diff --git a/.gitignore b/.gitignore new file mode 100644 index 0000000..53646b2 --- /dev/null +++ b/.gitignore @@ -0,0 +1,7 @@ +/Settings.php +/Settings_bak.php +/install.php +/Themes/default/css/minified_*.css +/Themes/default/scripts/minified_*.js +/cache +!/cache/index.php diff --git a/Settings.php b/Settings.php deleted file mode 100644 index 16e2b11..0000000 --- a/Settings.php +++ /dev/null @@ -1,272 +0,0 @@ -'); - $db_last_error = 0; -} - -if (file_exists(dirname(__FILE__) . '/install.php')) -{ - $secure = false; - if (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] == 'on') - $secure = true; - elseif (!empty($_SERVER['HTTP_X_FORWARDED_PROTO']) && $_SERVER['HTTP_X_FORWARDED_PROTO'] == 'https' || !empty($_SERVER['HTTP_X_FORWARDED_SSL']) && $_SERVER['HTTP_X_FORWARDED_SSL'] == 'on') - $secure = true; - - if (basename($_SERVER['PHP_SELF']) != 'install.php') - { - header('location: http' . ($secure ? 's' : '') . '://' . (empty($_SERVER['HTTP_HOST']) ? $_SERVER['SERVER_NAME'] . (empty($_SERVER['SERVER_PORT']) || $_SERVER['SERVER_PORT'] == '80' ? '' : ':' . $_SERVER['SERVER_PORT']) : $_SERVER['HTTP_HOST']) . (strtr(dirname($_SERVER['PHP_SELF']), '\\', '/') == '/' ? '' : strtr(dirname($_SERVER['PHP_SELF']), '\\', '/')) . '/install.php'); - exit; - } -} - -?> \ No newline at end of file diff --git a/Settings_bak.php b/Settings_bak.php deleted file mode 100644 index d422a05..0000000 --- a/Settings_bak.php +++ /dev/null @@ -1,271 +0,0 @@ -'); - $db_last_error = 0; -} - -if (file_exists(dirname(__FILE__) . '/install.php')) -{ - $secure = false; - if (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] == 'on') - $secure = true; - elseif (!empty($_SERVER['HTTP_X_FORWARDED_PROTO']) && $_SERVER['HTTP_X_FORWARDED_PROTO'] == 'https' || !empty($_SERVER['HTTP_X_FORWARDED_SSL']) && $_SERVER['HTTP_X_FORWARDED_SSL'] == 'on') - $secure = true; - - if (basename($_SERVER['PHP_SELF']) != 'install.php') - { - header('location: http' . ($secure ? 's' : '') . '://' . (empty($_SERVER['HTTP_HOST']) ? $_SERVER['SERVER_NAME'] . (empty($_SERVER['SERVER_PORT']) || $_SERVER['SERVER_PORT'] == '80' ? '' : ':' . $_SERVER['SERVER_PORT']) : $_SERVER['HTTP_HOST']) . (strtr(dirname($_SERVER['PHP_SELF']), '\\', '/') == '/' ? '' : strtr(dirname($_SERVER['PHP_SELF']), '\\', '/')) . '/install.php'); - exit; - } -} - -?> \ No newline at end of file diff --git a/install.php b/install.php deleted file mode 100644 index b40448b..0000000 --- a/install.php +++ /dev/null @@ -1,2519 +0,0 @@ -Error!Sorry, this installer requires PHP!
- -// Let's pull in useful classes -if (!defined('SMF')) - define('SMF', 1); - -require_once('Sources/Class-Package.php'); - -if (version_compare(PHP_VERSION, '8.0.0', '>=')) - require_once('Sources/Subs-Compat.php'); - -// Database info. -$databases = array( - 'mysql' => array( - 'name' => 'MySQL', - 'version' => '5.6.0', - 'version_check' => function() { - global $db_connection; - if (!function_exists('mysqli_fetch_row')) - return false; - return mysqli_fetch_row(mysqli_query($db_connection, 'SELECT VERSION();'))[0]; - }, - 'supported' => function_exists('mysqli_connect'), - 'default_user' => 'mysql.default_user', - 'default_password' => 'mysql.default_password', - 'default_host' => 'mysql.default_host', - 'default_port' => 'mysql.default_port', - 'utf8_support' => function() - { - return true; - }, - 'utf8_version' => '5.0.22', - 'utf8_version_check' => function() { - global $db_connection; - return mysqli_get_server_info($db_connection); - }, - 'alter_support' => true, - 'validate_prefix' => function(&$value) - { - $value = preg_replace('~[^A-Za-z0-9_\$]~', '', $value); - return true; - }, - ), - 'postgresql' => array( - 'name' => 'PostgreSQL', - 'version' => '9.6', - 'version_check' => function() { - global $db_connection; - $request = pg_query($db_connection, 'SELECT version()'); - list ($version) = pg_fetch_row($request); - list($pgl, $version) = explode(' ', $version); - return $version; - }, - 'supported' => function_exists('pg_connect'), - 'always_has_db' => true, - 'utf8_support' => function() - { - global $db_connection; - $request = pg_query($db_connection, 'SHOW SERVER_ENCODING'); - - list ($charcode) = pg_fetch_row($request); - - if ($charcode == 'UTF8') - return true; - else - return false; - }, - 'utf8_version' => '8.0', - 'utf8_version_check' => function (){ - global $db_connection; - $request = pg_query($db_connection, 'SELECT version()'); - list ($version) = pg_fetch_row($request); - list($pgl, $version) = explode(' ', $version); - return $version; - }, - 'validate_prefix' => function(&$value) - { - global $txt; - - $value = preg_replace('~[^A-Za-z0-9_\$]~', '', $value); - - // Is it reserved? - if ($value == 'pg_') - return $txt['error_db_prefix_reserved']; - - // Is the prefix numeric? - if (preg_match('~^\d~', $value)) - return $txt['error_db_prefix_numeric']; - - return true; - }, - ), -); - -global $txt; - -// Initialize everything and load the language files. -initialize_inputs(); -load_lang_file(); - -// This is what we are. -$installurl = $_SERVER['PHP_SELF']; - -// All the steps in detail. -// Number,Name,Function,Progress Weight. -$incontext['steps'] = array( - 0 => array(1, $txt['install_step_welcome'], 'Welcome', 0), - 1 => array(2, $txt['install_step_writable'], 'CheckFilesWritable', 10), - 2 => array(3, $txt['install_step_databaseset'], 'DatabaseSettings', 15), - 3 => array(4, $txt['install_step_forum'], 'ForumSettings', 40), - 4 => array(5, $txt['install_step_databasechange'], 'DatabasePopulation', 15), - 5 => array(6, $txt['install_step_admin'], 'AdminAccount', 20), - 6 => array(7, $txt['install_step_delete'], 'DeleteInstall', 0), -); - -// Default title... -$incontext['page_title'] = $txt['smf_installer']; - -// What step are we on? -$incontext['current_step'] = isset($_GET['step']) ? (int) $_GET['step'] : 0; - -// Loop through all the steps doing each one as required. -$incontext['overall_percent'] = 0; - -foreach ($incontext['steps'] as $num => $step) -{ - if ($num >= $incontext['current_step']) - { - // The current weight of this step in terms of overall progress. - $incontext['step_weight'] = $step[3]; - // Make sure we reset the skip button. - $incontext['skip'] = false; - - // Call the step and if it returns false that means pause! - if (function_exists($step[2]) && $step[2]() === false) - break; - elseif (function_exists($step[2])) - $incontext['current_step']++; - - // No warnings pass on. - $incontext['warning'] = ''; - } - $incontext['overall_percent'] += $step[3]; -} - -// Actually do the template stuff. -installExit(); - -function initialize_inputs() -{ - global $databases; - - // Just so people using older versions of PHP aren't left in the cold. - if (!isset($_SERVER['PHP_SELF'])) - $_SERVER['PHP_SELF'] = isset($GLOBALS['HTTP_SERVER_VARS']['PHP_SELF']) ? $GLOBALS['HTTP_SERVER_VARS']['PHP_SELF'] : 'install.php'; - - // In pre-release versions, report all errors. - if (strspn(SMF_VERSION, '1234567890.') !== strlen(SMF_VERSION)) - error_reporting(E_ALL); - // Otherwise, report all errors except for deprecation notices. - else - error_reporting(E_ALL & ~E_DEPRECATED); - - // Fun. Low PHP version... - if (!isset($_GET)) - { - $GLOBALS['_GET']['step'] = 0; - return; - } - - if (!isset($_GET['obgz'])) - { - ob_start(); - - if (ini_get('session.save_handler') == 'user') - @ini_set('session.save_handler', 'files'); - if (function_exists('session_start')) - @session_start(); - } - else - { - ob_start('ob_gzhandler'); - - if (ini_get('session.save_handler') == 'user') - @ini_set('session.save_handler', 'files'); - session_start(); - - if (!headers_sent()) - echo ' - - - ', htmlspecialchars($_GET['pass_string']), ' - - - ', htmlspecialchars($_GET['pass_string']), ' - -'; - exit; - } - - // This is really quite simple; if ?delete is on the URL, delete the installer... - if (isset($_GET['delete'])) - { - if (isset($_SESSION['installer_temp_ftp'])) - { - $ftp = new ftp_connection($_SESSION['installer_temp_ftp']['server'], $_SESSION['installer_temp_ftp']['port'], $_SESSION['installer_temp_ftp']['username'], $_SESSION['installer_temp_ftp']['password']); - $ftp->chdir($_SESSION['installer_temp_ftp']['path']); - - $ftp->unlink('install.php'); - - foreach ($databases as $key => $dummy) - { - $type = ($key == 'mysqli') ? 'mysql' : $key; - $ftp->unlink('install_' . DB_SCRIPT_VERSION . '_' . $type . '.sql'); - } - - $ftp->close(); - - unset($_SESSION['installer_temp_ftp']); - } - else - { - @unlink(__FILE__); - - foreach ($databases as $key => $dummy) - { - $type = ($key == 'mysqli') ? 'mysql' : $key; - @unlink(dirname(__FILE__) . '/install_' . DB_SCRIPT_VERSION . '_' . $type . '.sql'); - } - } - - // Now just redirect to a blank.png... - $secure = false; - - if (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] == 'on') - $secure = true; - elseif (!empty($_SERVER['HTTP_X_FORWARDED_PROTO']) && $_SERVER['HTTP_X_FORWARDED_PROTO'] == 'https' || !empty($_SERVER['HTTP_X_FORWARDED_SSL']) && $_SERVER['HTTP_X_FORWARDED_SSL'] == 'on') - $secure = true; - - header('location: http' . ($secure ? 