2
0

Subs-Graphics.php 34 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926927928929930931932933934935936937938939940941942943944945946947948949950951952953954955956957958959960961962963964965966967968969970971972973974975976977978979980981982983984985986987988989990991992993994995996997998999100010011002100310041005100610071008100910101011101210131014101510161017101810191020102110221023102410251026102710281029103010311032103310341035103610371038103910401041104210431044104510461047104810491050105110521053105410551056105710581059106010611062106310641065106610671068106910701071107210731074107510761077107810791080108110821083108410851086108710881089109010911092109310941095109610971098109911001101110211031104110511061107110811091110111111121113111411151116111711181119112011211122112311241125
  1. <?php
  2. /**
  3. * This file deals with low-level graphics operations performed on images,
  4. * specially as needed for avatars (uploaded avatars), attachments, or
  5. * visual verification images.
  6. * It uses, for gifs at least, Gif Util. For more information on that,
  7. * please see its website.
  8. * TrueType fonts supplied by www.LarabieFonts.com
  9. *
  10. * Simple Machines Forum (SMF)
  11. *
  12. * @package SMF
  13. * @author Simple Machines http://www.simplemachines.org
  14. * @copyright 2012 Simple Machines
  15. * @license http://www.simplemachines.org/about/smf/license.php BSD
  16. *
  17. * @version 2.1 Alpha 1
  18. */
  19. if (!defined('SMF'))
  20. die('Hacking attempt...');
  21. /**
  22. * downloads a file from a url and stores it locally for avatar use by id_member.
  23. * - supports GIF, JPG, PNG, BMP and WBMP formats.
  24. * - detects if GD2 is available.
  25. * - uses resizeImageFile() to resize to max_width by max_height, and saves the result to a file.
  26. * - updates the database info for the member's avatar.
  27. * - returns whether the download and resize was successful.
  28. *
  29. * @param string $temporary_path, the full path to the temporary file
  30. * @param int $memID, member ID
  31. * @param int $max_width
  32. * @param int $max_height
  33. * @return bool, whether the download and resize was successful.
  34. *
  35. */
  36. function downloadAvatar($url, $memID, $max_width, $max_height)
  37. {
  38. global $modSettings, $sourcedir, $smcFunc;
  39. $ext = !empty($modSettings['avatar_download_png']) ? 'png' : 'jpeg';
  40. $destName = 'avatar_' . $memID . '_' . time() . '.' . $ext;
  41. // Just making sure there is a non-zero member.
  42. if (empty($memID))
  43. return false;
  44. require_once($sourcedir . '/ManageAttachments.php');
  45. removeAttachments(array('id_member' => $memID));
  46. $id_folder = !empty($modSettings['currentAttachmentUploadDir']) ? $modSettings['currentAttachmentUploadDir'] : 1;
  47. $avatar_hash = empty($modSettings['custom_avatar_enabled']) ? getAttachmentFilename($destName, false, null, true) : '';
  48. $smcFunc['db_insert']('',
  49. '{db_prefix}attachments',
  50. array(
  51. 'id_member' => 'int', 'attachment_type' => 'int', 'filename' => 'string-255', 'file_hash' => 'string-255', 'fileext' => 'string-8', 'size' => 'int',
  52. 'id_folder' => 'int',
  53. ),
  54. array(
  55. $memID, empty($modSettings['custom_avatar_enabled']) ? 0 : 1, $destName, $avatar_hash, $ext, 1,
  56. $id_folder,
  57. ),
  58. array('id_attach')
  59. );
  60. $attachID = $smcFunc['db_insert_id']('{db_prefix}attachments', 'id_attach');
  61. // Retain this globally in case the script wants it.
  62. $modSettings['new_avatar_data'] = array(
  63. 'id' => $attachID,
  64. 'filename' => $destName,
  65. 'type' => empty($modSettings['custom_avatar_enabled']) ? 0 : 1,
  66. );
  67. $destName = (empty($modSettings['custom_avatar_enabled']) ? (is_array($modSettings['attachmentUploadDir']) ? $modSettings['attachmentUploadDir'][$modSettings['currentAttachmentUploadDir']] : $modSettings['attachmentUploadDir']) : $modSettings['custom_avatar_dir']) . '/' . $destName . '.tmp';
  68. // Resize it.
  69. if (!empty($modSettings['avatar_download_png']))
  70. $success = resizeImageFile($url, $destName, $max_width, $max_height, 3);
  71. else
  72. $success = resizeImageFile($url, $destName, $max_width, $max_height);
  73. // Remove the .tmp extension.
  74. $destName = substr($destName, 0, -4);
  75. if ($success)
  76. {
  77. // Walk the right path.
  78. if (!empty($modSettings['currentAttachmentUploadDir']))
  79. {
  80. if (!is_array($modSettings['attachmentUploadDir']))
  81. $modSettings['attachmentUploadDir'] = unserialize($modSettings['attachmentUploadDir']);
  82. $path = $modSettings['attachmentUploadDir'][$modSettings['currentAttachmentUploadDir']];
  83. }
  84. else
  85. $path = $modSettings['attachmentUploadDir'];
  86. // Remove the .tmp extension from the attachment.
  87. if (rename($destName . '.tmp', empty($avatar_hash) ? $destName : $path . '/' . $attachID . '_' . $avatar_hash))
  88. {
  89. $destName = empty($avatar_hash) ? $destName : $path . '/' . $attachID . '_' . $avatar_hash;
  90. list ($width, $height) = getimagesize($destName);
  91. $mime_type = 'image/' . $ext;
  92. // Write filesize in the database.
