*~

<project name="phpBB" description="The phpBB forum software" default="all" basedir="../">

<!-- a few settings for the build -->

<!-- no configuration should be needed beyond this point -->

<property name="oldversions" value="${olderversions}, ${prevversion}" />

--coverage-clover build/logs/clover.xml

--coverage-html build/coverage"

passthru="true" />

</target>

<target name="docs">

<target name="create-package" depends="prepare-new-version,old-version-diffs">

<exec dir="build" command="php -f package.php '${versions}' > logs/package.log" escape="false" />

<exec dir="build" command="php -f build_diff.php '${prevversion}' '${newversion}' > logs/build_diff.log" escape="false" />

</target>

<!--

<fieldset class="tabulated">

<legend>{L_TITLE}</legend>

<thead>

<tr>

<th colspan="{COLSPAN}">{L_CONFIG}</th>

<td>{L_ORDER}</td>

<!-- ENDIF -->

<!-- IF S_ADD -->

<!-- ENDIF -->

</tr>

</thead>

</div>

<!-- ENDIF -->

<!-- IF S_WRITABLE_CONFIG -->

<div class="errorbox notice">

<p>{L_WRITABLE_CONFIG}</p>

</dl>

<dl>

<dt><label for="special_rank">{L_RANK_SPECIAL}:</label></dt>

<label><input onclick="dE('posts', 1)" type="radio" class="radio" name="special_rank" value="0"<!-- IF not S_SPECIAL_RANK --> checked="checked"<!-- ENDIF --> /> {L_NO}</label></dd>

</dl>

<!-- IF S_SPECIAL_RANK --><div id="posts" style="display: none;"><!-- ELSE --><div id="posts"><!-- ENDIF -->

<fieldset>

<legend>{L_SELECT_USER}</legend>

<dl>

<dd><input class="text medium" type="text" id="username" name="username" /></dd>

<dd>[ <a href="{U_FIND_USERNAME}" onclick="find_username(this.href); return false;">{L_FIND_USERNAME}</a> ]</dd>

<dd class="full" style="text-align: left;"><label><input type="checkbox" class="radio" id="anonymous" name="u" value="{ANONYMOUS_USER_ID}" /> {L_SELECT_ANONYMOUS}</label></dd>

w: '{LA_BBCODE_W_HELP}',

s: '{LA_BBCODE_S_HELP}',

f: '{LA_BBCODE_F_HELP}',

d: '{LA_BBCODE_D_HELP}',

tip: '{L_STYLES_TIP}'

<!-- BEGIN custom_tags -->

,cb_{custom_tags.BBCODE_ID}: '{custom_tags.A_BBCODE_HELPLINE}'

<input type="button" class="button2" accesskey="c" name="addbbcode8" value="Code" style="width: 40px" onclick="bbstyle(8)" onmouseover="helpline('c')" onmouseout="helpline('tip')" />

<input type="button" class="button2" accesskey="l" name="addbbcode10" value="List" style="width: 40px" onclick="bbstyle(10)" onmouseover="helpline('l')" onmouseout="helpline('tip')" />

<input type="button" class="button2" accesskey="o" name="addbbcode12" value="List=" style="width: 40px" onclick="bbstyle(12)" onmouseover="helpline('o')" onmouseout="helpline('tip')" />

<!-- IF S_BBCODE_IMG -->

<input type="button" class="button2" accesskey="p" name="addbbcode14" value="Img" style="width: 40px" onclick="bbstyle(14)" onmouseover="helpline('p')" onmouseout="helpline('tip')" />

<!-- ENDIF -->

dd input {

font-size: 1.00em;

max-width: 100%;

}

dd select {

font-size: 100%;

width: auto;

max-width: 100%;

}

dd textarea {

width: 90%;

}

fieldset dl {

margin-bottom: 10px;

font-size: 0.85em;

* If you overwrite the original schema files please make sure you save the file with UNIX linefeeds.

*/

if (!is_writable($schema_path))

{

foreach ($supported_dbms as $dbms)

{

$line = '';

{

case 'mysql_40':

case 'mysql_41':

break;

case 'firebird':

$line .= custom_data('firebird') . "\n";

break;

case 'sqlite':

$line .= "BEGIN TRANSACTION;\n\n";

break;

case 'oracle':

$line .= custom_data('oracle') . "\n";

break;

case 'postgres':

$line .= "BEGIN;\n\n";

$line .= custom_data('postgres') . "\n";

break;

<ol>

<li><a href="#changelog">Changelog</a>

<ol style="list-style-type: lower-roman;">

<li><a href="#v308">Changes since 3.0.8</a></li>

<li><a href="#v307-PL1">Changes since 3.0.7-PL1</a></li>

<li><a href="#v307">Changes since 3.0.7</a></li>

<div class="content">

<h4> Bug

</h4>

</ul>

<h4> Security

</h4>

<ul>

</ul>

<ul>

<li>[Sec] Do not expose forum content of forums with ACL entries but no actual permission in ATOM Feeds. (Bug #58595)</li>

</ul>

<ul>

<li>[Fix] Allow ban reason and length to be selected and copied in ACP and subsilver2 MCP. (Bug #51095)</li>

</ul>

<ul>

<li>[Fix] Allow whitespaces in avatar gallery names. (Bug #44955)</li>

<li>[Feature] Send anonymous statistical information to phpBB on installation and update (optional).</li>

</ul>

<ul>

<li>[Fix] Delete user entry from ban list table upon user deletion (Bug #40015 - Patch by TerraFrost)</li>

<li>[Sec] Only use forum id supplied for posting if global announcement detected. (Reported by nickvergessen)</li>

</ul>

<ul>

<li>[Fix] Allow mixed-case template directories to be inherited (Bug #36725)</li>

<li>[Sec] Ask for forum password if post within passworded forum quoted in private message. (Reported by nickvergessen)</li>

</ul>

<ul>

<li>[Fix] Correctly set topic starter if first post in topic removed (Bug #30575 - Patch by blueray2048)</li>

<li>[Sec Precaution] Stricter validation of the HTTP_HOST header (Thanks to Techie-Micheal et al for pointing out possible issues in derived code)</li>

