PageRenderTime 46ms CodeModel.GetById 18ms RepoModel.GetById 0ms app.codeStats 0ms

/wp-content/plugins/akismet/akismet.php

https://bitbucket.org/julianelve/vendor-wordpress
PHP | 613 lines | 428 code | 107 blank | 78 comment | 134 complexity | 1467dc3ade4da2c3bef353fae1c48b6a MD5 | raw file
Possible License(s): AGPL-1.0, LGPL-2.1, GPL-2.0
  1. <?php
  2. /**
  3. * @package Akismet
  4. */
  5. /*
  6. Plugin Name: Akismet
  7. Plugin URI: http://akismet.com/?return=true
  8. Description: Used by millions, Akismet is quite possibly the best way in the world to <strong>protect your blog from comment and trackback spam</strong>. It keeps your site protected from spam even while you sleep. To get started: 1) Click the "Activate" link to the left of this description, 2) <a href="http://akismet.com/get/?return=true">Sign up for an Akismet API key</a>, and 3) Go to your Akismet configuration page, and save your API key.
  9. Version: 2.5.7
  10. Author: Automattic
  11. Author URI: http://automattic.com/wordpress-plugins/
  12. License: GPLv2 or later
  13. */
  14. /*
  15. This program is free software; you can redistribute it and/or
  16. modify it under the terms of the GNU General Public License
  17. as published by the Free Software Foundation; either version 2
  18. of the License, or (at your option) any later version.
  19. This program is distributed in the hope that it will be useful,
  20. but WITHOUT ANY WARRANTY; without even the implied warranty of
  21. MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
  22. GNU General Public License for more details.
  23. You should have received a copy of the GNU General Public License
  24. along with this program; if not, write to the Free Software
  25. Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
  26. */
  27. // Make sure we don't expose any info if called directly
  28. if ( !function_exists( 'add_action' ) ) {
  29. echo 'Hi there! I\'m just a plugin, not much I can do when called directly.';
  30. exit;
  31. }
  32. define('AKISMET_VERSION', '2.5.7');
  33. define('AKISMET_PLUGIN_URL', plugin_dir_url( __FILE__ ));
  34. /** If you hardcode a WP.com API key here, all key config screens will be hidden */
  35. if ( defined('WPCOM_API_KEY') )
  36. $wpcom_api_key = constant('WPCOM_API_KEY');
  37. else
  38. $wpcom_api_key = '';
  39. if ( isset($wp_db_version) && $wp_db_version <= 9872 )
  40. include_once dirname( __FILE__ ) . '/legacy.php';
  41. include_once dirname( __FILE__ ) . '/widget.php';
  42. if ( is_admin() )
  43. require_once dirname( __FILE__ ) . '/admin.php';
  44. function akismet_init() {
  45. global $wpcom_api_key, $akismet_api_host, $akismet_api_port;
  46. if ( $wpcom_api_key )
  47. $akismet_api_host = $wpcom_api_key . '.rest.akismet.com';
  48. else
  49. $akismet_api_host = get_option('wordpress_api_key') . '.rest.akismet.com';
  50. $akismet_api_port = 80;
  51. }
  52. add_action('init', 'akismet_init');
  53. function akismet_get_key() {
  54. global $wpcom_api_key;
  55. if ( !empty($wpcom_api_key) )
  56. return $wpcom_api_key;
  57. return get_option('wordpress_api_key');
  58. }
  59. function akismet_check_key_status( $key, $ip = null ) {
  60. global $akismet_api_host, $akismet_api_port, $wpcom_api_key;
  61. $blog = urlencode( get_option('home') );
  62. if ( $wpcom_api_key )
  63. $key = $wpcom_api_key;
  64. $response = akismet_http_post("key=$key&blog=$blog", 'rest.akismet.com', '/1.1/verify-key', $akismet_api_port, $ip);
  65. return $response;
  66. }
  67. // given a response from an API call like akismet_check_key_status(), update the alert code options if an alert is present.
