Domů Procházet Nápověda
Registrovat se Přihlásit se
chenhao
/
leyu_admin
1
0
Rozštěpit 0
Soubory Úkoly 0 Pull Requesty 0 Wiki
Větev: master
Větve Značky
leyu_admin
/
admin
/
sys_verifies.php

sys_verifies.php 14 KB
Trvalý odkaz Historie Surový

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * 系统文件校验
    4. 

  4.  *
    5. 

  5.  * @version        $Id: sys_verifies.php 1 23:07 2010年7月20日Z tianya $
    6. 

  6.  * @package        DedeCMS.Administrator
    7. 

  7.  * @copyright      Copyright (c) 2007 - 2010, DesDev, Inc.
    8. 

  8.  * @license        http://help.dedecms.com/usersguide/license.html
    9. 

  9.  * @link           http://www.dedecms.com
    10. 

  10.  */
    11. 

  11. require_once(dirname(__FILE__)."/config.php");
    12. 

  12. CheckPurview('sys_Edit');
    13. 

  13. @set_time_limit(0);
    14. 

  14. require(DEDEINC.'/dedehttpdown.class.php');
    15. 

  15. 

  16. $action = isset($action) ? trim($action) : '';
    17. 

  17. 

  18. //当前软件版本锁定文件
    19. 

  19. $verLockFile = DEDEDATA.'/admin/ver.txt';
    20. 

  20. //当前软件指纹码锁定文件
    21. 

  21. $verifiesLockFile = DEDEDATA.'/admin/verifies.txt';
    22. 

  22. 

  23. $fp = fopen($verLockFile,'r');
    24. 

  24. $upTime = trim(fread($fp,64));
    25. 

  25. fclose($fp);
    26. 

  26. 

  27. $updateTime = substr($upTime,0,4).'-'.substr($upTime,4,2).'-'.substr($upTime,6,2);
    28. 

  28. $verifiesTime = "未同步过指纹码";
    29. 

  29. if(file_exists($verifiesLockFile))
    30. 

  30. {
    31. 

  31.     $fp = fopen($verifiesLockFile,'r');
    32. 

  32.     $upTime = trim(fread($fp,64));
    33. 

  33.     fclose($fp);
    34. 

  34.     $verifiesTime = substr($upTime,0,4).'-'.substr($upTime,4,2).'-'.substr($upTime,6,2);
    35. 

  35. }
    36. 

  36. 

  37. $tmpdir = substr(md5($cfg_cookie_encode),0,16);
    38. 

  38. 

  39. 

  40. //重定义file_get_contents来兼容不支持此函数的PHP
    41. 

  41. //因为有个别地方用fgets读文件生成校验码不兼容
    42. 

  42. if(!function_exists('file_get_contents'))
    43. 

  43. {
    44. 

  44.     function file_get_contents($fname)
    45. 

  45.     {
    46. 

  46.         if(!file_exists($fname) || is_dir($fname))
    47. 

  47.         {
    48. 

  48.             return '';
    49. 

  49.         }
    50. 

  50.         else
    51. 

  51.         {
    52. 

  52.             $fp = fopen($fname, 'r');
    53. 

  53.             $ct = fread($fp, filesize($fname));
    54. 

  54.             fclose($fp);
    55. 

  55.             return $ct;
    56. 

  56.         }
    57. 

  57.     }
    58. 

  58. }
    59. 

  59. 

  60. if($action == '')
    61. 

  61. {
    62. 

  62.     include(DEDEADMIN.'/templets/sys_verifies.htm');
    63. 

  63.     exit();
    64. 

  64. }
    65. 

  65. /*----------------
    66. 

  66. 校验文件
    67. 

  67. function _verify() { }
    68. 

  68. ----------------*/
    69. 

  69. else if($action == 'verify')
    70. 

  70. {
    71. 

  71.     $dsql->SetQuery("SELECT * FROM `#@__verifies` ");
    72. 

  72.     $dsql->Execute();
    73. 

  73.     $filelist = array();
    74. 

  74.     while($row = $dsql->GetArray())
    75. 

  75.     {
    76. 

  76.         $turefile = str_replace('../dede', '.', $row['filename']);
    77. 

  77.         //跳过不存在的文件
    78. 

  78.         if(!file_exists($turefile)) {
    79. 

  79.             continue;
    80. 

  80.         }
    81. 

