/system/CKfinder/core/connector/php/php5/Utils/FileSystem.php
PHP | 551 lines | 319 code | 57 blank | 175 comment | 105 complexity | 35f99115e2baa95bf446a148026227c2 MD5 | raw file
- <?php
- /*
- * CKFinder
- * ========
- * http://ckfinder.com
- * Copyright (C) 2007-2011, CKSource - Frederico Knabben. All rights reserved.
- *
- * The software, this file and its contents are subject to the CKFinder
- * License. Please read the license.txt file before using, installing, copying,
- * modifying or distribute this file or part of its contents. The contents of
- * this file is part of the Source Code of CKFinder.
- */
- if (!defined('IN_CKFINDER')) exit;
- /**
- * @package CKFinder
- * @subpackage Utils
- * @copyright CKSource - Frederico Knabben
- */
- /**
- * @package CKFinder
- * @subpackage Utils
- * @copyright CKSource - Frederico Knabben
- */
- class CKFinder_Connector_Utils_FileSystem
- {
- /**
- * This function behaves similar to System.IO.Path.Combine in C#, the only diffrenece is that it also accepts null values and treat them as empty string
- *
- * @static
- * @access public
- * @param string $path1 first path
- * @param string $path2 scecond path
- * @return string
- */
- public static function combinePaths($path1, $path2)
- {
- if (is_null($path1)) {
- $path1 = "";
- }
- if (is_null($path2)) {
- $path2 = "";
- }
- if (!strlen($path2)) {
- if (strlen($path1)) {
- $_lastCharP1 = substr($path1, -1, 1);
- if ($_lastCharP1 != "/" && $_lastCharP1 != "\\") {
- $path1 .= DIRECTORY_SEPARATOR;
- }
- }
- }
- else {
- $_firstCharP2 = substr($path2, 0, 1);
- if (strlen($path1)) {
- if (strpos($path2, $path1)===0) {
- return $path2;
- }
- $_lastCharP1 = substr($path1, -1, 1);
- if ($_lastCharP1 != "/" && $_lastCharP1 != "\\" && $_firstCharP2 != "/" && $_firstCharP2 != "\\") {
- $path1 .= DIRECTORY_SEPARATOR;
- }
- }
- else {
- return $path2;
- }
- }
- return $path1 . $path2;
- }
- /**
- * Check whether $fileName is a valid file name, return true on success
- *
- * @static
- * @access public
- * @param string $fileName
- * @return boolean
- */
- public static function checkFileName($fileName)
- {
- if (is_null($fileName) || !strlen($fileName) || substr($fileName,-1,1)=="." || false!==strpos($fileName, "..")) {
- return false;
- }
- if (preg_match(CKFINDER_REGEX_INVALID_FILE, $fileName)) {
- return false;
- }
- return true;
- }
- /**
- * Unlink file/folder
- *
- * @static
- * @access public
- * @param string $path
- * @return boolean
- */
- public static function unlink($path)
- {
- /* make sure the path exists */
- if(!file_exists($path)) {
- return false;
- }
- /* If it is a file or link, just delete it */
- if(is_file($path) || is_link($path)) {
- return @unlink($path);
- }
- /* Scan the dir and recursively unlink */
- $files = scandir($path);
- if ($files) {
- foreach($files as $filename)
- {
- if ($filename == '.' || $filename == '..') {
- continue;
- }
- $file = str_replace('//','/',$path.'/'.$filename);
- CKFinder_Connector_Utils_FileSystem::unlink($file);
- }
- }
- /* Remove the parent dir */
- if(!@rmdir($path)) {
- return false;
- }
- return true;
- }
- /**
- * Return file name without extension (without dot & last part after dot)
- *
- * @static
- * @access public
- * @param string $fileName
- * @return string
- */
- public static function getFileNameWithoutExtension($fileName)
- {
- $dotPos = strrpos( $fileName, '.' );
- if (false === $dotPos) {
- return $fileName;
- }
- return substr($fileName, 0, $dotPos);
- }
- /**
- * Get file extension (only last part - e.g. extension of file.foo.bar.jpg = jpg)
- *
- * @static
- * @access public
- * @param string $fileName
- * @return string
- */
- public static function getExtension( $fileName )
- {
- $dotPos = strrpos( $fileName, '.' );
- if (false === $dotPos) {
- return "";
- }
- return substr( $fileName, strrpos( $fileName, '.' ) +1 ) ;
- }
- /**
- * Read file, split it into small chunks and send it to the browser
- *
- * @static
- * @access public
- * @param string $filename
- * @return boolean
- */
- public static function readfileChunked($filename)
- {
- $chunksize = 1024 * 10; // how many bytes per chunk
- $handle = fopen($filename, 'rb');
- if ($handle === false) {
- return false;
- }
- while (!feof($handle)) {
- echo fread($handle, $chunksize);
- @ob_flush();
- flush();
- @set_time_limit(8);
- }
- fclose($handle);
- return true;
- }
- /**
- * Replace accented UTF-8 characters by unaccented ASCII-7 "equivalents".
