Gitiles
Code Review Sign In
www.giggi.me / code-igniter-v3-giggi / 7e0860bf27a78d4fa67f6470e09e45ac1f0209d0 / . / system / libraries / Upload.php
blob: 42664a58790fdcab78fb0e1f64bcf395ecf242e6 [file] [log] [blame]
Andrey Andreev6ca407e2012-03-01 15:33:21 +0200[diff] [blame]1<?php if ( ! defined('BASEPATH')) exit('No direct script access allowed');
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]2/**
3 * CodeIgniter
4 *
Phil Sturgeon07c1ac82012-03-09 17:03:37 +0000[diff] [blame]5 * An open source application development framework for PHP 5.2.4 or newer
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]6 *
Derek Jonesf4a4bd82011-10-20 12:18:42 -0500[diff] [blame]7 * NOTICE OF LICENSE
Andrey Andreev3a459572011-12-21 11:23:11 +0200[diff] [blame]8 *
Derek Jonesf4a4bd82011-10-20 12:18:42 -0500[diff] [blame]9 * Licensed under the Open Software License version 3.0
Andrey Andreev3a459572011-12-21 11:23:11 +0200[diff] [blame]10 *
Derek Jonesf4a4bd82011-10-20 12:18:42 -0500[diff] [blame]11 * This source file is subject to the Open Software License (OSL 3.0) that is
12 * bundled with this package in the files license.txt / license.rst. It is
13 * also available through the world wide web at this URL:
14 * http://opensource.org/licenses/OSL-3.0
15 * If you did not receive a copy of the license and are unable to obtain it
16 * through the world wide web, please send an email to
17 * licensing@ellislab.com so we can send you a copy immediately.
18 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]19 * @package CodeIgniter
Derek Jonesf4a4bd82011-10-20 12:18:42 -0500[diff] [blame]20 * @author EllisLab Dev Team
Greg Aker0defe5d2012-01-01 18:46:41 -0600[diff] [blame]21 * @copyright Copyright (c) 2008 - 2012, EllisLab, Inc. (http://ellislab.com/)
Derek Jonesf4a4bd82011-10-20 12:18:42 -0500[diff] [blame]22 * @license http://opensource.org/licenses/OSL-3.0 Open Software License (OSL 3.0)
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]23 * @link http://codeigniter.com
24 * @since Version 1.0
25 * @filesource
26 */
27
28// ------------------------------------------------------------------------
29
30/**
31 * File Uploading Class
32 *
33 * @package CodeIgniter
34 * @subpackage Libraries
35 * @category Uploads
Derek Jonesf4a4bd82011-10-20 12:18:42 -0500[diff] [blame]36 * @author EllisLab Dev Team
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]37 * @link http://codeigniter.com/user_guide/libraries/file_uploading.html
38 */
39class CI_Upload {
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]40
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]41 public $max_size = 0;
42 public $max_width = 0;
43 public $max_height = 0;
44 public $max_filename = 0;
Adam Jackettccbbea12011-08-21 16:19:11 -0400[diff] [blame]45 public $max_filename_increment = 100;
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]46 public $allowed_types = "";
47 public $file_temp = "";
48 public $file_name = "";
49 public $orig_name = "";
50 public $file_type = "";
51 public $file_size = "";
52 public $file_ext = "";
53 public $upload_path = "";
54 public $overwrite = FALSE;
55 public $encrypt_name = FALSE;
56 public $is_image = FALSE;
57 public $image_width = '';
58 public $image_height = '';
59 public $image_type = '';
60 public $image_size_str = '';
61 public $error_msg = array();
62 public $mimes = array();
63 public $remove_spaces = TRUE;
64 public $xss_clean = FALSE;
65 public $temp_prefix = "temp_file_";
66 public $client_name = '';
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]67
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]68 protected $_file_name_override = '';
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]69
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]70 /**
71 * Constructor
72 *
73 * @access public
74 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]75 public function __construct($props = array())
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]76 {
77 if (count($props) > 0)
78 {
79 $this->initialize($props);
80 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]81
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]82 log_message('debug', "Upload Class Initialized");
83 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]84
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]85 // --------------------------------------------------------------------
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]86
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]87 /**
88 * Initialize preferences
89 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]90 * @param array
91 * @return void
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]92 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]93 public function initialize($config = array())
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]94 {
95 $defaults = array(
Adam Jackettccbbea12011-08-21 16:19:11 -0400[diff] [blame]96 'max_size' => 0,
97 'max_width' => 0,
98 'max_height' => 0,
99 'max_filename' => 0,
100 'max_filename_increment' => 100,
101 'allowed_types' => "",
102 'file_temp' => "",
103 'file_name' => "",
104 'orig_name' => "",
105 'file_type' => "",
106 'file_size' => "",
107 'file_ext' => "",
108 'upload_path' => "",
109 'overwrite' => FALSE,
110 'encrypt_name' => FALSE,
111 'is_image' => FALSE,
112 'image_width' => '',
113 'image_height' => '',
114 'image_type' => '',
115 'image_size_str' => '',
116 'error_msg' => array(),
117 'mimes' => array(),
118 'remove_spaces' => TRUE,
119 'xss_clean' => FALSE,
120 'temp_prefix' => "temp_file_",
121 'client_name' => ''
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]122 );
123
124
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]125 foreach ($defaults as $key => $val)
126 {
127 if (isset($config[$key]))
128 {
129 $method = 'set_'.$key;
130 if (method_exists($this, $method))
131 {
132 $this->$method($config[$key]);
133 }
134 else
135 {
136 $this->$key = $config[$key];
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]137 }
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]138 }
139 else
140 {
141 $this->$key = $val;
142 }
143 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]144
Derek Jonese9d723f2010-07-12 10:10:59 -0500[diff] [blame]145 // if a file_name was provided in the config, use it instead of the user input
146 // supplied file name for all uploads until initialized again
147 $this->_file_name_override = $this->file_name;
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]148 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]149
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]150 // --------------------------------------------------------------------
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]151
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]152 /**
153 * Perform the file upload
154 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]155 * @return bool
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]156 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]157 public function do_upload($field = 'userfile')
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]158 {
Eric Barnes92808342011-03-18 09:02:37 -0400[diff] [blame]159
Robin Sowell0ecc0622011-01-30 16:47:43 -0500[diff] [blame]160 // Is $_FILES[$field] set? If not, no reason to continue.
