*/

/**

* Responsible for holding all file relevant informations, as well as doing file-specific operations.

* The {@link fileupload fileupload class} can be used to upload several files, each of them being this object to operate further on.

*/

class filespec

{

var $filesize = 0;

var $width = 0;

var $height = 0;

var $destination_file = '';

var $destination_path = '';

/**

* File Class

*/

function filespec($upload_ary, $upload_namespace)

{

{

$this->mimetype = 'application/octetstream';

}

$this->extension = strtolower($this->get_extension($this->realname));

// Try to get real filesize from temporary folder (not always working) ;)

/**

* Cleans destination filename

*

* @param real|unique $mode real creates a realname, filtering some characters, lowering every character. Unique creates an unique filename

* @param string $prefix Prefix applied to filename

*/

function clean_filename($mode = 'unique', $prefix = '')

{

{

return;

}

switch ($mode)

{

case 'real':

$this->realname = preg_replace("/%(\w{2})/", '_', $this->realname);

$this->realname = $prefix . $this->realname . '.' . $this->extension;

case 'unique':

default:

$this->realname = $prefix . md5(unique_id()) . '.' . $this->extension;

}

}

function get($property)

{

if ($this->init_error || !isset($this->$property))

return $this->$property;

}

function is_image()

{

return (strpos($this->mimetype, 'image/') !== false) ? true : false;

}

function is_uploaded()

{

if (!$this->local && !is_uploaded_file($this->filename))

return (file_exists($this->filename)) ? true : false;

}

function remove()

{

if ($this->file_moved)

}

/**

*/

function get_mimetype($filename)

{

/**

* Move file to destination folder

* The phpbb_root_path variable will be applied to the destination path

*

* @param string $destination_path Destination path, for example $config['avatar_path']

* @param octal $chmod Permission mask for chmodding the file after a successful move

*/

function move_file($destination, $chmod = 0666)

{

{

$destination = substr($destination, 0, sizeof($destination)-2);

}

$destination = str_replace(array('../', '..\\', './', '.\\'), '', $destination);

if ($destination && ($destination{0} == '/' || $destination{0} == "\\"))

{

switch ($upload_mode)

{

case 'copy':

if (!@copy($this->filename, $this->destination_file))

{

if (!@move_uploaded_file($this->filename, $this->destination_file))

{

@unlink($this->filename);

}

case 'move':

if (!@move_uploaded_file($this->filename, $this->destination_file))

if (!@copy($this->filename, $this->destination_file))

{

$this->error[] = sprintf($user->lang[$this->upload->error_prefix . 'GENERAL_UPLOAD_ERROR'], $this->destination_file);

{

@unlink($this->filename);

}

case 'local':

if (!@copy($this->filename, $this->destination_file))

{

$this->error[] = sprintf($user->lang[$this->upload->error_prefix . 'GENERAL_UPLOAD_ERROR'], $this->destination_file);

return false;

}

@unlink($this->filename);

}

@chmod($this->destination_file, $chmod);

// Try to get real filesize from destination folder

$this->filesize = (@filesize($this->destination_file)) ? @filesize($this->destination_file) : $this->filesize;

if ($this->is_image())

{

}

$this->file_moved = true;

return true;

}

function additional_checks()

{

global $user;

{

return false;

}

// Filesize is too big or it's 0 if it was larger than the maxsize in the upload form

if ($this->upload->max_filesize && ($this->get('filesize') > $this->upload->max_filesize || $this->filesize == 0))

{

$size_lang = ($this->upload->max_filesize >= 1048576) ? $user->lang['MB'] : (($this->upload->max_filesize >= 1024) ? $user->lang['KB'] : $user->lang['BYTES'] );

$max_filesize = ($this->upload->max_filesize >= 1048576) ? round($this->upload->max_filesize / 1048576 * 100) / 100 : (($this->upload->max_filesize >= 1024) ? round($this->upload->max_filesize / 1024 * 100) / 100 : $this->upload->max_filesize);

$this->error[] = sprintf($user->lang[$this->upload->error_prefix . 'WRONG_FILESIZE'], $max_filesize, $size_lang);

return false;

}

/**

* Class for assigning error messages before a real filespec class can be assigned

