PageRenderTime 43ms CodeModel.GetById 12ms RepoModel.GetById 0ms app.codeStats 1ms

/classes/other.php

http://rapidleech.googlecode.com/
PHP | 579 lines | 490 code | 50 blank | 39 comment | 185 complexity | 5015aa948eec14e51d93f9d8e739de3a MD5 | raw file
    

  1. <?php

    2. 

  2. if (!defined('RAPIDLEECH')) {

    3. 

  3. 	require('../deny.php');

    4. 

  4. 	exit;

    5. 

  5. }

    6. 

  6. 

    7. 

  7. function create_hosts_file($host_file = 'hosts.php') { // To be rewritten or deleted

    8. 

  8. 	$fp = opendir(HOST_DIR . 'download/');

    9. 

  9. 	while (($file = readdir($fp)) !== false) {

    10. 

  10. 		if (substr($file, -4) == '.inc') require_once (HOST_DIR . "download/$file");

    11. 

  11. 	}

    12. 

  12. 	if (!is_array($host)) html_error(lang(127));

    13. 

  13. 	else {

    14. 

  14. 		$fs = fopen(HOST_DIR . "download/$host_file", 'wb');

    15. 

  15. 		if (!$fs) html_error(lang(128));

    16. 

  16. 		else {

    17. 

  17. 			fwrite($fs, "<?php\r\n\$host = array(\r\n");

    18. 

  18. 			$i = 0;

    19. 

  19. 			foreach ($host as $site => $file) {

    20. 

  20. 				if ($i != (count($host) - 1)) fwrite($fs, "'" . $site . "' => '" . $file . "',\r\n");

    21. 

  21. 				else fwrite($fs, "'" . $site . "' => '" . $file . "');\r\n?>");

    22. 

  22. 				$i++;

    23. 

  23. 			}

    24. 

  24. 			closedir($fp);

    25. 

  25. 			fclose($fs);

    26. 

  26. 		}

    27. 

  27. 	}

    28. 

  28. }

    29. 

  29. 

    30. 

  30. function login_check() {

    31. 

  31. 	global $options;

    32. 

  32. 	if ($options['login']) {

    33. 

  33. 		function logged_user($ul) {

    34. 

  34. 			foreach ($ul as $user => $pass) {

    35. 

  35. 				if ($_SERVER['PHP_AUTH_USER'] == $user && $_SERVER['PHP_AUTH_PW'] == $pass) return true;

    36. 

  36. 			}

    37. 

  37. 			return false;

    38. 

  38. 		}

    39. 

  39. 		if ($options['login_cgi']) {

    40. 

  40. 			list($_SERVER['PHP_AUTH_USER'], $_SERVER['PHP_AUTH_PW']) = @explode(':', base64_decode(substr((isset($_SERVER['HTTP_AUTHORIZATION']) ? $_SERVER['HTTP_AUTHORIZATION'] : $_SERVER['REDIRECT_HTTP_AUTHORIZATION']), 6)), 2);

    41. 

  41. 		}

    42. 

  42. 		if (empty($_SERVER['PHP_AUTH_USER']) || !logged_user($options['users'])) {

    43. 

  43. 			header('WWW-Authenticate: Basic realm="RAPIDLEECH PLUGMOD"');

    44. 

  44. 			header('HTTP/1.0 401 Unauthorized');

    45. 

  45. 			include('deny.php');

    46. 

  46. 			exit;

    47. 

  47. 		}

    48. 

  48. 	}

    49. 

  49. }

    50. 

  50. 

    51. 

  51. function is_present($lpage, $mystr, $strerror = '', $head = 0) {

    52. 

  52. 	$strerror = !empty($strerror) ? $strerror : $mystr;

    53. 

  53. 	if (stripos($lpage, $mystr) !== false) html_error($strerror, $head);

    54. 

  54. }

    55. 

  55. 

    56. 

  56. function is_notpresent($lpage, $mystr, $strerror, $head = 0) {

    57. 

  57. 	if (stripos($lpage, $mystr) === false) html_error($strerror, $head);

    58. 

  58. }

    59. 

  59. 

    60. 

  60. function insert_location($inputs, $action = 0) {

    61. 

  61. 	if (!is_array($inputs)) {

    62. 

  62. 		if (strpos($inputs, '?') !== false) list($action, $inputs) = explode('?', $inputs, 2);

    63. 

  63. 		$query = explode('&', $inputs);

    64. 

  64. 		$inputs = array();

    65. 

  65. 		foreach($query as $q) {

    66. 

  66. 			list($name, $value) = explode('=', $q, 2);

    67. 

  67. 			if (empty($name) || empty($value)) continue;

    68. 

  68. 			$inputs[$name] = $value;

    69. 

  69. 		}

    70. 

  70. 		unset($query);

    71. 

  71. 	}

    72. 