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]161 if ( ! isset($_FILES[$field]))
162 {
163 $this->set_error('upload_no_file_selected');
164 return FALSE;
165 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]166
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]167 // Is the upload path valid?
168 if ( ! $this->validate_upload_path())
169 {
170 // errors will already be set by validate_upload_path() so just return FALSE
171 return FALSE;
172 }
173
174 // Was the file able to be uploaded? If not, determine the reason why.
175 if ( ! is_uploaded_file($_FILES[$field]['tmp_name']))
176 {
177 $error = ( ! isset($_FILES[$field]['error'])) ? 4 : $_FILES[$field]['error'];
178
179 switch($error)
180 {
181 case 1: // UPLOAD_ERR_INI_SIZE
182 $this->set_error('upload_file_exceeds_limit');
183 break;
184 case 2: // UPLOAD_ERR_FORM_SIZE
185 $this->set_error('upload_file_exceeds_form_limit');
186 break;
187 case 3: // UPLOAD_ERR_PARTIAL
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]188 $this->set_error('upload_file_partial');
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]189 break;
190 case 4: // UPLOAD_ERR_NO_FILE
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]191 $this->set_error('upload_no_file_selected');
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]192 break;
193 case 6: // UPLOAD_ERR_NO_TMP_DIR
194 $this->set_error('upload_no_temp_directory');
195 break;
196 case 7: // UPLOAD_ERR_CANT_WRITE
197 $this->set_error('upload_unable_to_write_file');
198 break;
199 case 8: // UPLOAD_ERR_EXTENSION
200 $this->set_error('upload_stopped_by_extension');
201 break;
Derek Jones4b9c6292011-07-01 17:40:48 -0500[diff] [blame]202 default : $this->set_error('upload_no_file_selected');
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]203 break;
204 }
205
206 return FALSE;
207 }
208
Derek Jonese9d723f2010-07-12 10:10:59 -0500[diff] [blame]209
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]210 // Set the uploaded data as class variables
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]211 $this->file_temp = $_FILES[$field]['tmp_name'];
212 $this->file_size = $_FILES[$field]['size'];
Andrey Andreev3a3c9472011-09-24 14:25:33 +0300[diff] [blame]213 $this->_file_mime_type($_FILES[$field]);
214 $this->file_type = preg_replace("/^(.+?);.*$/", "\\1", $this->file_type);
Derek Jones616fb022010-04-22 16:52:18 -0500[diff] [blame]215 $this->file_type = strtolower(trim(stripslashes($this->file_type), '"'));
Derek Jonese9d723f2010-07-12 10:10:59 -0500[diff] [blame]216 $this->file_name = $this->_prep_filename($_FILES[$field]['name']);
217 $this->file_ext = $this->get_extension($this->file_name);
218 $this->client_name = $this->file_name;
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]219
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]220 // Is the file type allowed to be uploaded?
221 if ( ! $this->is_allowed_filetype())
222 {
223 $this->set_error('upload_invalid_filetype');
224 return FALSE;
225 }
226
Derek Jonese9d723f2010-07-12 10:10:59 -0500[diff] [blame]227 // if we're overriding, let's now make sure the new name and type is allowed
228 if ($this->_file_name_override != '')
229 {
230 $this->file_name = $this->_prep_filename($this->_file_name_override);
Phil Sturgeon1e74da22010-12-15 10:45:06 +0000[diff] [blame]231
232 // If no extension was provided in the file_name config item, use the uploaded one
Pascal Kriete14287f32011-02-14 13:39:34 -0500[diff] [blame]233 if (strpos($this->_file_name_override, '.') === FALSE)
Phil Sturgeon1e74da22010-12-15 10:45:06 +0000[diff] [blame]234 {
235 $this->file_name .= $this->file_ext;
236 }
237
238 // An extension was provided, lets have it!
239 else
240 {
241 $this->file_ext = $this->get_extension($this->_file_name_override);
242 }
Derek Jonese9d723f2010-07-12 10:10:59 -0500[diff] [blame]243
244 if ( ! $this->is_allowed_filetype(TRUE))
245 {
246 $this->set_error('upload_invalid_filetype');
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]247 return FALSE;
Derek Jonese9d723f2010-07-12 10:10:59 -0500[diff] [blame]248 }
249 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]250
Derek Jonese9d723f2010-07-12 10:10:59 -0500[diff] [blame]251 // Convert the file size to kilobytes
252 if ($this->file_size > 0)
253 {
254 $this->file_size = round($this->file_size/1024, 2);
255 }
256
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]257 // Is the file size within the allowed maximum?
258 if ( ! $this->is_allowed_filesize())
259 {
260 $this->set_error('upload_invalid_filesize');
261 return FALSE;
262 }
263
264 // Are the image dimensions within the allowed size?
265 // Note: This can fail if the server has an open_basdir restriction.