  81.         if( filesize($turefile)==0 ) {
    82. 

  82.             continue;
    83. 

  83.         }
    84. 

  84.         $ct = file_get_contents($turefile);
    85. 

  85.         $ct = preg_replace("/\/\*\*[\r\n]{1,}(.*)[\r\n]{1,} \*\//sU", '', $ct);
    86. 

  86.         $cthash = md5($ct);
    87. 

  87.         if($cthash != $row['cthash']) 
    88. 

  88.         {
    89. 

  89.             $row['localhash'] = $cthash;
    90. 

  90.             $row['mtime'] = MyDate('Y-m-d H:i:s', filemtime($turefile));
    91. 

  91.             $row['turefile'] = $turefile;
    92. 

  92.             $filelist[] = $row;
    93. 

  93.         }
    94. 

  94.     }
    95. 

  95.     if(!isset($filelist[0]))
    96. 

  96.     {
    97. 

  97.         ShowMsg("所有文件都通过效验证,核心文件没有被改动过!","sys_verifies.php");
    98. 

  98.     }
    99. 

  99.     else
    100. 

  100.     {
    101. 

  101.         include(DEDEADMIN.'/templets/sys_verifies_verify.htm');
    102. 

  102.     }
    103. 

  103.     exit();
    104. 

  104. }
    105. 

  105. /*--------------------
    106. 

  106. 查看单个本地文件
    107. 

  107. function _view() { }
    108. 

  108. ----------------------*/
    109. 

  109. else if ($action == 'view')
    110. 

  110. {
    111. 

  111.     require_once(DEDEINC."/oxwindow.class.php");
    112. 

  112.     
    113. 

  113.     $filetxt = '';
    114. 

  114.     if( !preg_match("#data(.*)common.inc.php#i", $filename) )
    115. 

  115.     {
    116. 

  116.         $fp = fopen($filename, 'r');
    117. 

  117.         $filetxt = fread($fp, filesize($filename));
    118. 

  118.         fclose($fp);
    119. 

  119.     }
    120. 

  120.     
    121. 

  121.     $filetxt = str_replace('textarea', '!textarea', $filetxt);
    122. 

  122.     
    123. 

  123.     $wintitle = "文件效验::查看文件";
    124. 

  124.     $wecome_info = "<a href='sys_verifies.php'><u>文件效验</u></a>::查看文件";
    125. 

  125.     $win = new OxWindow();
    126. 

  126.     $win->Init();
    127. 

  127.     $win->AddTitle("以下为文件 $filename 的内容,请检查是否可疑:");
    128. 

  128.     $winform = $win->GetWindow("hand","<textarea name='filetxt' style='width:100%;height:450px;word-wrap: break-word;word-break:break-all;'>".$filetxt."</textarea>");
    129. 

  129.     $win->Display();
    130. 

  130.     exit();
    131. 

  131. }
    132. 

  132. /*-----------------
    133. 

  133. 管理指纹码
    134. 

  134. function _manage() { }
    135. 

  135. -------------------*/
    136. 

  136. else if ($action == 'manage')
    137. 

  137. {
    138. 

  138.     $dsql->SetQuery("SELECT * FROM `#@__verifies` ");
    139. 

  139.     $dsql->Execute();
    140. 

  140.     $filelist = array();
    141. 

  141.     while($row = $dsql->GetArray())
    142. 

  142.     {
    143. 

  143.         $filelist[] = $row;
    144. 

  144.     }
    145. 

  145.     include(DEDEADMIN.'/templets/sys_verifies_manage.htm');
    146. 

  146.     exit();
    147. 

  147. }
    148. 

  148. /*-----------------------
    149. 

  149. 下载文件
    150. 

  150. function _getfiles()
    151. 

  151. ------------------------*/
    152. 

  152. else if ($action == 'getfiles')
    153. 

  153. {
    154. 

  154.     if(!isset($refiles))
    155. 

  155.     {
    156. 

  156.         ShowMsg("你没进行任何操作!","sys_verifies.php");
    157. 

  157.         exit();
    158. 

  158.     }
    159. 

  159.     $cacheFiles = DEDEDATA.'/modifytmp.inc';
    160. 

  160.     $fp = fopen($cacheFiles, 'w');
    161. 

  161.     fwrite($fp, '<'.'?php'."\r\n");
    162. 

  162.     fwrite($fp, '$tmpdir = "'.$tmpdir.'";'."\r\n");
    163. 