  68. function akismet_update_alert( $response ) {
  69. $code = $msg = null;
  70. if ( isset($response[0]['x-akismet-alert-code']) ) {
  71. $code = $response[0]['x-akismet-alert-code'];
  72. $msg = $response[0]['x-akismet-alert-msg'];
  73. }
  74. // only call update_option() if the value has changed
  75. if ( $code != get_option( 'akismet_alert_code' ) ) {
  76. update_option( 'akismet_alert_code', $code );
  77. update_option( 'akismet_alert_msg', $msg );
  78. }
  79. }
  80. function akismet_verify_key( $key, $ip = null ) {
  81. $response = akismet_check_key_status( $key, $ip );
  82. akismet_update_alert( $response );
  83. if ( !is_array($response) || !isset($response[1]) || $response[1] != 'valid' && $response[1] != 'invalid' )
  84. return 'failed';
  85. return $response[1];
  86. }
  87. // if we're in debug or test modes, use a reduced service level so as not to polute training or stats data
  88. function akismet_test_mode() {
  89. if ( defined('AKISMET_TEST_MODE') && AKISMET_TEST_MODE )
  90. return true;
  91. return false;
  92. }
  93. // return a comma-separated list of role names for the given user
  94. function akismet_get_user_roles( $user_id ) {
  95. $roles = false;
  96. if ( !class_exists('WP_User') )
  97. return false;
  98. if ( $user_id > 0 ) {
  99. $comment_user = new WP_User($user_id);
  100. if ( isset($comment_user->roles) )
  101. $roles = join(',', $comment_user->roles);
  102. }
  103. if ( is_multisite() && is_super_admin( $user_id ) ) {
  104. if ( empty( $roles ) ) {
  105. $roles = 'super_admin';
  106. } else {
  107. $comment_user->roles[] = 'super_admin';
  108. $roles = join( ',', $comment_user->roles );
  109. }
  110. }
  111. return $roles;
  112. }
  113. // Returns array with headers in $response[0] and body in $response[1]
  114. function akismet_http_post($request, $host, $path, $port = 80, $ip=null) {
  115. global $wp_version;
  116. $akismet_ua = "WordPress/{$wp_version} | ";
  117. $akismet_ua .= 'Akismet/' . constant( 'AKISMET_VERSION' );
  118. $akismet_ua = apply_filters( 'akismet_ua', $akismet_ua );
  119. $content_length = strlen( $request );
  120. $http_host = $host;
  121. // use a specific IP if provided
  122. // needed by akismet_check_server_connectivity()
  123. if ( $ip && long2ip( ip2long( $ip ) ) ) {
  124. $http_host = $ip;
  125. } else {
  126. $http_host = $host;
  127. }
  128. // use the WP HTTP class if it is available
  129. if ( function_exists( 'wp_remote_post' ) ) {
  130. $http_args = array(
  131. 'body' => $request,
  132. 'headers' => array(
  133. 'Content-Type' => 'application/x-www-form-urlencoded; ' .
  134. 'charset=' . get_option( 'blog_charset' ),
  135. 'Host' => $host,
  136. 'User-Agent' => $akismet_ua
  137. ),
  138. 'httpversion' => '1.0',
  139. 'timeout' => 15
  140. );
  141. $akismet_url = "http://{$http_host}{$path}";
  142. $response = wp_remote_post( $akismet_url, $http_args );
  143. if ( is_wp_error( $response ) )
  144. return '';
  145. return array( $response['headers'], $response['body'] );
  146. } else {
  147. $http_request = "POST $path HTTP/1.0\r\n";
  148. $http_request .= "Host: $host\r\n";
  149. $http_request .= 'Content-Type: application/x-www-form-urlencoded; charset=' . get_option('blog_charset') . "\r\n";
  150. $http_request .= "Content-Length: {$content_length}\r\n";
  151. $http_request .= "User-Agent: {$akismet_ua}\r\n";
  152. $http_request .= "\r\n";
  153. $http_request .= $request;
  154. $response = '';
  155. if( false != ( $fs = @fsockopen( $http_host, $port, $errno, $errstr, 10 ) ) ) {
  156. fwrite( $fs, $http_request );
  157. while ( !feof( $fs ) )
  158. $response .= fgets( $fs, 1160 ); // One TCP-IP packet
  159. fclose( $fs );
  160. $response = explode( "\r\n\r\n", $response, 2 );
  161. }
  162. return $response;
  163. }
  164. }
  165. // filter handler used to return a spam result to pre_comment_approved
  166. function akismet_result_spam( $approved ) {
  167. // bump the counter here instead of when the filter is added to reduce the possibility of overcounting
  168. if ( $incr = apply_filters('akismet_spam_count_incr', 1) )
  169. update_option( 'akismet_spam_count', get_option('akismet_spam_count') + $incr );
  170. // this is a one-shot deal
  171. remove_filter( 'pre_comment_approved', 'akismet_result_spam' );
  172. return 'spam';
  173. }
  174. function akismet_result_hold( $approved ) {
  175. // once only
  176. remove_filter( 'pre_comment_approved', 'akismet_result_hold' );
  177. return '0';
  178. }
  179. // how many approved comments does this author have?
