Issues in install.php (master) - Issues in master - EVE-KILL/zKillboard - Measure and Improve Code Quality continuously with Scrutinizer

Issues (438)

Security Analysis not enabled

Cross-Site Scripting

Cross-Site Scripting enables an attacker to inject code into the response of a web-request that is viewed by other users. It can for example be used to bypass access controls, or even to take over other users' accounts.

File Exposure

File Exposure allows an attacker to gain access to local files that he should not be able to access. These files can for example include database credentials, or other configuration files.

File Manipulation

File Manipulation enables an attacker to write custom data to files. This potentially leads to injection of arbitrary code on the server.

Object Injection

Object Injection enables an attacker to inject an object into PHP code, and can lead to arbitrary code execution, file exposure, or file manipulation attacks.

Code Injection

Code Injection enables an attacker to execute arbitrary code on the server.

Response Splitting

Response Splitting can be used to send arbitrary responses.

File Inclusion

File Inclusion enables an attacker to inject custom files into PHP's file loading mechanism, either explicitly passed to include, or for example via PHP's auto-loading mechanism.

Command Injection

Command Injection enables an attacker to inject a shell command that is execute with the privileges of the web-server. This can be used to expose sensitive data, or gain access of your server.

SQL Injection

SQL Injection enables an attacker to execute arbitrary SQL code on your database server gaining access to user data, or manipulating user data.

XPath Injection

XPath Injection enables an attacker to modify the parts of XML document that are read. If that XML document is for example used for authentication, this can lead to further vulnerabilities similar to SQL Injection.

LDAP Injection

LDAP Injection enables an attacker to inject LDAP statements potentially granting permission to run unauthorized queries, or modify content inside the LDAP tree.

Header Injection

Other Vulnerability

This category comprises other attack vectors such as manipulating the PHP runtime, loading custom extensions, freezing the runtime, or similar.

Regex Injection

Regex Injection enables an attacker to execute arbitrary code in your PHP process.

XML Injection

XML Injection enables an attacker to read files on your local filesystem including configuration files, or can be abused to freeze your web-server process.

Variable Injection

Variable Injection enables an attacker to overwrite program variables with custom data, and can lead to further vulnerabilities.

Unfortunately, the security analysis is currently not available for your project. If you are a non-commercial open-source project, please contact support to gain access.

install/install.php (3 issues)

Labels

Severity

Michael Karbowiak 3

Upgrade to new PHP Analysis Engine

These results are based on our legacy PHP analysis, consider migrating to our new PHP analysis engine instead. Learn more

<?php
/* zKillboard
 * Copyright (C) 2012-2015 EVE-KILL Team and EVSCO.
 *
 * This program is free software: you can redistribute it and/or modify
 * it under the terms of the GNU Affero General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU Affero General Public License for more details.
 *
 * You should have received a copy of the GNU Affero General Public License
 * along with this program.  If not, see <http://www.gnu.org/licenses/>.
 */
if(php_sapi_name() != "cli")
    die("This is a cli script!");

$base = dirname(__FILE__);

function exception_error_handler($errno, $errstr, $errfile, $errline )
{
	if (error_reporting() === 0) { return; } //error has been suppressed with "@"
    throw new ErrorException($errstr, $errno, 0, $errfile, $errline);
}

// Force all warnings into errors
set_error_handler("exception_error_handler");

if (file_exists("$base/../config.php"))
{
	out("|r|Your config.php is already setup, if you want to reinstall please delete it.", true);
}

out("We will prompt you with a few questions. If at any time you are unsure and want to back out of the installation hit |g|CTRL+C.|n|

Questions will always have a default answer specified in []'s. Example: |g|What is 1+1? [2]|n|
Hitting enter will let you select the default answer.");

$settings = array();

// Database
$settings["dbuser"] = prompt("Database username?", "zkillboard");
$settings["dbpassword"] = prompt("Database password?", "zkillboard");
$settings["dbname"] = prompt("Database name?", "zkillboard");
$settings["dbhost"] = prompt("Database server?", "localhost");

// Memcache
$settings["memcache"] = "";
$settings["memcacheport"] = "";

