PageRenderTime 24ms CodeModel.GetById 24ms RepoModel.GetById 0ms app.codeStats 0ms

/include/bittorrent.php

https://bitbucket.org/nexea/x00n
PHP | 794 lines | 666 code | 95 blank | 33 comment | 148 complexity | d52609a84fd6b401ac15e4f9f7a65972 MD5 | raw file
Possible License(s): GPL-2.0 
    

  1. <?php

    2. 

  2. error_reporting(E_ALL ^ E_NOTICE); 

    3. 

  3. require_once("include/cleanup.php");

    4. 

  4. require_once("lib/db.php");

    5. 

  5. if( !defined("x00n") )

    6. 

  6. {

    7. 

  7. 	header("Location: ./install/index.php");

    8. 

  8. 	exit;

    9. 

  9. }   

    10. 

  10. if (file_exists('install'))

    11. 

  11. {

    12. 

  12. 	die('Delete the install directory');

    13. 

  13. }   

    14. 

  14. 

    15. 

  15. function local_user()

    16. 

  16. {

    17. 

  17.   global $HTTP_SERVER_VARS;

    18. 

  18. 

    19. 

  19.   return $HTTP_SERVER_VARS["SERVER_ADDR"] == $HTTP_SERVER_VARS["REMOTE_ADDR"];

    20. 

  20. }

    21. 

  21. 

    22. 

  22. dbconn();

    23. 

  23. $sql = "SELECT * FROM config";

    24. 

  24. if( !($result = mysql_query($sql)) )

    25. 

  25. {

    26. 

  26. 	die("Could not query config information");

    27. 

  27. }

    28. 

  28. //THIS SETS UP OUR CONFIG VARIABLES FROM THE CONFIG TABLE

    29. 

  29. while ( $row = mysql_fetch_assoc($result) )

    30. 

  30. {

    31. 

  31. 	$config[$row['name']] = $row['value'];

    32. 

  32. }

    33. 

  33. $FUNDS = $config['funds'];

    34. 

  34. $SITE_ONLINE = $config['siteonline'];

    35. 

  35. # the first one will be displayed on the pages

    36. 

  36. $announce_urls = array();

    37. 

  37. $announce_urls[] = $config['announce_url'];

    38. 

  38. //set this to true to make this a tracker that only registered users may use

    39. 

  39. $MEMBERSONLY = true;

    40. 

  40. //maximum number of peers (seeders+leechers) allowed before torrents starts to be deleted to make room...

    41. 

  41. //set this to something high if you don't require this feature

    42. 

  42. $PEERLIMIT = $config['peerlimit'];

    43. 

  43. // Email for sender/return path.

    44. 

  44. $SITEEMAIL = $config['sitemail'];

    45. 

  45. $SITENAME = $config['sitename'];

    46. 

  46. // Set this to your site URL... No ending slash!

    47. 

  47. $DEFAULTBASEURL = $config['domain'];

    48. 

  48. $max_torrent_size = 1000000;

    49. 

  49. $announce_interval = 60 * 30;

    50. 

  50. $signup_timeout = 86400 * 3;

    51. 

  51. $minvotes = 1;

    52. 

  52. $max_dead_torrent_time = 6 * 3600;

    53. 

  53. 

    54. 

  54. // Max users on site

    55. 

  55. $maxusers = 75000;

    56. 

  56. 

    57. 

  57. $torrent_dir = "torrents";    # must be writable for httpd user

    58. 

  58. 

    59. 

  59. if ($HTTP_SERVER_VARS["HTTP_HOST"] == "")

    60. 

  60.   $HTTP_SERVER_VARS["HTTP_HOST"] = $HTTP_SERVER_VARS["SERVER_NAME"];

    61. 

  61. $BASEURL = "http://" . $HTTP_SERVER_VARS["HTTP_HOST"];

    62. 

  62. 

    63. 

  63. 

    64. 

  64. 

    65. 

  65. 

    66. 

  66. 

    67. 

  67. $autoclean_interval = 900;

    68. 

  68. $pic_base_url = "images/";

    69. 

  69. 

    70. 

  70. /**** validip/getip courtesy of manolete <manolete@myway.com> ****/

    71. 

  71. 

    72. 

  72. // IP Validation

    73. 

  73. function validip($ip)

    74. 

  74. {

    75. 

  75. 	if (!empty($ip) && ip2long($ip)!=-1)

    76. 

  76. 	{

    77. 

  77. 		// reserved IANA IPv4 addresses

    78. 

  78. 		// http://www.iana.org/assignments/ipv4-address-space

    79. 

  79. 		$reserved_ips = array (

    80. 

  80. 				array('0.0.0.0','2.255.255.255'),

    81. 

  81. 				array('10.0.0.0','10.255.255.255'),

    82. 

  82. 				array('127.0.0.0','127.255.255.255'),

    83. 

  83. 				array('169.254.0.0','169.254.255.255'),

    84. 

  84. 				array('172.16.0.0','172.31.255.255'),

    85. 

  85. 				array('192.0.2.0','192.0.2.255'),

    86. 

  86. 				array('192.168.0.0','192.168.255.255'),

    87. 

  87. 				array('255.255.255.0','255.255.255.255')

    88. 

  88. 		);

    89. 

  89. 

    90. 

  90. 		foreach ($reserved_ips as $r)

    91. 

  91. 		{

    92. 

  92. 				$min = ip2long($r[0]);

    93. 

  93. 				$max = ip2long($r[1]);

    94. 

  94. 				if ((ip2long($ip) >= $min) && (ip2long($ip) <= $max)) return false;

    95. 

  95. 		}

    96. 

  96. 		return true;

    97. 

  97. 	}

    98. 

  98. 	else return false;

    99. 

  99. }

    100. 

  100. 

    101. 

  101. // Patched function to detect REAL IP address if it's valid

    102. 

