2010-11-02 12:54:50 +01:00
< ? php
2011-04-13 14:21:07 +02:00
if ( $_SERVER [ 'SCRIPT_FILENAME' ] == str_replace ( '\\' , '/' , __FILE__ )) {
// You cannot request this file directly.
header ( 'Location: ../' , true , 302 );
exit ;
}
2011-10-11 12:49:14 +02:00
require 'contrib/gettext/gettext.inc' ;
2011-05-20 14:53:34 +02:00
register_shutdown_function ( 'fatal_error_handler' );
2011-02-16 06:21:14 +01:00
loadConfig ();
function loadConfig () {
2011-10-10 18:00:04 +02:00
global $board , $config , $__ip , $debug , $__version ;
2011-02-16 06:21:14 +01:00
2011-10-09 07:26:34 +02:00
require 'inc/config.php' ;
2011-02-16 06:21:14 +01:00
if ( file_exists ( 'inc/instance-config.php' )) {
2011-07-30 12:23:02 +02:00
require 'inc/instance-config.php' ;
2011-02-16 06:21:14 +01:00
}
2011-02-16 09:41:34 +01:00
if ( isset ( $board [ 'dir' ]) && file_exists ( $board [ 'dir' ] . '/config.php' )) {
require $board [ 'dir' ] . '/config.php' ;
}
2011-02-16 06:21:14 +01:00
2011-10-10 12:40:31 +02:00
if ( ! isset ( $__version ))
2011-11-09 03:44:34 +01:00
$__version = file_exists ( '.installed' ) ? trim ( file_get_contents ( '.installed' )) : false ;
2011-10-10 12:40:31 +02:00
$config [ 'version' ] = $__version ;
2011-05-21 07:21:45 +02:00
if ( $config [ 'debug' ]) {
2011-05-25 07:21:59 +02:00
if ( ! isset ( $debug )) {
2011-10-07 07:51:19 +02:00
$debug = Array ( 'sql' => Array (), 'purge' => Array (), 'cached' => Array ());
2011-05-25 07:21:59 +02:00
$debug [ 'start' ] = microtime ( true );
}
2011-05-21 07:21:45 +02:00
}
2011-05-21 14:49:47 +02:00
date_default_timezone_set ( $config [ 'timezone' ]);
2011-02-16 06:24:23 +01:00
if ( ! isset ( $config [ 'post_url' ]))
2011-02-16 06:26:02 +01:00
$config [ 'post_url' ] = $config [ 'root' ] . $config [ 'file_post' ];
2011-02-16 06:21:14 +01:00
2011-10-03 09:38:19 +02:00
if ( ! isset ( $config [ 'referer_match' ]))
$config [ 'referer_match' ] = '/^' .
2011-02-16 06:24:23 +01:00
( preg_match ( $config [ 'url_regex' ], $config [ 'root' ]) ? '' :
2011-11-20 06:19:00 +01:00
'https?:\/\/' . $_SERVER [ 'HTTP_HOST' ]) .
2011-02-16 06:24:23 +01:00
preg_quote ( $config [ 'root' ], '/' ) .
'(' .
2011-10-03 09:38:19 +02:00
str_replace ( '%s' , '\w+' , preg_quote ( $config [ 'board_path' ], '/' )) .
'(' . preg_quote ( $config [ 'file_index' ], '/' ) . ')?' .
2011-02-16 06:24:23 +01:00
'|' .
2011-10-03 09:38:19 +02:00
str_replace ( '%s' , '\w+' , preg_quote ( $config [ 'board_path' ], '/' )) .
preg_quote ( $config [ 'dir' ][ 'res' ], '/' ) .
2011-02-16 06:24:23 +01:00
str_replace ( '%d' , '\d+' , preg_quote ( $config [ 'file_page' ], '/' )) .
'|' .
2011-10-03 09:38:19 +02:00
preg_quote ( $config [ 'file_mod' ], '/' ) . '\?\/.+' .
2011-02-16 06:24:23 +01:00
')$/i' ;
2011-02-16 06:21:14 +01:00
2011-03-27 17:22:48 +02:00
if ( ! isset ( $config [ 'cookies' ][ 'path' ]))
2011-05-24 07:39:07 +02:00
$config [ 'cookies' ][ 'path' ] = & $config [ 'root' ];
2011-03-27 17:22:48 +02:00
2011-02-16 06:24:23 +01:00
if ( ! isset ( $config [ 'dir' ][ 'static' ]))
2011-02-16 06:26:02 +01:00
$config [ 'dir' ][ 'static' ] = $config [ 'root' ] . 'static/' ;
2011-02-16 06:21:14 +01:00
2011-02-16 06:24:23 +01:00
if ( ! isset ( $config [ 'image_sticky' ]))
2011-02-16 06:26:02 +01:00
$config [ 'image_sticky' ] = $config [ 'dir' ][ 'static' ] . 'sticky.gif' ;
2011-02-16 06:24:23 +01:00
if ( ! isset ( $config [ 'image_locked' ]))
2011-02-16 06:26:02 +01:00
$config [ 'image_locked' ] = $config [ 'dir' ][ 'static' ] . 'locked.gif' ;
2011-10-10 13:37:39 +02:00
if ( ! isset ( $config [ 'image_bumplocked' ]))
$config [ 'image_bumplocked' ] = $config [ 'dir' ][ 'static' ] . 'sage.gif' ;
2011-02-16 06:24:23 +01:00
if ( ! isset ( $config [ 'image_deleted' ]))
2011-02-16 06:26:02 +01:00
$config [ 'image_deleted' ] = $config [ 'dir' ][ 'static' ] . 'deleted.png' ;
2011-02-16 06:24:23 +01:00
if ( ! isset ( $config [ 'image_zip' ]))
2011-02-16 06:26:02 +01:00
$config [ 'image_zip' ] = $config [ 'dir' ][ 'static' ] . 'zip.png' ;
2011-02-16 09:29:56 +01:00
2011-03-17 08:56:18 +01:00
if ( ! isset ( $config [ 'uri_thumb' ]))
$config [ 'uri_thumb' ] = $config [ 'root' ] . $board [ 'dir' ] . $config [ 'dir' ][ 'thumb' ];
else
$config [ 'uri_thumb' ] = sprintf ( $config [ 'uri_thumb' ], $board [ 'dir' ]);
if ( ! isset ( $config [ 'uri_img' ]))
$config [ 'uri_img' ] = $config [ 'root' ] . $board [ 'dir' ] . $config [ 'dir' ][ 'img' ];
else
$config [ 'uri_img' ] = sprintf ( $config [ 'uri_img' ], $board [ 'dir' ]);
2011-03-26 16:36:32 +01:00
if ( ! isset ( $config [ 'uri_stylesheets' ]))
2011-07-07 14:35:35 +02:00
$config [ 'uri_stylesheets' ] = $config [ 'root' ] . 'stylesheets/' ;
if ( ! isset ( $config [ 'url_stylesheet' ]))
$config [ 'url_stylesheet' ] = $config [ 'uri_stylesheets' ] . 'style.css' ;
if ( ! isset ( $config [ 'url_javascript' ]))
$config [ 'url_javascript' ] = $config [ 'root' ] . 'main.js' ;
2011-03-26 16:36:32 +01:00
2011-02-16 09:29:56 +01:00
if ( $config [ 'root_file' ]) {
chdir ( $config [ 'root_file' ]);
}
if ( $config [ 'verbose_errors' ]) {
error_reporting ( E_ALL );
ini_set ( 'display_errors' , 1 );
}
2011-02-17 10:58:34 +01:00
2011-03-21 09:48:43 +01:00
if ( $config [ 'ipv6_ipv4' ] && isset ( $_SERVER [ 'REMOTE_ADDR' ])) {
2011-02-17 10:59:36 +01:00
// Keep the original address to properly comply with other board configurations
2011-02-17 10:58:34 +01:00
if ( ! isset ( $__ip ))
2011-05-24 07:39:07 +02:00
$__ip = & $_SERVER [ 'REMOTE_ADDR' ];
2011-02-17 10:58:34 +01:00
// ::ffff:0.0.0.0
2011-02-28 06:04:06 +01:00
if ( preg_match ( '/^\:\:(ffff\:)?(\d+\.\d+\.\d+\.\d+)$/' , $__ip , $m ))
2011-03-01 11:26:04 +01:00
$_SERVER [ 'REMOTE_ADDR' ] = $m [ 2 ];
2011-02-17 10:58:34 +01:00
}
2011-04-22 16:24:15 +02:00
2011-10-11 12:49:14 +02:00
if ( _setlocale ( LC_ALL , $config [ 'locale' ]) === false ) {
$error = function_exists ( 'error' ) ? 'error' : 'basic_error_function_because_the_other_isnt_loaded_yet' ;
$error ( 'The specified locale (' . $config [ 'locale' ] . ') does not exist on your platform!' );
}
2011-11-16 17:13:49 +01:00
if ( extension_loaded ( 'gettext' )) {
bindtextdomain ( 'tinyboard' , './inc/locale' );
bind_textdomain_codeset ( 'tinyboard' , 'UTF-8' );
textdomain ( 'tinyboard' );
} else {
_bindtextdomain ( 'tinyboard' , './inc/locale' );
_bind_textdomain_codeset ( 'tinyboard' , 'UTF-8' );
_textdomain ( 'tinyboard' );
}
2011-10-11 12:49:14 +02:00
2011-11-18 13:39:13 +01:00
if ( $config [ 'syslog' ])
openlog ( 'tinyboard' , LOG_ODELAY , LOG_SYSLOG ); // open a connection to sysem logger
2011-06-15 20:59:16 +02:00
if ( $config [ 'recaptcha' ])
require_once 'inc/contrib/recaptcha/recaptchalib.php' ;
2011-10-07 07:51:19 +02:00
if ( $config [ 'cache' ][ 'enabled' ])
require_once 'inc/cache.php' ;
2011-04-30 10:52:04 +02:00
}
2011-11-18 13:39:13 +01:00
function basic_error_function_because_the_other_isnt_loaded_yet ( $message , $priority = true ) {
global $config ;
if ( $config [ 'syslog' ] && $priority !== false ) {
// Use LOG_NOTICE instead of LOG_ERR or LOG_WARNING because most error message are not significant.
_syslog ( $priority !== true ? $priority : LOG_NOTICE , $message );
}
2011-04-30 10:52:04 +02:00
// Yes, this is horrible.
die ( '<!DOCTYPE html><html><head><title>Error</title>' .
'<style type="text/css">' .
'body{text-align:center;font-family:arial, helvetica, sans-serif;font-size:10pt;}' .
'p{padding:0;margin:20px 0;}' .
'p.c{font-size:11px;}' .
'</style></head>' .
'<body><h2>Error</h2>' . $message . '<hr/>' .