  93. $smcFunc['db_query']('', '
  94. UPDATE {db_prefix}attachments
  95. SET size = {int:filesize}, width = {int:width}, height = {int:height},
  96. mime_type = {string:mime_type}
  97. WHERE id_attach = {int:current_attachment}',
  98. array(
  99. 'filesize' => filesize($destName),
  100. 'width' => (int) $width,
  101. 'height' => (int) $height,
  102. 'current_attachment' => $attachID,
  103. 'mime_type' => $mime_type,
  104. )
  105. );
  106. return true;
  107. }
  108. else
  109. return false;
  110. }
  111. else
  112. {
  113. $smcFunc['db_query']('', '
  114. DELETE FROM {db_prefix}attachments
  115. WHERE id_attach = {int:current_attachment}',
  116. array(
  117. 'current_attachment' => $attachID,
  118. )
  119. );
  120. @unlink($destName . '.tmp');
  121. return false;
  122. }
  123. }
  124. /**
  125. * Create a thumbnail of the given source.
  126. *
  127. * @uses resizeImageFile() function to achieve the resize.
  128. *
  129. * @param string $source
  130. * @param int $max_width
  131. * @param int $max_height
  132. * @return bool, whether the thumbnail creation was successful.
  133. */
  134. function createThumbnail($source, $max_width, $max_height)
  135. {
  136. global $modSettings;
  137. $destName = $source . '_thumb.tmp';
  138. // Do the actual resize.
  139. if (!empty($modSettings['attachment_thumb_png']))
  140. $success = resizeImageFile($source, $destName, $max_width, $max_height, 3);
  141. else
  142. $success = resizeImageFile($source, $destName, $max_width, $max_height);
  143. // Okay, we're done with the temporary stuff.
  144. $destName = substr($destName, 0, -4);
  145. if ($success && @rename($destName . '.tmp', $destName))
  146. return true;
  147. else
  148. {
  149. @unlink($destName . '.tmp');
  150. @touch($destName);
  151. return false;
  152. }
  153. }
  154. /**
  155. * Used to re-econodes an image to a specifed image format
  156. * - creates a copy of the file at the same location as fileName.
  157. * - the file would have the format preferred_format if possible, otherwise the default format is jpeg.
  158. * - the function makes sure that all non-essential image contents are disposed.
  159. *
  160. * @param string $fileName
  161. * @param int $preferred_format = 0
  162. * @return bool, true on success, false on failure.
  163. */
  164. function reencodeImage($fileName, $preferred_format = 0)
  165. {
  166. if (!resizeImageFile($fileName, $fileName . '.tmp', null, null, $preferred_format))
  167. {
  168. if (file_exists($fileName . '.tmp'))
  169. unlink($fileName . '.tmp');
  170. return false;
  171. }
  172. if (!unlink($fileName))
  173. return false;
  174. if (!rename($fileName . '.tmp', $fileName))
  175. return false;
  176. }
  177. /**
  178. * Searches through the file to see if there's potentialy harmful non-binary content.
  179. * - if extensiveCheck is true, searches for asp/php short tags as well.
  180. *
  181. * @param string $fileName
  182. * @param bool $extensiveCheck = false
  183. * @return true on success, false on failure.
  184. */
  185. function checkImageContents($fileName, $extensiveCheck = false)
  186. {
  187. $fp = fopen($fileName, 'rb');
  188. if (!$fp)
  189. fatal_lang_error('attach_timeout');
  190. $prev_chunk = '';
  191. while (!feof($fp))
  192. {
  193. $cur_chunk = fread($fp, 8192);
  194. // Though not exhaustive lists, better safe than sorry.
  195. if (!empty($extensiveCheck))
  196. {
  197. // Paranoid check. Some like it that way.
  198. if (preg_match('~(iframe|\\<\\?|\\<%|html|eval|body|script\W|[CF]WS[\x01-\x0C])~i', $prev_chunk . $cur_chunk) === 1)
  199. {
  200. fclose($fp);
  201. return false;
  202. }
  203. }
  204. else
  205. {
  206. // Check for potential infection
  207. if (preg_match('~(iframe|(?<!cellTextIs)html|eval|body|script\W|[CF]WS[\x01-\x0C])~i', $prev_chunk . $cur_chunk) === 1)
  208. {
  209. fclose($fp);
  210. return false;
  211. }
  212. }
  213. $prev_chunk = $cur_chunk;
  214. }
  215. fclose($fp);
  216. return true;
  217. }
  218. /**
  219. * Sets a global $gd2 variable needed by some functions to determine
  220. * whether the GD2 library is present.
  221. *
  222. * @return whether or not GD1 is available.
  223. */
  224. function checkGD()
  225. {
  226. global $gd2;
  227. // Check to see if GD is installed and what version.
  228. if (($extensionFunctions = get_extension_funcs('gd')) === false)
  229. return false;
  230. // Also determine if GD2 is installed and store it in a global.
  231. $gd2 = in_array('imagecreatetruecolor', $extensionFunctions) && function_exists('imagecreatetruecolor');
  232. return true;
  233. }
  234. /**
  235. * Checks whether the Imagick class is present.
  236. *
  237. * @return whether or not Imagick is available.
  238. */
  239. function checkImagick()
  240. {
  241. return class_exists('Imagick', false);
  242. }
  243. /**
  244. * See if we have enough memory to thumbnail an image
  245. *
  246. * @return whether we do
  247. */
  248. function imageMemoryCheck($sizes)
  249. {
  250. global $modSettings;
  251. // doing the old 'set it and hope' way?
  252. if (empty($modSettings['attachment_thumb_memory']))
  253. {
  254. setMemoryLimit('128M');
  255. return true;
  256. }
  257. // Determine the memory requirements for this image, note: if you want to use an image formula W x H x bits/8 x channels x Overhead factor
  258. // you will need to account for single bit images as GD expands them to an 8 bit and will greatly overun the calculated value. The 5 is
  259. // simply a shortcut of 8bpp, 3 channels, 1.66 overhead
  260. $needed_memory = ($sizes[0] * $sizes[1] * 5);
  261. // if we need more, lets try to get it
  262. return setMemoryLimit($needed_memory, true);
  263. }
  264. /**
  265. * Resizes an image from a remote location or a local file.