</ul>

<ul>

<li>[Fix] Ability to set permissions on non-mysql dbms (Bug #24955)</li>

<li>[Sec] Only allow urls gone through redirect() being used within login_box(). (thanks nookieman)</li>

</ul>

<ul>

<li>[Change] Validate birthdays (Bug #15004)</li>

<li>[Fix] Find and display colliding usernames correctly when converting from one database to another (Bug #23925)</li>

</ul>

<ul>

<li>[Fix] Cleaned usernames contain only single spaces, so &quot;a_name&quot; and &quot;a__name&quot; are treated as the same name (Bug #15634)</li>

<li>[Fix] Call garbage_collection() within database updater to correctly close connections (affects Oracle for example)</li>

</ul>

<ul>

<li>[Fix] Fixed MSSQL related bug in the update system</li>

<li>[Fix] No duplication of active topics (Bug #15474)</li>

</ul>

<ul>

<li>[Fix] Submitting language changes using acp_language (Bug #14736)</li>

<li>[Fix] Able to request new password (Bug #14743)</li>

</ul>

<ul>

<li>[Feature] Removing constant PHPBB_EMBEDDED in favor of using an exit_handler(); the constant was meant to achive this more or less.</li>

<li>[Sec] New password hashing mechanism for storing passwords (#i42)</li>

</ul>

<ul>

<li>[Fix] MySQL, PostgreSQL and SQLite related database fixes (Bug #13862)</li>

<li>[Fix] odbc_autocommit causing existing result sets to be dropped (Bug #14182)</li>

</ul>

<ul>

<li>[Fix] Fixing some subsilver2 and prosilver style issues</li>

</ul>

<ul>

<li>[Fix] Re-allow searching within the memberlist</li>

</ul>

<ul>

<li>[Fix] (X)HTML issues within the templates (Bug #11255, #11255)</li>

<p>This package is meant for those wanting to only replace changed files from a previous version to the latest version. This package normally contains the changed files from up to five previous versions.</p>

<p>The directory structure has been preserved enabling you (if you wish) to simply upload the contents of the archive to the appropriate location on your server, i.e. simply overwrite the existing files with the new versions. Do not forget that if you have installed any MODs these files will overwrite the originals possibly destroying them in the process. You will need to re-add MODs to any affected file before uploading.</p>

<p>The patch file is one solution for those with many Modifications (MODs) or other changes who do not want to re-add them back to all the changed files if they use the method explained above. To use this you will need command line access to a standard UNIX type <strong>patch</strong> application. If you do not have access to such an application but still want to use this update approach, we strongly recommend the <a href="#update_auto">Automatic update package</a> explained below. It is also the recommended update method.</p>

<p>If you do get failures you should look at using the <a href="#update_files">Changed files only</a> package to replace the files which failed to patch, please note that you will need to manually re-add any Modifications (MODs) to these particular files. Alternatively if you know how you can examine the .rej files to determine what failed where and make manual adjustments to the relevant source.</p>

<p>The relevant database type/version is listed within the administration control panel</p>

<p>Once a bug has been submitted you will be emailed any follow up comments added to it. <strong>Please</strong> if you are requested to supply additional information, do so! It is frustrating for us to receive bug reports, ask for additional information but get nothing. In these cases we have a policy of closing the bug, which may leave a very real problem in place. Obviously we would rather not have this situation arise.</p>

<li><a href="#writingstyle">Writing Style</a></li>

</ol>

</li>

<li><a href="#disclaimer">Copyright and disclaimer</a></li>

</ol>

$post_url = $phpbb_root_path . 'posting.' . $phpEx . '?mode=' . $mode . '&amp;amp;start=' . $start;

</pre></div>

<div class="codebox"><pre>

$post_url = "{$phpbb_root_path}posting.$phpEx?mode=$mode&amp;amp;start=$start";

</pre></div>

<h4>Associative array keys:</h4>

<p>In PHP, it's legal to use a literal string as a key to an associative array without quoting that string. We don't want to do this -- the string should always be quoted to avoid confusion. Note that this is only when we're using a literal, not when we're using a variable, examples:</p>

<p>Each complex function should be preceded by a comment that tells a programmer everything they need to know to use that function. The meaning of every parameter, the expected input, and the output are required as a minimal comment. The function's behaviour in error conditions (and what those error conditions are) should also be present - but mostly included within the comment about the output.<br /><br />Especially important to document are any assumptions the code makes, or preconditions for its proper operation. Any one of the developers should be able to look at any part of the application and figure out what's going on in a reasonable amount of time.<br /><br />Avoid using <code>/* */</code> comment blocks for one-line comments, <code>//</code> should be used for one/two-liners.</p>

<h4>Magic numbers:</h4>

<h4>Shortcut operators:</h4>

<p>The only shortcut operators that cause readability problems are the shortcut increment <code>$i++</code> and decrement <code>$j--</code> operators. These operators should not be used as part of an expression. They can, however, be used on their own line. Using them in expressions is just not worth the headaches when debugging, examples:</p>

</pre></div>

<h4>SQL Quotes: </h4>

<p class="bad">// These are wrong.</p>

<div class="codebox"><pre>

<h4>sql_build_query():</h4>

<div class="codebox"><pre>

$sql_array = array(

</pre></div>

<h4>Use of in_array(): </h4>

<a name="general"></a><h3>2.v. General Guidelines</h3>

<p>No attempt should be made to remove any copyright information (either contained within the source or displayed interactively when the source is run/compiled), neither should the copyright information be altered in any way (it may be added to).</p>

<h4>Variables: </h4>

<p>The request_var function determines the type to set from the second parameter (which determines the default value too). If you need to get a scalar variable type, you need to tell this the request_var function explicitly. Examples:</p>

<p class="bad">// Old method, do not use it</p>

<p>The <code>$user-&gt;setup()</code> call can be used to pass on additional language definition and a custom style (used in viewforum).</p>

<h4>Errors and messages: </h4>

<div class="codebox"><pre>

trigger_error('NO_FORUM');