  163.     $dirs = array();
    164. 

  164.     $i = -1;
    165. 

  165.     $adminDir = preg_replace("#(.*)[\/\\\\]#", "", dirname(__FILE__));
    166. 

  166.     foreach($refiles as $filename)
    167. 

  167.     {
    168. 

  168.         $filename = substr($filename,3,strlen($filename)-3);
    169. 

  169.         if(preg_match("#^dede/#i", $filename)) 
    170. 

  170.         {
    171. 

  171.             $curdir = GetDirName( preg_replace("#^dede/#i", $adminDir.'/', $filename) );
    172. 

  172.         } else {
    173. 

  173.             $curdir = GetDirName($filename);
    174. 

  174.         }
    175. 

  175.         if( !isset($dirs[$curdir]) ) 
    176. 

  176.         {
    177. 

  177.             $dirs[$curdir] = TestIsFileDir($curdir);
    178. 

  178.         }
    179. 

  179.         $i++;
    180. 

  180.         fwrite($fp, '$files['.$i.'] = "'.$filename.'";'."\r\n");
    181. 

  181.     }
    182. 

  182.     fwrite($fp, '$fileConut = '.$i.';'."\r\n");
    183. 

  183.     fwrite($fp, '?'.'>');
    184. 

  184.     fclose($fp);
    185. 

  185.     
    186. 

  186.     $dirinfos = '';
    187. 

  187.     if($i > -1)
    188. 

  188.     {
    189. 

  189.         $dirinfos = '<tr bgcolor="#ffffff"><td colspan="2">';
    190. 

  190.         $dirinfos .= "本次升级需要在下面文件夹写入更新文件,请注意文件夹是否有写入权限:<br />\r\n";
    191. 

  191.         foreach($dirs as $curdir)
    192. 

  192.         {
    193. 

  193.             $dirinfos .= $curdir['name']." 状态:".($curdir['writeable'] ? "[√正常]" : "<font color='red'>[×不可写]</font>")."<br />\r\n";
    194. 

  194.         }
    195. 

  195.         $dirinfos .= "</td></tr>\r\n";
    196. 

  196.     }
    197. 

  197.         
    198. 

  198.     $doneStr = "<iframe name='stafrm' src='sys_verifies.php?action=down&curfile=0' frameborder='0' id='stafrm' width='100%' height='100%'></iframe>\r\n";
    199. 

  199.     
    200. 

  200.     include(DEDEADMIN.'/templets/sys_verifies_getfiles.htm');
    201. 

  201.     
    202. 

  202.     exit();
    203. 

  203. }
    204. 

  204. /*-----------------------
    205. 

  205. 下载文件
    206. 

  206. function _down()
    207. 

  207. ------------------------*/
    208. 

  208. else if($action=='down')
    209. 

  209. {
    210. 

  210.     $cacheFiles = DEDEDATA.'/modifytmp.inc';
    211. 

  211.     require_once($cacheFiles);
    212. 

  212.     
    213. 

  213.     if($fileConut==-1 || $curfile > $fileConut)
    214. 

  214.     {
    215. 

  215.         ShowMsg("已下载所有文件<br /><a href='sys_verifies.php?action=apply'>[直接替换文件]</a> &nbsp; <a href='#'>[我自己手动替换文件]</a>","javascript:;");
    216. 

  216.         exit();
    217. 

  217.     }
    218. 

  218.     
    219. 

  219.     //检查临时文件保存目录是否可用
    220. 

  220.     MkTmpDir($tmpdir, $files[$curfile]);
    221. 

  221.         
    222. 

  222.     $downfile = UPDATEHOST.$cfg_soft_lang.'/source/'.$files[$curfile];
    223. 

  223.         
    224. 

  224.     $dhd = new DedeHttpDown();
    225. 

  225.     $dhd->OpenUrl($downfile);
    226. 

  226.     $dhd->SaveToBin(DEDEDATA.'/'.$tmpdir.'/'.$files[$curfile]);
    227. 

  227.     $dhd->Close();
    228. 

  228.         
    229. 

  229.     ShowMsg("成功下载文件:{$files[$curfile]}; 继续下载下一个文件。","sys_verifies.php?action=down&curfile=".($curfile+1));
    230. 

  230.     exit();
    231. 

  231. }
    232. 

  232. /*-----------------------
    233. 