  102. function getip() {

    103. 

  103.   if (isset($_SERVER)) {

    104. 

  104.     if (isset($_SERVER['HTTP_X_FORWARDED_FOR'])) {

    105. 

  105.       $ip = $_SERVER['HTTP_X_FORWARDED_FOR'];

    106. 

  106.     } elseif (isset($_SERVER['HTTP_CLIENT_IP'])) {

    107. 

  107.       $ip = $_SERVER['HTTP_CLIENT_IP'];

    108. 

  108.     } else {

    109. 

  109.       $ip = $_SERVER['REMOTE_ADDR'];

    110. 

  110.     }

    111. 

  111.   } else {

    112. 

  112.     if (getenv('HTTP_X_FORWARDED_FOR')) {

    113. 

  113.       $ip = getenv('HTTP_X_FORWARDED_FOR');

    114. 

  114.     } elseif (getenv('HTTP_CLIENT_IP')) {

    115. 

  115.       $ip = getenv('HTTP_CLIENT_IP');

    116. 

  116.     } else {

    117. 

  117.       $ip = getenv('REMOTE_ADDR');

    118. 

  118.     }

    119. 

  119.   }

    120. 

  120. 

    121. 

  121.   return $ip;

    122. 

  122. }

    123. 

  123. 

    124. 

  124. 

    125. 

  125. function userlogin() {

    126. 

  126.     global $HTTP_SERVER_VARS, $SITE_ONLINE;

    127. 

  127.     unset($GLOBALS["CURUSER"]);

    128. 

  128. 

    129. 

  129.     $ip = getip();

    130. 

  130. 	$nip = ip2long($ip);

    131. 

  131.     $res = mysql_query("SELECT * FROM bans WHERE $nip >= first AND $nip <= last") or mysql_error();

    132. 

  132.     if (mysql_num_rows($res) > 0)

    133. 

  133.     {

    134. 

  134.       header("HTTP/1.0 403 Forbidden");

    135. 

  135.       print("<html><body><h1>403 Forbidden</h1>Unauthorized IP address.</body></html>\n");

    136. 

  136.       die;

    137. 

  137.     }

    138. 

  138. 

    139. 

  139.     if (!$SITE_ONLINE || empty($_COOKIE["uid"]) || empty($_COOKIE["pass"]))

    140. 

  140.         return;

    141. 

  141.     $id = 0 + $_COOKIE["uid"];

    142. 

  142.     if (!$id || strlen($_COOKIE["pass"]) != 32)

    143. 

  143.         return;

    144. 

  144.     $res = mysql_query("SELECT * FROM users WHERE id = $id AND enabled='yes' AND status = 'confirmed'");// or die(mysql_error());

    145. 

  145.     $row = mysql_fetch_array($res);

    146. 

  146.     if (!$row)

    147. 

  147.         return;

    148. 

  148.     $sec = hash_pad($row["secret"]);

    149. 

  149.     if ($_COOKIE["pass"] !== $row["passhash"])

    150. 

  150.         return;

    151. 

  151.     mysql_query("UPDATE users SET last_access='" . get_date_time() . "', ip='$ip' WHERE id=" . $row["id"]);// or die(mysql_error());

    152. 

  152.     $row['ip'] = $ip;

    153. 

  153.     $GLOBALS["CURUSER"] = $row;

    154. 

  154. }

    155. 

  155. 

    156. 

  156. function autoclean() {

    157. 

  157.     global $autoclean_interval;

    158. 

  158. 

    159. 

  159.     $now = time();

    160. 

  160.     $docleanup = 0;

    161. 

  161. 

    162. 

  162.     $res = mysql_query("SELECT value_u FROM avps WHERE arg = 'lastcleantime'");

    163. 

  163.     $row = mysql_fetch_array($res);

    164. 

  164.     if (!$row) {

    165. 

  165.         mysql_query("INSERT INTO avps (arg, value_u) VALUES ('lastcleantime',$now)");

    166. 

  166.         return;

    167. 

  167.     }

    168. 

  168.     $ts = $row[0];

    169. 

  169.     if ($ts + $autoclean_interval > $now)

    170. 

  170.         return;

    171. 

  171.     mysql_query("UPDATE avps SET value_u=$now WHERE arg='lastcleantime' AND value_u = $ts");

    172. 

  172.     if (!mysql_affected_rows())

    173. 

  173.         return;

    174. 

  174. 

    175. 

  175.     docleanup();

    176. 

  176. }

    177. 

  177. 

    178. 

  178. function unesc($x) {

    179. 

  179.     if (get_magic_quotes_gpc())

    180. 

  180.         return stripslashes($x);

    181. 

  181.     return $x;

    182. 

  182. }

    183. 

  183. 

    184. 

  184. function mksize($bytes)

    185. 

  185. {

    186. 

  186. 	if ($bytes < 1000 * 1024)

    187. 

  187. 		return number_format($bytes / 1024, 2) . " kB";

    188. 

  188. 	elseif ($bytes < 1000 * 1048576)

    189. 

  189. 		return number_format($bytes / 1048576, 2) . " MB";

    190. 

  190. 	elseif ($bytes < 1000 * 1073741824)

    191. 

  191. 		return number_format($bytes / 1073741824, 2) . " GB";

    192. 

  192. 	else

    193. 

  193. 		return number_format($bytes / 1099511627776, 2) . " TB";

    194. 

  194. }

    195. 

  195. 

    196. 

  196. function mksizeint($bytes)

    197. 

  197. {

    198. 

  198. 	$bytes = max(0, $bytes);

    199. 

  199. 	if ($bytes < 1000)

    200. 

  200. 		return floor($bytes) . " B";

    201. 

  201. 	elseif ($bytes < 1000 * 1024)

    202. 

  202. 		return floor($bytes / 1024) . " kB";

    203. 