'<p class="c">This alternative error page is being displayed because the other couldn\'t be found or hasn\'t loaded yet.</p></body></html>' );
2011-04-22 16:24:15 +02:00
}
2011-04-22 16:45:32 +02:00
function fatal_error_handler () {
if ( $error = error_get_last ()) {
2011-04-22 16:55:51 +02:00
if ( $error [ 'type' ] == E_ERROR ) {
if ( function_exists ( 'error' )) {
2011-11-18 13:39:13 +01:00
error ( 'Caught fatal error: ' . $error [ 'message' ] . ' in <strong>' . $error [ 'file' ] . '</strong> on line ' . $error [ 'line' ], LOG_ERR );
2011-04-22 16:55:51 +02:00
} else {
2011-11-18 13:39:13 +01:00
basic_error_function_because_the_other_isnt_loaded_yet ( 'Caught fatal error: ' . $error [ 'message' ] . ' in ' . $error [ 'file' ] . ' on line ' . $error [ 'line' ], LOG_ERR );
2011-04-22 16:55:51 +02:00
}
}
2011-04-22 16:45:32 +02:00
}
}
2011-11-18 13:39:13 +01:00
function _syslog ( $priority , $message ) {
syslog ( $priority , $message . ' - client: ' . $_SERVER [ 'REMOTE_ADDR' ] . ', request: "' . $_SERVER [ 'REQUEST_METHOD' ] . ' ' . $_SERVER [ 'REQUEST_URI' ] . '"' );
}
2011-04-13 15:47:47 +02:00
function loadThemeConfig ( $_theme ) {
global $config ;
2011-05-27 17:47:59 +02:00
if ( ! file_exists ( $config [ 'dir' ][ 'themes' ] . '/' . $_theme . '/info.php' ))
2011-04-14 09:10:59 +02:00
return false ;
2011-04-13 15:47:47 +02:00
// Load theme information into $theme
2011-05-27 17:47:59 +02:00
include $config [ 'dir' ][ 'themes' ] . '/' . $_theme . '/info.php' ;
2011-04-13 15:47:47 +02:00
return $theme ;
}
2011-06-07 07:21:54 +02:00
function rebuildTheme ( $theme , $action ) {
global $config , $_theme ;
$_theme = $theme ;
2011-06-07 10:52:40 +02:00
$theme = loadThemeConfig ( $_theme );
2011-06-07 07:21:54 +02:00
if ( file_exists ( $config [ 'dir' ][ 'themes' ] . '/' . $_theme . '/theme.php' )) {
require_once $config [ 'dir' ][ 'themes' ] . '/' . $_theme . '/theme.php' ;
$theme [ 'build_function' ]( $action , themeSettings ( $_theme ));
}
}
2011-05-27 17:43:04 +02:00
function rebuildThemes ( $action ) {
2011-04-14 20:59:04 +02:00
global $config , $_theme ;
2011-04-14 14:12:56 +02:00
2011-05-27 17:43:04 +02:00
// List themes
$query = query ( " SELECT `theme` FROM `theme_settings` WHERE `name` IS NULL AND `value` IS NULL " ) or error ( db_error ());
while ( $theme = $query -> fetch ()) {
2011-06-07 10:52:40 +02:00
rebuildTheme ( $theme [ 'theme' ], $action );
2011-04-14 09:03:12 +02:00
}
}
2011-05-30 09:35:20 +02:00
function themeSettings ( $theme ) {
$query = prepare ( " SELECT `name`, `value` FROM `theme_settings` WHERE `theme` = :theme AND `name` IS NOT NULL " );
$query -> bindValue ( ':theme' , $theme );
$query -> execute () or error ( db_error ( $query ));
2011-04-13 15:47:47 +02:00
2011-05-30 09:35:20 +02:00
$settings = Array ();
2011-04-13 15:47:47 +02:00
while ( $s = $query -> fetch ()) {
$settings [ $s [ 'name' ]] = $s [ 'value' ];
}
return $settings ;
}
2010-11-04 12:58:51 +01:00
function sprintf3 ( $str , $vars , $delim = '%' ) {
$replaces = array ();
foreach ( $vars as $k => $v ) {
$replaces [ $delim . $k . $delim ] = $v ;
2010-11-04 12:30:23 +01:00
}
2010-11-04 12:58:51 +01:00
return str_replace ( array_keys ( $replaces ),
array_values ( $replaces ), $str );
}
2010-11-30 10:24:09 +01:00
function setupBoard ( $array ) {
2011-02-12 07:25:15 +01:00
global $board , $config ;
2010-11-30 10:24:09 +01:00
$board = Array (
'id' => $array [ 'id' ],
'uri' => $array [ 'uri' ],
'name' => $array [ 'title' ],
'title' => $array [ 'subtitle' ]);
2011-02-12 07:25:15 +01:00
$board [ 'dir' ] = sprintf ( $config [ 'board_path' ], $board [ 'uri' ]);
$board [ 'url' ] = sprintf ( $config [ 'board_abbreviation' ], $board [ 'uri' ]);
2010-11-30 10:24:09 +01:00
2011-02-16 09:41:34 +01:00
loadConfig ();
2011-11-19 17:38:57 +01:00
if ( ! file_exists ( $board [ 'dir' ]))
mkdir ( $board [ 'dir' ], 0777 ) or error ( " Couldn't create " . $board [ 'dir' ] . " . Check permissions. " , true );
if ( ! file_exists ( $board [ 'dir' ] . $config [ 'dir' ][ 'img' ]))
@ mkdir ( $board [ 'dir' ] . $config [ 'dir' ][ 'img' ], 0777 ) or error ( " Couldn't create " . $board [ 'dir' ] . $config [ 'dir' ][ 'img' ] . " . Check permissions. " , true );
if ( ! file_exists ( $board [ 'dir' ] . $config [ 'dir' ][ 'thumb' ]))
@ mkdir ( $board [ 'dir' ] . $config [ 'dir' ][ 'thumb' ], 0777 ) or error ( " Couldn't create " . $board [ 'dir' ] . $config [ 'dir' ][ 'img' ] . " . Check permissions. " , true );
if ( ! file_exists ( $board [ 'dir' ] . $config [ 'dir' ][ 'res' ]))
@ mkdir ( $board [ 'dir' ] . $config [ 'dir' ][ 'res' ], 0777 ) or error ( " Couldn't create " . $board [ 'dir' ] . $config [ 'dir' ][ 'img' ] . " . Check permissions. " , true );
2010-11-30 10:24:09 +01:00
}
2010-11-30 10:38:36 +01:00
function openBoard ( $uri ) {
2011-10-08 08:46:48 +02:00
global $config ;
if ( $config [ 'cache' ][ 'enabled' ] && ( $board = cache :: get ( 'board_' . $uri ))) {
setupBoard ( $board );
return true ;
}
2010-12-17 15:18:03 +01:00
$query = prepare ( " SELECT * FROM `boards` WHERE `uri` = :uri LIMIT 1 " );
$query -> bindValue ( ':uri' , $uri );
$query -> execute () or error ( db_error ( $query ));
if ( $board = $query -> fetch ()) {
2011-10-08 08:46:48 +02:00
if ( $config [ 'cache' ][ 'enabled' ])
cache :: set ( 'board_' . $uri , $board );
2010-12-17 15:18:03 +01:00
setupBoard ( $board );
2010-11-30 10:38:36 +01:00
return true ;
} else return false ;
}
2011-09-20 21:49:07 +02:00
function boardTitle ( $uri ) {
2011-10-08 21:55:56 +02:00
global $config ;
2011-10-08 08:46:48 +02:00
if ( $config [ 'cache' ][ 'enabled' ] && ( $board = cache :: get ( 'board_' . $uri ))) {
return $board [ 'title' ];
}
2011-09-20 21:49:07 +02:00
$query = prepare ( " SELECT `title` FROM `boards` WHERE `uri` = :uri LIMIT 1 " );
$query -> bindValue ( ':uri' , $uri );
$query -> execute () or error ( db_error ( $query ));
if ( $title = $query -> fetch ()) {
return $title [ 'title' ];
} else return false ;
}
2011-05-21 17:12:57 +02:00
function purge ( $uri ) {
2011-05-25 07:21:59 +02:00
global $config , $debug ;
2011-10-03 09:38:19 +02:00
if ( preg_match ( $config [ 'referer_match' ], $config [ 'root' ])) {
2011-05-23 07:29:58 +02:00
$uri = ( str_replace ( '\\' , '/' , dirname ( $_SERVER [ 'REQUEST_URI' ])) == '/' ? '/' : str_replace ( '\\' , '/' , dirname ( $_SERVER [ 'REQUEST_URI' ])) . '/' ) . $uri ;
} else {
$uri = $config [ 'root' ] . $uri ;
}
2011-05-25 07:21:59 +02:00
if ( $config [ 'debug' ]) {
$debug [ 'purge' ][] = $uri ;
}
2011-05-23 07:29:58 +02:00
2011-05-21 17:12:57 +02:00
foreach ( $config [ 'purge' ] as & $purge ) {
2011-05-24 07:39:07 +02:00
$host = & $purge [ 0 ];
$port = & $purge [ 1 ];
2011-05-21 17:19:06 +02:00
$http_host = isset ( $purge [ 2 ]) ? $purge [ 2 ] : $_SERVER [ 'HTTP_HOST' ];
$request = " PURGE { $uri } HTTP/1.0 \r \n Host: { $http_host } \r \n User-Agent: Tinyboard \r \n Connection: Close \r \n \r \n " ;
2011-05-21 17:12:57 +02:00
if ( $fp = fsockopen ( $host , $port , $errno , $errstr , $config [ 'purge_timeout' ])) {
fwrite ( $fp , $request );
fclose ( $fp );
} else {
// Cannot connect?