$memc = prompt("|g|Do you have memcached installed?|n|", "yes");
if($memc == "yes")
{
	$settings["memcache"] = prompt("Memcache server?", "localhost");
	$settings["memcacheport"] = prompt("Memcache port?", "11211");
}

// Redis
$settings["redis"] = "";
$settings["redisport"] = "";

$redis = prompt("|g|Do you have Redis and Phpredis installed?|n|", "yes");
if($redis == "yes")
{
	$settings["redis"] = prompt("Redis server?", "localhost");
	$settings["redisport"] = prompt("Redis port?", "6379");
}

// Pheal cache
out("|g|It is highly recommended you find a good location other than the default for these files.|n|");
$settings["phealcachelocation"] = prompt("Where do you want to store Pheal's cache files?", "/tmp/");

// Server addr
out("What is the address of your server? |g|e.g. zkillboard.com|n|");
$settings["baseaddr"] = prompt("Domain name?", "zkillboard.com");

// Log
$settings["logfile"] = prompt("Log file location?", "/var/log/zkb.log");
touch($settings["logfile"]); // Touch the log file so that it'll actually get created.

// Image server
out("Image and API server.");
$settings["apiserver"] = prompt("API Server?", "https://api.eveonline.com/");
$settings["imageserver"] = prompt("Image Server?", "https://image.eveonline.com/");

// Secret key for cookies
out("A secret key is needed for your cookies to be encrypted.");
$cookiesecret = prompt("Secret key for cookies?", uniqid(time()));
$settings["cookiesecret"] = sha1($cookiesecret);

// Set admin password
require $base.'/../classes/Password.php';
out("Set password for 'admin' user. It's recommend to change this!");
$admpw = prompt("Password", substr(str_shuffle('abcefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890'), 0, 12));
$admpw = Password::genPassword($admpw);

// Get default config
$configFile = file_get_contents("$base/config.new.php");

// Create the new config
foreach($settings as $key=>$value)
	$configFile = str_replace("%$key%", $value, $configFile);

// Save the file and then attempt to load and initialize from that file
$configLocation = "$base/../config.php";
if (file_put_contents($configLocation, $configFile) === false)
	out("|r|Unable to write configuration file at $configLocation", true);

try
{
	out("|g|Config file written, now attempting to initialize settings");
	require_once( "$base/../config.php" );

	// Check if composer isn't already installed
	$location = exec("which composer");
	if(!$location) // Composer isn't installed
	{
		out("Installing composer:\n");
		chdir("$base/..");

		passthru("php -r \"eval('?>'.file_get_contents('https://getcomposer.org/installer'));\"");

		chdir("$base/..");
		out("\nInstalling vendor files");
		passthru("php composer.phar install --optimize-autoloader");

		out("\n|g|composer install complete!");
	}
	else // Composer IS installed
	{
		out("Using already installed composer:\n");
		chdir("$base/..");
		out("\nInstalling vendor files.");
		passthru("composer install --optimize-autoloader");
		out("\n|g|Vendor file installation completed.");
	}
	chdir("$base/..");

	require_once("$base/../init.php" );

	$one = Db::queryField("select 1 one from dual", "one", array(), 1);
	if ($one != "1")
		throw new Exception("We were able to connect but the database did not return the expected '1' for: select 1 one from dual;");

	out("|g|Success! Database initialized.");
}
catch (Exception $ex)
{
	out("|r|Error! Removing configuration file.");
	unlink($configLocation);
	throw $ex;
}

$ln = false;
// Move bash_complete_zkillboard to the bash_complete folder
try
{
	file_put_contents("/etc/bash_completion.d/zkillboard", file_get_contents("$base/bash_complete_zkillboard"));
	exec("chmod +x $base/../cli.php");
	$ln = true;
}
catch (Exception $ex)
{
	out("|r|Error! Couldn't move the bash_complete file into /etc/bash_completion.d/, please do this after the installer is done.");
}

// ln the cli into /usr/sbin/zkillboard
if($ln == true)

