2 /////////////////////////////////////////////////
3 // PukiWiki - Yet another WikiWikiWeb clone.
5 // $Id: func.php,v 1.15 2004/12/04 05:55:42 henoheno Exp $
8 // ʸ»úÎó¤¬InterWikiName¤«¤É¤¦¤«
9 function is_interwiki($str)
11 global $InterWikiName;
13 return preg_match("/^$InterWikiName$/", $str);
16 // ʸ»úÎ󤬥ڡ¼¥¸Ì¾¤«¤É¤¦¤«
17 function is_pagename($str)
21 $is_pagename = (! is_interwiki($str) &&
22 preg_match("/^(?!\/)$BracketName$(?<!\/$)/", $str) &&
23 ! preg_match('/(^|\/)\.{1,2}(\/|$)/', $str));
26 if (defined('SOURCE_ENCODING')) {
27 switch(SOURCE_ENCODING){
29 $pattern = '/^(?:[\x00-\x7F]|(?:[\xC0-\xDF][\x80-\xBF])|(?:[\xE0-\xEF][\x80-\xBF][\x80-\xBF]))+$/';
32 $pattern = '/^(?:[\x00-\x7F]|(?:[\x8E\xA1-\xFE][\xA1-\xFE])|(?:\x8F[\xA1-\xFE][\xA1-\xFE]))+$/';
36 if($pattern !== '') $is_pagename = ($is_pagename && preg_match($pattern, $str));
41 // ʸ»úÎó¤¬URL¤«¤É¤¦¤«
42 function is_url($str, $only_http = FALSE)
44 $scheme = $only_http ? 'https?' : 'https?|ftp|news';
45 return preg_match('/^(' . $scheme . ')(:\/\/[-_.!~*\'()a-zA-Z0-9;\/?:\@&=+\$,%#]*)$/', $str);
49 function is_page($page, $reload = FALSE)
51 if ($reload) clearstatcache();
52 return file_exists(get_filename($page));
56 function is_editable($page)
59 static $is_editable = array();
61 if (! isset($is_editable[$page])) {
62 $is_editable[$page] = (
65 ! in_array($page, $cantedit)
69 return $is_editable[$page];
72 // ¥Ú¡¼¥¸¤¬Åà·ë¤µ¤ì¤Æ¤¤¤ë¤«
73 function is_freeze($page)
75 global $function_freeze;
76 static $is_freeze = array();
78 if (isset($is_freeze[$page])) return $is_freeze[$page];
79 if (! $function_freeze || ! is_page($page)) return FALSE;
81 list($lines) = get_source($page);
82 $is_freeze[$page] = (rtrim($lines) == '#freeze');
84 return $is_freeze[$page];
88 function auto_template($page)
90 global $auto_template_func, $auto_template_rules;
92 if (! $auto_template_func) return '';
96 foreach ($auto_template_rules as $rule => $template) {
98 if (! preg_match("/$rule/", $page, $matches)) continue;
100 $template_page = preg_replace("/$rule/", $template, $page);
101 if (! is_page($template_page)) continue;
103 $body = join('', get_source($template_page));
105 // ¸«½Ð¤·¤Î¸ÇÍIDÉô¤òºï½ü
106 $body = preg_replace('/^(\*{1,3}.*)\[#[A-Za-z][\w-]+\](.*)$/m', '$1$2', $body);
109 $body = preg_replace('/^#freeze\s*$/m', '', $body);
111 for ($i = 0; $i < count($matches); $i++) {
112 $body = str_replace("\$$i", $matches[$i], $body);
120 function get_search_words($words, $special = FALSE)
123 // Perl¥á¥â - Àµ¤·¤¯¥Ñ¥¿¡¼¥ó¥Þ¥Ã¥Á¤µ¤»¤ë
124 // http://www.din.or.jp/~ohzaki/perl.htm#JP_Match
125 $eucpre = $eucpost = '';
126 if (SOURCE_ENCODING == 'EUC-JP')
128 $eucpre = '(?<!\x8F)';
129 // # JIS X 0208 ¤¬ 0ʸ»ú°Ê¾å³¤¤¤Æ # ASCII, SS2, SS3 ¤Þ¤¿¤Ï½ªÃ¼
130 $eucpost = '(?=(?:[\xA1-\xFE][\xA1-\xFE])*(?:[\x00-\x7F\x8E\x8F]|\z))';
132 $quote_func = create_function('$str', 'return preg_quote($str, "/");');
134 // LANG=='ja'¤Ç¡¢mb_convert_kana¤¬»È¤¨¤ë¾ì¹ç¤Ïmb_convert_kana¤ò»ÈÍÑ
135 $convert_kana = create_function('$str, $option',
136 (LANG == 'ja' && function_exists('mb_convert_kana')) ?
