PageRenderTime 26ms CodeModel.GetById 15ms RepoModel.GetById 0ms app.codeStats 0ms

/cpg1.6.x/include/sql_parse.php

https://github.com/cpg-contrib/coppermine
PHP | 174 lines | 83 code | 22 blank | 69 comment | 24 complexity | 744e83fd79965f0b395bb02b8672734f MD5 | raw file
    

  1. <?php

    2. 

  2. /*************************

    3. 

  3.   Coppermine Photo Gallery

    4. 

  4.   ************************

    5. 

  5.   Copyright (c) 2003-2010 Coppermine Dev Team

    6. 

  6.   v1.0 originally written by Gregory Demar

    7. 

  7. 

    8. 

  8.   This program is free software; you can redistribute it and/or modify

    9. 

  9.   it under the terms of the GNU General Public License version 3

    10. 

  10.   as published by the Free Software Foundation.

    11. 

  11.   

    12. 

  12.   ********************************************

    13. 

  13.   Coppermine version: 1.6.01

    14. 

  14.   $HeadURL$

    15. 

  15.   $Revision$

    16. 

  16. 


    17. 

  17. **********************************************/

    18. 

  18. 

    19. 

  19. /**

    20. 

  20.  * sql_parse.php

    21. 

  21.  *                               -------------------

    22. 

  22.  *      begin                : Thu May 31, 2001

    23. 

  23.  *      copyright            : (C) 2001 The phpBB Group

    24. 

  24.  *      email                : support@phpbb.com

    25. 

  25.  *

    26. 

  26.  *      $Id$

    27. 

  27.  */

    28. 

  28. 

    29. 

  29. /**

    30. 

  30.  * This program is free software; you can redistribute it and/or modify

    31. 

  31.  *    it under the terms of the GNU General Public License version 3

    32. 

  32.  *    as published by the Free Software Foundation.

    33. 

  33.  *    

    34. 

  34.  */

    35. 

  35. 

    36. 

  36. /**

    37. 

  37.  * These functions are mainly for use in the db_utilities under the admin

    38. 

  38.  *         however in order to make these functions available elsewhere, specifically

    39. 

  39.  *         in the installation phase of phpBB I have seperated out a couple of

    40. 

  40.  *         functions into this file.  JLH

    41. 

  41.  *

    42. 

  42.  * \**************************************************************************

    43. 

  43.  */

    44. 

  44. 

    45. 

  45. // remove_comments will strip the sql comment lines out of an uploaded sql file

    46. 

  46. // specifically for mssql and postgres type files in the install....

    47. 

  47. 

    48. 

  48. function remove_comments(&$output)

    49. 

  49. {

    50. 

  50.     $lines = explode("\n", $output);

    51. 

  51.     $output = "";

    52. 

  52.     // try to keep mem. use down

    53. 

  53.     $linecount = count($lines);

    54. 

  54. 

    55. 

  55.     $in_comment = false;

    56. 

  56.     for($i = 0; $i < $linecount; $i++) {

    57. 

  57.         if (preg_match("/^\/\*/", preg_quote($lines[$i]))) {

    58. 

  58.             $in_comment = true;

    59. 

  59.         }

    60. 

  60. 

    61. 

  61.         if (!$in_comment) {

    62. 

  62.             $output .= $lines[$i] . "\n";

    63. 

  63.         }

    64. 

  64. 

    65. 

  65.         if (preg_match("/\*\/$/", preg_quote($lines[$i]))) {

    66. 

  66.             $in_comment = false;

    67. 

  67.         }

    68. 

  68.     }

    69. 

  69. 

    70. 

  70.     unset($lines);

    71. 

  71.     return $output;

    72. 

  72. }

    73. 

  73. 

    74. 

  74. // remove_remarks will strip the sql comment lines out of an uploaded sql file

    75. 

  75. 

    76. 

  76. function remove_remarks($sql)

    77. 

  77. {

    78. 

  78.     $lines = explode("\n", $sql);

    79. 

  79.     // try to keep mem. use down

    80. 

  80.     $sql = "";

    81. 

  81. 

    82. 

  82.     $linecount = count($lines);

    83. 

  83.     $output = "";

    84. 

  84. 

    85. 

  85.     for ($i = 0; $i < $linecount; $i++) {

    86. 

  86.         if (($i != ($linecount - 1)) || (strlen($lines[$i]) > 0)) {

    87. 

  87.             if (isset($lines[$i][0]) && $lines[$i][0] != "#") {

    88. 

  88.                 $output .= $lines[$i] . "\n";

    89. 

  89.             } else {

    90. 

  90.                 $output .= "\n";

    91. 

  91.             }

    92. 

  92.             // Trading a bit of speed for lower mem. use here.

    93. 

  93.             $lines[$i] = "";

    94. 