{
	try
	{
		passthru("ln -s $base/../cli.php /usr/sbin/zkillboard");
	}
	catch(Exception $e)
	{
		out("|r|Error!|n| file most likely already exists. Check after the installer is done, and if it doesn't, run: ln -s $base/../cli.php /usr/sbin/zkillboard");
	}
}

// move cron.overrides to main dir
// Save the file and then attempt to load and initialize from that file
$cronoverridesLoc = "$base/../cron.overrides";
$cronOverrides = file_get_contents("$base/cronoverrides");
if (file_put_contents($cronoverridesLoc, $cronOverrides) === false)
	out("|r|Unable to write cron.overrides at $cronoverridesLoc", true);

// Now install the db structure
try
{
	$sqlFiles = scandir("$base/sql");
	foreach($sqlFiles as $file)
	{
		if (Util::endsWith($file, ".sql"))
		{
			$table = str_replace(".sql", "", $file);
			out("Adding table |g|$table|n| ... ", false, false);
			$sqlFile = "$base/sql/$file";
			loadFile($sqlFile);
			// Ensure the table starts with base parameters and doesn't inherit anything from zkillboard.com
			if (!Util::startsWith($table, "ccp_"))
				Db::execute("truncate table $table");

			out("|g|done");
		}
	}
}
catch (Exception $ex)
{
	out("|r|Error! Removing configuration file.");
	unlink($configLocation);
	throw $ex;
}

out("Updating CCP tables to the latest version");
passthru("php $base/../cli.php updateCCPData");

try
{
	out("|g|Installing default admin user...");
	// Install the default admin user
	Db::execute("INSERT INTO zz_users (username, moderator, admin, password) VALUES ('admin', 1, 1, '".$admpw."')");
}
catch (Exception $ex)
{
	out("|r|Error! Unable to add default admin user...");
	unlink($configLocation);
	throw $ex;
}

out("|g|Creating cache directories");
@mkdir($baseDir."cache/");
@mkdir($baseDir."cache/sessions/");
@mkdir($baseDir."cache/pheal/");

out("|g|Enjoy your new installation of zKillboard, you may browse to it here: http://" . $settings["baseaddr"] . "\n");
exit;

function loadFile($file)
{
	if (Util::endsWith($file, ".gz")) $handle = gzopen($file, "r");
	else $handle = fopen($file, "r");

	$query = "";
	while ($buffer = fgets($handle))
	{
		$query .= $buffer;
		if (strpos($query, ";") !== false)
		{
			$query = str_replace(";", "", $query);
			Db::execute($query);
			$query = "";
		}
	}
	fclose($handle);
}

function out($message, $die = false, $newline = true)

{
	$colors = array(
		"|w|" => "1;37", //White
		"|b|" => "0;34", //Blue
		"|g|" => "0;32", //Green
		"|r|" => "0;31", //Red
		"|n|" => "0" //Neutral
		);

	$message = "$message|n|";
	foreach($colors as $color => $value)
		$message = str_replace($color, "\033[".$value."m", $message);

	if($newline)
		echo $message.PHP_EOL;
	else
		echo $message;

	if($die) die();

}

function prompt($prompt, $default = "")
{
	out("$prompt [$default] ", false, false);
	$answer = trim(fgets(STDIN));
	if (strlen($answer) == 0)
		return $default;

	return $answer;
}

// Password prompter kindly borrowed from http://stackoverflow.com/questions/187736/command-line-password-prompt-in-php
function prompt_silent($prompt = "Enter Password:")
{
	$command = "/usr/bin/env bash -c 'echo OK'";
	if (rtrim(shell_exec($command)) !== 'OK')
	{
		trigger_error("Can't invoke bash");
		return;
	}
	$command = "/usr/bin/env bash -c 'read -s -p \""
		. addslashes($prompt)
		. "\" mypassword && echo \$mypassword'";
	$password = rtrim(shell_exec($command));
	echo "\n";
	return $password;
}