- * The purpose of this function is to replace characters commonly found in Latin
- * alphabets with something more or less equivalent from the ASCII range. This can
- * be useful for converting a UTF-8 to something ready for a filename, for example.
- * Following the use of this function, you would probably also pass the string
- * through utf8_strip_non_ascii to clean out any other non-ASCII chars
- *
- * For a more complete implementation of transliteration, see the utf8_to_ascii package
- * available from the phputf8 project downloads:
- * http://prdownloads.sourceforge.net/phputf8
- *
- * @param string UTF-8 string
- * @param string UTF-8 with accented characters replaced by ASCII chars
- * @return string accented chars replaced with ascii equivalents
- * @author Andreas Gohr <andi@splitbrain.org>
- * @see http://sourceforge.net/projects/phputf8/
- */
- public static function convertToAscii($str)
- {
- static $UTF8_LOWER_ACCENTS = NULL;
- static $UTF8_UPPER_ACCENTS = NULL;
- if ( is_null($UTF8_LOWER_ACCENTS) ) {
- $UTF8_LOWER_ACCENTS = array(
- 'à' => 'a', 'ô' => 'o', 'ď' => 'd', 'ḟ' => 'f', 'ë' => 'e', 'š' => 's', 'ơ' => 'o',
- 'ß' => 'ss', 'ă' => 'a', 'ř' => 'r', 'ț' => 't', 'ň' => 'n', 'ā' => 'a', 'ķ' => 'k',
- 'ŝ' => 's', 'ỳ' => 'y', 'ņ' => 'n', 'ĺ' => 'l', 'ħ' => 'h', 'ṗ' => 'p', 'ó' => 'o',
- 'ú' => 'u', 'ě' => 'e', 'é' => 'e', 'ç' => 'c', 'ẁ' => 'w', 'ċ' => 'c', 'õ' => 'o',
- 'ṡ' => 's', 'ø' => 'o', 'ģ' => 'g', 'ŧ' => 't', 'ș' => 's', 'ė' => 'e', 'ĉ' => 'c',
- 'ś' => 's', 'î' => 'i', 'ű' => 'u', 'ć' => 'c', 'ę' => 'e', 'ŵ' => 'w', 'ṫ' => 't',
- 'ū' => 'u', 'č' => 'c', 'ö' => 'oe', 'è' => 'e', 'ŷ' => 'y', 'ą' => 'a', 'ł' => 'l',
- 'ų' => 'u', 'ů' => 'u', 'ş' => 's', 'ğ' => 'g', 'ļ' => 'l', 'ƒ' => 'f', 'ž' => 'z',
- 'ẃ' => 'w', 'ḃ' => 'b', 'å' => 'a', 'ì' => 'i', 'ï' => 'i', 'ḋ' => 'd', 'ť' => 't',
- 'ŗ' => 'r', 'ä' => 'ae', 'í' => 'i', 'ŕ' => 'r', 'ê' => 'e', 'ü' => 'ue', 'ò' => 'o',
- 'ē' => 'e', 'ñ' => 'n', 'ń' => 'n', 'ĥ' => 'h', 'ĝ' => 'g', 'đ' => 'd', 'ĵ' => 'j',
- 'ÿ' => 'y', 'ũ' => 'u', 'ŭ' => 'u', 'ư' => 'u', 'ţ' => 't', 'ý' => 'y', 'ő' => 'o',
- 'â' => 'a', 'ľ' => 'l', 'ẅ' => 'w', 'ż' => 'z', 'ī' => 'i', 'ã' => 'a', 'ġ' => 'g',
- 'ṁ' => 'm', 'ō' => 'o', 'ĩ' => 'i', 'ù' => 'u', 'į' => 'i', 'ź' => 'z', 'á' => 'a',
- 'û' => 'u', 'þ' => 'th', 'ð' => 'dh', 'æ' => 'ae', 'µ' => 'u', 'ĕ' => 'e',
- );
- }
- $str = str_replace(
- array_keys($UTF8_LOWER_ACCENTS),
- array_values($UTF8_LOWER_ACCENTS),
- $str
- );
- if ( is_null($UTF8_UPPER_ACCENTS) ) {
- $UTF8_UPPER_ACCENTS = array(
- 'À' => 'A', 'Ô' => 'O', 'Ď' => 'D', 'Ḟ' => 'F', 'Ë' => 'E', 'Š' => 'S', 'Ơ' => 'O',