  94.         }

    95. 

  95.     }

    96. 

  96. 

    97. 

  97.     return $output;

    98. 

  98. }

    99. 

  99. 

    100. 

  100. // split_sql_file will split an uploaded sql file into single sql statements.

    101. 

  101. // Note: expects trim() to have already been run on $sql.

    102. 

  102. 

    103. 

  103. function split_sql_file($sql, $delimiter)

    104. 

  104. {

    105. 

  105.     // Split up our string into "possible" SQL statements.

    106. 

  106.     $tokens = explode($delimiter, $sql);

    107. 

  107.     // try to save mem.

    108. 

  108.     $sql = "";

    109. 

  109.     $output = array();

    110. 

  110.     // we don't actually care about the matches preg gives us.

    111. 

  111.     $matches = array();

    112. 

  112.     // this is faster than calling count($oktens) every time thru the loop.

    113. 

  113.     $token_count = count($tokens);

    114. 

  114.     for ($i = 0; $i < $token_count; $i++) {

    115. 

  115.         // Don't wanna add an empty string as the last thing in the array.

    116. 

  116.         if (($i != ($token_count - 1)) || (strlen($tokens[$i] > 0))) {

    117. 

  117.             // This is the total number of single quotes in the token.

    118. 

  118.             $total_quotes = preg_match_all("/'/", $tokens[$i], $matches);

    119. 

  119.             // Counts single quotes that are preceded by an odd number of backslashes,

    120. 

  120.             // which means they're escaped quotes.

    121. 

  121.             $escaped_quotes = preg_match_all("/(?<!\\\\)(\\\\\\\\)*\\\\'/", $tokens[$i], $matches);

    122. 

  122. 

    123. 

  123.             $unescaped_quotes = $total_quotes - $escaped_quotes;

    124. 

  124.             // If the number of unescaped quotes is even, then the delimiter did NOT occur inside a string literal.

    125. 

  125.             if (($unescaped_quotes % 2) == 0) {

    126. 

  126.                 // It's a complete sql statement.

    127. 

  127.                 $output[] = $tokens[$i];

    128. 

  128.                 // save memory.

    129. 

  129.                 $tokens[$i] = "";

    130. 

  130.             } else {

    131. 

  131.                 // incomplete sql statement. keep adding tokens until we have a complete one.

    132. 

  132.                 // $temp will hold what we have so far.

    133. 

  133.                 $temp = $tokens[$i] . $delimiter;

    134. 

  134.                 // save memory..

    135. 

  135.                 $tokens[$i] = "";

    136. 

  136.                 // Do we have a complete statement yet?

    137. 

  137.                 $complete_stmt = false;

    138. 

  138. 

    139. 

  139.                 for ($j = $i + 1; (!$complete_stmt && ($j < $token_count)); $j++) {

    140. 

  140.                     // This is the total number of single quotes in the token.

    141. 

  141.                     $total_quotes = preg_match_all("/'/", $tokens[$j], $matches);

    142. 

  142.                     // Counts single quotes that are preceded by an odd number of backslashes,

    143. 

  143.                     // which means they're escaped quotes.

    144. 

  144.                     $escaped_quotes = preg_match_all("/(?<!\\\\)(\\\\\\\\)*\\\\'/", $tokens[$j], $matches);

    145. 

  145. 

    146. 

  146.                     $unescaped_quotes = $total_quotes - $escaped_quotes;

    147. 

  147. 

    148. 

  148.                     if (($unescaped_quotes % 2) == 1) {

    149. 

  149.                         // odd number of unescaped quotes. In combination with the previous incomplete

    150. 

  150.                         // statement(s), we now have a complete statement. (2 odds always make an even)

    151. 

  151.                         $output[] = $temp . $tokens[$j];

    152. 

  152.                         // save memory.

    153. 

  153.                         $tokens[$j] = "";

    154. 

  154.                         $temp = "";

    155. 

  155.                         // exit the loop.

    156. 

  156.                         $complete_stmt = true;

    157. 

  157.                         // make sure the outer loop continues at the right point.

    158. 

  158.                         $i = $j;

    159. 

  159.                     } else {

    160. 

  160.                         // even number of unescaped quotes. We still don't have a complete statement.

    161. 

  161.                         // (1 odd and 1 even always make an odd)

    162. 

  162.                         $temp .= $tokens[$j] . $delimiter;

    163. 

  163.                         // save memory.

    164. 

  164.                         $tokens[$j] = "";

    165. 

  165.                     }

    166. 

  166.                 } // for..

    167. 

  167.             } // else

    168. 

  168.         }

    169. 

  169.     }

    170. 

  170. 

    171. 

  171.     return $output;

    172. 

  172. }

    173. 

  173. 

    174. 

  174. ?>

    175. 

  175.