's' : '') . '://' . (isset($_SERVER['HTTP_HOST']) ? $_SERVER['HTTP_HOST'] : $_SERVER['SERVER_NAME'] . ':' . $_SERVER['SERVER_PORT']) . dirname($_SERVER['PHP_SELF']) . '/Themes/default/images/blank.png'); - exit; - } - - // PHP 5 might cry if we don't do this now. - if (function_exists('date_default_timezone_set')) - { - // Get PHP's default timezone, if set - $ini_tz = ini_get('date.timezone'); - if (!empty($ini_tz)) - $timezone_id = $ini_tz; - else - $timezone_id = ''; - - // If date.timezone is unset, invalid, or just plain weird, make a best guess - if (!in_array($timezone_id, timezone_identifiers_list())) - { - $server_offset = @mktime(0, 0, 0, 1, 1, 1970) * -1; - $timezone_id = timezone_name_from_abbr('', $server_offset, 0); - - if (empty($timezone_id)) - $timezone_id = 'UTC'; - } - - date_default_timezone_set($timezone_id); - } - header('X-Frame-Options: SAMEORIGIN'); - header('X-XSS-Protection: 1'); - header('X-Content-Type-Options: nosniff'); - - // Force an integer step, defaulting to 0. - $_GET['step'] = (int) @$_GET['step']; -} - -// Load the list of language files, and the current language file. -function load_lang_file() -{ - global $incontext, $user_info, $txt; - - $incontext['detected_languages'] = array(); - - // Make sure the languages directory actually exists. - if (file_exists(dirname(__FILE__) . '/Themes/default/languages')) - { - // Find all the "Install" language files in the directory. - $dir = dir(dirname(__FILE__) . '/Themes/default/languages'); - while ($entry = $dir->read()) - { - if (substr($entry, 0, 8) == 'Install.' && substr($entry, -4) == '.php') - $incontext['detected_languages'][$entry] = ucfirst(substr($entry, 8, strlen($entry) - 12)); - } - $dir->close(); - } - - // Didn't find any, show an error message! - if (empty($incontext['detected_languages'])) - { - // Let's not cache this message, eh? - header('expires: Mon, 26 Jul 1997 05:00:00 GMT'); - header('last-modified: ' . gmdate('D, d M Y H:i:s') . ' GMT'); - header('cache-control: no-cache'); - - echo ' - - - SMF Installer: Error! - - - -

A critical error has occurred.

- -

This installer was unable to find the installer\'s language file or files. They should be found under:

- -
', dirname($_SERVER['PHP_SELF']) != '/' ? dirname($_SERVER['PHP_SELF']) : '', '/Themes/default/languages
- -

In some cases, FTP clients do not properly upload files with this many folders. Please double check to make sure you have uploaded all the files in the distribution.

-

If that doesn\'t help, please make sure this install.php file is in the same place as the Themes folder.

-

If you continue to get this error message, feel free to look to us for support.

-
-'; - die; - } - - // Override the language file? - if (isset($_GET['lang_file'])) - $_SESSION['installer_temp_lang'] = $_GET['lang_file']; - elseif (isset($GLOBALS['HTTP_GET_VARS']['lang_file'])) - $_SESSION['installer_temp_lang'] = $GLOBALS['HTTP_GET_VARS']['lang_file']; - - // Make sure it exists, if it doesn't reset it. - if (!isset($_SESSION['installer_temp_lang']) || preg_match('~[^\\w_\\-.]~', $_SESSION['installer_temp_lang']) === 1 || !file_exists(dirname(__FILE__) . '/Themes/default/languages/' . $_SESSION['installer_temp_lang'])) - { - // Use the first one... - list ($_SESSION['installer_temp_lang']) = array_keys($incontext['detected_languages']); - - // If we have english and some other language, use the other language. We Americans hate english :P. - if ($_SESSION['installer_temp_lang'] == 'Install.english.php' && count($incontext['detected_languages']) > 1) - list (, $_SESSION['installer_temp_lang']) = array_keys($incontext['detected_languages']); - } - - // And now include the actual language file itself. - require_once(dirname(__FILE__) . '/Themes/default/languages/' . $_SESSION['installer_temp_lang']); - - // Which language did we load? Assume that he likes his language. - preg_match('~^Install\.(.+[^-utf8])\.php$~', $_SESSION['installer_temp_lang'], $matches); - $user_info['language'] = $matches[1]; -} - -// This handy function loads some settings and the like. -function load_database() -{ - global $db_prefix, $db_connection, $sourcedir, $smcFunc, $modSettings, $db_port; - global $db_server, $db_passwd, $db_type, $db_name, $db_user, $db_persist, $db_mb4; - - if (empty($sourcedir)) - $sourcedir = dirname(__FILE__) . '/Sources'; - - // Need this to check whether we need the database password. - require(dirname(__FILE__) . '/Settings.php'); - if (!defined('SMF')) - define('SMF', 1); - if (empty($smcFunc)) - $smcFunc = array(); - - $modSettings['disableQueryCheck'] = true; - - // Connect the database. - if (!$db_connection) - { - require_once($sourcedir . '/Subs-Db-' . $db_type . '.php'); - - $options = array('persist' => $db_persist); - - if (!empty($db_port)) - $options['port'] = $db_port; - - if (!empty($db_mb4)) - $options['db_mb4'] = $db_mb4; - - if (!