  233. 修改效验方式
    234. 

  234. function _modify()
    235. 

  235. ------------------------*/
    236. 

  236. else if($action=='modify')
    237. 

  237. {
    238. 

  238.     if(!isset($modifys))
    239. 

  239.     {
    240. 

  240.         ShowMsg("没选定要修改的文件!","-1");
    241. 

  241.         exit();
    242. 

  242.     }
    243. 

  243.     else
    244. 

  244.     {
    245. 

  245.         foreach($modifys as $fname)
    246. 

  246.         {
    247. 

  247.             if($method=='local')
    248. 

  248.             {
    249. 

  249.                 $tureFilename = str_replace('../dede','./',$fname);
    250. 

  250.                 if(file_exists($tureFilename))
    251. 

  251.                 {
    252. 

  252.                     $fp = fopen($tureFilename,'r');
    253. 

  253.                     $ct = fread($fp,filesize($tureFilename));
    254. 

  254.                     fclose($fp);
    255. 

  255.                     $cthash = md5($ct);
    256. 

  256.                     $dsql->ExecuteNoneQuery("UPDATE `#@__verifies` SET `method`='local',cthash='$cthash' WHERE filename='$fname' ");
    257. 

  257.                 }
    258. 

  258.             }
    259. 

  259.             else
    260. 

  260.             {
    261. 

  261.                 $dsql->ExecuteNoneQuery("UPDATE `#@__verifies` SET `method`='offical' WHERE filename='$fname' ");
    262. 

  262.             }
    263. 

  263.         }
    264. 

  264.     }
    265. 

  265.     if($method=='local')
    266. 

  266.     {
    267. 

  267.         ShowMsg("成功修改指定文件的验证方式!","sys_verifies.php?action=manage");
    268. 

  268.     }
    269. 

  269.     else
    270. 

  270.     {
    271. 

  271.         ShowMsg("成功修改指定文件的验证方式!<br /> 由于你修改了文件为远程验证方式,因此需进行更新操作<br /> <a href='sys_verifies.php?action=update'>[更新]</a> &nbsp; <a href='sys_verifies.php?action=manage'>[返回]</a>","javascript:;");
    272. 

  272.     }
    273. 

  273.     exit();
    274. 

  274. }
    275. 

  275. /*-----------------------
    276. 

  276. 还原文件
    277. 

  277. function _applyRecover()
    278. 

  278. ------------------------*/
    279. 

  279. else if ($action == 'apply')
    280. 

  280. {
    281. 

  281.     $cacheFiles = DEDEDATA.'/modifytmp.inc';
    282. 

  282.     require_once($cacheFiles);
    283. 

  283.     $sDir = DEDEDATA."/$tmpdir";
    284. 

  284.     $tDir = DEDEROOT;
    285. 

  285.         
    286. 

  286.     $badcp = 0;
    287. 

  287.     $adminDir = preg_replace("#(.*)[\/\\\\]#", "", dirname(__FILE__));
    288. 

  288.         
    289. 

  289.     if(isset($files) && is_array($files))
    290. 

  290.     {
    291. 

  291.         foreach($files as $f)
    292. 

  292.         {
    293. 

  293.             if(preg_match("#^dede#", $f)) $tf = preg_replace("#^dede#", $adminDir, $f);
    294. 

  294.             else $tf = $f;
    295. 

  295. 

  296.             if(file_exists($sDir.'/'.$f))
    297. 

  297.             {
    298. 

  298.                 //还原文件前先进行文件效验
    299. 

  299.                 $ct = file_get_contents($sDir.'/'.$f);
    300. 

  300.                 $ct = preg_replace("/\/\*\*[\r\n]{1,}(.*)[\r\n]{1,} \*\//sU", '', $ct);
    301. 

  301.                 $newhash = md5($ct);
    302. 

  302.                 $row = $dsql->GetOne("SELECT * FROM `#@__verifies` WHERE filename='../{$f}' ");
    303. 

  303.                 if(is_array($row) && $row['cthash'] != $newhash)
    304. 

  304.                 {
    305. 

  305.                     $badcp++;
    306. 

  306.                 } else {
    307. 

  307.                     $rs = @copy($sDir.'/'.$f, $tDir.'/'.$tf);
    308. 

  308.                     if($rs) unlink($sDir.'/'.$f);
    309. 

  309.                     else $badcp++;
    310. 

