xref: /dokuwiki/inc/infoutils.php (revision 38dc5fa6df9a0cd5afd16dc95600d7cf11b08877) 
1<?php
2/**
3 * Information and debugging functions
4 *
5 * @license    GPL 2 (http://www.gnu.org/licenses/gpl.html)
6 * @author     Andreas Gohr <andi@splitbrain.org>
7 */
8if(!defined('DOKU_INC')) die('meh.');
9if(!defined('DOKU_MESSAGEURL')) define('DOKU_MESSAGEURL','http://update.dokuwiki.org/check/');
10
11/**
12 * Check for new messages from upstream
13 *
14 * @author Andreas Gohr <andi@splitbrain.org>
15 */
16function checkUpdateMessages(){
17    global $conf;
18    global $INFO;
19    global $updateVersion;
20    if(!$conf['updatecheck']) return;
21    if($conf['useacl'] && !$INFO['ismanager']) return;
22
23    $cf = $conf['cachedir'].'/messages.txt';
24    $lm = @filemtime($cf);
25
26    // check if new messages needs to be fetched
27    if($lm < time()-(60*60*24) || $lm < @filemtime(DOKU_INC.'doku.php')){
28        $http = new DokuHTTPClient();
29        $http->timeout = 8;
30        $data = $http->get(DOKU_MESSAGEURL.$updateVersion);
31        io_saveFile($cf,$data);
32    }else{
33        $data = io_readFile($cf);
34    }
35
36    // show messages through the usual message mechanism
37    $msgs = explode("\n%\n",$data);
38    foreach($msgs as $msg){
39        if($msg) msg($msg,2);
40    }
41}
42
43
44/**
45 * Return DokuWiki's version (split up in date and type)
46 *
47 * @author Andreas Gohr <andi@splitbrain.org>
48 */
49function getVersionData(){
50    $version = array();
51    //import version string
52    if(@file_exists(DOKU_INC.'VERSION')){
53        //official release
54        $version['date'] = trim(io_readfile(DOKU_INC.'VERSION'));
55        $version['type'] = 'Release';
56    }elseif(is_dir(DOKU_INC.'.git')){
57        $version['type'] = 'Git';
58        $version['date'] = 'unknown';
59
60        $inventory = DOKU_INC.'.git/logs/HEAD';
61        if(is_file($inventory)){
62            $sz   = filesize($inventory);
63            $seek = max(0,$sz-2000); // read from back of the file
64            $fh   = fopen($inventory,'rb');
65            fseek($fh,$seek);
66            $chunk = fread($fh,2000);
67            fclose($fh);
68            $chunk = trim($chunk);
69            $chunk = array_pop(explode("\n",$chunk));   //last log line
70            $chunk = array_shift(explode("\t",$chunk)); //strip commit msg
71            $chunk = explode(" ",$chunk);
72            array_pop($chunk); //strip timezone
73            $date = date('Y-m-d',array_pop($chunk));
74            if($date) $version['date'] = $date;
75        }
76    }else{
77        $version['date'] = 'unknown';
78        $version['type'] = 'snapshot?';
79    }
80    return $version;
81}
82
83/**
84 * Return DokuWiki's version (as a string)
85 *
86 * @author Anika Henke <anika@selfthinker.org>
87 */
88function getVersion(){
89    $version = getVersionData();
90    return $version['type'].' '.$version['date'];
91}
92
93/**
94 * Run a few sanity checks
95 *
96 * @author Andreas Gohr <andi@splitbrain.org>
97 */
98function check(){
99    global $conf;
100    global $INFO;
101
102    if ($INFO['isadmin'] || $INFO['ismanager']){
103        msg('DokuWiki version: '.getVersion(),1);
104    }
105
106    if(version_compare(phpversion(),'5.1.2','<')){
107        msg('Your PHP version is too old ('.phpversion().' vs. 5.1.2+ needed)',-1);
108    }else{
109        msg('PHP version '.phpversion(),1);
110    }
111
112    $mem = (int) php_to_byte(ini_get('memory_limit'));
113    if($mem){
114        if($mem < 16777216){
115            msg('PHP is limited to less than 16MB RAM ('.$mem.' bytes). Increase memory_limit in php.ini',-1);
116        }elseif($mem < 20971520){
117            msg('PHP is limited to less than 20MB RAM ('.$mem.' bytes), you might encounter problems with bigger pages. Increase memory_limit in php.ini',-1);
118        }elseif($mem < 33554432){
119            msg('PHP is limited to less than 32MB RAM ('.$mem.' bytes), but that should be enough in most cases. If not, increase memory_limit in php.ini',0);
120        }else{
121            msg('More than 32MB RAM ('.$mem.' bytes) available.',1);
122        }
123    }
124
