123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500 |
- <?php
- /**
- * This file concerns itself with logging, whether in the database or files.
- *
- * Simple Machines Forum (SMF)
- *
- * @package SMF
- * @author Simple Machines http://www.simplemachines.org
- * @copyright 2011 Simple Machines
- * @license http://www.simplemachines.org/about/smf/license.php BSD
- *
- * @version 2.1 Alpha 1
- */
- if (!defined('SMF'))
- die('Hacking attempt...');
- /**
- * Put this user in the online log.
- *
- * @param bool $force = false
- */
- function writeLog($force = false)
- {
- global $user_info, $user_settings, $context, $modSettings, $settings, $topic, $board, $smcFunc, $sourcedir;
- // If we are showing who is viewing a topic, let's see if we are, and force an update if so - to make it accurate.
- if (!empty($settings['display_who_viewing']) && ($topic || $board))
- {
- // Take the opposite approach!
- $force = true;
- // Don't update for every page - this isn't wholly accurate but who cares.
- if ($topic)
- {
- if (isset($_SESSION['last_topic_id']) && $_SESSION['last_topic_id'] == $topic)
- $force = false;
- $_SESSION['last_topic_id'] = $topic;
- }
- }
- // Are they a spider we should be tracking? Mode = 1 gets tracked on its spider check...
- if (!empty($user_info['possibly_robot']) && !empty($modSettings['spider_mode']) && $modSettings['spider_mode'] > 1)
- {
- require_once($sourcedir . '/ManageSearchEngines.php');
- logSpider();
- }
- // Don't mark them as online more than every so often.
- if (!empty($_SESSION['log_time']) && $_SESSION['log_time'] >= (time() - 8) && !$force)
- return;
- if (!empty($modSettings['who_enabled']))
- {
- $serialized = $_GET + array('USER_AGENT' => $_SERVER['HTTP_USER_AGENT']);
- // In the case of a dlattach action, session_var may not be set.
- if (!isset($context['session_var']))
- $context['session_var'] = $_SESSION['session_var'];
- unset($serialized['sesc'], $serialized[$context['session_var']]);
- $serialized = serialize($serialized);
- }
- else
- $serialized = '';
- // Guests use 0, members use their session ID.
- $session_id = $user_info['is_guest'] ? 'ip' . $user_info['ip'] : session_id();
- // Grab the last all-of-SMF-specific log_online deletion time.
- $do_delete = cache_get_data('log_online-update', 30) < time() - 30;
- // If the last click wasn't a long time ago, and there was a last click...
- if (!empty($_SESSION['log_time']) && $_SESSION['log_time'] >= time() - $modSettings['lastActive'] * 20)
- {
- if ($do_delete)
- {
- $smcFunc['db_query']('delete_log_online_interval', '
- DELETE FROM {db_prefix}log_online
- WHERE log_time < {int:log_time}
- AND session != {string:session}',
- array(
- 'log_time' => time() - $modSettings['lastActive'] * 60,
- 'session' => $session_id,
- )
- );
- // Cache when we did it last.
- cache_put_data('log_online-update', time(), 30);
- }
- $smcFunc['db_query']('', '
- UPDATE {db_prefix}log_online
- SET log_time = {int:log_time}, ip = IFNULL(INET_ATON({string:ip}), 0), url = {string:url}
- WHERE session = {string:session}',
- array(
- 'log_time' => time(),
- 'ip' => $user_info['ip'],
- 'url' => $serialized,
- 'session' => $session_id,
- )
- );
- // Guess it got deleted.
- if ($smcFunc['db_affected_rows']() == 0)
- $_SESSION['log_time'] = 0;
- }
- else
- $_SESSION['log_time'] = 0;
- // Otherwise, we have to delete and insert.