  310.                 }
    311. 

  311.             }
    312. 

  312.         }
    313. 

  313.     }
    314. 

  314. 

  315.     $badmsg = '!';
    316. 

  316.     if($badcp > 0)
    317. 

  317.     {
    318. 

  318.         $badmsg = ",其 {$badcp} 个文件效验码不正确或复制失败,<br />请从临时目录[../data/{$tmpdir}]中取出这几个文件手动还原。";
    319. 

  319.     }
    320. 

  320. 

  321.     ShowMsg("成功完成还原指定文件{$badmsg}", "javascript:;");
    322. 

  322.     exit();
    323. 

  323. }
    324. 

  324. /*---------------
    325. 

  325. 在线更新指纹码
    326. 

  326. function _update()
    327. 

  327. -----------------*/
    328. 

  328. else if($action == 'update')
    329. 

  329. {
    330. 

  330.     $rmFile = UPDATEHOST.$cfg_soft_lang.'/verifys.txt';
    331. 

  331.     $dhd = new DedeHttpDown();
    332. 

  332.     $dhd->OpenUrl($rmFile);
    333. 

  333.     $ct = $dhd->GetHtml();
    334. 

  334.     $dhd->Close();
    335. 

  335.     $cts = split("[\r\n]{1,}",$ct);
    336. 

  336.     foreach($cts as $ct)
    337. 

  337.     {
    338. 

  338.         $ct = trim($ct);
    339. 

  339.         if(empty($ct)) continue;
    340. 

  340.         list($nameid, $cthash, $fname) = explode("\t", $ct);
    341. 

  341.         $row = $dsql->GetOne("SELECT * FROM `#@__verifies` WHERE nameid='$nameid' ");
    342. 

  342.         if(!is_array($row) || ($row['method']=='official' && $row['cthash']!=$cthash ))
    343. 

  343.         {
    344. 

  344.             $dsql->ExecuteNoneQuery("REPLACE INTO `#@__verifies`(nameid,cthash,method,filename) VALUES ('$nameid','$cthash','official','$fname'); ");
    345. 

  345.         }
    346. 

  346.     }
    347. 

  347.     $fp = fopen($verifiesLockFile,'w');
    348. 

  348.     fwrite($fp, MyDate('Ymd',time()));
    349. 

  349.     fclose($fp);
    350. 

  350.     ShowMsg("完成效验码更新,是否马上进行效验操作?<br /> <a href='sys_verifies.php?action=verify'>[开始效验]</a> &nbsp; <a href='sys_verifies.php?action=manage'>[管理]</a> &nbsp; <a href='sys_verifies.php'>[返回]</a>","javascript:;");
    351. 

  351.     exit();
    352. 

  352. }
    353. 

  353. /*-----------------
    354. 

  354. 生成指纹码
    355. 

  355. function _make() { }
    356. 

  356. -------------------*/
    357. 

  357. else if ($action == 'make')
    358. 

  358. {
    359. 

  359.     $fp = fopen(DEDEROOT.'/../verifys.txt','w');
    360. 

  360.     foreach (preg_ls ('../', TRUE, "/.*\.(php|htm|html|js)$/i", 'CVS,data,html,uploads,templets,special') as $onefile)
    361. 

  361.     {
    362. 

  362.         $nameid = md5($onefile);
    363. 

  363.         $ctbody = file_get_contents(DEDEADMIN.'/'.$onefile);
    364. 

  364.         $ctbody = preg_replace("/\/\*\*[\r\n]{1,}(.*)[\r\n]{1,} \*\//sU", '', $ctbody);
    365. 

  365.         $cthash = md5($ctbody);
    366. 

  366.         fwrite($fp,"{$nameid}\t{$cthash}\t{$onefile}\r\n");
    367. 

  367.     }
    368. 

  368.     fclose($fp);
    369. 

  369.     ShowMsg("操作成功!","sys_verifies.php");
    370. 

  370.     exit();
    371. 

  371. }
    372. 

  372. 

  373. //获取所有文件列表
    374. 

  374. function preg_ls($path=".", $rec=FALSE, $pat="/.*/", $ignoredir='')
    375. 

  375. {
    376. 

  376.     while (substr ($path,-1,1) =="/")
    377. 

  377.     {
    378. 

  378.         $path=substr ($path,0,-1);
    379. 

  379.     }
    380. 