266 if ( ! $this->is_allowed_dimensions())
267 {
268 $this->set_error('upload_invalid_dimensions');
269 return FALSE;
270 }
271
272 // Sanitize the file name for security
273 $this->file_name = $this->clean_file_name($this->file_name);
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]274
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]275 // Truncate the file name if it's too long
276 if ($this->max_filename > 0)
277 {
278 $this->file_name = $this->limit_filename_length($this->file_name, $this->max_filename);
279 }
280
281 // Remove white spaces in the name
282 if ($this->remove_spaces == TRUE)
283 {
284 $this->file_name = preg_replace("/\s+/", "_", $this->file_name);
285 }
286
287 /*
288 * Validate the file name
289 * This function appends an number onto the end of
290 * the file if one with the same name already exists.
291 * If it returns false there was a problem.
292 */
293 $this->orig_name = $this->file_name;
294
295 if ($this->overwrite == FALSE)
296 {
297 $this->file_name = $this->set_filename($this->upload_path, $this->file_name);
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]298
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]299 if ($this->file_name === FALSE)
300 {
301 return FALSE;
302 }
303 }
304
305 /*
Derek Jonese9d723f2010-07-12 10:10:59 -0500[diff] [blame]306 * Run the file through the XSS hacking filter
307 * This helps prevent malicious code from being
Derek Jones4b9c6292011-07-01 17:40:48 -0500[diff] [blame]308 * embedded within a file. Scripts can easily
Derek Jonese9d723f2010-07-12 10:10:59 -0500[diff] [blame]309 * be disguised as images or other file types.
310 */
311 if ($this->xss_clean)
312 {
313 if ($this->do_xss_clean() === FALSE)
314 {
315 $this->set_error('upload_unable_to_write_file');
316 return FALSE;
317 }
318 }
319
320 /*
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]321 * Move the file to the final destination
322 * To deal with different server configurations
Derek Jones4b9c6292011-07-01 17:40:48 -0500[diff] [blame]323 * we'll attempt to use copy() first. If that fails
324 * we'll use move_uploaded_file(). One of the two should
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]325 * reliably work in most environments
326 */
327 if ( ! @copy($this->file_temp, $this->upload_path.$this->file_name))
328 {
329 if ( ! @move_uploaded_file($this->file_temp, $this->upload_path.$this->file_name))
330 {
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]331 $this->set_error('upload_destination_error');
332 return FALSE;
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]333 }
334 }
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]335
336 /*
337 * Set the finalized image dimensions
338 * This sets the image width/height (assuming the
Derek Jones4b9c6292011-07-01 17:40:48 -0500[diff] [blame]339 * file was an image). We use this information
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]340 * in the "data" function.
341 */
342 $this->set_image_properties($this->upload_path.$this->file_name);
343
344 return TRUE;
345 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]346
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]347 // --------------------------------------------------------------------
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]348
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]349 /**
350 * Finalized Data Array
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]351 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]352 * Returns an associative array containing all of the information
353 * related to the upload, allowing the developer easy access in one array.
354 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]355 * @return array
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]356 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]357 public function data()
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]358 {
359 return array (
360 'file_name' => $this->file_name,
361 'file_type' => $this->file_type,
362 'file_path' => $this->upload_path,
363 'full_path' => $this->upload_path.$this->file_name,
364 'raw_name' => str_replace($this->file_ext, '', $this->file_name),
365 'orig_name' => $this->orig_name,
Derek Jonese9d723f2010-07-12 10:10:59 -0500[diff] [blame]366 'client_name' => $this->client_name,
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]367 'file_ext' => $this->file_ext,
368 'file_size' => $this->file_size,
369 'is_image' => $this->is_image(),
370 'image_width' => $this->image_width,
371 'image_height' => $this->image_height,
372 'image_type' => $this->image_type,
373 'image_size_str' => $this->image_size_str,
374 );
375 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]376
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]377 // --------------------------------------------------------------------
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]378
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]379 /**
380 * Set Upload Path
381 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]382 * @param string
383 * @return void
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]384 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]385 public function set_upload_path($path)
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]386 {
387 // Make sure it has a trailing slash
388 $this->upload_path = rtrim($path, '/').'/';
389 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]390
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]391 // --------------------------------------------------------------------
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]392
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]393 /**
394 * Set the file name
395 *
396 * This function takes a filename/path as input and looks for the
397 * existence of a file with the same name. If found, it will append a
398 * number to the end of the filename to avoid overwriting a pre-existing file.
