|
1
|
|
|
<?php |
|
2
|
|
|
/** |
|
3
|
|
|
* A file archive, compressed with Zip. |
|
4
|
|
|
* |
|
5
|
|
|
* @package App |
|
6
|
|
|
* |
|
7
|
|
|
* @copyright YetiForce S.A. |
|
8
|
|
|
* @license YetiForce Public License 6.5 (licenses/LicenseEN.txt or yetiforce.com) |
|
9
|
|
|
* @author Mariusz Krzaczkowski <[email protected]> |
|
10
|
|
|
* @author Radosław Skrzypczak <[email protected]> |
|
11
|
|
|
*/ |
|
12
|
|
|
|
|
13
|
|
|
namespace App; |
|
14
|
|
|
|
|
15
|
|
|
/** |
|
16
|
|
|
* Zip class. |
|
17
|
|
|
*/ |
|
18
|
|
|
class Zip extends \ZipArchive |
|
19
|
|
|
{ |
|
20
|
|
|
/** |
|
21
|
|
|
* Files extension for extract. |
|
22
|
|
|
* |
|
23
|
|
|
* @var array |
|
24
|
|
|
*/ |
|
25
|
|
|
protected $onlyExtensions; |
|
26
|
|
|
|
|
27
|
|
|
/** |
|
28
|
|
|
* Illegal extensions for extract. |
|
29
|
|
|
* |
|
30
|
|
|
* @var array |
|
31
|
|
|
*/ |
|
32
|
|
|
protected $illegalExtensions; |
|
33
|
|
|
|
|
34
|
|
|
/** |
|
35
|
|
|
* Check files before unpacking. |
|
36
|
|
|
* |
|
37
|
|
|
* @var bool |
|
38
|
|
|
*/ |
|
39
|
|
|
protected $checkFiles = true; |
|
40
|
|
|
|
|
41
|
|
|
/** |
|
42
|
|
|
* Open file and initialization unpack. |
|
43
|
|
|
* |
|
44
|
|
|
* @param bool $fileName |
|
45
|
|
|
* @param array $options |
|
46
|
|
|
* |
|
47
|
|
|
* @throws Exceptions\AppException |
|
48
|
13 |
|
* |
|
49
|
|
|
* @return bool|Zip |
|
50
|
13 |
|
*/ |
|
51
|
1 |
|
public static function openFile($fileName = false, $options = []) |
|
52
|
|
|
{ |
|
53
|
12 |
|
if (!$fileName) { |
|
54
|
12 |
|
throw new \App\Exceptions\AppException('No file name'); |
|
55
|
1 |
|
} |
|
56
|
|
|
$zip = new self($fileName, $options); |
|
|
|
|
|
|
57
|
11 |
|
if (!file_exists($fileName) || !$zip->open($fileName)) { |
|
|
|
|
|
|
58
|
|
|
throw new \App\Exceptions\AppException('Unable to open the zip file'); |
|
59
|
|
|
} |
|
60
|
11 |
|
if (!$zip->checkFreeSpace()) { |
|
61
|
8 |
|
throw new \App\Exceptions\AppException('The content of the zip file is too large'); |
|
62
|
|
|
} |
|
63
|
11 |
|
foreach ($options as $key => $value) { |
|
64
|
|
|
$zip->{$key} = $value; |
|
65
|
|
|
} |
|
66
|
|
|
return $zip; |
|
67
|
|
|
} |
|
68
|
|
|
|
|
69
|
|
|
/** |
|
70
|
|
|
* Open file for create zip file. |
|
71
|
|
|
* |
|
72
|
|
|
* @param string $fileName |
|
73
|
|
|
* |
|
74
|
|
|
* @throws \App\Exceptions\AppException |
|
75
|
3 |
|
* |
|
76
|
|
|
* @return \App\Zip |
|
77
|
3 |
|
*/ |
|
78
|
3 |
|
public static function createFile($fileName) |
|
79
|
|
|
{ |
|
80
|
|
|
$zip = new self(); |
|
81
|
3 |
|
if (true !== $zip->open($fileName, self::CREATE | self::OVERWRITE)) { |
|
82
|
|
|
throw new \App\Exceptions\AppException('Unable to create the zip file'); |
|
83
|
|
|
} |
|
84
|
|
|
return $zip; |
|
85
