1<?php 2/** 3 * Information and debugging functions 4 * 5 * @license GPL 2 (http://www.gnu.org/licenses/gpl.html) 6 * @author Andreas Gohr <andi@splitbrain.org> 7 */ 8if(!defined('DOKU_INC')) die('meh.'); 9if(!defined('DOKU_MESSAGEURL')) define('DOKU_MESSAGEURL','http://update.dokuwiki.org/check/'); 10 11/** 12 * Check for new messages from upstream 13 * 14 * @author Andreas Gohr <andi@splitbrain.org> 15 */ 16function checkUpdateMessages(){ 17 global $conf; 18 global $INFO; 19 global $updateVersion; 20 if(!$conf['updatecheck']) return; 21 if($conf['useacl'] && !$INFO['ismanager']) return; 22 23 $cf = $conf['cachedir'].'/messages.txt'; 24 $lm = @filemtime($cf); 25 26 // check if new messages needs to be fetched 27 if($lm < time()-(60*60*24) || $lm < @filemtime(DOKU_INC.DOKU_SCRIPT)){ 28 dbglog("checkUpdatesMessages(): downloading messages.txt"); 29 $http = new DokuHTTPClient(); 30 $http->timeout = 8; 31 $data = $http->get(DOKU_MESSAGEURL.$updateVersion); 32 io_saveFile($cf,$data); 33 @touch($cf); 34 }else{ 35 dbglog("checkUpdatesMessages(): messages.txt up to date"); 36 $data = io_readFile($cf); 37 } 38 39 // show messages through the usual message mechanism 40 $msgs = explode("\n%\n",$data); 41 foreach($msgs as $msg){ 42 if($msg) msg($msg,2); 43 } 44} 45 46 47/** 48 * Return DokuWiki's version (split up in date and type) 49 * 50 * @author Andreas Gohr <andi@splitbrain.org> 51 */ 52function getVersionData(){ 53 $version = array(); 54 //import version string 55 if(@file_exists(DOKU_INC.'VERSION')){ 56 //official release 57 $version['date'] = trim(io_readfile(DOKU_INC.'VERSION')); 58 $version['type'] = 'Release'; 59 }elseif(is_dir(DOKU_INC.'.git')){ 60 $version['type'] = 'Git'; 61 $version['date'] = 'unknown'; 62 63 $inventory = DOKU_INC.'.git/logs/HEAD'; 64 if(is_file($inventory)){ 65 $sz = filesize($inventory); 66 $seek = max(0,$sz-2000); // read from back of the file 67 $fh = fopen($inventory,'rb'); 68 fseek($fh,$seek); 69 $chunk = fread($fh,2000); 70 fclose($fh); 71 $chunk = trim($chunk); 72 $chunk = @array_pop(explode("\n",$chunk)); //last log line 73 $chunk = @array_shift(explode("\t",$chunk)); //strip commit msg 74 $chunk = explode(" ",$chunk); 75 array_pop($chunk); //strip timezone 76 $date = date('Y-m-d',array_pop($chunk)); 77 if($date) $version['date'] = $date; 78 } 79 }else{ 80 $version['date'] = 'unknown'; 81 $version['type'] = 'snapshot?'; 82 } 83 return $version; 84} 85 86/** 87 * Return DokuWiki's version (as a string) 88 * 89 * @author Anika Henke <anika@selfthinker.org> 90 */ 91function getVersion(){ 92 $version = getVersionData(); 93 return $version['type'].' '.$version['date']; 94} 95 96/** 97 * Run a few sanity checks 98 * 99 * @author Andreas Gohr <andi@splitbrain.org> 100 */ 101function check(){ 102 global $conf; 103 global $INFO; 104 105 if ($INFO['isadmin'] || $INFO['ismanager']){ 106 msg('DokuWiki version: '.getVersion(),1); 107 } 108 109 if(version_compare(phpversion(),'5.1.2','<')){ 110 msg('Your PHP version is too old ('.phpversion().' vs. 5.1.2+ needed)',-1); 111 }else{ 112 msg('PHP version '.phpversion(),1); 113 } 114 115 $mem = (int) php_to_byte(ini_get('memory_limit')); 116 if($mem){ 117 if($mem < 16777216){ 118 msg('PHP is limited to less than 16MB RAM ('.$mem.' bytes). Increase memory_limit in php.ini',-1); 119 }elseif($mem < 20971520){ 120 msg('PHP is limited to less than 20MB RAM ('.$mem.' bytes), you might encounter problems with bigger pages. Increase memory_limit in php.ini',-1); 121 }elseif($mem < 33554432){ 122 msg('PHP is limited to less than 32MB RAM ('.$mem.' bytes), but that should be enough in most cases. If not, increase memory_limit in php.ini',0); 123 }else{ 124 msg('More than 32MB RAM ('.$mem.' bytes) available.',1); 125 } 126 } 127 128 if(is_writable($conf['changelog'])){ 129 msg('Changelog is writable',1); 130 }else{ 131 if (@file_exists($conf['changelog'])) { 132 msg('Changelog is not writable',-1); 133 } 134 } 135 136 if (isset($conf['changelog_old']) && @file_exists($conf['changelog_old'])) { 137 msg('Old changelog exists', 0); 138 } 139 140 if (@file_exists($conf['changelog'].'