  180. function akismet_get_user_comments_approved( $user_id, $comment_author_email, $comment_author, $comment_author_url ) {
  181. global $wpdb;
  182. if ( !empty($user_id) )
  183. return $wpdb->get_var( $wpdb->prepare( "SELECT COUNT(*) FROM $wpdb->comments WHERE user_id = %d AND comment_approved = 1", $user_id ) );
  184. if ( !empty($comment_author_email) )
  185. return $wpdb->get_var( $wpdb->prepare( "SELECT COUNT(*) FROM $wpdb->comments WHERE comment_author_email = %s AND comment_author = %s AND comment_author_url = %s AND comment_approved = 1", $comment_author_email, $comment_author, $comment_author_url ) );
  186. return 0;
  187. }
  188. function akismet_microtime() {
  189. $mtime = explode( ' ', microtime() );
  190. return $mtime[1] + $mtime[0];
  191. }
  192. // log an event for a given comment, storing it in comment_meta
  193. function akismet_update_comment_history( $comment_id, $message, $event=null ) {
  194. global $current_user;
  195. // failsafe for old WP versions
  196. if ( !function_exists('add_comment_meta') )
  197. return false;
  198. $user = '';
  199. if ( is_object($current_user) && isset($current_user->user_login) )
  200. $user = $current_user->user_login;
  201. $event = array(
  202. 'time' => akismet_microtime(),
  203. 'message' => $message,
  204. 'event' => $event,
  205. 'user' => $user,
  206. );
  207. // $unique = false so as to allow multiple values per comment
  208. $r = add_comment_meta( $comment_id, 'akismet_history', $event, false );
  209. }
  210. // get the full comment history for a given comment, as an array in reverse chronological order
  211. function akismet_get_comment_history( $comment_id ) {
  212. // failsafe for old WP versions
  213. if ( !function_exists('add_comment_meta') )
  214. return false;
  215. $history = get_comment_meta( $comment_id, 'akismet_history', false );
  216. usort( $history, 'akismet_cmp_time' );
  217. return $history;
  218. }
  219. function akismet_cmp_time( $a, $b ) {
  220. return $a['time'] > $b['time'] ? -1 : 1;
  221. }
  222. // this fires on wp_insert_comment. we can't update comment_meta when akismet_auto_check_comment() runs
  223. // because we don't know the comment ID at that point.