  266. * Puts the resized image at the destination location.
  267. * The file would have the format preferred_format if possible,
  268. * otherwise the default format is jpeg.
  269. *
  270. * @param string $source
  271. * @param string $destination
  272. * @param int $max_width
  273. * @param int $max_height
  274. * @param int $preferred_format = 0
  275. * @return whether it succeeded.
  276. */
  277. function resizeImageFile($source, $destination, $max_width, $max_height, $preferred_format = 0)
  278. {
  279. global $sourcedir;
  280. // Nothing to do without GD or IM
  281. if (!checkGD() && !checkImagick())
  282. return false;
  283. static $default_formats = array(
  284. '1' => 'gif',
  285. '2' => 'jpeg',
  286. '3' => 'png',
  287. '6' => 'bmp',
  288. '15' => 'wbmp'
  289. );
  290. require_once($sourcedir . '/Subs-Package.php');
  291. // Get the image file, we have to work with something after all
  292. $fp_destination = fopen($destination, 'wb');
  293. if ($fp_destination && substr($source, 0, 7) == 'http://')
  294. {
  295. $fileContents = fetch_web_data($source);
  296. fwrite($fp_destination, $fileContents);
  297. fclose($fp_destination);
  298. $sizes = @getimagesize($destination);
  299. }
  300. elseif ($fp_destination)
  301. {
  302. $sizes = @getimagesize($source);
  303. $fp_source = fopen($source, 'rb');
  304. if ($fp_source !== false)
  305. {
  306. while (!feof($fp_source))
  307. fwrite($fp_destination, fread($fp_source, 8192));
  308. fclose($fp_source);
  309. }
  310. else
  311. $sizes = array(-1, -1, -1);
  312. fclose($fp_destination);
  313. }
  314. // We can't get to the file.
  315. else
  316. $sizes = array(-1, -1, -1);
  317. // See if we have -or- can get the needed memory for this operation
  318. if (checkGD() && !imageMemoryCheck($sizes))
  319. return false;
  320. // A known and supported format?
  321. // @todo test PSD and gif.
  322. if (checkImagick() && isset($default_formats[$sizes[2]]))
  323. {
  324. return resizeImage(null, $destination, null, null, $max_width, $max_height, true, $preferred_format);
  325. }
  326. elseif (checkGD() && isset($default_formats[$sizes[2]]) && function_exists('imagecreatefrom' . $default_formats[$sizes[2]]))
  327. {
  328. $imagecreatefrom = 'imagecreatefrom' . $default_formats[$sizes[2]];
  329. if ($src_img = @$imagecreatefrom($destination))
  330. {
  331. return resizeImage($src_img, $destination, imagesx($src_img), imagesy($src_img), $max_width === null ? imagesx($src_img) : $max_width, $max_height === null ? imagesy($src_img) : $max_height, true, $preferred_format);
  332. }
  333. }
  334. return false;
  335. }
  336. /**
  337. * Resizes src_img proportionally to fit within max_width and max_height limits
  338. * if it is too large.
  339. * If GD2 is present, it'll use it to achieve better quality.
  340. * It saves the new image to destination_filename, as preferred_format
  341. * if possible, default is jpeg.
  342. * @uses GD
  343. *
  344. * @param resource $src_img
  345. * @param string $destName
  346. * @param int $src_width
  347. * @param int $src_height
  348. * @param int $max_width
  349. * @param int $max_height
  350. * @param bool $force_resize = false
  351. * @param int $preferred_format = 0
  352. */
  353. function resizeImage($src_img, $destName, $src_width, $src_height, $max_width, $max_height, $force_resize = false, $preferred_format = 0)
  354. {
  355. global $gd2, $modSettings;
  356. if (checkImagick())
  357. {
  358. static $default_formats = array(
  359. '1' => 'gif',
  360. '2' => 'jpeg',
  361. '3' => 'png',
  362. '6' => 'bmp',
  363. '15' => 'wbmp'
  364. );
  365. $preferred_format = empty($preferred_format) || !isset($default_formats[$preferred_format]) ? 2 : $preferred_format;
  366. $imagick = New Imagick($destName);
  367. $src_width = empty($src_width) ? $imagick->getImageWidth() : $src_width;
  368. $src_height = empty($src_height) ? $imagick->getImageHeight() : $src_height;
  369. $dest_width = empty($max_width) ? $src_width : $max_width;
  370. $dest_height = empty($max_height) ? $src_height : $max_height;
  371. $imagick->setImageFormat($default_formats[$preferred_format]);
  372. $imagick->resizeImage($dest_width, $dest_height, Imagick::FILTER_LANCZOS, 1, true);
  373. $success = $imagick->writeImage($destName);
  374. return !empty($success);
  375. }
  376. elseif (checkGD())
  377. {
  378. $success = false;
  379. // Determine whether to resize to max width or to max height (depending on the limits.)
  380. if (!empty($max_width) || !empty($max_height))
  381. {
  382. if (!empty($max_width) && (empty($max_height) || $src_height * $max_width / $src_width <= $max_height))
  383. {
  384. $dst_width = $max_width;
  385. $dst_height = floor($src_height * $max_width / $src_width);
  386. }
  387. elseif (!empty($max_height))
  388. {
  389. $dst_width = floor($src_width * $max_height / $src_height);
  390. $dst_height = $max_height;
  391. }
  392. // Don't bother resizing if it's already smaller...