<p>All urls pointing to internal files need to be prepended by the <code>$phpbb_root_path</code> variable. Within the administration control panel all urls pointing to internal files need to be prepended by the <code>$phpbb_admin_path</code> variable. This makes sure the path is always correct and users being able to just rename the admin folder and the acp still working as intended (though some links will fail and the code need to be slightly adjusted).</p>

<div class="codebox"><pre>

append_sid(&quot;{$phpbb_root_path}memberlist.$phpEx&quot;, 'mode=group&amp;amp;g=' . $row['group_id'])

<h4>General function usage: </h4>

<ul>

<li>

required_imageset = prosilver

</pre></div>

<a name="genstyling"></a><h3>3.2. General Styling Rules</h3>

<p>The outer table class <code>forumline</code> has gone and is replaced with <code>tablebg</code>.</p>

<p>When writing <code>&lt;table&gt;</code> the order <code>&lt;table class="" cellspacing="" cellpadding="" border="" align=""&gt;</code> creates consistency and allows everyone to easily see which table produces which "look". The same applies to most other tags for which additional parameters can be set, consistency is the major aim here.</p>

<p>Row colours/classes are now defined by the template, use an <code>IF S_ROW_COUNT</code> switch, see viewtopic or viewforum for an example.</p>

<p>Use a standard cellpadding of 2 and cellspacing of 0 on outer tables. Inner tables can vary from 0 to 3 or even 4 depending on the need.</p>

<a name="templates"></a><h3>4.i. General Templating</h3>

<h4>File naming</h4>

<h4>Variables</h4>

<p>All template variables should be named appropriately (using underscores for spaces), language entries should be prefixed with L_, system data with S_, urls with U_, javascript urls with UA_, language to be put in javascript statements with LA_, all other variables should be presented 'as is'.</p>

</p>

<h4>Blocks/Loops</h4>

<span class="comment">&lt;!-- END l_block1 --&gt;</span>

</pre></div>

<div class="codebox"><pre>

<span class="comment">&lt;!-- BEGIN l_block1 --&gt;</span>

&lt;/ul&gt; <span class="comment">&lt;!-- written on third iteration --&gt;</span>

</pre></div>

<h4>Forms</h4>

<p>If a form is used for a non-trivial operation (i.e. more than a jumpbox), then it should include the <code>{S_FORM_TOKEN}</code> template variable.</p>

</pre></div><br />

<a name="inheritance"></a><h3>4.ii. Template Inheritance</h3>

<p>We strongly encourage the use of inheritance for styles based on the bundled styles, as it will ease the update procedure.</p>

<h4>Encoding:</h4>

<p>The impact is that the language files for phpBB must now also be encoded as UTF-8, with a caveat that the files must <strong>not contain</strong> a <acronym title="Byte-Order-Mark">BOM</acronym> for compatibility reasons with non-Unicode aware versions of PHP. For those with forums using the Latin character set (ie: most European languages), this change is transparent since UTF-8 is superset to US-ASCII and ISO-8859-1.</p>

<hr />

<div class="paragraph">

<div class="inner"><span class="corners-top"><span></span></span>

header("Content-Type: application/atom+xml; charset=UTF-8");

header("Last-Modified: " . gmdate('D, d M Y H:i:s', $feed_updated_time) . ' GMT');

echo '<?xml version="1.0" encoding="UTF-8"?>' . "\n";

echo '<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="' . $global_vars['FEED_LANG'] . '">' . "\n";

echo '<link rel="self" type="application/atom+xml" href="' . $global_vars['SELF_LINK'] . '" />' . "\n\n";

function get_passworded_forums()

{

}

function get_item()

}

$result = $db->sql_query($sql);

$ban_length = $ban_reasons = $ban_give_reasons = array();

while ($row = $db->sql_fetchrow($result))

{

$time_length = ($row['ban_end']) ? ($row['ban_end'] - $row['ban_start']) / 60 : 0;

}

}

$template->assign_vars(array(

'S_BAN_END_OPTIONS' => $ban_end_options,

}

}

'hot_threshold' => array('lang' => 'HOT_THRESHOLD', 'validate' => 'int:0', 'type' => 'text:3:4', 'explain' => true),

'max_poll_options' => array('lang' => 'MAX_POLL_OPTIONS', 'validate' => 'int:2:127', 'type' => 'text:4:4', 'explain' => false),

'max_post_chars' => array('lang' => 'CHAR_LIMIT', 'validate' => 'int:0', 'type' => 'text:4:6', 'explain' => true),

'max_post_smilies' => array('lang' => 'SMILIES_LIMIT', 'validate' => 'int:0', 'type' => 'text:4:4', 'explain' => true),

'max_post_urls' => array('lang' => 'MAX_POST_URLS', 'validate' => 'int:0', 'type' => 'text:5:4', 'explain' => true),

'max_post_font_size' => array('lang' => 'MAX_POST_FONT_SIZE', 'validate' => 'int:0', 'type' => 'text:5:4', 'explain' => true, 'append' => ' %'),

case 'submit':

$delete = request_var('delete', '');

$file = request_var('file', '');

if (!preg_match('#^backup_\d{10,}_[a-z\d]{16}\.(sql(?:\.(?:gz|bz2))?)$#', $file, $matches))

{

confirm_box(false, $user->lang['DELETE_SELECTED_BACKUP'], build_hidden_fields(array('delete' => $delete, 'file' => $file)));

}

}

{

if ($download)

{

$name = $matches[0];

trigger_error($user->lang['RESTORE_SUCCESS'] . adm_back_link($this->u_action));

break;

}

default:

$methods = array('sql');

$i = $j = 0;

$email_list = array();

$old_lang = $row['user_lang'];

$old_notify_type = $row['user_notify_type'];

$messenger->template('admin_send_email', $used_lang);

$messenger->subject(htmlspecialchars_decode($subject));

$messenger->set_mail_priority($priority);

$message = ($action == 'add') ? $user->lang['FORUM_CREATED'] : $user->lang['FORUM_UPDATED'];

// redirect directly to permission settings screen if authed

if ($action == 'add' && !$copied_permissions && $auth->acl_get('a_fauth'))

