:00
function post ( $post , $OP ) {
2010-12-17 09:18:03 -05:00
global $pdo , $board ;
2011-12-04 21:17:34 -05:00
$query = prepare ( sprintf ( " INSERT INTO `posts_%s` VALUES ( NULL, :thread, :subject, :email, :name, :trip, :capcode, :body, :body_nomarkup, :time, :time, :thumb, :thumbwidth, :thumbheight, :file, :width, :height, :filesize, :filename, :filehash, :password, :ip, :sticky, :locked, 0, :embed) " , $board [ 'uri' ]));
2010-12-17 09:18:03 -05:00
// Basic stuff
2011-12-04 18:47:30 -05:00
if ( ! empty ( $post [ 'subject' ])) {
$query -> bindValue ( ':subject' , $post [ 'subject' ]);
} else {
$query -> bindValue ( ':subject' , NULL , PDO :: PARAM_NULL );
}
if ( ! empty ( $post [ 'email' ])) {
$query -> bindValue ( ':email' , $post [ 'email' ]);
} else {
$query -> bindValue ( ':email' , NULL , PDO :: PARAM_NULL );
}
if ( ! empty ( $post [ 'trip' ])) {
$query -> bindValue ( ':trip' , $post [ 'trip' ]);
} else {
$query -> bindValue ( ':trip' , NULL , PDO :: PARAM_NULL );
}
2010-12-17 09:18:03 -05:00
$query -> bindValue ( ':name' , $post [ 'name' ]);
$query -> bindValue ( ':body' , $post [ 'body' ]);
2011-12-04 21:17:34 -05:00
$query -> bindValue ( ':body_nomarkup' , $post [ 'body_nomarkup' ]);
2011-11-18 11:40:23 -05:00
$query -> bindValue ( ':time' , isset ( $post [ 'time' ]) ? $post [ 'time' ] : time (), PDO :: PARAM_INT );
2010-12-17 09:18:03 -05:00
$query -> bindValue ( ':password' , $post [ 'password' ]);
2011-11-18 11:40:23 -05:00
$query -> bindValue ( ':ip' , isset ( $post [ 'ip' ]) ? $post [ 'ip' ] : $_SERVER [ 'REMOTE_ADDR' ]);
2011-01-02 05:15:59 -05:00
if ( $post [ 'mod' ] && $post [ 'sticky' ]) {
$query -> bindValue ( ':sticky' , 1 , PDO :: PARAM_INT );
} else {
$query -> bindValue ( ':sticky' , 0 , PDO :: PARAM_INT );
}
2010-12-17 09:18:03 -05:00
2011-01-02 06:25:17 -05:00
if ( $post [ 'mod' ] && $post [ 'locked' ]) {
$query -> bindValue ( ':locked' , 1 , PDO :: PARAM_INT );
} else {
$query -> bindValue ( ':locked' , 0 , PDO :: PARAM_INT );
}
2011-08-13 02:21:45 -04:00
if ( $post [ 'mod' ] && isset ( $post [ 'capcode' ]) && $post [ 'capcode' ]) {
2011-04-12 07:08:54 -04:00
$query -> bindValue ( ':capcode' , $post [ 'capcode' ], PDO :: PARAM_INT );
} else {
$query -> bindValue ( ':capcode' , NULL , PDO :: PARAM_NULL );
}
2011-05-18 03:05:48 -04:00
if ( ! empty ( $post [ 'embed' ])) {
$query -> bindValue ( ':embed' , $post [ 'embed' ]);
} else {
$query -> bindValue ( ':embed' , NULL , PDO :: PARAM_NULL );
}
2010-11-04 07:58:51 -04:00
if ( $OP ) {
2010-12-17 09:18:03 -05:00
// No parent thread, image
$query -> bindValue ( ':thread' , null , PDO :: PARAM_NULL );
2010-11-04 07:58:51 -04:00
} else {
2010-12-17 09:18:03 -05:00
$query -> bindValue ( ':thread' , $post [ 'thread' ], PDO :: PARAM_INT );
2010-11-04 07:58:51 -04:00
}
2010-12-17 09:18:03 -05:00
if ( $post [ 'has_file' ]) {
$query -> bindValue ( ':thumb' , $post [ 'thumb' ]);
$query -> bindValue ( ':thumbwidth' , $post [ 'thumbwidth' ], PDO :: PARAM_INT );
$query -> bindValue ( ':thumbheight' , $post [ 'thumbheight' ], PDO :: PARAM_INT );
$query -> bindValue ( ':file' , $post [ 'file' ]);
$query -> bindValue ( ':width' , $post [ 'width' ], PDO :: PARAM_INT );
$query -> bindValue ( ':height' , $post [ 'height' ], PDO :: PARAM_INT );
$query -> bindValue ( ':filesize' , $post [ 'filesize' ], PDO :: PARAM_INT );
2011-01-01 04:45:18 -05:00
$query -> bindValue ( ':filename' , $post [ 'filename' ]);
2011-07-08 13:02:43 -04:00
$query -> bindValue ( ':filehash' , $post [ 'filehash' ]);
2010-12-17 09:18:03 -05:00
} else {
$query -> bindValue ( ':thumb' , null , PDO :: PARAM_NULL );
$query -> bindValue ( ':thumbwidth' , null , PDO :: PARAM_NULL );
$query -> bindValue ( ':thumbheight' , null , PDO :: PARAM_NULL );
$query -> bindValue ( ':file' , null , PDO :: PARAM_NULL );
$query -> bindValue ( ':width' , null , PDO :: PARAM_NULL );
$query -> bindValue ( ':height' , null , PDO :: PARAM_NULL );
$query -> bindValue ( ':filesize' , null , PDO :: PARAM_NULL );
$query -> bindValue ( ':filename' , null , PDO :: PARAM_NULL );
$query -> bindValue ( ':filehash' , null , PDO :: PARAM_NULL );
}
$query -> execute () or error ( db_error ( $query ));
return $pdo -> lastInsertId ();
}
function bumpThread ( $id ) {
global $board ;
$query = prepare ( sprintf ( " UPDATE `posts_%s` SET `bump` = :time WHERE `id` = :id AND `thread` IS NULL " , $board [ 'uri' ]));
$query -> bindValue ( ':time' , time (), PDO :: PARAM_INT );
$query -> bindValue ( ':id' , $id , PDO :: PARAM_INT );
$query -> execute () or error ( db_error ( $query ));
2010-11-04 07:58:51 -04:00
}
2011-01-18 08:41:43 -05:00
2011-01-20 21:14:55 -05:00
// Remove file from post
2011-12-02 23:45:24 -05:00
function deleteFile ( $id , $remove_entirely_if_already = true ) {
2011-02-12 01:25:15 -05:00
global $board , $config ;
2011-01-20 21:14:55 -05:00
2011-06-04 03:46:01 -04:00
$query = prepare ( sprintf ( " SELECT `thread`,`thumb`,`file` FROM `posts_%s` WHERE `id` = :id LIMIT 1 " , $board [ 'uri' ]));
2011-01-20 21:14:55 -05:00
$query -> bindValue ( ':id' , $id , PDO :: PARAM_INT );
$query -> execute () or error ( db_error ( $query ));
if ( $query -> rowCount () < 1 ) {
2011-02-12 01:25:15 -05:00
error ( $config [ 'error' ][ 'invalidpost' ]);
2011-01-20 21:14:55 -05:00
}
$post = $query -> fetch ();
2011-06-04 03:46:01 -04:00
if ( $post [ 'file' ] == 'deleted' && ! $post [ 'thread' ])
return ; // Can't delete OP's image completely.