$db_connection) - $db_connection = smf_db_initiate($db_server, $db_name, $db_user, $db_passwd, $db_prefix, $options); - } -} - -// This is called upon exiting the installer, for template etc. -function installExit($fallThrough = false) -{ - global $incontext, $installurl, $txt; - - // Send character set. - header('content-type: text/html; charset=' . (isset($txt['lang_character_set']) ? $txt['lang_character_set'] : 'UTF-8')); - - // We usually dump our templates out. - if (!$fallThrough) - { - // The top install bit. - template_install_above(); - - // Call the template. - if (isset($incontext['sub_template'])) - { - $incontext['form_url'] = $installurl . '?step=' . $incontext['current_step']; - - call_user_func('template_' . $incontext['sub_template']); - } - // @todo REMOVE THIS!! - else - { - if (function_exists('doStep' . $_GET['step'])) - call_user_func('doStep' . $_GET['step']); - } - // Show the footer. - template_install_below(); - } - - // Bang - gone! - die(); -} - -function Welcome() -{ - global $incontext, $txt, $databases, $installurl; - - $incontext['page_title'] = $txt['install_welcome']; - $incontext['sub_template'] = 'welcome_message'; - - // Done the submission? - if (isset($_POST['contbutt'])) - return true; - - // See if we think they have already installed it? - if (is_readable(dirname(__FILE__) . '/Settings.php')) - { - $probably_installed = 0; - foreach (file(dirname(__FILE__) . '/Settings.php') as $line) - { - if (preg_match('~^\$db_passwd\s=\s\'([^\']+)\';$~', $line)) - $probably_installed++; - if (preg_match('~^\$boardurl\s=\s\'([^\']+)\';~', $line) && !preg_match('~^\$boardurl\s=\s\'http://127\.0\.0\.1/smf\';~', $line)) - $probably_installed++; - } - - if ($probably_installed == 2) - $incontext['warning'] = $txt['error_already_installed']; - } - - // Is some database support even compiled in? - $incontext['supported_databases'] = array(); - foreach ($databases as $key => $db) - { - if ($db['supported']) - { - $type = ($key == 'mysqli') ? 'mysql' : $key; - if (!file_exists(dirname(__FILE__) . '/install_' . DB_SCRIPT_VERSION . '_' . $type . '.sql')) - { - $databases[$key]['supported'] = false; - $notFoundSQLFile = true; - $txt['error_db_script_missing'] = sprintf($txt['error_db_script_missing'], 'install_' . DB_SCRIPT_VERSION . '_' . $type . '.sql'); - } - else - $incontext['supported_databases'][] = $db; - } - } - - // Check the PHP version. - if ((!function_exists('version_compare') || version_compare($GLOBALS['required_php_version'], PHP_VERSION, '>='))) - $error = 'error_php_too_low'; - // Make sure we have a supported database - elseif (empty($incontext['supported_databases'])) - $error = empty($notFoundSQLFile) ? 'error_db_missing' : 'error_db_script_missing'; - // How about session support? Some crazy sysadmin remove it? - elseif (!function_exists('session_start')) - $error = 'error_session_missing'; - // Make sure they uploaded all the files. - elseif (!file_exists(dirname(__FILE__) . '/index.php')) - $error = 'error_missing_files'; - // Very simple check on the session.save_path for Windows. - // @todo Move this down later if they don't use database-driven sessions? - elseif (@ini_get('session.save_path') == '/tmp' && substr(__FILE__, 1, 2) == ':\\') - $error = 'error_session_save_path'; - - // Since each of the three messages would look the same, anyway... - if (isset($error)) - $incontext['error'] = $txt[$error]; - - // Mod_security blocks everything that smells funny. Let SMF handle security. - if (!fixModSecurity() && !isset($_GET['overmodsecurity'])) - $incontext['error'] = $txt['error_mod_security'] . '

' . $txt['error_message_click'] . ' ' . $txt['error_message_bad_try_again']; - - // Confirm mbstring is loaded... - if (!extension_loaded('mbstring')) - $incontext['error'] = $txt['install_no_mbstring']; - - // Confirm fileinfo is loaded... - if (!extension_loaded('fileinfo')) - $incontext['error'] = $txt['install_no_fileinfo']; - - // Check for https stream support. - $supported_streams = stream_get_wrappers(); - if (!in_array('https', $supported_streams)) - $incontext['warning'] = $txt['install_no_https']; - - return false; -} - -function CheckFilesWritable() -{ - global $txt, $incontext; - - $incontext['page_title'] = $txt['ftp_checking_writable']; - $incontext['sub_template'] = 'chmod_files'; - - $writable_files = array( - 'attachments', - 'avatars', - 'custom_avatar', - 'cache', - 'Packages', - 'Smileys', - 'Themes', - 'agreement.txt', - 'Settings.php', - 'Settings_bak.php', - 'cache/db_last_error.php', - ); - - foreach ($incontext['detected_languages'] as $lang => $temp) - $extra_files[] = 