+ background: url("../images/phpbb_logo.png") top left no-repeat;

+ height: 54px;

+ background: url("../images/phpbb_logo.png") top right no-repeat;

+phpbb.add_ajax_callback('alt_text', function() {

+ el.attr('data-alt-text', el.text());

+/**

+ * This callback is based on the alt_text callback.

+ *

+ * It replaces the current text with the text in the alt-text data attribute,

+ * and replaces the text in the attribute with the current text so that the

+ * process can be repeated.

+ * Additionally it replaces the class of the link's parent

+ * and changes the link itself.

+ */

+phpbb.add_ajax_callback('toggle_link', function() {

+ var el = $(this),

+ toggle_text,

+ toggle_url,

+ toggle_class;

+

+ // Toggle link text

+

+ toggle_text = el.attr('data-toggle-text');

+ el.attr('data-toggle-text', el.text());

+ el.attr('title', toggle_text);

+ el.text(toggle_text);

+

+ // Toggle link url

+ toggle_url = el.attr('data-toggle-url');

+ el.attr('data-toggle-url', el.attr('href'));

+ el.attr('href', toggle_url);

+

+ // Toggle class of link parent

+ toggle_class = el.attr('data-toggle-class');

+ el.attr('data-toggle-class', el.parent().attr('class'));

+ el.parent().attr('class', toggle_class);

+});

+ $fp = fopen($schema_path . $dbms . '_schema.sql', 'wb');

+ <li>SQLite 2.8.2+ (SQLite 3 is not supported)</li>

+* remove_comments will strip the sql comment lines out of an uploaded sql file

+* specifically for mssql and postgres type files in the install....

+*

+* @deprecated Use phpbb_remove_comments() instead.

+*/

+function remove_comments(&$output)

+{

+ // Remove /* */ comments (http://ostermiller.org/findcomment.html)

+ $output = preg_replace('#/\*(.|[\r\n])*?\*/#', "\n", $output);

+

+ // Return by reference and value.

+ return $output;

+}

+

+/**

+ $s_watching['link_toggle'] = append_sid("{$phpbb_root_path}view$mode.$phpEx", "$u_url=$match_id&amp;" . ((!$is_watching) ? 'unwatch' : 'watch') . "=$mode&amp;start=$start&amp;hash=" . generate_link_hash("{$mode}_$match_id"));

+ $s_watching['title_toggle'] = $user->lang[((!$is_watching) ? 'STOP' : 'START') . '_WATCHING_' . strtoupper($mode)];

+ 'COMMENTS' => 'remove_remarks',

+ 'COMMENTS' => 'remove_remarks',

+ 'COMMENTS' => 'remove_remarks',

+ 'COMMENTS' => 'remove_comments',

+ 'COMMENTS' => 'remove_comments',

+ 'COMMENTS' => 'remove_comments',

+ 'COMMENTS' => 'remove_comments',

+ 'COMMENTS' => 'remove_comments',

+ 'COMMENTS' => 'remove_remarks',

+*

+* @deprecated Use phpbb_remove_comments() instead.

+function remove_remarks(&$sql)

+ // Return by reference

+}

+

+/**

+* Removes "/* style" as well as "# style" comments from $input.

+*

+* @param string $input Input string

+*

+* @return string Input string with comments removed

+*/

+function phpbb_remove_comments($input)

+{

+ if (!function_exists('remove_comments'))

+ {

+ global $phpbb_root_path, $phpEx;

+ require($phpbb_root_path . 'includes/functions_admin.' . $phpEx);

+ }

+

+ // Remove /* */ comments

+ remove_comments($input);

+

+ // Remove # style comments

+ remove_remarks($input);

+

+ return $input;

+ $mimetype = $this->get_mimetype($this->filename);

+ return (strpos($mimetype, 'image/') === 0);

+ * Get mimetype. Utilises the finfo class.

+ $finfo = new finfo(FILEINFO_MIME_TYPE);

+ $mimetype = $finfo->file($filename);

+ $this->filename = $this->destination_file;

+ return $user->lang['FULLTEXT_MYSQL_INCOMPATIBLE_DATABASE'];

+ $split_keywords = preg_replace('#([^\p{L}\p{N}\'*"()])#u', '$1$1', str_replace('\'\'', '\' \'', trim($split_keywords)));

+ $matches = array();

+ preg_match_all('#(?:[^\p{L}\p{N}*"()]|^)([+\-|]?(?:[\p{L}\p{N}*"()]+\'?)*[\p{L}\p{N}*"()])(?:[^\p{L}\p{N}*"()]|$)#u', $split_keywords, $matches);

+ $this->split_words = $matches[1];

+ $text = preg_replace('#([^\p{L}\p{N}\'*])#u', '$1$1', str_replace('\'\'', '\' \'', trim($text)));

+ $matches = array();

+ preg_match_all('#(?:[^\p{L}\p{N}*]|^)([+\-|]?(?:[\p{L}\p{N}*]+\'?)*[\p{L}\p{N}*])(?:[^\p{L}\p{N}*]|$)#u', $text, $matches);

+ $text = $matches[1];

+<?php

+/**

+*

+* @package search

+* @copyright (c) 2005 phpBB Group

+* @license http://opensource.org/licenses/gpl-2.0.php GNU General Public License v2

+*

+*/

+

+/**

+* @ignore

+*/

+if (!defined('IN_PHPBB'))

+{

+ exit;

+}

+

+/**

+* fulltext_postgres

+* Fulltext search for PostgreSQL

+* @package search

+*/

+class phpbb_search_fulltext_postgres extends phpbb_search_base

+{

+ private $stats = array();

+ private $split_words = array();

+ private $tsearch_usable = false;

+ private $version;

+ private $tsearch_query;

+ private $phrase_search = false;

+ public $search_query;

+ public $common_words = array();

+ public $word_length = array();

+

+ /**

+ * Constructor

+ * Creates a new phpbb_search_fulltext_postgres, which is used as a search backend.

+ *

+ * @param string|bool $error Any error that occurs is passed on through this reference variable otherwise false

+ */

+ public function __construct(&$error)

+ {

+ global $db, $config;

+

+ $this->word_length = array('min' => $config['fulltext_postgres_min_word_len'], 'max' => $config['fulltext_postgres_max_word_len']);

+

+

+ if ($db->sql_layer == 'postgres')

+ {

+ $pgsql_version = explode(',', substr($db->sql_server_info(), 10));

+ $this->version = trim($pgsql_version[0]);

+ if (version_compare($this->version, '8.3', '>='))

+ {

+ $this->tsearch_usable = true;

+ }

+ }

+

+ $error = false;

+ }

+

+ /**

+ * Returns the name of this search backend to be displayed to administrators

+ *

+ * @return string Name

+ *

+ * @access public

+ */

+ public function get_name()

+ {

+ return 'PostgreSQL Fulltext';

+ }

+

+ /**

+ * Returns if phrase search is supported or not

+ *

+ * @return bool

+ *

+ * @access public

+ */

+ public function supports_phrase_search()

+ {

+ return $this->phrase_search;

+ }

+

+ /**

+ * Checks for correct PostgreSQL version and stores min/max word length in the config

+ *

+ * @return string|bool Language key of the error/incompatiblity occured

+ *

+ * @access public

+ */

+ function init()

+ {

+ global $db, $user;

+

+ if ($db->sql_layer != 'postgres')

+ {

+ return $user->lang['FULLTEXT_POSTGRES_INCOMPATIBLE_DATABASE'];

+ }

+

+ if (!$this->tsearch_usable)

+ {

+ return $user->lang['FULLTEXT_POSTGRES_TS_NOT_USABLE'];

+ }

+

+ return false;

+ }

+

+ /**

+ * Splits keywords entered by a user into an array of words stored in $this->split_words

+ * Stores the tidied search query in $this->search_query

+ *

+ * @param string &$keywords Contains the keyword as entered by the user

+ * @param string $terms is either 'all' or 'any'

+ * @return bool false if no valid keywords were found and otherwise true

+ *

+ * @access public

+ */

+ function split_keywords(&$keywords, $terms)

+ {

+ global $config;

+

+ if ($terms == 'all')

+ {

+ $match = array('#\sand\s#iu', '#\sor\s#iu', '#\snot\s#iu', '#\+#', '#-#', '#\|#');

+ $replace = array(' +', ' |', ' -', ' +', ' -', ' |');

+

+ $keywords = preg_replace($match, $replace, $keywords);