2011-06-04 07:45:10 -04:00
$query = prepare ( sprintf ( " UPDATE `posts_%s` SET `thumb` = NULL, `thumbwidth` = NULL, `thumbheight` = NULL, `filewidth` = NULL, `fileheight` = NULL, `filesize` = NULL, `filename` = NULL, `filehash` = NULL, `file` = :file WHERE `id` = :id " , $board [ 'uri' ]));
2011-01-20 21:14:55 -05:00
if ( $post [ 'file' ] == 'deleted' && $remove_entirely_if_already ) {
// Already deleted; remove file fully
$query -> bindValue ( ':file' , null , PDO :: PARAM_NULL );
} else {
// Delete thumbnail
2011-05-23 01:29:58 -04:00
file_unlink ( $board [ 'dir' ] . $config [ 'dir' ][ 'thumb' ] . $post [ 'thumb' ]);
2011-01-20 21:14:55 -05:00
// Delete file
2011-05-23 01:29:58 -04:00
file_unlink ( $board [ 'dir' ] . $config [ 'dir' ][ 'img' ] . $post [ 'file' ]);
2011-01-20 21:14:55 -05:00
// Set file to 'deleted'
$query -> bindValue ( ':file' , 'deleted' , PDO :: PARAM_INT );
}
// Update database
$query -> bindValue ( ':id' , $id , PDO :: PARAM_INT );
$query -> execute () or error ( db_error ( $query ));
2011-12-02 23:45:24 -05:00
if ( $post [ 'thread' ])
2011-06-04 03:46:01 -04:00
buildThread ( $post [ 'thread' ]);
2011-01-20 21:14:55 -05:00
}
2011-12-04 21:17:34 -05:00
// rebuild post (markup)
function rebuildPost ( $id ) {
global $board ;
2011-12-04 21:21:49 -05:00
$query = prepare ( sprintf ( " SELECT `body_nomarkup`, `thread` FROM `posts_%s` WHERE `id` = :id " , $board [ 'uri' ]));
2011-12-04 21:17:34 -05:00
$query -> bindValue ( ':id' , $id , PDO :: PARAM_INT );
$query -> execute () or error ( db_error ( $query ));
if ( ! $post = $query -> fetch ())
return false ;
if ( ! $post [ 'body_nomarkup' ])
return false ;
markup ( $body = & $post [ 'body_nomarkup' ]);
$query = prepare ( sprintf ( " UPDATE `posts_%s` SET `body` = :body WHERE `id` = :id " , $board [ 'uri' ]));
$query -> bindValue ( ':body' , $body );
$query -> bindValue ( ':id' , $id , PDO :: PARAM_INT );
$query -> execute () or error ( db_error ( $query ));
2011-12-04 21:21:49 -05:00
buildThread ( $post [ 'thread' ] ? $post [ 'thread' ] : $id );
2011-12-04 21:17:34 -05:00
return true ;
}
2011-01-18 08:41:43 -05:00
// Delete a post (reply or thread)
2011-12-02 23:45:24 -05:00
function deletePost ( $id , $error_if_doesnt_exist = true , $rebuild_after = true ) {
2011-02-12 01:25:15 -05:00
global $board , $config ;
2011-01-18 08:41:43 -05:00
// Select post and replies (if thread) in one query
$query = prepare ( sprintf ( " SELECT `id`,`thread`,`thumb`,`file` FROM `posts_%s` WHERE `id` = :id OR `thread` = :id " , $board [ 'uri' ]));
$query -> bindValue ( ':id' , $id , PDO :: PARAM_INT );
$query -> execute () or error ( db_error ( $query ));
if ( $query -> rowCount () < 1 ) {
2011-02-11 07:02:30 -05:00
if ( $error_if_doesnt_exist )
2011-02-12 01:25:15 -05:00
error ( $config [ 'error' ][ 'invalidpost' ]);
2011-02-11 07:02:30 -05:00
else return false ;
2011-01-18 08:41:43 -05:00
}
// Delete posts and maybe replies
while ( $post = $query -> fetch ()) {
if ( ! $post [ 'thread' ]) {
// Delete thread HTML page
2011-05-23 01:29:58 -04:00
file_unlink ( $board [ 'dir' ] . $config [ 'dir' ][ 'res' ] . sprintf ( $config [ 'file_page' ], $post [ 'id' ]));
2011-01-18 08:41:43 -05:00
} elseif ( $query -> rowCount () == 1 ) {
// Rebuild thread
2011-05-24 01:39:07 -04:00
$rebuild = & $post [ 'thread' ];
2011-01-18 08:41:43 -05:00
}
if ( $post [ 'thumb' ]) {
// Delete thumbnail
2011-05-23 01:29:58 -04:00
file_unlink ( $board [ 'dir' ] . $config [ 'dir' ][ 'thumb' ] . $post [ 'thumb' ]);
2011-01-18 08:41:43 -05:00
}
if ( $post [ 'file' ]) {
// Delete file
2011-05-23 01:29:58 -04:00
file_unlink ( $board [ 'dir' ] . $config [ 'dir' ][ 'img' ] . $post [ 'file' ]);
2011-01-18 08:41:43 -05:00
}
}
$query = prepare ( sprintf ( " DELETE FROM `posts_%s` WHERE `id` = :id OR `thread` = :id " , $board [ 'uri' ]));
$query -> bindValue ( ':id' , $id , PDO :: PARAM_INT );
$query -> execute () or error ( db_error ( $query ));
2011-12-04 21:17:34 -05:00
$query = prepare ( " SELECT `board`, `post` FROM `cites` WHERE `target_board` = :board AND `target` = :id " );
$query -> bindValue ( ':board' , $board [ 'uri' ]);
$query -> bindValue ( ':id' , $id , PDO :: PARAM_INT );
$query -> execute () or error ( db_error ( $query ));
while ( $cite = $query -> fetch ()) {
if ( $board [ 'uri' ] != $cite [ 'board' ]) {
if ( ! isset ( $tmp_board ))
$tmp_board = $board [ 'uri' ];
openBoard ( $cite [ 'board' ]);
}
rebuildPost ( $cite [ 'post' ]);
}
if ( isset ( $tmp_board ))
openBoard ( $tmp_board );
$query = prepare ( " DELETE FROM `cites` WHERE (`target_board` = :board AND `target` = :id) OR (`board` = :board AND `post` = :id) " );
$query -> bindValue ( ':board' , $board [ 'uri' ]);
$query -> bindValue ( ':id' , $id , PDO :: PARAM_INT );
$query -> execute () or error ( db_error ( $query ));
2011-12-02 23:45:24 -05:00
if ( isset ( $rebuild ) && $rebuild_after ) {
2011-01-18 08:41:43 -05:00
buildThread ( $rebuild );
}
2011-02-11 07:02:30 -05:00
return true ;
2011-01-18 08:41:43 -05:00
}
function clean () {
2011-02-12 01:25:15 -05:00
global $board , $config ;
$offset = round ( $config [ 'max_pages' ] * $config [ 'threads_per_page' ]);
2011-01-18 08:41:43 -05:00
// I too wish there was an easier way of doing this...