error ( 'Could not PURGE for ' . $host );
}
}
}
2011-06-04 10:55:05 +02:00
function file_write ( $path , $data , $simple = false , $skip_purge = false ) {
2011-05-20 14:44:35 +02:00
global $config ;
2011-06-04 10:55:05 +02:00
if ( preg_match ( '/^remote:\/\/(.+)\:(.+)$/' , $path , $m )) {
if ( isset ( $config [ 'remote' ][ $m [ 1 ]])) {
require_once 'inc/remote.php' ;
$remote = new Remote ( $config [ 'remote' ][ $m [ 1 ]]);
$remote -> write ( $data , $m [ 2 ]);
return ;
} else {
error ( 'Invalid remote server: ' . $m [ 1 ]);
}
2011-05-20 14:44:35 +02:00
}
2011-06-04 10:55:05 +02:00
if ( ! $fp = fopen ( $path , $simple ? 'w' : 'c' ))
2011-05-20 09:22:08 +02:00
error ( 'Unable to open file for writing: ' . $path );
2011-05-20 14:44:35 +02:00
2011-05-20 09:19:27 +02:00
// File locking
2011-06-04 10:55:05 +02:00
if ( ! $simple && ! flock ( $fp , LOCK_EX )) {
2011-05-20 09:22:08 +02:00
error ( 'Unable to lock file: ' . $path );
2011-05-20 09:19:27 +02:00
}
// Truncate file
2011-06-04 10:55:05 +02:00
if ( ! $simple && ! ftruncate ( $fp , 0 ))
error ( 'Unable to truncate file: ' . $path );
2011-05-20 09:19:27 +02:00
// Write data
2011-06-04 10:55:05 +02:00
if ( fwrite ( $fp , $data ) === false )
error ( 'Unable to write to file: ' . $path );
// Unlock
if ( ! $simple )
flock ( $fp , LOCK_UN );
// Close
if ( ! fclose ( $fp ))
error ( 'Unable to close file: ' . $path );
2011-05-21 17:13:44 +02:00
2011-06-04 10:55:05 +02:00
if ( ! $skip_purge && isset ( $config [ 'purge' ]) && isset ( $_SERVER [ 'HTTP_HOST' ])) {
2011-05-21 17:13:44 +02:00
// Purge cache
if ( basename ( $path ) == $config [ 'file_index' ]) {
// Index file (/index.html); purge "/" as well
2011-05-21 17:31:29 +02:00
$uri = dirname ( $path );
// root
if ( $uri == '.' )
$uri = '' ;
else
$uri .= '/' ;
purge ( $uri );
2011-05-21 17:13:44 +02:00
}
purge ( $path );
}
2011-05-20 09:19:27 +02:00
}
2011-05-23 07:29:58 +02:00
function file_unlink ( $path ) {
2011-05-25 07:21:59 +02:00
global $config , $debug ;
if ( $config [ 'debug' ]) {
if ( ! isset ( $debug [ 'unlink' ]))
$debug [ 'unlink' ] = Array ();
$debug [ 'unlink' ][] = $path ;
}
2011-05-23 07:29:58 +02:00
2011-06-15 19:48:29 +02:00
$ret = @ unlink ( $path );
2011-10-08 17:58:56 +02:00
if ( isset ( $config [ 'purge' ]) && $path [ 0 ] != '/' && isset ( $_SERVER [ 'HTTP_HOST' ])) {
2011-05-23 07:29:58 +02:00
// Purge cache
if ( basename ( $path ) == $config [ 'file_index' ]) {
// Index file (/index.html); purge "/" as well
$uri = dirname ( $path );
// root
if ( $uri == '.' )
$uri = '' ;
else
$uri .= '/' ;
purge ( $uri );
}
purge ( $path );
}
2011-06-15 19:48:29 +02:00
return $ret ;
2011-05-23 07:29:58 +02:00
}
2010-12-02 08:15:50 +01:00
function listBoards () {
2011-10-08 08:46:48 +02:00
global $config ;
if ( $config [ 'cache' ][ 'enabled' ] && ( $boards = cache :: get ( 'all_boards' )))
return $boards ;
2011-01-20 09:24:23 +01:00
$query = query ( " SELECT * FROM `boards` ORDER BY `uri` " ) or error ( db_error ());
2010-12-17 15:18:03 +01:00
$boards = $query -> fetchAll ();
2011-10-08 08:46:48 +02:00
if ( $config [ 'cache' ][ 'enabled' ])
cache :: set ( 'all_boards' , $boards );
2010-12-02 08:15:50 +01:00
return $boards ;
}
2011-01-18 07:11:28 +01:00
function checkFlood ( $post ) {
2011-02-12 07:25:15 +01:00
global $board , $config ;
2011-01-18 07:11:28 +01:00
2011-11-16 09:59:21 +01:00
$query = prepare ( sprintf ( " SELECT * FROM `posts_%s` WHERE (`ip` = :ip AND `time` >= :floodtime) OR (`ip` = :ip AND `body` != '' AND `body` = :body AND `time` >= :floodsameiptime) OR (`body` != '' AND `body` = :body AND `time` >= :floodsametime) LIMIT 1 " , $board [ 'uri' ]));
2011-01-18 07:11:28 +01:00
$query -> bindValue ( ':ip' , $_SERVER [ 'REMOTE_ADDR' ]);
$query -> bindValue ( ':body' , $post [ 'body' ], PDO :: PARAM_INT );
2011-02-12 07:25:15 +01:00
$query -> bindValue ( ':floodtime' , time () - $config [ 'flood_time' ], PDO :: PARAM_INT );
$query -> bindValue ( ':floodsameiptime' , time () - $config [ 'flood_time_ip' ], PDO :: PARAM_INT );
$query -> bindValue ( ':floodsametime' , time () - $config [ 'flood_time_same' ], PDO :: PARAM_INT );
2011-01-18 07:11:28 +01:00
$query -> execute () or error ( db_error ( $query ));
return ( bool ) $query -> fetch ();
}
2011-01-01 15:37:52 +01:00
function until ( $timestamp ) {
$difference = $timestamp - time ();
if ( $difference < 60 ) {
return $difference . ' second' . ( $difference != 1 ? 's' : '' );
} elseif ( $difference < 60 * 60 ) {
return ( $num = round ( $difference / ( 60 ))) . ' minute' . ( $num != 1 ? 's' : '' );
} elseif ( $difference < 60 * 60 * 24 ) {
return ( $num = round ( $difference / ( 60 * 60 ))) . ' hour' . ( $num != 1 ? 's' : '' );
} elseif ( $difference < 60 * 60 * 24 * 7 ) {
return ( $num = round ( $difference / ( 60 * 60 * 24 ))) . ' day' . ( $num != 1 ? 's' : '' );
2011-01-02 17:27:34 +01:00
} elseif ( $difference < 60 * 60 * 24 * 365 ) {
2011-01-01 15:37:52 +01:00
return ( $num = round ( $difference / ( 60 * 60 * 24 * 7 ))) . ' week' . ( $num != 1 ? 's' : '' );
2011-03-01 11:26:04 +01:00
} else {
return ( $num = round ( $difference / ( 60 * 60 * 24 * 365 ))) . ' year' . ( $num != 1 ? 's' : '' );
}
}
function ago ( $timestamp ) {
$difference = time () - $timestamp ;
if ( $difference < 60 ) {
return $difference . ' second' . ( $difference != 1 ? 's' : '' );
} elseif ( $difference < 60 * 60 ) {
return ( $num = round ( $difference / ( 60 ))) . ' minute' . ( $num != 1 ? 's' : '' );
} elseif ( $difference < 60 * 60 * 24 ) {
return ( $num = round ( $difference / ( 60 * 60 ))) . ' hour' . ( $num != 1 ? 's' : '' );
} elseif ( $difference < 60 * 60 * 24 * 7 ) {
return ( $num = round ( $difference / ( 60 * 60 * 24 ))) . ' day' . ( $num != 1 ? 's' : '' );
} elseif ( $difference < 60 * 60 * 24 * 365 ) {
return ( $num = round ( $difference / ( 60 * 60 * 24 * 7 ))) . ' week' . ( $num != 1 ? 's' : '' );
2011-01-01 15:37:52 +01:00
} else {
2011-01-02 17:27:34 +01:00
return ( $num = round ( $difference / ( 60 * 60 * 24 * 365 ))) . ' year' . ( $num != 1 ? 's' : '' );
2011-01-01 15:37:52 +01:00
}
}
function formatDate ( $timestamp ) {
return date ( 'jS F, Y' , $timestamp );
}
2011-04-22 16:24:15 +02:00
function displayBan ( $ban ) {
2011-02-12 07:25:15 +01:00
global $config ;
2011-04-22 16:24:15 +02:00
$body = ' < div class = " ban " >
2011-01-01 15:37:52 +01:00
< h2 > You are banned ! ; _ ; </ h2 >
2011-07-27 05:40:27 +02:00
< p > You have been banned from ' .
( ! isset ( $ban [ 'uri' ]) ?
'all boards' :
'<strong>' . sprintf ( $config [ 'board_abbreviation' ], $ban [ 'uri' ]) . '</strong>'
) .
' ' .
2011-01-01 15:37:52 +01:00
( $ban [ 'reason' ] ? 'for the following reason:' : 'for an unspecified reason.' ) .
'</p>' .
( $ban [ 'reason' ] ?
'<p class="reason">' .
$ban [ 'reason' ] .
'</p>'
: '' ) .
'<p>Your ban was filed on <strong>' .
formatDate ( $ban [ 'set' ]) .
2011-01-03 05:00:14 +01:00
'</strong>, and <span id="expires">' .
2011-01-01 15:37:52 +01:00
( $ban [ 'expires' ] ?
2011-01-03 05:00:14 +01:00
'expires <span id="countdown">' . until ( $ban [ 'expires' ]) . '</span> from now, which is on <strong>' .
2011-01-01 15:37:52 +01:00
formatDate ( $ban [ 'expires' ]) .
2011-01-03 05:00:14 +01:00
' </ strong >
2011-01-02 17:27:34 +01:00
< script >
// return date("jS F, Y", $timestamp);
var secondsLeft = ' . ($ban[' expires '] - time()) . '
var end = new Date () . getTime () + secondsLeft * 1000 ;
function updateExpiresTime () {
2011-01-03 05:00:14 +01:00
countdown . firstChild . nodeValue = until ( end );
2011-01-02 17:27:34 +01:00
}
function until ( end ) {
var now = new Date () . getTime ();
var diff = Math . round (( end - now ) / 1000 ); // in seconds
2011-01-03 05:00:14 +01:00
if ( diff < 0 ) {
document . getElementById ( " expires " ) . innerHTML = " has since expired. Refresh the page to continue. " ;
//location.reload(true);
clearInterval ( int );
return " " ;
} else if ( diff < 60 ) {
2011-01-02 17:27:34 +01:00
return diff + " second " + ( diff == 1 ? " " : " s " );
} else if ( diff < 60 * 60 ) {
return ( num = Math . round ( diff / ( 60 ))) + " minute " + ( num == 1 ? " " : " s " );
} else if ( diff < 60 * 60 * 24 ) {
return ( num = Math . round ( diff / ( 60 * 60 ))) + " hour " + ( num == 1 ? " " : " s " );
} else if ( diff < 60 * 60 * 24 * 7 ) {
return ( num = Math . round ( diff / ( 60 * 60 * 24 ))) + " day " + ( num == 1 ? " " : " s " );
} else if ( diff < 60 * 60 * 24 * 365 ) {
return ( num = Math . round ( diff / ( 60 * 60 * 24 * 7 ))) + " week " + ( num == 1 ? " " : " s " );
} else {
2011-03-27 13:40:29 +02:00
return ( num = Math . round ( diff / ( 60 * 60 * 24 * 365 ))) + " year " + ( num == 1 ? " " : " s " );
2011-01-02 17:27:34 +01:00
}
}
2011-01-03 05:00:14 +01:00
var countdown = document . getElementById ( " countdown " );
2011-01-02 17:27:34 +01:00
updateExpiresTime ();
2011-01-03 05:00:14 +01:00
var int = setInterval ( updateExpiresTime , 1000 );
2011-01-02 17:27:34 +01:00
</ script > '
2011-01-03 05:00:14 +01:00
: '<em>will not expire</em>.' ) .
' </ span ></ p >
2011-01-01 15:37:52 +01:00
< p > Your IP address is < strong > ' . $_SERVER[' REMOTE_ADDR '] . ' </ strong >.</ p >
2011-04-22 16:24:15 +02:00
</ div > ' ;
// Show banned page and exit
die ( Element ( 'page.html' , Array (
'config' => $config ,
'title' => 'Banned' ,
'subtitle' => 'You are banned!' ,
'body' => $body
)
));
}
2011-07-27 05:40:27 +02:00
function checkBan ( $board = 0 ) {
2011-10-07 07:51:19 +02:00
global $config ;
2011-04-22 16:24:15 +02:00
if ( ! isset ( $_SERVER [ 'REMOTE_ADDR' ])) {
// Server misconfiguration
return ;
}
2011-08-13 08:21:45 +02:00
$query = prepare ( " SELECT `set`, `expires`, `reason`, `board`, `uri`, `bans`.`id` FROM `bans` LEFT JOIN `boards` ON `boards`.`id` = `board` WHERE (`board` IS NULL OR `uri` = :board) AND `ip` = :ip ORDER BY `expires` IS NULL DESC, `expires` DESC, `expires` DESC LIMIT 1 " );
2011-04-22 16:24:15 +02:00
$query -> bindValue ( ':ip' , $_SERVER [ 'REMOTE_ADDR' ]);
2011-07-27 05:40:27 +02:00
$query -> bindValue ( ':board' , $board );
2011-04-22 16:24:15 +02:00
$query -> execute () or error ( db_error ( $query ));
if ( $query -> rowCount () < 1 && $config [ 'ban_range' ]) {
2011-07-27 05:40:27 +02:00
$query = prepare ( " SELECT `set`, `expires`, `reason`, `board`, `uri` FROM `bans` LEFT JOIN `boards` ON `boards`.`id` = `board` WHERE (`board` IS NULL OR `uri` = :board) AND :ip REGEXP CONCAT('^', REPLACE(REPLACE(`ip`, '.', ' \\ .'), '*', '[0-9]*'), ' $ ') ORDER BY `expires` IS NULL DESC, `expires` DESC LIMIT 1 " );
2011-04-22 16:24:15 +02:00
$query -> bindValue ( ':ip' , $_SERVER [ 'REMOTE_ADDR' ]);
2011-07-27 05:40:27 +02:00
$query -> bindValue ( ':board' , $board );
2011-04-22 16:24:15 +02:00
$query -> execute () or error ( db_error ( $query ));
}
if ( $ban = $query -> fetch ()) {
if ( $ban [ 'expires' ] && $ban [ 'expires' ] < time ()) {
// Ban expired
2011-08-13 08:21:45 +02:00
$query = prepare ( " DELETE FROM `bans` WHERE `id` = :id LIMIT 1 " );
$query -> bindValue ( ':id' , $ban [ 'id' ], PDO :: PARAM_INT );
2011-04-22 16:24:15 +02:00
$query -> execute () or error ( db_error ( $query ));
return ;
}
2011-01-01 15:37:52 +01:00
2011-04-22 16:24:15 +02:00
displayBan ( $ban );
2011-01-01 15:37:52 +01:00
}
}
2011-01-02 15:23:34 +01:00
function threadLocked ( $id ) {
global $board ;
$query = prepare ( sprintf ( " SELECT `locked` FROM `posts_%s` WHERE `id` = :id AND `thread` IS NULL LIMIT 1 " , $board [ 'uri' ]));
$query -> bindValue ( ':id' , $id , PDO :: PARAM_INT );
$query -> execute () or error ( db_error ());
if ( ! $post = $query -> fetch ()) {
// Non-existant, so it can't be locked...