'Themes/default/languages/' . $lang; - - // With mod_security installed, we could attempt to fix it with .htaccess. - if (function_exists('apache_get_modules') && in_array('mod_security', apache_get_modules())) - $writable_files[] = file_exists(dirname(__FILE__) . '/.htaccess') ? '.htaccess' : '.'; - - $failed_files = array(); - - // On linux, it's easy - just use is_writable! - if (substr(__FILE__, 1, 2) != ':\\') - { - $incontext['systemos'] = 'linux'; - - foreach ($writable_files as $file) - { - // Some files won't exist, try to address up front - if (!file_exists(dirname(__FILE__) . '/' . $file)) - @touch(dirname(__FILE__) . '/' . $file); - // NOW do the writable check... - if (!is_writable(dirname(__FILE__) . '/' . $file)) - { - @chmod(dirname(__FILE__) . '/' . $file, 0755); - - // Well, 755 hopefully worked... if not, try 777. - if (!is_writable(dirname(__FILE__) . '/' . $file) && !@chmod(dirname(__FILE__) . '/' . $file, 0777)) - $failed_files[] = $file; - } - } - foreach ($extra_files as $file) - @chmod(dirname(__FILE__) . (empty($file) ? '' : '/' . $file), 0777); - } - // Windows is trickier. Let's try opening for r+... - else - { - $incontext['systemos'] = 'windows'; - - foreach ($writable_files as $file) - { - // Folders can't be opened for write... but the index.php in them can ;) - if (is_dir(dirname(__FILE__) . '/' . $file)) - $file .= '/index.php'; - - // Funny enough, chmod actually does do something on windows - it removes the read only attribute. - @chmod(dirname(__FILE__) . '/' . $file, 0777); - $fp = @fopen(dirname(__FILE__) . '/' . $file, 'r+'); - - // Hmm, okay, try just for write in that case... - if (!is_resource($fp)) - $fp = @fopen(dirname(__FILE__) . '/' . $file, 'w'); - - if (!is_resource($fp)) - $failed_files[] = $file; - - @fclose($fp); - } - foreach ($extra_files as $file) - @chmod(dirname(__FILE__) . (empty($file) ? '' : '/' . $file), 0777); - } - - $failure = count($failed_files) >= 1; - - if (!isset($_SERVER)) - return !$failure; - - // Put the list into context. - $incontext['failed_files'] = $failed_files; - - // It's not going to be possible to use FTP on windows to solve the problem... - if ($failure && substr(__FILE__, 1, 2) == ':\\') - { - $incontext['error'] = $txt['error_windows_chmod'] . ' - '; - - return false; - } - // We're going to have to use... FTP! - elseif ($failure) - { - // Load any session data we might have... - if (!isset($_POST['ftp_username']) && isset($_SESSION['installer_temp_ftp'])) - { - $_POST['ftp_server'] = $_SESSION['installer_temp_ftp']['server']; - $_POST['ftp_port'] = $_SESSION['installer_temp_ftp']['port']; - $_POST['ftp_username'] = $_SESSION['installer_temp_ftp']['username']; - $_POST['ftp_password'] = $_SESSION['installer_temp_ftp']['password']; - $_POST['ftp_path'] = $_SESSION['installer_temp_ftp']['path']; - } - - $incontext['ftp_errors'] = array(); - require_once('Sources/Class-Package.php'); - if (isset($_POST['ftp_username'])) - { - $ftp = new ftp_connection($_POST['ftp_server'], $_POST['ftp_port'], $_POST['ftp_username'], $_POST['ftp_password']); - - if ($ftp->error === false) - { - // Try it without /home/abc just in case they messed up. - if (!$ftp->chdir($_POST['ftp_path'])) - { - $incontext['ftp_errors'][] = $ftp->last_message; - $ftp->chdir(preg_replace('~^/home[2]?/[^/]+?~', '', $_POST['ftp_path'])); - } - } - } - - if (!isset($ftp) || $ftp->error !== false) - { - if (!isset($ftp)) - $ftp = new ftp_connection(null); - // Save the error so we can mess with listing... - elseif ($ftp->error !== false && empty($incontext['ftp_errors']) && !empty($ftp->last_message)) - $incontext['ftp_errors'][] = $ftp->last_message; - - list ($username, $detect_path, $found_path) = $ftp->detect_path(dirname(__FILE__)); - - if (empty($_POST['ftp_path']) && $found_path) - $_POST['ftp_path'] = $detect_path; - - if (!isset($_POST['ftp_username'])) - $_POST['ftp_username'] = $username; - - // Set the username etc, into context. - $incontext['ftp'] = array( - 'server' => isset($_POST['ftp_server']) ? $_POST['ftp_server'] : 'localhost', - 'port' => isset($_POST['ftp_port']) ? $_POST['ftp_port'] : '21', - 'username' => isset($_POST['ftp_username']) ? $_POST['ftp_username'] : '', - 'path' => isset($_POST['ftp_path']) ? $_POST['ftp_path'] : '/', - 'path_msg' => !empty($found_path) ? $txt['ftp_path_found_info'] : $txt['ftp_path_info'], - ); - - return false; - } - else - { - $_SESSION['installer_temp_ftp'] = array( - 'server' => $_POST['ftp_server'], - 'port' => $_POST['ftp_port'], - 'username' => $_POST['ftp_username'], - 'password' => $_POST['ftp_password'], - 'path' => $_POST['ftp_path'] - ); - - $failed_files_updated = array(); - - foreach ($failed_files as $file) - { - if (!is_writable(dirname(__FILE__) . '/' . $file)) - $ftp->chmod($file, 0755); - if (!is_writable(dirname(__FILE__) . '/' . $file)) - $ftp->chmod($file, 0777); - if (!is_writable(dirname(__FILE__) . '/' . $file)) - { - $failed_files_updated[] = $file; - $incontext['ftp_errors'][] = rtrim($ftp->last_message) . ' -> ' . $file . "\n"; - } - } - - $ftp->close(); - - // Are there any errors left? - if (count($failed_files_updated) >= 1) - { - // Guess there are... - $incontext['failed_files'] = $failed_files_updated; - - // Set the username etc, into context. - $incontext['ftp'] = $_SESSION['installer_temp_ftp'] += array( - 'path_msg' => $txt['ftp_path_info'], - ); - - return false; - } - } - } - - return true; -} - -function DatabaseSettings() -{ - global $txt, $databases, $incontext, $smcFunc, $sourcedir; - global $db_server, $db_name, $db_user, $db_passwd, $db_port, $db_mb4, $db_connection; - - $incontext['sub_template'] = 'database_settings'; - $incontext['page_title'] = $txt['db_settings']; - $incontext['continue'] = 1; - - // Set up the defaults. - $incontext['db']['server'] = 'localhost'; - $incontext['db']['user'] = ''; - $incontext['db']['name'] = ''; - $incontext['db']['pass'] = ''; - $incontext['db']['type'] = ''; - $incontext['supported_databases'] = array(); - - $foundOne = false; - foreach ($databases as $key => $db) - { - // Override with the defaults for this DB if appropriate. - if ($db['supported']) - { - $incontext['supported_databases'][$key] = $db; - - if (!$foundOne) - { - if (isset($db['default_host'])) - $incontext['db']['server'] = ini_get($db['default_host']) or $incontext['db']['server'] = 'localhost'; - if (isset($db['default_user'])) - { - $incontext['db']['user'] = ini_get($db['default_user']); - $incontext['db']['name'] = ini_get($db['default_user']); - } - if (isset($db['default_password'])) - $incontext['db']['pass'] = ini_get($db['default_password']); - - // For simplicity and less confusion, leave the port blank by default - $incontext['db']['port'] = ''; - - $incontext['db']['type'] = $key; - $foundOne = true; - } - } - } - - // Override for repost. - if (isset($_POST['db_user'])) - { - $incontext['db']['user'] = $_POST['db_user']; - $incontext['db']['name'] = $_POST['db_name']; - $incontext['db']['server'] = $_POST['db_server']; - $incontext['db']['prefix'] = $_POST['db_prefix']; - - if (!empty($_POST['db_port'])) - $incontext['db']['port'] = $_POST['db_port']; - } - else - { - $incontext['db']['prefix'] = 'smf_'; - } - - // Are we submitting? - if (isset($_POST['db_type'])) - { - // What type are they trying? - $db_type = preg_replace('~[^A-Za-z0-9]~', '', $_POST['db_type']); - $db_prefix = $_POST['db_prefix']; - // Validate the prefix. - $valid_prefix = $databases[$db_type]['validate_prefix']($db_prefix); - - if ($valid_prefix !== true) - { - $incontext['error'] = $valid_prefix; - return false; - } - - // Take care of these variables... - $vars = array( - 'db_type' => $db_type, - 'db_name' => $_POST['db_name'], - 'db_user' => $_POST['db_user'], - 'db_passwd' => isset($_POST['db_passwd']) ? $_POST['db_passwd'] : '', - 'db_server' => $_POST['db_server'], - 'db_prefix' => $db_prefix, - // The cookiename is special; we want it to be the same if it ever needs to be reinstalled with the same info. - 'cookiename' => 'SMFCookie' . abs(crc32($_POST['db_name'] . preg_replace('~[^A-Za-z0-9_$]~', '', $_POST['db_prefix'])) % 1000), - ); - - // Only set the port if we're not using the default - if (!empty($_POST['db_port'])) - { - // For MySQL, we can get the "default port" from PHP. PostgreSQL has no such option though. - if (($db_type == 'mysql' || $db_type == 'mysqli') && $_POST['db_port'] != ini_get($db_type . '.default_port')) - $vars['db_port'] = (int) $_POST['db_port']; - elseif ($db_type == 'postgresql' && $_POST['db_port'] != 5432) - $vars['db_port'] = (int) $_POST['db_port']; - } - - // God I hope it saved! - if (!installer_updateSettingsFile($vars)) - { - $incontext['error'] = $txt['settings_error']; - return false; - } - - // Make sure it works. - require(dirname(__FILE__) . '/Settings.php'); - - if (empty($sourcedir)) - $sourcedir = dirname(__FILE__) . '/Sources'; - - // Better find the database file! - if (!file_exists($sourcedir . '/Subs-Db-' . $db_type . '.php')) - { - $incontext['error'] = sprintf($txt['error_db_file'], 'Subs-Db-' . $db_type . '.php'); - return false; - } - - // Now include it for database functions! - if (!defined('SMF')) - define('SMF', 1); - - $modSettings['disableQueryCheck'] = true; - if (empty($smcFunc)) - $smcFunc = array(); - - require_once($sourcedir . '/Subs-Db-' . $db_type . '.php'); - - // Attempt a connection. - $needsDB = !empty($databases[$db_type]['always_has_db']); - - $options = array('non_fatal' => true, 'dont_select_db' => !