$query = prepare ( sprintf ( " SELECT `id` FROM `posts_%s` WHERE `thread` IS NULL ORDER BY `sticky` DESC, `bump` DESC LIMIT :offset, 9001 " , $board [ 'uri' ]));
$query -> bindValue ( ':offset' , $offset , PDO :: PARAM_INT );
$query -> execute () or error ( db_error ( $query ));
while ( $post = $query -> fetch ()) {
deletePost ( $post [ 'id' ]);
}
}
2010-12-12 10:21:56 -05:00
function index ( $page , $mod = false ) {
2011-10-07 01:51:19 -04:00
global $board , $config , $debug ;
2010-11-04 10:39:02 -04:00
2010-11-02 06:57:33 -04:00
$body = '' ;
2011-02-12 01:25:15 -05:00
$offset = round ( $page * $config [ 'threads_per_page' ] - $config [ 'threads_per_page' ]);
2010-12-17 09:18:03 -05:00
2011-05-25 01:21:59 -04:00
$query = prepare ( sprintf ( " SELECT * FROM `posts_%s` WHERE `thread` IS NULL ORDER BY `sticky` DESC, `bump` DESC LIMIT :offset,:threads_per_page " , $board [ 'uri' ]));
$query -> bindValue ( ':offset' , $offset , PDO :: PARAM_INT );
$query -> bindValue ( ':threads_per_page' , $config [ 'threads_per_page' ], PDO :: PARAM_INT );
2010-12-17 09:18:03 -05:00
$query -> execute () or error ( db_error ( $query ));
if ( $query -> rowcount () < 1 && $page > 1 ) return false ;
while ( $th = $query -> fetch ()) {
2011-10-07 01:51:19 -04:00
if ( ! $mod && $config [ 'cache' ][ 'enabled' ]) {
if ( $built = cache :: get ( " thread_index_ { $board [ 'uri' ] } _ { $th [ 'id' ] } " )) {
2011-11-16 04:41:16 -05:00
$body .= $built ;
2011-10-05 09:16:28 -04:00
continue ;
}
}
2011-10-10 07:37:39 -04:00
$thread = new Thread ( $th [ 'id' ], $th [ 'subject' ], $th [ 'email' ], $th [ 'name' ], $th [ 'trip' ], $th [ 'capcode' ], $th [ 'body' ], $th [ 'time' ], $th [ 'thumb' ], $th [ 'thumbwidth' ], $th [ 'thumbheight' ], $th [ 'file' ], $th [ 'filewidth' ], $th [ 'fileheight' ], $th [ 'filesize' ], $th [ 'filename' ], $th [ 'ip' ], $th [ 'sticky' ], $th [ 'locked' ], $th [ 'sage' ], $th [ 'embed' ], $mod ? '?/' : $config [ 'root' ], $mod );
2011-05-20 01:37:56 -04:00
2011-05-25 01:21:59 -04:00
$posts = prepare ( sprintf ( " SELECT * FROM `posts_%s` WHERE `thread` = :id ORDER BY `id` DESC LIMIT :limit " , $board [ 'uri' ]));
$posts -> bindValue ( ':id' , $th [ 'id' ]);
$posts -> bindValue ( ':limit' , ( $th [ 'sticky' ] ? $config [ 'threads_preview_sticky' ] : $config [ 'threads_preview' ]), PDO :: PARAM_INT );
2010-12-17 09:18:03 -05:00
$posts -> execute () or error ( db_error ( $posts ));
2011-02-17 01:07:36 -05:00
$num_images = 0 ;
while ( $po = $posts -> fetch ()) {
if ( $po [ 'file' ])
$num_images ++ ;
2011-05-19 07:42:53 -04:00
2011-05-18 03:05:48 -04:00
$thread -> add ( new Post ( $po [ 'id' ], $th [ 'id' ], $po [ 'subject' ], $po [ 'email' ], $po [ 'name' ], $po [ 'trip' ], $po [ 'capcode' ], $po [ 'body' ], $po [ 'time' ], $po [ 'thumb' ], $po [ 'thumbwidth' ], $po [ 'thumbheight' ], $po [ 'file' ], $po [ 'filewidth' ], $po [ 'fileheight' ], $po [ 'filesize' ], $po [ 'filename' ], $po [ 'ip' ], $po [ 'embed' ], $mod ? '?/' : $config [ 'root' ], $mod ));
2011-02-17 01:07:36 -05:00
}
2011-02-16 07:32:43 -05:00
if ( $posts -> rowCount () == ( $th [ 'sticky' ] ? $config [ 'threads_preview_sticky' ] : $config [ 'threads_preview' ])) {
2011-02-17 01:07:36 -05:00
$count = prepare ( sprintf ( " SELECT COUNT(`id`) as `num` FROM `posts_%s` WHERE `thread` = :thread UNION ALL SELECT COUNT(`id`) FROM `posts_%s` WHERE `file` IS NOT NULL AND `thread` = :thread " , $board [ 'uri' ], $board [ 'uri' ]));
$count -> bindValue ( ':thread' , $th [ 'id' ], PDO :: PARAM_INT );
2010-12-17 09:18:03 -05:00
$count -> execute () or error ( db_error ( $count ));
2011-02-17 01:07:36 -05:00
$c = $count -> fetch ();
$thread -> omitted = $c [ 'num' ] - ( $th [ 'sticky' ] ? $config [ 'threads_preview_sticky' ] : $config [ 'threads_preview' ]);
$c = $count -> fetch ();
$thread -> omitted_images = $c [ 'num' ] - $num_images ;
2010-11-02 06:57:33 -04:00
}
2010-12-17 09:18:03 -05:00
2010-11-02 06:57:33 -04:00
$thread -> posts = array_reverse ( $thread -> posts );
2011-05-20 01:37:56 -04:00
2011-10-05 09:16:28 -04:00
$body .= '<div id="thread_' . $thread -> id . '">' . $thread -> build ( true ) . '</div>' ;
2010-11-02 06:57:33 -04:00
}
2010-12-17 09:18:03 -05:00
2011-02-19 04:16:13 -05:00
return Array (
'board' => $board ,
'body' => $body ,
'post_url' => $config [ 'post_url' ],
2011-03-26 03:23:15 -04:00
'config' => $config ,
2011-02-19 04:16:13 -05:00
'boardlist' => createBoardlist ( $mod )
);
2010-11-02 06:57:33 -04:00
}
2010-12-16 05:28:38 -05:00
2011-02-17 02:37:18 -05:00
function getPageButtons ( $pages , $mod = false ) {
global $config , $board ;
$btn = Array ();
$root = ( $mod ? '?/' : $config [ 'root' ]) . $board [ 'dir' ];
foreach ( $pages as $num => $page ) {
if ( isset ( $page [ 'selected' ])) {
// Previous button
if ( $num == 0 ) {
// There is no previous page.
2011-10-11 06:49:14 -04:00
$btn [ 'prev' ] = _ ( 'Previous' );
2011-02-17 02:37:18 -05:00
} else {
2011-02-22 01:52:26 -05:00
$loc = ( $mod ? '?/' . $board [ 'uri' ] . '/' : '' ) .
( $num == 1 ?
$config [ 'file_index' ]
:
sprintf ( $config [ 'file_page' ], $num )
);
$btn [ 'prev' ] = '<form action="' . ( $mod ? '' : $root . $loc ) . '" method="get">' .
( $mod ?
'<input type="hidden" name="status" value="301" />' .
'<input type="hidden" name="r" value="' . htmlentities ( $loc ) . '" />'
: '' ) .
2011-10-11 06:49:14 -04:00
'<input type="submit" value="' . _ ( 'Previous' ) . '" /></form>' ;
2011-02-17 02:37:18 -05:00
}
if ( $num == count ( $pages ) - 1 ) {
// There is no next page.
2011-10-11 06:49:14 -04:00
$btn [ 'next' ] = _ ( 'Next' );
2011-02-17 02:37:18 -05:00
} else {
2011-02-22 01:52:26 -05:00
$loc = ( $mod ? '?/' . $board [ 'uri' ] . '/' : '' ) . sprintf ( $config [ 'file_page' ], $num + 2 );
$btn [ 'next' ] = '<form action="' . ( $mod ? '' : $root . $loc ) . '" method="get">' .