  72. 	if (isset($_GET['GO']) && $_GET['GO'] == 'GO') $_GET = array_merge($_GET, $inputs);

    73. 

  73. 	else {

    74. 

  74. 		if ($action === 0) $action = $_SERVER['SCRIPT_NAME'];

    75. 

  75. 		$fname = 'r'.time().'l';

    76. 

  76. 		echo "\n<form name='$fname' ".(!empty($action) ? "action='$action' " : '')."method='POST'>\n";

    77. 

  77. 		foreach($inputs as $name => $value) echo "\t<input type='hidden' name='$name' value='$value' />\n";

    78. 

  78. 		echo "</form>\n";

    79. 

  79. 		echo "<script type='text/javascript'>void(document.$fname.submit());</script>\n";

    80. 

  80. 		echo "</body>\n";

    81. 

  81. 		echo '</html>';

    82. 

  82. 		flush();

    83. 

  83. 	}

    84. 

  84. }

    85. 

  85. 

    86. 

  86. function pause_download() {

    87. 

  87. 	global $pathWithName, $PHP_SELF, $_GET, $nn, $bytesReceived, $fs, $fp;

    88. 

  88. 	$status = connection_status();

    89. 

  89. 	if (($status == 2 || $status == 3) && $pathWithName && $bytesReceived > - 1) {

    90. 

  90. 		flock($fs, LOCK_UN);

    91. 

  91. 		fclose($fs);

    92. 

  92. 		fclose($fp);

    93. 

  93. 	}

    94. 

  94. }

    95. 

  95. 

    96. 

  96. function cut_str($str, $left, $right) {

    97. 

  97. 	$str = substr( stristr($str, $left), strlen($left));

    98. 

  98. 	$leftLen = strlen( stristr($str, $right)); 

    99. 

  99. 	$leftLen = $leftLen ? -($leftLen) : strlen($str);

    100. 

  100. 	$str = substr($str, 0, $leftLen);

    101. 

  101. 	return $str;

    102. 

  102. }

    103. 

  103. 

    104. 

  104. // tweaked cutstr with pluresearch functionality

    105. 

  105. function cutter($str, $left, $right, $cont = 1) {

    106. 

  106. 	for($iii=1;$iii<=$cont;$iii++){

    107. 

  107. 	$str = substr ( stristr ( $str, $left ), strlen ( $left ) );

    108. 

  108. 	}

    109. 

  109. 	$leftLen = strlen ( stristr ( $str, $right ) );

    110. 

  110. 	$leftLen = $leftLen ? - ($leftLen) : strlen ( $str );

    111. 

  111. 	$str = substr ( $str, 0, $leftLen );

    112. 

  112. 	return $str;

    113. 

  113. }

    114. 

  114. 

    115. 

  115. function write_file($file_name, $data, $trunk = 1) {

    116. 

  116. 	if ($trunk == 1) {

    117. 

  117. 		$mode = "wb";

    118. 

  118. 	} elseif ($trunk == 0) {

    119. 

  119. 		$mode = "ab";

    120. 

  120. 	}

    121. 

  121. 	$fp = fopen ( $file_name, $mode );

    122. 

  122. 	if (! $fp) {

    123. 

  123. 		return FALSE;

    124. 

  124. 	} else {

    125. 

  125. 		if (! flock ( $fp, LOCK_EX )) {

    126. 

  126. 			return FALSE;

    127. 

  127. 		} else {

    128. 

  128. 			if (! fwrite ( $fp, $data )) {

    129. 

  129. 				return FALSE;

    130. 

  130. 			} else {

    131. 

  131. 				if (! flock ( $fp, LOCK_UN )) {

    132. 

  132. 					return FALSE;

    133. 

  133. 				} else {

    134. 

  134. 					if (! fclose ( $fp )) {

    135. 

  135. 						return FALSE;

    136. 

  136. 					}

    137. 

  137. 				}

    138. 

  138. 			}

    139. 

  139. 		}

    140. 

  140. 	}

    141. 

  141. 	return TRUE;

    142. 

  142. }

    143. 

  143. 

    144. 

  144. function read_file($file_name, $count = -1) {

    145. 

  145. 	if ($count == - 1) {

    146. 

  146. 		$count = filesize ( $file_name );

    147. 

  147. 	}

    148. 

  148. 	$fp = fopen ( $file_name, "rb" );

    149. 

  149. 	flock ( $fp, LOCK_SH );

    150. 

  150. 	$ret = fread ( $fp, $count );

    151. 

  151. 	flock ( $fp, LOCK_UN );

    152. 

  152. 	fclose ( $fp );

    153. 

  153. 	return $ret;

    154. 

  154. }

    155. 

  155. 

    156. 

  156. function pre($var) {

    157. 

  157. 	echo "<pre>";

    158. 

  158. 	print_r($var);

    159. 