  203. 	elseif ($bytes < 1000 * 1048576)

    204. 

  204. 		return floor($bytes / 1048576) . " MB";

    205. 

  205. 	elseif ($bytes < 1000 * 1073741824)

    206. 

  206. 		return floor($bytes / 1073741824) . " GB";

    207. 

  207. 	else

    208. 

  208. 		return floor($bytes / 1099511627776) . " TB";

    209. 

  209. }

    210. 

  210. 

    211. 

  211. function deadtime() {

    212. 

  212.     global $announce_interval;

    213. 

  213.     return time() - floor($announce_interval * 1.3);

    214. 

  214. }

    215. 

  215. 

    216. 

  216. function mkprettytime($s) {

    217. 

  217.     if ($s < 0)

    218. 

  218.         $s = 0;

    219. 

  219.     $t = array();

    220. 

  220.     foreach (array("60:sec","60:min","24:hour","0:day") as $x) {

    221. 

  221.         $y = explode(":", $x);

    222. 

  222.         if ($y[0] > 1) {

    223. 

  223.             $v = $s % $y[0];

    224. 

  224.             $s = floor($s / $y[0]);

    225. 

  225.         }

    226. 

  226.         else

    227. 

  227.             $v = $s;

    228. 

  228.         $t[$y[1]] = $v;

    229. 

  229.     }

    230. 

  230. 

    231. 

  231.     if ($t["day"])

    232. 

  232.         return $t["day"] . "d " . sprintf("%02d:%02d:%02d", $t["hour"], $t["min"], $t["sec"]);

    233. 

  233.     if ($t["hour"])

    234. 

  234.         return sprintf("%d:%02d:%02d", $t["hour"], $t["min"], $t["sec"]);

    235. 

  235. //    if ($t["min"])

    236. 

  236.         return sprintf("%d:%02d", $t["min"], $t["sec"]);

    237. 

  237. //    return $t["sec"] . " secs";

    238. 

  238. }

    239. 

  239. 

    240. 

  240. function mkglobal($vars) {

    241. 

  241.     if (!is_array($vars))

    242. 

  242.         $vars = explode(":", $vars);

    243. 

  243.     foreach ($vars as $v) {

    244. 

  244.         if (isset($_GET[$v]))

    245. 

  245.             $GLOBALS[$v] = unesc($_GET[$v]);

    246. 

  246.         elseif (isset($_POST[$v]))

    247. 

  247.             $GLOBALS[$v] = unesc($_POST[$v]);

    248. 

  248.         else

    249. 

  249.             return 0;

    250. 

  250.     }

    251. 

  251.     return 1;

    252. 

  252. }

    253. 

  253. 

    254. 

  254. function tr($x,$y,$noesc=0) {

    255. 

  255.     if ($noesc)

    256. 

  256.         $a = $y;

    257. 

  257.     else {

    258. 

  258.         $a = htmlspecialchars($y);

    259. 

  259.         $a = str_replace("\n", "<br />\n", $a);

    260. 

  260.     }

    261. 

  261.     print("<tr><td class=\"heading\" valign=\"top\" align=\"right\">$x</td><td valign=\"top\" align=\"left\">$a</td></tr>\n");

    262. 

  262. }

    263. 

  263. 

    264. 

  264. function validfilename($name) {

    265. 

  265.     return preg_match('/^[^\0-\x1f:\\\\\/?*\xff#<>|]+$/si', $name);

    266. 

  266. }

    267. 

  267. 

    268. 

  268. function validemail($email) {

    269. 

  269.     return preg_match('/^[\w.-]+@([\w.-]+\.)+[a-z]{2,6}$/is', $email);

    270. 

  270. }

    271. 

  271. 

    272. 

  272. function sqlesc($x) {

    273. 

  273.     return "'".mysql_real_escape_string($x)."'";

    274. 

  274. }

    275. 

  275. 

    276. 

  276. function sqlwildcardesc($x) {

    277. 

  277.     return str_replace(array("%","_"), array("\\%","\\_"), mysql_real_escape_string($x));

    278. 

  278. }

    279. 

  279. 

    280. 

  280. function urlparse($m) {

    281. 

  281.     $t = $m[0];

    282. 

  282.     if (preg_match(',^\w+://,', $t))

    283. 

  283.         return "<a href=\"$t\">$t</a>";

    284. 

  284.     return "<a href=\"http://$t\">$t</a>";

    285. 

  285. }

    286. 

  286. 

    287. 

  287. function parsedescr($d, $html) {

    288. 

  288.     if (!$html)

    289. 

  289.     {

    290. 

  290.       $d = htmlspecialchars($d);

    291. 

  291.       $d = str_replace("\n", "\n<br>", $d);

    292. 

  292.     }

    293. 

  293.     return $d;

    294. 

  294. }

    295. 

  295. 

    296. 

  296. include('include/nav.php');

    297. 

  297. function genbark($x,$y) {

    298. 

  298.     stdhead($y);

    299. 

  299.     print("<h2>" . htmlspecialchars($y) . "</h2>\n");

    300. 

  300.     print("<p>" . htmlspecialchars($x) . "</p>\n");

    301. 

  301.     stdfoot();

    302. 

  302.     exit();

    303. 

  303. }

    304. 

  304. 

    305. 

  305. function mksecret($len = 20) {

    306. 

  306.     $ret = "";

    307. 

  307.     for ($i = 0; $i < $len; $i++)

    308. 

  308.         $ret .= chr(mt_rand(0, 255));

    309. 

  309.     return $ret;

    310. 

  310. }

    311. 

  311. 

    312. 

  312. function httperr($code = 404) {

    313. 

  313.     header("HTTP/1.0 404 Not found");

    314. 

  314.     print("<h1>Not Found</h1>\n");

    315. 