( $mod ?
'<input type="hidden" name="status" value="301" />' .
'<input type="hidden" name="r" value="' . htmlentities ( $loc ) . '" />'
: '' ) .
2011-10-11 06:49:14 -04:00
'<input type="submit" value="' . _ ( 'Next' ) . '" /></form>' ;
2011-02-17 02:37:18 -05:00
}
}
}
return $btn ;
}
2010-12-16 05:28:38 -05:00
function getPages ( $mod = false ) {
2011-02-12 01:25:15 -05:00
global $board , $config ;
2010-12-16 05:28:38 -05:00
2010-12-17 09:18:03 -05:00
// Count threads
$query = query ( sprintf ( " SELECT COUNT(`id`) as `num` FROM `posts_%s` WHERE `thread` IS NULL " , $board [ 'uri' ])) or error ( db_error ());
$count = current ( $query -> fetch ());
2011-02-12 01:25:15 -05:00
$count = floor (( $config [ 'threads_per_page' ] + $count - 1 ) / $config [ 'threads_per_page' ]);
2011-02-17 01:14:57 -05:00
if ( $count < 1 ) $count = 1 ;
2010-11-02 06:57:33 -04:00
$pages = Array ();
2011-02-12 01:25:15 -05:00
for ( $x = 0 ; $x < $count && $x < $config [ 'max_pages' ]; $x ++ ) {
2011-02-16 07:32:43 -05:00
$pages [] = Array (
'num' => $x + 1 ,
'link' => $x == 0 ? ( $mod ? '?/' : $config [ 'root' ]) . $board [ 'dir' ] . $config [ 'file_index' ] : ( $mod ? '?/' : $config [ 'root' ]) . $board [ 'dir' ] . sprintf ( $config [ 'file_page' ], $x + 1 )
);
2010-12-16 05:28:38 -05:00
}
return $pages ;
}
2011-01-18 08:41:43 -05:00
function makerobot ( $body ) {
2011-02-12 01:25:15 -05:00
global $config ;
2011-01-18 08:41:43 -05:00
$body = strtolower ( $body );
// Leave only letters
$body = preg_replace ( '/[^a-z]/i' , '' , $body );
// Remove repeating characters
2011-02-12 01:25:15 -05:00
if ( $config [ 'robot_strip_repeating' ])
2011-01-18 08:41:43 -05:00
$body = preg_replace ( '/(.)\\1+/' , '$1' , $body );
return sha1 ( $body );
}
function checkRobot ( $body ) {
2011-11-16 03:59:21 -05:00
if ( empty ( $body ))
return true ;
2011-01-18 08:41:43 -05:00
$body = makerobot ( $body );
$query = prepare ( " SELECT 1 FROM `robot` WHERE `hash` = :hash LIMIT 1 " );
$query -> bindValue ( ':hash' , $body );
$query -> execute () or error ( db_error ( $query ));
2011-11-16 03:59:21 -05:00
2011-01-18 08:41:43 -05:00
if ( $query -> fetch ()) {
return true ;
} else {
// Insert new hash
$query = prepare ( " INSERT INTO `robot` VALUES (:hash) " );
$query -> bindValue ( ':hash' , $body );
$query -> execute () or error ( db_error ( $query ));
return false ;
}
}
2011-01-20 03:24:23 -05:00
function numPosts ( $id ) {
global $board ;
$query = prepare ( sprintf ( " SELECT COUNT(*) as `count` FROM `posts_%s` WHERE `thread` = :thread " , $board [ 'uri' ]));
$query -> bindValue ( ':thread' , $id , PDO :: PARAM_INT );
$query -> execute () or error ( db_error ( $query ));
$result = $query -> fetch ();
return $result [ 'count' ];
}
function muteTime () {
2011-02-12 01:25:15 -05:00
global $config ;
2011-01-20 03:24:23 -05:00
// Find number of mutes in the past X hours
$query = prepare ( " SELECT COUNT(*) as `count` FROM `mutes` WHERE `time` >= :time AND `ip` = :ip " );
2011-02-16 04:37:57 -05:00
$query -> bindValue ( ':time' , time () - ( $config [ 'robot_mute_hour' ] * 3600 ), PDO :: PARAM_INT );
2011-01-20 03:24:23 -05:00
$query -> bindValue ( ':ip' , $_SERVER [ 'REMOTE_ADDR' ]);
$query -> execute () or error ( db_error ( $query ));
$result = $query -> fetch ();
if ( $result [ 'count' ] == 0 ) return 0 ;
2011-02-12 01:25:15 -05:00
return pow ( $config [ 'robot_mute_multiplier' ], $result [ 'count' ]);
2011-01-20 03:24:23 -05:00
}
function mute () {
// Insert mute
$query = prepare ( " INSERT INTO `mutes` VALUES (:ip, :time) " );
$query -> bindValue ( ':time' , time (), PDO :: PARAM_INT );
$query -> bindValue ( ':ip' , $_SERVER [ 'REMOTE_ADDR' ]);
$query -> execute () or error ( db_error ( $query ));
return muteTime ();
}
function checkMute () {
2011-10-07 01:51:19 -04:00
global $config , $debug ;
2011-05-19 07:24:17 -04:00
2011-10-07 01:51:19 -04:00
if ( $config [ 'cache' ][ 'enabled' ]) {
2011-05-19 07:24:17 -04:00
// Cached mute?
2011-10-07 01:51:19 -04:00
if (( $mute = cache :: get ( " mute_ ${ _SERVER['REMOTE_ADDR'] } " )) && ( $mutetime = cache :: get ( " mutetime_ ${ _SERVER['REMOTE_ADDR'] } " ))) {
2011-05-19 07:24:17 -04:00
error ( sprintf ( $config [ 'error' ][ 'youaremuted' ], $mute [ 'time' ] + $mutetime - time ()));
}
}
2011-02-16 04:37:57 -05:00
2011-01-20 03:24:23 -05:00
$mutetime = muteTime ();
if ( $mutetime > 0 ) {
// Find last mute time
$query = prepare ( " SELECT `time` FROM `mutes` WHERE `ip` = :ip ORDER BY `time` DESC LIMIT 1 " );
$query -> bindValue ( ':ip' , $_SERVER [ 'REMOTE_ADDR' ]);
$query -> execute () or error ( db_error ( $query ));
if ( ! $mute = $query -> fetch ()) {
// What!? He's muted but he's not muted...