+ }

+

+ // Filter out as above

+ $split_keywords = preg_replace("#[\"\n\r\t]+#", ' ', trim(htmlspecialchars_decode($keywords)));

+

+ // Split words

+ $split_keywords = preg_replace('#([^\p{L}\p{N}\'*"()])#u', '$1$1', str_replace('\'\'', '\' \'', trim($split_keywords)));

+ $matches = array();

+ preg_match_all('#(?:[^\p{L}\p{N}*"()]|^)([+\-|]?(?:[\p{L}\p{N}*"()]+\'?)*[\p{L}\p{N}*"()])(?:[^\p{L}\p{N}*"()]|$)#u', $split_keywords, $matches);

+ $this->split_words = $matches[1];

+

+ foreach ($this->split_words as $i => $word)

+ {

+ $clean_word = preg_replace('#^[+\-|"]#', '', $word);

+

+ // check word length

+ $clean_len = utf8_strlen(str_replace('*', '', $clean_word));

+ if (($clean_len < $config['fulltext_postgres_min_word_len']) || ($clean_len > $config['fulltext_postgres_max_word_len']))

+ {

+ $this->common_words[] = $word;

+ unset($this->split_words[$i]);

+ }

+ }

+

+ if ($terms == 'any')

+ {

+ $this->search_query = '';

+ $this->tsearch_query = '';

+ foreach ($this->split_words as $word)

+ {

+ if ((strpos($word, '+') === 0) || (strpos($word, '-') === 0) || (strpos($word, '|') === 0))

+ {

+ $word = substr($word, 1);

+ }

+ $this->search_query .= $word . ' ';

+ $this->tsearch_query .= '|' . $word . ' ';

+ }

+ }

+ else

+ {

+ $this->search_query = '';

+ $this->tsearch_query = '';

+ foreach ($this->split_words as $word)

+ {

+ if (strpos($word, '+') === 0)

+ {

+ $this->search_query .= $word . ' ';

+ $this->tsearch_query .= '&' . substr($word, 1) . ' ';

+ }

+ elseif (strpos($word, '-') === 0)

+ {

+ $this->search_query .= $word . ' ';

+ $this->tsearch_query .= '&!' . substr($word, 1) . ' ';

+ }

+ elseif (strpos($word, '|') === 0)

+ {

+ $this->search_query .= $word . ' ';

+ $this->tsearch_query .= '|' . substr($word, 1) . ' ';

+ }

+ else

+ {

+ $this->search_query .= '+' . $word . ' ';

+ $this->tsearch_query .= '&' . $word . ' ';

+ }

+ }

+ }

+

+ $this->tsearch_query = substr($this->tsearch_query, 1);

+ $this->search_query = utf8_htmlspecialchars($this->search_query);

+

+ if ($this->search_query)

+ {

+ $this->split_words = array_values($this->split_words);

+ sort($this->split_words);

+ return true;

+ }

+ return false;

+ }

+

+ /**

+ * Turns text into an array of words

+ * @param string $text contains post text/subject

+ *

+ * @access public

+ */

+ function split_message($text)

+ {

+ global $config;

+

+ // Split words

+ $text = preg_replace('#([^\p{L}\p{N}\'*])#u', '$1$1', str_replace('\'\'', '\' \'', trim($text)));

+ $matches = array();

+ preg_match_all('#(?:[^\p{L}\p{N}*]|^)([+\-|]?(?:[\p{L}\p{N}*]+\'?)*[\p{L}\p{N}*])(?:[^\p{L}\p{N}*]|$)#u', $text, $matches);

+ $text = $matches[1];

+

+ // remove too short or too long words

+ $text = array_values($text);

+ for ($i = 0, $n = sizeof($text); $i < $n; $i++)

+ {

+ $text[$i] = trim($text[$i]);

+ if (utf8_strlen($text[$i]) < $config['fulltext_postgres_min_word_len'] || utf8_strlen($text[$i]) > $config['fulltext_postgres_max_word_len'])

+ {

+ unset($text[$i]);

+ }

+ }

+

+ return array_values($text);

+ }

+

+ /**

+ * Performs a search on keywords depending on display specific params. You have to run split_keywords() first.

+ *

+ * @param string $type contains either posts or topics depending on what should be searched for

+ * @param string $fields contains either titleonly (topic titles should be searched), msgonly (only message bodies should be searched), firstpost (only subject and body of the first post should be searched) or all (all post bodies and subjects should be searched)

+ * @param string $terms is either 'all' (use query as entered, words without prefix should default to "have to be in field") or 'any' (ignore search query parts and just return all posts that contain any of the specified words)

+ * @param array $sort_by_sql contains SQL code for the ORDER BY part of a query

+ * @param string $sort_key is the key of $sort_by_sql for the selected sorting

+ * @param string $sort_dir is either a or d representing ASC and DESC

+ * @param string $sort_days specifies the maximum amount of days a post may be old

+ * @param array $ex_fid_ary specifies an array of forum ids which should not be searched

+ * @param array $m_approve_fid_ary specifies an array of forum ids in which the searcher is allowed to view unapproved posts

+ * @param int $topic_id is set to 0 or a topic id, if it is not 0 then only posts in this topic should be searched

+ * @param array $author_ary an array of author ids if the author should be ignored during the search the array is empty

+ * @param string $author_name specifies the author match, when ANONYMOUS is also a search-match

+ * @param array &$id_ary passed by reference, to be filled with ids for the page specified by $start and $per_page, should be ordered

+ * @param int $start indicates the first index of the page

+ * @param int $per_page number of ids each page is supposed to contain

+ * @return boolean|int total number of results

+ *

+ * @access public

+ */

+ function keyword_search($type, $fields, $terms, $sort_by_sql, $sort_key, $sort_dir, $sort_days, $ex_fid_ary, $m_approve_fid_ary, $topic_id, $author_ary, $author_name, &$id_ary, $start, $per_page)

+ {

+ global $config, $db;

+

+ // No keywords? No posts.

+ if (!$this->search_query)

+ {

+ return false;

+ }

+

+ // generate a search_key from all the options to identify the results

+ $search_key = md5(implode('#', array(

+ implode(', ', $this->split_words),

+ $type,

+ $fields,

+ $terms,

+ $sort_days,

+ $sort_key,

+ $topic_id,

+ implode(',', $ex_fid_ary),

+ implode(',', $m_approve_fid_ary),

+ implode(',', $author_ary)

+ )));

+

+ // try reading the results from cache

+ $result_count = 0;

+ if ($this->obtain_ids($search_key, $result_count, $id_ary, $start, $per_page, $sort_dir) == SEARCH_RESULT_IN_CACHE)

+ {

+ return $result_count;

+ }

+

+ $id_ary = array();

+

+ $join_topic = ($type == 'posts') ? false : true;

+

+ // Build sql strings for sorting

+ $sql_sort = $sort_by_sql[$sort_key] . (($sort_dir == 'a') ? ' ASC' : ' DESC');

+ $sql_sort_table = $sql_sort_join = '';

+

+ switch ($sql_sort[0])

+ {

+ case 'u':

+ $sql_sort_table = USERS_TABLE . ' u, ';

+ $sql_sort_join = ($type == 'posts') ? ' AND u.user_id = p.poster_id ' : ' AND u.user_id = t.topic_poster ';

+ break;

+

+ case 't':

+ $join_topic = true;

+ break;

+

+ case 'f':

+ $sql_sort_table = FORUMS_TABLE . ' f, ';

+ $sql_sort_join = ' AND f.forum_id = p.forum_id ';

+ break;

+ }

+

+ // Build some display specific sql strings

+ switch ($fields)

+ {

+ case 'titleonly':

+ $sql_match = 'p.post_subject';

+ $sql_match_where = ' AND p.post_id = t.topic_first_post_id';

+ $join_topic = true;

+ break;

+

+ case 'msgonly':

+ $sql_match = 'p.post_text';

+ $sql_match_where = '';

+ break;

+

+ case 'firstpost':

+ $sql_match = 'p.post_subject, p.post_text';

+ $sql_match_where = ' AND p.post_id = t.topic_first_post_id';

+ $join_topic = true;

+ break;

+

+ default:

+ $sql_match = 'p.post_subject, p.post_text';

+ $sql_match_where = '';

+ break;

+ }

+

+ if (!sizeof($m_approve_fid_ary))

+ {

+ $m_approve_fid_sql = ' AND p.post_approved = 1';

+ }

+ else if ($m_approve_fid_ary === array(-1))

+ {

+ $m_approve_fid_sql = '';