- 'Ă' => 'A', 'Ř' => 'R', 'Ț' => 'T', 'Ň' => 'N', 'Ā' => 'A', 'Ķ' => 'K',
- 'Ŝ' => 'S', 'Ỳ' => 'Y', 'Ņ' => 'N', 'Ĺ' => 'L', 'Ħ' => 'H', 'Ṗ' => 'P', 'Ó' => 'O',
- 'Ú' => 'U', 'Ě' => 'E', 'É' => 'E', 'Ç' => 'C', 'Ẁ' => 'W', 'Ċ' => 'C', 'Õ' => 'O',
- 'Ṡ' => 'S', 'Ø' => 'O', 'Ģ' => 'G', 'Ŧ' => 'T', 'Ș' => 'S', 'Ė' => 'E', 'Ĉ' => 'C',
- 'Ś' => 'S', 'Î' => 'I', 'Ű' => 'U', 'Ć' => 'C', 'Ę' => 'E', 'Ŵ' => 'W', 'Ṫ' => 'T',
- 'Ū' => 'U', 'Č' => 'C', 'Ö' => 'Oe', 'È' => 'E', 'Ŷ' => 'Y', 'Ą' => 'A', 'Ł' => 'L',
- 'Ų' => 'U', 'Ů' => 'U', 'Ş' => 'S', 'Ğ' => 'G', 'Ļ' => 'L', 'Ƒ' => 'F', 'Ž' => 'Z',
- 'Ẃ' => 'W', 'Ḃ' => 'B', 'Å' => 'A', 'Ì' => 'I', 'Ï' => 'I', 'Ḋ' => 'D', 'Ť' => 'T',
- 'Ŗ' => 'R', 'Ä' => 'Ae', 'Í' => 'I', 'Ŕ' => 'R', 'Ê' => 'E', 'Ü' => 'Ue', 'Ò' => 'O',
- 'Ē' => 'E', 'Ñ' => 'N', 'Ń' => 'N', 'Ĥ' => 'H', 'Ĝ' => 'G', 'Đ' => 'D', 'Ĵ' => 'J',
- 'Ÿ' => 'Y', 'Ũ' => 'U', 'Ŭ' => 'U', 'Ư' => 'U', 'Ţ' => 'T', 'Ý' => 'Y', 'Ő' => 'O',
- 'Â' => 'A', 'Ľ' => 'L', 'Ẅ' => 'W', 'Ż' => 'Z', 'Ī' => 'I', 'Ã' => 'A', 'Ġ' => 'G',
- 'Ṁ' => 'M', 'Ō' => 'O', 'Ĩ' => 'I', 'Ù' => 'U', 'Į' => 'I', 'Ź' => 'Z', 'Á' => 'A',
- 'Û' => 'U', 'Þ' => 'Th', 'Ð' => 'Dh', 'Æ' => 'Ae', 'Ĕ' => 'E',
- );
- }
- $str = str_replace(
- array_keys($UTF8_UPPER_ACCENTS),
- array_values($UTF8_UPPER_ACCENTS),
- $str
- );
- return $str;
- }
- /**
- * Convert file name from UTF-8 to system encoding
- *
- * @static
- * @access public
- * @param string $fileName
- * @return string
- */
- public static function convertToFilesystemEncoding($fileName)
- {
- $_config =& CKFinder_Connector_Core_Factory::getInstance("Core_Config");
- $encoding = $_config->getFilesystemEncoding();
- if (is_null($encoding) || strcasecmp($encoding, "UTF-8") == 0 || strcasecmp($encoding, "UTF8") == 0) {
- return $fileName;
- }
- if (!function_exists("iconv")) {
- if (strcasecmp($encoding, "ISO-8859-1") == 0 || strcasecmp($encoding, "ISO8859-1") == 0 || strcasecmp($encoding, "Latin1") == 0) {
- return str_replace("\0", "_", utf8_decode($fileName));
- } else if (function_exists('mb_convert_encoding')) {
- /**
- * @todo check whether charset is supported - mb_list_encodings
- */
- $encoded = @mb_convert_encoding($fileName, $encoding, 'UTF-8');
- if (@mb_strlen($fileName, "UTF-8") != @mb_strlen($encoded, $encoding)) {
- return str_replace("\0", "_", preg_replace("/[^[:ascii:]]/u","_",$fileName));
- }
- else {
- return str_replace("\0", "_", $encoded);
- }
- } else {
- return str_replace("\0", "_", preg_replace("/[^[:ascii:]]/u","_",$fileName));
- }
- }
- $converted = @iconv("UTF-8", $encoding . "//IGNORE//TRANSLIT", $fileName);
- if ($converted === false) {