137 'return mb_convert_kana($str, $option);' : 'return $str;'
140 foreach ($words as $word)
142 // ±Ñ¿ô»ú¤ÏȾ³Ñ,¥«¥¿¥«¥Ê¤ÏÁ´³Ñ,¤Ò¤é¤¬¤Ê¤Ï¥«¥¿¥«¥Ê¤Ë
143 $word_zk = $convert_kana($word, 'aKCV');
145 for ($pos = 0; $pos < mb_strlen($word_zk); $pos++)
147 $char = mb_substr($word_zk, $pos,1);
148 // $special : htmlspecialchars()¤òÄ̤¹¤«
149 $arr = array($quote_func($special ? htmlspecialchars($char) : $char));
150 if (strlen($char) == 1) // ±Ñ¿ô»ú
152 foreach (array(strtoupper($char), strtolower($char)) as $_char)
155 $arr[] = $quote_func($_char);
158 $arr[] = sprintf('&#(?:%d|x%x);', $ord, $ord); // ¼ÂÂλ²¾È
159 $arr[] = $quote_func($convert_kana($_char, 'A')); // Á´³Ñ
162 else // ¥Þ¥ë¥Á¥Ð¥¤¥Èʸ»ú
164 $arr[] = $quote_func($convert_kana($char, 'c')); // ¤Ò¤é¤¬¤Ê
165 $arr[] = $quote_func($convert_kana($char, 'k')); // Ⱦ³Ñ¥«¥¿¥«¥Ê
167 $chars[] = '(?:' . join('|', array_unique($arr)) . ')';
169 $retval[$word] = $eucpre.join('', $chars) . $eucpost;
175 function do_search($word, $type = 'AND', $non_format = FALSE)
177 global $script, $whatsnew, $non_list, $search_non_list;
178 global $_msg_andresult, $_msg_orresult, $_msg_notfoundresult;
183 $b_type = ($type == 'AND'); // AND:TRUE OR:FALSE
184 $keys = get_search_words(preg_split('/\s+/', $word, -1, PREG_SPLIT_NO_EMPTY));
186 $_pages = get_existpages();
189 foreach ($_pages as $page)
191 if ($page == $whatsnew || (! $search_non_list && preg_match("/$non_list/", $page)))
194 // ¸¡º÷Âоݥڡ¼¥¸¤ÎÀ©¸Â¤ò¤«¤±¤ë¤«¤É¤¦¤« (¥Ú¡¼¥¸Ì¾¤ÏÀ©¸Â³°)
195 if ($search_auth && ! check_readable($page, false, false)) {
196 $source = get_source(); // ¸¡º÷Âоݥڡ¼¥¸ÆâÍƤò¶õ¤Ë¡£
198 $source = get_source($page);
201 array_unshift($source, $page); // ¥Ú¡¼¥¸Ì¾¤â¸¡º÷ÂоݤË
204 foreach ($keys as $key) {
205 $tmp = preg_grep("/$key/", $source);
206 $b_match = (count($tmp) > 0);
207 if ($b_match xor $b_type)
211 $pages[$page] = get_filetime($page);
214 return array_keys($pages);
216 $r_word = rawurlencode($word);
217 $s_word = htmlspecialchars($word);
219 return str_replace('$1', $s_word, $_msg_notfoundresult);
223 foreach ($pages as $page=>$time) {
224 $r_page = rawurlencode($page);
225 $s_page = htmlspecialchars($page);
226 $passage = get_passage($time);
227 $retval .= " <li><a href=\"$script?cmd=read&page=$r_page&word=$r_word\">$s_page</a>$passage</li>\n";
229 $retval .= "</ul>\n";
231 $retval .= str_replace('$1', $s_word, str_replace('$2', count($pages),
232 str_replace('$3', count($_pages), $b_type ? $_msg_andresult : $_msg_orresult)));
237 // ¥×¥í¥°¥é¥à¤Ø¤Î°ú¿ô¤Î¥Á¥§¥Ã¥¯
238 function arg_check($str)
242 return isset($vars['cmd']) && (strpos($vars['cmd'], $str) === 0);
245 // ¥Ú¡¼¥¸Ì¾¤Î¥¨¥ó¥³¡¼¥É
246 function encode($key)
248 return ($key == '') ? '' : strtoupper(join('', unpack('H*0', $key)));
251 // ¥Ú¡¼¥¸Ì¾¤Î¥Ç¥³¡¼¥É
252 function decode($key)
254 return ($key == '') ? '' : substr(pack('H*', '20202020' . $key), 4);
258 function strip_bracket($str)
261 if (preg_match('/^\[\[(.*)\]\]$/', $str, $match)) {
269 function page_list($pages, $cmd = 'read', $withfilename = FALSE)
271 global $script, $list_index, $top;
272 global $_msg_symbol, $_msg_other;
273 global $pagereading_enable;
275 // ¥½¡¼¥È¥¡¼¤ò·èÄꤹ¤ë¡£ ' ' < '[a-zA-Z]' < 'zz'¤È¤¤¤¦Á°Äó¡£