- if (empty($_SESSION['log_time']))
- {
- if ($do_delete || !empty($user_info['id']))
- $smcFunc['db_query']('', '
- DELETE FROM {db_prefix}log_online
- WHERE ' . ($do_delete ? 'log_time < {int:log_time}' : '') . ($do_delete && !empty($user_info['id']) ? ' OR ' : '') . (empty($user_info['id']) ? '' : 'id_member = {int:current_member}'),
- array(
- 'current_member' => $user_info['id'],
- 'log_time' => time() - $modSettings['lastActive'] * 60,
- )
- );
- $smcFunc['db_insert']($do_delete ? 'ignore' : 'replace',
- '{db_prefix}log_online',
- array('session' => 'string', 'id_member' => 'int', 'id_spider' => 'int', 'log_time' => 'int', 'ip' => 'raw', 'url' => 'string'),
- array($session_id, $user_info['id'], empty($_SESSION['id_robot']) ? 0 : $_SESSION['id_robot'], time(), 'IFNULL(INET_ATON(\'' . $user_info['ip'] . '\'), 0)', $serialized),
- array('session')
- );
- }
- // Mark your session as being logged.
- $_SESSION['log_time'] = time();
- // Well, they are online now.
- if (empty($_SESSION['timeOnlineUpdated']))
- $_SESSION['timeOnlineUpdated'] = time();
- // Set their login time, if not already done within the last minute.
- if (SMF != 'SSI' && !empty($user_info['last_login']) && $user_info['last_login'] < time() - 60)
- {
- // Don't count longer than 15 minutes.
- if (time() - $_SESSION['timeOnlineUpdated'] > 60 * 15)
- $_SESSION['timeOnlineUpdated'] = time();
- $user_settings['total_time_logged_in'] += time() - $_SESSION['timeOnlineUpdated'];
- updateMemberData($user_info['id'], array('last_login' => time(), 'member_ip' => $user_info['ip'], 'member_ip2' => $_SERVER['BAN_CHECK_IP'], 'total_time_logged_in' => $user_settings['total_time_logged_in']));
- if (!empty($modSettings['cache_enable']) && $modSettings['cache_enable'] >= 2)
- cache_put_data('user_settings-' . $user_info['id'], $user_settings, 60);
- $user_info['total_time_logged_in'] += time() - $_SESSION['timeOnlineUpdated'];
- $_SESSION['timeOnlineUpdated'] = time();
- }
- }
- /**
- * Logs the last database error into a file.
- * Attempts to use the backup file first, to store the last database error
- * and only update db_last_error.php if the first was successful.
- */
- function logLastDatabaseError()
- {
- global $boarddir;
-
- // Make a note of the last modified time in case someone does this before us
- $last_db_error_change = @filemtime($boarddir . '/db_last_error.php');
-
- // save the old file before we do anything
- $file = $boarddir . '/db_last_error.php';
- $dberror_backup_fail = !@is_writable($boarddir . '/db_last_error_bak.php') || !@copy($file, $boarddir . '/db_last_error_bak.php');
- $dberror_backup_fail = !$dberror_backup_fail ? (!file_exists($boarddir . '/db_last_error_bak.php') || filesize($boarddir . '/db_last_error_bak.php') === 0) : $dberror_backup_fail;
-
- clearstatcache();
- if (filemtime($boarddir . '/db_last_error.php') === $last_db_error_change)
- {
- // Write the change
- $write_db_change = '<' . '?' . "php\n" . '$db_last_error = ' . time() . ';' . "\n" . '?' . '>';
- $written_bytes = file_put_contents($boarddir . '/db_last_error.php', $write_db_change, LOCK_EX);
-
- // survey says ...
- if ($written_bytes !== strlen($write_db_change) && !$dberror_backup_fail)
- {
- // Oops. maybe we have no more disk space left, or some other troubles, troubles...
- // Copy the file back and run for your life!
- @copy($boarddir . '/db_last_error_bak.php', $boarddir . '/db_last_error.php');
- }
- else
- {
- @touch($boarddir . '/' . 'Settings.php');
- return true;
- }
- }
- return false;
- }
- /**
- * This function shows the debug information tracked when $db_show_debug = true
- * in Settings.php
- */
- function displayDebug()
- {
- global $context, $scripturl, $boarddir, $modSettings, $boarddir;
- global $db_cache, $db_count, $db_show_debug, $cache_count, $cache_hits, $txt;
- // Add to Settings.php if you want to show the debugging information.