1			<?php
2			/* zKillboard
3			* Copyright (C) 2012-2015 EVE-KILL Team and EVSCO.
4			*
5			* This program is free software: you can redistribute it and/or modify
6			* it under the terms of the GNU Affero General Public License as published by
7			* the Free Software Foundation, either version 3 of the License, or
8			* (at your option) any later version.
9			*
10			* This program is distributed in the hope that it will be useful,
11			* but WITHOUT ANY WARRANTY; without even the implied warranty of
12			* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13			* GNU Affero General Public License for more details.
14			*
15			* You should have received a copy of the GNU Affero General Public License
16			* along with this program. If not, see <http://www.gnu.org/licenses/>.
17			*/
18			if(php_sapi_name() != "cli")
19			die("This is a cli script!");
20
21			$base = dirname(__FILE__);
22
23			function exception_error_handler($errno, $errstr, $errfile, $errline )
24			{
25			if (error_reporting() === 0) { return; } //error has been suppressed with "@"
26			throw new ErrorException($errstr, $errno, 0, $errfile, $errline);
27			}
28
29			// Force all warnings into errors
30			set_error_handler("exception_error_handler");
31
32			if (file_exists("$base/../config.php"))
33			{
34			out("\|r\|Your config.php is already setup, if you want to reinstall please delete it.", true);
35			}
36
37			out("We will prompt you with a few questions. If at any time you are unsure and want to back out of the installation hit \|g\|CTRL+C.\|n\|
38
39			Questions will always have a default answer specified in []'s. Example: \|g\|What is 1+1? [2]\|n\|
40			Hitting enter will let you select the default answer.");
41
42			$settings = array();
43
44			// Database
45			$settings["dbuser"] = prompt("Database username?", "zkillboard");
46			$settings["dbpassword"] = prompt("Database password?", "zkillboard");
47			$settings["dbname"] = prompt("Database name?", "zkillboard");
48			$settings["dbhost"] = prompt("Database server?", "localhost");
49
50			// Memcache
51			$settings["memcache"] = "";
52			$settings["memcacheport"] = "";
53
54			$memc = prompt("\|g\|Do you have memcached installed?\|n\|", "yes");
55			if($memc == "yes")
56			{
57			$settings["memcache"] = prompt("Memcache server?", "localhost");
58			$settings["memcacheport"] = prompt("Memcache port?", "11211");
59			}
60
61			// Redis
62			$settings["redis"] = "";
63			$settings["redisport"] = "";
64
65			$redis = prompt("\|g\|Do you have Redis and Phpredis installed?\|n\|", "yes");
66			if($redis == "yes")
67			{
68			$settings["redis"] = prompt("Redis server?", "localhost");
69			$settings["redisport"] = prompt("Redis port?", "6379");
70			}
71
72			// Pheal cache
73			out("\|g\|It is highly recommended you find a good location other than the default for these files.\|n\|");
74			$settings["phealcachelocation"] = prompt("Where do you want to store Pheal's cache files?", "/tmp/");
75
76			// Server addr
77			out("What is the address of your server? \|g\|e.g. zkillboard.com\|n\|");
78			$settings["baseaddr"] = prompt("Domain name?", "zkillboard.com");
79
80			// Log
81			$settings["logfile"] = prompt("Log file location?", "/var/log/zkb.log");
82			touch($settings["logfile"]); // Touch the log file so that it'll actually get created.
83
84			// Image server
85			out("Image and API server.");
86			$settings["apiserver"] = prompt("API Server?", "https://api.eveonline.com/");
87			$settings["imageserver"] = prompt("Image Server?", "https://image.eveonline.com/");
88
89			// Secret key for cookies
90			out("A secret key is needed for your cookies to be encrypted.");
91			$cookiesecret = prompt("Secret key for cookies?", uniqid(time()));
92			$settings["cookiesecret"] = sha1($cookiesecret);
93
94			// Set admin password
95			require $base.'/../classes/Password.php';
96			out("Set password for 'admin' user. It's recommend to change this!");
97			$admpw = prompt("Password", substr(str_shuffle('abcefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890'), 0, 12));