281 if($pagereading_enable) {
282 mb_regex_encoding(SOURCE_ENCODING);
283 $readings = get_readings($pages);
286 $list = $matches = array();
287 foreach($pages as $file=>$page)
289 $r_page = rawurlencode($page);
290 $s_page = htmlspecialchars($page, ENT_QUOTES);
291 $passage = get_pg_passage($page);
293 $str = " <li><a href=\"$script?cmd=$cmd&page=$r_page\">$s_page</a>$passage";
296 $s_file = htmlspecialchars($file);
297 $str .= "\n <ul><li>$s_file</li></ul>\n ";
301 if($pagereading_enable) {
302 if(mb_ereg('^([A-Za-z])', mb_convert_kana($page, 'a'), $matches)) {
305 elseif(mb_ereg('^([¥¡-¥ö])', $readings[$page], $matches)) {
308 elseif (mb_ereg('^[ -~]|[^¤¡-¤ó°¡-ô¦]', $page)) {
316 $head = (preg_match('/^([A-Za-z])/', $page, $matches)) ? $matches[1] :
317 (preg_match('/^([ -~])/', $page, $matches) ? $symbol : $other);
320 $list[$head][$page] = $str;
325 $arr_index = array();
327 foreach ($list as $head=>$pages)
329 if ($head === $symbol) {
330 $head = $_msg_symbol;
331 } else if ($head === $other) {
337 $arr_index[] = "<a id=\"top_$cnt\" href=\"#head_$cnt\"><strong>$head</strong></a>";
338 $retval .= " <li><a id=\"head_$cnt\" href=\"#top_$cnt\"><strong>$head</strong></a>\n <ul>\n";
341 $retval .= join("\n", $pages);
343 $retval .= "\n </ul>\n </li>\n";
345 $retval .= "</ul>\n";
346 if ($list_index && $cnt > 0) {
348 while (count($arr_index) > 0) {
349 $top[] = join(" | \n", array_splice($arr_index, 0, 16)) . "\n";
351 $retval = "<div id=\"top\" style=\"text-align:center\">\n" .
352 join('<br />', $top) . "</div>\n" . $retval;
357 // ¥Æ¥¥¹¥ÈÀ°·Á¥ë¡¼¥ë¤òɽ¼¨¤¹¤ë
362 if (! is_page($rule_page)) {
363 return "<p>Sorry, $rule_page unavailable.</p>";
365 return convert_html(get_source($rule_page));
369 // ¥¨¥é¡¼¥á¥Ã¥»¡¼¥¸¤òɽ¼¨¤¹¤ë
370 function die_message($msg)
372 $title = $page = 'Runtime error';
375 <h3>Runtime error</h3>
376 <strong>Error message : $msg</strong>
379 if(defined('SKIN_FILE') && file_exists(SKIN_FILE) && is_readable(SKIN_FILE)) {
380 catbody($title, $page, $body);
383 header('Content-Type: text/html; charset=euc-jp');
385 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
388 <title>$title</title>
389 <meta http-equiv="content-type" content="text/html; charset=euc-jp">
400 // ¸½ºß»þ¹ï¤ò¥Þ¥¤¥¯¥íÉäǼèÆÀ
401 function getmicrotime()
403 list($usec, $sec) = explode(' ', microtime());
404 return ((float)$sec + (float)$usec);
408 function get_date($format, $timestamp = NULL)
410 $time = ($timestamp === NULL) ? UTIME : $timestamp;
413 $format = preg_replace('/(?<!\\\)T/', preg_replace('/(.)/', '\\\$1', ZONE), $format);
415 return date($format, $time);
419 function format_date($val, $paren = FALSE)
421 global $date_format, $time_format, $weeklabels;
425 $ins_date = date($date_format, $val);
426 $ins_time = date($time_format, $val);
427 $ins_week = '(' . $weeklabels[date('w', $val)] . ')';
429 $ins = "$ins_date $ins_week $ins_time";
430 return $paren ? "($ins)" : $ins;
433 // ·Ð²á»þ¹ïʸ»úÎó¤òºî¤ë
434 function get_passage($time, $paren = TRUE)
436 static $units = array('m'=>60, 'h'=>24, 'd'=>1);
438 $time = max(0, (UTIME - $time) / 60); // minutes
440 foreach ($units as $unit=>$card) {
441 if ($time < $card) break;