|
|
|
} |
|
86
|
|
|
|
|
87
|
|
|
/** |
|
88
|
|
|
* Function to extract files. |
|
89
|
|
|
* |
|
90
|
|
|
* @param $toDir Target directory |
|
|
|
|
|
|
91
|
|
|
* @param bool $close |
|
92
|
7 |
|
* |
|
93
|
|
|
* @return string|string[] Unpacked files |
|
94
|
7 |
|
*/ |
|
95
|
1 |
|
public function unzip($toDir, bool $close = true) |
|
96
|
|
|
{ |
|
97
|
7 |
|
if (\is_string($toDir)) { |
|
98
|
7 |
|
$toDir = [$toDir]; |
|
99
|
7 |
|
} |
|
100
|
7 |
|
$files = $created = []; |
|
101
|
7 |
|
foreach ($toDir as $dir => $target) { |
|
102
|
7 |
|
for ($i = 0; $i < $this->numFiles; ++$i) { |
|
103
|
4 |
|
$zipPath = $this->getNameIndex($i); |
|
104
|
|
|
$path = \str_replace('\\', '/', $zipPath); |
|
105
|
7 |
|
if ((!\is_numeric($dir) && 0 !== strpos($path, $dir . '/')) || $this->validateFile($zipPath)) { |
|
106
|
7 |
|
continue; |
|
107
|
7 |
|
} |
|
108
|
7 |
|
$files[] = $zipPath; |
|
109
|
7 |
|
$file = $target . '/' . (\is_numeric($dir) ? $path : substr($path, \strlen($dir) + 1)); |
|
110
|
7 |
|
$fileDir = \dirname($file); |
|
111
|
|
|
if (!isset($created[$fileDir])) { |
|
112
|
7 |
|
if (!is_dir($fileDir)) { |
|
113
|
|
|
mkdir($fileDir, 0755, true); |
|
114
|
7 |
|
} |
|
115
|
|
|
$created[$fileDir] = true; |
|
116
|
7 |
|
} |
|
117
|
7 |
|
if (!$this->isDir($path)) { |
|
118
|
7 |
|
// Read from Zip and write to disk |
|
119
|
7 |
|
$fpr = $this->getStream($zipPath); |
|
120
|
|
|
$fpw = fopen($file, 'w'); |
|
121
|
7 |
|
while ($data = fread($fpr, 1024)) { |
|
122
|
7 |
|
fwrite($fpw, $data); |
|
123
|
|
|
} |
|
124
|
|
|
fclose($fpr); |
|
125
|
|
|
fclose($fpw); |
|
126
|
7 |
|
} |
|
127
|
7 |
|
} |
|
128
|
|
|
} |
|
129
|
7 |
|
if ($close) { |
|
130
|
|
|
$this->close(); |
|
131
|
|
|
} |
|
132
|
|
|
return $files; |
|
133
|
|
|
} |
|
134
|
|
|
|
|
135
|
|
|
/** |
|
136
|
|
|
* Simple extract the archive contents. |
|
137
|
|
|
* |
|
138
|
|
|
* @param string $toDir |
|
139
|
|
|
* |
|
140
|
|
|
* @throws \App\Exceptions\AppException |
|
141
|
1 |
|
* |
|
142
|
|
|
* @return array |
|
143
|
1 |
|
*/ |
|
144
|
|
|
public function extract(string $toDir) |
|
145
|
|
|
{ |
|
146
|
1 |
|
if (!is_dir($toDir) && !mkdir($toDir, 0755, true) && !is_dir($toDir)) { |
|
147
|
1 |
|
throw new \App\Exceptions\AppException('Directory unable to create it'); |
|
148
|
1 |
|
} |
|
149
|
1 |
|
$fileList = []; |
|
150
|
1 |
|
for ($i = 0; $i < $this->numFiles; ++$i) { |
|
151
|
|
|
$path = $this->getNameIndex($i); |
|
152
|
1 |
|
if ($this->validateFile(\str_replace('\\', '/', $path))) { |
|
153
|
|
|
continue; |
|
154
|
1 |
|
} |
|
155
|
1 |
|
$fileList[] = $path; |
|
156
|
|
|
} |
|
157
|
|
|
$this->extractTo($toDir, $fileList); |
|
158
|
|
|
return $fileList; |
|
159
|
|
|
} |
|
160
|
|
|
|
|
161
|
|
|
/** |