399 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]400 * @param string
401 * @param string
402 * @return string
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]403 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]404 public function set_filename($path, $filename)
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]405 {
406 if ($this->encrypt_name == TRUE)
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]407 {
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]408 mt_srand();
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]409 $filename = md5(uniqid(mt_rand())).$this->file_ext;
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]410 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]411
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]412 if ( ! file_exists($path.$filename))
413 {
414 return $filename;
415 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]416
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]417 $filename = str_replace($this->file_ext, '', $filename);
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]418
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]419 $new_filename = '';
Adam Jackettccbbea12011-08-21 16:19:11 -0400[diff] [blame]420 for ($i = 1; $i < $this->max_filename_increment; $i++)
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]421 {
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]422 if ( ! file_exists($path.$filename.$i.$this->file_ext))
423 {
424 $new_filename = $filename.$i.$this->file_ext;
425 break;
426 }
427 }
428
429 if ($new_filename == '')
430 {
431 $this->set_error('upload_bad_filename');
432 return FALSE;
433 }
434 else
435 {
436 return $new_filename;
437 }
438 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]439
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]440 // --------------------------------------------------------------------
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]441
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]442 /**
443 * Set Maximum File Size
444 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]445 * @param integer
446 * @return void
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]447 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]448 public function set_max_filesize($n)
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]449 {
450 $this->max_size = ((int) $n < 0) ? 0: (int) $n;
451 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]452
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]453 // --------------------------------------------------------------------
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]454
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]455 /**
456 * Set Maximum File Name Length
457 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]458 * @param integer
459 * @return void
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]460 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]461 public function set_max_filename($n)
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]462 {
463 $this->max_filename = ((int) $n < 0) ? 0: (int) $n;
464 }
465
466 // --------------------------------------------------------------------
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]467
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]468 /**
469 * Set Maximum Image Width
470 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]471 * @param integer
472 * @return void
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]473 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]474 public function set_max_width($n)
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]475 {
476 $this->max_width = ((int) $n < 0) ? 0: (int) $n;
477 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]478
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]479 // --------------------------------------------------------------------
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]480
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]481 /**
482 * Set Maximum Image Height
483 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]484 * @param integer
485 * @return void
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]486 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]487 public function set_max_height($n)
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]488 {
489 $this->max_height = ((int) $n < 0) ? 0: (int) $n;
490 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]491
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]492 // --------------------------------------------------------------------
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]493
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]494 /**
495 * Set Allowed File Types
496 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]497 * @param string
498 * @return void
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]499 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]500 public function set_allowed_types($types)
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]501 {
Derek Jonese12f64e2010-03-02 22:55:08 -0600[diff] [blame]502 if ( ! is_array($types) && $types == '*')
503 {
504 $this->allowed_types = '*';
505 return;
506 }
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]507 $this->allowed_types = explode('|', $types);
508 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]509
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]510 // --------------------------------------------------------------------
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]511
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]512 /**
513 * Set Image Properties
514 *
515 * Uses GD to determine the width/height/type of image
516 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]517 * @param string
518 * @return void
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]519 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]520 public function set_image_properties($path = '')
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]521 {
522 if ( ! $this->is_image())
523 {
524 return;
525 }
526
527 if (function_exists('getimagesize'))
528 {
529 if (FALSE !== ($D = @getimagesize($path)))
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]530 {
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]531 $types = array(1 => 'gif', 2 => 'jpeg', 3 => 'png');
532
533 $this->image_width = $D['0'];
534 $this->image_height = $D['1'];
535 $this->image_type = ( ! isset($types[$D['2']])) ? 'unknown' : $types[$D['2']];
Derek Jones4b9c6292011-07-01 17:40:48 -0500[diff] [blame]536 $this->image_size_str = $D['3']; // string containing height and width
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]537 }
538 }
539 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]540
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]541 // --------------------------------------------------------------------
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]542
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]543 /**
544 * Set XSS Clean
545 *
546 * Enables the XSS flag so that the file that was uploaded
547 * will be run through the XSS filter.
548 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]549 * @param bool
550 * @return void
551 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]552 public function set_xss_clean($flag = FALSE)
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]553 {
554 $this->xss_clean = ($flag == TRUE) ? TRUE : FALSE;
555 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]556
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]557 // --------------------------------------------------------------------
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]558
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]559 /**
560 * Validate the image
561 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]562 * @return bool
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]563 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]564 public function is_image()
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]565 {
566 // IE will sometimes return odd mime-types during upload, so here we just standardize all
567 // jpegs or pngs to the same file type.
568
Derek Jones4b9c6292011-07-01 17:40:48 -0500[diff] [blame]569 $png_mimes = array('image/x-png');
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]570 $jpeg_mimes = array('image/jpg', 'image/jpe', 'image/jpeg', 'image/pjpeg');
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]571
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]572 if (in_array($this->file_type, $png_mimes))
573 {
574 $this->file_type = 'image/png';
575 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]576
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]577 if (in_array($this->file_type, $jpeg_mimes))
578 {
579 $this->file_type = 'image/jpeg';
580 }
581
582 $img_mimes = array(
583 'image/gif',
584 'image/jpeg',
585 'image/png',
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]586 );
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]587
588 return (in_array($this->file_type, $img_mimes, TRUE)) ? TRUE : FALSE;
589 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]590
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]591 // --------------------------------------------------------------------
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]592
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]593 /**
594 * Verify that the filetype is allowed
595 *
Andrey Andreev6ca407e2012-03-01 15:33:21 +0200[diff] [blame]596 * @param bool
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]597 * @return bool
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]598 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]599 public function is_allowed_filetype($ignore_mime = FALSE)