{

meta_refresh(4, append_sid("{$phpbb_admin_path}index.$phpEx", 'i=permissions' . $acl_url));

}

$errors = array();

{

$errors[] = $user->lang['FORUM_NAME_EMPTY'];

}

$messenger->to($row['user_email'], $row['username']);

$messenger->assign_vars(array(

'USERNAME' => htmlspecialchars_decode($row['username']))

$messenger->to($row['user_email'], $row['username']);

$messenger->im($row['user_jabber'], $row['username']);

$messenger->assign_vars(array(

'USERNAME' => htmlspecialchars_decode($row['username']),

'PAGINATION' => generate_pagination($this->u_action . "&amp;$u_sort_param&amp;users_per_page=$per_page", $inactive_count, $per_page, $start, true),

'USERS_PER_PAGE' => $per_page,

));

$this->tpl_name = 'acp_inactive';

$default_lang_id = (int) $db->sql_fetchfield('lang_id');

$db->sql_freeresult($result);

// From the mysql documentation:

// Prior to MySQL 4.0.14, the target table of the INSERT statement cannot appear in the FROM clause of the SELECT part of the query. This limitation is lifted in 4.0.14.

// Due to this we stay on the safe side if we do the insertion "the manual way"

{

$row['lang_id'] = $lang_id;

$db->sql_query('INSERT INTO ' . PROFILE_LANG_TABLE . ' ' . $db->sql_build_array('INSERT', $row));

}

$db->sql_freeresult($result);

{

$row['lang_id'] = $lang_id;

$db->sql_query('INSERT INTO ' . PROFILE_FIELDS_LANG_TABLE . ' ' . $db->sql_build_array('INSERT', $row));

}

$db->sql_freeresult($result);

add_log('admin', 'LOG_LANGUAGE_PACK_INSTALLED', $lang_pack['name']);

break;

// Grab log data

$log_data = array();

$log_count = 0;

$template->assign_vars(array(

'L_TITLE' => $l_title,

'L_EXPLAIN' => $l_title_explain,

'S_ON_PAGE' => on_page($log_count, $config['topics_per_page'], $start),

'PAGINATION' => generate_pagination($this->u_action . "&amp;$u_sort_param$keywords_param", $log_count, $config['topics_per_page'], $start, true),

{

$latest_version_info = explode("\n", $latest_version_info);

$template->assign_vars(array(

));

}

'U_ADMIN_LOG' => append_sid("{$phpbb_admin_path}index.$phpEx", 'i=logs&amp;mode=admin'),

'U_INACTIVE_USERS' => append_sid("{$phpbb_admin_path}index.$phpEx", 'i=inactive&amp;mode=list'),

'U_VERSIONCHECK' => append_sid("{$phpbb_admin_path}index.$phpEx", 'i=update&amp;mode=version_check'),

'S_ACTION_OPTIONS' => ($auth->acl_get('a_board')) ? true : false,

'S_FOUNDER' => ($user->data['user_type'] == USER_FOUNDER) ? true : false,

$template->assign_var('S_WRITABLE_CONFIG', (bool) (@fileperms($phpbb_root_path . 'config.' . $phpEx) & 0x0002));

}

// Fill dbms version if not yet filled

if (empty($config['dbms_version']))

{

$output = preg_replace('#<img border="0"#i', '<img', $output);

$output = str_replace(array('class="e"', 'class="v"', 'class="h"', '<hr />', '<font', '</font>'), array('class="row1"', 'class="row2"', '', '', '<span', '</span>'), $output);

if (empty($output))

{

trigger_error('NO_PHPINFO_AVAILABLE', E_USER_WARNING);

$template->assign_var('PHPINFO', $output);

}

}

?> \ No newline at end of file

'RANK_TITLE' => (isset($ranks['rank_title'])) ? $ranks['rank_title'] : '',

'S_FILENAME_LIST' => $filename_list,

'RANK_IMAGE' => ($edit_img) ? $phpbb_root_path . $config['ranks_path'] . '/' . $edit_img : $phpbb_admin_path . 'images/spacer.gif',

'MIN_POSTS' => (isset($ranks['rank_min']) && !$ranks['rank_special']) ? $ranks['rank_min'] : 0)

);

trigger_error($user->lang['NO_' . $l_prefix] . adm_back_link($this->u_action), E_USER_WARNING);

}

if ($update)

{

if ($mode == 'style')

trigger_error($user->lang[$message] . adm_back_link($this->u_action));

}

$this->page_title = 'DELETE_' . $l_prefix;

$template->assign_vars(array(

/**

* Display the options which can be used to replace a style/template/theme/imageset

*/

function display_component_options($component, $component_id, $style_row = false, $style_id = false)

{

global $db, $template, $user;

$component_in_use = array();

if ($component != 'style')

{

$s_options = '';

if (($component != 'style') && empty($component_in_use))

{

$sql = "SELECT {$component}_id, {$component}_name

FROM $sql_from

WHERE {$component}_id = {$component_id}";

{

if ($row[$component . '_id'] != $component_id)

{

$s_options .= '<option value="' . $row[$component . '_id'] . '">' . sprintf($user->lang['REPLACE_WITH_OPTION'], $row[$component . '_name']) . '</option>';

}

else if ($component != 'style')

}

}

}

}

/**

$errstr = '';

$errno = 0;

if ($info === false)

{

$current_version = (!empty($version_update_from)) ? $version_update_from : $config['version'];

$template->assign_vars(array(

'S_VERSION_CHECK' => true,

'U_ACTION' => $this->u_action,

'U_VERSIONCHECK_FORCE' => append_sid($this->u_action . '&amp;versioncheck_force=1'),

$messenger->to($user_row['user_email'], $user_row['username']);

$messenger->assign_vars(array(

'WELCOME_MSG' => htmlspecialchars_decode(sprintf($user->lang['WELCOME_SUBJECT'], $config['sitename'])),

$messenger->to($user_row['user_email'], $user_row['username']);

$messenger->assign_vars(array(

'USERNAME' => htmlspecialchars_decode($user_row['username']))

// Which updates do we need to do?