return false ;
}
return ( bool ) $post [ 'locked' ];
}
2011-10-10 13:37:39 +02:00
function threadSageLocked ( $id ) {
global $board ;
$query = prepare ( sprintf ( " SELECT `sage` FROM `posts_%s` WHERE `id` = :id AND `thread` IS NULL LIMIT 1 " , $board [ 'uri' ]));
$query -> bindValue ( ':id' , $id , PDO :: PARAM_INT );
$query -> execute () or error ( db_error ());
if ( ! $post = $query -> fetch ()) {
// Non-existant, so it can't be locked...
return false ;
}
return ( bool ) $post [ 'sage' ];
}
2010-11-30 13:12:54 +01:00
function threadExists ( $id ) {
2010-12-17 15:18:03 +01:00
global $board ;
$query = prepare ( sprintf ( " SELECT 1 FROM `posts_%s` WHERE `id` = :id AND `thread` IS NULL LIMIT 1 " , $board [ 'uri' ]));
2010-12-18 05:07:07 +01:00
$query -> bindValue ( ':id' , $id , PDO :: PARAM_INT );
2010-12-17 15:18:03 +01:00
$query -> execute () or error ( db_error ());
2010-11-30 13:12:54 +01:00
2010-12-17 15:18:03 +01:00
if ( $query -> rowCount ()) {
2010-11-30 13:12:54 +01:00
return true ;
} else return false ;
}
2010-11-04 12:58:51 +01:00
function post ( $post , $OP ) {
2010-12-17 15:18:03 +01:00
global $pdo , $board ;
2011-10-10 13:37:39 +02:00
$query = prepare ( sprintf ( " INSERT INTO `posts_%s` VALUES ( NULL, :thread, :subject, :email, :name, :trip, :capcode, :body, :time, :time, :thumb, :thumbwidth, :thumbheight, :file, :width, :height, :filesize, :filename, :filehash, :password, :ip, :sticky, :locked, 0, :embed) " , $board [ 'uri' ]));
2010-12-17 15:18:03 +01:00
// Basic stuff
$query -> bindValue ( ':subject' , $post [ 'subject' ]);
$query -> bindValue ( ':email' , $post [ 'email' ]);
$query -> bindValue ( ':name' , $post [ 'name' ]);
$query -> bindValue ( ':trip' , $post [ 'trip' ]);
$query -> bindValue ( ':body' , $post [ 'body' ]);
2011-11-18 17:40:23 +01:00
$query -> bindValue ( ':time' , isset ( $post [ 'time' ]) ? $post [ 'time' ] : time (), PDO :: PARAM_INT );
2010-12-17 15:18:03 +01:00
$query -> bindValue ( ':password' , $post [ 'password' ]);
2011-11-18 17:40:23 +01:00
$query -> bindValue ( ':ip' , isset ( $post [ 'ip' ]) ? $post [ 'ip' ] : $_SERVER [ 'REMOTE_ADDR' ]);
2011-01-02 11:15:59 +01:00
if ( $post [ 'mod' ] && $post [ 'sticky' ]) {
$query -> bindValue ( ':sticky' , 1 , PDO :: PARAM_INT );
} else {
$query -> bindValue ( ':sticky' , 0 , PDO :: PARAM_INT );
}
2010-12-17 15:18:03 +01:00
2011-01-02 12:25:17 +01:00
if ( $post [ 'mod' ] && $post [ 'locked' ]) {
$query -> bindValue ( ':locked' , 1 , PDO :: PARAM_INT );
} else {
$query -> bindValue ( ':locked' , 0 , PDO :: PARAM_INT );
}
2011-08-13 08:21:45 +02:00
if ( $post [ 'mod' ] && isset ( $post [ 'capcode' ]) && $post [ 'capcode' ]) {
2011-04-12 13:08:54 +02:00
$query -> bindValue ( ':capcode' , $post [ 'capcode' ], PDO :: PARAM_INT );
} else {
$query -> bindValue ( ':capcode' , NULL , PDO :: PARAM_NULL );
}
2011-05-18 09:05:48 +02:00
if ( ! empty ( $post [ 'embed' ])) {
$query -> bindValue ( ':embed' , $post [ 'embed' ]);
} else {
$query -> bindValue ( ':embed' , NULL , PDO :: PARAM_NULL );
}
2010-11-04 12:58:51 +01:00
if ( $OP ) {
2010-12-17 15:18:03 +01:00
// No parent thread, image
$query -> bindValue ( ':thread' , null , PDO :: PARAM_NULL );
2010-11-04 12:58:51 +01:00
} else {
2010-12-17 15:18:03 +01:00
$query -> bindValue ( ':thread' , $post [ 'thread' ], PDO :: PARAM_INT );
2010-11-04 12:58:51 +01:00
}
2010-12-17 15:18:03 +01:00
if ( $post [ 'has_file' ]) {
$query -> bindValue ( ':thumb' , $post [ 'thumb' ]);
$query -> bindValue ( ':thumbwidth' , $post [ 'thumbwidth' ], PDO :: PARAM_INT );
$query -> bindValue ( ':thumbheight' , $post [ 'thumbheight' ], PDO :: PARAM_INT );
$query -> bindValue ( ':file' , $post [ 'file' ]);
$query -> bindValue ( ':width' , $post [ 'width' ], PDO :: PARAM_INT );
$query -> bindValue ( ':height' , $post [ 'height' ], PDO :: PARAM_INT );
$query -> bindValue ( ':filesize' , $post [ 'filesize' ], PDO :: PARAM_INT );
2011-01-01 10:45:18 +01:00
$query -> bindValue ( ':filename' , $post [ 'filename' ]);
2011-07-08 19:02:43 +02:00
$query -> bindValue ( ':filehash' , $post [ 'filehash' ]);
2010-12-17 15:18:03 +01:00
} else {
$query -> bindValue ( ':thumb' , null , PDO :: PARAM_NULL );
$query -> bindValue ( ':thumbwidth' , null , PDO :: PARAM_NULL );
$query -> bindValue ( ':thumbheight' , null , PDO :: PARAM_NULL );
$query -> bindValue ( ':file' , null , PDO :: PARAM_NULL );
$query -> bindValue ( ':width' , null , PDO :: PARAM_NULL );
$query -> bindValue ( ':height' , null , PDO :: PARAM_NULL );
$query -> bindValue ( ':filesize' , null , PDO :: PARAM_NULL );
$query -> bindValue ( ':filename' , null , PDO :: PARAM_NULL );
$query -> bindValue ( ':filehash' , null , PDO :: PARAM_NULL );
}
$query -> execute () or error ( db_error ( $query ));
return $pdo -> lastInsertId ();
}
function bumpThread ( $id ) {
global $board ;
$query = prepare ( sprintf ( " UPDATE `posts_%s` SET `bump` = :time WHERE `id` = :id AND `thread` IS NULL " , $board [ 'uri' ]));
$query -> bindValue ( ':time' , time (), PDO :: PARAM_INT );
$query -> bindValue ( ':id' , $id , PDO :: PARAM_INT );
$query -> execute () or error ( db_error ( $query ));
2010-11-04 12:58:51 +01:00
}
2011-01-18 14:41:43 +01:00
2011-01-21 03:14:55 +01:00
// Remove file from post
function deleteFile ( $id , $remove_entirely_if_already = true ) {
2011-02-12 07:25:15 +01:00
global $board , $config ;
2011-01-21 03:14:55 +01:00
2011-06-04 09:46:01 +02:00
$query = prepare ( sprintf ( " SELECT `thread`,`thumb`,`file` FROM `posts_%s` WHERE `id` = :id LIMIT 1 " , $board [ 'uri' ]));
2011-01-21 03:14:55 +01:00
$query -> bindValue ( ':id' , $id , PDO :: PARAM_INT );
$query -> execute () or error ( db_error ( $query ));
if ( $query -> rowCount () < 1 ) {
2011-02-12 07:25:15 +01:00
error ( $config [ 'error' ][ 'invalidpost' ]);
2011-01-21 03:14:55 +01:00
}
$post = $query -> fetch ();
2011-06-04 09:46:01 +02:00
if ( $post [ 'file' ] == 'deleted' && ! $post [ 'thread' ])
return ; // Can't delete OP's image completely.