|
162
|
|
|
* Check illegal characters. |
|
163
|
|
|
* |
|
164
|
|
|
* @param string $path |
|
165
|
8 |
|
* |
|
166
|
|
|
* @return bool |
|
167
|
8 |
|
*/ |
|
168
|
|
|
public function validateFile(string $path) |
|
169
|
|
|
{ |
|
170
|
8 |
|
if (!Validator::path($path)) { |
|
171
|
8 |
|
return true; |
|
172
|
3 |
|
} |
|
173
|
3 |
|
$validate = false; |
|
174
|
|
|
if ($this->checkFiles && !$this->isDir($path)) { |
|
175
|
|
|
$extension = pathinfo($path, PATHINFO_EXTENSION); |
|
176
|
3 |
|
if (isset($this->onlyExtensions) && !\in_array($extension, $this->onlyExtensions)) { |
|
177
|
|
|
$validate = true; |
|
178
|
|
|
} |
|
179
|
3 |
|
if (isset($this->illegalExtensions) && \in_array($extension, $this->illegalExtensions)) { |
|
180
|
3 |
|
$validate = true; |
|
181
|
3 |
|
} |
|
182
|
3 |
|
$stat = $this->statName($path); |
|
183
|
3 |
|
$fileInstance = \App\Fields\File::loadFromInfo([ |
|
184
|
3 |
|
'content' => $this->getFromName($path), |
|
185
|
|
|
'path' => $this->getLocalPath($path), |
|
186
|
|
|
'name' => basename($path), |
|
187
|
3 |
|
'size' => $stat['size'], |
|
188
|
2 |
|
'validateAllCodeInjection' => true, |
|
189
|
|
|
]); |
|
190
|
|
|
if (!$fileInstance->validate()) { |
|
191
|
8 |
|
$validate = true; |
|
192
|
|
|
} |
|
193
|
|
|
} |
|
194
|
|
|
return $validate; |
|
195
|
|
|
} |
|
196
|
|
|
|
|
197
|
|
|
/** |
|
198
|
|
|
* Check if the file path is directory. |
|
199
|
|
|
* |
|
200
|
|
|
* @param string $filePath |
|
201
|
8 |
|
* |
|
202
|
|
|
* @return bool |
|
203
|
8 |
|
*/ |
|
204
|
6 |
|
public function isDir($filePath) |
|
205
|
|
|
{ |
|
206
|
8 |
|
if ('/' === substr($filePath, -1, 1)) { |
|
207
|
|
|
return true; |
|
208
|
|
|
} |
|
209
|
|
|
return false; |
|
210
|
|
|
} |
|
211
|
|
|
|
|
212
|
|
|
/** |
|
213
|
|
|
* Function to extract single file. |
|
214
|
|
|
* |
|
215
|
|
|
* @param string $compressedFileName |
|
216
|
|
|
* @param string $targetFileName |
|
217
|
|
|
* |
|
218
|
|
|
* @return bool |
|
219
|
|
|
*/ |
|
220
|
|
|
public function unzipFile($compressedFileName, $targetFileName) |
|
221
|
|
|
{ |
|
222
|
|
|
return copy($this->getLocalPath($compressedFileName), $targetFileName); |
|
223
|
|
|
} |
|
224
|
|
|
|
|
225
|
|
|
/** |
|
226
|
|
|
* Get compressed file path. |
|
227
|
|
|
* |
|
228
|
|
|
* @param string $compressedFileName |
|
229
|
3 |
|
* |
|
230
|
|
|
* @return string |
|
231
|
3 |
|
*/ |
|
232
|
|
|
public function getLocalPath($compressedFileName) |
|
233
|
|
|
{ |
|
234
|
|
|
return "zip://{$this->filename}#{$compressedFileName}"; |
|
235
|
|
|
} |
|
236
|
|
|
|
|
237
|
|
|
/** |
|
238
|
|
|
* Check free disk space. |
|
239
|
11 |
|
* |
|
240
|
|
|
* @return bool |
|
241
|
11 |
|
*/ |
|
242
|
11 |
|
public function checkFreeSpace() |