  393. if (!empty($dst_width) && !empty($dst_height) && ($dst_width < $src_width || $dst_height < $src_height || $force_resize))
  394. {
  395. // (make a true color image, because it just looks better for resizing.)
  396. if ($gd2)
  397. {
  398. $dst_img = imagecreatetruecolor($dst_width, $dst_height);
  399. // Deal nicely with a PNG - because we can.
  400. if ((!empty($preferred_format)) && ($preferred_format == 3))
  401. {
  402. imagealphablending($dst_img, false);
  403. if (function_exists('imagesavealpha'))
  404. imagesavealpha($dst_img, true);
  405. }
  406. }
  407. else
  408. $dst_img = imagecreate($dst_width, $dst_height);
  409. // Resize it!
  410. if ($gd2)
  411. imagecopyresampled($dst_img, $src_img, 0, 0, 0, 0, $dst_width, $dst_height, $src_width, $src_height);
  412. else
  413. imagecopyresamplebicubic($dst_img, $src_img, 0, 0, 0, 0, $dst_width, $dst_height, $src_width, $src_height);
  414. }
  415. else
  416. $dst_img = $src_img;
  417. }
  418. else
  419. $dst_img = $src_img;
  420. // Save the image as ...
  421. if (!empty($preferred_format) && ($preferred_format == 3) && function_exists('imagepng'))
  422. $success = imagepng($dst_img, $destName);
  423. elseif (!empty($preferred_format) && ($preferred_format == 1) && function_exists('imagegif'))
  424. $success = imagegif($dst_img, $destName);
  425. elseif (function_exists('imagejpeg'))
  426. $success = imagejpeg($dst_img, $destName);
  427. // Free the memory.
  428. imagedestroy($src_img);
  429. if ($dst_img != $src_img)
  430. imagedestroy($dst_img);
  431. return $success;
  432. }
  433. else
  434. // Without GD, no image resizing at all.
  435. return false;
  436. }
  437. /**
  438. * Copy image.
  439. * Used when imagecopyresample() is not available.
  440. * @param resource $dst_img
  441. * @param resource $src_img
  442. * @param int $dst_x
  443. * @param int $dst_y
  444. * @param int $src_x
  445. * @param int $src_y
  446. * @param int $dst_w
  447. * @param int $dst_h
  448. * @param int $src_w
  449. * @param int $src_h
  450. */
  451. function imagecopyresamplebicubic($dst_img, $src_img, $dst_x, $dst_y, $src_x, $src_y, $dst_w, $dst_h, $src_w, $src_h)
  452. {
  453. $palsize = imagecolorstotal($src_img);
  454. for ($i = 0; $i < $palsize; $i++)
  455. {
  456. $colors = imagecolorsforindex($src_img, $i);
  457. imagecolorallocate($dst_img, $colors['red'], $colors['green'], $colors['blue']);
  458. }
  459. $scaleX = ($src_w - 1) / $dst_w;
  460. $scaleY = ($src_h - 1) / $dst_h;
  461. $scaleX2 = (int) $scaleX / 2;
  462. $scaleY2 = (int) $scaleY / 2;
  463. for ($j = $src_y; $j < $dst_h; $j++)
  464. {
  465. $sY = (int) $j * $scaleY;
  466. $y13 = $sY + $scaleY2;
  467. for ($i = $src_x; $i < $dst_w; $i++)
  468. {
  469. $sX = (int) $i * $scaleX;
  470. $x34 = $sX + $scaleX2;
  471. $color1 = imagecolorsforindex($src_img, imagecolorat($src_img, $sX, $y13));
  472. $color2 = imagecolorsforindex($src_img, imagecolorat($src_img, $sX, $sY));
  473. $color3 = imagecolorsforindex($src_img, imagecolorat($src_img, $x34, $y13));
  474. $color4 = imagecolorsforindex($src_img, imagecolorat($src_img, $x34, $sY));
  475. $red = ($color1['red'] + $color2['red'] + $color3['red'] + $color4['red']) / 4;
  476. $green = ($color1['green'] + $color2['green'] + $color3['green'] + $color4['green']) / 4;
  477. $blue = ($color1['blue'] + $color2['blue'] + $color3['blue'] + $color4['blue']) / 4;
  478. $color = imagecolorresolve($dst_img, $red, $green, $blue);
  479. if ($color == -1)
  480. {
  481. if ($palsize++ < 256)
  482. imagecolorallocate($dst_img, $red, $green, $blue);
  483. $color = imagecolorclosest($dst_img, $red, $green, $blue);
  484. }
  485. imagesetpixel($dst_img, $i + $dst_x - $src_x, $j + $dst_y - $src_y, $color);
  486. }
  487. }
  488. }
  489. if (!function_exists('imagecreatefrombmp'))
  490. {
  491. /**
  492. * It is set only if it doesn't already exist (for forwards compatiblity.)
  493. * It only supports uncompressed bitmaps.
  494. *
  495. * @param string $filename
  496. * @return resource, an image identifier representing the bitmap image
  497. * obtained from the given filename.