444 $time = floor($time) . $unit;
446 return $paren ? "($time)" : $time;
449 // <input type="(submit|button|image)"...>¤ò±£¤¹
450 function drop_submit($str)
453 '/<input([^>]+)type="(submit|button|image)"/i',
454 '<input$1type="hidden"',
459 // AutoLink¤Î¥Ñ¥¿¡¼¥ó¤òÀ¸À®¤¹¤ë
461 function get_autolink_pattern(& $pages)
463 global $WikiName, $autolink, $nowikiname;
465 $config = &new Config('AutoLink');
467 $ignorepages = $config->get('IgnoreList');
468 $forceignorepages = $config->get('ForceIgnoreList');
470 $auto_pages = array_merge($ignorepages, $forceignorepages);
472 foreach ($pages as $page) {
473 if (preg_match("/^$WikiName$/", $page) ?
474 $nowikiname : strlen($page) >= $autolink)
475 $auto_pages[] = $page;
478 if (empty($auto_pages))
479 return $nowikiname ? '(?!)' : $WikiName;
481 $auto_pages = array_unique($auto_pages);
482 sort($auto_pages, SORT_STRING);
484 $auto_pages_a = array_values(preg_grep('/^[A-Z]+$/i', $auto_pages));
485 $auto_pages = array_values(array_diff($auto_pages, $auto_pages_a));
487 $result = get_autolink_pattern_sub($auto_pages, 0, count($auto_pages), 0);
488 $result_a = get_autolink_pattern_sub($auto_pages_a, 0, count($auto_pages_a), 0);
490 return array($result, $result_a, $forceignorepages);
493 function get_autolink_pattern_sub(& $pages, $start, $end, $pos)
495 if ($end == 0) return '(?!)';
498 $count = $i = $j = 0;
499 $x = (mb_strlen($pages[$start]) <= $pos);
502 for ($i = $start; $i < $end; $i = $j)
504 $char = mb_substr($pages[$i], $pos, 1);
505 for ($j = $i; $j < $end; $j++) {
506 if (mb_substr($pages[$j], $pos, 1) != $char) break;
508 if ($i != $start) $result .= '|';
509 if ($i >= ($j - 1)) {
510 $result .= str_replace(' ', '\\ ', preg_quote(mb_substr($pages[$i], $pos), '/'));
512 $result .= str_replace(' ', '\\ ', preg_quote($char, '/')) .
513 get_autolink_pattern_sub($pages, $i, $j, $pos + 1);
517 if ($x || $count > 1) $result = '(?:' . $result . ')';
518 if ($x) $result .= '?';
523 // pukiwiki.php¥¹¥¯¥ê¥×¥È¤Îabsolute-uri¤òÀ¸À®
524 function get_script_uri($init_uri = '')
526 global $script_directory_index;
529 if ($init_uri == '') {
531 if (isset($script)) return $script;
534 $msg = 'get_script_uri() failed: Please set $script at INI_FILE manually';
536 $script = (SERVER_PORT == 443 ? 'https://' : 'http://'); // scheme
537 $script .= SERVER_NAME; // host
538 $script .= (SERVER_PORT == 80 ? '' : ':' . SERVER_PORT); // port
540 // SCRIPT_NAME ¤¬'/'¤Ç»Ï¤Þ¤Ã¤Æ¤¤¤Ê¤¤¾ì¹ç(cgi¤Ê¤É) REQUEST_URI¤ò»È¤Ã¤Æ¤ß¤ë
542 if ($path{0} != '/') {
543 if (! isset($_SERVER['REQUEST_URI']) || $_SERVER['REQUEST_URI']{0} != '/')
546 // REQUEST_URI¤ò¥Ñ¡¼¥¹¤·¡¢pathÉôʬ¤À¤±¤ò¼è¤ê½Ð¤¹
547 $parse_url = parse_url($script . $_SERVER['REQUEST_URI']);
548 if (! isset($parse_url['path']) || $parse_url['path']{0} != '/')
551 $path = $parse_url['path'];
555 if (! is_url($script, TRUE) && php_sapi_name() == 'cgi')
561 if (isset($script)) die_message('$script: Already init');
562 if (! is_url($init_uri, TRUE)) die_message('$script: Invalid URI');
566 // Cut filename or not
567 if (isset($script_directory_index)) {
568 if (! file_exists($script_directory_index))
569 die_message('Directory index file not found: ' .