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]600 {
Andrey Andreev6ca407e2012-03-01 15:33:21 +0200[diff] [blame]601 if ($this->allowed_types === '*')
Derek Jonese12f64e2010-03-02 22:55:08 -0600[diff] [blame]602 {
603 return TRUE;
604 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]605
Andrey Andreev6ca407e2012-03-01 15:33:21 +0200[diff] [blame]606 if ( ! is_array($this->allowed_types) OR count($this->allowed_types) === 0)
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]607 {
608 $this->set_error('upload_no_file_types');
609 return FALSE;
610 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]611
Derek Jonese9d723f2010-07-12 10:10:59 -0500[diff] [blame]612 $ext = strtolower(ltrim($this->file_ext, '.'));
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]613
Derek Jonese9d723f2010-07-12 10:10:59 -0500[diff] [blame]614 if ( ! in_array($ext, $this->allowed_types))
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]615 {
Derek Jonese9d723f2010-07-12 10:10:59 -0500[diff] [blame]616 return FALSE;
617 }
Derek Jonesafa282f2009-02-10 17:11:52 +0000[diff] [blame]618
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]619 // Images get some additional checks
Derek Jonese9d723f2010-07-12 10:10:59 -0500[diff] [blame]620 $image_types = array('gif', 'jpg', 'jpeg', 'png', 'jpe');
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]621
Andrey Andreev6ca407e2012-03-01 15:33:21 +0200[diff] [blame]622 if (in_array($ext, $image_types) && @getimagesize($this->file_temp) === FALSE)
Derek Jonese9d723f2010-07-12 10:10:59 -0500[diff] [blame]623 {
Andrey Andreev6ca407e2012-03-01 15:33:21 +0200[diff] [blame]624 return FALSE;
Derek Jonese9d723f2010-07-12 10:10:59 -0500[diff] [blame]625 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]626
Derek Jonese9d723f2010-07-12 10:10:59 -0500[diff] [blame]627 if ($ignore_mime === TRUE)
628 {
629 return TRUE;
630 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]631
Derek Jonese9d723f2010-07-12 10:10:59 -0500[diff] [blame]632 $mime = $this->mimes_types($ext);
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]633
Derek Jonese9d723f2010-07-12 10:10:59 -0500[diff] [blame]634 if (is_array($mime))
635 {
636 if (in_array($this->file_type, $mime, TRUE))
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]637 {
Derek Jonese9d723f2010-07-12 10:10:59 -0500[diff] [blame]638 return TRUE;
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]639 }
Derek Jonese9d723f2010-07-12 10:10:59 -0500[diff] [blame]640 }
Andrey Andreev6ca407e2012-03-01 15:33:21 +0200[diff] [blame]641 elseif ($mime === $this->file_type)
Derek Jonese9d723f2010-07-12 10:10:59 -0500[diff] [blame]642 {
643 return TRUE;
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]644 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]645
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]646 return FALSE;
647 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]648
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]649 // --------------------------------------------------------------------
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]650
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]651 /**
652 * Verify that the file is within the allowed size
653 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]654 * @return bool
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]655 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]656 public function is_allowed_filesize()
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]657 {
Derek Jones4b9c6292011-07-01 17:40:48 -0500[diff] [blame]658 if ($this->max_size != 0 AND $this->file_size > $this->max_size)
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]659 {
660 return FALSE;
661 }
662 else
663 {
664 return TRUE;
665 }
666 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]667
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]668 // --------------------------------------------------------------------
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]669
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]670 /**
671 * Verify that the image is within the allowed width/height
672 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]673 * @return bool
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]674 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]675 public function is_allowed_dimensions()
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]676 {
677 if ( ! $this->is_image())
678 {
679 return TRUE;
680 }
681
682 if (function_exists('getimagesize'))
683 {
684 $D = @getimagesize($this->file_temp);
685
686 if ($this->max_width > 0 AND $D['0'] > $this->max_width)
687 {
688 return FALSE;
689 }
690
691 if ($this->max_height > 0 AND $D['1'] > $this->max_height)
692 {
693 return FALSE;
694 }
695
696 return TRUE;
697 }
698
699 return TRUE;
700 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]701
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]702 // --------------------------------------------------------------------
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]703
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]704 /**
705 * Validate Upload Path
706 *
707 * Verifies that it is a valid upload path with proper permissions.
708 *
709 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]710 * @return bool
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]711 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]712 public function validate_upload_path()
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]713 {
714 if ($this->upload_path == '')
715 {
716 $this->set_error('upload_no_filepath');
717 return FALSE;
718 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]719
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]720 if (function_exists('realpath') AND @realpath($this->upload_path) !== FALSE)
721 {
722 $this->upload_path = str_replace("\\", "/", realpath($this->upload_path));
723 }
724
725 if ( ! @is_dir($this->upload_path))
726 {
727 $this->set_error('upload_no_filepath');
728 return FALSE;
729 }
730
731 if ( ! is_really_writable($this->upload_path))
732 {
733 $this->set_error('upload_not_writable');
734 return FALSE;
735 }
736
Derek Jones4b9c6292011-07-01 17:40:48 -0500[diff] [blame]737 $this->upload_path = preg_replace("/(.+?)\/*$/", "\\1/", $this->upload_path);
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]738 return TRUE;
739 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]740
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]741 // --------------------------------------------------------------------
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]742
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]743 /**
744 * Extract the file extension
745 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]746 * @param string
747 * @return string
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]748 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]749 public function get_extension($filename)
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]750 {
751 $x = explode('.', $filename);
752 return '.'.end($x);
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]753 }
754
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]755 // --------------------------------------------------------------------
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]756
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]757 /**
758 * Clean the file name for security
759 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]760 * @param string
761 * @return string
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]762 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]763 public function clean_file_name($filename)
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]764 {
765 $bad = array(
766 "<!--",
767 "-->",
768 "'",
769 "<",
770 ">",
771 '"',
772 '&',
773 '$',
774 '=',
775 ';',
776 '?',
777 '/',
778 "%20",
779 "%22",
780 "%3c", // <
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]781 "%253c", // <
782 "%3e", // >
783 "%0e", // >
784 "%28", // (
785 "%29", // )
786 "%2528", // (
787 "%26", // &
788 "%24", // $
789 "%3f", // ?
790 "%3b", // ;
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]791 "%3d" // =
792 );
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]793
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]794 $filename = str_replace($bad, '', $filename);
795
796 return stripslashes($filename);
797 }
798
799 // --------------------------------------------------------------------
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]800
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]801 /**
802 * Limit the File Name Length
803 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]804 * @param string
805 * @return string
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]806 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]807 public function limit_filename_length($filename, $length)
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]808 {
809 if (strlen($filename) < $length)
810 {
811 return $filename;
812 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]813
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]814 $ext = '';
815 if (strpos($filename, '.') !== FALSE)
816 {
817 $parts = explode('.', $filename);
818 $ext = '.'.array_pop($parts);
819 $filename = implode('.', $parts);
820 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]821
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]822 return substr($filename, 0, ($length - strlen($ext))).$ext;
823 }
824
825 // --------------------------------------------------------------------
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]826
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]827 /**
828 * Runs the file through the XSS clean function
829 *
830 * This prevents people from embedding malicious code in their files.