  224. function akismet_auto_check_update_meta( $id, $comment ) {
  225. global $akismet_last_comment;
  226. // failsafe for old WP versions
  227. if ( !function_exists('add_comment_meta') )
  228. return false;
  229. if ( !isset( $akismet_last_comment['comment_author_email'] ) )
  230. $akismet_last_comment['comment_author_email'] = '';
  231. // wp_insert_comment() might be called in other contexts, so make sure this is the same comment
  232. // as was checked by akismet_auto_check_comment
  233. if ( is_object($comment) && !empty($akismet_last_comment) && is_array($akismet_last_comment) ) {
  234. if ( isset($akismet_last_comment['comment_post_ID']) && intval($akismet_last_comment['comment_post_ID']) == intval($comment->comment_post_ID)
  235. && $akismet_last_comment['comment_author'] == $comment->comment_author
  236. && $akismet_last_comment['comment_author_email'] == $comment->comment_author_email ) {
  237. // normal result: true or false
  238. if ( $akismet_last_comment['akismet_result'] == 'true' ) {
  239. update_comment_meta( $comment->comment_ID, 'akismet_result', 'true' );
  240. akismet_update_comment_history( $comment->comment_ID, __('Akismet caught this comment as spam'), 'check-spam' );
  241. if ( $comment->comment_approved != 'spam' )
  242. akismet_update_comment_history( $comment->comment_ID, sprintf( __('Comment status was changed to %s'), $comment->comment_approved), 'status-changed'.$comment->comment_approved );
  243. } elseif ( $akismet_last_comment['akismet_result'] == 'false' ) {
  244. update_comment_meta( $comment->comment_ID, 'akismet_result', 'false' );
  245. akismet_update_comment_history( $comment->comment_ID, __('Akismet cleared this comment'), 'check-ham' );
  246. if ( $comment->comment_approved == 'spam' ) {
  247. if ( wp_blacklist_check($comment->comment_author, $comment->comment_author_email, $comment->comment_author_url, $comment->comment_content, $comment->comment_author_IP, $comment->comment_agent) )
  248. akismet_update_comment_history( $comment->comment_ID, __('Comment was caught by wp_blacklist_check'), 'wp-blacklisted' );
  249. else
  250. akismet_update_comment_history( $comment->comment_ID, sprintf( __('Comment status was changed to %s'), $comment->comment_approved), 'status-changed-'.$comment->comment_approved );
  251. }
  252. // abnormal result: error
  253. } else {
  254. update_comment_meta( $comment->comment_ID, 'akismet_error', time() );
  255. akismet_update_comment_history( $comment->comment_ID, sprintf( __('Akismet was unable to check this comment (response: %s), will automatically retry again later.'), substr($akismet_last_comment['akismet_result'], 0, 50)), 'check-error' );
  256. }
  257. // record the complete original data as submitted for checking
  258. if ( isset($akismet_last_comment['comment_as_submitted']) )
  259. update_comment_meta( $comment->comment_ID, 'akismet_as_submitted', $akismet_last_comment['comment_as_submitted'] );
  260. }
  261. }
  262. }
  263. add_action( 'wp_insert_comment', 'akismet_auto_check_update_meta', 10, 2 );
  264. function akismet_auto_check_comment( $commentdata ) {
  265. global $akismet_api_host, $akismet_api_port, $akismet_last_comment;
  266. $comment = $commentdata;
  267. $comment['user_ip'] = $_SERVER['REMOTE_ADDR'];
  268. $comment['user_agent'] = isset($_SERVER['HTTP_USER_AGENT']) ? $_SERVER['HTTP_USER_AGENT'] : null;
  269. $comment['referrer'] = isset($_SERVER['HTTP_REFERER']) ? $_SERVER['HTTP_REFERER'] : null;
  270. $comment['blog'] = get_option('home');
  271. $comment['blog_lang'] = get_locale();
  272. $comment['blog_charset'] = get_option('blog_charset');
  273. $comment['permalink'] = get_permalink($comment['comment_post_ID']);
  274. if ( !empty( $comment['user_ID'] ) ) {
  275. $comment['user_role'] = akismet_get_user_roles( $comment['user_ID'] );
  276. }
  277. $akismet_nonce_option = apply_filters( 'akismet_comment_nonce', get_option( 'akismet_comment_nonce' ) );
  278. $comment['akismet_comment_nonce'] = 'inactive';
  279. if ( $akismet_nonce_option == 'true' || $akismet_nonce_option == '' ) {
  280. $comment['akismet_comment_nonce'] = 'failed';