  498. */
  499. function imagecreatefrombmp($filename)
  500. {
  501. global $gd2;
  502. $fp = fopen($filename, 'rb');
  503. $errors = error_reporting(0);
  504. $header = unpack('vtype/Vsize/Vreserved/Voffset', fread($fp, 14));
  505. $info = unpack('Vsize/Vwidth/Vheight/vplanes/vbits/Vcompression/Vimagesize/Vxres/Vyres/Vncolor/Vcolorimportant', fread($fp, 40));
  506. if ($header['type'] != 0x4D42)
  507. false;
  508. if ($gd2)
  509. $dst_img = imagecreatetruecolor($info['width'], $info['height']);
  510. else
  511. $dst_img = imagecreate($info['width'], $info['height']);
  512. $palette_size = $header['offset'] - 54;
  513. $info['ncolor'] = $palette_size / 4;
  514. $palette = array();
  515. $palettedata = fread($fp, $palette_size);
  516. $n = 0;
  517. for ($j = 0; $j < $palette_size; $j++)
  518. {
  519. $b = ord($palettedata{$j++});
  520. $g = ord($palettedata{$j++});
  521. $r = ord($palettedata{$j++});
  522. $palette[$n++] = imagecolorallocate($dst_img, $r, $g, $b);
  523. }
  524. $scan_line_size = ($info['bits'] * $info['width'] + 7) >> 3;
  525. $scan_line_align = $scan_line_size & 3 ? 4 - ($scan_line_size & 3) : 0;
  526. for ($y = 0, $l = $info['height'] - 1; $y < $info['height']; $y++, $l--)
  527. {
  528. fseek($fp, $header['offset'] + ($scan_line_size + $scan_line_align) * $l);
  529. $scan_line = fread($fp, $scan_line_size);
  530. if (strlen($scan_line) < $scan_line_size)
  531. continue;
  532. if ($info['bits'] == 32)
  533. {
  534. $x = 0;
  535. for ($j = 0; $j < $scan_line_size; $x++)
  536. {
  537. $b = ord($scan_line{$j++});
  538. $g = ord($scan_line{$j++});
  539. $r = ord($scan_line{$j++});
  540. $j++;
  541. $color = imagecolorexact($dst_img, $r, $g, $b);
  542. if ($color == -1)
  543. {
  544. $color = imagecolorallocate($dst_img, $r, $g, $b);
  545. // Gah! Out of colors? Stupid GD 1... try anyhow.
  546. if ($color == -1)
  547. $color = imagecolorclosest($dst_img, $r, $g, $b);
  548. }
  549. imagesetpixel($dst_img, $x, $y, $color);
  550. }
  551. }
  552. elseif ($info['bits'] == 24)
  553. {
  554. $x = 0;
  555. for ($j = 0; $j < $scan_line_size; $x++)
  556. {
  557. $b = ord($scan_line{$j++});
  558. $g = ord($scan_line{$j++});
  559. $r = ord($scan_line{$j++});
  560. $color = imagecolorexact($dst_img, $r, $g, $b);
  561. if ($color == -1)
  562. {
  563. $color = imagecolorallocate($dst_img, $r, $g, $b);
  564. // Gah! Out of colors? Stupid GD 1... try anyhow.
  565. if ($color == -1)
  566. $color = imagecolorclosest($dst_img, $r, $g, $b);
  567. }
  568. imagesetpixel($dst_img, $x, $y, $color);
  569. }
  570. }
  571. elseif ($info['bits'] == 16)
  572. {
  573. $x = 0;
  574. for ($j = 0; $j < $scan_line_size; $x++)
  575. {
  576. $b1 = ord($scan_line{$j++});
  577. $b2 = ord($scan_line{$j++});
  578. $word = $b2 * 256 + $b1;
  579. $b = (($word & 31) * 255) / 31;
  580. $g = ((($word >> 5) & 31) * 255) / 31;
  581. $r = ((($word >> 10) & 31) * 255) / 31;
  582. // Scale the image colors up properly.
  583. $color = imagecolorexact($dst_img, $r, $g, $b);
  584. if ($color == -1)
  585. {
  586. $color = imagecolorallocate($dst_img, $r, $g, $b);
  587. // Gah! Out of colors? Stupid GD 1... try anyhow.
  588. if ($color == -1)
  589. $color = imagecolorclosest($dst_img, $r, $g, $b);
  590. }
  591. imagesetpixel($dst_img, $x, $y, $color);
  592. }
  593. }
  594. elseif ($info['bits'] == 8)
  595. {
  596. $x = 0;
  597. for ($j = 0; $j < $scan_line_size; $x++)
  598. imagesetpixel($dst_img, $x, $y, $palette[ord($scan_line{$j++})]);
  599. }
  600. elseif ($info['bits'] == 4)
  601. {
  602. $x = 0;
  603. for ($j = 0; $j < $scan_line_size; $x++)
  604. {
  605. $byte = ord($scan_line{$j++});
  606. imagesetpixel($dst_img, $x, $y, $palette[(int) ($byte / 16)]);
  607. if (++$x < $info['width'])
  608. imagesetpixel($dst_img, $x, $y, $palette[$byte & 15]);
  609. }
  610. }
  611. elseif ($info['bits'] == 1)
  612. {
  613. $x = 0;
  614. for ($j = 0; $j < $scan_line_size; $x++)
  615. {
  616. $byte = ord($scan_line{$j++});
  617. imagesetpixel($dst_img, $x, $y, $palette[(($byte) & 128) != 0]);
  618. for ($shift = 1; $shift < 8; $shift++) {
  619. if (++$x < $info['width']) imagesetpixel($dst_img, $x, $y, $palette[(($byte << $shift) & 128) != 0]);
  620. }
  621. }
  622. }
  623. }
  624. fclose($fp);
  625. error_reporting($errors);
  626. return $dst_img;
  627. }
  628. }
  629. /**
  630. * Writes a gif file to disk as a png file.
  631. * @param resource $gif
  632. * @param string $lpszFileName
  633. * @param int $background_color = -1
  634. * @return bool, whether it was successful or not.
  635. */
  636. function gif_outputAsPng($gif, $lpszFileName, $background_color = -1)
  637. {
  638. if (!isset($gif) || @get_class($gif) != 'cgif' || !$gif->loaded || $lpszFileName == '')
  639. return false;
  640. $fd = $gif->get_png_data($background_color);
  641. if (strlen($fd) <= 0)
  642. return false;
  643. if (!($fh = @fopen($lpszFileName, 'wb')))
  644. return false;
  645. @fwrite($fh, $fd, strlen($fd));
  646. @fflush($fh);
  647. @fclose($fh);
  648. return true;
  649. }
  650. /**
  651. * Show an image containing the visual verification code for registration.