return ;
}
if ( $mute [ 'time' ] + $mutetime > time ()) {
2011-10-07 01:51:19 -04:00
if ( $config [ 'cache' ][ 'enabled' ]) {
2011-10-08 13:35:50 -04:00
cache :: set ( " mute_ ${ _SERVER['REMOTE_ADDR'] } " , $mute , $mute [ 'time' ] + $mutetime - time ());
cache :: set ( " mutetime_ ${ _SERVER['REMOTE_ADDR'] } " , $mutetime , $mute [ 'time' ] + $mutetime - time ());
2011-05-19 07:24:17 -04:00
}
2011-01-20 03:24:23 -05:00
// Not expired yet
2011-02-12 01:25:15 -05:00
error ( sprintf ( $config [ 'error' ][ 'youaremuted' ], $mute [ 'time' ] + $mutetime - time ()));
2011-01-20 03:24:23 -05:00
} else {
// Already expired
return ;
}
}
}
2011-02-17 06:03:52 -05:00
function createHiddenInputs () {
global $config ;
$inputs = Array ();
shuffle ( $config [ 'spam' ][ 'hidden_input_names' ]);
$hidden_input_names_x = 0 ;
$input_count = rand ( $config [ 'spam' ][ 'hidden_inputs_min' ], $config [ 'spam' ][ 'hidden_inputs_max' ]);
for ( $x = 0 ; $x < $input_count ; $x ++ ) {
if ( rand ( 0 , 2 ) == 0 || $hidden_input_names_x < 0 ) {
// Use an obscure name
2011-12-07 22:44:33 -05:00
$name = strtolower ( substr ( base64_encode ( sha1 ( rand (), true )), 0 , rand ( 2 , 20 )));
2011-02-17 06:03:52 -05:00
} else {
// Use a pre-defined confusing name
$name = $config [ 'spam' ][ 'hidden_input_names' ][ $hidden_input_names_x ++ ];
2011-02-17 08:36:50 -05:00
if ( $hidden_input_names_x >= count ( $config [ 'spam' ][ 'hidden_input_names' ]))
2011-02-17 06:03:52 -05:00
$hidden_input_names_x = - 1 ;
}
if ( rand ( 0 , 2 ) == 0 ) {
// Value must be null
$inputs [ $name ] = '' ;
} elseif ( rand ( 0 , 4 ) == 0 ) {
// Numeric value
$inputs [ $name ] = rand ( 0 , 100 );
} else {
// Obscure value
2011-12-07 22:44:33 -05:00
$inputs [ $name ] = substr ( base64_encode ( sha1 ( rand (), true ) . sha1 ( rand (), true )), 0 , rand ( 2 , 54 ));
2011-02-17 06:03:52 -05:00
}
}
$content = '' ;
foreach ( $inputs as $name => $value ) {
2011-02-17 06:11:11 -05:00
$display_type = rand ( 0 , 8 );
switch ( $display_type ) {
case 0 :
$content .= '<input type="hidden" name="' . htmlspecialchars ( $name ) . '" value="' . htmlspecialchars ( $value ) . '" />' ;
break ;
case 1 :
$content .= '<input style="display:none" name="' . htmlspecialchars ( $name ) . '" value="' . htmlspecialchars ( $value ) . '" />' ;
break ;
case 2 :
$content .= '<input type="hidden" value="' . htmlspecialchars ( $value ) . '" name="' . htmlspecialchars ( $name ) . '" />' ;
break ;
case 3 :
$content .= '<input type="hidden" name="' . htmlspecialchars ( $name ) . '" value="' . htmlspecialchars ( $value ) . '" />' ;
break ;
case 4 :
$content .= '<span style="display:none"><input type="text" name="' . htmlspecialchars ( $name ) . '" value="' . htmlspecialchars ( $value ) . '" /></span>' ;
break ;
case 5 :
$content .= '<div style="display:none"><input type="text" name="' . htmlspecialchars ( $name ) . '" value="' . htmlspecialchars ( $value ) . '" /></div>' ;
break ;
case 6 :
2011-04-14 06:43:34 -04:00
if ( ! empty ( $value ))
$content .= '<textarea style="display:none" name="' . htmlspecialchars ( $name ) . '">' . htmlspecialchars ( $value ) . '</textarea>' ;
else
$content .= '<input type="hidden" name="' . htmlspecialchars ( $name ) . '" value="' . htmlspecialchars ( $value ) . '" />' ;
2011-02-17 06:11:11 -05:00
break ;
case 7 :
2011-04-14 06:43:34 -04:00
if ( ! empty ( $value ))
$content .= '<textarea name="' . htmlspecialchars ( $name ) . '" style="display:none">' . htmlspecialchars ( $value ) . '</textarea>' ;
else
$content .= '<input type="hidden" name="' . htmlspecialchars ( $name ) . '" value="' . htmlspecialchars ( $value ) . '" />' ;
2011-02-17 06:11:11 -05:00
break ;
case 8 :
$content .= '<div style="display:none"><textarea name="' . htmlspecialchars ( $name ) . '" style="display:none">' . htmlspecialchars ( $value ) . '</textarea></div>' ;
break ;
}
2011-02-17 06:03:52 -05:00
}
// Create a hash to validate it after
// This is the tricky part.
// First, sort the keys in alphabetical order (A-Z)
ksort ( $inputs );
$hash = '' ;
// Iterate through each input
foreach ( $inputs as $name => $value ) {
$hash .= $name . '=' . $value ;
}
// Add a salt to the hash
$hash .= $config [ 'cookies' ][ 'salt' ];
// Use SHA1 for the hash
$hash = sha1 ( $hash );
// Append it to the HTML
$content .= '<input type="hidden" name="hash" value="' . $hash . '" />' ;
return $content ;
}
function checkSpam () {
global $config ;
if ( ! isset ( $_POST [ 'hash' ]))
return true ;
$hash = $_POST [ 'hash' ];
// Reconsturct the $inputs array
$inputs = Array ();
foreach ( $_POST as $name => $value ) {
if ( in_array ( $name , $config [ 'spam' ][ 'valid_inputs' ]))
continue ;
$inputs [ $name ] = $value ;
}
// Sort the inputs in alphabetical order (A-Z)
ksort ( $inputs );
$_hash = '' ;
// Iterate through each input
foreach ( $inputs as $name => $value ) {
$_hash .= $name . '=' . $value ;
}
// Add a salt to the hash
$_hash .= $config [ 'cookies' ][ 'salt' ];
// Use SHA1 for the hash
$_hash = sha1 ( $_hash );
return $hash != $_hash ;
}
2010-12-16 05:28:38 -05:00
function buildIndex () {
2011-02-12 01:25:15 -05:00
global $board , $config ;
2011-04-22 10:24:15 -04:00
2010-12-16 05:28:38 -05:00
$pages = getPages ();
2010-11-04 10:39:02 -04:00
2010-11-02 06:57:33 -04:00
$page = 1 ;
2011-02-12 01:25:15 -05:00
while ( $page <= $config [ 'max_pages' ] && $content = index ( $page )) {
$filename = $board [ 'dir' ] . ( $page == 1 ? $config [ 'file_index' ] : sprintf ( $config [ 'file_page' ], $page ));
2010-11-02 07:54:08 -04:00
if ( file_exists ( $filename )) $md5 = md5_file ( $filename );
2011-05-18 03:05:48 -04:00
2010-11-02 06:57:33 -04:00
$content [ 'pages' ] = $pages ;
2011-02-16 07:32:43 -05:00
$content [ 'pages' ][ $page - 1 ][ 'selected' ] = true ;
2011-02-17 02:37:18 -05:00
$content [ 'btn' ] = getPageButtons ( $content [ 'pages' ]);
2011-02-17 06:03:52 -05:00
$content [ 'hidden_inputs' ] = createHiddenInputs ();
2011-05-20 03:19:27 -04:00
file_write ( $filename , Element ( 'index.html' , $content ));
2010-11-30 03:57:32 -05:00
2010-11-02 07:54:08 -04:00
if ( isset ( $md5 ) && $md5 == md5_file ( $filename )) {
2010-11-02 06:57:33 -04:00
break ;
}
$page ++ ;
}
2011-02-12 01:25:15 -05:00
if ( $page < $config [ 'max_pages' ]) {
for (; $page <= $config [ 'max_pages' ]; $page ++ ) {
2011-10-10 11:57:37 -04:00
$filename = $board [ 'dir' ] . ( $page == 1 ? $config [ 'file_index' ] : sprintf ( $config [ 'file_page' ], $page ));
2011-05-23 01:29:58 -04:00
file_unlink ( $filename );
2010-11-02 06:57:33 -04:00
}
}
}
2011-01-18 20:37:31 -05:00
2011-03-26 11:36:32 -04:00
function buildJavascript () {
global $config ;
$stylesheets = Array ();
foreach ( $config [ 'stylesheets' ] as $name => $uri ) {
$stylesheets [] = Array (
'name' => addslashes ( $name ),
'uri' => addslashes (( ! empty ( $uri ) ? $config [ 'uri_stylesheets' ] : '' ) . $uri ));
}
2011-05-20 03:19:27 -04:00
file_write ( $config [ 'file_script' ], Element ( 'main.js' , Array (
2011-03-26 11:36:32 -04:00
'config' => $config ,
'stylesheets' => $stylesheets
)));
}
2011-05-19 03:37:23 -04:00
function checkDNSBL () {
global $config ;
if ( isIPv6 ())
return ; // No IPv6 support yet.