  281. if ( isset( $_POST['akismet_comment_nonce'] ) && wp_verify_nonce( $_POST['akismet_comment_nonce'], 'akismet_comment_nonce_' . $comment['comment_post_ID'] ) )
  282. $comment['akismet_comment_nonce'] = 'passed';
  283. // comment reply in wp-admin
  284. if ( isset( $_POST['_ajax_nonce-replyto-comment'] ) && check_ajax_referer( 'replyto-comment', '_ajax_nonce-replyto-comment' ) )
  285. $comment['akismet_comment_nonce'] = 'passed';
  286. }
  287. if ( akismet_test_mode() )
  288. $comment['is_test'] = 'true';
  289. foreach ($_POST as $key => $value ) {
  290. if ( is_string($value) )
  291. $comment["POST_{$key}"] = $value;
  292. }
  293. $ignore = array( 'HTTP_COOKIE', 'HTTP_COOKIE2', 'PHP_AUTH_PW' );
  294. foreach ( $_SERVER as $key => $value ) {
  295. if ( !in_array( $key, $ignore ) && is_string($value) )
  296. $comment["$key"] = $value;
  297. else
  298. $comment["$key"] = '';
  299. }
  300. $post = get_post( $comment['comment_post_ID'] );
  301. $comment[ 'comment_post_modified_gmt' ] = $post->post_modified_gmt;
  302. $query_string = '';
  303. foreach ( $comment as $key => $data )
  304. $query_string .= $key . '=' . urlencode( stripslashes($data) ) . '&';
  305. $commentdata['comment_as_submitted'] = $comment;
  306. $response = akismet_http_post($query_string, $akismet_api_host, '/1.1/comment-check', $akismet_api_port);
  307. do_action( 'akismet_comment_check_response', $response );
  308. akismet_update_alert( $response );
  309. $commentdata['akismet_result'] = $response[1];
  310. if ( 'true' == $response[1] ) {
  311. // akismet_spam_count will be incremented later by akismet_result_spam()
  312. add_filter('pre_comment_approved', 'akismet_result_spam');
  313. do_action( 'akismet_spam_caught' );
  314. $last_updated = strtotime( $post->post_modified_gmt );
  315. $diff = time() - $last_updated;
  316. $diff = $diff / 86400;
  317. if ( $post->post_type == 'post' && $diff > 30 && get_option( 'akismet_discard_month' ) == 'true' && empty($comment['user_ID']) ) {
  318. // akismet_result_spam() won't be called so bump the counter here
  319. if ( $incr = apply_filters('akismet_spam_count_incr', 1) )
  320. update_option( 'akismet_spam_count', get_option('akismet_spam_count') + $incr );
  321. $redirect_to = isset( $_SERVER['HTTP_REFERER'] ) ? $_SERVER['HTTP_REFERER'] : get_permalink( $post );
  322. wp_safe_redirect( $redirect_to );
  323. die();
  324. }
  325. }
  326. // if the response is neither true nor false, hold the comment for moderation and schedule a recheck
  327. if ( 'true' != $response[1] && 'false' != $response[1] ) {
  328. if ( !current_user_can('moderate_comments') ) {
  329. add_filter('pre_comment_approved', 'akismet_result_hold');
  330. }
  331. if ( !wp_next_scheduled( 'akismet_schedule_cron_recheck' ) ) {
  332. wp_schedule_single_event( time() + 1200, 'akismet_schedule_cron_recheck' );
  333. }
  334. }
  335. if ( function_exists('wp_next_scheduled') && function_exists('wp_schedule_event') ) {
  336. // WP 2.1+: delete old comments daily
  337. if ( !wp_next_scheduled('akismet_scheduled_delete') )
  338. wp_schedule_event(time(), 'daily', 'akismet_scheduled_delete');
  339. } elseif ( (mt_rand(1, 10) == 3) ) {
  340. // WP 2.0: run this one time in ten
  341. akismet_delete_old();
  342. }
  343. $akismet_last_comment = $commentdata;
  344. akismet_fix_scheduled_recheck();
  345. return $commentdata;
  346. }
  347. add_action('preprocess_comment', 'akismet_auto_check_comment', 1);
  348. function akismet_delete_old() {
  349. global $wpdb;
  350. $now_gmt = current_time('mysql', 1);
  351. $comment_ids = $wpdb->get_col("SELECT comment_id FROM $wpdb->comments WHERE DATE_SUB('$now_gmt', INTERVAL 15 DAY) > comment_date_gmt AND comment_approved = 'spam'");
  352. if ( empty( $comment_ids ) )
  353. return;
  354. $comma_comment_ids = implode( ', ', array_map('intval', $comment_ids) );
  355. do_action( 'delete_comment', $comment_ids );
  356. $wpdb->query("DELETE FROM $wpdb->comments WHERE comment_id IN ( $comma_comment_ids )");
  357. $wpdb->query("DELETE FROM $wpdb->commentmeta WHERE comment_id IN ( $comma_comment_ids )");
  358. clean_comment_cache( $comment_ids );
  359. $n = mt_rand(1, 5000);