  159. 	echo "</pre>";

    160. 

  160. }

    161. 

  161. 

    162. 

  162. function getmicrotime() {

    163. 

  163. 	list ($usec, $sec) = explode(' ', microtime());

    164. 

  164. 	return ((float)$usec + (float)$sec);

    165. 

  165. }

    166. 

  166. 

    167. 

  167. function html_error($msg, $head = 1) {

    168. 

  168. 	global $PHP_SELF, $options;

    169. 

  169. 	//if ($head == 1)

    170. 

  170. 	if (!headers_sent()) include(TEMPLATE_DIR.'header.php');

    171. 

  171. 	echo '<div align="center">';

    172. 

  172. 	echo '<span class="htmlerror"><b>' . $msg . '</b></span><br /><br />';

    173. 

  173. 	if (isset($_GET['audl'])) echo '<script type="text/javascript">parent.nextlink();</script>';

    174. 

  174. 	if ($options['new_window']) echo '<a href="javascript:window.close();">'.lang(378).'</a>';

    175. 

  175. 	else echo '<a href="'.$PHP_SELF.'">'.lang(13).'</a>';

    176. 

  176. 

    177. 

  177. 	echo '</div>';

    178. 

  178. 	include(TEMPLATE_DIR.'footer.php');

    179. 

  179. 	exit();

    180. 

  180. }

    181. 

  181. 

    182. 

  182. function sec2time($time) {

    183. 

  183. 	$hour = round ( $time / 3600, 2 );

    184. 

  184. 	if ($hour >= 1) {

    185. 

  185. 		$hour = floor ( $hour );

    186. 

  186. 		$time -= $hour * 3600;

    187. 

  187. 	}

    188. 

  188. 	$min = round ( $time / 60, 2 );

    189. 

  189. 	if ($min >= 1) {

    190. 

  190. 		$min = floor ( $min );

    191. 

  191. 		$time -= $min * 60;

    192. 

  192. 	}

    193. 

  193. 	$sec = $time;

    194. 

  194. 	$hour = ($hour > 1) ? $hour . " ".lang(129)." " : ($hour == 1) ? $hour . " ".lang(130)." " : "";

    195. 

  195. 	$min = ($min > 1) ? $min . " ".lang(131)." " : ($min == 1) ? $min . " ".lang(132)." " : "";

    196. 

  196. 	$sec = ($sec > 1) ? $sec . " ".lang(133) : ($sec == 1 || $sec == 0) ? $sec . " ".lang(134) : "";

    197. 

  197. 	return $hour . $min . $sec;

    198. 

  198. }

    199. 

  199. 

    200. 

  200. // Updated function to be able to format up to Yotabytes!

    201. 

  201. function bytesToKbOrMbOrGb($bytes) {

    202. 

  202. 	if (is_numeric ( $bytes )) {

    203. 

  203. 		$s = array ('B', 'KB', 'MB', 'GB', 'TB', 'PB', 'EB', 'ZB', 'YB' );

    204. 

  204. 		$e = floor ( log ( $bytes ) / log ( 1024 ) );

    205. 

  205. 		

    206. 

  206. 		return sprintf ( '%.2f ' . $s [$e], @($bytes / pow ( 1024, floor ( $e ) )) );

    207. 

  207. 	} else {

    208. 

  208. 		$size = "Unknown";

    209. 

  209. 	}

    210. 

  210. 	return $size;

    211. 

  211. }

    212. 

  212. 

    213. 

  213. function updateListInFile($list) {

    214. 

  214. 	if (count ( $list ) > 0) {

    215. 

  215. 		foreach ( $list as $key => $value ) {

    216. 

  216. 			$list [$key] = serialize ( $value );

    217. 

  217. 		}

    218. 

  218. 		if (! @write_file ( CONFIG_DIR . "files.lst", implode ( "\r\n", $list ) . "\r\n" ) && count ( $list ) > 0) {

    219. 

  219. 			return FALSE;

    220. 

  220. 		} else {

    221. 

  221. 			return TRUE;

    222. 

  222. 		}

    223. 

  223. 	} elseif (@file_exists ( CONFIG_DIR . "files.lst" )) {

    224. 

  224. 		// Truncate files.lst instead of removing it since we don't have full

    225. 

  225. 		// read/write permission on the configs folder

    226. 

  226. 		$fh = fopen(CONFIG_DIR.'files.lst','w');

    227. 

  227. 		fclose($fh);

    228. 

  228. 		return true;

    229. 

  229. 	}

    230. 

  230. }

    231. 

  231. 

    232. 

  232. function _cmp_list_enums($a, $b) {

    233. 

  233. 	return strcmp ( $a ["name"], $b ["name"] );

    234. 

  234. }

    235. 

  235. 

    236. 

  236. function file_data_size_time($file) {

    237. 