$update_username = ($user_row['username'] != $data['username']) ? $data['username'] : false;

$update_email = ($data['email'] != $user_row['user_email']) ? $data['email'] : false;

if (!sizeof($error))

// Grab log data

$log_data = array();

$log_count = 0;

$template->assign_vars(array(

'S_FEEDBACK' => true,

/**

* Get permission listing based on user_id/options/forum_ids

*/

function acl_get_list($user_id = false, $opts = false, $forum_id = false)

{

if (!$row)

{

return array(

'status' => LOGIN_ERROR_USERNAME,

'error_msg' => 'LOGIN_ERROR_USERNAME',

);

}

$code = str_replace("\t", '&nbsp; &nbsp;', $code);

$code = str_replace(' ', '&nbsp; ', $code);

$code = str_replace(' ', ' &nbsp;', $code);

// remove newline at the beginning

if (!empty($code) && $code[0] == "\n")

*/

// phpBB Version

// QA-related

// define('PHPBB_QA', 1);

}

/**

* Check if table exists

*

*

$sqlite = true;

}

// Add tables?

if (!empty($schema_changes['add_tables']))

{

}

/**

*

*

*/

{

switch ($this->sql_layer)

{

case 'mysql_40':

case 'mysql_41':

$sql = "SHOW COLUMNS FROM $table";

break;

// PostgreSQL has a way of doing this in a much simpler way but would

WHERE c.relname = '{$table}'

AND a.attnum > 0

AND a.attrelid = c.oid";

break;

// same deal with PostgreSQL, we must perform more complex operations than

FROM syscolumns c

LEFT JOIN sysobjects o ON c.id = o.id

WHERE o.name = '{$table}'";

break;

case 'oracle':

$sql = "SELECT column_name

FROM user_tab_columns

WHERE LOWER(table_name) = '" . strtolower($table) . "'";

break;

case 'firebird':

$sql = "SELECT RDB\$FIELD_NAME as FNAME

FROM RDB\$RELATION_FIELDS

WHERE RDB\$RELATION_NAME = '" . strtoupper($table) . "'";

break;

case 'sqlite':

$sql = "SELECT sql

FROM sqlite_master

WHERE type = 'table'

AND name = '{$table}'";

$result = $this->db->sql_query($sql);

if (!$result)

continue;

}

}

break;

}

}

/**

break;

case 'oracle':

break;

case 'postgres':

$statements[] = "DROP SEQUENCE {$row['referenced_name']}";

}

$this->db->sql_freeresult($result);

case 'postgres':

// PGSQL does not "tightly" bind sequences and tables, we must guess...

$table_prefix = substr(CONFIG_TABLE, 0, -6); // strlen(config)

if (strlen($table_name . $index_name) - strlen($table_prefix) > 24)

{

trigger_error("Index name '{$table_name}_$index_name' on table '$table_name' is too long. The maximum is $max_length characters.", E_USER_ERROR);

}

case 'mysql_40':

case 'mysql_41':

break;

case 'mssql':

$table_prefix = substr(CONFIG_TABLE, 0, -6); // strlen(config)

if (strlen($table_name . $index_name) - strlen($table_prefix) > 24)

{

trigger_error("Index name '{$table_name}_$index_name' on table '$table_name' is too long. The maximum is $max_length characters.", E_USER_ERROR);

}

}

// no break

case 'mysql_41':

break;

case 'mssql':

}

}

if (!empty($array['LEFT_JOIN']))

{

*/

function sql_affectedrows()

{

}

/**

*/

function sql_connect($sqlserver, $sqluser, $sqlpassword, $database, $port = false, $persistency = false , $new_link = false)

{

$this->user = $sqluser;

$this->dbname = $database;

$port = (!$port) ? NULL : $port;

if ($this->db_connect_id && $this->dbname != '')

{

return $cache->sql_fetchrow($query_id);

}

}

/**

{

$text .= "<br />\n";

}

list($errno, $msg_text, $errfile, $errline) = $error;

}

return $text;

}

}

}

/**

* Return formatted string for filesizes

*

* @param int $value filesize in bytes

}

/**

* Global function for chmodding directories and files for internal use

*

* This function determines owner and group whom the file belongs to and user and group of PHP and then set safest possible file permissions.

*/

function update_forum_tracking_info($forum_id, $forum_last_post_time, $f_mark_time = false, $mark_time_forum = false)

{

// Determine the users last forum mark time if not given.

if ($mark_time_forum === false)

}

}

// Check the forum for any left unread topics.

// If there are none, we mark the forum as read.

if ($config['load_db_lastread'] && $user->data['is_registered'])

LEFT JOIN ' . TOPICS_TRACK_TABLE . ' tt ON (tt.topic_id = t.topic_id AND tt.user_id = ' . $user->data['user_id'] . ')

WHERE t.forum_id = ' . $forum_id . '

AND t.topic_last_post_time > ' . $mark_time_forum . '

AND (tt.topic_id IS NULL OR tt.mark_time < t.topic_last_post_time)

GROUP BY t.forum_id';

$result = $db->sql_query_limit($sql, 1);

}

else

{

$result = $db->sql_query($sql);

$check_forum = $tracking_topics['tf'][$forum_id];

$start_cnt = min(max(1, $on_page - 4), $total_pages - 5);

$end_cnt = max(min($total_pages, $on_page + 4), 6);

for ($i = $start_cnt + 1; $i < $end_cnt; $i++)

{

}

}

}

else

{

{

global $_SID, $_EXTRA_URL, $phpbb_hook;

// Developers using the hook function need to globalise the $_SID and $_EXTRA_URL on their own and also handle it appropriately.