  315.     print("<p>Sorry pal :(</p>\n");

    316. 

  316.     exit();

    317. 

  317. }

    318. 

  318. 

    319. 

  319. function gmtime()

    320. 

  320. {

    321. 

  321.     return strtotime(get_date_time());

    322. 

  322. }

    323. 

  323. function logincookie($id, $passhash, $updatedb = 1, $expires = 0x7fffffff)

    324. 

  324. {

    325. 

  325. 	setcookie("uid", $id, time()+3600, "/" , ".x00n.com");

    326. 

  326. 	setcookie("pass", $passhash, time()+3600 , "/", ".x00n.com");

    327. 

  327. 

    328. 

  328.   if ($updatedb)

    329. 

  329.   	mysql_query("UPDATE users SET last_login = NOW() WHERE id = $id");

    330. 

  330. }

    331. 

  331. 

    332. 

  332. function logoutcookie() {

    333. 

  333. 	setcookie("uid", "", time()-3600, "/" , ".x00n.com");

    334. 

  334. 	setcookie("pass", "", time()-3600 , "/", ".x00n.com");

    335. 

  335. }

    336. 

  336. function allowedLogin(){

    337. 

  337. 

    338. 

  338. }

    339. 

  339. function loggedinorreturn() {

    340. 

  340.     global $CURUSER;

    341. 

  341.     if (!$CURUSER) {

    342. 

  342.         header("Location: http://www.x00n.com/index.php?action=login&returnto=" . urlencode($_SERVER["REQUEST_URI"]));

    343. 

  343.         exit();

    344. 

  344.     }

    345. 

  345. }

    346. 

  346. 

    347. 

  347. function deletetorrent($id) {

    348. 

  348.     global $torrent_dir;

    349. 

  349.     mysql_query("DELETE FROM torrents WHERE id = $id");

    350. 

  350.     foreach(explode(".","peers.files.comments.ratings") as $x)

    351. 

  351.         mysql_query("DELETE FROM $x WHERE torrent = $id");

    352. 

  352.     unlink("$torrent_dir/$id.torrent");

    353. 

  353. }

    354. 

  354. 

    355. 

  355. function pager($rpp, $count, $href, $opts = array()) {

    356. 

  356.     $pages = ceil($count / $rpp);

    357. 

  357. 

    358. 

  358.     if (!$opts["lastpagedefault"])

    359. 

  359.         $pagedefault = 0;

    360. 

  360.     else {

    361. 

  361.         $pagedefault = floor(($count - 1) / $rpp);

    362. 

  362.         if ($pagedefault < 0)

    363. 

  363.             $pagedefault = 0;

    364. 

  364.     }

    365. 

  365. 

    366. 

  366.     if (isset($_GET["page"])) {

    367. 

  367.         $page = 0 + $_GET["page"];

    368. 

  368.         if ($page < 0)

    369. 

  369.             $page = $pagedefault;

    370. 

  370.     }

    371. 

  371.     else

    372. 

  372.         $page = $pagedefault;

    373. 

  373. 

    374. 

  374.     $pager = "";

    375. 

  375. 

    376. 

  376.     $mp = $pages - 1;

    377. 

  377.     $as = "<b>&lt;&lt;&nbsp;Prev</b>";

    378. 

  378.     if ($page >= 1) {

    379. 

  379.         $pager .= "<a href=\"{$href}page=" . ($page - 1) . "\">";

    380. 

  380.         $pager .= $as;

    381. 

  381.         $pager .= "</a>";

    382. 

  382.     }

    383. 

  383.     else

    384. 

  384.         $pager .= $as;

    385. 

  385.     $pager .= "&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;";

    386. 

  386.     $as = "<b>Next&nbsp;&gt;&gt;</b>";

    387. 

  387.     if ($page < $mp && $mp >= 0) {

    388. 

  388.         $pager .= "<a href=\"{$href}page=" . ($page + 1) . "\">";

    389. 

  389.         $pager .= $as;

    390. 

  390.         $pager .= "</a>";

    391. 

  391.     }

    392. 

  392.     else

    393. 

  393.         $pager .= $as;

    394. 

  394. 

    395. 

  395.     if ($count) {

    396. 

  396.         $pagerarr = array();

    397. 

  397.         $dotted = 0;

    398. 

  398.         $dotspace = 3;

    399. 

  399.         $dotend = $pages - $dotspace;

    400. 

  400.         $curdotend = $page - $dotspace;

    401. 

  401.         $curdotstart = $page + $dotspace;

    402. 

  402.         for ($i = 0; $i < $pages; $i++) {

    403. 

  403.             if (($i >= $dotspace && $i <= $curdotend) || ($i >= $curdotstart && $i < $dotend)) {

    404. 

  404.                 if (!$dotted)

    405. 

  405.                     $pagerarr[] = "...";

    406. 

  406.                 $dotted = 1;

    407. 

  407.                 continue;

    408. 

  408.             }

    409. 

  409.             $dotted = 0;

    410. 

  410.             $start = $i * $rpp + 1;

    411. 

  411.             $end = $start + $rpp - 1;

    412. 

  412.             if ($end > $count)

    413. 

  413.                 $end = $count;

    414. 

  414.             $text = "$start&nbsp;-&nbsp;$end";

    415. 

  415.             if ($i != $page)

    416. 

  416.                 $pagerarr[] = "<a href=\"{$href}page=$i\"><b>$text</b></a>";

    417. 

  417.             else

    418. 

  418.                 $pagerarr[] = "<b>$text</b>";

    419. 

  419.         }

    420. 

  420.         $pagerstr = join(" | ", $pagerarr);

    421. 

  421.         $pagertop = "<p align=\"center\">$pager<br />$pagerstr</p>\n";

    422. 

  422.         $pagerbottom = "<p align=\"center\">$pagerstr<br />$pager</p>\n";

    423. 

