' . "\n"; $memUsage = $current; } if (!function_exists('file_get_contents')) { function file_get_contents($filename, $use_include_path = 0) { $file = fopen($filename, 'rb', $use_include_path); $data = ''; if ($file) { while (!feof($file)) { $data .= fread($file, 4096); } fclose($file); } return $data; } } if (!isset($_REQUEST)) { $_REQUEST = &$HTTP_REQUEST_VARS; } if (!isset($_POST)) { $_POST = &$HTTP_POST_VARS; } if (!isset($_GET)) { $_GET = &$HTTP_GET_VARS; } if (!isset($_SESSION)) { $_SESSION = &$HTTP_SESSION_VARS; } if (!isset($_COOKIE)) { $_COOKIE = &$HTTP_COOKIE_VARS; } if (!isset($_SERVER)) { $_SERVER = &$HTTP_SERVER_VARS; } if (extension_loaded('filter') && function_exists('input_name_to_filter') && input_name_to_filter(ini_get('filter.default')) !== FILTER_UNSAFE_RAW) { foreach ($_POST as $key => $value) { $_POST[$key] = input_get(INPUT_POST, $key, FILTER_UNSAFE_RAW); } foreach ($_GET as $key => $value) { $_GET[$key] = input_get(INPUT_GET, $key, FILTER_UNSAFE_RAW); } foreach ($_COOKIE as $key => $value) { $_COOKIE[$key] = input_get(INPUT_COOKIE, $key, FILTER_UNSAFE_RAW); } // NOT YET IMPLEMENTED IN PHP: /* foreach ($_SESSION as $key => $value) { $_SESSION[$key] = input_get(INPUT_SESSION, $key, FILTER_UNSAFE_RAW); } */ } if (extension_loaded('filter') && function_exists('filter_id') && function_exists('filter_input') && filter_id(ini_get('filter.default')) !== FILTER_UNSAFE_RAW) { foreach ($_POST as $key => $value) { $_POST[$key] = filter_input(INPUT_POST, $key, FILTER_UNSAFE_RAW); } foreach ($_GET as $key => $value) { $_GET[$key] = filter_input(INPUT_GET, $key, FILTER_UNSAFE_RAW); } foreach ($_COOKIE as $key => $value) { $_COOKIE[$key] = filter_input(INPUT_COOKIE, $key, FILTER_UNSAFE_RAW); } // NOT YET IMPLEMENTED IN PHP: /* foreach ($_SESSION as $key => $value) { $_SESSION[$key] = filter_input(INPUT_SESSION, $key, FILTER_UNSAFE_RAW); } */ } /* * Avoid magic_quotes_gpc issues * courtesy of iliaa@php.net */ function serendipity_strip_quotes(&$var) { if (is_array($var)) { foreach ($var as $k => $v) { if (is_array($v)) { array_walk($var[$k], 'serendipity_strip_quotes'); } else { $var[$k] = stripslashes($v); } } } else { $var = stripslashes($var); } } if (ini_get('magic_quotes_gpc')) { if (@count($_REQUEST)) { array_walk($_REQUEST, 'serendipity_strip_quotes'); } if (@count($_GET)) { array_walk($_GET, 'serendipity_strip_quotes'); } if (@count($_POST)) { array_walk($_POST, 'serendipity_strip_quotes'); } if (@count($_COOKIE)) { array_walk($_COOKIE, 'serendipity_strip_quotes'); } if (@count($_FILES) && strtoupper(substr(PHP_OS, 0, 3)) !== 'WIN') { array_walk($_FILES, 'serendipity_strip_quotes'); } } // Merge get and post into the serendipity array $serendipity['GET'] = &$_GET['serendipity']; $serendipity['POST'] = &$_POST['serendipity']; $serendipity['COOKIE'] = &$_COOKIE['serendipity']; // Attempt to fix IIS compatibility if (empty($_SERVER['REQUEST_URI'])) { $_SERVER['REQUEST_URI'] = $_SERVER['SCRIPT_NAME'] . '?' . (!empty($_SERVER['QUERY_STRING']) ? $_SERVER['QUERY_STRING'] : ''); } // Some security issues if (isset($serendipity['GET']['searchTerm'])) { $serendipity['GET']['searchTerm'] = htmlspecialchars(strip_tags($serendipity['GET']['searchTerm'])); } /** * Translate values coming from the Database into native PHP variables to detect boolean values. * * @access public * @param string input value * @return boolean boolean output value */ function serendipity_get_bool($item) { static $translation = array('true' => true, 'false' => false); if (isset($translation[$item])) { return $translation[$item]; } else { return $item; } } /** * Get the current charset * * @return string Empty string or "UTF-8/". */ function serendipity_getCharset() { global $serendipity; $charset = $serendipity['charset']; if (!empty($_POST['charset'])) { if ($_POST['charset'] == 'UTF-8/') { $charset = 'UTF-8/'; } else { $charset = ''; } } if (!empty($serendipity['POST']['charset'])) { if ($serendipity['POST']['charset'] == 'UTF-8/') { $charset = 'UTF-8/'; } else { $charset = ''; } } return $charset; } /** * Detect the language of the User Agent/Visitor * * This function needs to be included at this point so that it is globally available, also * during installation. * * @access public * @param boolean Toggle whether to include the language that has been autodetected. * @return string Return the detected language name */ function serendipity_detectLang($use_include = false) { global $serendipity; $supported_languages = array_keys($serendipity['languages']); $possible_languages = explode(',', (isset($_SERVER['HTTP_ACCEPT_LANGUAGE']) ? $_SERVER['HTTP_ACCEPT_LANGUAGE'] : '')); if (is_array($possible_languages)) { $charset = serendipity_getCharset(); foreach($possible_languages as $index => $lang) { $preferred_language = strtolower(preg_replace('@^([^\-_;]*)_?.*$@', '\1', $lang)); if (in_array($preferred_language, $supported_languages)) { if ($use_include) { @include(S9Y_INCLUDE_PATH . 'lang/' . $charset . 'serendipity_lang_' . $preferred_language . '.inc.php'); $serendipity['autolang'] = $preferred_language; } return $preferred_language; } // endif } // endforeach } // endif return $serendipity['lang']; } /** * Get the current serendipity version, minus the "-alpha", "-beta" or whatever tags * * @access public * @param string Serendipity version * @return string Serendipity version, stripped of unneeded parts */ function serendipity_getCoreVersion($version) { return preg_replace('@^([0-9\.]+).*$@', '\1', $version); } /** * Make Serendipity emit an error message and terminate the script * * @access public * @param string HTML code to die with * @return null */ function serendipity_die($html) { die( ' ' . $html . ' '); } /* * Some defaults for our config vars. * They are likely to be overwritten later in the code */ $serendipity['templatePath'] = 'templates/'; if (!isset($serendipity['serendipityPath'])) { $serendipity['serendipityPath'] = (defined('S9Y_INCLUDE_PATH') ? S9Y_INCLUDE_PATH : './'); } $serendipity['indexFile'] = 'index.php'; /* vim: set sts=4 ts=4 expandtab : */