// They could mimic most of what is within this function

if (!empty($phpbb_hook) && $phpbb_hook->call_hook(__FUNCTION__, $url, $params, $is_amp, $session_id))

{

$version = $_SERVER['SERVER_PROTOCOL'];

}

else

{

$version = 'HTTP/1.0';

}

/**

*/

function get_backtrace()

{

$output = '<div style="font-family: monospace;">';

$backtrace = debug_backtrace();

// Strip the current directory from path

{

}

$trace['class'] = (!isset($trace['class'])) ? '' : $trace['class'];

$trace['type'] = (!isset($trace['type'])) ? '' : $trace['type'];

$output .= '<br />';

$output .= '<b>LINE:</b> ' . ((!empty($trace['line'])) ? $trace['line'] : '') . '<br />';

}

$output .= '</div>';

return $output;

$inline = ($mode == 'relative_url') ? ')' : '';

return "(?:[a-z0-9\-._~!$&'($inline*+,;=:@|]+|%[\dA-F]{2})*(?:/(?:[a-z0-9\-._~!$&'($inline*+,;=:@|]+|%[\dA-F]{2})*)*(?:\?(?:[a-z0-9\-._~!$&'($inline*+,;=:@/?|]+|%[\dA-F]{2})*)?(?:\#(?:[a-z0-9\-._~!$&'($inline*+,;=:@/?|]+|%[\dA-F]{2})*)?";

break;

}

return '';

{

return true;

}

default:

case 'AAAA':

if (!empty($host_matches))

{

// Second line

if (strpos($errfile, 'cache') === false && strpos($errfile, 'template.') === false)

{

$error_name = ($errno === E_WARNING) ? 'PHP Warning' : 'PHP Notice';

echo '<b>[phpBB Debug] ' . $error_name . '</b>: in file <b>' . $errfile . '</b> on line <b>' . $errline . '</b>: <b>' . $msg_text . '</b><br />' . "\n";

}

/**

* Queries the session table to get information about online guests

* @param int $item_id Limits the search to the item with this id

* @param string $item The name of the item which is stored in the session table as session_{$item}_id

*/

function page_header($page_title = '', $display_online_list = true, $item_id = 0, $item = 'forum')

{

if (defined('HEADER_INC'))

{

$s_search_hidden_fields['sid'] = $_SID;

}

// The following assigns all _common_ variables that may be used at any point in a template.

$template->assign_vars(array(

'SITENAME' => $config['sitename'],

header('Expires: 0');

header('Pragma: no-cache');

return;

}

$sql_keywords .= 'LOWER(l.log_data) ' . implode(' OR LOWER(l.log_data) ', $keywords) . ')';

}

$sql = "SELECT l.*, u.username, u.username_clean, u.user_colour

FROM " . LOG_TABLE . " l, " . USERS_TABLE . " u

WHERE l.log_type = $log_type

}

}

}

/**

$user_count = (int) $db->sql_fetchfield('user_count');

$db->sql_freeresult($result);

if ($offset >= $user_count)

{

$offset = ($offset - $limit < 0) ? 0 : $offset - $limit;

/**

* Retrieve contents from remotely stored file

*/

{

global $user;

@fputs($fsock, "HOST: $host\r\n");

@fputs($fsock, "Connection: close\r\n\r\n");

$file_info = '';

$get_info = false;

return false;

}

}

}

@fclose($fsock);

}

* @param int $max_length Maximum length of string (multibyte character count as 1 char / Html entity count as 1 char)

* @param int $max_store_length Maximum character length of string (multibyte character count as 1 char / Html entity count as entity chars).

* @param bool $allow_reply Allow Re: in front of string

* @param string $append String to be appended

*/

function truncate_string($string, $max_length = 60, $max_store_length = 255, $allow_reply = false, $append = '')

$sql_where = 'left_id > ' . $root_data['left_id'] . ' AND left_id < ' . $root_data['right_id'];

}

// Display list of active topics for this category?

$show_active = (isset($root_data['forum_flags']) && ($root_data['forum_flags'] & FORUM_FLAG_ACTIVE_TOPICS)) ? true : false;

$forum_id = $row['forum_id'];

// Mark forums read?

{

if ($auth->acl_get('f_list', $forum_id))

{

$forum_ids[] = $forum_id;

}

}

// Category with no members

continue;

}

if ($config['load_db_lastread'] && $user->data['is_registered'])

{

$forum_tracking_info[$forum_id] = (!empty($row['mark_time'])) ? $row['mark_time'] : $user->data['user_lastmark'];

$db->sql_freeresult($result);

// Handle marking posts

{

$redirect = build_url(array('mark', 'hash'));

$token = request_var('hash', '');

if (check_link_hash($token, 'global'))

{

meta_refresh(3, $redirect);

trigger_error($user->lang['FORUMS_MARKED'] . '<br /><br />' . $message);

}

'S_NO_CAT' => $catless && !$last_catless,

'S_IS_LINK' => ($row['forum_type'] == FORUM_LINK) ? true : false,

'S_UNREAD_FORUM' => $forum_unread,

'S_LOCKED_FORUM' => ($row['forum_status'] == ITEM_LOCKED) ? true : false,

'S_LIST_SUBFORUMS' => ($row['display_subforum_list']) ? true : false,

'S_SUBFORUMS' => (sizeof($subforums_list)) ? true : false,

$pagination .= '<a href="' . $url . ($j == 0 ? '' : '&amp;start=' . $j) . '">' . $times . '</a>';

if ($times == 1 && $total_pages > 5)

{

// Display the last three pages

$times = $total_pages - 3;

}

// Obtain active topic

$sql = 'SELECT topic_id, COUNT(post_id) AS num_posts

FROM ' . POSTS_TABLE . '

WHERE poster_id = ' . $userdata['user_id'] . "

AND post_postcount = 1

AND (post_approved = 1

$sql_m_approve)

GROUP BY topic_id

ORDER BY num_posts DESC";

$result = $db->sql_query_limit($sql, 1);

/**

* Topic and forum watching common code

*/

{

global $template, $db, $user, $phpEx, $start, $phpbb_root_path;

$match_id = ($mode == 'forum') ? $forum_id : $topic_id;

$u_url = "uid={$user->data['user_id']}";

$u_url .= ($mode == 'forum') ? '&amp;f' : '&amp;f=' . $forum_id . '&amp;t';

// Is user watching this thread?

if ($user_id != ANONYMOUS)

if (isset($_GET['unwatch']))

{

$uid = request_var('uid', 0);

{

$sql = 'DELETE FROM ' . $table_sql . "

WHERE $where_sql = $match_id

AND user_id = $user_id";