$needsDB); - // Add in the port if needed - if (!empty($db_port)) - $options['port'] = $db_port; - - if (!empty($db_mb4)) - $options['db_mb4'] = $db_mb4; - - $db_connection = smf_db_initiate($db_server, $db_name, $db_user, $db_passwd, $db_prefix, $options); - - // Still no connection? Big fat error message :P. - if (!$db_connection) - { - // Get error info... Recast just in case we get false or 0... - $error_message = $smcFunc['db_connect_error'](); - if (empty($error_message)) - $error_message = ''; - $error_number = $smcFunc['db_connect_errno'](); - if (empty($error_number)) - $error_number = ''; - $db_error = (!empty($error_number) ? $error_number . ': ' : '') . $error_message; - - $incontext['error'] = $txt['error_db_connect'] . '
' . $db_error . '
'; - return false; - } - - // Do they meet the install requirements? - // @todo Old client, new server? - if (version_compare($databases[$db_type]['version'], preg_replace('~^\D*|\-.+?$~', '', $databases[$db_type]['version_check']())) > 0) - { - $incontext['error'] = $txt['error_db_too_low']; - return false; - } - - // Let's try that database on for size... assuming we haven't already lost the opportunity. - if ($db_name != '' && !$needsDB) - { - $smcFunc['db_query']('', " - CREATE DATABASE IF NOT EXISTS `$db_name`", - array( - 'security_override' => true, - 'db_error_skip' => true, - ), - $db_connection - ); - - // Okay, let's try the prefix if it didn't work... - if (!$smcFunc['db_select_db']($db_name, $db_connection) && $db_name != '') - { - $smcFunc['db_query']('', " - CREATE DATABASE IF NOT EXISTS `$_POST[db_prefix]$db_name`", - array( - 'security_override' => true, - 'db_error_skip' => true, - ), - $db_connection - ); - - if ($smcFunc['db_select_db']($_POST['db_prefix'] . $db_name, $db_connection)) - { - $db_name = $_POST['db_prefix'] . $db_name; - installer_updateSettingsFile(array('db_name' => $db_name)); - } - } - - // Okay, now let's try to connect... - if (!$smcFunc['db_select_db']($db_name, $db_connection)) - { - $incontext['error'] = sprintf($txt['error_db_database'], $db_name); - return false; - } - } - - return true; - } - - return false; -} - -// Let's start with basic forum type settings. -function ForumSettings() -{ - global $txt, $incontext, $databases, $db_type, $db_connection, $smcFunc; - - $incontext['sub_template'] = 'forum_settings'; - $incontext['page_title'] = $txt['install_settings']; - - // Let's see if we got the database type correct. - if (isset($_POST['db_type'], $databases[$_POST['db_type']])) - $db_type = $_POST['db_type']; - - // Else we'd better be able to get the connection. - else - load_database(); - - $db_type = isset($_POST['db_type']) ? $_POST['db_type'] : $db_type; - - // What host and port are we on? - $host = empty($_SERVER['HTTP_HOST']) ? $_SERVER['SERVER_NAME'] . (empty($_SERVER['SERVER_PORT']) || $_SERVER['SERVER_PORT'] == '80' ? '' : ':' . $_SERVER['SERVER_PORT']) : $_SERVER['HTTP_HOST']; - - $secure = false; - - if (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] == 'on') - $secure = true; - elseif (!empty($_SERVER['HTTP_X_FORWARDED_PROTO']) && $_SERVER['HTTP_X_FORWARDED_PROTO'] == 'https' || !empty($_SERVER['HTTP_X_FORWARDED_SSL']) && $_SERVER['HTTP_X_FORWARDED_SSL'] == 'on') - $secure = true; - - // Now, to put what we've learned together... and add a path. - $incontext['detected_url'] = 'http' . ($secure ? 's' : '') . '://' . $host . substr($_SERVER['PHP_SELF'], 0, strrpos($_SERVER['PHP_SELF'], '/')); - - // Check if the database sessions will even work. - $incontext['test_dbsession'] = (ini_get('session.auto_start') != 1); - - $incontext['continue'] = 1; - - // Check Postgres setting - if ( $db_type === 'postgresql') - { - load_database(); - $result = $smcFunc['db_query']('', ' - show standard_conforming_strings', - array( - 'db_error_skip' => true, - ) - ); - - if ($result !== false) - { - $row = $smcFunc['db_fetch_assoc']($result); - if ($row['standard_conforming_strings'] !