  237. 	global $options;

    238. 

  238. 	$size = $time = false;

    239. 

  239. 	if (is_file($file)) {

    240. 

  240. 		$size = @filesize($file);

    241. 

  241. 		$time = @filemtime($file);

    242. 

  242. 	}

    243. 

  243. 	if ($size === false && $options['2gb_fix'] && file_exists($file) && !is_dir($file) && !is_link($file)) {

    244. 

  244. 		if (substr(PHP_OS, 0, 3) !== "WIN") {

    245. 

  245. 			@exec('stat'.(stristr(@php_uname('s'), 'bsd') !== false ? '-f %m ' : ' -c %Y ').escapeshellarg($file), $time, $tmp);

    246. 

  246. 			if ($tmp == 0) { $time = trim(implode($time)); }

    247. 

  247. 			@exec('stat'.(stristr(@php_uname('s'), 'bsd') !== false ? '-f %z ' : ' -c %s ').escapeshellarg($file), $size, $tmp);

    248. 

  248. 			if ($tmp == 0) { $size = trim(implode($size)); }

    249. 

  249. 		}

    250. 

  250. 	}

    251. 

  251. 	if ($size === false || $time === false) { return false; }

    252. 

  252. 	return array($size, $time);

    253. 

  253. }

    254. 

  254. 

    255. 

  255. function _create_list() {

    256. 

  256. 	global $list, $_COOKIE, $options;

    257. 

  257. 	$glist = array ();

    258. 

  258. 	if (($options['show_all'] === true) && (isset($_COOKIE ["showAll"]) && $_COOKIE ["showAll"] == 1)) {

    259. 

  259. 		$dir = dir ( DOWNLOAD_DIR );

    260. 

  260. 		while ( false !== ($file = $dir->read ()) ) {

    261. 

  261. 			if (($tmp = file_data_size_time(DOWNLOAD_DIR.$file)) === false) { continue; }; list($size, $time) = $tmp;

    262. 

  262. 			if ($file != "." && $file != ".." && (! is_array ( $options['forbidden_filetypes'] ) || ! in_array ( strtolower ( strrchr ( $file, "." ) ), $options['forbidden_filetypes'] ))) {

    263. 

  263. 				$file = DOWNLOAD_DIR . $file;

    264. 

  264. 				while (isset($glist[$time])) { $time ++; }

    265. 

  265. 				$glist [$time] = array ("name" => realpath($file), "size" => bytesToKbOrMbOrGb($size), "date" => $time );

    266. 

  266. 			}

    267. 

  267. 		}

    268. 

  268. 		$dir->close ();

    269. 

  269. 		@uasort ( $glist, "_cmp_list_enums" );

    270. 

  270. 	} else {

    271. 

  271. 		if (@file_exists ( CONFIG_DIR . "files.lst" ) && ($glist = file ( CONFIG_DIR . "files.lst" )) !== false) {

    272. 

  272. 			foreach ( $glist as $key => $record ) {

    273. 

  273. 				foreach ( unserialize ( $record ) as $field => $value ) {

    274. 

  274. 					$listReformat [$key] [$field] = $value;

    275. 

  275. 					if ($field == "date")

    276. 

  276. 						$date = $value;

    277. 

  277. 				}

    278. 

  278. 				$glist [$date] = $listReformat [$key];

    279. 

  279. 				unset ( $glist [$key], $listReformat [$key] );

    280. 

  280. 			}

    281. 

  281. 		}

    282. 

  282. 	}

    283. 

  283. 	$list = $glist;

    284. 

  284. }

    285. 

  285. 

    286. 

  286. function checkmail($mail) {

    287. 

  287. 	if (strlen ( $mail ) == 0) {

    288. 

  288. 		return false;

    289. 

  289. 	}

    290. 

  290. 	if (! preg_match ( "/^[a-z0-9_\.-]{1,20}@(([a-z0-9-]+\.)+(com|net|org|mil|" . "edu|gov|arpa|info|biz|inc|name|[a-z]{2})|[0-9]{1,3}\.[0-9]{1,3}\.[0-" . "9]{1,3}\.[0-9]{1,3})$/is", $mail )) {

    291. 

  291. 		return false;

    292. 

  292. 	}

    293. 

  293. 	return true;

    294. 

  294. }

    295. 

  295. /* Fixed Shell exploit by: icedog */

    296. 

  296. function fixfilename($fname, $fpach = '') {

    297. 

  297. 	$f_name = basename ( $fname );

    298. 

  298. 	$f_dir = dirname ( preg_replace ( '@\.\./@i', '', $fname ) );

    299. 

  299. 	$f_dir = ($f_dir == '.') ? '' : $f_dir;

    300. 

  300. 	$f_dir = preg_replace ( '@\.\./@i', '', $f_dir );

    301. 

  301. 	$fpach = preg_replace ( '@\.\./@i', '', $fpach );

    302. 