$db->sql_query($sql);

}

else

{

{

if (isset($_GET['watch']))

{

$token = request_var('hash', '');

{

$is_watching = true;

$sql = 'INSERT INTO ' . $table_sql . " (user_id, $where_sql, notify_status)

VALUES ($user_id, $match_id, " . NOTIFY_YES . ')';

$db->sql_query($sql);

$message = $user->lang['ARE_WATCHING_' . strtoupper($mode)] . '<br /><br />' . sprintf($user->lang['RETURN_' . strtoupper($mode)], '<a href="' . $redirect_url . '">', '</a>');

}

else

{

}

else

{

}

else

{

{

login_box();

}

/**

* Get tables of a database

*/

{

{

}

}

/**

}

/**

* Set the email priority

*/

function set_mail_priority($priority = MAIL_NORMAL_PRIORITY)

$smtp->add_backtrace('Connecting to ' . $config['smtp_host'] . ':' . $config['smtp_port']);

// Ok we have error checked as much as we can to this point let's get on it already.

$smtp->socket = fsockopen($config['smtp_host'], $config['smtp_port'], $errno, $errstr, 20);

if (!$smtp->socket)

{

*/

function phpbb_mail($to, $subject, $msg, $headers, $eol, &$err_msg)

{

// We use the EOL character for the OS here because the PHP mail function does not correctly transform line endings. On Windows SMTP is used (SMTP is \r\n), on UNIX a command is used...

// Reference: http://bugs.php.net/bug.php?id=15841

$headers = implode($eol, $headers);

// On some PHP Versions mail() *may* fail if there are newlines within the subject.

// Newlines are used as a delimiter for lines in mail_encode() according to RFC 2045 section 6.8.

// Because PHP can't decide what is wanted we revert back to the non-RFC-compliant way of separating by one space (Use '' as parameter to mail_encode() results in SPACE used)

$result = $config['email_function_name']($to, mail_encode($subject, ''), wordwrap(utf8_wordwrap($msg), 997, "\n", true), $headers);

return $result;

}

case 'edit_topic':

case 'edit_first_post':

{

$poll_length = $poll['poll_length'] * 86400;

if ($poll_length < 0)

{

}

// Update Poll Tables

{

$cur_poll_options = array();

{

$sql = 'SELECT *

FROM ' . POLL_OPTIONS_TABLE . '

// Send Notifications

if ($mode != 'edit')

{

}

return $data['msg_id'];

/**

* PM Notification

*/

{

global $db, $user, $config, $phpbb_root_path, $phpEx, $auth;

'AUTHOR_NAME' => htmlspecialchars_decode($author),

'USERNAME' => htmlspecialchars_decode($addr['name']),

$messenger->send($addr['method']);

}

*/

function _open_data_connection()

{

{

}

{

}

$errno = 0;

$errstr = '';

// Grab log data

$log_data = array();

$log_count = 0;

$template->assign_vars(array(

'PAGE_NUMBER' => on_page($log_count, $config['topics_per_page'], $start),

'L_TITLE' => $user->lang['MCP_LOGS'],

'S_CLEAR_ALLOWED' => ($auth->acl_get('a_clearlogs')) ? true : false,

'S_SELECT_SORT_DIR' => $s_sort_dir,

'S_SELECT_SORT_KEY' => $s_sort_key,

{

global $auth, $user, $db, $phpEx, $phpbb_root_path;

switch ($action)

{

case 'make_announce':

default:

$new_topic_type = POST_NORMAL;

$l_new_type = (sizeof($topic_ids) == 1) ? 'MCP_MAKE_NORMAL' : 'MCP_MAKE_NORMALS';

break;

}

$redirect = request_var('redirect', build_url(array('action', 'quickmod')));

$s_hidden_fields = array(

$log_data = array();

$log_count = 0;

if ($log_count)

{

}

// Get Reports

{

$sql = 'SELECT r.*, re.*, u.user_id, u.username

FROM ' . REPORTS_TABLE . ' r, ' . USERS_TABLE . ' u, ' . REPORTS_REASONS_TABLE . " re

'POST_IP' => $post_info['poster_ip'],

'POST_IPADDR' => ($auth->acl_get('m_info', $post_info['forum_id']) && request_var('lookup', '')) ? @gethostbyaddr($post_info['poster_ip']) : '',

'POST_ID' => $post_info['post_id'],

'U_LOOKUP_IP' => ($auth->acl_get('m_info', $post_info['forum_id'])) ? append_sid("{$phpbb_root_path}mcp.$phpEx", 'i=queue&amp;mode=approve_details&amp;f=' . $post_info['forum_id'] . '&amp;p=' . $post_id . '&amp;lookup=' . $post_info['poster_ip']) . '#ip' : '',

));

if (!$row || (!$reason && strtolower($row['reason_title']) == 'other'))

{

$additional_msg = $user->lang['NO_REASON_DISAPPROVAL'];

unset($_POST['confirm']);

}

else

$message = bbcode_nl2br($message);

$message = smiley_text($message);

if ($post_info['post_attachment'] && $auth->acl_get('u_download') && $auth->acl_get('f_download', $post_info['forum_id']))

{

'MINI_POST_IMG' => ($post_unread) ? $user->img('icon_post_target_unread', 'UNREAD_POST') : $user->img('icon_post_target', 'POST'),

'S_CHECKED' => (($submitted_id_list && !in_array(intval($row['post_id']), $submitted_id_list)) || in_array(intval($row['post_id']), $checked_ids)) ? true : false,

'S_HAS_ATTACHMENTS' => (!empty($attachments[$row['post_id']])) ? true : false,

return true;

}

}

?> \ No newline at end of file

unset($input);

}

{

/**

* @ignore

$messenger->to($user_row['user_email'], $user_row['username']);

$messenger->assign_vars(array(

'USERNAME' => htmlspecialchars_decode($user_row['username']))

if ($group_row[$group_id]['group_type'] == GROUP_FREE)

{

group_user_add($group_id, $user->data['user_id']);

}

else

{

group_user_add($group_id, $user->data['user_id'], false, false, false, 0, 1);