+ }

+ else

+ {

+ $m_approve_fid_sql = ' AND (p.post_approved = 1 OR ' . $db->sql_in_set('p.forum_id', $m_approve_fid_ary, true) . ')';

+ }

+

+ $sql_select = ($type == 'posts') ? 'p.post_id' : 'DISTINCT t.topic_id';

+ $sql_from = ($join_topic) ? TOPICS_TABLE . ' t, ' : '';

+ $field = ($type == 'posts') ? 'post_id' : 'topic_id';

+ $sql_author = (sizeof($author_ary) == 1) ? ' = ' . $author_ary[0] : 'IN (' . implode(', ', $author_ary) . ')';

+

+ if (sizeof($author_ary) && $author_name)

+ {

+ // first one matches post of registered users, second one guests and deleted users

+ $sql_author = '(' . $db->sql_in_set('p.poster_id', array_diff($author_ary, array(ANONYMOUS)), false, true) . ' OR p.post_username ' . $author_name . ')';

+ }

+ else if (sizeof($author_ary))

+ {

+ $sql_author = ' AND ' . $db->sql_in_set('p.poster_id', $author_ary);

+ }

+ else

+ {

+ $sql_author = '';

+ }

+

+ $sql_where_options = $sql_sort_join;

+ $sql_where_options .= ($topic_id) ? ' AND p.topic_id = ' . $topic_id : '';

+ $sql_where_options .= ($join_topic) ? ' AND t.topic_id = p.topic_id' : '';

+ $sql_where_options .= (sizeof($ex_fid_ary)) ? ' AND ' . $db->sql_in_set('p.forum_id', $ex_fid_ary, true) : '';

+ $sql_where_options .= $m_approve_fid_sql;

+ $sql_where_options .= $sql_author;

+ $sql_where_options .= ($sort_days) ? ' AND p.post_time >= ' . (time() - ($sort_days * 86400)) : '';

+ $sql_where_options .= $sql_match_where;

+

+ $tmp_sql_match = array();

+ foreach (explode(',', $sql_match) as $sql_match_column)

+ {

+ $tmp_sql_match[] = "to_tsvector ('" . $db->sql_escape($config['fulltext_postgres_ts_name']) . "', " . $sql_match_column . ") @@ to_tsquery ('" . $db->sql_escape($config['fulltext_postgres_ts_name']) . "', '" . $db->sql_escape($this->tsearch_query) . "')";

+ }

+

+ $sql = "SELECT $sql_select

+ FROM $sql_from$sql_sort_table" . POSTS_TABLE . " p

+ WHERE (" . implode(' OR ', $tmp_sql_match) . ")

+ $sql_where_options

+ ORDER BY $sql_sort";

+ $result = $db->sql_query_limit($sql, $config['search_block_size'], $start);

+

+ while ($row = $db->sql_fetchrow($result))

+ {

+ $id_ary[] = $row[$field];

+ }

+ $db->sql_freeresult($result);

+

+ $id_ary = array_unique($id_ary);

+

+ if (!sizeof($id_ary))

+ {

+ return false;

+ }

+

+ // if the total result count is not cached yet, retrieve it from the db

+ if (!$result_count)

+ {

+ $result_count = sizeof ($id_ary);

+

+ if (!$result_count)

+ {

+ return false;

+ }

+ }

+

+ // store the ids, from start on then delete anything that isn't on the current page because we only need ids for one page

+ $this->save_ids($search_key, implode(' ', $this->split_words), $author_ary, $result_count, $id_ary, $start, $sort_dir);

+ $id_ary = array_slice($id_ary, 0, (int) $per_page);

+

+ return $result_count;

+ }

+

+ /**

+ * Performs a search on an author's posts without caring about message contents. Depends on display specific params

+ *

+ * @param string $type contains either posts or topics depending on what should be searched for

+ * @param boolean $firstpost_only if true, only topic starting posts will be considered

+ * @param array $sort_by_sql contains SQL code for the ORDER BY part of a query

+ * @param string $sort_key is the key of $sort_by_sql for the selected sorting

+ * @param string $sort_dir is either a or d representing ASC and DESC

+ * @param string $sort_days specifies the maximum amount of days a post may be old

+ * @param array $ex_fid_ary specifies an array of forum ids which should not be searched

+ * @param array $m_approve_fid_ary specifies an array of forum ids in which the searcher is allowed to view unapproved posts

+ * @param int $topic_id is set to 0 or a topic id, if it is not 0 then only posts in this topic should be searched

+ * @param array $author_ary an array of author ids

+ * @param string $author_name specifies the author match, when ANONYMOUS is also a search-match

+ * @param array &$id_ary passed by reference, to be filled with ids for the page specified by $start and $per_page, should be ordered

+ * @param int $start indicates the first index of the page

+ * @param int $per_page number of ids each page is supposed to contain

+ * @return boolean|int total number of results

+ *

+ * @access public

+ */

+ function author_search($type, $firstpost_only, $sort_by_sql, $sort_key, $sort_dir, $sort_days, $ex_fid_ary, $m_approve_fid_ary, $topic_id, $author_ary, $author_name, &$id_ary, $start, $per_page)

+ {

+ global $config, $db;

+

+ // No author? No posts.

+ if (!sizeof($author_ary))

+ {

+ return 0;

+ }

+

+ // generate a search_key from all the options to identify the results

+ $search_key = md5(implode('#', array(

+ '',

+ $type,

+ ($firstpost_only) ? 'firstpost' : '',

+ '',

+ '',

+ $sort_days,

+ $sort_key,

+ $topic_id,

+ implode(',', $ex_fid_ary),

+ implode(',', $m_approve_fid_ary),

+ implode(',', $author_ary),

+ $author_name,

+ )));

+

+ // try reading the results from cache

+ $result_count = 0;

+ if ($this->obtain_ids($search_key, $result_count, $id_ary, $start, $per_page, $sort_dir) == SEARCH_RESULT_IN_CACHE)

+ {

+ return $result_count;

+ }

+

+ $id_ary = array();

+

+ // Create some display specific sql strings

+ if ($author_name)

+ {

+ // first one matches post of registered users, second one guests and deleted users

+ $sql_author = '(' . $db->sql_in_set('p.poster_id', array_diff($author_ary, array(ANONYMOUS)), false, true) . ' OR p.post_username ' . $author_name . ')';

+ }

+ else

+ {

+ $sql_author = $db->sql_in_set('p.poster_id', $author_ary);

+ }

+ $sql_fora = (sizeof($ex_fid_ary)) ? ' AND ' . $db->sql_in_set('p.forum_id', $ex_fid_ary, true) : '';

+ $sql_topic_id = ($topic_id) ? ' AND p.topic_id = ' . (int) $topic_id : '';

+ $sql_time = ($sort_days) ? ' AND p.post_time >= ' . (time() - ($sort_days * 86400)) : '';

+ $sql_firstpost = ($firstpost_only) ? ' AND p.post_id = t.topic_first_post_id' : '';

+

+ // Build sql strings for sorting

+ $sql_sort = $sort_by_sql[$sort_key] . (($sort_dir == 'a') ? ' ASC' : ' DESC');

+ $sql_sort_table = $sql_sort_join = '';

+ switch ($sql_sort[0])

+ {

+ case 'u':

+ $sql_sort_table = USERS_TABLE . ' u, ';

+ $sql_sort_join = ($type == 'posts') ? ' AND u.user_id = p.poster_id ' : ' AND u.user_id = t.topic_poster ';

+ break;

+

+ case 't':

+ $sql_sort_table = ($type == 'posts' && !$firstpost_only) ? TOPICS_TABLE . ' t, ' : '';

+ $sql_sort_join = ($type == 'posts' && !$firstpost_only) ? ' AND t.topic_id = p.topic_id ' : '';

+ break;

+

+ case 'f':

+ $sql_sort_table = FORUMS_TABLE . ' f, ';

+ $sql_sort_join = ' AND f.forum_id = p.forum_id ';

+ break;

+ }

+

+ if (!sizeof($m_approve_fid_ary))

+ {

+ $m_approve_fid_sql = ' AND p.post_approved = 1';

+ }

+ else if ($m_approve_fid_ary == array(-1))

+ {

+ $m_approve_fid_sql = '';

+ }

+ else

+ {

+ $m_approve_fid_sql = ' AND (p.post_approved = 1 OR ' . $db->sql_in_set('p.forum_id', $m_approve_fid_ary, true) . ')';

+ }

+

+ // Build the query for really selecting the post_ids

+ if ($type == 'posts')