  302. 	$f_name = preg_replace ( '@\.(((s|\d)?php)|(hta)|(p[l|y])|(cgi)|(sph))@i', '.xxx', $f_name );

    303. 

  303. 	$ret = ($fpach) ? $fpach . DIRECTORY_SEPARATOR . $f_name : ($f_dir ? $f_dir . DIRECTORY_SEPARATOR : '') . $f_name;

    304. 

  304. 	return $ret;

    305. 

  305. }

    306. 

  306. function getfilesize($f) {

    307. 

  307. 	global $is_windows;

    308. 

  308. 	$stat = stat ( $f );

    309. 

  309. 

    310. 

  310. 	if ($is_windows)

    311. 

  311. 		return sprintf ( "%u", $stat [7] );

    312. 

  312. 	if (($stat [11] * $stat [12]) < 4 * 1024 * 1024 * 1024)

    313. 

  313. 		return sprintf ( "%u", $stat [7] );

    314. 

  314. 

    315. 

  315. 	global $max_4gb;

    316. 

  316. 	if ($max_4gb === false) {

    317. 

  317. 		$tmp_ = trim ( @shell_exec ( " ls -Ll " . @escapeshellarg ( $f ) ) );

    318. 

  318. 		while ( strstr ( $tmp_, '  ' ) ) {

    319. 

  319. 			$tmp_ = @str_replace ( '  ', ' ', $tmp_ );

    320. 

  320. 		}

    321. 

  321. 		$r = @explode ( ' ', $tmp_ );

    322. 

  322. 		$size_ = $r [4];

    323. 

  323. 	} else {

    324. 

  324. 		$size_ = - 1;

    325. 

  325. 	}

    326. 

  326. 

    327. 

  327. 	return $size_;

    328. 

  328. }

    329. 

  329. function bytesToKbOrMb($bytes) {

    330. 

  330. 	$size = ($bytes >= (1024 * 1024 * 1024 * 1024)) ? round ( $bytes / (1024 * 1024 * 1024 * 1024), 2 ) . ' TB' : (($bytes >= (1024 * 1024 * 1024)) ? round ( $bytes / (1024 * 1024 * 1024), 2 ) . ' GB' : (($bytes >= (1024 * 1024)) ? round ( $bytes / (1024 * 1024), 2 ) . ' MB' : round ( $bytes / 1024, 2 ) . ' KB'));

    331. 

  331. 	return $size;

    332. 

  332. }

    333. 

  333. function defport($urls) {

    334. 

  334. 	if (!empty($urls['port'])) return $urls['port'];

    335. 

  335. 	switch(strtolower($urls['scheme'])) {

    336. 

  336. 		case 'http' :

    337. 

  337. 			return '80';

    338. 

  338. 		case 'https' :

    339. 

  339. 			return '443';

    340. 

  340. 		case 'ftp' :

    341. 

  341. 			return '21';

    342. 

  342. 	}

    343. 

  343. }

    344. 

  344. function getSize($file) {

    345. 

  345. 	$size = filesize($file);

    346. 

  346. 	if ($size < 0) {

    347. 

  347. 		if (strtoupper(substr(PHP_OS, 0, 3)) != 'WIN')

    348. 

  348. 			$size = trim(`stat -c%s $file`);

    349. 

  349. 		else {

    350. 

  350. 			$fsobj = new COM('Scripting.FileSystemObject');

    351. 

  351. 			$f = $fsobj->GetFile($file);

    352. 

  352. 			$size = $file->Size;

    353. 

  353. 		}

    354. 

  354. 	}

    355. 

  355. 	return $size;

    356. 

  356. }

    357. 

  357. function purge_files($delay) {

    358. 

  358. 	if (file_exists(CONFIG_DIR . 'files.lst') && is_numeric($delay) && $delay > 0) {

    359. 

  359. 		$files_lst = file(CONFIG_DIR . 'files.lst');

    360. 

  360. 		$files_new = '';

    361. 

  361. 		foreach ($files_lst as $files_line) {

    362. 

  362. 			$files_data = unserialize(trim($files_line));

    363. 

  363. 			if (file_exists($files_data['name']) && is_file($files_data['name'])) {

    364. 

  364. 				if (time() - $files_data['date'] >= $delay) @unlink ($files_data['name']);

    365. 

  365. 				else $files_new .= $files_line;

    366. 

  366. 			}

    367. 

  367. 		}

    368. 

  368. 		file_put_contents(CONFIG_DIR . 'files.lst', $files_new);

    369. 

  369. 	}

    370. 

  370. }

    371. 

  371. // Using this function instead due to some compatibility problems

    372. 

  372. function is__writable($path) {

    373. 

  373. 	//will work in despite of Windows ACLs bug

    374. 

  374. 	//NOTE: use a trailing slash for folders!!!