2011-06-04 13:45:10 +02:00
$query = prepare ( sprintf ( " UPDATE `posts_%s` SET `thumb` = NULL, `thumbwidth` = NULL, `thumbheight` = NULL, `filewidth` = NULL, `fileheight` = NULL, `filesize` = NULL, `filename` = NULL, `filehash` = NULL, `file` = :file WHERE `id` = :id " , $board [ 'uri' ]));
2011-01-21 03:14:55 +01:00
if ( $post [ 'file' ] == 'deleted' && $remove_entirely_if_already ) {
// Already deleted; remove file fully
$query -> bindValue ( ':file' , null , PDO :: PARAM_NULL );
} else {
// Delete thumbnail
2011-05-23 07:29:58 +02:00
file_unlink ( $board [ 'dir' ] . $config [ 'dir' ][ 'thumb' ] . $post [ 'thumb' ]);
2011-01-21 03:14:55 +01:00
// Delete file
2011-05-23 07:29:58 +02:00
file_unlink ( $board [ 'dir' ] . $config [ 'dir' ][ 'img' ] . $post [ 'file' ]);
2011-01-21 03:14:55 +01:00
// Set file to 'deleted'
$query -> bindValue ( ':file' , 'deleted' , PDO :: PARAM_INT );
}
// Update database
$query -> bindValue ( ':id' , $id , PDO :: PARAM_INT );
$query -> execute () or error ( db_error ( $query ));
2011-06-04 09:46:01 +02:00
if ( $post [ 'thread' ])
buildThread ( $post [ 'thread' ]);
2011-01-21 03:14:55 +01:00
}
2011-01-18 14:41:43 +01:00
// Delete a post (reply or thread)
2011-02-11 13:02:30 +01:00
function deletePost ( $id , $error_if_doesnt_exist = true ) {
2011-02-12 07:25:15 +01:00
global $board , $config ;
2011-01-18 14:41:43 +01:00
// Select post and replies (if thread) in one query
$query = prepare ( sprintf ( " SELECT `id`,`thread`,`thumb`,`file` FROM `posts_%s` WHERE `id` = :id OR `thread` = :id " , $board [ 'uri' ]));
$query -> bindValue ( ':id' , $id , PDO :: PARAM_INT );
$query -> execute () or error ( db_error ( $query ));
if ( $query -> rowCount () < 1 ) {
2011-02-11 13:02:30 +01:00
if ( $error_if_doesnt_exist )
2011-02-12 07:25:15 +01:00
error ( $config [ 'error' ][ 'invalidpost' ]);
2011-02-11 13:02:30 +01:00
else return false ;
2011-01-18 14:41:43 +01:00
}
// Delete posts and maybe replies
while ( $post = $query -> fetch ()) {
if ( ! $post [ 'thread' ]) {
// Delete thread HTML page
2011-05-23 07:29:58 +02:00
file_unlink ( $board [ 'dir' ] . $config [ 'dir' ][ 'res' ] . sprintf ( $config [ 'file_page' ], $post [ 'id' ]));
2011-01-18 14:41:43 +01:00
} elseif ( $query -> rowCount () == 1 ) {
// Rebuild thread
2011-05-24 07:39:07 +02:00
$rebuild = & $post [ 'thread' ];
2011-01-18 14:41:43 +01:00
}
if ( $post [ 'thumb' ]) {
// Delete thumbnail
2011-05-23 07:29:58 +02:00
file_unlink ( $board [ 'dir' ] . $config [ 'dir' ][ 'thumb' ] . $post [ 'thumb' ]);
2011-01-18 14:41:43 +01:00
}
if ( $post [ 'file' ]) {
// Delete file
2011-05-23 07:29:58 +02:00
file_unlink ( $board [ 'dir' ] . $config [ 'dir' ][ 'img' ] . $post [ 'file' ]);
2011-01-18 14:41:43 +01:00
}
}
$query = prepare ( sprintf ( " DELETE FROM `posts_%s` WHERE `id` = :id OR `thread` = :id " , $board [ 'uri' ]));
$query -> bindValue ( ':id' , $id , PDO :: PARAM_INT );
$query -> execute () or error ( db_error ( $query ));
if ( isset ( $rebuild )) {
buildThread ( $rebuild );
}
2011-02-11 13:02:30 +01:00
return true ;
2011-01-18 14:41:43 +01:00
}
function clean () {
2011-02-12 07:25:15 +01:00
global $board , $config ;
$offset = round ( $config [ 'max_pages' ] * $config [ 'threads_per_page' ]);
2011-01-18 14:41:43 +01:00
// I too wish there was an easier way of doing this...
$query = prepare ( sprintf ( " SELECT `id` FROM `posts_%s` WHERE `thread` IS NULL ORDER BY `sticky` DESC, `bump` DESC LIMIT :offset, 9001 " , $board [ 'uri' ]));
$query -> bindValue ( ':offset' , $offset , PDO :: PARAM_INT );
$query -> execute () or error ( db_error ( $query ));
while ( $post = $query -> fetch ()) {
deletePost ( $post [ 'id' ]);
}
}
2010-12-12 16:21:56 +01:00
function index ( $page , $mod = false ) {
2011-10-07 07:51:19 +02:00
global $board , $config , $debug ;
2010-11-04 15:39:02 +01:00
2010-11-02 11:57:33 +01:00
$body = '' ;
2011-02-12 07:25:15 +01:00
$offset = round ( $page * $config [ 'threads_per_page' ] - $config [ 'threads_per_page' ]);
2010-12-17 15:18:03 +01:00
2011-05-25 07:21:59 +02:00
$query = prepare ( sprintf ( " SELECT * FROM `posts_%s` WHERE `thread` IS NULL ORDER BY `sticky` DESC, `bump` DESC LIMIT :offset,:threads_per_page " , $board [ 'uri' ]));
$query -> bindValue ( ':offset' , $offset , PDO :: PARAM_INT );
$query -> bindValue ( ':threads_per_page' , $config [ 'threads_per_page' ], PDO :: PARAM_INT );
2010-12-17 15:18:03 +01:00
$query -> execute () or error ( db_error ( $query ));
if ( $query -> rowcount () < 1 && $page > 1 ) return false ;
while ( $th = $query -> fetch ()) {
2011-10-07 07:51:19 +02:00
if ( ! $mod && $config [ 'cache' ][ 'enabled' ]) {
if ( $built = cache :: get ( " thread_index_ { $board [ 'uri' ] } _ { $th [ 'id' ] } " )) {
2011-11-16 10:41:16 +01:00
$body .= $built ;
2011-10-05 15:16:28 +02:00
continue ;
}
}
2011-10-10 13:37:39 +02:00
$thread = new Thread ( $th [ 'id' ], $th [ 'subject' ], $th [ 'email' ], $th [ 'name' ], $th [ 'trip' ], $th [ 'capcode' ], $th [ 'body' ], $th [ 'time' ], $th [ 'thumb' ], $th [ 'thumbwidth' ], $th [ 'thumbheight' ], $th [ 'file' ], $th [ 'filewidth' ], $th [ 'fileheight' ], $th [ 'filesize' ], $th [ 'filename' ], $th [ 'ip' ], $th [ 'sticky' ], $th [ 'locked' ], $th [ 'sage' ], $th [ 'embed' ], $mod ? '?/' : $config [ 'root' ], $mod );
2011-05-20 07:37:56 +02:00
2011-05-25 07:21:59 +02:00
$posts = prepare ( sprintf ( " SELECT * FROM `posts_%s` WHERE `thread` = :id ORDER BY `id` DESC LIMIT :limit " , $board [ 'uri' ]));
$posts -> bindValue ( ':id' , $th [ 'id' ]);
$posts -> bindValue ( ':limit' , ( $th [ 'sticky' ] ? $config [ 'threads_preview_sticky' ] : $config [ 'threads_preview' ]), PDO :: PARAM_INT );
2010-12-17 15:18:03 +01:00
$posts -> execute () or error ( db_error ( $posts ));
2011-02-17 07:07:36 +01:00
$num_images = 0 ;
while ( $po = $posts -> fetch ()) {
if ( $po [ 'file' ])
$num_images ++ ;
2011-05-19 13:42:53 +02:00
2011-05-18 09:05:48 +02:00
$thread -> add ( new Post ( $po [ 'id' ], $th [ 'id' ], $po [ 'subject' ], $po [ 'email' ], $po [ 'name' ], $po [ 'trip' ], $po [ 'capcode' ], $po [ 'body' ], $po [ 'time' ], $po [ 'thumb' ], $po [ 'thumbwidth' ], $po [ 'thumbheight' ], $po [ 'file' ], $po [ 'filewidth' ], $po [ 'fileheight' ], $po [ 'filesize' ], $po [ 'filename' ], $po [ 'ip' ], $po [ 'embed' ], $mod ? '?/' : $config [ 'root' ], $mod ));
2011-02-17 07:07:36 +01:00
}
2011-02-16 13:32:43 +01:00
if ( $posts -> rowCount () == ( $th [ 'sticky' ] ? $config [ 'threads_preview_sticky' ] : $config [ 'threads_preview' ])) {
2011-02-17 07:07:36 +01:00
$count = prepare ( sprintf ( " SELECT COUNT(`id`) as `num` FROM `posts_%s` WHERE `thread` = :thread UNION ALL SELECT COUNT(`id`) FROM `posts_%s` WHERE `file` IS NOT NULL AND `thread` = :thread " , $board [ 'uri' ], $board [ 'uri' ]));
$count -> bindValue ( ':thread' , $th [ 'id' ], PDO :: PARAM_INT );
2010-12-17 15:18:03 +01:00
$count -> execute () or error ( db_error ( $count ));
2011-02-17 07:07:36 +01:00
$c = $count -> fetch ();
$thread -> omitted = $c [ 'num' ] - ( $th [ 'sticky' ] ? $config [ 'threads_preview_sticky' ] : $config [ 'threads_preview' ]);
$c = $count -> fetch ();
$thread -> omitted_images = $c [ 'num' ] - $num_images ;
2010-11-02 11:57:33 +01:00
}
2010-12-17 15:18:03 +01:00
2010-11-02 11:57:33 +01:00
$thread -> posts = array_reverse ( $thread -> posts );
2011-05-20 07:37:56 +02:00
2011-10-05 15:16:28 +02:00
$body .= '<div id="thread_' . $thread -> id . '">' . $thread -> build ( true ) . '</div>' ;
2010-11-02 11:57:33 +01:00
}
2010-12-17 15:18:03 +01:00
2011-02-19 10:16:13 +01:00
return Array (
'board' => $board ,
'body' => $body ,
'post_url' => $config [ 'post_url' ],
2011-03-26 08:23:15 +01:00
'config' => $config ,
2011-02-19 10:16:13 +01:00
'boardlist' => createBoardlist ( $mod )
);
2010-11-02 11:57:33 +01:00
}
2010-12-16 11:28:38 +01:00
2011-02-17 08:37:18 +01:00
function getPageButtons ( $pages , $mod = false ) {
global $config , $board ;
$btn = Array ();
$root = ( $mod ? '?/' : $config [ 'root' ]) . $board [ 'dir' ];
foreach ( $pages as $num => $page ) {
if ( isset ( $page [ 'selected' ])) {
// Previous button
if ( $num == 0 ) {
// There is no previous page.
2011-10-11 12:49:14 +02:00
$btn [ 'prev' ] = _ ( 'Previous' );
2011-02-17 08:37:18 +01:00
} else {
2011-02-22 07:52:26 +01:00
$loc = ( $mod ? '?/' . $board [ 'uri' ] . '/' : '' ) .
( $num == 1 ?
$config [ 'file_index' ]
:
sprintf ( $config [ 'file_page' ], $num )
);
$btn [ 'prev' ] = '<form action="' . ( $mod ? '' : $root . $loc ) . '" method="get">' .
( $mod ?
'<input type="hidden" name="status" value="301" />' .
'<input type="hidden" name="r" value="' . htmlentities ( $loc ) . '" />'
: '' ) .
2011-10-11 12:49:14 +02:00
'<input type="submit" value="' . _ ( 'Previous' ) . '" /></form>' ;
2011-02-17 08:37:18 +01:00
}
if ( $num == count ( $pages ) - 1 ) {
// There is no next page.
2011-10-11 12:49:14 +02:00
$btn [ 'next' ] = _ ( 'Next' );
2011-02-17 08:37:18 +01:00
} else {
2011-02-22 07:52:26 +01:00
$loc = ( $mod ? '?/' . $board [ 'uri' ] . '/' : '' ) . sprintf ( $config [ 'file_page' ], $num + 2 );
$btn [ 'next' ] = '<form action="' . ( $mod ? '' : $root . $loc ) . '" method="get">' .
( $mod ?
'<input type="hidden" name="status" value="301" />' .
'<input type="hidden" name="r" value="' . htmlentities ( $loc ) . '" />'
: '' ) .