  423.     }

    424. 

  424.     else {

    425. 

  425.         $pagertop = "<p align=\"center\">$pager</p>\n";

    426. 

  426.         $pagerbottom = $pagertop;

    427. 

  427.     }

    428. 

  428. 

    429. 

  429.     $start = $page * $rpp;

    430. 

  430. 

    431. 

  431.     return array($pagertop, $pagerbottom, "LIMIT $start,$rpp");

    432. 

  432. }

    433. 

  433. 

    434. 

  434. function downloaderdata($res) {

    435. 

  435.     $rows = array();

    436. 

  436.     $ids = array();

    437. 

  437.     $peerdata = array();

    438. 

  438.     while ($row = mysql_fetch_assoc($res)) {

    439. 

  439.         $rows[] = $row;

    440. 

  440.         $id = $row["id"];

    441. 

  441.         $ids[] = $id;

    442. 

  442.         $peerdata[$id] = array(downloaders => 0, seeders => 0, comments => 0);

    443. 

  443.     }

    444. 

  444. 

    445. 

  445.     if (count($ids)) {

    446. 

  446.         $allids = implode(",", $ids);

    447. 

  447.         $res = mysql_query("SELECT COUNT(*) AS c, torrent, seeder FROM peers WHERE torrent IN ($allids) GROUP BY torrent, seeder");

    448. 

  448.         while ($row = mysql_fetch_assoc($res)) {

    449. 

  449.             if ($row["seeder"] == "yes")

    450. 

  450.                 $key = "seeders";

    451. 

  451.             else

    452. 

  452.                 $key = "downloaders";

    453. 

  453.             $peerdata[$row["torrent"]][$key] = $row["c"];

    454. 

  454.         }

    455. 

  455.         $res = mysql_query("SELECT COUNT(*) AS c, torrent FROM comments WHERE torrent IN ($allids) GROUP BY torrent");

    456. 

  456.         while ($row = mysql_fetch_assoc($res)) {

    457. 

  457.             $peerdata[$row["torrent"]]["comments"] = $row["c"];

    458. 

  458.         }

    459. 

  459.     }

    460. 

  460. 

    461. 

  461.     return array($rows, $peerdata);

    462. 

  462. }

    463. 

  463. 

    464. 

  464. function commenttable($rows)

    465. 

  465. {

    466. 

  466. 	global $CURUSER, $HTTP_SERVER_VARS;

    467. 

  467. 	begin_main_frame();

    468. 

  468. 	begin_frame();

    469. 

  469. 	$count = 0;

    470. 

  470. 	foreach ($rows as $row)

    471. 

  471. 	{

    472. 

  472. 		print("<p class=sub>#" . $row["id"] . " by ");

    473. 

  473.     if (isset($row["username"]))

    474. 

  474. 		{

    475. 

  475. 			$title = $row["title"];

    476. 

  476. 			if ($title == "")

    477. 

  477. 				$title = get_user_class_name($row["class"]);

    478. 

  478. 			else

    479. 

  479. 				$title = htmlspecialchars($title);

    480. 

  480.         print("<a name=\"comm". $row["id"] . "\" href=\"userdetails?id=" . $row["user"] . "\"><b>" .

    481. 

  481.         	htmlspecialchars($row["username"]) . "</b></a>" . ($row["donor"] == "yes" ? "<img src=\"images/star.gif\" alt=\"Donor\">" : "") . ($row["warned"] == "yes" ? "<img src=".

    482. 

  482.     			"\"images/warned.gif\" alt=\"Warned\">" : "") . " ($title)\n");

    483. 

  483. 		}

    484. 

  484. 		else

    485. 

  485.    		print("<a name=\"comm" . $row["id"] . "\"><i>(orphaned)</i></a>\n");

    486. 

  486. 

    487. 

  487. 		print(" at " . $row["added"] . " GMT" .

    488. 

  488. 			($row["user"] == $CURUSER["id"] || get_user_class() >= UC_MODERATOR ? "- [<a href=\"comment?action=edit&amp;cid=$row[id]\">Edit</a>]" : "") .

    489. 

  489. 			(get_user_class() >= UC_MODERATOR ? "- [<a href=\"comment?action=delete&amp;cid=$row[id]\">Delete</a>]" : "") .

    490. 

  490. 			($row["editedby"] && get_user_class() >= UC_MODERATOR ? "- [<a href=\"comment?action=vieworiginal&amp;cid=$row[id]\">View original</a>]" : "") . "</p>\n");

    491. 

  491. 		$avatar = ($CURUSER["avatars"] == "yes" ? htmlspecialchars($row["avatar"]) : "");

    492. 

  492. 		if (!$avatar)

    493. 

  493. 			$avatar = "images/default_avatar.gif";

    494. 

  494. 		$text = format_comment($row["text"]);

    495. 

  495.     if ($row["editedby"])

    496. 

  496.     	$text .= "<p><font size=\"1\" class=\"small\">Last edited by <a href=\"userdetails?id=$row[editedby]\"><b>$row[username]</b></a> at $row[editedat] GMT</font></p>\n";

    497. 

  497. 		begin_table(true);

    498. 

  498. 		print("<tr valign=\"top\">\n");

    499. 

  499. 		print("<td align=\"center\" width=\"150\" style=\"padding: 0px\"><img width=\"150\" src=\"$avatar\"></td>\n");

    500. 

  500. 		print("<td class=\"text\">$text</td>\n");

    501. 

  501. 		print("</tr>\n");

    502. 

  502.      end_table();

    503. 

  503.   }

    504. 

  504. 	end_frame();

    505. 

  505. 	end_main_frame();

    506. 

  506. }

    507. 

  507. 

    508. 

  508. function searchfield($s) {

    509. 