if ( ! isset ( $_SERVER [ 'REMOTE_ADDR' ]))
return ; // Fix your web server configuration
2011-05-30 03:35:20 -04:00
2011-06-05 02:32:53 -04:00
if ( in_array ( $_SERVER [ 'REMOTE_ADDR' ], $config [ 'dnsbl_exceptions' ]))
2011-06-04 11:48:31 -04:00
return ;
2011-05-19 03:37:23 -04:00
$ip = ReverseIPOctets ( $_SERVER [ 'REMOTE_ADDR' ]);
2011-01-18 20:37:31 -05:00
2011-05-19 03:37:23 -04:00
foreach ( $config [ 'dnsbl' ] as & $blacklist ) {
$lookup = $ip . '.' . $blacklist ;
2011-05-19 04:04:47 -04:00
$host = gethostbyname ( $lookup );
2011-05-19 04:20:10 -04:00
if ( $host != $lookup ) {
2011-05-19 03:37:23 -04:00
// On NXDOMAIN (meaning it's not in the blacklist), gethostbyname() returns the host unchanged.
2011-05-19 04:04:47 -04:00
if ( preg_match ( '/^127\.0\.0\./' , $host ) && $host != '127.0.0.10' )
error ( sprintf ( $config [ 'error' ][ 'dnsbl' ], $blacklist ));
2011-05-19 03:37:23 -04:00
}
}
2011-01-18 20:37:31 -05:00
}
2011-02-17 04:32:11 -05:00
function isIPv6 () {
2011-02-17 05:08:32 -05:00
return strstr ( $_SERVER [ 'REMOTE_ADDR' ], ':' ) !== false ;
2011-02-17 04:32:11 -05:00
}
2011-02-20 01:19:57 -05:00
function ReverseIPOctets ( $ip ) {
$ipoc = explode ( '.' , $ip );
2011-01-18 20:37:31 -05:00
return $ipoc [ 3 ] . '.' . $ipoc [ 2 ] . '.' . $ipoc [ 1 ] . '.' . $ipoc [ 0 ];
}
2011-04-06 05:18:36 -04:00
function wordfilters ( & $body ) {
global $config ;
foreach ( $config [ 'wordfilters' ] as $filter ) {
if ( isset ( $filter [ 2 ]) && $filter [ 2 ]) {
$body = preg_replace ( $filter [ 0 ], $filter [ 1 ], $body );
} else {
$body = str_replace ( $filter [ 0 ], $filter [ 1 ], $body );
}
}
}
2011-04-14 14:59:04 -04:00
function quote ( $body , $quote = true ) {
2012-01-06 19:54:25 -05:00
global $config ;
2011-04-12 05:56:37 -04:00
$body = str_replace ( '<br/>' , " \n " , $body );
$body = strip_tags ( $body );
$body = preg_replace ( " /(^| \n )/ " , '$1>' , $body );
2012-01-06 19:55:25 -05:00
$body .= " \n " ;
2012-01-06 19:54:25 -05:00
if ( $config [ 'minify_html' ])
$body = str_replace ( " \n " , '
' , $body );
2012-01-06 19:55:25 -05:00
return $body ;
2011-04-12 05:56:37 -04:00
}
2012-01-05 14:34:21 -05:00
function markup_url ( $matches ) {
$strip_from_end = Array ( '.' , ',' , ')' );
$url = $matches [ 0 ];
$after = '' ;
$last = $url [ strlen ( $url ) - 1 ];
if ( in_array ( $last , $strip_from_end )) {
$after = $last ;
$url = substr ( $url , 0 , - 1 );
}
return '<a target="_blank" rel="nofollow" href="' . $url . '">' . $url . '</a>' . $after ;
}
2011-12-04 21:17:34 -05:00
function markup ( & $body , $track_cites = false ) {
2011-02-12 01:25:15 -05:00
global $board , $config ;
2011-01-02 06:14:51 -05:00
2011-11-16 09:06:00 -05:00
$body = utf8tohtml ( $body );
2011-01-02 06:16:18 -05:00
2011-03-01 21:19:46 -05:00
if ( $config [ 'wiki_markup' ]) {
2011-03-02 01:15:37 -05:00
$body = preg_replace ( " /(^| \n )==(.+?)== \n ?/m " , " <span class= \" heading \" > $ 2</span> " , $body );
2011-03-01 21:19:46 -05:00
$body = preg_replace ( " /'''(.+?)'''/m " , " <strong> $ 1</strong> " , $body );
$body = preg_replace ( " /''(.+?)''/m " , " <em> $ 1</em> " , $body );
$body = preg_replace ( " / \ * \ *(.+?) \ * \ */m " , " <span class= \" spoiler \" > $ 1</span> " , $body );
}
2011-02-12 01:25:15 -05:00
if ( $config [ 'markup_urls' ]) {
2012-01-05 14:34:21 -05:00
$body = preg_replace_callback ( $config [ 'url_regex' ], 'markup_url' , $body , - 1 , $num_links );
2011-02-12 01:25:15 -05:00
if ( $num_links > $config [ 'max_links' ])
error ( $config [ 'error' ][ 'toomanylinks' ]);
2011-01-18 20:37:31 -05:00
}
2011-01-02 06:16:18 -05:00
2011-02-12 01:25:15 -05:00
if ( $config [ 'auto_unicode' ]) {
2011-09-25 02:40:30 -04:00
$body = str_replace ( '...' , '…' , $body );
$body = str_replace ( '<--' , '←' , $body );
$body = str_replace ( '-->' , '→' , $body );
2010-11-05 12:11:42 -04:00
// En and em- dashes are rendered exactly the same in
// most monospace fonts (they look the same in code
// editors).
2011-09-25 02:40:30 -04:00
$body = str_replace ( '---' , '–' , $body ); // em dash
$body = str_replace ( '--' , '—' , $body ); // en dash
2010-11-02 06:57:33 -04:00
}
2011-11-15 23:54:35 -05:00
// replace tabs with 8 spaces
$body = str_replace ( " \t " , ' ' , $body );
2011-12-04 21:17:34 -05:00
$tracked_cites = Array ();
2010-11-04 03:22:57 -04:00
// Cites
2012-01-05 14:44:12 -05:00
if ( isset ( $board ) && preg_match_all ( '/(^|\s)>>(\d+?)([\s,.)?]|$)/' , $body , $cites )) {
2011-04-06 05:18:36 -04:00
if ( count ( $cites [ 0 ]) > $config [ 'max_cites' ]) {
error ( $config [ 'error' ][ 'toomanycites' ]);
}
2011-04-22 10:24:15 -04:00
2010-11-04 03:22:57 -04:00
for ( $index = 0 ; $index < count ( $cites [ 0 ]); $index ++ ) {
$cite = $cites [ 2 ][ $index ];
2010-12-17 09:18:03 -05:00
$query = prepare ( sprintf ( " SELECT `thread`,`id` FROM `posts_%s` WHERE `id` = :id LIMIT 1 " , $board [ 'uri' ]));
$query -> bindValue ( ':id' , $cite );
$query -> execute () or error ( db_error ( $query ));
if ( $post = $query -> fetch ()) {
2011-04-06 05:18:36 -04:00
$replacement = '<a onclick="highlightReply(\'' . $cite . '\');" href="' .