- if (!isset($db_show_debug) || $db_show_debug !== true || (isset($_GET['action']) && $_GET['action'] == 'viewquery') || WIRELESS)
- return;
- if (empty($_SESSION['view_queries']))
- $_SESSION['view_queries'] = 0;
- if (empty($context['debug']['language_files']))
- $context['debug']['language_files'] = array();
- if (empty($context['debug']['sheets']))
- $context['debug']['sheets'] = array();
- $files = get_included_files();
- $total_size = 0;
- for ($i = 0, $n = count($files); $i < $n; $i++)
- {
- if (file_exists($files[$i]))
- $total_size += filesize($files[$i]);
- $files[$i] = strtr($files[$i], array($boarddir => '.'));
- }
- $warnings = 0;
- if (!empty($db_cache))
- {
- foreach ($db_cache as $q => $qq)
- {
- if (!empty($qq['w']))
- $warnings += count($qq['w']);
- }
- $_SESSION['debug'] = &$db_cache;
- }
- // Gotta have valid HTML ;).
- $temp = ob_get_contents();
- ob_clean();
- echo preg_replace('~</body>\s*</html>~', '', $temp), '
- <div class="smalltext" style="text-align: left; margin: 1ex;">
- ', $txt['debug_browser'], $context['browser_body_id'], ' <em>(', implode('</em>, <em>', array_reverse(array_keys($context['browser'], true))), ')</em><br />
- ', $txt['debug_templates'], count($context['debug']['templates']), ': <em>', implode('</em>, <em>', $context['debug']['templates']), '</em>.<br />
- ', $txt['debug_subtemplates'], count($context['debug']['sub_templates']), ': <em>', implode('</em>, <em>', $context['debug']['sub_templates']), '</em>.<br />
- ', $txt['debug_language_files'], count($context['debug']['language_files']), ': <em>', implode('</em>, <em>', $context['debug']['language_files']), '</em>.<br />
- ', $txt['debug_stylesheets'], count($context['debug']['sheets']), ': <em>', implode('</em>, <em>', $context['debug']['sheets']), '</em>.<br />
- ', $txt['debug_files_included'], count($files), ' - ', round($total_size / 1024), $txt['debug_kb'], ' (<a href="javascript:void(0);" onclick="document.getElementById(\'debug_include_info\').style.display = \'inline\'; this.style.display = \'none\'; return false;">', $txt['debug_show'], '</a><span id="debug_include_info" style="display: none;"><em>', implode('</em>, <em>', $files), '</em></span>)<br />';
-
- // What tokens are active?
- if (isset($_SESSION['token']))
- {
- $token_list = array();
- foreach ($_SESSION['token'] as $key => $data)
- $token_list[] = $key;
-
- echo $txt['debug_tokens'] . '<em>' . implode(',</em> <em>', $token_list), '</em>.<br />';
- }
- if (!empty($modSettings['cache_enable']) && !empty($cache_hits))
- {
- $entries = array();
- $total_t = 0;
- $total_s = 0;
- foreach ($cache_hits as $cache_hit)
- {
- $entries[] = $cache_hit['d'] . ' ' . $cache_hit['k'] . ': ' . sprintf($txt['debug_cache_seconds_bytes'], comma_format($cache_hit['t'], 5), $cache_hit['s']);
- $total_t += $cache_hit['t'];
- $total_s += $cache_hit['s'];
- }
- echo '
- ', $txt['debug_cache_hits'], $cache_count, ': ', sprintf($txt['debug_cache_seconds_bytes_total'], comma_format($total_t, 5), comma_format($total_s)), ' (<a href="javascript:void(0);" onclick="document.getElementById(\'debug_cache_info\').style.display = \'inline\'; this.style.display = \'none\'; return false;">', $txt['debug_show'], '</a><span id="debug_cache_info" style="display: none;"><em>', implode('</em>, <em>', $entries), '</em></span>)<br />';
- }
- echo '
- <a href="', $scripturl, '?action=viewquery" target="_blank" class="new_win">', $warnings == 0 ? sprintf($txt['debug_queries_used'], (int) $db_count) : sprintf($txt['debug_queries_used_and_warnings'], (int) $db_count, $warnings), '</a><br />
- <br />';
- if ($_SESSION['view_queries'] == 1 && !empty($db_cache))
- foreach ($db_cache as $q => $qq)
- {
- $is_select = strpos(trim($qq['q']), 'SELECT') === 0 || preg_match('~^INSERT(?: IGNORE)? INTO \w+(?:\s+\([^)]+\))?\s+SELECT .+$~s', trim($qq['q'])) != 0;
- // Temporary tables created in earlier queries are not explainable.