    375. 

  375. 	//see http://bugs.php.net/bug.php?id=27609

    376. 

  376. 	//see http://bugs.php.net/bug.php?id=30931

    377. 

  377. 

    378. 

  378. 	if ($path[strlen($path) - 1] == '/') return is__writable($path . uniqid(mt_rand()) . '.tmp');// recursively return a temporary file path

    379. 

  379. 	else if (is_dir($path)) return is__writable($path . '/' . uniqid(mt_rand()) . '.tmp');

    380. 

  380. 	// check tmp file for read/write capabilities

    381. 

  381. 	$rm = file_exists($path);

    382. 

  382. 	$f = @fopen($path, 'a');

    383. 

  383. 	if ($f === false) return false;

    384. 

  384. 	fclose($f);

    385. 

  385. 	if (!$rm) unlink($path);

    386. 

  386. 	return true;

    387. 

  387. }

    388. 

  388. 

    389. 

  389. function link_for_file($filename, $only_link = FALSE, $style = '') {

    390. 

  390. 	$inCurrDir = strpos(dirname($filename), ROOT_DIR) !== FALSE ? TRUE : FALSE;

    391. 

  391. 	if ($inCurrDir) {

    392. 

  392. 		$Path = parse_url($_SERVER ['SCRIPT_NAME']);

    393. 

  393. 		$Path = substr($Path['path'], 0, strlen($Path['path']) - strlen(strrchr($Path['path'], '/')));

    394. 

  394. 		$Path = str_replace('\\', '/', $Path.substr(dirname($filename), strlen(ROOT_DIR)));

    395. 

  395. 	} elseif (dirname($_SERVER ['SCRIPT_NAME'].'safe') != '/') {

    396. 

  396. 		$in_webdir_path = dirname(str_replace('\\', '/', $_SERVER ['SCRIPT_NAME'].'safe'));

    397. 

  397. 		$in_webdir_sub = substr_count($in_webdir_path, '/');

    398. 

  398. 		$in_webdir_root = ROOT_DIR.'/';

    399. 

  399. 		for ($i=1; $i <= $in_webdir_sub; $i++) {

    400. 

  400. 			$in_webdir_path = substr($in_webdir_path, 0, strrpos($in_webdir_path, '/'));

    401. 

  401. 			$in_webdir_root = realpath($in_webdir_root.'/../').'/';

    402. 

  402. 			$in_webdir = (strpos(str_replace('\\', '/', dirname($filename).'/'), str_replace('\\', '/', $in_webdir_root)) === 0) ? TRUE : FALSE;

    403. 

  403. 			if ($in_webdir) {

    404. 

  404. 				$Path = dirname($in_webdir_path.'/'.substr($filename, strlen($in_webdir_root)));

    405. 

  405. 				break;

    406. 

  406. 			}

    407. 

  407. 		}

    408. 

  408. 	} else {

    409. 

  409. 		$Path = FALSE;

    410. 

  410. 		if ($only_link) return '';

    411. 

  411. 	}

    412. 

  412. 	$basename = htmlentities(basename($filename));

    413. 

  413. 	$Path = htmlentities($Path).'/'.rawurlencode(basename($filename));

    414. 

  414. 	if ($only_link) return 'http://'.urldecode($_SERVER['HTTP_HOST']).$Path;

    415. 

  415. 	elseif ($Path === FALSE) return '<span>'.$basename.'</span>';

    416. 

  416. 	else return '<a href="'.$Path.'"'.($style !== '' ? ' '.$style : '').'>'.$basename.'</a>';

    417. 

  417. }

    418. 

  418. 

    419. 

  419. function lang($id) {

    420. 

  420. 	global $options, $lang;

    421. 

  421. 	if (!is_array($lang)) $lang = array();

    422. 

  422. 	if (basename($options['default_language']) != 'en' && file_exists('languages/en.php')) require_once('languages/en.php');

    423. 

  423. 	require_once('languages/'.basename($options['default_language']).'.php');

    424. 

  424. 	return $lang[$id];

    425. 

  425. }

    426. 

  426. 

    427. 

  427. #need to keep premium account cookies safe!

    428. 

  428. function encrypt($string) {

    429. 

  429. 	global $secretkey;

    430. 

  430. 	if (!$secretkey) return html_error('Value for $secretkey is empty, please create a random one (56 chars max) in accounts.php!');

    431. 

  431. 	require_once 'class.pcrypt.php';

    432. 

  432. 

    433. 

  433. 	/*

    434. 

  434. 	MODE: MODE_ECB or MODE_CBC

    435. 

  435. 	ALGO: BLOWFISH

    436. 

  436. 	KEY:  Your secret key :) (max lenght: 56)

    437. 

  437. 	*/

    438. 

  438. 	$crypt = new pcrypt(MODE_CBC, "BLOWFISH", "$secretkey");

    439. 