125    if(is_writable($conf['changelog'])){
126        msg('Changelog is writable',1);
127    }else{
128        if (@file_exists($conf['changelog'])) {
129            msg('Changelog is not writable',-1);
130        }
131    }
132
133    if (isset($conf['changelog_old']) && @file_exists($conf['changelog_old'])) {
134        msg('Old changelog exists', 0);
135    }
136
137    if (@file_exists($conf['changelog'].'_failed')) {
138        msg('Importing old changelog failed', -1);
139    } else if (@file_exists($conf['changelog'].'_importing')) {
140        msg('Importing old changelog now.', 0);
141    } else if (@file_exists($conf['changelog'].'_import_ok')) {
142        msg('Old changelog imported', 1);
143        if (!plugin_isdisabled('importoldchangelog')) {
144            msg('Importoldchangelog plugin not disabled after import', -1);
145        }
146    }
147
148    if(is_writable($conf['datadir'])){
149        msg('Datadir is writable',1);
150    }else{
151        msg('Datadir is not writable',-1);
152    }
153
154    if(is_writable($conf['olddir'])){
155        msg('Attic is writable',1);
156    }else{
157        msg('Attic is not writable',-1);
158    }
159
160    if(is_writable($conf['mediadir'])){
161        msg('Mediadir is writable',1);
162    }else{
163        msg('Mediadir is not writable',-1);
164    }
165
166    if(is_writable($conf['cachedir'])){
167        msg('Cachedir is writable',1);
168    }else{
169        msg('Cachedir is not writable',-1);
170    }
171
172    if(is_writable($conf['lockdir'])){
173        msg('Lockdir is writable',1);
174    }else{
175        msg('Lockdir is not writable',-1);
176    }
177
178    if($conf['authtype'] == 'plain'){
179        if(is_writable(DOKU_CONF.'users.auth.php')){
180            msg('conf/users.auth.php is writable',1);
181        }else{
182            msg('conf/users.auth.php is not writable',0);
183        }
184    }
185
186    if(function_exists('mb_strpos')){
187        if(defined('UTF8_NOMBSTRING')){
188            msg('mb_string extension is available but will not be used',0);
189        }else{
190            msg('mb_string extension is available and will be used',1);
191            if(ini_get('mbstring.func_overload') != 0){
192                msg('mb_string function overloading is enabled, this will cause problems and should be disabled',-1);
193            }
194        }
195    }else{
196        msg('mb_string extension not available - PHP only replacements will be used',0);
197    }
198
199    if($conf['allowdebug']){
200        msg('Debugging support is enabled. If you don\'t need it you should set $conf[\'allowdebug\'] = 0',-1);
201    }else{
202        msg('Debugging support is disabled',1);
203    }
204
205    if($INFO['userinfo']['name']){
206        msg('You are currently logged in as '.$_SERVER['REMOTE_USER'].' ('.$INFO['userinfo']['name'].')',0);
207        msg('You are part of the groups '.join($INFO['userinfo']['grps'],', '),0);
208    }else{
209        msg('You are currently not logged in',0);
210    }
211
212    msg('Your current permission for this page is '.$INFO['perm'],0);
213
214    if(is_writable($INFO['filepath'])){
215        msg('The current page is writable by the webserver',0);
216    }else{
217        msg('The current page is not writable by the webserver',0);
218    }
219
220    if($INFO['writable']){
221        msg('The current page is writable by you',0);
222    }else{
223        msg('The current page is not writable by you',0);
224    }
225
226    $check = wl('','',true).'data/_dummy';
227    $http = new DokuHTTPClient();
228    $http->timeout = 6;
229    $res = $http->get($check);
230    if(strpos($res,'data directory') !== false){
231        msg('It seems like the data directory is accessible from the web.
232                Make sure this directory is properly protected
233                (See <a href="http://www.dokuwiki.org/security">security</a>)',-1);
234    }elseif($http->status == 404 || $http->status == 403){
235        msg('The data directory seems to be properly protected',1);
236    }else{
237        msg('Failed to check if the data directory is accessible from the web.