  509.     return preg_replace(array('/[^a-z0-9]/si', '/^\s*/s', '/\s*$/s', '/\s+/s'), array(" ", "", "", " "), $s);

    510. 

  510. }

    511. 

  511. 

    512. 

  512. function genrelist() {

    513. 

  513.     $ret = array();

    514. 

  514.     $res = mysql_query("SELECT id, name FROM categories ORDER BY name");

    515. 

  515.     while ($row = mysql_fetch_array($res))

    516. 

  516.         $ret[] = $row;

    517. 

  517.     return $ret;

    518. 

  518. }

    519. 

  519. 

    520. 

  520. function linkcolor($num) {

    521. 

  521.     if (!$num)

    522. 

  522.         return "red";

    523. 

  523. //    if ($num == 1)

    524. 

  524. //        return "yellow";

    525. 

  525.     return "green";

    526. 

  526. }

    527. 

  527. 

    528. 

  528. function ratingpic($num) {

    529. 

  529.     global $pic_base_url;

    530. 

  530.     $r = round($num * 2) / 2;

    531. 

  531.     if ($r < 1 || $r > 5)

    532. 

  532.         return;

    533. 

  533.     return "<img src=\"$pic_base_url$r.gif\" border=\"0\" alt=\"rating: $num / 5\" />";

    534. 

  534. }

    535. 

  535. function curUserPage($pageTitle) {

    536. 

  536.     global $CURUSER;

    537. 

  537.     mysql_query("UPDATE `users` SET `curPage` = '" . $pageTitle . "' WHERE `id` = " . $CURUSER['id']. "");

    538. 

  538. }

    539. 

  539. 

    540. 

  540. 

    541. 

  541. function torrenttable($res, $variant = "index") {

    542. 

  542. 	global $pic_base_url, $CURUSER;

    543. 

  543. 

    544. 

  544. 	if ($CURUSER["class"] < UC_DONOR)

    545. 

  545.   {

    546. 

  546. 	  $gigs = $CURUSER["uploaded"] / (1024*1024*1024);

    547. 

  547. 	  $ratio = (($CURUSER["downloaded"] > 0) ? ($CURUSER["uploaded"] / $CURUSER["downloaded"]) : 0);

    548. 

  548. 	  if ($ratio < 0.5 || $gigs < 5) $wait = 48;

    549. 

  549. 	  elseif ($ratio < 0.65 || $gigs < 6.5) $wait = 24;

    550. 

  550. 	  elseif ($ratio < 0.8 || $gigs < 8) $wait = 12;

    551. 

  551. 	  elseif ($ratio < 0.95 || $gigs < 9.5) $wait = 6;

    552. 

  552. 	  else $wait = 0;

    553. 

  553.   }

    554. 

  554. ?>

    555. 

  555. <table border="1" cellspacing="0" cellpadding="5">

    556. 

  556. <tr>

    557. 

  557. 

    558. 

  558. <td class="colhead" align="center">Type</td>

    559. 

  559. <td class="colhead" align="left">Name</td>

    560. 

  560. <!--<td class="heading" align="left">DL</td>-->

    561. 

  561. <?

    562. 

  562. 	if ($wait)

    563. 

  563. 	{

    564. 

  564. 		print("<td class=\"colhead\" align=\"center\">Wait</td>\n");

    565. 

  565. 	}

    566. 

  566. 

    567. 

  567. 	if ($variant == "mytorrents")

    568. 

  568.   {

    569. 

  569.   	print("<td class=\"colhead\" align=\"center\">Edit</td>\n");

    570. 

  570.     print("<td class=\"colhead\" align=\"center\">Visible</td>\n");

    571. 

  571. 	}

    572. 

  572. 

    573. 

  573. ?>

    574. 

  574. <td class="colhead" align="right">Files</td>

    575. 

  575. <td class="colhead" align="right">Comm.</td>

    576. 

  576. 	<!--<td class="colhead" align="center">Rating</td>-->

    577. 

  577. <td class="colhead" align="center">Added</td>

    578. 

  578. <td class="colhead" align="center">TTL</td>

    579. 

  579. <td class="colhead" align="center">Size</td>

    580. 

  580. 	<!--

    581. 

  581. 	<td class="colhead" align="right">Views</td>

    582. 

  582. 	<td class="colhead" align="right">Hits</td>

    583. 

  583. 	-->

    584. 

  584. <td class="colhead" align="center">Snatched</td>

    585. 

  585. <td class="colhead" align=\"right\">Seeders</td>

    586. 

  586. <td class="colhead" align=\"right\">Leechers</td>

    587. 

  587. <?

    588. 

  588. 

    589. 

  589.     if ($variant == "index")

    590. 

  590.         print("<td class=\"colhead\" align=\"center\">Upped&nbsp;by</td>\n");

    591. 

  591. 

    592. 

  592.     print("</tr>\n");

    593. 

  593. 

    594. 

  594.     while ($row = mysql_fetch_assoc($res)) {

    595. 

  595.         $id = $row["id"];

    596. 

  596.         print("<tr>\n");

    597. 

  597. 

    598. 

  598.         print("<td align=\"center\" style=\"padding: 0px\">");

    599. 

  599.         if (isset($row["cat_name"])) {

    600. 

  600.             print("<a href=\"browse?cat=" . $row["category"] . "\">");

    601. 

  601.             if (isset($row["cat_pic"]) && $row["cat_pic"] != "")

    602. 

  602.                 print("<img border=\"0\" src=\"$pic_base_url" . $row["cat_pic"] . "\" alt=\"" . $row["cat_name"] . "\" />");

    603. 

  603.             else

    604. 

  604.                 print($row["cat_name"]);

    605. 

  605.             print("</a>");

    606. 

  606.         }

    607. 

  607.         else

    608. 

  608.             print("-");

    609. 

  609.         print("</td>\n");

    610. 

  610. 

    611. 