2011-10-11 12:49:14 +02:00
'<input type="submit" value="' . _ ( 'Next' ) . '" /></form>' ;
2011-02-17 08:37:18 +01:00
}
}
}
return $btn ;
}
2010-12-16 11:28:38 +01:00
function getPages ( $mod = false ) {
2011-02-12 07:25:15 +01:00
global $board , $config ;
2010-12-16 11:28:38 +01:00
2010-12-17 15:18:03 +01:00
// Count threads
$query = query ( sprintf ( " SELECT COUNT(`id`) as `num` FROM `posts_%s` WHERE `thread` IS NULL " , $board [ 'uri' ])) or error ( db_error ());
$count = current ( $query -> fetch ());
2011-02-12 07:25:15 +01:00
$count = floor (( $config [ 'threads_per_page' ] + $count - 1 ) / $config [ 'threads_per_page' ]);
2011-02-17 07:14:57 +01:00
if ( $count < 1 ) $count = 1 ;
2010-11-02 11:57:33 +01:00
$pages = Array ();
2011-02-12 07:25:15 +01:00
for ( $x = 0 ; $x < $count && $x < $config [ 'max_pages' ]; $x ++ ) {
2011-02-16 13:32:43 +01:00
$pages [] = Array (
'num' => $x + 1 ,
'link' => $x == 0 ? ( $mod ? '?/' : $config [ 'root' ]) . $board [ 'dir' ] . $config [ 'file_index' ] : ( $mod ? '?/' : $config [ 'root' ]) . $board [ 'dir' ] . sprintf ( $config [ 'file_page' ], $x + 1 )
);
2010-12-16 11:28:38 +01:00
}
return $pages ;
}
2011-01-18 14:41:43 +01:00
function makerobot ( $body ) {
2011-02-12 07:25:15 +01:00
global $config ;
2011-01-18 14:41:43 +01:00
$body = strtolower ( $body );
// Leave only letters
$body = preg_replace ( '/[^a-z]/i' , '' , $body );
// Remove repeating characters
2011-02-12 07:25:15 +01:00
if ( $config [ 'robot_strip_repeating' ])
2011-01-18 14:41:43 +01:00
$body = preg_replace ( '/(.)\\1+/' , '$1' , $body );
return sha1 ( $body );
}
function checkRobot ( $body ) {
2011-11-16 09:59:21 +01:00
if ( empty ( $body ))
return true ;
2011-01-18 14:41:43 +01:00
$body = makerobot ( $body );
$query = prepare ( " SELECT 1 FROM `robot` WHERE `hash` = :hash LIMIT 1 " );
$query -> bindValue ( ':hash' , $body );
$query -> execute () or error ( db_error ( $query ));
2011-11-16 09:59:21 +01:00
2011-01-18 14:41:43 +01:00
if ( $query -> fetch ()) {
return true ;
} else {
// Insert new hash
$query = prepare ( " INSERT INTO `robot` VALUES (:hash) " );
$query -> bindValue ( ':hash' , $body );
$query -> execute () or error ( db_error ( $query ));
return false ;
}
}
2011-01-20 09:24:23 +01:00
function numPosts ( $id ) {
global $board ;
$query = prepare ( sprintf ( " SELECT COUNT(*) as `count` FROM `posts_%s` WHERE `thread` = :thread " , $board [ 'uri' ]));
$query -> bindValue ( ':thread' , $id , PDO :: PARAM_INT );
$query -> execute () or error ( db_error ( $query ));
$result = $query -> fetch ();
return $result [ 'count' ];
}
function muteTime () {
2011-02-12 07:25:15 +01:00
global $config ;
2011-01-20 09:24:23 +01:00
// Find number of mutes in the past X hours
$query = prepare ( " SELECT COUNT(*) as `count` FROM `mutes` WHERE `time` >= :time AND `ip` = :ip " );
2011-02-16 10:37:57 +01:00
$query -> bindValue ( ':time' , time () - ( $config [ 'robot_mute_hour' ] * 3600 ), PDO :: PARAM_INT );
2011-01-20 09:24:23 +01:00
$query -> bindValue ( ':ip' , $_SERVER [ 'REMOTE_ADDR' ]);
$query -> execute () or error ( db_error ( $query ));
$result = $query -> fetch ();
if ( $result [ 'count' ] == 0 ) return 0 ;
2011-02-12 07:25:15 +01:00
return pow ( $config [ 'robot_mute_multiplier' ], $result [ 'count' ]);
2011-01-20 09:24:23 +01:00
}
function mute () {
// Insert mute
$query = prepare ( " INSERT INTO `mutes` VALUES (:ip, :time) " );
$query -> bindValue ( ':time' , time (), PDO :: PARAM_INT );
$query -> bindValue ( ':ip' , $_SERVER [ 'REMOTE_ADDR' ]);
$query -> execute () or error ( db_error ( $query ));
return muteTime ();
}
function checkMute () {
2011-10-07 07:51:19 +02:00
global $config , $debug ;
2011-05-19 13:24:17 +02:00
2011-10-07 07:51:19 +02:00
if ( $config [ 'cache' ][ 'enabled' ]) {
2011-05-19 13:24:17 +02:00
// Cached mute?
2011-10-07 07:51:19 +02:00
if (( $mute = cache :: get ( " mute_ ${ _SERVER['REMOTE_ADDR'] } " )) && ( $mutetime = cache :: get ( " mutetime_ ${ _SERVER['REMOTE_ADDR'] } " ))) {
2011-05-19 13:24:17 +02:00
error ( sprintf ( $config [ 'error' ][ 'youaremuted' ], $mute [ 'time' ] + $mutetime - time ()));
}
}
2011-02-16 10:37:57 +01:00
2011-01-20 09:24:23 +01:00
$mutetime = muteTime ();
if ( $mutetime > 0 ) {
// Find last mute time
$query = prepare ( " SELECT `time` FROM `mutes` WHERE `ip` = :ip ORDER BY `time` DESC LIMIT 1 " );
$query -> bindValue ( ':ip' , $_SERVER [ 'REMOTE_ADDR' ]);
$query -> execute () or error ( db_error ( $query ));
if ( ! $mute = $query -> fetch ()) {
// What!? He's muted but he's not muted...
return ;
}
if ( $mute [ 'time' ] + $mutetime > time ()) {
2011-10-07 07:51:19 +02:00
if ( $config [ 'cache' ][ 'enabled' ]) {
2011-10-08 19:35:50 +02:00
cache :: set ( " mute_ ${ _SERVER['REMOTE_ADDR'] } " , $mute , $mute [ 'time' ] + $mutetime - time ());
cache :: set ( " mutetime_ ${ _SERVER['REMOTE_ADDR'] } " , $mutetime , $mute [ 'time' ] + $mutetime - time ());
2011-05-19 13:24:17 +02:00
}
2011-01-20 09:24:23 +01:00
// Not expired yet
2011-02-12 07:25:15 +01:00
error ( sprintf ( $config [ 'error' ][ 'youaremuted' ], $mute [ 'time' ] + $mutetime - time ()));
2011-01-20 09:24:23 +01:00
} else {
// Already expired
return ;
}
}
}
2011-02-17 12:03:52 +01:00
function createHiddenInputs () {
global $config ;
$inputs = Array ();
shuffle ( $config [ 'spam' ][ 'hidden_input_names' ]);
$hidden_input_names_x = 0 ;
$input_count = rand ( $config [ 'spam' ][ 'hidden_inputs_min' ], $config [ 'spam' ][ 'hidden_inputs_max' ]);
for ( $x = 0 ; $x < $input_count ; $x ++ ) {
if ( rand ( 0 , 2 ) == 0 || $hidden_input_names_x < 0 ) {
// Use an obscure name
$name = substr ( base64_encode ( sha1 ( rand ())), 0 , rand ( 2 , 40 ));
} else {
// Use a pre-defined confusing name
$name = $config [ 'spam' ][ 'hidden_input_names' ][ $hidden_input_names_x ++ ];
2011-02-17 14:36:50 +01:00
if ( $hidden_input_names_x >= count ( $config [ 'spam' ][ 'hidden_input_names' ]))
2011-02-17 12:03:52 +01:00
$hidden_input_names_x = - 1 ;
}
if ( rand ( 0 , 2 ) == 0 ) {
// Value must be null
$inputs [ $name ] = '' ;
} elseif ( rand ( 0 , 4 ) == 0 ) {
// Numeric value
$inputs [ $name ] = rand ( 0 , 100 );
} else {
// Obscure value
$inputs [ $name ] = substr ( base64_encode ( sha1 ( rand ())), 0 , rand ( 2 , 40 ));
}
}
$content = '' ;
foreach ( $inputs as $name => $value ) {
2011-02-17 12:11:11 +01:00
$display_type = rand ( 0 , 8 );
switch ( $display_type ) {
case 0 :
$content .= '<input type="hidden" name="' . htmlspecialchars ( $name ) . '" value="' . htmlspecialchars ( $value ) . '" />' ;
break ;
case 1 :
$content .= '<input style="display:none" name="' . htmlspecialchars ( $name ) . '" value="' . htmlspecialchars ( $value ) . '" />' ;
break ;
case 2 :
$content .= '<input type="hidden" value="' . htmlspecialchars ( $value ) . '" name="' . htmlspecialchars ( $name ) . '" />' ;
break ;
case 3 :
$content .= '<input type="hidden" name="' . htmlspecialchars ( $name ) . '" value="' . htmlspecialchars ( $value ) . '" />' ;
break ;
case 4 :
$content .= '<span style="display:none"><input type="text" name="' . htmlspecialchars ( $name ) . '" value="' . htmlspecialchars ( $value ) . '" /></span>' ;
break ;
case 5 :
$content .= '<div style="display:none"><input type="text" name="' . htmlspecialchars ( $name ) . '" value="' . htmlspecialchars ( $value ) . '" /></div>' ;
break ;
case 6 :
2011-04-14 12:43:34 +02:00
if ( ! empty ( $value ))
$content .= '<textarea style="display:none" name="' . htmlspecialchars ( $name ) . '">' . htmlspecialchars ( $value ) . '</textarea>' ;
else
$content .= '<input type="hidden" name="' . htmlspecialchars ( $name ) . '" value="' . htmlspecialchars ( $value ) . '" />' ;
2011-02-17 12:11:11 +01:00
break ;
case 7 :
2011-04-14 12:43:34 +02:00
if ( ! empty ( $value ))
$content .= '<textarea name="' . htmlspecialchars ( $name ) . '" style="display:none">' . htmlspecialchars ( $value ) . '</textarea>' ;
else
$content .= '<input type="hidden" name="' . htmlspecialchars ( $name ) . '" value="' . htmlspecialchars ( $value ) . '" />' ;
2011-02-17 12:11:11 +01:00
break ;
case 8 :
$content .= '<div style="display:none"><textarea name="' . htmlspecialchars ( $name ) . '" style="display:none">' . htmlspecialchars ( $value ) . '</textarea></div>' ;
break ;
}
2011-02-17 12:03:52 +01:00
}
// Create a hash to validate it after
// This is the tricky part.