98			$admpw = Password::genPassword($admpw);
99
100			// Get default config
101			$configFile = file_get_contents("$base/config.new.php");
102
103			// Create the new config
104			foreach($settings as $key=>$value)
105			$configFile = str_replace("%$key%", $value, $configFile);
106
107			// Save the file and then attempt to load and initialize from that file
108			$configLocation = "$base/../config.php";
109			if (file_put_contents($configLocation, $configFile) === false)
110			out("\|r\|Unable to write configuration file at $configLocation", true);
111
112			try
113			{
114			out("\|g\|Config file written, now attempting to initialize settings");
115			require_once( "$base/../config.php" );
116
117			// Check if composer isn't already installed
118			$location = exec("which composer");
119			if(!$location) // Composer isn't installed
120			{
121			out("Installing composer:\n");
122			chdir("$base/..");
123
124			passthru("php -r \"eval('?>'.file_get_contents('https://getcomposer.org/installer'));\"");
125
126			chdir("$base/..");
127			out("\nInstalling vendor files");
128			passthru("php composer.phar install --optimize-autoloader");
129
130			out("\n\|g\|composer install complete!");
131			}
132			else // Composer IS installed
133			{
134			out("Using already installed composer:\n");
135			chdir("$base/..");
136			out("\nInstalling vendor files.");
137			passthru("composer install --optimize-autoloader");
138			out("\n\|g\|Vendor file installation completed.");
139			}
140			chdir("$base/..");
141
142			require_once("$base/../init.php" );
143
144			$one = Db::queryField("select 1 one from dual", "one", array(), 1);
145			if ($one != "1")
146			throw new Exception("We were able to connect but the database did not return the expected '1' for: select 1 one from dual;");
147
148			out("\|g\|Success! Database initialized.");
149			}
150			catch (Exception $ex)
151			{
152			out("\|r\|Error! Removing configuration file.");
153			unlink($configLocation);
154			throw $ex;
155			}
156
157			$ln = false;
158			// Move bash_complete_zkillboard to the bash_complete folder
159			try
160			{
161			file_put_contents("/etc/bash_completion.d/zkillboard", file_get_contents("$base/bash_complete_zkillboard"));
162			exec("chmod +x $base/../cli.php");
163			$ln = true;
164			}
165			catch (Exception $ex)
166			{
167			out("\|r\|Error! Couldn't move the bash_complete file into /etc/bash_completion.d/, please do this after the installer is done.");
168			}
169
170			// ln the cli into /usr/sbin/zkillboard
171			if($ln == true)
			0 ignored issues – show Coding Style Best Practice introduced 2015-12-13 23:29 UTC by Report Bug Copy Issue Report Show Similar Issues like this It seems like you are loosely comparing two booleans. Considering using the strict comparison `===` instead. When comparing two booleans, it is generally considered safer to use the strict comparison operator. Loading history...
172			{
173			try
174			{
175			passthru("ln -s $base/../cli.php /usr/sbin/zkillboard");
176			}
177			catch(Exception $e)
178			{
179			out("\|r\|Error!\|n\| file most likely already exists. Check after the installer is done, and if it doesn't, run: ln -s $base/../cli.php /usr/sbin/zkillboard");
180			}
181			}
182
183			// move cron.overrides to main dir
184			// Save the file and then attempt to load and initialize from that file
185			$cronoverridesLoc = "$base/../cron.overrides";
186			$cronOverrides = file_get_contents("$base/cronoverrides");
187			if (file_put_contents($cronoverridesLoc, $cronOverrides) === false)
188			out("\|r\|Unable to write cron.overrides at $cronoverridesLoc", true);
189
190			// Now install the db structure
191			try
192			{
193			$sqlFiles = scandir("$base/sql");
194			foreach($sqlFiles as $file)
195			{
196			if (Util::endsWith($file, ".sql"))
197			{
198			$table = str_replace(".sql", "", $file);
199			out("Adding table \|g\|$table\|n\| ... ", false, false);
200			$sqlFile = "$base/sql/$file";
201			loadFile($sqlFile);
202			// Ensure the table starts with base parameters and doesn't inherit anything from zkillboard.com