  611.         $dispname = htmlspecialchars($row["name"]);

    612. 

  612.         print("<td align=\"left\"><a href=\"details?");

    613. 

  613.         if ($variant == "mytorrents")

    614. 

  614.             print("returnto=" . urlencode($_SERVER["REQUEST_URI"]) . "&amp;");

    615. 

  615.         print("id=$id");

    616. 

  616.         if ($variant == "index")

    617. 

  617.             print("&amp;hit=1");

    618. 

  618.         print("\"><b>$dispname</b></a>\n");

    619. 

  619. 

    620. 

  620. 				if ($wait)

    621. 

  621. 				{

    622. 

  622. 				  $elapsed = floor((gmtime() - strtotime($row["added"])) / 3600);

    623. 

  623. 	        if ($elapsed < $wait)

    624. 

  624. 	        {

    625. 

  625. 	          $color = dechex(floor(127*($wait - $elapsed)/48 + 128)*65536);

    626. 

  626. 	          print("<td align=\"center\"><nobr><a href=\"/faq#dl8\"><font color=\"$color\">" . number_format($wait - $elapsed) . " h</font></a></nobr></td>\n");

    627. 

  627. 	        }

    628. 

  628. 	        else

    629. 

  629. 	          print("<td align=\"center\"><nobr>None</nobr></td>\n");

    630. 

  630.         }

    631. 

  631. 

    632. 

  632. 

    633. 

  633. 

    634. 

  634.         if ($variant == "index")

    635. 

  635.             print("<a href=\"download.php/$id/" . rawurlencode($row["filename"]) . "\"><img src=\"images/download.gif\" border=0 alt=Download></a>\n");

    636. 

  636. 

    637. 

  637.         else  if ($variant == "mytorrents")

    638. 

  638.             print("<td align=\"center\"><a href=\"edit?returnto=" . urlencode($_SERVER["REQUEST_URI"]) . "&amp;id=" . $row["id"] . "\">edit</a>\n");

    639. 

  639. print("</td>\n");

    640. 

  640.         if ($variant == "mytorrents") {

    641. 

  641.             print("<td align=\"right\">");

    642. 

  642.             if ($row["visible"] == "no")

    643. 

  643.                 print("<b>no</b>");

    644. 

  644.             else

    645. 

  645.                 print("yes");

    646. 

  646.             print("</td>\n");

    647. 

  647.         }

    648. 

  648. 

    649. 

  649.         if ($row["type"] == "single")

    650. 

  650.             print("<td align=\"right\">" . $row["numfiles"] . "</td>\n");

    651. 

  651.         else {

    652. 

  652.             if ($variant == "index")

    653. 

  653.                 print("<td align=\"right\"><b><a href=\"details?id=$id&amp;hit=1&amp;filelist=1\">" . $row["numfiles"] . "</a></b></td>\n");

    654. 

  654.             else

    655. 

  655.                 print("<td align=\"right\"><b><a href=\"details?id=$id&amp;filelist=1#filelist\">" . $row["numfiles"] . "</a></b></td>\n");

    656. 

  656.         }

    657. 

  657. 

    658. 

  658.         if (!$row["comments"])

    659. 

  659.             print("<td align=\"right\">" . $row["comments"] . "</td>\n");

    660. 

  660.         else {

    661. 

  661.             if ($variant == "index")

    662. 

  662.                 print("<td align=\"right\"><b><a href=\"details?id=$id&amp;hit=1&amp;tocomm=1\">" . $row["comments"] . "</a></b></td>\n");

    663. 

  663.             else

    664. 

  664.                 print("<td align=\"right\"><b><a href=\"details?id=$id&amp;page=0#startcomments\">" . $row["comments"] . "</a></b></td>\n");

    665. 

  665.         }

    666. 

  666. 

    667. 

  667. /*

    668. 

  668.         print("<td align=\"center\">");

    669. 

  669.         if (!isset($row["rating"]))

    670. 

  670.             print("---");

    671. 

  671.         else {

    672. 

  672.             $rating = round($row["rating"] * 2) / 2;

    673. 

  673.             $rating = ratingpic($row["rating"]);

    674. 

  674.             if (!isset($rating))

    675. 

  675.                 print("---");

    676. 

  676.             else

    677. 

  677.                 print($rating);

    678. 

  678.         }

    679. 

  679.         print("</td>\n");

    680. 

  680. */

    681. 

  681.         print("<td align=center><nobr>" . str_replace(" ", "<br />", $row["added"]) . "</nobr></td>\n");

    682. 

  682. 		$ttl = (28*24) - floor((gmtime() - sql_timestamp_to_unix_timestamp($row["added"])) / 3600);

    683. 

  683. 		if ($ttl == 1) $ttl .= "<br>hour"; else $ttl .= "<br>hours";

    684. 

  684.         print("<td align=center>$ttl</td>\n");

    685. 

  685.         print("<td align=center>" . str_replace(" ", "<br>", mksize($row["size"])) . "</td>\n");

    686. 

  686. //        print("<td align=\"right\">" . $row["views"] . "</td>\n");

    687. 

  687. //        print("<td align=\"right\">" . $row["hits"] . "</td>\n");

    688. 

  688.         $_s = "";

    689. 

  689.         if ($row["times_completed"] != 1)

    690. 

  690.           $_s = "s";

    691. 

  691.         print("<td align=center>" . number_format($row["times_completed"]) . "<br>time$_s</td>\n");

    692. 

  692. 

    693. 

  693.         if ($row["seeders"]) {

    694. 

  694.             if ($variant == "index")

    695. 

  695.             {

    696. 

  696.                if ($row["leechers"]) $ratio = $row["seeders"] / $row["leechers"]; else $ratio = 1;

    697. 

  697.                 print("<td align=right><b><a href=details?id=$id&amp;hit=1&amp;toseeders=1><font color=" .