  360. if ( apply_filters('akismet_optimize_table', ($n == 11)) ) // lucky number
  361. $wpdb->query("OPTIMIZE TABLE $wpdb->comments");
  362. }
  363. function akismet_delete_old_metadata() {
  364. global $wpdb;
  365. $now_gmt = current_time( 'mysql', 1 );
  366. $interval = apply_filters( 'akismet_delete_commentmeta_interval', 15 );
  367. # enfore a minimum of 1 day
  368. $interval = absint( $interval );
  369. if ( $interval < 1 ) {
  370. return;
  371. }
  372. // akismet_as_submitted meta values are large, so expire them
  373. // after $interval days regardless of the comment status
  374. while ( TRUE ) {
  375. $comment_ids = $wpdb->get_col( "SELECT $wpdb->comments.comment_id FROM $wpdb->commentmeta INNER JOIN $wpdb->comments USING(comment_id) WHERE meta_key = 'akismet_as_submitted' AND DATE_SUB('$now_gmt', INTERVAL {$interval} DAY) > comment_date_gmt LIMIT 10000" );
  376. if ( empty( $comment_ids ) ) {
  377. return;
  378. }
  379. foreach ( $comment_ids as $comment_id ) {
  380. delete_comment_meta( $comment_id, 'akismet_as_submitted' );
  381. }
  382. }
  383. /*
  384. $n = mt_rand( 1, 5000 );
  385. if ( apply_filters( 'akismet_optimize_table', ( $n == 11 ), 'commentmeta' ) ) { // lucky number
  386. $wpdb->query( "OPTIMIZE TABLE $wpdb->commentmeta" );
  387. }
  388. */
  389. }
  390. add_action('akismet_scheduled_delete', 'akismet_delete_old');
  391. add_action('akismet_scheduled_delete', 'akismet_delete_old_metadata');
  392. function akismet_check_db_comment( $id, $recheck_reason = 'recheck_queue' ) {
  393. global $wpdb, $akismet_api_host, $akismet_api_port;
  394. $id = (int) $id;
  395. $c = $wpdb->get_row( "SELECT * FROM $wpdb->comments WHERE comment_ID = '$id'", ARRAY_A );
  396. if ( !$c )
  397. return;
  398. $c['user_ip'] = $c['comment_author_IP'];
  399. $c['user_agent'] = $c['comment_agent'];
  400. $c['referrer'] = '';
  401. $c['blog'] = get_option('home');
  402. $c['blog_lang'] = get_locale();
  403. $c['blog_charset'] = get_option('blog_charset');
  404. $c['permalink'] = get_permalink($c['comment_post_ID']);
  405. $id = $c['comment_ID'];
  406. if ( akismet_test_mode() )
  407. $c['is_test'] = 'true';
  408. $c['recheck_reason'] = $recheck_reason;
  409. $query_string = '';
  410. foreach ( $c as $key => $data )
  411. $query_string .= $key . '=' . urlencode( stripslashes($data) ) . '&';
  412. $response = akismet_http_post($query_string, $akismet_api_host, '/1.1/comment-check', $akismet_api_port);
  413. return ( is_array( $response ) && isset( $response[1] ) ) ? $response[1] : false;
  414. }
  415. function akismet_cron_recheck() {
  416. global $wpdb;
  417. $status = akismet_verify_key( akismet_get_key() );
  418. if ( get_option( 'akismet_alert_code' ) || $status == 'invalid' ) {
  419. // since there is currently a problem with the key, reschedule a check for 6 hours hence
  420. wp_schedule_single_event( time() + 21600, 'akismet_schedule_cron_recheck' );
  421. return false;
  422. }
  423. delete_option('akismet_available_servers');
  424. $comment_errors = $wpdb->get_col( "
  425. SELECT comment_id
  426. FROM {$wpdb->prefix}commentmeta
  427. WHERE meta_key = 'akismet_error'
  428. LIMIT 100
  429. " );
  430. foreach ( (array) $comment_errors as $comment_id ) {
  431. // if the comment no longer exists, or is too old, remove the meta entry from the queue to avoid getting stuck
  432. $comment = get_comment( $comment_id );
  433. if ( !$comment || strtotime( $comment->comment_date_gmt ) < strtotime( "-15 days" ) ) {
  434. delete_comment_meta( $comment_id, 'akismet_error' );
  435. continue;
  436. }
  437. add_comment_meta( $comment_id, 'akismet_rechecking', true );
  438. $status = akismet_check_db_comment( $comment_id, 'retry' );
  439. $msg = '';
  440. if ( $status == 'true' ) {
  441. $msg = __( 'Akismet caught this comment as spam during an automatic retry.' );
  442. } elseif ( $status == 'false' ) {
  443. $msg = __( 'Akismet cleared this comment during an automatic retry.' );
  444. }
  445. // If we got back a legit response then update the comment history
  446. // other wise just bail now and try again later. No point in
  447. // re-trying all the comments once we hit one failure.