203			if (!Util::startsWith($table, "ccp_"))
204			Db::execute("truncate table $table");
205
206			out("\|g\|done");
207			}
208			}
209			}
210			catch (Exception $ex)
211			{
212			out("\|r\|Error! Removing configuration file.");
213			unlink($configLocation);
214			throw $ex;
215			}
216
217			out("Updating CCP tables to the latest version");
218			passthru("php $base/../cli.php updateCCPData");
219
220			try
221			{
222			out("\|g\|Installing default admin user...");
223			// Install the default admin user
224			Db::execute("INSERT INTO zz_users (username, moderator, admin, password) VALUES ('admin', 1, 1, '".$admpw."')");
225			}
226			catch (Exception $ex)
227			{
228			out("\|r\|Error! Unable to add default admin user...");
229			unlink($configLocation);
230			throw $ex;
231			}
232
233			out("\|g\|Creating cache directories");
234			@mkdir($baseDir."cache/");
235			@mkdir($baseDir."cache/sessions/");
236			@mkdir($baseDir."cache/pheal/");
237
238			out("\|g\|Enjoy your new installation of zKillboard, you may browse to it here: http://" . $settings["baseaddr"] . "\n");
239			exit;
240
241			function loadFile($file)
242			{
243			if (Util::endsWith($file, ".gz")) $handle = gzopen($file, "r");
244			else $handle = fopen($file, "r");
245
246			$query = "";
247			while ($buffer = fgets($handle))
248			{
249			$query .= $buffer;
250			if (strpos($query, ";") !== false)
251			{
252			$query = str_replace(";", "", $query);
253			Db::execute($query);
254			$query = "";
255			}
256			}
257			fclose($handle);
258			}
259
260			function out($message, $die = false, $newline = true)
			0 ignored issues – show Unused Code introduced 2015-12-13 23:29 UTC by Report Bug Copy Issue Report Show Similar Issues like this The parameter `$die` is not used and could be removed. This check looks from parameters that have been defined for a function or method, but which are not used in the method body. Loading history...
261			{
262			$colors = array(
263			"\|w\|" => "1;37", //White
264			"\|b\|" => "0;34", //Blue
265			"\|g\|" => "0;32", //Green
266			"\|r\|" => "0;31", //Red
267			"\|n\|" => "0" //Neutral
268			);
269
270			$message = "$message\|n\|";
271			foreach($colors as $color => $value)
272			$message = str_replace($color, "\033[".$value."m", $message);
273
274			if($newline)
275			echo $message.PHP_EOL;
276			else
277			echo $message;
278
279			if($die) die();
			0 ignored issues – show Coding Style Compatibility introduced 2015-12-13 23:29 UTC by Report Bug Copy Issue Report Show Similar Issues like this The function out() contains an exit expression. An exit expression should only be used in rare cases. For example, if you write a short command line script. In most cases however, using an `exit` expression makes the code untestable and often causes incompatibilities with other libraries. Thus, unless you are absolutely sure it is required here, we recommend to refactor your code to avoid its usage. Loading history...
280			}
281
282			function prompt($prompt, $default = "")
283			{
284			out("$prompt [$default] ", false, false);
285			$answer = trim(fgets(STDIN));
286			if (strlen($answer) == 0)
287			return $default;
288
289			return $answer;
290			}
291
292			// Password prompter kindly borrowed from http://stackoverflow.com/questions/187736/command-line-password-prompt-in-php
293			function prompt_silent($prompt = "Enter Password:")
294			{
295			$command = "/usr/bin/env bash -c 'echo OK'";
296			if (rtrim(shell_exec($command)) !== 'OK')
297			{
298			trigger_error("Can't invoke bash");
299			return;
300			}
301			$command = "/usr/bin/env bash -c 'read -s -p \""
302			. addslashes($prompt)
303			. "\" mypassword && echo \$mypassword'";
304			$password = rtrim(shell_exec($command));
305			echo "\n";
306			return $password;
307			}
308

EVE-KILL / zKillboard

Issues (438)

Security Analysis not enabled

install/install.php (3 issues)

Labels

Severity

Introduced By

Upgrade to new PHP Analysis Engine

Duplication Side-by-Side

Filter issues like