}

add_log('user', $user->data['user_id'], 'LOG_USER_GROUP_JOIN' . (($group_row[$group_id]['group_type'] == GROUP_FREE) ? '' : '_PENDING'), $group_row[$group_id]['group_name']);

$num_not_moved = $num_removed = 0;

$release = request_var('release', 0);

{

$return = place_pm_into_folder($global_privmsgs_rules, $release);

$num_not_moved = $return['not_moved'];

'U_PM' => ($config['allow_privmsg'] && $auth->acl_get('u_sendpm') && ($user_info['user_allow_pm'] || $auth->acl_gets('a_', 'm_') || $auth->acl_getf_global('m_'))) ? append_sid("{$phpbb_root_path}ucp.$phpEx", 'i=pm&amp;mode=compose&amp;u=' . $author_id) : '',

'U_WWW' => (!empty($user_info['user_website'])) ? $user_info['user_website'] : '',

'U_AIM' => ($user_info['user_aim'] && $auth->acl_get('u_sendim')) ? append_sid("{$phpbb_root_path}memberlist.$phpEx", 'mode=contact&amp;action=aim&amp;u=' . $author_id) : '',

'U_YIM' => ($user_info['user_yim']) ? 'http://edit.yahoo.com/config/send_webmesg?.target=' . urlencode($user_info['user_yim']) . '&amp;.src=pg' : '',

'U_MSN' => ($user_info['user_msnm'] && $auth->acl_get('u_sendim')) ? append_sid("{$phpbb_root_path}memberlist.$phpEx", 'mode=contact&amp;action=msnm&amp;u=' . $author_id) : '',

$error = validate_data($data, $check_ary);

{

}

{

}

// Only check the new password against the previous password if there have been no errors

$error[] = 'SAME_PASSWORD_ERROR';

}

{

}

if (!check_form_key('ucp_reg_details'))

$messenger->to($data['email'], $data['username']);

$messenger->assign_vars(array(

'USERNAME' => htmlspecialchars_decode($data['username']),

$this->tpl_name = 'ucp_agreement';

return;

}

// The CAPTCHA kicks in here. We can't help that the information gets lost on language change.

if ($config['enable_confirm'])

{

$messenger->to($data['email'], $data['username']);

$messenger->assign_vars(array(

'WELCOME_MSG' => htmlspecialchars_decode(sprintf($user->lang['WELCOME_SUBJECT'], $config['sitename'])),

$messenger->template(($coppa) ? 'coppa_resend_inactive' : 'user_resend_inactive', $user_row['user_lang']);

$messenger->to($user_row['user_email'], $user_row['username']);

$messenger->assign_vars(array(

'WELCOME_MSG' => htmlspecialchars_decode(sprintf($user->lang['WELCOME_SUBJECT'], $config['sitename'])),

$messenger->to($row['user_email'], $row['username']);

$messenger->im($row['user_jabber'], $row['username']);

$messenger->assign_vars(array(

'USERNAME' => htmlspecialchars_decode($user_row['username']),

// Generate birthday list if required ...

$birthday_list = '';

{

$sql = 'SELECT u.user_id, u.username, u.user_colour, u.user_birthday

FROM ' . USERS_TABLE . ' u

LEFT JOIN ' . BANLIST_TABLE . " b ON (u.user_id = b.ban_userid)

WHERE (b.ban_id IS NULL

OR b.ban_exclude = 1)

AND u.user_type IN (" . USER_NORMAL . ', ' . USER_FOUNDER . ')';

$result = $db->sql_query($sql);

if ($age = (int) substr($row['user_birthday'], -4))

{

}

}

$db->sql_freeresult($result);

$convertor_data = array(

'forum_name' => 'phpBB 2.0.x',

'version' => '1.0.3',

'author' => '<a href="http://www.phpbb.com/">phpBB Group</a>',

'dbms' => $dbms,

'dbhost' => $dbhost,

array('topic_type', 'topics.topic_type', 'phpbb_convert_topic_type'),

array('topic_first_post_id', 'topics.topic_first_post_id', ''),

array('topic_last_view_time', 'posts.post_time', 'intval'),

array('poll_start', 'vote_desc.vote_start', 'null_to_zero'),

array('poll_length', 'vote_desc.vote_length', 'null_to_zero'),

array('poll_max_options', 1, ''),

array('topic_type', 'topics.topic_type', 'phpbb_convert_topic_type'),

array('topic_first_post_id', 'topics.topic_first_post_id', ''),

array('poll_start', 'vote_desc.vote_start', 'null_to_zero'),

array('poll_length', 'vote_desc.vote_length', 'null_to_zero'),

array('poll_max_options', 1, ''),

array('poll_option_id', 'vote_results.vote_option_id', ''),

array('topic_id', 'vote_desc.topic_id', ''),

array('', 'topics.topic_poster AS poster_id', 'phpbb_user_id'),

array('poll_option_total', 'vote_results.vote_result', ''),

'where' => 'vote_results.vote_id = vote_desc.vote_id',

*

*/

// Enter any version to update from to test updates. The version within the db will not be updated.

define('DEBUG_FROM_VERSION', false);

require($phpbb_root_path . 'includes/db/' . $dbms . '.' . $phpEx);

require($phpbb_root_path . 'includes/utf/utf_tools.' . $phpEx);

// new table constants are separately defined here in case the updater is run

// before the files are updated

if (!defined('LOGIN_ATTEMPT_TABLE'))

}

$db->sql_freeresult($result);

$database_update_info = database_update_info();

// this column was removed from the database updater

// after 3.0.9-RC3 was released. It might still exist

// in 3.0.9-RCX installations and has to be dropped in

// removing a primary key.

// 'attempt_id' => array('UINT', NULL, 'auto_increment'),

'attempt_ip' => array('VCHAR:40', ''),

'3.0.9-RC3' => array(),

// No changes from 3.0.9-RC4 to 3.0.9

'3.0.9-RC4' => array(),

);

}

// No changes from 3.0.9-RC4 to 3.0.9

case '3.0.9-RC4':

break;

{

}

}

}

fix_empty_primary_groups();