*/

class fileerror extends filespec

{

}

/**

* File upload class

* Init class (all parameters optional and able to be set/overwritten seperatly) - scope is global and valid for all uploads

*/

class fileupload

{

var $error_prefix = '';

/**

*

* @param string $error_prefix Used error messages will get prefixed by this string

* @param array $allowed_extensions Array of allowed extensions, for example array('jpg', 'jpeg', 'gif', 'png')

$this->set_error_prefix($error_prefix);

}

function reset_vars()

{

$this->max_filesize = 0;

$this->allowed_extensions = array();

}

function set_allowed_extensions($allowed_extensions)

{

if ($allowed_extensions !== false && is_array($allowed_extensions))

}

}

function set_allowed_dimensions($min_width, $min_height, $max_width, $max_height)

{

$this->min_width = (int) $min_width;

$this->max_height = (int) $max_height;

}

function set_max_filesize($max_filesize)

{

if ($max_filesize !== false && (int) $max_filesize)

}

}

function set_error_prefix($error_prefix)

{

$this->error_prefix = $error_prefix;

/**

* Form upload method

* Upload file from users harddisk

*

* @param string $form_name Form name assigned to the file input field (if it is an array, the key has to be specified)

* @return object $file Object "filespec" is returned, all further operations can be done with this object

*/

function form_upload($form_name)

{

$file->error[] = '';

return $file;

}

// Error array filled?

if (isset($_FILES[$form_name]['error']))

{

return $file;

}

function local_upload($source_file, $filedata = false)

{

global $user;

$_FILES[$form_name]['name'] = $filedata['realname'];

$_FILES[$form_name]['size'] = $filedata['size'];

$_FILES[$form_name]['type'] = $filedata['type'];

$file = new filespec($_FILES[$form_name], $this);

$file->error[] = '';

return $file;

}

if (isset($_FILES[$form_name]['error']))

{

$error = $this->assign_internal_error($_FILES[$form_name]['error']);

/**

* Remote upload method

* Uploads file from given url

*

* @param string $upload_url URL pointing to file to upload, for example http://www.foobar.com/example.gif

* @return object $file Object "filespec" is returned, all further operations can be done with this object

*/

function remote_upload($upload_url)

{

global $user, $phpbb_root_path;

$upload_ary = array();

$upload_ary['local_mode'] = true;

{

$file = new fileerror($user->lang[$this->error_prefix . 'URL_INVALID']);

return $file;

$host = $url['host'];

$path = $url['path'];

$port = (!empty($url['port'])) ? (int) $url['port'] : 80;

$upload_ary['type'] = 'application/octet-stream';

$url['path'] = explode('.', $url['path']);

$ext = array_pop($url['path']);

$url['path'] = implode('', $url['path']);

$upload_ary['name'] = basename($url['path']) . (($ext) ? '.' . $ext : '');

$filename = $url['path'];

{

$upload_ary['type'] = rtrim(str_replace('Content-Type: ', '', $line));

}

{

$file = new fileerror($user->lang[$this->error_prefix . 'URL_NOT_FOUND']);

return $file;

$file = new fileerror($user->lang[$this->error_prefix . 'NOT_UPLOADED']);

return $file;

}

$upload_ary['size'] = fwrite($fp, $data);

fclose($fp);

unset($data);

return $file;

}

function assign_internal_error($errorcode)

{

global $user;

break;

case 3:

case 4:

$error = $user->lang[$this->error_prefix . 'NOT_UPLOADED'];

case 6:

$error = 'Temporary folder could not be found. Please check your PHP installation.';

default:

$error = false;

}

return $error;

}

function common_checks(&$file)

{

global $user;

}

}

function valid_extension(&$file)

{

return (in_array($file->get('extension'), $this->allowed_extensions)) ? true : false;

}

function valid_dimensions(&$file)

{

if (!$this->max_width && !$this->max_height && !$this->min_width && !$this->min_height)

{

return true;

}

if (($file->get('width') > $this->max_width && $this->max_width) ||

($file->get('height') > $this->max_height && $this->max_height) ||

($file->get('width') < $this->min_width && $this->min_width) ||

return true;

}

function is_valid($form_name)

{

return (isset($_FILES[$form_name]) && $_FILES[$form_name]['name'] != 'none') ? true : false;