+ {

+ $sql = "SELECT p.post_id

+ FROM " . $sql_sort_table . POSTS_TABLE . ' p' . (($firstpost_only) ? ', ' . TOPICS_TABLE . ' t ' : ' ') . "

+ WHERE $sql_author

+ $sql_topic_id

+ $sql_firstpost

+ $m_approve_fid_sql

+ $sql_fora

+ $sql_sort_join

+ $sql_time

+ ORDER BY $sql_sort";

+ $field = 'post_id';

+ }

+ else

+ {

+ $sql = "SELECT t.topic_id

+ FROM " . $sql_sort_table . TOPICS_TABLE . ' t, ' . POSTS_TABLE . " p

+ WHERE $sql_author

+ $sql_topic_id

+ $sql_firstpost

+ $m_approve_fid_sql

+ $sql_fora

+ AND t.topic_id = p.topic_id

+ $sql_sort_join

+ $sql_time

+ GROUP BY t.topic_id, $sort_by_sql[$sort_key]

+ ORDER BY $sql_sort";

+ $field = 'topic_id';

+ }

+

+ // Only read one block of posts from the db and then cache it

+ $result = $db->sql_query_limit($sql, $config['search_block_size'], $start);

+

+ while ($row = $db->sql_fetchrow($result))

+ {

+ $id_ary[] = $row[$field];

+ }

+ $db->sql_freeresult($result);

+

+ // retrieve the total result count if needed

+ if (!$result_count)

+ {

+ $result_count = sizeof ($id_ary);

+

+ if (!$result_count)

+ {

+ return false;

+ }

+ }

+

+ if (sizeof($id_ary))

+ {

+ $this->save_ids($search_key, '', $author_ary, $result_count, $id_ary, $start, $sort_dir);

+ $id_ary = array_slice($id_ary, 0, $per_page);

+

+ return $result_count;

+ }

+ return false;

+ }

+

+ /**

+ * Destroys cached search results, that contained one of the new words in a post so the results won't be outdated.

+ *

+ * @param string $mode contains the post mode: edit, post, reply, quote ...

+ * @param int $post_id contains the post id of the post to index

+ * @param string $message contains the post text of the post

+ * @param string $subject contains the subject of the post to index

+ * @param int $poster_id contains the user id of the poster

+ * @param int $forum_id contains the forum id of parent forum of the post

+ *

+ * @access public

+ */

+ function index($mode, $post_id, &$message, &$subject, $poster_id, $forum_id)

+ {

+ global $db;

+

+ // Split old and new post/subject to obtain array of words

+ $split_text = $this->split_message($message);

+ $split_title = ($subject) ? $this->split_message($subject) : array();

+

+ $words = array_unique(array_merge($split_text, $split_title));

+

+ unset($split_text);

+ unset($split_title);

+

+ // destroy cached search results containing any of the words removed or added

+ $this->destroy_cache($words, array($poster_id));

+

+ unset($words);

+ }

+

+ /**

+ * Destroy cached results, that might be outdated after deleting a post

+ *

+ * @access public

+ */

+ function index_remove($post_ids, $author_ids, $forum_ids)

+ {

+ $this->destroy_cache(array(), $author_ids);

+ }

+

+ /**

+ * Destroy old cache entries

+ *

+ * @access public

+ */

+ function tidy()

+ {

+ global $db, $config;

+

+ // destroy too old cached search results

+ $this->destroy_cache(array());

+

+ set_config('search_last_gc', time(), true);

+ }

+

+ /**

+ * Create fulltext index

+ *

+ * @return string|bool error string is returned incase of errors otherwise false

+ *

+ * @access public

+ */

+ function create_index($acp_module, $u_action)

+ {

+ global $db, $config;

+

+ // Make sure we can actually use PostgreSQL with fulltext indexes

+ if ($error = $this->init())

+ {

+ return $error;

+ }

+

+ if (empty($this->stats))

+ {

+ $this->get_stats();

+ }

+

+ if (!isset($this->stats['post_subject']))

+ {

+ $db->sql_query("CREATE INDEX " . POSTS_TABLE . "_" . $config['fulltext_postgres_ts_name'] . "_post_subject ON " . POSTS_TABLE . " USING gin (to_tsvector ('" . $db->sql_escape($config['fulltext_postgres_ts_name']) . "', post_subject))");

+ }

+

+ if (!isset($this->stats['post_text']))

+ {

+ $db->sql_query("CREATE INDEX " . POSTS_TABLE . "_" . $config['fulltext_postgres_ts_name'] . "_post_text ON " . POSTS_TABLE . " USING gin (to_tsvector ('" . $db->sql_escape($config['fulltext_postgres_ts_name']) . "', post_text))");

+ }

+

+ $db->sql_query('TRUNCATE TABLE ' . SEARCH_RESULTS_TABLE);

+

+ return false;

+ }

+

+ /**

+ * Drop fulltext index

+ *

+ * @return string|bool error string is returned incase of errors otherwise false

+ *

+ * @access public

+ */

+ function delete_index($acp_module, $u_action)

+ {

+ global $db;

+

+ // Make sure we can actually use PostgreSQL with fulltext indexes

+ if ($error = $this->init())

+ {

+ return $error;

+ }

+

+ if (empty($this->stats))

+ {

+ $this->get_stats();

+ }

+

+ if (isset($this->stats['post_subject']))

+ {

+ $db->sql_query('DROP INDEX ' . $this->stats['post_subject']['relname']);

+ }

+

+ if (isset($this->stats['post_text']))

+ {

+ $db->sql_query('DROP INDEX ' . $this->stats['post_text']['relname']);

+ }

+

+ $db->sql_query('TRUNCATE TABLE ' . SEARCH_RESULTS_TABLE);

+

+ return false;

+ }

+

+ /**

+ * Returns true if both FULLTEXT indexes exist

+ *

+ * @access public

+ */

+ function index_created()

+ {

+ if (empty($this->stats))

+ {

+ $this->get_stats();

+ }

+

+ return (isset($this->stats['post_text']) && isset($this->stats['post_subject'])) ? true : false;

+ }

+

+ /**

+ * Returns an associative array containing information about the indexes

+ *

+ * @access public

+ */

+ function index_stats()

+ {

+ global $user;

+

+ if (empty($this->stats))

+ {

+ $this->get_stats();

+ }

+

+ return array(

+ $user->lang['FULLTEXT_POSTGRES_TOTAL_POSTS'] => ($this->index_created()) ? $this->stats['total_posts'] : 0,

+ );

+ }

+

+ /**

+ * Computes the stats and store them in the $this->stats associative array

+ *

+ * @access private

+ */

+ function get_stats()

+ {

+ global $db, $config;

+

+ if ($db->sql_layer != 'postgres')

+ {

+ $this->stats = array();

+ return;

+ }

+

+ $sql = "SELECT c2.relname, pg_catalog.pg_get_indexdef(i.indexrelid, 0, true) AS indexdef

+ FROM pg_catalog.pg_class c1, pg_catalog.pg_index i, pg_catalog.pg_class c2

+ WHERE c1.relname = '" . POSTS_TABLE . "'

+ AND pg_catalog.pg_table_is_visible(c1.oid)

+ AND c1.oid = i.indrelid

+ AND i.indexrelid = c2.oid";

+ $result = $db->sql_query($sql);

+

+ while ($row = $db->sql_fetchrow($result))

+ {

+ // deal with older PostgreSQL versions which didn't use Index_type

+ if (strpos($row['indexdef'], 'to_tsvector') !== false)

+ {

+ if ($row['relname'] == POSTS_TABLE . '_' . $config['fulltext_postgres_ts_name'] . '_post_text' || $row['relname'] == POSTS_TABLE . '_post_text')

+ {

+ $this->stats['post_text'] = $row;

+ }

+ else if ($row['relname'] == POSTS_TABLE . '_' . $config['fulltext_postgres_ts_name'] . '_post_subject' || $row['relname'] == POSTS_TABLE . '_post_subject')

+ {

+ $this->stats['post_subject'] = $row;

+ }

+ }

+ }

+ $db->sql_freeresult($result);

+

+ $this->stats['total_posts'] = $config['num_posts'];

+ }

+

+ /**

+ * Display various options that can be configured for the backend from the acp

+ *

+ * @return associative array containing template and config variables

+ *

+ * @access public

+ */

+ function acp()

+ {

+ global $user, $config, $db;

+

+ $tpl = '

+ <dl>

+ <dt><label>' . $user->lang['FULLTEXT_POSTGRES_VERSION_CHECK'] . '</label><br /><span>' . $user->lang['FULLTEXT_POSTGRES_VERSION_CHECK_EXPLAIN'] . '</span></dt>