_failed')) { 141 msg('Importing old changelog failed', -1); 142 } else if (@file_exists($conf['changelog'].'_importing')) { 143 msg('Importing old changelog now.', 0); 144 } else if (@file_exists($conf['changelog'].'_import_ok')) { 145 msg('Old changelog imported', 1); 146 if (!plugin_isdisabled('importoldchangelog')) { 147 msg('Importoldchangelog plugin not disabled after import', -1); 148 } 149 } 150 151 if(is_writable(DOKU_CONF)){ 152 msg('conf directory is writable',1); 153 }else{ 154 msg('conf directory is not writable',-1); 155 } 156 157 if($conf['authtype'] == 'plain'){ 158 global $config_cascade; 159 if(is_writable($config_cascade['plainauth.users']['default'])){ 160 msg('conf/users.auth.php is writable',1); 161 }else{ 162 msg('conf/users.auth.php is not writable',0); 163 } 164 } 165 166 if(function_exists('mb_strpos')){ 167 if(defined('UTF8_NOMBSTRING')){ 168 msg('mb_string extension is available but will not be used',0); 169 }else{ 170 msg('mb_string extension is available and will be used',1); 171 if(ini_get('mbstring.func_overload') != 0){ 172 msg('mb_string function overloading is enabled, this will cause problems and should be disabled',-1); 173 } 174 } 175 }else{ 176 msg('mb_string extension not available - PHP only replacements will be used',0); 177 } 178 179 if($conf['allowdebug']){ 180 msg('Debugging support is enabled. If you don\'t need it you should set $conf[\'allowdebug\'] = 0',-1); 181 }else{ 182 msg('Debugging support is disabled',1); 183 } 184 185 if($INFO['userinfo']['name']){ 186 msg('You are currently logged in as '.$_SERVER['REMOTE_USER'].' ('.$INFO['userinfo']['name'].')',0); 187 msg('You are part of the groups '.join($INFO['userinfo']['grps'],', '),0); 188 }else{ 189 msg('You are currently not logged in',0); 190 } 191 192 msg('Your current permission for this page is '.$INFO['perm'],0); 193 194 if(is_writable($INFO['filepath'])){ 195 msg('The current page is writable by the webserver',0); 196 }else{ 197 msg('The current page is not writable by the webserver',0); 198 } 199 200 if($INFO['writable']){ 201 msg('The current page is writable by you',0); 202 }else{ 203 msg('The current page is not writable by you',0); 204 } 205 206 $check = wl('','',true).'data/_dummy'; 207 $http = new DokuHTTPClient(); 208 $http->timeout = 6; 209 $res = $http->get($check); 210 if(strpos($res,'data directory') !== false){ 211 msg('It seems like the data directory is accessible from the web. 212 Make sure this directory is properly protected 213 (See <a href="http://www.dokuwiki.org/security">security</a>)',-1); 214 }elseif($http->status == 404 || $http->status == 403){ 215 msg('The data directory seems to be properly protected',1); 216 }else{ 217 msg('Failed to check if the data directory is accessible from the web. 218 Make sure this directory is properly protected 219 (See <a href="http://www.dokuwiki.org/security">security</a>)',-1); 220 } 221 222 // Check for corrupted search index 223 $lengths = idx_listIndexLengths(); 224 $index_corrupted = false; 225 foreach ($lengths as $length) { 226 if (count(idx_getIndex('w', $length)) != count(idx_getIndex('i', $length))) { 227 $index_corrupted = true; 228 break; 229 } 230 } 231 232 foreach (idx_getIndex('metadata', '') as $index) { 233 if (count(idx_getIndex($index.'_w', '')) != count(idx_getIndex($index.'