  652. * Requires the GD extension.
  653. * Uses a random font for each letter from default_theme_dir/fonts.
  654. * Outputs a gif or a png (depending on whether gif ix supported).
  655. *
  656. * @param string $code
  657. * @return false if something goes wrong.
  658. */
  659. function showCodeImage($code)
  660. {
  661. global $gd2, $settings, $user_info, $modSettings;
  662. // Note: The higher the value of visual_verification_type the harder the verification is - from 0 as disabled through to 4 as "Very hard".
  663. // What type are we going to be doing?
  664. $imageType = $modSettings['visual_verification_type'];
  665. // Special case to allow the admin center to show samples.
  666. if ($user_info['is_admin'] && isset($_GET['type']))
  667. $imageType = (int) $_GET['type'];
  668. // Some quick references for what we do.
  669. // Do we show no, low or high noise?
  670. $noiseType = $imageType == 3 ? 'low' : ($imageType == 4 ? 'high' : ($imageType == 5 ? 'extreme' : 'none'));
  671. // Can we have more than one font in use?
  672. $varyFonts = $imageType > 3 ? true : false;
  673. // Just a plain white background?
  674. $simpleBGColor = $imageType < 3 ? true : false;
  675. // Plain black foreground?
  676. $simpleFGColor = $imageType == 0 ? true : false;
  677. // High much to rotate each character.
  678. $rotationType = $imageType == 1 ? 'none' : ($imageType > 3 ? 'low' : 'high');
  679. // Do we show some characters inversed?
  680. $showReverseChars = $imageType > 3 ? true : false;
  681. // Special case for not showing any characters.
  682. $disableChars = $imageType == 0 ? true : false;
  683. // What do we do with the font colors. Are they one color, close to one color or random?
  684. $fontColorType = $imageType == 1 ? 'plain' : ($imageType > 3 ? 'random' : 'cyclic');
  685. // Are the fonts random sizes?
  686. $fontSizeRandom = $imageType > 3 ? true : false;
  687. // How much space between characters?
  688. $fontHorSpace = $imageType > 3 ? 'high' : ($imageType == 1 ? 'medium' : 'minus');
  689. // Where do characters sit on the image? (Fixed position or random/very random)
  690. $fontVerPos = $imageType == 1 ? 'fixed' : ($imageType > 3 ? 'vrandom' : 'random');
  691. // Make font semi-transparent?
  692. $fontTrans = $imageType == 2 || $imageType == 3 ? true : false;
  693. // Give the image a border?
  694. $hasBorder = $simpleBGColor;
  695. // The amount of pixels inbetween characters.
  696. $character_spacing = 1;
  697. // What color is the background - generally white unless we're on "hard".
  698. if ($simpleBGColor)
  699. $background_color = array(255, 255, 255);
  700. else
  701. $background_color = isset($settings['verification_background']) ? $settings['verification_background'] : array(236, 237, 243);
  702. // The color of the characters shown (red, green, blue).
  703. if ($simpleFGColor)
  704. $foreground_color = array(0, 0, 0);
  705. else
  706. {
  707. $foreground_color = array(64, 101, 136);
  708. // Has the theme author requested a custom color?
  709. if (isset($settings['verification_foreground']))
  710. $foreground_color = $settings['verification_foreground'];
  711. }
  712. if (!is_dir($settings['default_theme_dir'] . '/fonts'))
  713. return false;
  714. // Get a list of the available fonts.
  715. $font_dir = dir($settings['default_theme_dir'] . '/fonts');
  716. $font_list = array();
  717. $ttfont_list = array();
  718. while ($entry = $font_dir->read())
  719. {
  720. if (preg_match('~^(.+)\.gdf$~', $entry, $matches) === 1)
  721. $font_list[] = $entry;
  722. elseif (preg_match('~^(.+)\.ttf$~', $entry, $matches) === 1)
  723. $ttfont_list[] = $entry;
  724. }
  725. if (empty($font_list))
  726. return false;
  727. // For non-hard things don't even change fonts.
  728. if (!$varyFonts)
  729. {
  730. $font_list = array($font_list[0]);
  731. // Try use Screenge if we can - it looks good!
  732. if (in_array('Screenge.ttf', $ttfont_list))
  733. $ttfont_list = array('Screenge.ttf');
  734. else
  735. $ttfont_list = empty($ttfont_list) ? array() : array($ttfont_list[0]);
  736. }
  737. // Create a list of characters to be shown.
  738. $characters = array();
  739. $loaded_fonts = array();
  740. for ($i = 0; $i < strlen($code); $i++)
  741. {
  742. $characters[$i] = array(
  743. 'id' => $code{$i},
  744. 'font' => array_rand($font_list),
  745. );
  746. $loaded_fonts[$characters[$i]['font']] = null;
  747. }
  748. // Load all fonts and determine the maximum font height.
  749. foreach ($loaded_fonts as $font_index => $dummy)
  750. $loaded_fonts[$font_index] = imageloadfont($settings['default_theme_dir'] . '/fonts/' . $font_list[$font_index]);
  751. // Determine the dimensions of each character.
  752. $total_width = $character_spacing * strlen($code) + 20;
  753. $max_height = 0;
  754. foreach ($characters as $char_index => $character)
  755. {
  756. $characters[$char_index]['width'] = imagefontwidth($loaded_fonts[$character['font']]);
  757. $characters[$char_index]['height'] = imagefontheight($loaded_fonts[$character['font']]);
  758. $max_height = max($characters[$char_index]['height'] + 5, $max_height);
  759. $total_width += $characters[$char_index]['width'];
  760. }
  761. // Create an image.