831 * I'm not sure that it won't negatively affect certain files in unexpected ways,
832 * but so far I haven't found that it causes trouble.
833 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]834 * @return void
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]835 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]836 public function do_xss_clean()
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]837 {
Derek Jonese9d723f2010-07-12 10:10:59 -0500[diff] [blame]838 $file = $this->file_temp;
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]839
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]840 if (filesize($file) == 0)
841 {
842 return FALSE;
843 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]844
Greg Akerf82e51c2010-04-14 19:33:50 -0500[diff] [blame]845 if (function_exists('memory_get_usage') && memory_get_usage() && ini_get('memory_limit') != '')
846 {
847 $current = ini_get('memory_limit') * 1024 * 1024;
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]848
Greg Akerc78a2592010-06-09 11:45:32 -0500[diff] [blame]849 // There was a bug/behavioural change in PHP 5.2, where numbers over one million get output
Derek Jones4b9c6292011-07-01 17:40:48 -0500[diff] [blame]850 // into scientific notation. number_format() ensures this number is an integer
Greg Akerc78a2592010-06-09 11:45:32 -0500[diff] [blame]851 // http://bugs.php.net/bug.php?id=43053
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]852
Greg Akerc78a2592010-06-09 11:45:32 -0500[diff] [blame]853 $new_memory = number_format(ceil(filesize($file) + $current), 0, '.', '');
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]854
Greg Akerc78a2592010-06-09 11:45:32 -0500[diff] [blame]855 ini_set('memory_limit', $new_memory); // When an integer is used, the value is measured in bytes. - PHP.net
Greg Akerf82e51c2010-04-14 19:33:50 -0500[diff] [blame]856 }
857
858 // If the file being uploaded is an image, then we should have no problem with XSS attacks (in theory), but
859 // IE can be fooled into mime-type detecting a malformed image as an html file, thus executing an XSS attack on anyone
Derek Jones4b9c6292011-07-01 17:40:48 -0500[diff] [blame]860 // using IE who looks at the image. It does this by inspecting the first 255 bytes of an image. To get around this
861 // CI will itself look at the first 255 bytes of an image to determine its relative safety. This can save a lot of
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]862 // processor power and time if it is actually a clean image, as it will be in nearly all instances _except_ an
Greg Akerf82e51c2010-04-14 19:33:50 -0500[diff] [blame]863 // attempted XSS attack.
864
865 if (function_exists('getimagesize') && @getimagesize($file) !== FALSE)
866 {
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]867 if (($file = @fopen($file, 'rb')) === FALSE) // "b" to force binary
868 {
Greg Akerf82e51c2010-04-14 19:33:50 -0500[diff] [blame]869 return FALSE; // Couldn't open the file, return FALSE
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]870 }
Greg Akerf82e51c2010-04-14 19:33:50 -0500[diff] [blame]871
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]872 $opening_bytes = fread($file, 256);
873 fclose($file);
Greg Akerf82e51c2010-04-14 19:33:50 -0500[diff] [blame]874
875 // These are known to throw IE into mime-type detection chaos
876 // <a, <body, <head, <html, <img, <plaintext, <pre, <script, <table, <title
877 // title is basically just in SVG, but we filter it anyhow
878
879 if ( ! preg_match('/<(a|body|head|html|img|plaintext|pre|script|table|title)[\s>]/i', $opening_bytes))
880 {
881 return TRUE; // its an image, no "triggers" detected in the first 256 bytes, we're good
882 }
883 }
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]884
885 if (($data = @file_get_contents($file)) === FALSE)
886 {
887 return FALSE;
888 }
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]889
Greg Akerf82e51c2010-04-14 19:33:50 -0500[diff] [blame]890 $CI =& get_instance();
Greg Akerf82e51c2010-04-14 19:33:50 -0500[diff] [blame]891 return $CI->security->xss_clean($data, TRUE);
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]892 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]893
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]894 // --------------------------------------------------------------------
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]895
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]896 /**
897 * Set an error message
898 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]899 * @param string
900 * @return void
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]901 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]902 public function set_error($msg)
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]903 {
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]904 $CI =& get_instance();
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]905 $CI->lang->load('upload');
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]906
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]907 if (is_array($msg))
908 {
909 foreach ($msg as $val)
910 {
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]911 $msg = ($CI->lang->line($val) == FALSE) ? $val : $CI->lang->line($val);
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]912 $this->error_msg[] = $msg;
913 log_message('error', $msg);
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]914 }
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]915 }
916 else
917 {
918 $msg = ($CI->lang->line($msg) == FALSE) ? $msg : $CI->lang->line($msg);
919 $this->error_msg[] = $msg;
920 log_message('error', $msg);
921 }
922 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]923