  439. 

    440. 

  440. 	// to encrypt

    441. 

  441. 	$ciphertext = $crypt->encrypt($string);

    442. 

  442. 

    443. 

  443. 	return $ciphertext;

    444. 

  444. }

    445. 

  445. 

    446. 

  446. function decrypt($string) {

    447. 

  447. 	global $secretkey;

    448. 

  448. 	if (!$secretkey) return html_error('Value for $secretkey is empty, please create a random one (56 chars max) in accounts.php!');

    449. 

  449. 	require_once 'class.pcrypt.php';

    450. 

  450. 	

    451. 

  451. 	/*

    452. 

  452. 	MODE: MODE_ECB or MODE_CBC

    453. 

  453. 	ALGO: BLOWFISH

    454. 

  454. 	KEY:  Your secret key :) (max lenght: 56)

    455. 

  455. 	*/

    456. 

  456. 	$crypt = new pcrypt(MODE_CBC, "BLOWFISH", "$secretkey");

    457. 

  457. 

    458. 

  458. 	// to decrypt

    459. 

  459. 	$decrypted  = $crypt->decrypt($string);

    460. 

  460. 

    461. 

  461. 	return $decrypted;

    462. 

  462. }

    463. 

  463. 

    464. 

  464. /**

    465. 

  465.  * Textarea for debugging variable

    466. 

  466.  * @param string The variable you want to debug

    467. 

  467.  * @param int Column for variable display

    468. 

  468.  * @param int Rows for variable display

    469. 

  469.  * @param bool Options to continue or not process

    470. 

  470.  * @param string Charset encoding for htmlentities

    471. 

  471.  */

    472. 

  472. function textarea($var, $cols = 100, $rows = 30, $stop = false, $char = 'UTF-8') {

    473. 

  473. 	$cols = ($cols == 0) ? 100 : $cols;

    474. 

  474. 	$rows = ($rows == 0) ? 30 : $rows;

    475. 

  475. 	if ($char === false) $char = 'ISO-8859-1';

    476. 

  476. 	echo "\n<br /><textarea cols='$cols' rows='$rows' readonly='readonly'>";

    477. 

  477. 	if (is_array($var)) $text = htmlentities(print_r($var, true), ENT_QUOTES, $char);

    478. 

  478. 	else $text = htmlentities($var, ENT_QUOTES, $char);

    479. 

  479. 	if (empty($text) && !empty($var)) { // Fix "empty?" textarea bug

    480. 

  480. 		$char = ($char == 'ISO-8859-1') ? '' : 'ISO-8859-1';

    481. 

  481. 		if (is_array($var)) $text = htmlentities(print_r($var, true), ENT_QUOTES, $char);

    482. 

  482. 		else $text = htmlentities($var, ENT_QUOTES, $char);

    483. 

  483. 	}

    484. 

  484. 	echo "$text</textarea><br />\n";

    485. 

  485. 	if ($stop) exit;

    486. 

  486. }

    487. 

  487. 

    488. 

  488. // Get time in miliseconds, like getTime() in javascript

    489. 

  489. function jstime() {

    490. 

  490. 	list($u, $s) = explode(' ', microtime()); 

    491. 

  491. 	return sprintf('%d%03d', $s, $u*1000);

    492. 

  492. }

    493. 

  493. 

    494. 

  494. function check_referer() {

    495. 

  495. 	$refhost = !empty($_SERVER['HTTP_REFERER']) ? cut_str($_SERVER['HTTP_REFERER'], '://', '/') : false;

    496. 

  496. 	if (empty($refhost)) return;

    497. 

  497. 

    498. 

  498. 	//Remove the port.

    499. 

  499. 	$httphost = ($pos = strpos($_SERVER['HTTP_HOST'], ':')) !== false ? substr($_SERVER['HTTP_HOST'], 0, $pos) : $_SERVER['HTTP_HOST'];

    500. 

  500. 	$refhost = ($pos = strpos($refhost, ':')) !== false ? substr($refhost, 0, $pos) : $refhost;

    501. 

  501. 	// If there is a login on the referer, remove it.

    502. 

  502. 	$refhost = ($pos = strpos($refhost, '@')) !== false ? substr($refhost, $pos+1) : $refhost;

    503. 

  503. 

    504. 

  504. 	$whitelist = array($httphost, 'localhost', 'rapidleech.com');

    505. 

  505. 	$is_ext = ($refhost == $_SERVER['SERVER_ADDR'] ? false : true);

    506. 

  506. 	if ($is_ext)

    507. 

  507. 		foreach ($whitelist as $host)

    508. 

  508. 			if (host_matchs($host, $refhost)) {

    509. 

  509. 				$is_ext = false;

    510. 

  510. 				break;

    511. 

  511. 			}

    512. 

  512. 