$config [ 'root' ] . $board [ 'dir' ] . $config [ 'dir' ][ 'res' ] . ( $post [ 'thread' ] ? $post [ 'thread' ] : $post [ 'id' ]) . '.html#' . $cite . '">' .
'>>' . $cite .
'</a>' ;
$body = str_replace ( $cites [ 0 ][ $index ], $cites [ 1 ][ $index ] . $replacement . $cites [ 3 ][ $index ], $body );
2011-12-04 21:17:34 -05:00
if ( $track_cites && $config [ 'track_cites' ])
$tracked_cites [] = Array ( $board [ 'uri' ], $post [ 'id' ]);
2010-11-04 03:22:57 -04:00
}
2011-04-06 05:18:36 -04:00
}
}
// Cross-board linking
2012-01-05 14:44:51 -05:00
if ( preg_match_all ( '/(^|\s)>>>\/(\w+?)\/(\d+)?([\s,.)?]|$)/' , $body , $cites )) {
2011-04-06 05:18:36 -04:00
if ( count ( $cites [ 0 ]) > $config [ 'max_cites' ]) {
error ( $config [ 'error' ][ 'toomanycross' ]);
}
2011-04-22 10:24:15 -04:00
2011-04-06 05:18:36 -04:00
for ( $index = 0 ; $index < count ( $cites [ 0 ]); $index ++ ) {
$_board = $cites [ 2 ][ $index ];
$cite = @ $cites [ 3 ][ $index ];
2011-01-02 06:14:51 -05:00
2011-04-06 05:18:36 -04:00
// Temporarily store board information because it will be overwritten
$tmp_board = $board [ 'uri' ];
2011-01-02 06:14:51 -05:00
2011-04-06 05:18:36 -04:00
// Check if the board exists, and load settings
if ( openBoard ( $_board )) {
if ( $cite ) {
$query = prepare ( sprintf ( " SELECT `thread`,`id` FROM `posts_%s` WHERE `id` = :id LIMIT 1 " , $board [ 'uri' ]));
$query -> bindValue ( ':id' , $cite );
$query -> execute () or error ( db_error ( $query ));
if ( $post = $query -> fetch ()) {
$replacement = '<a onclick="highlightReply(\'' . $cite . '\');" href="' .
$config [ 'root' ] . $board [ 'dir' ] . $config [ 'dir' ][ 'res' ] . ( $post [ 'thread' ] ? $post [ 'thread' ] : $post [ 'id' ]) . '.html#' . $cite . '">' .
'>>>/' . $_board . '/' . $cite .
'</a>' ;
$body = str_replace ( $cites [ 0 ][ $index ], $cites [ 1 ][ $index ] . $replacement . $cites [ 4 ][ $index ], $body );
2011-12-04 21:17:34 -05:00
if ( $track_cites && $config [ 'track_cites' ])
$tracked_cites [] = Array ( $board [ 'uri' ], $post [ 'id' ]);
2011-04-06 05:18:36 -04:00
}
} else {
$replacement = '<a href="' .
$config [ 'root' ] . $board [ 'dir' ] . $config [ 'file_index' ] . '">' .
'>>>/' . $_board . '/' .
'</a>' ;
$body = str_replace ( $cites [ 0 ][ $index ], $cites [ 1 ][ $index ] . $replacement . $cites [ 4 ][ $index ], $body );
}
}
2011-01-02 06:14:51 -05:00
2011-04-06 05:18:36 -04:00
// Restore main board settings
openBoard ( $tmp_board );
2010-11-02 06:57:33 -04:00
}
}
2011-04-06 05:18:36 -04:00
2010-11-04 10:39:02 -04:00
2010-11-02 06:57:33 -04:00
$body = str_replace ( " \r " , '' , $body );
2011-01-02 06:14:51 -05:00
2010-11-02 06:57:33 -04:00
$body = preg_replace ( " /(^| \n )([ \ s]+)?(>)([^ \n ]+)?( $ | \n )/m " , '$1$2<span class="quote">$3$4</span>$5' , $body );
2010-11-26 04:41:35 -05:00
2011-02-20 23:51:46 -05:00
if ( $config [ 'strip_superfluous_returns' ])
$body = preg_replace ( '/\s+$/' , '' , $body );
2010-11-02 06:57:33 -04:00
$body = preg_replace ( " / \n / " , '<br/>' , $body );
2011-12-04 21:17:34 -05:00
return $tracked_cites ;
2010-11-02 06:57:33 -04:00
}
2010-11-04 10:39:02 -04:00
2011-11-16 09:06:00 -05:00
function utf8tohtml ( $utf8 ) {
2011-11-16 09:22:25 -05:00
return mb_encode_numericentity ( htmlspecialchars ( $utf8 , ENT_NOQUOTES , 'UTF-8' ), Array ( 0xff , 0xffff , 0 , 0xffff ), 'UTF-8' );
2010-11-02 06:57:33 -04:00
}
2010-11-04 10:39:02 -04:00
2010-12-16 00:36:14 -05:00
function buildThread ( $id , $return = false , $mod = false ) {
2011-10-07 01:51:19 -04:00
global $board , $config ;
2010-11-02 06:57:33 -04:00
$id = round ( $id );
2010-12-16 00:36:14 -05:00
2011-10-07 01:51:19 -04:00
if ( $config [ 'cache' ][ 'enabled' ] && ! $mod ) {
2011-10-05 08:53:43 -04:00
// Clear cache
2011-10-07 01:51:19 -04:00
cache :: delete ( " thread_index_ { $board [ 'uri' ] } _ { $id } " );
cache :: delete ( " thread_ { $board [ 'uri' ] } _ { $id } " );
2011-05-19 07:42:53 -04:00
}
2011-09-11 00:23:21 -04:00
$query = prepare ( sprintf ( " SELECT * FROM `posts_%s` WHERE (`thread` IS NULL AND `id` = :id) OR `thread` = :id ORDER BY `thread`,`id` " , $board [ 'uri' ]));
2010-12-17 09:18:03 -05:00
$query -> bindValue ( ':id' , $id , PDO :: PARAM_INT );
$query -> execute () or error ( db_error ( $query ));
while ( $post = $query -> fetch ()) {
2010-11-02 06:57:33 -04:00
if ( ! isset ( $thread )) {
2011-10-10 07:37:39 -04:00
$thread = new Thread ( $post [ 'id' ], $post [ 'subject' ], $post [ 'email' ], $post [ 'name' ], $post [ 'trip' ], $post [ 'capcode' ], $post [ 'body' ], $post [ 'time' ], $post [ 'thumb' ], $post [ 'thumbwidth' ], $post [ 'thumbheight' ], $post [ 'file' ], $post [ 'filewidth' ], $post [ 'fileheight' ], $post [ 'filesize' ], $post [ 'filename' ], $post [ 'ip' ], $post [ 'sticky' ], $post [ 'locked' ], $post [ 'sage' ], $post [ 'embed' ], $mod ? '?/' : $config [ 'root' ], $mod );
2010-11-02 06:57:33 -04:00
} else {
2011-05-18 03:05:48 -04:00
$thread -> add ( new Post ( $post [ 'id' ], $thread -> id , $post [ 'subject' ], $post [ 'email' ], $post [ 'name' ], $post [ 'trip' ], $post [ 'capcode' ], $post [ 'body' ], $post [ 'time' ], $post [ 'thumb' ], $post [ 'thumbwidth' ], $post [ 'thumbheight' ], $post [ 'file' ], $post [ 'filewidth' ], $post [ 'fileheight' ], $post [ 'filesize' ], $post [ 'filename' ], $post [ 'ip' ], $post [ 'embed' ], $mod ? '?/' : $config [ 'root' ], $mod ));