- if ($is_select)
- {
- foreach (array('log_topics_unread', 'topics_posted_in', 'tmp_log_search_topics', 'tmp_log_search_messages') as $tmp)
- if (strpos(trim($qq['q']), $tmp) !== false)
- {
- $is_select = false;
- break;
- }
- }
- // But actual creation of the temporary tables are.
- elseif (preg_match('~^CREATE TEMPORARY TABLE .+?SELECT .+$~s', trim($qq['q'])) != 0)
- $is_select = true;
- // Make the filenames look a bit better.
- if (isset($qq['f']))
- $qq['f'] = preg_replace('~^' . preg_quote($boarddir, '~') . '~', '...', $qq['f']);
- echo '
- <strong>', $is_select ? '<a href="' . $scripturl . '?action=viewquery;qq=' . ($q + 1) . '#qq' . $q . '" target="_blank" class="new_win" style="text-decoration: none;">' : '', nl2br(str_replace("\t", ' ', htmlspecialchars(ltrim($qq['q'], "\n\r")))) . ($is_select ? '</a></strong>' : '</strong>') . '<br />
- ';
- if (!empty($qq['f']) && !empty($qq['l']))
- echo sprintf($txt['debug_query_in_line'], $qq['f'], $qq['l']);
- if (isset($qq['s'], $qq['t']) && isset($txt['debug_query_which_took_at']))
- echo sprintf($txt['debug_query_which_took_at'], round($qq['t'], 8), round($qq['s'], 8)) . '<br />';
- elseif (isset($qq['t']))
- echo sprintf($txt['debug_query_which_took'], round($qq['t'], 8)) . '<br />';
- echo '
- <br />';
- }
- echo '
- <a href="' . $scripturl . '?action=viewquery;sa=hide">', $txt['debug_' . (empty($_SESSION['view_queries']) ? 'show' : 'hide') . '_queries'], '</a>
- </div></body></html>';
- }
- /**
- * Track Statistics.
- * Caches statistics changes, and flushes them if you pass nothing.
- * If '+' is used as a value, it will be incremented.
- * It does not actually commit the changes until the end of the page view.
- * It depends on the trackStats setting.
- *
- * @param array $stats = array()
- * @return bool|array
- */
- function trackStats($stats = array())
- {
- global $modSettings, $smcFunc;
- static $cache_stats = array();
- if (empty($modSettings['trackStats']))
- return false;
- if (!empty($stats))
- return $cache_stats = array_merge($cache_stats, $stats);
- elseif (empty($cache_stats))
- return false;
- $setStringUpdate = '';
- $insert_keys = array();
- $date = strftime('%Y-%m-%d', forum_time(false));
- $update_parameters = array(
- 'current_date' => $date,
- );
- foreach ($cache_stats as $field => $change)
- {
- $setStringUpdate .= '
- ' . $field . ' = ' . ($change === '+' ? $field . ' + 1' : '{int:' . $field . '}') . ',';
- if ($change === '+')
- $cache_stats[$field] = 1;
- else
- $update_parameters[$field] = $change;
- $insert_keys[$field] = 'int';
- }
- $smcFunc['db_query']('', '
- UPDATE {db_prefix}log_activity
- SET' . substr($setStringUpdate, 0, -1) . '
- WHERE date = {date:current_date}',
- $update_parameters
- );
- if ($smcFunc['db_affected_rows']() == 0)
- {
- $smcFunc['db_insert']('ignore',
- '{db_prefix}log_activity',
- array_merge($insert_keys, array('date' => 'date')),
- array_merge($cache_stats, array($date)),
- array('date')
- );
- }
- // Don't do this again.