  380.     if (!is_dir ($path) )
    381. 

  381.     {
    382. 

  382.         $path=dirname ($path);
    383. 

  383.     }
    384. 

  384.     if ($rec!==TRUE)
    385. 

  385.     {
    386. 

  386.         $rec=FALSE;
    387. 

  387.     }
    388. 

  388.     $d=dir ($path);
    389. 

  389.     $ret=Array ();
    390. 

  390.     while (FALSE!== ($e=$d->read () ) )
    391. 

  391.     {
    392. 

  392.         if ( ($e==".") || ($e=="..") )
    393. 

  393.         {
    394. 

  394.             continue;
    395. 

  395.         }
    396. 

  396.         if ($rec && is_dir ($path."/".$e) && ($ignoredir == '' || strpos($ignoredir,$e ) === FALSE))
    397. 

  397.         {
    398. 

  398.             $ret = array_merge ($ret, preg_ls($path."/".$e, $rec, $pat, $ignoredir));
    399. 

  399.             continue;
    400. 

  400.         }
    401. 

  401.         if (!preg_match ($pat, $e) )
    402. 

  402.         {
    403. 

  403.             continue;
    404. 

  404.         }
    405. 

  405.         $ret[] = $path."/".$e;
    406. 

  406.     }
    407. 

  407.     return (empty ($ret) && preg_match ($pat,basename($path))) ? Array ($path."/") : $ret;
    408. 

  408. }
    409. 

  409. 

  410. function TestWriteAble($d)
    411. 

  411. {
    412. 

  412.     $tfile = '_dedet.txt';
    413. 

  413.     $fp = @fopen($d.$tfile, 'w');
    414. 

  414.     if(!$fp) 
    415. 

  415.     {
    416. 

  416.         return FALSE;
    417. 

  417.     }
    418. 

  418.     else {
    419. 

  419.         fclose($fp);
    420. 

  420.         $rs = @unlink($d.'/'.$tfile);
    421. 

  421.         return TRUE;
    422. 

  422.     }
    423. 

  423. }
    424. 

  424. 

  425. function GetDirName($filename)
    426. 

  426. {
    427. 

  427.     $dirname = '../'.preg_replace("#[\\\\\/]{1,}#", '/', $filename);
    428. 

  428.     $dirname = preg_replace("#([^\/]*)$#", '', $dirname);
    429. 

  429.     return $dirname;
    430. 

  430. }
    431. 

  431. 

  432. function TestIsFileDir($dirname)
    433. 

  433. {
    434. 

  434.     $dirs = array('name'=>'','isdir'=>FALSE,'writeable'=>FALSE);
    435. 

  435.     $dirs['name'] =  $dirname;
    436. 

  436.     if(is_dir($dirname))
    437. 

  437.     {
    438. 

  438.         $dirs['isdir'] = TRUE;
    439. 

  439.         $dirs['writeable'] = TestWriteAble($dirname);
    440. 

  440.     }
    441. 

  441.     return $dirs;
    442. 

  442. }
    443. 

  443. 

  444. function MkTmpDir($tmpdir,$filename)
    445. 

  445. {
    446. 

  446.     $basedir = DEDEDATA.'/'.$tmpdir;
    447. 

  447.     $dirname = trim(preg_replace("#[\\\\\/]{1,}#", '/', $filename));
    448. 

  448.     $dirname = preg_replace("#([^\/]*)$#", "", $dirname);
    449. 

  449.     if(!is_dir($basedir)) 
    450. 

  450.     {
    451. 

  451.         mkdir($basedir, 0777);
    452. 

  452.     }
    453. 

  453.     if($dirname=='') 
    454. 

  454.     {
    455. 

  455.         return TRUE;
    456. 

  456.     }
    457. 

  457.     $dirs = explode('/', $dirname);
    458. 

  458.     $curdir = $basedir;
    459. 

  459.     foreach($dirs as $d)
    460. 

  460.     {
    461. 

  461.         $d = trim($d);
    462. 

  462.         if(empty($d)) continue;
    463. 

  463.         $curdir = $curdir.'/'.$d;
    464. 

  464.         if(!is_dir($curdir)) 
    465. 

  465.         {
    466. 

  466.             mkdir($curdir,0777) or die($curdir);
    467. 

  467.         }
    468. 

  468.     }
    469. 

  469.     return TRUE;
    470. 

  470. }
    471.