  762. $code_image = $gd2 ? imagecreatetruecolor($total_width, $max_height) : imagecreate($total_width, $max_height);
  763. // Draw the background.
  764. $bg_color = imagecolorallocate($code_image, $background_color[0], $background_color[1], $background_color[2]);
  765. imagefilledrectangle($code_image, 0, 0, $total_width - 1, $max_height - 1, $bg_color);
  766. // Randomize the foreground color a little.
  767. for ($i = 0; $i < 3; $i++)
  768. $foreground_color[$i] = mt_rand(max($foreground_color[$i] - 3, 0), min($foreground_color[$i] + 3, 255));
  769. $fg_color = imagecolorallocate($code_image, $foreground_color[0], $foreground_color[1], $foreground_color[2]);
  770. // Color for the dots.
  771. for ($i = 0; $i < 3; $i++)
  772. $dotbgcolor[$i] = $background_color[$i] < $foreground_color[$i] ? mt_rand(0, max($foreground_color[$i] - 20, 0)) : mt_rand(min($foreground_color[$i] + 20, 255), 255);
  773. $randomness_color = imagecolorallocate($code_image, $dotbgcolor[0], $dotbgcolor[1], $dotbgcolor[2]);
  774. // Some squares/rectanges for new extreme level
  775. if ($noiseType == 'extreme')
  776. {
  777. for ($i = 0; $i < rand(1, 5); $i++)
  778. {
  779. $x1 = rand(0, $total_width / 4);
  780. $x2 = $x1 + round(rand($total_width / 4, $total_width));
  781. $y1 = rand(0, $max_height);
  782. $y2 = $y1 + round(rand(0, $max_height / 3));
  783. imagefilledrectangle($code_image, $x1, $y1, $x2, $y2, mt_rand(0, 1) ? $fg_color : $randomness_color);
  784. }
  785. }
  786. // Fill in the characters.
  787. if (!$disableChars)
  788. {
  789. $cur_x = 0;
  790. foreach ($characters as $char_index => $character)
  791. {
  792. // Can we use true type fonts?
  793. $can_do_ttf = function_exists('imagettftext');
  794. // How much rotation will we give?
  795. if ($rotationType == 'none')
  796. $angle = 0;
  797. else
  798. $angle = mt_rand(-100, 100) / ($rotationType == 'high' ? 6 : 10);
  799. // What color shall we do it?
  800. if ($fontColorType == 'cyclic')
  801. {
  802. // Here we'll pick from a set of acceptance types.
  803. $colors = array(
  804. array(10, 120, 95),
  805. array(46, 81, 29),
  806. array(4, 22, 154),
  807. array(131, 9, 130),
  808. array(0, 0, 0),
  809. array(143, 39, 31),
  810. );
  811. if (!isset($last_index))
  812. $last_index = -1;
  813. $new_index = $last_index;
  814. while ($last_index == $new_index)
  815. $new_index = mt_rand(0, count($colors) - 1);
  816. $char_fg_color = $colors[$new_index];
  817. $last_index = $new_index;
  818. }
  819. elseif ($fontColorType == 'random')
  820. $char_fg_color = array(mt_rand(max($foreground_color[0] - 2, 0), $foreground_color[0]), mt_rand(max($foreground_color[1] - 2, 0), $foreground_color[1]), mt_rand(max($foreground_color[2] - 2, 0), $foreground_color[2]));
  821. else
  822. $char_fg_color = array($foreground_color[0], $foreground_color[1], $foreground_color[2]);
  823. if (!empty($can_do_ttf))
  824. {
  825. // GD2 handles font size differently.
  826. if ($fontSizeRandom)
  827. $font_size = $gd2 ? mt_rand(17, 19) : mt_rand(18, 25);
  828. else
  829. $font_size = $gd2 ? 18 : 24;
  830. // Work out the sizes - also fix the character width cause TTF not quite so wide!
  831. $font_x = $fontHorSpace == 'minus' && $cur_x > 0 ? $cur_x - 3 : $cur_x + 5;
  832. $font_y = $max_height - ($fontVerPos == 'vrandom' ? mt_rand(2, 8) : ($fontVerPos == 'random' ? mt_rand(3, 5) : 5));
  833. // What font face?
  834. if (!empty($ttfont_list))
  835. $fontface = $settings['default_theme_dir'] . '/fonts/' . $ttfont_list[mt_rand(0, count($ttfont_list) - 1)];
  836. // What color are we to do it in?
  837. $is_reverse = $showReverseChars ? mt_rand(0, 1) : false;
  838. $char_color = function_exists('imagecolorallocatealpha') && $fontTrans ? imagecolorallocatealpha($code_image, $char_fg_color[0], $char_fg_color[1], $char_fg_color[2], 50) : imagecolorallocate($code_image, $char_fg_color[0], $char_fg_color[1], $char_fg_color[2]);
  839. $fontcord = @imagettftext($code_image, $font_size, $angle, $font_x, $font_y, $char_color, $fontface, $character['id']);
  840. if (empty($fontcord))
  841. $can_do_ttf = false;
  842. elseif ($is_reverse)
  843. {
  844. imagefilledpolygon($code_image, $fontcord, 4, $fg_color);
  845. // Put the character back!
  846. imagettftext($code_image, $font_size, $angle, $font_x, $font_y, $randomness_color, $fontface, $character['id']);
  847. }
  848. if ($can_do_ttf)
  849. $cur_x = max($fontcord[2], $fontcord[4]) + ($angle == 0 ? 0 : 3);
  850. }
  851. if (!$can_do_ttf)
  852. {
  853. // Rotating the characters a little...