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]924 // --------------------------------------------------------------------
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]925
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]926 /**
927 * Display the error message
928 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]929 * @param string
930 * @param string
931 * @return string
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]932 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]933 public function display_errors($open = '<p>', $close = '</p>')
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]934 {
Andrey Andreev4eea9892011-12-19 12:05:41 +0200[diff] [blame]935 return (count($this->error_msg) > 0) ? $open . implode($close . $open, $this->error_msg) . $close : '';
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]936 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]937
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]938 // --------------------------------------------------------------------
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]939
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]940 /**
941 * List of Mime Types
942 *
Derek Jones4b9c6292011-07-01 17:40:48 -0500[diff] [blame]943 * This is a list of mime types. We use it to validate
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]944 * the "allowed types" set by the developer
945 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]946 * @param string
947 * @return string
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]948 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]949 public function mimes_types($mime)
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]950 {
951 global $mimes;
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]952
Greg Akerd96f8822011-12-27 16:23:47 -0600[diff] [blame]953 if (count($this->mimes) == 0)
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]954 {
Greg Akerd96f8822011-12-27 16:23:47 -0600[diff] [blame]955 if (defined('ENVIRONMENT') AND is_file(APPPATH.'config/'.ENVIRONMENT.'/mimes.php'))
956 {
957 include(APPPATH.'config/'.ENVIRONMENT.'/mimes.php');
958 }
959 elseif (is_file(APPPATH.'config/mimes.php'))
960 {
Michiel Vugteveenb5783262012-02-29 15:40:28 +0100[diff] [blame]961 include(APPPATH.'config/mimes.php');
Greg Akerd96f8822011-12-27 16:23:47 -0600[diff] [blame]962 }
963 else
bubbafoley0ea04142011-03-17 14:55:41 -0500[diff] [blame]964 {
Eric Barnesfdd5b112011-03-21 21:28:58 -0400[diff] [blame]965 return FALSE;
bubbafoley0ea04142011-03-17 14:55:41 -0500[diff] [blame]966 }
Eric Barnes92808342011-03-18 09:02:37 -0400[diff] [blame]967
Eric Barnesfdd5b112011-03-21 21:28:58 -0400[diff] [blame]968 $this->mimes = $mimes;
969 unset($mimes);
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]970 }
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]971
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]972 return ( ! isset($this->mimes[$mime])) ? FALSE : $this->mimes[$mime];
973 }
974
975 // --------------------------------------------------------------------
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]976
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]977 /**
978 * Prep Filename
979 *
980 * Prevents possible script execution from Apache's handling of files multiple extensions
981 * http://httpd.apache.org/docs/1.3/mod/mod_mime.html#multipleext
982 *
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]983 * @param string
984 * @return string
985 */
Greg Aker58fdee82010-11-10 15:07:09 -0600[diff] [blame]986 protected function _prep_filename($filename)
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]987 {
Greg Aker924000e2010-07-22 11:04:58 -0500[diff] [blame]988 if (strpos($filename, '.') === FALSE OR $this->allowed_types == '*')
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]989 {
990 return $filename;
991 }
Derek Allard616dab82009-02-16 15:44:32 +0000[diff] [blame]992
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]993 $parts = explode('.', $filename);
994 $ext = array_pop($parts);
995 $filename = array_shift($parts);
Derek Allard616dab82009-02-16 15:44:32 +0000[diff] [blame]996
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]997 foreach ($parts as $part)
998 {
Derek Jonese9d723f2010-07-12 10:10:59 -0500[diff] [blame]999 if ( ! in_array(strtolower($part), $this->allowed_types) OR $this->mimes_types(strtolower($part)) === FALSE)
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]1000 {
1001 $filename .= '.'.$part.'_';
1002 }
1003 else
1004 {
1005 $filename .= '.'.$part;
1006 }
1007 }
Derek Allardd70b0642009-02-16 13:51:42 +0000[diff] [blame]1008
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]1009 $filename .= '.'.$ext;
Barry Mienydd671972010-10-04 16:33:58 +0200[diff] [blame]1010
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]1011 return $filename;
1012 }
1013
1014 // --------------------------------------------------------------------
1015
Andrey Andreev3a3c9472011-09-24 14:25:33 +0300[diff] [blame]1016 /**
1017 * File MIME type
1018 *
1019 * Detects the (actual) MIME type of the uploaded file, if possible.
1020 * The input array is expected to be $_FILES[$field]
1021 *
1022 * @param array
1023 * @return void
1024 */
1025 protected function _file_mime_type($file)
1026 {
Andrey Andreeva49e3812011-12-09 13:05:22 +0200[diff] [blame]1027 // We'll need this to validate the MIME info string (e.g. text/plain; charset=us-ascii)
Andrey Andreevf7aed122011-12-13 11:01:06 +0200[diff] [blame]1028 $regexp = '/^([a-z\-]+\/[a-z0-9\-\.\+]+)(;\s.+)?$/';
Andrey Andreeva49e3812011-12-09 13:05:22 +0200[diff] [blame]1029
1030 /* Fileinfo extension - most reliable method
1031 *
1032 * Unfortunately, prior to PHP 5.3 - it's only available as a PECL extension and the
1033 * more convenient FILEINFO_MIME_TYPE flag doesn't exist.