// First, sort the keys in alphabetical order (A-Z)
ksort ( $inputs );
$hash = '' ;
// Iterate through each input
foreach ( $inputs as $name => $value ) {
$hash .= $name . '=' . $value ;
}
// Add a salt to the hash
$hash .= $config [ 'cookies' ][ 'salt' ];
// Use SHA1 for the hash
$hash = sha1 ( $hash );
// Append it to the HTML
$content .= '<input type="hidden" name="hash" value="' . $hash . '" />' ;
return $content ;
}
function checkSpam () {
global $config ;
if ( ! isset ( $_POST [ 'hash' ]))
return true ;
$hash = $_POST [ 'hash' ];
// Reconsturct the $inputs array
$inputs = Array ();
foreach ( $_POST as $name => $value ) {
if ( in_array ( $name , $config [ 'spam' ][ 'valid_inputs' ]))
continue ;
$inputs [ $name ] = $value ;
}
// Sort the inputs in alphabetical order (A-Z)
ksort ( $inputs );
$_hash = '' ;
// Iterate through each input
foreach ( $inputs as $name => $value ) {
$_hash .= $name . '=' . $value ;
}
// Add a salt to the hash
$_hash .= $config [ 'cookies' ][ 'salt' ];
// Use SHA1 for the hash
$_hash = sha1 ( $_hash );
return $hash != $_hash ;
}
2010-12-16 11:28:38 +01:00
function buildIndex () {
2011-02-12 07:25:15 +01:00
global $board , $config ;
2011-04-22 16:24:15 +02:00
2010-12-16 11:28:38 +01:00
$pages = getPages ();
2010-11-04 15:39:02 +01:00
2010-11-02 11:57:33 +01:00
$page = 1 ;
2011-02-12 07:25:15 +01:00
while ( $page <= $config [ 'max_pages' ] && $content = index ( $page )) {
$filename = $board [ 'dir' ] . ( $page == 1 ? $config [ 'file_index' ] : sprintf ( $config [ 'file_page' ], $page ));
2010-11-02 12:54:08 +01:00
if ( file_exists ( $filename )) $md5 = md5_file ( $filename );
2011-05-18 09:05:48 +02:00
2010-11-02 11:57:33 +01:00
$content [ 'pages' ] = $pages ;
2011-02-16 13:32:43 +01:00
$content [ 'pages' ][ $page - 1 ][ 'selected' ] = true ;
2011-02-17 08:37:18 +01:00
$content [ 'btn' ] = getPageButtons ( $content [ 'pages' ]);
2011-02-17 12:03:52 +01:00
$content [ 'hidden_inputs' ] = createHiddenInputs ();
2011-05-20 09:19:27 +02:00
file_write ( $filename , Element ( 'index.html' , $content ));
2010-11-30 09:57:32 +01:00
2010-11-02 12:54:08 +01:00
if ( isset ( $md5 ) && $md5 == md5_file ( $filename )) {
2010-11-02 11:57:33 +01:00
break ;
}
$page ++ ;
}
2011-02-12 07:25:15 +01:00
if ( $page < $config [ 'max_pages' ]) {
for (; $page <= $config [ 'max_pages' ]; $page ++ ) {
2011-10-10 17:57:37 +02:00
$filename = $board [ 'dir' ] . ( $page == 1 ? $config [ 'file_index' ] : sprintf ( $config [ 'file_page' ], $page ));
2011-05-23 07:29:58 +02:00
file_unlink ( $filename );
2010-11-02 11:57:33 +01:00
}
}
}
2011-01-19 02:37:31 +01:00
2011-03-26 16:36:32 +01:00
function buildJavascript () {
global $config ;
$stylesheets = Array ();
foreach ( $config [ 'stylesheets' ] as $name => $uri ) {
$stylesheets [] = Array (
'name' => addslashes ( $name ),
'uri' => addslashes (( ! empty ( $uri ) ? $config [ 'uri_stylesheets' ] : '' ) . $uri ));
}
2011-05-20 09:19:27 +02:00
file_write ( $config [ 'file_script' ], Element ( 'main.js' , Array (
2011-03-26 16:36:32 +01:00
'config' => $config ,
'stylesheets' => $stylesheets
)));
}
2011-05-19 09:37:23 +02:00
function checkDNSBL () {
global $config ;
if ( isIPv6 ())
return ; // No IPv6 support yet.
if ( ! isset ( $_SERVER [ 'REMOTE_ADDR' ]))
return ; // Fix your web server configuration
2011-05-30 09:35:20 +02:00
2011-06-05 08:32:53 +02:00
if ( in_array ( $_SERVER [ 'REMOTE_ADDR' ], $config [ 'dnsbl_exceptions' ]))
2011-06-04 17:48:31 +02:00
return ;
2011-05-19 09:37:23 +02:00
$ip = ReverseIPOctets ( $_SERVER [ 'REMOTE_ADDR' ]);
2011-01-19 02:37:31 +01:00
2011-05-19 09:37:23 +02:00
foreach ( $config [ 'dnsbl' ] as & $blacklist ) {
$lookup = $ip . '.' . $blacklist ;
2011-05-19 10:04:47 +02:00
$host = gethostbyname ( $lookup );
2011-05-19 10:20:10 +02:00
if ( $host != $lookup ) {
2011-05-19 09:37:23 +02:00
// On NXDOMAIN (meaning it's not in the blacklist), gethostbyname() returns the host unchanged.
2011-05-19 10:04:47 +02:00
if ( preg_match ( '/^127\.0\.0\./' , $host ) && $host != '127.0.0.10' )
error ( sprintf ( $config [ 'error' ][ 'dnsbl' ], $blacklist ));
2011-05-19 09:37:23 +02:00
}
}
2011-01-19 02:37:31 +01:00
}
2011-02-17 10:32:11 +01:00
function isIPv6 () {
2011-02-17 11:08:32 +01:00
return strstr ( $_SERVER [ 'REMOTE_ADDR' ], ':' ) !== false ;
2011-02-17 10:32:11 +01:00
}
2011-02-20 07:19:57 +01:00
function ReverseIPOctets ( $ip ) {
$ipoc = explode ( '.' , $ip );
2011-01-19 02:37:31 +01:00
return $ipoc [ 3 ] . '.' . $ipoc [ 2 ] . '.' . $ipoc [ 1 ] . '.' . $ipoc [ 0 ];
}
2011-04-06 11:18:36 +02:00
function wordfilters ( & $body ) {
global $config ;
foreach ( $config [ 'wordfilters' ] as $filter ) {
if ( isset ( $filter [ 2 ]) && $filter [ 2 ]) {
$body = preg_replace ( $filter [ 0 ], $filter [ 1 ], $body );
} else {
$body = str_replace ( $filter [ 0 ], $filter [ 1 ], $body );
}
}
}
2011-04-14 20:59:04 +02:00
function quote ( $body , $quote = true ) {
2011-04-12 11:56:37 +02:00
$body = str_replace ( '<br/>' , " \n " , $body );
$body = strip_tags ( $body );
$body = preg_replace ( " /(^| \n )/ " , '$1>' , $body );
return $body . " \n " ;
}
2010-11-02 11:57:33 +01:00
function markup ( & $body ) {
2011-02-12 07:25:15 +01:00
global $board , $config ;
2011-01-02 12:14:51 +01:00
2011-11-16 15:06:00 +01:00
$body = utf8tohtml ( $body );
2011-01-02 12:16:18 +01:00
2011-03-02 03:19:46 +01:00
if ( $config [ 'wiki_markup' ]) {
2011-03-02 07:15:37 +01:00
$body = preg_replace ( " /(^| \n )==(.+?)== \n ?/m " , " <span class= \" heading \" > $ 2</span> " , $body );
2011-03-02 03:19:46 +01:00
$body = preg_replace ( " /'''(.+?)'''/m " , " <strong> $ 1</strong> " , $body );
$body = preg_replace ( " /''(.+?)''/m " , " <em> $ 1</em> " , $body );
$body = preg_replace ( " / \ * \ *(.+?) \ * \ */m " , " <span class= \" spoiler \" > $ 1</span> " , $body );
}
2011-02-12 07:25:15 +01:00
if ( $config [ 'markup_urls' ]) {
2011-03-27 17:20:03 +02:00
$body = preg_replace ( $config [ 'url_regex' ], " <a target= \" _blank \" rel= \" nofollow \" href= \" $ 0 \" > $ 0</a> " , $body , - 1 , $num_links );
2011-02-12 07:25:15 +01:00
if ( $num_links > $config [ 'max_links' ])
error ( $config [ 'error' ][ 'toomanylinks' ]);
2011-01-19 02:37:31 +01:00
}
2011-01-02 12:16:18 +01:00
2011-02-12 07:25:15 +01:00
if ( $config [ 'auto_unicode' ]) {
2011-09-25 08:40:30 +02:00
$body = str_replace ( '...' , '…' , $body );
$body = str_replace ( '<--' , '←' , $body );
$body = str_replace ( '-->' , '→' , $body );
2010-11-05 17:11:42 +01:00
// En and em- dashes are rendered exactly the same in
// most monospace fonts (they look the same in code
// editors).
2011-09-25 08:40:30 +02:00
$body = str_replace ( '---' , '–' , $body ); // em dash
$body = str_replace ( '--' , '—' , $body ); // en dash
2010-11-02 11:57:33 +01:00
}
2011-11-16 05:54:35 +01:00
// replace tabs with 8 spaces
$body = str_replace ( " \t " , ' ' , $body );
2010-11-04 15:39:02 +01:00
2010-11-04 08:22:57 +01:00
// Cites
2011-09-29 21:10:13 +02:00
if ( isset ( $board ) && preg_match_all ( '/(^|\s)>>(\d+?)([\s,.?]|$)/' , $body , $cites )) {
2011-04-06 11:18:36 +02:00
if ( count ( $cites [ 0 ]) > $config [ 'max_cites' ]) {
error ( $config [ 'error' ][ 'toomanycites' ]);
}
2011-04-22 16:24:15 +02:00
2010-11-04 08:22:57 +01:00
for ( $index = 0 ; $index < count ( $cites [ 0 ]); $index ++ ) {
$cite = $cites [ 2 ][ $index ];
2010-12-17 15:18:03 +01:00
$query = prepare ( sprintf ( " SELECT `thread`,`id` FROM `posts_%s` WHERE `id` = :id LIMIT 1 " , $board [ 'uri' ]));
$query -> bindValue ( ':id' , $cite );
$query -> execute () or error ( db_error ( $query ));
if ( $post = $query -> fetch ()) {
2011-04-06 11:18:36 +02:00
$replacement = '<a onclick="highlightReply(\'' . $cite . '\');" href="' .
$config [ 'root' ] . $board [ 'dir' ] . $config [ 'dir' ][ 'res' ] . ( $post [ 'thread' ] ? $post [ 'thread' ] : $post [ 'id' ]) . '.html#' . $cite . '">' .
'>>' . $cite .
'</a>' ;
$body = str_replace ( $cites [ 0 ][ $index ], $cites [ 1 ][ $index ] . $replacement . $cites [ 3 ][ $index ], $body );
2010-11-04 08:22:57 +01:00
}
2011-04-06 11:18:36 +02:00
}
}
// Cross-board linking
2011-09-29 21:10:13 +02:00
if ( preg_match_all ( '/(^|\s)>>>\/(\w+?)\/(\d+)?([\s,.?]|$)/' , $body , $cites )) {
2011-04-06 11:18:36 +02:00
if ( count ( $cites [ 0 ]) > $config [ 'max_cites' ]) {
error ( $config [ 'error' ][ 'toomanycross' ]);
}
2011-04-22 16:24:15 +02:00
2011-04-06 11:18:36 +02:00
for ( $index = 0 ; $index < count ( $cites [ 0 ]); $index ++ ) {
$_board = $cites [ 2 ][ $index ];
$cite = @ $cites [ 3 ][ $index ];
2011-01-02 12:14:51 +01:00
2011-04-06 11:18:36 +02:00
// Temporarily store board information because it will be overwritten
$tmp_board = $board [ 'uri' ];
2011-01-02 12:14:51 +01:00
2011-04-06 11:18:36 +02:00
// Check if the board exists, and load settings
if ( openBoard ( $_board )) {
if ( $cite ) {
$query = prepare ( sprintf ( " SELECT `thread`,`id` FROM `posts_%s` WHERE `id` = :id LIMIT 1 " , $board [ 'uri' ]));
$query -> bindValue ( ':id' , $cite );
$query -> execute () or error ( db_error ( $query ));
if ( $post = $query -> fetch ()) {
$replacement = '<a onclick="highlightReply(\'' . $cite . '\');" href="' .
$config [ 'root' ] . $board [ 'dir' ] . $config [ 'dir' ][ 'res' ] . ( $post [ 'thread' ] ? $post [ 'thread' ] : $post [ 'id' ]) . '.html#' . $cite . '">' .
'>>>/' . $_board . '/' . $cite .
'</a>' ;
$body = str_replace ( $cites [ 0 ][ $index ], $cites [ 1 ][ $index ] . $replacement . $cites [ 4 ][ $index ], $body );
}
} else {
$replacement = '<a href="' .