  854. if (function_exists('imagerotate'))
  855. {
  856. $char_image = $gd2 ? imagecreatetruecolor($character['width'], $character['height']) : imagecreate($character['width'], $character['height']);
  857. $char_bgcolor = imagecolorallocate($char_image, $background_color[0], $background_color[1], $background_color[2]);
  858. imagefilledrectangle($char_image, 0, 0, $character['width'] - 1, $character['height'] - 1, $char_bgcolor);
  859. imagechar($char_image, $loaded_fonts[$character['font']], 0, 0, $character['id'], imagecolorallocate($char_image, $char_fg_color[0], $char_fg_color[1], $char_fg_color[2]));
  860. $rotated_char = imagerotate($char_image, mt_rand(-100, 100) / 10, $char_bgcolor);
  861. imagecopy($code_image, $rotated_char, $cur_x, 0, 0, 0, $character['width'], $character['height']);
  862. imagedestroy($rotated_char);
  863. imagedestroy($char_image);
  864. }
  865. // Sorry, no rotation available.
  866. else
  867. imagechar($code_image, $loaded_fonts[$character['font']], $cur_x, floor(($max_height - $character['height']) / 2), $character['id'], imagecolorallocate($code_image, $char_fg_color[0], $char_fg_color[1], $char_fg_color[2]));
  868. $cur_x += $character['width'] + $character_spacing;
  869. }
  870. }
  871. }
  872. // If disabled just show a cross.
  873. else
  874. {
  875. imageline($code_image, 0, 0, $total_width, $max_height, $fg_color);
  876. imageline($code_image, 0, $max_height, $total_width, 0, $fg_color);
  877. }
  878. // Make the background color transparent on the hard image.
  879. if (!$simpleBGColor)
  880. imagecolortransparent($code_image, $bg_color);
  881. if ($hasBorder)
  882. imagerectangle($code_image, 0, 0, $total_width - 1, $max_height - 1, $fg_color);
  883. // Add some noise to the background?
  884. if ($noiseType != 'none')
  885. {
  886. for ($i = mt_rand(0, 2); $i < $max_height; $i += mt_rand(1, 2))
  887. for ($j = mt_rand(0, 10); $j < $total_width; $j += mt_rand(1, 10))
  888. imagesetpixel($code_image, $j, $i, mt_rand(0, 1) ? $fg_color : $randomness_color);
  889. // Put in some lines too?
  890. if ($noiseType != 'extreme')
  891. {
  892. $num_lines = $noiseType == 'high' ? mt_rand(3, 7) : mt_rand(2, 5);
  893. for ($i = 0; $i < $num_lines; $i++)
  894. {
  895. if (mt_rand(0, 1))
  896. {
  897. $x1 = mt_rand(0, $total_width);
  898. $x2 = mt_rand(0, $total_width);
  899. $y1 = 0; $y2 = $max_height;
  900. }
  901. else
  902. {
  903. $y1 = mt_rand(0, $max_height);
  904. $y2 = mt_rand(0, $max_height);
  905. $x1 = 0; $x2 = $total_width;
  906. }
  907. imagesetthickness($code_image, mt_rand(1, 2));
  908. imageline($code_image, $x1, $y1, $x2, $y2, mt_rand(0, 1) ? $fg_color : $randomness_color);
  909. }
  910. }
  911. else
  912. {
  913. // Put in some ellipse
  914. $num_ellipse = $noiseType == 'extreme' ? mt_rand(6, 12) : mt_rand(2, 6);
  915. for ($i = 0; $i < $num_ellipse; $i++)
  916. {
  917. $x1 = round(rand(($total_width / 4) * -1, $total_width + ($total_width / 4)));
  918. $x2 = round(rand($total_width / 2, 2 * $total_width));
  919. $y1 = round(rand(($max_height / 4) * -1, $max_height + ($max_height / 4)));
  920. $y2 = round(rand($max_height / 2, 2 * $max_height));
  921. imageellipse($code_image, $x1, $y1, $x2, $y2, mt_rand(0, 1) ? $fg_color : $randomness_color);
  922. }
  923. }
  924. }
  925. // Show the image.
  926. if (function_exists('imagegif'))
  927. {
  928. header('Content-type: image/gif');
  929. imagegif($code_image);
  930. }
  931. else
  932. {
  933. header('Content-type: image/png');
  934. imagepng($code_image);
  935. }
  936. // Bail out.
  937. imagedestroy($code_image);
  938. die();
  939. }
  940. /**
  941. * Show a letter for the visual verification code.
  942. * Alternative function for showCodeImage() in case GD is missing.
  943. * Includes an image from a random sub directory of default_theme_dir/fonts.
  944. *
  945. * @param string $letter
  946. */
  947. function showLetterImage($letter)
  948. {
  949. global $settings;
  950. if (!is_dir($settings['default_theme_dir'] . '/fonts'))
  951. return false;
  952. // Get a list of the available font directories.
  953. $font_dir = dir($settings['default_theme_dir'] . '/fonts');
  954. $font_list = array();
  955. while ($entry = $font_dir->read())
  956. if ($entry[0] !== '.' && is_dir($settings['default_theme_dir'] . '/fonts/' . $entry) && file_exists($settings['default_theme_dir'] . '/fonts/' . $entry . '.gdf'))
  957. $font_list[] = $entry;
  958. if (empty($font_list))
  959. return false;
  960. // Pick a random font.
  961. $random_font = $font_list[array_rand($font_list)];
  962. // Check if the given letter exists.
  963. if (!file_exists($settings['default_theme_dir'] . '/fonts/' . $random_font . '/' . $letter . '.gif'))
  964. return false;
  965. // Include it!
  966. header('Content-type: image/gif');
  967. include($settings['default_theme_dir'] . '/fonts/' . $random_font . '/' . $letter . '.gif');
  968. // Nothing more to come.
  969. die();
  970. }
  971. ?>