- $cache_stats = array();
- return true;
- }
- /**
- * This function logs an action in the respective log. (database log)
- * @example logAction('remove', array('starter' => $id_member_started));
- *
- * @param string $action
- * @param array $extra = array()
- * @param string $log_type, options 'moderate', 'admin', ...etc.
- */
- function logAction($action, $extra = array(), $log_type = 'moderate')
- {
- global $modSettings, $user_info, $smcFunc, $sourcedir;
- $log_types = array(
- 'moderate' => 1,
- 'user' => 2,
- 'admin' => 3,
- );
- // No point in doing anything, if the log isn't even enabled.
- if (empty($modSettings['modlog_enabled']) || !isset($log_types[$log_type]))
- return false;
- if (!is_array($extra))
- trigger_error('logAction(): data is not an array with action \'' . $action . '\'', E_USER_NOTICE);
- // Pull out the parts we want to store separately, but also make sure that the data is proper
- if (isset($extra['topic']))
- {
- if (!is_numeric($extra['topic']))
- trigger_error('logAction(): data\'s topic is not a number', E_USER_NOTICE);
- $topic_id = empty($extra['topic']) ? '0' : (int)$extra['topic'];
- unset($extra['topic']);
- }
- else
- $topic_id = '0';
- if (isset($extra['message']))
- {
- if (!is_numeric($extra['message']))
- trigger_error('logAction(): data\'s message is not a number', E_USER_NOTICE);
- $msg_id = empty($extra['message']) ? '0' : (int)$extra['message'];
- unset($extra['message']);
- }
- else
- $msg_id = '0';
- // @todo cache this?
- // Is there an associated report on this?
- if (in_array($action, array('move', 'remove', 'split', 'merge')))
- {
- $request = $smcFunc['db_query']('', '
- SELECT id_report
- FROM {db_prefix}log_reported
- WHERE {raw:column_name} = {int:reported}
- LIMIT 1',
- array(
- 'column_name' => !empty($msg_id) ? 'id_msg' : 'id_topic',
- 'reported' => !empty($msg_id) ? $msg_id : $topic_id,
- ));
- // Alright, if we get any result back, update open reports.
- if ($smcFunc['db_num_rows']($request) > 0)
- {
- require_once($sourcedir . '/ModerationCenter.php');
- updateSettings(array('last_mod_report_action' => time()));
- recountOpenReports();
- }
- $smcFunc['db_free_result']($request);
- }
- if (isset($extra['member']) && !is_numeric($extra['member']))
- trigger_error('logAction(): data\'s member is not a number', E_USER_NOTICE);
- if (isset($extra['board']))
- {
- if (!is_numeric($extra['board']))
- trigger_error('logAction(): data\'s board is not a number', E_USER_NOTICE);
- $board_id = empty($extra['board']) ? '0' : (int)$extra['board'];
- unset($extra['board']);
- }
- else
- $board_id = '0';
- if (isset($extra['board_to']))
- {
- if (!is_numeric($extra['board_to']))
- trigger_error('logAction(): data\'s board_to is not a number', E_USER_NOTICE);
- if (empty($board_id))
- {
- $board_id = empty($extra['board_to']) ? '0' : (int)$extra['board_to'];
- unset($extra['board_to']);
- }
- }
- if (isset($extra['member_affected']))
- $memID = $extra['member_affected'];
- else
- $memID = $user_info['id'];
- $smcFunc['db_insert']('',
- '{db_prefix}log_actions',
- array(
- 'log_time' => 'int', 'id_log' => 'int', 'id_member' => 'int', 'ip' => 'string-16', 'action' => 'string',
- 'id_board' => 'int', 'id_topic' => 'int', 'id_msg' => 'int', 'extra' => 'string-65534',
- ),
- array(
- time(), $log_types[$log_type], $memID, $user_info['ip'], $action,
- $board_id, $topic_id, $msg_id, serialize($extra),
- ),
- array('id_action')
- );
- return $smcFunc['db_insert_id']('{db_prefix}log_actions', 'id_action');
- }
- ?>
|