- return str_replace("\0", "_", preg_replace("/[^[:ascii:]]/u","_",$fileName));
- }
- return $converted;
- }
- /**
- * Convert file name from system encoding into UTF-8
- *
- * @static
- * @access public
- * @param string $fileName
- * @return string
- */
- public static function convertToConnectorEncoding($fileName)
- {
- $_config =& CKFinder_Connector_Core_Factory::getInstance("Core_Config");
- $encoding = $_config->getFilesystemEncoding();
- if (is_null($encoding) || strcasecmp($encoding, "UTF-8") == 0 || strcasecmp($encoding, "UTF8") == 0) {
- return $fileName;
- }
- if (!function_exists("iconv")) {
- if (strcasecmp($encoding, "ISO-8859-1") == 0 || strcasecmp($encoding, "ISO8859-1") == 0 || strcasecmp($encoding, "Latin1") == 0) {
- return utf8_encode($fileName);
- } else {
- return $fileName;
- }
- }
- $converted = @iconv($encoding, "UTF-8", $fileName);
- if ($converted === false) {
- return $fileName;
- }
- return $converted;
- }
- /**
- * Find document root
- *
- * @return string
- * @access public
- */
- public function getDocumentRootPath()
- {
- /**
- * The absolute pathname of the currently executing script.
- * Notatka: If a script is executed with the CLI, as a relative path, such as file.php or ../file.php,
- * $_SERVER['SCRIPT_FILENAME'] will contain the relative path specified by the user.
- */
- if (isset($_SERVER['SCRIPT_FILENAME'])) {
- $sRealPath = dirname($_SERVER['SCRIPT_FILENAME']);
- }
- else {
- /**
- * realpath — Returns canonicalized absolute pathname
- */
- $sRealPath = realpath( './' ) ;
- }
- /**
- * The filename of the currently executing script, relative to the document root.
- * For instance, $_SERVER['PHP_SELF'] in a script at the address http://example.com/test.php/foo.bar
- * would be /test.php/foo.bar.
- */
- $sSelfPath = dirname($_SERVER['PHP_SELF']);
- return substr($sRealPath, 0, strlen($sRealPath) - strlen($sSelfPath));
- }
- /**
- * Create directory recursively
- *
- * @access public
- * @static
- * @param string $dir
- * @return boolean
- */
- public static function createDirectoryRecursively($dir)
- {
- if (DIRECTORY_SEPARATOR === "\\") {
- $dir = str_replace("/", "\\", $dir);
- }
- else if (DIRECTORY_SEPARATOR === "/") {
- $dir = str_replace("\\", "/", $dir);
- }
- $_config =& CKFinder_Connector_Core_Factory::getInstance("Core_Config");
- if ($perms = $_config->getChmodFolders()) {
- $oldUmask = umask(0);
- $bCreated = @mkdir($dir, $perms, true);
- umask($oldUmask);
- }
- else {
- $bCreated = @mkdir($dir, 0777, true);
- }
- return $bCreated;
- }
- /**
- * Detect HTML in the first KB to prevent against potential security issue with
- * IE/Safari/Opera file type auto detection bug.