238                Make sure this directory is properly protected
239                (See <a href="http://www.dokuwiki.org/security">security</a>)',-1);
240    }
241}
242
243/**
244 * print a message
245 *
246 * If HTTP headers were not sent yet the message is added
247 * to the global message array else it's printed directly
248 * using html_msgarea()
249 *
250 *
251 * Levels can be:
252 *
253 * -1 error
254 *  0 info
255 *  1 success
256 *
257 * @author Andreas Gohr <andi@splitbrain.org>
258 * @see    html_msgarea
259 */
260function msg($message,$lvl=0,$line='',$file=''){
261    global $MSG;
262    $errors[-1] = 'error';
263    $errors[0]  = 'info';
264    $errors[1]  = 'success';
265    $errors[2]  = 'notify';
266
267    if($line || $file) $message.=' ['.basename($file).':'.$line.']';
268
269    if(!isset($MSG)) $MSG = array();
270    $MSG[]=array('lvl' => $errors[$lvl], 'msg' => $message);
271    if(headers_sent()){
272        if(function_exists('html_msgarea')){
273            html_msgarea();
274        }else{
275            print "ERROR($lvl) $message";
276        }
277        unset($GLOBALS['MSG']);
278    }
279}
280
281/**
282 * print debug messages
283 *
284 * little function to print the content of a var
285 *
286 * @author Andreas Gohr <andi@splitbrain.org>
287 */
288function dbg($msg,$hidden=false){
289    if($hidden){
290        echo "<!--\n";
291        print_r($msg);
292        echo "\n-->";
293    }else{
294        echo '<pre class="dbg">';
295        echo hsc(print_r($msg,true));
296        echo '</pre>';
297    }
298}
299
300/**
301 * Print info to a log file
302 *
303 * @author Andreas Gohr <andi@splitbrain.org>
304 */
305function dbglog($msg,$header=''){
306    global $conf;
307    // The debug log isn't automatically cleaned thus only write it when
308    // debugging has been enabled by the user.
309    if($conf['allowdebug'] !== 1) return;
310    if(is_object($msg) || is_array($msg)){
311        $msg = print_r($msg,true);
312    }
313
314    if($header) $msg = "$header\n$msg";
315
316    $file = $conf['cachedir'].'/debug.log';
317    $fh = fopen($file,'a');
318    if($fh){
319        fwrite($fh,date('H:i:s ').$_SERVER['REMOTE_ADDR'].': '.$msg."\n");
320        fclose($fh);
321    }
322}
323
324/**
325 * Print a reversed, prettyprinted backtrace
326 *
327 * @author Gary Owen <gary_owen@bigfoot.com>
328 */
329function dbg_backtrace(){
330    // Get backtrace
331    $backtrace = debug_backtrace();
332
333    // Unset call to debug_print_backtrace
334    array_shift($backtrace);
335
336    // Iterate backtrace
337    $calls = array();
338    $depth = count($backtrace) - 1;
339    foreach ($backtrace as $i => $call) {
340        $location = $call['file'] . ':' . $call['line'];
341        $function = (isset($call['class'])) ?
342            $call['class'] . $call['type'] . $call['function'] : $call['function'];
343
344        $params = array();
345        if (isset($call['args'])){
346            foreach($call['args'] as $arg){
347                if(is_object($arg)){
348                    $params[] = '[Object '.get_class($arg).']';
349                }elseif(is_array($arg)){
350                    $params[] = '[Array]';
351                }elseif(is_null($arg)){
352                    $param[] = '[NULL]';
353                }else{
354                    $params[] = (string) '"'.$arg.'"';
355                }
356            }
357        }
358        $params = implode(', ',$params);
359
360        $calls[$depth - $i] = sprintf('%s(%s) called at %s',
361                $function,
362                str_replace("\n", '\n', $params),
363                $location);
364    }
365    ksort($calls);
366
367    return implode("\n", $calls);
368}
369
370/**
371 * Remove all data from an array where the key seems to point to sensitive data
372 *
373 * This is used to remove passwords, mail addresses and similar data from the
374 * debug output
375 *
376 * @author Andreas Gohr <andi@splitbrain.org>
377 */
378function debug_guard(&$data){
379    foreach($data as $key => $value){
380        if(preg_match('/(notify|pass|auth|secret|ftp|userinfo|token|buid|mail|proxy)/i',$key)){
381            $data[$key] = '***';
382            continue;
383        }
384        if(is_array($value)) debug_guard($data[$key]);
385    }
386}
387