  448. if ( !empty( $msg ) ) {
  449. delete_comment_meta( $comment_id, 'akismet_error' );
  450. akismet_update_comment_history( $comment_id, $msg, 'cron-retry' );
  451. update_comment_meta( $comment_id, 'akismet_result', $status );
  452. // make sure the comment status is still pending. if it isn't, that means the user has already moved it elsewhere.
  453. $comment = get_comment( $comment_id );
  454. if ( $comment && 'unapproved' == wp_get_comment_status( $comment_id ) ) {
  455. if ( $status == 'true' ) {
  456. wp_spam_comment( $comment_id );
  457. } elseif ( $status == 'false' ) {
  458. // comment is good, but it's still in the pending queue. depending on the moderation settings
  459. // we may need to change it to approved.
  460. if ( check_comment($comment->comment_author, $comment->comment_author_email, $comment->comment_author_url, $comment->comment_content, $comment->comment_author_IP, $comment->comment_agent, $comment->comment_type) )
  461. wp_set_comment_status( $comment_id, 1 );
  462. }
  463. }
  464. } else {
  465. delete_comment_meta( $comment_id, 'akismet_rechecking' );
  466. wp_schedule_single_event( time() + 1200, 'akismet_schedule_cron_recheck' );
  467. return;
  468. }
  469. delete_comment_meta( $comment_id, 'akismet_rechecking' );
  470. }
  471. $remaining = $wpdb->get_var( "SELECT COUNT(*) FROM $wpdb->commentmeta WHERE meta_key = 'akismet_error'" );
  472. if ( $remaining && !wp_next_scheduled('akismet_schedule_cron_recheck') ) {
  473. wp_schedule_single_event( time() + 1200, 'akismet_schedule_cron_recheck' );
  474. }
  475. }
  476. add_action( 'akismet_schedule_cron_recheck', 'akismet_cron_recheck' );
  477. function akismet_add_comment_nonce( $post_id ) {
  478. echo '<p style="display: none;">';
  479. wp_nonce_field( 'akismet_comment_nonce_' . $post_id, 'akismet_comment_nonce', FALSE );
  480. echo '</p>';
  481. }
  482. $akismet_comment_nonce_option = apply_filters( 'akismet_comment_nonce', get_option( 'akismet_comment_nonce' ) );
  483. if ( $akismet_comment_nonce_option == 'true' || $akismet_comment_nonce_option == '' )
  484. add_action( 'comment_form', 'akismet_add_comment_nonce' );
  485. global $wp_version;
  486. if ( '3.0.5' == $wp_version ) {
  487. remove_filter( 'comment_text', 'wp_kses_data' );
  488. if ( is_admin() )
  489. add_filter( 'comment_text', 'wp_kses_post' );
  490. }
  491. function akismet_fix_scheduled_recheck() {
  492. $future_check = wp_next_scheduled( 'akismet_schedule_cron_recheck' );
  493. if ( !$future_check ) {
  494. return;
  495. }
  496. if ( get_option( 'akismet_alert_code' ) > 0 ) {
  497. return;
  498. }
  499. $check_range = time() + 1200;
  500. if ( $future_check > $check_range ) {
  501. wp_clear_scheduled_hook( 'akismet_schedule_cron_recheck' );
  502. wp_schedule_single_event( time() + 300, 'akismet_schedule_cron_recheck' );
  503. }
  504. }