$config [ 'root' ] . $board [ 'dir' ] . $config [ 'file_index' ] . '">' .
'>>>/' . $_board . '/' .
'</a>' ;
$body = str_replace ( $cites [ 0 ][ $index ], $cites [ 1 ][ $index ] . $replacement . $cites [ 4 ][ $index ], $body );
}
}
2011-01-02 12:14:51 +01:00
2011-04-06 11:18:36 +02:00
// Restore main board settings
openBoard ( $tmp_board );
2010-11-02 11:57:33 +01:00
}
}
2011-04-06 11:18:36 +02:00
2010-11-04 15:39:02 +01:00
2010-11-02 11:57:33 +01:00
$body = str_replace ( " \r " , '' , $body );
2011-01-02 12:14:51 +01:00
2010-11-02 11:57:33 +01:00
$body = preg_replace ( " /(^| \n )([ \ s]+)?(>)([^ \n ]+)?( $ | \n )/m " , '$1$2<span class="quote">$3$4</span>$5' , $body );
2010-11-26 10:41:35 +01:00
2011-02-21 05:51:46 +01:00
if ( $config [ 'strip_superfluous_returns' ])
$body = preg_replace ( '/\s+$/' , '' , $body );
2010-11-02 11:57:33 +01:00
$body = preg_replace ( " / \n / " , '<br/>' , $body );
}
2010-11-04 15:39:02 +01:00
2011-11-16 15:06:00 +01:00
function utf8tohtml ( $utf8 ) {
2011-11-16 15:22:25 +01:00
return mb_encode_numericentity ( htmlspecialchars ( $utf8 , ENT_NOQUOTES , 'UTF-8' ), Array ( 0xff , 0xffff , 0 , 0xffff ), 'UTF-8' );
2010-11-02 11:57:33 +01:00
}
2010-11-04 15:39:02 +01:00
2010-12-16 06:36:14 +01:00
function buildThread ( $id , $return = false , $mod = false ) {
2011-10-07 07:51:19 +02:00
global $board , $config ;
2010-11-02 11:57:33 +01:00
$id = round ( $id );
2010-12-16 06:36:14 +01:00
2011-10-07 07:51:19 +02:00
if ( $config [ 'cache' ][ 'enabled' ] && ! $mod ) {
2011-10-05 14:53:43 +02:00
// Clear cache
2011-10-07 07:51:19 +02:00
cache :: delete ( " thread_index_ { $board [ 'uri' ] } _ { $id } " );
cache :: delete ( " thread_ { $board [ 'uri' ] } _ { $id } " );
2011-05-19 13:42:53 +02:00
}
2011-09-11 06:23:21 +02:00
$query = prepare ( sprintf ( " SELECT * FROM `posts_%s` WHERE (`thread` IS NULL AND `id` = :id) OR `thread` = :id ORDER BY `thread`,`id` " , $board [ 'uri' ]));
2010-12-17 15:18:03 +01:00
$query -> bindValue ( ':id' , $id , PDO :: PARAM_INT );
$query -> execute () or error ( db_error ( $query ));
while ( $post = $query -> fetch ()) {
2010-11-02 11:57:33 +01:00
if ( ! isset ( $thread )) {
2011-10-10 13:37:39 +02:00
$thread = new Thread ( $post [ 'id' ], $post [ 'subject' ], $post [ 'email' ], $post [ 'name' ], $post [ 'trip' ], $post [ 'capcode' ], $post [ 'body' ], $post [ 'time' ], $post [ 'thumb' ], $post [ 'thumbwidth' ], $post [ 'thumbheight' ], $post [ 'file' ], $post [ 'filewidth' ], $post [ 'fileheight' ], $post [ 'filesize' ], $post [ 'filename' ], $post [ 'ip' ], $post [ 'sticky' ], $post [ 'locked' ], $post [ 'sage' ], $post [ 'embed' ], $mod ? '?/' : $config [ 'root' ], $mod );
2010-11-02 11:57:33 +01:00
} else {
2011-05-18 09:05:48 +02:00
$thread -> add ( new Post ( $post [ 'id' ], $thread -> id , $post [ 'subject' ], $post [ 'email' ], $post [ 'name' ], $post [ 'trip' ], $post [ 'capcode' ], $post [ 'body' ], $post [ 'time' ], $post [ 'thumb' ], $post [ 'thumbwidth' ], $post [ 'thumbheight' ], $post [ 'file' ], $post [ 'filewidth' ], $post [ 'fileheight' ], $post [ 'filesize' ], $post [ 'filename' ], $post [ 'ip' ], $post [ 'embed' ], $mod ? '?/' : $config [ 'root' ], $mod ));
2010-11-02 11:57:33 +01:00
}
2010-12-16 06:36:14 +01:00
}
2010-12-17 15:18:03 +01:00
// Check if any posts were found
2011-02-12 07:25:15 +01:00
if ( ! isset ( $thread )) error ( $config [ 'error' ][ 'nonexistant' ]);
2010-12-17 15:18:03 +01:00
$body = Element ( 'thread.html' , Array (
'board' => $board ,
'body' => $thread -> build (),
2011-03-26 08:23:15 +01:00
'config' => $config ,
2010-12-17 15:18:03 +01:00
'id' => $id ,
'mod' => $mod ,
2011-02-19 10:16:13 +01:00
'boardlist' => createBoardlist ( $mod ),
2011-02-17 12:03:52 +01:00
'hidden_inputs' => $content [ 'hidden_inputs' ] = createHiddenInputs (),
2011-02-12 07:25:15 +01:00
'return' => ( $mod ? '?' . $board [ 'url' ] . $config [ 'file_index' ] : $config [ 'root' ] . $board [ 'uri' ] . '/' . $config [ 'file_index' ])
2010-12-17 15:18:03 +01:00
));
2011-05-19 13:42:53 +02:00
2010-12-16 06:36:14 +01:00
if ( $return )
return $body ;
else
2011-05-20 09:19:27 +02:00
file_write ( $board [ 'dir' ] . $config [ 'dir' ][ 'res' ] . sprintf ( $config [ 'file_page' ], $id ), $body );
2010-11-02 11:57:33 +01:00
}
2010-12-01 02:54:58 +01:00
2011-02-22 07:38:38 +01:00
function rrmdir ( $dir ) {
if ( is_dir ( $dir )) {
$objects = scandir ( $dir );
foreach ( $objects as $object ) {
if ( $object != " . " && $object != " .. " ) {
if ( filetype ( $dir . " / " . $object ) == " dir " )
rrmdir ( $dir . " / " . $object );
else
2011-05-23 07:29:58 +02:00
file_unlink ( $dir . " / " . $object );
2011-02-22 07:38:38 +01:00
}
}
reset ( $objects );
rmdir ( $dir );
}
2011-04-13 12:02:58 +02:00
}
function poster_id ( $ip , $thread ) {
global $config ;
// Confusing, hard to brute-force, but simple algorithm
return substr ( sha1 ( sha1 ( $ip . $config [ 'secure_trip_salt' ] . $thread ) . $config [ 'secure_trip_salt' ]), 0 , $config [ 'poster_id_length' ]);
}
2011-02-22 07:38:38 +01:00
2011-04-13 12:02:58 +02:00
function generate_tripcode ( $name , $length = 10 ){
2011-02-12 07:25:15 +01:00
global $config ;
2010-11-02 11:57:33 +01:00
$t = explode ( '#' , $name );
$nameo = $t [ 0 ];
if ( isset ( $t [ 1 ] ) || isset ( $t [ 2 ] ) ) {
$trip = ( ( strlen ( $t [ 1 ] ) > 0 ) ? $t [ 1 ] : $t [ 2 ] );
if ( ( function_exists ( 'mb_convert_encoding' ) ) ) {
2011-06-06 13:40:04 +02:00
// multi-byte encoding is necessary to produce standard tripcode output, but only use it if available
mb_substitute_character ( 'none' );
2011-06-06 13:41:05 +02:00
$recoded_cap = mb_convert_encoding ( $trip , 'Shift_JIS' , 'UTF-8' );
2010-11-02 11:57:33 +01:00
}
$trip = ( ( ! empty ( $recoded_cap ) ) ? $recoded_cap : $trip );
$salt = substr ( $trip . 'H.' , 1 , 2 );
$salt = preg_replace ( '/[^\.-z]/' , '.' , $salt );
$salt = strtr ( $salt , ':;<=>?@[\]^_`' , 'ABCDEFGabcdef' );
if ( isset ( $t [ 2 ] ) ) {
// secure
2011-05-25 08:21:36 +02:00
if ( isset ( $config [ 'custom_tripcode' ][ " ## { $trip } " ]))
$trip = $config [ 'custom_tripcode' ][ " ## { $trip } " ];
else
$trip = '!!' . substr ( crypt ( $trip , $config [ 'secure_trip_salt' ] ), ( - 1 * $length ) );
2010-11-02 11:57:33 +01:00
} else {
2011-06-07 07:21:54 +02:00
// insecure
2011-05-25 08:21:36 +02:00
if ( isset ( $config [ 'custom_tripcode' ][ " # { $trip } " ]))
$trip = $config [ 'custom_tripcode' ][ " # { $trip } " ];
else
$trip = '!' . substr ( crypt ( $trip , $salt ), ( - 1 * $length ) );
2010-11-02 11:57:33 +01:00
}
}
if ( isset ( $trip ) ) {
return array ( $nameo , $trip );
} else {
return array ( $nameo );
}
}
2010-11-04 15:39:02 +01:00
2010-11-04 05:40:39 +01:00
// Highest common factor
function hcf ( $a , $b ){
$gcd = 1 ;
if ( $a > $b ) {
$a = $a + $b ;
$b = $a - $b ;
$a = $a - $b ;
}
if ( $b == ( round ( $b / $a )) * $a )
$gcd = $a ;
else {
for ( $i = round ( $a / 2 ); $i ; $i -- ) {
if ( $a == round ( $a / $i ) * $i && $b == round ( $b / $i ) * $i ) {
$gcd = $i ;
$i = false ;
}
}
}
return $gcd ;
}
2010-11-03 17:10:47 +01:00
function fraction ( $numerator , $denominator , $sep ) {
2010-11-04 05:40:39 +01:00
$gcf = hcf ( $numerator , $denominator );
$numerator = $numerator / $gcf ;
$denominator = $denominator / $gcf ;
2011-10-10 12:06:39 +02:00
2010-11-04 05:40:39 +01:00
return " { $numerator } { $sep } { $denominator } " ;
2010-11-03 17:10:47 +01:00
}
2010-11-02 11:57:33 +01:00
2011-07-12 12:29:35 +02:00
2011-02-19 09:45:54 +01:00
function getPostByHash ( $hash ) {
global $board ;
$query = prepare ( sprintf ( " SELECT `id`,`thread` FROM `posts_%s` WHERE `filehash` = :hash " , $board [ 'uri' ]));
$query -> bindValue ( ':hash' , $hash , PDO :: PARAM_STR );
$query -> execute () or error ( db_error ( $query ));
if ( $post = $query -> fetch ()) {
return $post ;
}
return false ;
}
2011-02-19 09:28:07 +01:00
function undoImage ( $post ) {
2011-05-23 07:29:58 +02:00
if ( $post [ 'has_file' ]) {
if ( isset ( $post [ 'thumb' ]))
file_unlink ( $post [ 'file' ]);
if ( isset ( $post [ 'thumb' ]))
file_unlink ( $post [ 'thumb' ]);
}
2011-02-19 09:28:07 +01:00
}
2011-11-16 09:59:21 +01:00
2011-01-02 17:27:34 +01:00
?>