|
243
|
11 |
|
{ |
|
244
|
11 |
|
$df = disk_free_space(ROOT_DIRECTORY . \DIRECTORY_SEPARATOR); |
|
245
|
11 |
|
$size = 0; |
|
246
|
|
|
for ($i = 0; $i < $this->numFiles; ++$i) { |
|
247
|
11 |
|
$stat = $this->statIndex($i); |
|
248
|
|
|
$size += $stat['size']; |
|
249
|
|
|
} |
|
250
|
|
|
return $df > $size; |
|
251
|
|
|
} |
|
252
|
|
|
|
|
253
|
|
|
/** |
|
254
|
|
|
* Copy the directory on the disk into zip file. |
|
255
|
|
|
* |
|
256
|
|
|
* @param string $dir |
|
257
|
2 |
|
* @param string $localName |
|
258
|
|
|
* @param bool $relativePath |
|
259
|
2 |
|
*/ |
|
260
|
|
|
public function addDirectory(string $dir, string $localName = '', bool $relativePath = false) |
|
261
|
|
|
{ |
|
262
|
2 |
|
if ($localName) { |
|
263
|
2 |
|
$localName .= '/'; |
|
264
|
2 |
|
} |
|
265
|
2 |
|
$path = realpath($dir); |
|
266
|
2 |
|
$files = new \RecursiveIteratorIterator(new \RecursiveDirectoryIterator($path), \RecursiveIteratorIterator::LEAVES_ONLY); |
|
267
|
2 |
|
$pathToTrim = $relativePath ? $path : ROOT_DIRECTORY; |
|
268
|
2 |
|
foreach ($files as $file) { |
|
269
|
|
|
if (!$file->isDir()) { |
|
270
|
|
|
$filePath = $file->getRealPath(); |
|
271
|
2 |
|
$zipPath = str_replace(\DIRECTORY_SEPARATOR, '/', Fields\File::getLocalPath($filePath, $pathToTrim)); |
|
272
|
|
|
$this->addFile($filePath, $localName . $zipPath); |
|
273
|
|
|
} |
|
274
|
|
|
} |
|
275
|
|
|
} |
|
276
|
|
|
|
|
277
|
|
|
/** |
|
278
|
|
|
* Push out the file content for download. |
|
279
|
|
|
* |
|
280
|
|
|
* @param string $name |
|
281
|
|
|
*/ |
|
282
|
|
|
public function download(string $name) |
|
283
|
|
|
{ |
|
284
|
|
|
$fileName = $this->filename; |
|
285
|
|
|
$this->close(); |
|
286
|
|
|
header('cache-control: private, max-age=120, must-revalidate'); |
|
287
|
|
|
header('pragma: no-cache'); |
|
288
|
|
|
header('expires: 0'); |
|
289
|
|
|
header('content-type: application/zip'); |
|
290
|
|
|
header('content-disposition: attachment; filename="' . $name . '.zip";'); |
|
|
|
|
|
|
291
|
|
|
header('accept-ranges: bytes'); |
|
292
|
|
|
header('content-length: ' . filesize($fileName)); |
|
293
|
|
|
readfile($fileName); |
|
294
|
|
|
unlink($fileName); |
|
295
|
|
|
} |
|
296
|
|
|
} |
|
297
|
|
|
|
YetiForceCompany /
YetiForceCRM
Mariusz Krzaczkowski
Mariusz Krzaczkowski
Arkadiusz Adach
Loading history...
This check compares calls to functions or methods with their respective definitions. If the call has more arguments than are defined, it raises an issue.
If a function is defined several times with a different number of parameters, the check may pick up the wrong definition and report false positives. One codebase where this has been known to happen is Wordpress. Please note the @ignore annotation hint above.