    513. 

  513. 	if ($is_ext) {

    514. 

  514. 		// Uncomment next line if you want rickroll the users from Form leechers.

    515. 

  515. 		// header("Location: http://www.youtube.com/watch?v=oHg5SJYRHA0");

    516. 

  516. 		html_error(sprintf(lang(7), $refhost, 'External referer not allowed.'));

    517. 

  517. 	}

    518. 

  518. }

    519. 

  519. 

    520. 

  520. function rebuild_url($url) {

    521. 

  521. 	return $url['scheme'] . '://' . (!empty($url['user']) && !empty($url['pass']) ? rawurlencode($url['user']) . ':' . rawurlencode($url['pass']) . '@' : '') . $url['host'] . (!empty($url['port']) && $url['port'] != 80 && $url['port'] != 443 ? ':' . $url['port'] : '') . (empty($url['path']) ? '/' : $url['path']) . (!empty($url['query']) ? '?' . $url['query'] : '') . (!empty($url['fragment']) ? '#' . $url['fragment'] : '');

    522. 

  522. }

    523. 

  523. 

    524. 

  524. if (!function_exists('http_chunked_decode')) {

    525. 

  525. 	// Added implementation from a comment at php.net's function page

    526. 

  526. 	function http_chunked_decode($chunk) {

    527. 

  527. 		$pos = 0;

    528. 

  528. 		$len = strlen($chunk);

    529. 

  529. 		$dechunk = null;

    530. 

  530. 

    531. 

  531. 		while(($pos < $len) && ($chunkLenHex = substr($chunk, $pos, ($newlineAt = strpos($chunk, "\n", $pos + 1)) - $pos))) {

    532. 

  532. 			if (!is_hex($chunkLenHex)) {

    533. 

  533. 				trigger_error('Value is not properly chunk encoded_', E_USER_WARNING);

    534. 

  534. 				return false;

    535. 

  535. 			}

    536. 

  536. 

    537. 

  537. 			$pos = $newlineAt + 1;

    538. 

  538. 			$chunkLen = hexdec(rtrim($chunkLenHex, "\r\n"));

    539. 

  539. 			$dechunk .= substr($chunk, $pos, $chunkLen);

    540. 

  540. 			$pos = strpos($chunk, "\n", $pos + $chunkLen) + 1;

    541. 

  541. 		}

    542. 

  542. 		return $dechunk;

    543. 

  543. 	}

    544. 

  544. 

    545. 

  545. 	function is_hex($hex) {

    546. 

  546. 		$hex = strtolower(trim(ltrim($hex, "0")));

    547. 

  547. 		if (empty($hex)) $hex = 0;

    548. 

  548. 		$dec = hexdec($hex);

    549. 

  549. 		return ($hex == dechex($dec));

    550. 

  550. 	}

    551. 

  551. }

    552. 

  552. 

    553. 

  553. function host_matchs($site, $host) {

    554. 

  554. 	if (empty($site) || empty($host)) return false;

    555. 

  555. 	if (strtolower($site) == strtolower($host)) return true;

    556. 

  556. 	$slen = strlen($site);

    557. 

  557. 	$hlen = strlen($host);

    558. 

  558. 	if (($pos = strripos($host, $site)) !== false && ($pos + $slen == $hlen) && $pos > 1 && substr($host, $pos - 1, 1) == '.') return true;

    559. 

  559. 	return false;

    560. 

  560. }

    561. 

  561. 

    562. 

  562. function GetDefaultParams() {

    563. 

  563. 	global $options;

    564. 

  564. 	$DParam = array();

    565. 

  565. 	if (isset($_GET['useproxy']) && $_GET['useproxy'] == 'on' && !empty($_GET['proxy'])) {

    566. 

  566. 		global $pauth;

    567. 

  567. 		$DParam['useproxy'] = 'on';

    568. 

  568. 		$DParam['proxy'] = $_GET['proxy'];

    569. 

  569. 		if ($pauth) $DParam['pauth'] = urlencode(encrypt($pauth));

    570. 

  570. 	}

    571. 

  571. 	if (isset($_GET['autoclose'])) $DParam['autoclose'] = 1;

    572. 

  572. 	if (isset($_GET['audl'])) $DParam['audl'] = 'doum';

    573. 

  573. 	if ($options['download_dir_is_changeable'] && !empty($_GET['path'])) $DParam['saveto'] = urlencode($_GET['path']);

    574. 

  574. 	$params = array('add_comment', 'domail', 'comment', 'email', 'split', 'partSize', 'method', 'uploadlater', 'uploadtohost');

    575. 

  575. 	foreach ($params as $key) if (!empty($_GET[$key])) $DParam[$key] = $_GET [$key];

    576. 

  576. 	return $DParam;

    577. 

  577. }

    578. 

  578. 

    579. 

  579. ?>
    580.