_i', ''))) { 234 $index_corrupted = true; 235 break; 236 } 237 } 238 239 if ($index_corrupted) 240 msg('The search index is corrupted. It might produce wrong results and most 241 probably needs to be rebuilt. See 242 <a href="http://www.dokuwiki.org/faq:searchindex">faq:searchindex</a> 243 for ways to rebuild the search index.', -1); 244 elseif (!empty($lengths)) 245 msg('The search index seems to be working', 1); 246 else 247 msg('The search index is empty. See 248 <a href="http://www.dokuwiki.org/faq:searchindex">faq:searchindex</a> 249 for help on how to fix the search index. If the default indexer 250 isn\'t used or the wiki is actually empty this is normal.'); 251} 252 253/** 254 * print a message 255 * 256 * If HTTP headers were not sent yet the message is added 257 * to the global message array else it's printed directly 258 * using html_msgarea() 259 * 260 * 261 * Levels can be: 262 * 263 * -1 error 264 * 0 info 265 * 1 success 266 * 267 * @author Andreas Gohr <andi@splitbrain.org> 268 * @see html_msgarea 269 */ 270function msg($message,$lvl=0,$line='',$file=''){ 271 global $MSG, $MSG_shown; 272 $errors[-1] = 'error'; 273 $errors[0] = 'info'; 274 $errors[1] = 'success'; 275 $errors[2] = 'notify'; 276 277 if($line || $file) $message.=' ['.basename($file).':'.$line.']'; 278 279 if(!isset($MSG)) $MSG = array(); 280 $MSG[]=array('lvl' => $errors[$lvl], 'msg' => $message); 281 if(isset($MSG_shown) || headers_sent()){ 282 if(function_exists('html_msgarea')){ 283 html_msgarea(); 284 }else{ 285 print "ERROR($lvl) $message"; 286 } 287 unset($GLOBALS['MSG']); 288 } 289} 290 291/** 292 * print debug messages 293 * 294 * little function to print the content of a var 295 * 296 * @author Andreas Gohr <andi@splitbrain.org> 297 */ 298function dbg($msg,$hidden=false){ 299 if($hidden){ 300 echo "<!--\n"; 301 print_r($msg); 302 echo "\n-->"; 303 }else{ 304 echo '<pre class="dbg">'; 305 echo hsc(print_r($msg,true)); 306 echo '</pre>'; 307 } 308} 309 310/** 311 * Print info to a log file 312 * 313 * @author Andreas Gohr <andi@splitbrain.org> 314 */ 315function dbglog($msg,$header=''){ 316 global $conf; 317 // The debug log isn't automatically cleaned thus only write it when 318 // debugging has been enabled by the user. 319 if($conf['allowdebug'] !== 1) return; 320 if(is_object($msg) || is_array($msg)){ 321 $msg = print_r($msg,true); 322 } 323 324 if($header) $msg = "$header\n$msg"; 325 326 $file = $conf['cachedir'].'/debug.log'; 327 $fh = fopen($file,'a'); 328 if($fh){ 329 fwrite($fh,date('H:i:s ').$_SERVER['REMOTE_ADDR'].': '.$msg."\n"); 330 fclose($fh); 331 } 332} 333 334/** 335 * Print a reversed, prettyprinted backtrace 336 * 337 * @author Gary Owen <gary_owen@bigfoot.com> 338 */ 339function dbg_backtrace(){ 340 // Get backtrace 341 $backtrace = debug_backtrace(); 342 343 // Unset call to debug_print_backtrace 344 array_shift($backtrace); 345 346 // Iterate backtrace 347 $calls = array(); 348 $depth = count($backtrace) - 1; 349 foreach ($backtrace as $i => $call) { 350 $location = $call['file'] . ':' . $call['line']; 351 $function = (isset($call['class'])) ? 352 $call['class'] . $call['type'] . $call['function'] : $call['function']; 353 354 $params = array(); 355 if (isset($call['args'])){ 356 foreach($call['args'] as $arg){ 357 if(is_object($arg)){ 358 $params[] = '[Object '.get_class($arg).']'; 359 }elseif(is_array($arg)){ 360 $params[] = '[Array]'; 361 }elseif(is_null($arg)){ 362 $param[] = '[NULL]'; 363 }else{ 364 $params[] = (string) '"'.$arg.'"'; 365 } 366 } 367 } 368 $params = implode(', ',$params); 369 370 $calls[$depth - $i] = sprintf('%s(%s) called at %s', 371 $function, 372 str_replace("\n", '\n', $params), 373 $location); 374 } 375 ksort($calls); 376 377 return implode("\n", $calls); 378} 379 380/** 381 * Remove all data from an array where the key seems to point to sensitive data 382 * 383 * This is used to remove passwords, mail addresses and similar data from the 384 * debug output 385 * 386 * @author Andreas Gohr <andi@splitbrain.org> 387 */ 388function debug_guard(&$data){ 389 foreach($data as $key => $value){ 390 if(preg_match('/(notify|pass|auth|secret|ftp|userinfo|token|buid|mail|proxy)/i',$key)){ 391 $data[$key] = '***'; 392 continue; 393 } 394 if(is_array($value)) debug_guard($data[$key]); 395 } 396} 397