+ <dd>' . (($this->tsearch_usable) ? $user->lang['YES'] : $user->lang['NO']) . ' (PostgreSQL ' . $this->version . ')</dd>

+ </dl>

+ <dl>

+ <dt><label>' . $user->lang['FULLTEXT_POSTGRES_TS_NAME'] . '</label><br /><span>' . $user->lang['FULLTEXT_POSTGRES_TS_NAME_EXPLAIN'] . '</span></dt>

+ <dd><select name="config[fulltext_postgres_ts_name]">';

+

+ if ($db->sql_layer == 'postgres' && $this->tsearch_usable)

+ {

+ $sql = 'SELECT cfgname AS ts_name

+ FROM pg_ts_config';

+ $result = $db->sql_query($sql);

+

+ while ($row = $db->sql_fetchrow($result))

+ {

+ $tpl .= '<option value="' . $row['ts_name'] . '"' . ($row['ts_name'] === $config['fulltext_postgres_ts_name'] ? ' selected="selected"' : '') . '>' . $row['ts_name'] . '</option>';

+ }

+ $db->sql_freeresult($result);

+ }

+ else

+ {

+ $tpl .= '<option value="' . $config['fulltext_postgres_ts_name'] . '" selected="selected">' . $config['fulltext_postgres_ts_name'] . '</option>';

+ }

+

+ $tpl .= '</select></dd>

+ </dl>

+ <dl>

+ <dt><label for="fulltext_postgres_min_word_len">' . $user->lang['FULLTEXT_POSTGRES_MIN_WORD_LEN'] . ':</label><br /><span>' . $user->lang['FULLTEXT_POSTGRES_MIN_WORD_LEN_EXPLAIN'] . '</span></dt>

+ <dd><input id="fulltext_postgres_min_word_len" type="text" size="3" maxlength="3" name="config[fulltext_postgres_min_word_len]" value="' . (int) $config['fulltext_postgres_min_word_len'] . '" /></dd>

+ </dl>

+ <dl>

+ <dt><label for="fulltext_postgres_max_word_len">' . $user->lang['FULLTEXT_POSTGRES_MAX_WORD_LEN'] . ':</label><br /><span>' . $user->lang['FULLTEXT_POSTGRES_MAX_WORD_LEN_EXPLAIN'] . '</span></dt>

+ <dd><input id="fulltext_postgres_max_word_len" type="text" size="3" maxlength="3" name="config[fulltext_postgres_max_word_len]" value="' . (int) $config['fulltext_postgres_max_word_len'] . '" /></dd>

+ </dl>

+ ';

+

+ // These are fields required in the config table

+ return array(

+ 'tpl' => $tpl,

+ 'config' => array('fulltext_postgres_ts_name' => 'string', 'fulltext_postgres_min_word_len' => 'integer:0:255', 'fulltext_postgres_max_word_len' => 'integer:0:255')

+ );

+ }

+}

+ // Prevent users from flooding the rules table

+ $sql = 'SELECT COUNT(rule_id) AS num_rules

+ FROM ' . PRIVMSGS_RULES_TABLE . '

+ WHERE user_id = ' . (int) $user->data['user_id'];

+ $result = $db->sql_query($sql);

+ $num_rules = (int) $db->sql_fetchfield('num_rules');

+ $db->sql_freeresult($result);

+

+ if ($num_rules >= 5000)

+ {

+ trigger_error('RULE_LIMIT_REACHED');

+ }

+

+ // Set the user_message_rules bit

+ // Unset the user_message_rules bit

+ if (!isset($config['fulltext_postgres_ts_name']))

+ {

+ set_config('fulltext_postgres_ts_name', 'simple');

+ }

+

+ if (!isset($config['fulltext_postgres_min_word_len']))

+ {

+ set_config('fulltext_postgres_min_word_len', 4);

+ }

+

+ if (!isset($config['fulltext_postgres_max_word_len']))

+ {

+ set_config('fulltext_postgres_max_word_len', 254);

+ }

+

+ $sql_query = phpbb_remove_comments($sql_query);

+ $sql_query = phpbb_remove_comments($sql_query);

+INSERT INTO phpbb_config (config_name, config_value) VALUES ('fulltext_postgres_max_word_len', '254');

+INSERT INTO phpbb_config (config_name, config_value) VALUES ('fulltext_postgres_min_word_len', '4');

+INSERT INTO phpbb_config (config_name, config_value) VALUES ('fulltext_postgres_ts_name', 'simple');

+ 'FULLTEXT_MYSQL_INCOMPATIBLE_DATABASE' => 'The MySQL fulltext backend can only be used with MySQL4 and above.',

+ 'FULLTEXT_POSTGRES_INCOMPATIBLE_DATABASE' => 'The PostgreSQL fulltext backend can only be used with PostgreSQL.',

+ 'FULLTEXT_POSTGRES_TS_NOT_USABLE' => 'The PostgreSQL fulltext backend can only be used with PostgreSQL 8.3 and above.',

+ 'FULLTEXT_POSTGRES_TOTAL_POSTS' => 'Total number of indexed posts',

+ 'FULLTEXT_POSTGRES_VERSION_CHECK' => 'PostgreSQL version',

+ 'FULLTEXT_POSTGRES_TS_NAME' => 'Text search Configuration Profile:',

+ 'FULLTEXT_POSTGRES_MIN_WORD_LEN' => 'Minimum word length for keywords',

+ 'FULLTEXT_POSTGRES_MAX_WORD_LEN' => 'Maximum word length for keywords',

+ 'FULLTEXT_POSTGRES_VERSION_CHECK_EXPLAIN' => 'This search backend requires PostgreSQL version 8.3 and above.',

+ 'FULLTEXT_POSTGRES_TS_NAME_EXPLAIN' => 'The Text search configuration profile used to determine the parser and dictionary.',

+ 'FULLTEXT_POSTGRES_MIN_WORD_LEN_EXPLAIN' => 'Words with at least this many characters will be included in the query to the database.',

+ 'FULLTEXT_POSTGRES_MAX_WORD_LEN_EXPLAIN' => 'Words with no more than this many characters will be included in the query to the database.',

+

+ 'PHRASE_SEARCH_DISABLED' => 'Searching by exact phrase is not supported on this board.',

+ 'SEARCHED_QUERY' => 'Searched query',

+ 'RULE_LIMIT_REACHED' => 'You cannot add more PM rules. You have reached the maximum number of rules.',

+ // Check if search backend supports phrase search or not

+ $phrase_search_disabled = '';

+ if (strpos(html_entity_decode($keywords), '"') !== false && method_exists($search, 'supports_phrase_search'))

+ {

+ $phrase_search_disabled = $search->supports_phrase_search() ? false : true;

+ }

+

+ 'SEARCH_WORDS' => $keywords,

+ 'SEARCHED_QUERY' => $search->search_query,

+

+ 'PHRASE_SEARCH_DISABLED' => $phrase_search_disabled,

+

+ <!-- IF .forumrow.subforum and forumrow.S_LIST_SUBFORUMS -->

+ <br /><strong>{forumrow.L_SUBFORUM_STR}</strong>

+ <!-- BEGIN subforum -->

+ <a href="{forumrow.subforum.U_SUBFORUM}" class="subforum<!-- IF forumrow.subforum.S_UNREAD --> unread<!-- ELSE --> read<!-- ENDIF -->" title="<!-- IF forumrow.subforum.UNREAD -->{L_UNREAD_POSTS}<!-- ELSE -->{L_NO_UNREAD_POSTS}<!-- ENDIF -->">{forumrow.subforum.SUBFORUM_NAME}</a><!-- IF not forumrow.subforum.S_LAST_ROW -->,<!-- ENDIF -->

+ <!-- END subforum -->

+ <!-- ENDIF -->

+ <!-- IF U_WATCH_FORUM_LINK --><li <!-- IF S_WATCHING_FORUM -->class="icon-unsubscribe"<!-- ELSE -->class="icon-subscribe"<!-- ENDIF -->><a href="{U_WATCH_FORUM_LINK}" title="{S_WATCH_FORUM_TITLE}" data-ajax="toggle_link" data-toggle-class="icon-<!-- IF not S_WATCHING_FORUM -->unsubscribe<!-- ELSE -->subscribe<!-- ENDIF -->" data-toggle-text="{S_WATCH_FORUM_TOGGLE}" data-toggle-url="{U_WATCH_FORUM_TOGGLE}">{S_WATCH_FORUM_TITLE}</a></li><!-- ENDIF -->