2010-11-02 06:57:33 -04:00
}
2010-12-16 00:36:14 -05:00
}
2010-12-17 09:18:03 -05:00
// Check if any posts were found
2011-02-12 01:25:15 -05:00
if ( ! isset ( $thread )) error ( $config [ 'error' ][ 'nonexistant' ]);
2010-12-17 09:18:03 -05:00
$body = Element ( 'thread.html' , Array (
'board' => $board ,
'body' => $thread -> build (),
2011-03-26 03:23:15 -04:00
'config' => $config ,
2010-12-17 09:18:03 -05:00
'id' => $id ,
'mod' => $mod ,
2011-02-19 04:16:13 -05:00
'boardlist' => createBoardlist ( $mod ),
2011-02-17 06:03:52 -05:00
'hidden_inputs' => $content [ 'hidden_inputs' ] = createHiddenInputs (),
2011-02-12 01:25:15 -05:00
'return' => ( $mod ? '?' . $board [ 'url' ] . $config [ 'file_index' ] : $config [ 'root' ] . $board [ 'uri' ] . '/' . $config [ 'file_index' ])
2010-12-17 09:18:03 -05:00
));
2011-05-19 07:42:53 -04:00
2010-12-16 00:36:14 -05:00
if ( $return )
return $body ;
else
2011-05-20 03:19:27 -04:00
file_write ( $board [ 'dir' ] . $config [ 'dir' ][ 'res' ] . sprintf ( $config [ 'file_page' ], $id ), $body );
2010-11-02 06:57:33 -04:00
}
2010-11-30 20:54:58 -05:00
2011-02-22 01:38:38 -05:00
function rrmdir ( $dir ) {
if ( is_dir ( $dir )) {
$objects = scandir ( $dir );
foreach ( $objects as $object ) {
if ( $object != " . " && $object != " .. " ) {
if ( filetype ( $dir . " / " . $object ) == " dir " )
rrmdir ( $dir . " / " . $object );
else
2011-05-23 01:29:58 -04:00
file_unlink ( $dir . " / " . $object );
2011-02-22 01:38:38 -05:00
}
}
reset ( $objects );
rmdir ( $dir );
}
2011-04-13 06:02:58 -04:00
}
function poster_id ( $ip , $thread ) {
global $config ;
// Confusing, hard to brute-force, but simple algorithm
return substr ( sha1 ( sha1 ( $ip . $config [ 'secure_trip_salt' ] . $thread ) . $config [ 'secure_trip_salt' ]), 0 , $config [ 'poster_id_length' ]);
}
2011-02-22 01:38:38 -05:00
2011-12-02 23:11:15 -05:00
function generate_tripcode ( $name ) {
2011-02-12 01:25:15 -05:00
global $config ;
2011-12-02 23:11:15 -05:00
if ( ! preg_match ( '/^([^#]+)?(##|#)(.+)$/' , $name , $match ))
return Array ( $name );
$name = $match [ 1 ];
$secure = $match [ 2 ] == '##' ;
$trip = $match [ 3 ];
// convert to SHIT_JIS encoding
$trip = mb_convert_encoding ( $trip , 'Shift_JIS' , 'UTF-8' );
// generate salt
$salt = substr ( $trip . 'H..' , 1 , 2 );
$salt = preg_replace ( '/[^\.-z]/' , '.' , $salt );
$salt = strtr ( $salt , ':;<=>?@[\]^_`' , 'ABCDEFGabcdef' );
if ( $secure ) {
if ( isset ( $config [ 'custom_tripcode' ][ " ## { $trip } " ]))
$trip = $config [ 'custom_tripcode' ][ " ## { $trip } " ];
else
$trip = '!!' . substr ( crypt ( $trip , $config [ 'secure_trip_salt' ]), - 10 );
2010-11-02 06:57:33 -04:00
} else {
2011-12-02 23:11:15 -05:00
if ( isset ( $config [ 'custom_tripcode' ][ " # { $trip } " ]))
$trip = $config [ 'custom_tripcode' ][ " # { $trip } " ];
else
$trip = '!' . substr ( crypt ( $trip , $salt ), - 10 );
2010-11-02 06:57:33 -04:00
}
2011-12-02 23:11:15 -05:00
return Array ( $name , $trip );
2010-11-02 06:57:33 -04:00
}
2011-12-02 23:11:15 -05:00
2010-11-04 00:40:39 -04:00
// Highest common factor
function hcf ( $a , $b ){
$gcd = 1 ;
if ( $a > $b ) {
$a = $a + $b ;
$b = $a - $b ;
$a = $a - $b ;
}
if ( $b == ( round ( $b / $a )) * $a )
$gcd = $a ;
else {
for ( $i = round ( $a / 2 ); $i ; $i -- ) {
if ( $a == round ( $a / $i ) * $i && $b == round ( $b / $i ) * $i ) {
$gcd = $i ;
$i = false ;
}
}
}
return $gcd ;
}
2010-11-03 12:10:47 -04:00
function fraction ( $numerator , $denominator , $sep ) {
2010-11-04 00:40:39 -04:00
$gcf = hcf ( $numerator , $denominator );
$numerator = $numerator / $gcf ;
$denominator = $denominator / $gcf ;
2011-10-10 06:06:39 -04:00
2010-11-04 00:40:39 -04:00
return " { $numerator } { $sep } { $denominator } " ;
2010-11-03 12:10:47 -04:00
}
2010-11-02 06:57:33 -04:00
2011-07-12 06:29:35 -04:00
2011-02-19 03:45:54 -05:00
function getPostByHash ( $hash ) {
global $board ;
$query = prepare ( sprintf ( " SELECT `id`,`thread` FROM `posts_%s` WHERE `filehash` = :hash " , $board [ 'uri' ]));
$query -> bindValue ( ':hash' , $hash , PDO :: PARAM_STR );
$query -> execute () or error ( db_error ( $query ));
if ( $post = $query -> fetch ()) {
return $post ;
}
return false ;
}
2011-02-19 03:28:07 -05:00
function undoImage ( $post ) {
2011-05-23 01:29:58 -04:00
if ( $post [ 'has_file' ]) {
if ( isset ( $post [ 'thumb' ]))
file_unlink ( $post [ 'file' ]);
if ( isset ( $post [ 'thumb' ]))
file_unlink ( $post [ 'thumb' ]);
}
2011-02-19 03:28:07 -05:00
}
2011-11-16 03:59:21 -05:00
2011-12-02 19:52:31 -05:00
function rDNS ( $ip_addr ) {
global $config ;
if ( $config [ 'cache' ][ 'enabled' ] && ( $host = cache :: get ( 'rdns_' . $ip_addr ))) {
return $host ;
}
if ( ! $config [ 'dns_system' ]) {
$host = gethostbyaddr ( $ip_addr );
} else {
$resp = shell_exec ( 'host -W 1 ' . $ip_addr );
if ( preg_match ( '/domain name pointer ([^\s]+)$/' , $resp , $m ))
$host = $m [ 1 ];
else
$host = $ip_addr ;
}
if ( $config [ 'cache' ][ 'enabled' ])
cache :: set ( 'rdns_' . $ip_addr , $host , 3600 );
return $host ;
}
2011-01-02 11:27:34 -05:00
?>