- * Returns true if file contain insecure HTML code at the beginning.
- *
- * @static
- * @access public
- * @param string $filePath absolute path to file
- * @return boolean
- */
- public static function detectHtml($filePath)
- {
- $fp = @fopen($filePath, 'rb');
- if ( $fp === false || !flock( $fp, LOCK_SH ) ) {
- return -1 ;
- }
- $chunk = fread($fp, 1024);
- flock( $fp, LOCK_UN ) ;
- fclose($fp);
- $chunk = strtolower($chunk);
- if (!$chunk) {
- return false;
- }
- $chunk = trim($chunk);
- if (preg_match("/<!DOCTYPE\W*X?HTML/sim", $chunk)) {
- return true;
- }
- $tags = array('<body', '<head', '<html', '<img', '<pre', '<script', '<table', '<title');
- foreach( $tags as $tag ) {
- if(false !== strpos($chunk, $tag)) {
- return true ;
- }
- }
- //type = javascript
- if (preg_match('!type\s*=\s*[\'"]?\s*(?:\w*/)?(?:ecma|java)!sim', $chunk)) {
- return true ;
- }
- //href = javascript
- //src = javascript
- //data = javascript
- if (preg_match('!(?:href|src|data)\s*=\s*[\'"]?\s*(?:ecma|java)script:!sim',$chunk)) {
- return true ;
- }
- //url(javascript
- if (preg_match('!url\s*\(\s*[\'"]?\s*(?:ecma|java)script:!sim', $chunk)) {
- return true ;
- }
- return false ;
- }
- /**
- * Check file content.
- * Currently this function validates only image files.
- * Returns false if file is invalid.
- *
- * @static
- * @access public
- * @param string $filePath absolute path to file
- * @param string $extension file extension
- * @param integer $detectionLevel 0 = none, 1 = use getimagesize for images, 2 = use DetectHtml for images
- * @return boolean
- */
- public static function isImageValid($filePath, $extension)
- {
- if (!@is_readable($filePath)) {
- return -1;
- }
- $imageCheckExtensions = array('gif', 'jpeg', 'jpg', 'png', 'psd', 'bmp', 'tiff');
- // version_compare is available since PHP4 >= 4.0.7
- if ( function_exists( 'version_compare' ) ) {
- $sCurrentVersion = phpversion();
- if ( version_compare( $sCurrentVersion, "4.2.0" ) >= 0 ) {
- $imageCheckExtensions[] = "tiff";
- $imageCheckExtensions[] = "tif";
- }
- if ( version_compare( $sCurrentVersion, "4.3.0" ) >= 0 ) {
- $imageCheckExtensions[] = "swc";
- }
- if ( version_compare( $sCurrentVersion, "4.3.2" ) >= 0 ) {
- $imageCheckExtensions[] = "jpc";
- $imageCheckExtensions[] = "jp2";
- $imageCheckExtensions[] = "jpx";
- $imageCheckExtensions[] = "jb2";
- $imageCheckExtensions[] = "xbm";
- $imageCheckExtensions[] = "wbmp";
- }
- }
- if ( !in_array( $extension, $imageCheckExtensions ) ) {
- return true;
- }
- if ( @getimagesize( $filePath ) === false ) {
- return false ;
- }
- return true;
- }
- /**
- * Returns true if directory is not empty
- *
- * @access public
- * @static
- * @param string $serverPath
- * @return boolean
- */
- public static function hasChildren($serverPath)
- {
- if (!is_dir($serverPath) || (false === $fh = @opendir($serverPath))) {
- return false;
- }
- $hasChildren = false;
- while (false !== ($filename = readdir($fh))) {
- if ($filename == '.' || $filename == '..') {
- continue;
- } else if (is_dir($serverPath . DIRECTORY_SEPARATOR . $filename)) {
- //we have found valid directory
- $hasChildren = true;
- break;
- }
- }
- closedir($fh);
- return $hasChildren;
- }
- }