+ <!-- IF U_WATCH_TOPIC --><li <!-- IF S_WATCHING_TOPIC -->class="icon-unsubscribe"<!-- ELSE -->class="icon-subscribe"<!-- ENDIF -->><a href="{U_WATCH_TOPIC}" title="{S_WATCH_TOPIC_TITLE}" data-ajax="toggle_link" data-toggle-class="<!-- IF not S_WATCHING_TOPIC -->icon-unsubscribe<!-- ELSE -->icon-subscribe<!-- ENDIF -->" data-toggle-text="{S_WATCH_TOPIC_TOGGLE}" data-toggle-url="{U_WATCH_TOPIC_TOGGLE}">{S_WATCH_TOPIC_TITLE}</a></li><!-- ENDIF -->

+ <!-- IF U_BOOKMARK_TOPIC --><li class="icon-bookmark"><a href="{U_BOOKMARK_TOPIC}" title="{L_BOOKMARK_TOPIC}" data-ajax="alt_text" data-alt-text="{S_BOOKMARK_TOGGLE}">{S_BOOKMARK_TOPIC}</a></li><!-- ENDIF -->

+<!-- IF SEARCHED_QUERY --> <p>{L_SEARCHED_QUERY}: <strong>{SEARCHED_QUERY}</strong></p><!-- ENDIF -->

+<!-- IF PHRASE_SEARCH_DISABLED --> <p><strong>{L_PHRASE_SEARCH_DISABLED}</strong></p><!-- ENDIF -->

+ <dd class="mark"><input type="radio" name="selected" value="{pending.GROUP_ID}" <!-- IF pending.GROUP_SPECIAL -->disabled="disabled"<!-- ENDIF --> /></dd>

+ <form method="post" action="{S_MOD_ACTION}" id="quickmodform">

+ <!-- IF .forumrow.subforum and forumrow.S_LIST_SUBFORUMS -->

+ <p class="forumdesc"><strong>{forumrow.L_SUBFORUM_STR}</strong>

+ <!-- BEGIN subforum -->

+ <a href="{forumrow.subforum.U_SUBFORUM}" class="subforum<!-- IF forumrow.subforum.S_UNREAD --> unread<!-- ELSE --> read<!-- ENDIF -->" title="<!-- IF forumrow.subforum.UNREAD -->{L_UNREAD_POSTS}<!-- ELSE -->{L_NO_UNREAD_POSTS}<!-- ENDIF -->">{forumrow.subforum.SUBFORUM_NAME}</a><!-- IF not forumrow.subforum.S_LAST_ROW -->,<!-- ENDIF -->

+ <!-- END subforum -->

+ </p>

+ <td valign="middle">&nbsp;<!-- IF U_WATCH_FORUM_LINK and not S_IS_BOT --><a href="{U_WATCH_FORUM_LINK}">{S_WATCH_FORUM_TITLE}</a><!-- ENDIF --></td>

+ <!-- IF U_WATCH_TOPIC --><a href="{U_WATCH_TOPIC}" title="{S_WATCH_TOPIC_TITLE}">{S_WATCH_TOPIC_TITLE}</a><!-- IF U_PRINT_TOPIC or U_EMAIL_TOPIC or U_BUMP_TOPIC or U_BOOKMARK_TOPIC --> | <!-- ENDIF --><!-- ENDIF -->

+ <!-- IF U_BOOKMARK_TOPIC --><a href="{U_BOOKMARK_TOPIC}" title="{S_BOOKMARK_TOPIC}">{S_BOOKMARK_TOPIC}</a><!-- IF U_PRINT_TOPIC or U_EMAIL_TOPIC or U_BUMP_TOPIC --> | <!-- ENDIF --><!-- ENDIF -->

+ 'link_toggle' => '',

+ 'title_toggle' => '',

+ 'U_WATCH_FORUM_LINK' => $s_watching_forum['link'],

+ 'U_WATCH_FORUM_TOGGLE' => $s_watching_forum['link_toggle'],

+ 'S_WATCH_FORUM_TOGGLE' => $s_watching_forum['title_toggle'],

+ 'link_toggle' => '',

+ 'title_toggle' => '',

+ 'U_WATCH_TOPIC' => $s_watching_topic['link'],

+ 'U_WATCH_TOPIC_TOGGLE' => $s_watching_topic['link_toggle'],

+ 'S_WATCH_TOPIC_TITLE' => $s_watching_topic['title'],

+ 'S_WATCH_TOPIC_TOGGLE' => $s_watching_topic['title_toggle'],

+ 'S_BOOKMARK_TOPIC' => ($user->data['is_registered'] && $config['allow_bookmarks'] && $topic_data['bookmarked']) ? $user->lang['BOOKMARK_TOPIC_REMOVE'] : $user->lang['BOOKMARK_TOPIC'],

+ 'S_BOOKMARK_TOGGLE' => (!$user->data['is_registered'] || !$config['allow_bookmarks'] || !$topic_data['bookmarked']) ? $user->lang['BOOKMARK_TOPIC_REMOVE'] : $user->lang['BOOKMARK_TOPIC'],

+$phpbb_class_loader_mock = new phpbb_class_loader('phpbb_mock_', $phpbb_root_path . '../tests/mock/', ".php");

+$phpbb_class_loader_mock->register();

+<?php

+/**

+ *

+ * @package testing

+ * @copyright (c) 2012 phpBB Group

+ * @license http://opensource.org/licenses/gpl-2.0.php GNU General Public License v2

+ *

+ */

+

+/**

+ * @group functional

+ */

+class phpbb_functional_fileupload_form_test extends phpbb_functional_test_case

+{

+ private $path;

+

+ public function setUp()

+ {

+ parent::setUp();

+ $this->path = __DIR__ . '/fixtures/files/';

+ $this->add_lang('posting');

+ $this->login();

+ }

+

+ public function test_empty_file()

+ {

+ $crawler = $this->request('GET', 'posting.php?mode=reply&f=2&t=1&sid=' . $this->sid);

+ $form = $crawler->selectButton('add_file')->form();

+ $form['fileupload']->upload($this->path . 'empty.png');

+ $crawler = $this->client->submit($form);

+ $this->assertEquals($this->lang('ATTACHED_IMAGE_NOT_IMAGE'), $crawler->filter('div#message p')->text());

+ }

+

+ public function test_invalid_extension()

+ {

+ $crawler = $this->request('GET', 'posting.php?mode=reply&f=2&t=1&sid=' . $this->sid);

+ $form = $crawler->selectButton('add_file')->form();

+ $form['fileupload']->upload($this->path . 'illegal-extension.bif');

+ $crawler = $this->client->submit($form);

+ $this->assertEquals($this->lang('DISALLOWED_EXTENSION', 'bif'), $crawler->filter('p.error')->text());

+ }

+

+ public function test_too_large()

+ {

+ $this->markTestIncomplete('Functional tests use an admin account which ignores maximum upload size.');

+ $crawler = $this->request('GET', 'posting.php?mode=reply&f=2&t=1&sid=' . $this->sid);

+ $form = $crawler->selectButton('add_file')->form();

+ $form['fileupload']->upload($this->path . 'too-large.png');

+ $crawler = $this->client->submit($form);

+ $this->assertEquals($this->lang('WRONG_FILESIZE', '256', 'KiB'), $crawler->filter('p.error')->text());

+ }

+

+ public function test_valid_file()

+ {

+ $crawler = $this->request('GET', 'posting.php?mode=reply&f=2&t=1&sid=' . $this->sid);

+ $form = $crawler->selectButton('add_file')->form();

+ $form['fileupload']->upload($this->path . 'valid.jpg');

+ $crawler = $this->client->submit($form);

+ $this->assertEquals(0, $crawler->filter('p.error')->count());

+ $this->assertContains($this->lang('POSTED_ATTACHMENTS'), $crawler->filter('#postform h3')->eq(1)->text());

+ }

+}

+<?php

+/**

+ *

+ * @package testing

+ * @copyright (c) 2012 phpBB Group

+ * @license http://opensource.org/licenses/gpl-2.0.php GNU General Public License v2

+ *

+ */

+

+/**

+ * @group functional

+ */

+class phpbb_functional_fileupload_remote_test extends phpbb_functional_test_case

+{

+ public function setUp()

+ {

+ parent::setUp();

+ // Only doing this within the functional framework because we need a

+ // URL

+

+ // Global $config required by unique_id

+ // Global $user required by fileupload::remote_upload

+ global $config, $user;