1034 */
1035 if (function_exists('finfo_file'))
Andrey Andreev3a3c9472011-09-24 14:25:33 +0300[diff] [blame]1036 {
Andrey Andreeva49e3812011-12-09 13:05:22 +0200[diff] [blame]1037 $finfo = finfo_open(FILEINFO_MIME);
1038 if (is_resource($finfo)) // It is possible that a FALSE value is returned, if there is no magic MIME database file found on the system
Andrey Andreev3a3c9472011-09-24 14:25:33 +0300[diff] [blame]1039 {
Andrey Andreeva49e3812011-12-09 13:05:22 +0200[diff] [blame]1040 $mime = @finfo_file($finfo, $file['tmp_name']);
1041 finfo_close($finfo);
Andrey Andreev3a3c9472011-09-24 14:25:33 +0300[diff] [blame]1042
1043 /* According to the comments section of the PHP manual page,
1044 * it is possible that this function returns an empty string
Andrey Andreev2cec39f2011-09-24 22:59:37 +0300[diff] [blame]1045 * for some files (e.g. if they don't exist in the magic MIME database)
Andrey Andreev3a3c9472011-09-24 14:25:33 +0300[diff] [blame]1046 */
Andrey Andreeva49e3812011-12-09 13:05:22 +0200[diff] [blame]1047 if (is_string($mime) && preg_match($regexp, $mime, $matches))
Andrey Andreev3a3c9472011-09-24 14:25:33 +0300[diff] [blame]1048 {
Andrey Andreeva49e3812011-12-09 13:05:22 +0200[diff] [blame]1049 $this->file_type = $matches[1];
Andrey Andreev3a3c9472011-09-24 14:25:33 +0300[diff] [blame]1050 return;
1051 }
1052 }
1053 }
1054
Andrey Andreeva49e3812011-12-09 13:05:22 +0200[diff] [blame]1055 /* This is an ugly hack, but UNIX-type systems provide a "native" way to detect the file type,
1056 * which is still more secure than depending on the value of $_FILES[$field]['type'], and as it
1057 * was reported in issue #750 (https://github.com/EllisLab/CodeIgniter/issues/750) - it's better
1058 * than mime_content_type() as well, hence the attempts to try calling the command line with
1059 * three different functions.
Andrey Andreev6700b932011-09-24 14:25:33 +0300[diff] [blame]1060 *
1061 * Notes:
Andrey Andreev59654312011-12-02 14:28:54 +0200[diff] [blame]1062 * - the DIRECTORY_SEPARATOR comparison ensures that we're not on a Windows system
Andrey Andreeva49e3812011-12-09 13:05:22 +0200[diff] [blame]1063 * - many system admins would disable the exec(), shell_exec(), popen() and similar functions
1064 * due to security concerns, hence the function_exists() checks
Andrey Andreev6700b932011-09-24 14:25:33 +0300[diff] [blame]1065 */
Andrey Andreeva49e3812011-12-09 13:05:22 +0200[diff] [blame]1066 if (DIRECTORY_SEPARATOR !== '\\')
Andrey Andreev6700b932011-09-24 14:25:33 +0300[diff] [blame]1067 {
Andrey Andreeva49e3812011-12-09 13:05:22 +0200[diff] [blame]1068 $cmd = 'file --brief --mime ' . escapeshellarg($file['tmp_name']) . ' 2>&1';
1069
1070 if (function_exists('exec'))
Andrey Andreev6700b932011-09-24 14:25:33 +0300[diff] [blame]1071 {
Andrey Andreeva49e3812011-12-09 13:05:22 +0200[diff] [blame]1072 /* This might look confusing, as $mime is being populated with all of the output when set in the second parameter.
1073 * However, we only neeed the last line, which is the actual return value of exec(), and as such - it overwrites
1074 * anything that could already be set for $mime previously. This effectively makes the second parameter a dummy
1075 * value, which is only put to allow us to get the return status code.
1076 */
1077 $mime = @exec($cmd, $mime, $return_status);
1078 if ($return_status === 0 && is_string($mime) && preg_match($regexp, $mime, $matches))
1079 {
1080 $this->file_type = $matches[1];
1081 return;
1082 }
1083 }
1084
1085 if ( (bool) @ini_get('safe_mode') === FALSE && function_exists('shell_exec'))
1086 {
1087 $mime = @shell_exec($cmd);
1088 if (strlen($mime) > 0)
1089 {
1090 $mime = explode("\n", trim($mime));
1091 if (preg_match($regexp, $mime[(count($mime) - 1)], $matches))
1092 {
1093 $this->file_type = $matches[1];
1094 return;
1095 }
1096 }
1097 }
1098
1099 if (function_exists('popen'))
1100 {
1101 $proc = @popen($cmd, 'r');
1102 if (is_resource($proc))
1103 {
tubalmartin010f1f42012-03-03 22:24:31 +0100[diff] [blame]1104 $mime = @fread($proc, 512);
Andrey Andreeva49e3812011-12-09 13:05:22 +0200[diff] [blame]1105 @pclose($proc);
1106 if ($mime !== FALSE)
1107 {
1108 $mime = explode("\n", trim($mime));
1109 if (preg_match($regexp, $mime[(count($mime) - 1)], $matches))
1110 {
1111 $this->file_type = $matches[1];
1112 return;
1113 }
1114 }
1115 }
1116 }
1117 }
1118
1119 // Fall back to the deprecated mime_content_type(), if available (still better than $_FILES[$field]['type'])
Andrey Andreev3a3c9472011-09-24 14:25:33 +0300[diff] [blame]1120 if (function_exists('mime_content_type'))
1121 {
1122 $this->file_type = @mime_content_type($file['tmp_name']);
Andrey Andreeva49e3812011-12-09 13:05:22 +0200[diff] [blame]1123 if (strlen($this->file_type) > 0) // It's possible that mime_content_type() returns FALSE or an empty string
Andrey Andreev3a3c9472011-09-24 14:25:33 +0300[diff] [blame]1124 {
Andrey Andreev3a3c9472011-09-24 14:25:33 +0300[diff] [blame]1125 return;
1126 }
1127 }
1128
1129 $this->file_type = $file['type'];
1130 }
1131
1132 // --------------------------------------------------------------------
1133
Derek Allard2067d1a2008-11-13 22:59:24 +0000[diff] [blame]1134}
1135// END Upload Class
1136
1137/* End of file Upload.php */
Andrey Andreev4eea9892011-12-19 12:05:41 +0200[diff] [blame]1138/* Location: ./system/libraries/Upload.php */