570 htmlspecialchars($script_directory_index));
572 if (preg_match('#^(.+/)' . preg_quote($script_directory_index, '#') . '$#',
573 $script, $matches)) $script = $matches[1];
580 ÊÑ¿ôÆâ¤Înull(\0)¥Ð¥¤¥È¤òºï½ü¤¹¤ë
581 PHP¤Ïfopen("hoge.php\0.txt")¤Ç"hoge.php"¤ò³«¤¤¤Æ¤·¤Þ¤¦¤Ê¤É¤ÎÌäÂꤢ¤ê
583 http://ns1.php.gr.jp/pipermail/php-users/2003-January/012742.html
584 [PHP-users 12736] null byte attack
586 2003-05-16: magic quotes gpc¤ÎÉü¸µ½èÍý¤òÅý¹ç
587 2003-05-21: Ï¢ÁÛÇÛÎó¤Î¥¡¼¤Ïbinary safe
589 function input_filter($param)
591 static $magic_quotes_gpc = NULL;
592 if ($magic_quotes_gpc === NULL)
593 $magic_quotes_gpc = get_magic_quotes_gpc();
595 if (is_array($param)) {
596 return array_map('input_filter', $param);
598 $result = str_replace("\0", '', $param);
599 if ($magic_quotes_gpc) $result = stripslashes($result);
604 // Compat for 3rd party plugins. Remove this later
605 function sanitize($param) {
606 return input_filter($param);
609 // CSV·Á¼°¤Îʸ»úÎó¤òÇÛÎó¤Ë
610 function csv_explode($separator, $string)
612 $retval = $matches = array();
614 $_separator = preg_quote($separator, '/');
615 if (! preg_match_all('/("[^"]*(?:""[^"]*)*"|[^' . $_separator . ']*)' .
616 $_separator . '/', $string . $separator, $matches))
619 foreach ($matches[1] as $str) {
621 if ($len > 1 && $str{0} == '"' && $str{$len - 1} == '"')
622 $str = str_replace('""', '"', substr($str, 1, -1));
628 // ÇÛÎó¤òCSV·Á¼°¤Îʸ»úÎó¤Ë
629 function csv_implode($glue, $pieces)
631 $_glue = ($glue != '') ? '\\' . $glue{0} : '';
633 foreach ($pieces as $str) {
634 if (ereg("[$_glue\"\n\r]", $str))
635 $str = '"' . str_replace('"', '""', $str) . '"';
638 return join($glue, $arr);
641 function pkwk_login($pass = '')
645 if ($pass != '' && md5($pass) == $adminpass) {
648 sleep (2); // Blocking brute force attack
656 // is_a -- Returns TRUE if the object is of this class or has this class as one of its parents
658 if (! function_exists('is_a'))
660 function is_a($class, $match)
662 if (empty($class)) return false;
664 $class = is_object($class) ? get_class($class) : $class;
665 if (strtolower($class) == strtolower($match)) {
668 return is_a(get_parent_class($class), $match); // Recurse
673 // array_fill -- Fill an array with values
675 if (! function_exists('array_fill'))
677 function array_fill($start_index, $num, $value)
680 while ($num-- > 0) $ret[$start_index++] = $value;
685 // md5_file -- Calculates the md5 hash of a given filename
687 if (! function_exists('md5_file'))
689 function md5_file($filename)
691 if (! file_exists($filename)) return FALSE;
693 $fd = fopen($filename, 'rb');
694 if ($fd === FALSE ) return FALSE;
695 $data = fread($fd, filesize($filename));