+

+ if (!is_array($config))

+ {

+ $config = array();

+ }

+

+ $config['rand_seed'] = '';

+ $config['rand_seed_last_update'] = time() + 600;

+

+ $user = new phpbb_mock_user();

+ $user->lang = new phpbb_mock_lang();

+ }

+

+ public function tearDown()

+ {

+ global $config, $user;

+ $user = null;

+ $config = array();

+ }

+

+ public function test_invalid_extension()

+ {

+ $upload = new fileupload('', array('jpg'), 100);

+ $file = $upload->remote_upload('http://example.com/image.gif');

+ $this->assertEquals('URL_INVALID', $file->error[0]);

+ }

+

+ public function test_non_existant()

+ {

+ $upload = new fileupload('', array('jpg'), 100);

+ $file = $upload->remote_upload('http://example.com/image.jpg');

+ $this->assertEquals('EMPTY_REMOTE_DATA', $file->error[0]);

+ }

+

+ public function test_successful_upload()

+ {

+ $upload = new fileupload('', array('gif'), 1000);

+ $file = $upload->remote_upload($this->root_url . 'styles/prosilver/theme/images/forum_read.gif');

+ $this->assertEquals(0, sizeof($file->error));

+ $this->assertTrue(file_exists($file->filename));

+ }

+

+ public function test_too_large()

+ {

+ $upload = new fileupload('', array('gif'), 100);

+ $file = $upload->remote_upload($this->root_url . 'styles/prosilver/theme/images/forum_read.gif');

+ $this->assertEquals('WRONG_FILESIZE', $file->error[0]);

+ }

+}

+<?php

+/**

+ *

+ * @package testing

+ * @copyright (c) 2012 phpBB Group

+ * @license http://opensource.org/licenses/gpl-2.0.php GNU General Public License v2

+ *

+ */

+

+/**

+ * Mock filespec class with some basic values to help with testing the

+ * fileupload class

+ */

+class phpbb_mock_filespec

+{

+ public $filesize;

+ public $realname;

+ public $extension;

+ public $width;

+ public $height;

+ public $error = array();

+

+ public function check_content($disallowed_content)

+ {

+ return true;

+ }

+

+ public function get($property)

+ {

+ return $this->$property;

+ }

+}

+<?php

+/**

+ *

+ * @package testing

+ * @copyright (c) 2012 phpBB Group

+ * @license http://opensource.org/licenses/gpl-2.0.php GNU General Public License v2

+ *

+ */

+

+/**

+ * Mock fileupload class with some basic values to help with testing the

+ * filespec class

+ */

+class phpbb_mock_fileupload

+{

+ public $max_filesize = 100;

+ public $error_prefix = '';

+

+ public function valid_dimensions($filespec)

+ {

+ return true;

+ }

+

+ /**

+ * Copied verbatim from phpBB/includes/functions_upload.php's fileupload

+ * class to ensure the correct behaviour of filespec::move_file.

+ *

+ * Maps file extensions to the constant in second index of the array

+ * returned by getimagesize()

+ */

+ public function image_types()

+ {

+ return array(

+ IMAGETYPE_GIF => array('gif'),

+ IMAGETYPE_JPEG => array('jpg', 'jpeg'),

+ IMAGETYPE_PNG => array('png'),

+ IMAGETYPE_SWF => array('swf'),

+ IMAGETYPE_PSD => array('psd'),

+ IMAGETYPE_BMP => array('bmp'),

+ IMAGETYPE_TIFF_II => array('tif', 'tiff'),

+ IMAGETYPE_TIFF_MM => array('tif', 'tiff'),

+ IMAGETYPE_JPC => array('jpg', 'jpeg'),

+ IMAGETYPE_JP2 => array('jpg', 'jpeg'),

+ IMAGETYPE_JPX => array('jpg', 'jpeg'),

+ IMAGETYPE_JB2 => array('jpg', 'jpeg'),

+ IMAGETYPE_SWC => array('swc'),

+ IMAGETYPE_IFF => array('iff'),

+ IMAGETYPE_WBMP => array('wbmp'),

+ IMAGETYPE_XBM => array('xbm'),

+ );

+ }

+}

+ $sql = phpbb_remove_comments($queries);

+

+

+<?php

+/**

+ *

+ * @package testing

+ * @copyright (c) 2012 phpBB Group

+ * @license http://opensource.org/licenses/gpl-2.0.php GNU General Public License v2

+ *

+ */

+

+require_once __DIR__ . '/../../phpBB/includes/functions.php';

+require_once __DIR__ . '/../../phpBB/includes/utf/utf_tools.php';

+require_once __DIR__ . '/../../phpBB/includes/functions_upload.php';

+

+class phpbb_filespec_test extends phpbb_test_case

+{

+ const TEST_COUNT = 100;

+ const PREFIX = 'phpbb_';

+ const MAX_STR_LEN = 50;

+ const UPLOAD_MAX_FILESIZE = 1000;

+

+ private $config;

+ public $path;

+

+ protected function setUp()

+ {

+ // Global $config required by unique_id

+ // Global $user required by filespec::additional_checks and

+ // filespec::move_file

+ global $config, $user;

+

+ if (!is_array($config))

+ {

+ $config = array();

+ }

+

+ $config['rand_seed'] = '';

+ $config['rand_seed_last_update'] = time() + 600;

+ // This config value is normally pulled from the database which is set

+ // to this value at install time.

+ // See: phpBB/install/schemas/schema_data.sql

+ $config['mime_triggers'] = 'body|head|html|img|plaintext|a href|pre|script|table|title';

+

+ $user = new phpbb_mock_user();

+ $user->lang = new phpbb_mock_lang();

+

+ $this->config = &$config;

+ $this->path = __DIR__ . '/fixture/';

+

+ // Create copies of the files for use in testing move_file

+ $iterator = new DirectoryIterator($this->path);

+ foreach ($iterator as $fileinfo)

+ {

+ if ($fileinfo->isDot() || $fileinfo->isDir())

+ {

+ continue;

+ }

+

+ copy($fileinfo->getPathname(), $this->path . 'copies/' . $fileinfo->getFilename() . '_copy');

+ if ($fileinfo->getFilename() === 'txt')

+ {

+ copy($fileinfo->getPathname(), $this->path . 'copies/' . $fileinfo->getFilename() . '_copy_2');

+ }

+ }

+ }

+

+ private function get_filespec($override = array())

+ {

+ // Initialise a blank filespec object for use with trivial methods

+ $upload_ary = array(

+ 'name' => '',

+ 'type' => '',

+ 'size' => '',

+ 'tmp_name' => '',

+ 'error' => '',

+ );

+

+ return new filespec(array_merge($upload_ary, $override), null);

+ }

+

+ protected function tearDown()

+ {

+ global $user;

+ $this->config = array();

+ $user = null;

+

+ $iterator = new DirectoryIterator($this->path . 'copies');

+ foreach ($iterator as $fileinfo)

+ {

+ $name = $fileinfo->getFilename();

+ if ($name[0] !== '.')

+ {

+ unlink($fileinfo->getPathname());

+ }

+ }

+ }

+

+ public function additional_checks_variables()

+ {

+ // False here just indicates the file is too large and fails the

+ // filespec::additional_checks method because of it. All other code

+ // paths in that method are covered elsewhere.

+ return array(

+ array('gif', true),

+ array('jpg', false),

+ array('png', true),

+ array('tif', false),

+ array('txt', false),

+ );

+ }

+

+ /**

+ * @dataProvider additional_checks_variables

+ */

+ public function test_additional_checks($filename, $expected)

+ {

+ $upload = new phpbb_mock_fileupload();

+ $filespec = $this->get_filespec();

+ $filespec->upload = $upload;

+ $filespec->file_moved = true;

+ $filespec->filesize = $filespec->get_filesize($this->path . $filename);

+

+ $this->assertEquals($expected, $filespec->additional_checks());

+ }

+

+ public function check_content_variables()

+ {

+ // False here indicates that a file is non-binary and contains

+ // disallowed content that makes IE report the mimetype incorrectly.