    698. 

  698.                   get_slr_color($ratio) . ">" . $row["seeders"] . "</font></a></b></td>\n");

    699. 

  699.             }

    700. 

  700.             else

    701. 

  701.                 print("<td align=\"right\"><b><a class=\"" . linkcolor($row["seeders"]) . "\" href=\"details?id=$id&amp;dllist=1#seeders\">" .

    702. 

  702.                   $row["seeders"] . "</a></b></td>\n");

    703. 

  703.         }

    704. 

  704.         else

    705. 

  705.             print("<td align=\"right\"><span class=\"" . linkcolor($row["seeders"]) . "\">" . $row["seeders"] . "</span></td>\n");

    706. 

  706. 

    707. 

  707.         if ($row["leechers"]) {

    708. 

  708.             if ($variant == "index")

    709. 

  709.                 print("<td align=right><b><a href=details?id=$id&amp;hit=1&amp;todlers=1>" .

    710. 

  710.                    number_format($row["leechers"]) . (isset($peerlink) ? "</a>" : "") .

    711. 

  711.                    "</b></td>\n");

    712. 

  712.             else

    713. 

  713.                 print("<td align=\"right\"><b><a class=\"" . linkcolor($row["leechers"]) . "\" href=\"details?id=$id&amp;dllist=1#leechers\">" .

    714. 

  714.                   $row["leechers"] . "</a></b></td>\n");

    715. 

  715.         }

    716. 

  716.         else

    717. 

  717.             print("<td align=\"right\">0</td>\n");

    718. 

  718. 

    719. 

  719.         if ($variant == "index")

    720. 

  720.             print("<td align=center>" . (isset($row["username"]) ? ("<a href=userdetails?id=" . $row["owner"] . "><b>" . htmlspecialchars($row["username"]) . "</b></a>") : "<i>(unknown)</i>") . "</td>\n");

    721. 

  721. 

    722. 

  722.         print("</tr>\n");

    723. 

  723.     }

    724. 

  724. 

    725. 

  725.     print("</table>\n");

    726. 

  726. 

    727. 

  727.     return $rows;

    728. 

  728. }

    729. 

  729. 

    730. 

  730. function hash_pad($hash) {

    731. 

  731.     return str_pad($hash, 20);

    732. 

  732. }

    733. 

  733. 

    734. 

  734. function hash_where($name, $hash) {

    735. 

  735.     $shhash = preg_replace('/ *$/s', "", $hash);

    736. 

  736.     return "($name = " . sqlesc($hash) . " OR $name = " . sqlesc($shhash) . ")";

    737. 

  737. }

    738. 

  738. 

    739. 

  739. function get_user_icons($arr, $big = false)

    740. 

  740. {

    741. 

  741. 	if ($big)

    742. 

  742. 	{

    743. 

  743. 		$donorpic = "starbig.gif";

    744. 

  744. 		$warnedpic = "warnedbig.gif";

    745. 

  745. 		$disabledpic = "disabledbig.gif";

    746. 

  746. 		$style = "style='margin-left: 4pt'";

    747. 

  747. 	}

    748. 

  748. 	else

    749. 

  749. 	{

    750. 

  750. 		$donorpic = "star.gif";

    751. 

  751. 		$warnedpic = "warned.gif";

    752. 

  752. 		$disabledpic = "disabled.gif";

    753. 

  753. 		$style = "style=\"margin-left: 2pt\"";

    754. 

  754. 	}

    755. 

  755. 	$pics = $arr["donor"] == "yes" ? "<img src=images/$donorpic alt='Donor' border=0 $style>" : "";

    756. 

  756. 	if ($arr["enabled"] == "yes")

    757. 

  757. 		$pics .= $arr["warned"] == "yes" ? "<img src=images/$warnedpic alt=\"Warned\" border=0 $style>" : "";

    758. 

  758. 	else

    759. 

  759. 		$pics .= "<img src=images/$disabledpic alt=\"Disabled\" border=0 $style>\n";

    760. 

  760. 	return $pics;

    761. 

  761. }

    762. 

  762. 

    763. 

  763. require "global.php";

    764. 

  764. function curPageURL() {

    765. 

  765.  $pageURL = 'http';

    766. 

  766.  if ($_SERVER["HTTPS"] == "on") {$pageURL .= "s";}

    767. 

  767.  $pageURL .= "://";

    768. 

  768.  if ($_SERVER["SERVER_PORT"] != "80") {

    769. 

  769.   $pageURL .= $_SERVER["SERVER_NAME"].":".$_SERVER["SERVER_PORT"].$_SERVER["REQUEST_URI"];

    770. 

  770.  } else {

    771. 

  771.   $pageURL .= $_SERVER["SERVER_NAME"].$_SERVER["REQUEST_URI"];

    772. 

  772.  }

    773. 

  773.  return $pageURL;

    774. 

  774. }

    775. 

  775. 

    776. 

  776. function logVisits(){

    777. 

  777. $curPage = curPageURL();

    778. 

  778. $userIP = $_SERVER['REMOTE_ADDR'];

    779. 

  779. $agent = $_SERVER['HTTP_USER_AGENT'];

    780. 

  780. $sqlQuery = "INSERT INTO `x00n`.`viewLog` (

    781. 

  781. 		`id` ,

    782. 

  782. 		`ip` ,

    783. 

  783. 		`agent` ,

    784. 

  784. 		`curPage`

    785. 

  785. 		)

    786. 

  786. 		VALUES (

    787. 

  787. 		'', '$userIP', '$agent', '$curPage'

    788. 

  788. 		);

    789. 

  789. 

    790. 

  790. 

    791. 

  791. ";

    792. 

  792. @mysql_query($sqlQuery);

    793. 

  793. }

    794. 

  794. ?>

    795. 

  795.