+ return array(

+ array('gif', true),

+ array('jpg', true),

+ array('png', true),

+ array('tif', true),

+ array('txt', false),

+ );

+ }

+

+ /**

+ * @dataProvider check_content_variables

+ */

+ public function test_check_content($filename, $expected)

+ {

+ $disallowed_content = explode('|', $this->config['mime_triggers']);

+ $filespec = $this->get_filespec(array('tmp_name' => $this->path . $filename));

+ $this->assertEquals($expected, $filespec->check_content($disallowed_content));

+ }

+

+ public function clean_filename_variables()

+ {

+ $chunks = str_split('abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ\'\\" /:*?<>|[];(){},#+=-_`', 8);

+ return array(

+ array($chunks[0] . $chunks[7]),

+ array($chunks[1] . $chunks[8]),

+ array($chunks[2] . $chunks[9]),

+ array($chunks[3] . $chunks[4]),

+ array($chunks[5] . $chunks[6]),

+ );

+ }

+

+ /**

+ * @dataProvider clean_filename_variables

+ */

+ public function test_clean_filename_real($filename)

+ {

+ $bad_chars = array("'", "\\", ' ', '/', ':', '*', '?', '"', '<', '>', '|');

+ $filespec = $this->get_filespec(array('name' => $filename));

+ $filespec->clean_filename('real', self::PREFIX);

+ $name = $filespec->realname;

+

+ $this->assertEquals(0, preg_match('/%(\w{2})/', $name));

+ foreach ($bad_chars as $char)

+ {

+ $this->assertFalse(strpos($name, $char));

+ }

+ }

+

+ public function test_clean_filename_unique()

+ {

+ $filenames = array();

+ for ($tests = 0; $tests < self::TEST_COUNT; $tests++)

+ {

+ $filespec = $this->get_filespec();

+ $filespec->clean_filename('unique', self::PREFIX);

+ $name = $filespec->realname;

+

+ $this->assertEquals(strlen($name), 32 + strlen(self::PREFIX));

+ $this->assertRegExp('#^[A-Za-z0-9]+$#', substr($name, strlen(self::PREFIX)));

+ $this->assertFalse(isset($filenames[$name]));

+ $filenames[$name] = true;

+ }

+ }

+

+ public function get_extension_variables()

+ {

+ return array(

+ array('file.png', 'png'),

+ array('file.phpbb.gif', 'gif'),

+ array('file..', ''),

+ array('.file..jpg.webp', 'webp'),

+ );

+ }

+

+ /**

+ * @dataProvider get_extension_variables

+ */

+ public function test_get_extension($filename, $expected)

+ {

+ $filespec = $this->get_filespec();

+ $this->assertEquals($expected, $filespec->get_extension($filename));

+ }

+

+ public function is_image_variables()

+ {

+ return array(

+ array('gif', 'image/gif', true),

+ array('jpg', 'image/jpg', true),

+ array('png', 'image/png', true),

+ array('tif', 'image/tif', true),

+ array('txt', 'text/plain', false),

+ );

+ }

+

+ /**

+ * @dataProvider is_image_variables

+ */

+ public function test_is_image($filename, $mimetype, $expected)

+ {

+ $filespec = $this->get_filespec(array('tmp_name' => $this->path . $filename, 'type' => $mimetype));

+ $this->assertEquals($expected, $filespec->is_image());

+ }

+

+ public function move_file_variables()

+ {

+ return array(

+ array('gif_copy', 'gif_moved', 'image/gif', 'gif', false, true),

+ array('non_existant', 'still_non_existant', 'text/plain', 'txt', 'GENERAL_UPLOAD_ERROR', false),

+ array('txt_copy', 'txt_as_img', 'image/jpg', 'txt', false, true),

+ array('txt_copy_2', 'txt_moved', 'text/plain', 'txt', false, true),

+ array('jpg_copy', 'jpg_moved', 'image/png', 'jpg', false, true),

+ array('png_copy', 'png_moved', 'image/png', 'jpg', 'IMAGE_FILETYPE_MISMATCH', true),

+ );

+ }

+

+ /**

+ * @dataProvider move_file_variables

+ */

+ public function test_move_file($tmp_name, $realname, $mime_type, $extension, $error, $expected)

+ {

+ // Global $phpbb_root_path and $phpEx are required by phpbb_chmod

+ global $phpbb_root_path, $phpEx;

+ $phpbb_root_path = '';

+ $phpEx = 'php';

+

+ $upload = new phpbb_mock_fileupload();

+ $upload->max_filesize = self::UPLOAD_MAX_FILESIZE;

+

+ $filespec = $this->get_filespec(array(

+ 'tmp_name' => $this->path . 'copies/' . $tmp_name,

+ 'name' => $realname,

+ 'type' => $mime_type,

+ ));

+ $filespec->extension = $extension;

+ $filespec->upload = $upload;

+ $filespec->local = true;

+

+ $this->assertEquals($expected, $filespec->move_file($this->path . 'copies'));

+ $this->assertEquals($filespec->file_moved, file_exists($this->path . 'copies/' . $realname));

+ if ($error)

+ {

+ $this->assertEquals($error, $filespec->error[0]);

+ }

+

+ $phpEx = '';

+ }

+}

+<?php

+/**

+ *

+ * @package testing

+ * @copyright (c) 2012 phpBB Group

+ * @license http://opensource.org/licenses/gpl-2.0.php GNU General Public License v2

+ *

+ */

+

+require_once __DIR__ . '/../../phpBB/includes/functions.php';

+require_once __DIR__ . '/../../phpBB/includes/utf/utf_tools.php';

+require_once __DIR__ . '/../../phpBB/includes/functions_upload.php';

+

+class phpbb_fileupload_test extends phpbb_test_case

+{

+ private $path;

+

+ protected function setUp()

+ {

+ // Global $config required by unique_id

+ // Global $user required by several functions dealing with translations

+ global $config, $user;

+

+ if (!is_array($config))

+ {

+ $config = array();

+ }

+

+ $config['rand_seed'] = '';

+ $config['rand_seed_last_update'] = time() + 600;

+

+ $user = new phpbb_mock_user();

+ $user->lang = new phpbb_mock_lang();

+ $this->path = __DIR__ . '/fixture/';

+ }

+

+ private function gen_valid_filespec()

+ {

+ $filespec = new phpbb_mock_filespec();

+ $filespec->filesize = 1;

+ $filespec->extension = 'jpg';

+ $filespec->realname = 'valid';

+ $filespec->width = 2;

+ $filespec->height = 2;

+

+ return $filespec;

+ }

+

+ protected function tearDown()

+ {

+ // Clear globals

+ global $config, $user;

+ $config = array();

+ $user = null;

+ }

+

+ public function test_common_checks_invalid_extension()

+ {

+ $upload = new fileupload('', array('png'), 100);

+ $file = $this->gen_valid_filespec();

+ $upload->common_checks($file);

+ $this->assertEquals('DISALLOWED_EXTENSION', $file->error[0]);

+ }

+

+ public function test_common_checks_invalid_filename()

+ {

+ $upload = new fileupload('', array('jpg'), 100);

+ $file = $this->gen_valid_filespec();

+ $file->realname = 'invalid?';

+ $upload->common_checks($file);

+ $this->assertEquals('INVALID_FILENAME', $file->error[0]);

+ }

+

+ public function test_common_checks_too_large()

+ {

+ $upload = new fileupload('', array('jpg'), 100);

+ $file = $this->gen_valid_filespec();

+ $file->filesize = 1000;

+ $upload->common_checks($file);

+ $this->assertEquals('WRONG_FILESIZE', $file->error[0]);

+ }

+

+ public function test_common_checks_valid_file()

+ {

+ $upload = new fileupload('', array('jpg'), 1000);

+ $file = $this->gen_valid_filespec();

+ $upload->common_checks($file);

+ $this->assertEquals(0, sizeof($file->error));

+ }

+

+ public function test_local_upload()

+ {

+ $upload = new fileupload('', array('jpg'), 1000);

+

+ copy($this->path . 'jpg', $this->path . 'jpg.jpg');

+ $file = $upload->local_upload($this->path . 'jpg.jpg');

+ $this->assertEquals(0, sizeof($file->error));

+ unlink($this->path . 'jpg.jpg');

+ }

+

+ public function test_valid_dimensions()

+ {

+ $upload = new fileupload('', false, false, 1, 1, 100, 100);

+

+ $file1 = $this->gen_valid_filespec();

+ $file2 = $this->gen_valid_filespec();

+ $file2->height = 101;

+ $file3 = $this->gen_valid_filespec();

+ $file3->width = 0;

+

+ $this->assertTrue($upload->valid_dimensions($file1));

+ $this->assertFalse($upload->valid_dimensions($file2));

+ $this->assertFalse($upload->valid_dimensions($file3));

+ }

+}

+<HTML>mime trigger</HTML>

+The HTML tags should remain uppercase so that case-insensitivity can be checked.