== 'on') - { - $incontext['continue'] = 0; - $incontext['error'] = $txt['error_pg_scs']; - } - $smcFunc['db_free_result']($result); - } - } - - // Setup the SSL checkbox... - $incontext['ssl_chkbx_protected'] = false; - $incontext['ssl_chkbx_checked'] = false; - - // If redirect in effect, force ssl ON - require_once(dirname(__FILE__) . '/Sources/Subs.php'); - if (https_redirect_active($incontext['detected_url'])) - { - $incontext['ssl_chkbx_protected'] = true; - $incontext['ssl_chkbx_checked'] = true; - $_POST['force_ssl'] = true; - } - // If no cert, make sure ssl stays OFF - if (!ssl_cert_found($incontext['detected_url'])) - { - $incontext['ssl_chkbx_protected'] = true; - $incontext['ssl_chkbx_checked'] = false; - } - - // Submitting? - if (isset($_POST['boardurl'])) - { - if (substr($_POST['boardurl'], -10) == '/index.php') - $_POST['boardurl'] = substr($_POST['boardurl'], 0, -10); - elseif (substr($_POST['boardurl'], -1) == '/') - $_POST['boardurl'] = substr($_POST['boardurl'], 0, -1); - if (substr($_POST['boardurl'], 0, 7) != 'http://' && substr($_POST['boardurl'], 0, 7) != 'file://' && substr($_POST['boardurl'], 0, 8) != 'https://') - $_POST['boardurl'] = 'http://' . $_POST['boardurl']; - - // Make sure boardurl is aligned with ssl setting - if (empty($_POST['force_ssl'])) - $_POST['boardurl'] = strtr($_POST['boardurl'], array('https://' => 'http://')); - else - $_POST['boardurl'] = strtr($_POST['boardurl'], array('http://' => 'https://')); - - // Make sure international domain names are normalized correctly. - if ($txt['lang_character_set'] == 'UTF-8') - $_POST['boardurl'] = normalize_iri($_POST['boardurl']); - - // Deal with different operating systems' directory structure... - $path = rtrim(str_replace(DIRECTORY_SEPARATOR, '/', __DIR__), '/'); - - // Load the compatibility library if necessary. - if (!is_callable('random_bytes')) - require_once('Sources/random_compat/random.php'); - - // Save these variables. - $vars = array( - 'boardurl' => $_POST['boardurl'], - 'boarddir' => $path, - 'sourcedir' => $path . '/Sources', - 'cachedir' => $path . '/cache', - 'packagesdir' => $path . '/Packages', - 'tasksdir' => $path . '/Sources/tasks', - 'mbname' => strtr($_POST['mbname'], array('\"' => '"')), - 'language' => substr($_SESSION['installer_temp_lang'], 8, -4), - 'image_proxy_secret' => bin2hex(random_bytes(10)), - 'image_proxy_enabled' => !empty($_POST['force_ssl']), - 'auth_secret' => bin2hex(random_bytes(32)), - ); - - // Must save! - if (!installer_updateSettingsFile($vars)) - { - $incontext['error'] = $txt['settings_error']; - return false; - } - - // Make sure it works. - require(dirname(__FILE__) . '/Settings.php'); - - // UTF-8 requires a setting to override the language charset. - if (!$databases[$db_type]['utf8_support']()) - { - $incontext['error'] = sprintf($txt['error_utf8_support']); - return false; - } - - if (!empty($databases[$db_type]['utf8_version_check']) && version_compare($databases[$db_type]['utf8_version'], preg_replace('~\-.+?$~', '', $databases[$db_type]['utf8_version_check']()), '>')) - { - $incontext['error'] = sprintf($txt['error_utf8_version'], $databases[$db_type]['utf8_version']); - return false; - } - - // Set the character set here. - installer_updateSettingsFile(array('db_character_set' => 'utf8'), true); - - // Good, skip on. - return true; - } - - return false; -} - -// Step one: Do the SQL thang. -function DatabasePopulation() -{ - global $db_character_set, $txt, $db_connection, $smcFunc, $databases, $modSettings, $db_type, $db_prefix, $incontext, $db_name, $boardurl; - - $incontext['sub_template'] = 'populate_database'; - $incontext['page_title'] = $txt['db_populate']; - $incontext['continue'] = 1; - - // Already done? - if (isset($_POST['pop_done'])) - return true; - - // Reload settings. - require(dirname(__FILE__) . '/Settings.php'); - load_database(); - - // Before running any of the queries, let's make sure another version isn't already installed. - $result = $smcFunc['db_query']('', ' - SELECT variable, value - FROM {db_prefix}settings', - array( - 'db_error_skip' => true, - ) - ); - $newSettings = array(); - $modSettings = array(); - if ($result !== false) - { - while ($row = $smcFunc['db_fetch_assoc']($result)) - $modSettings[$row['variable']] = $row['value']; - $smcFunc['db_free_result']($result); - - // Do they match? If so, this is just a refresh so charge on! - if (!isset($modSettings['smfVersion']) || $modSettings['smfVersion'] != SMF_VERSION) - { - $incontext['error'] = $txt['error_versions_do_not_match']; - return false; - } - } - $modSettings['disableQueryCheck'] = true; - - // If doing UTF8, select it. PostgreSQL requires passing it as a string... - $smcFunc['db_query']('', ' - SET NAMES {string:utf8}', - array( - 'db_error_skip' => true, - 'utf8' => 'utf8', - ) - ); - - // Windows likes to leave the trailing slash, which yields to C:\path\to\SMF\/attachments... - if (substr(__DIR__, -1) == '\\') - $attachdir = __DIR__ . 'attachments'; - else - $attachdir = __DIR__ . '/attachments'; - - $replaces = array( - '{$db_prefix}' => $db_prefix, - '{$attachdir}' => json_encode(array(1 => $smcFunc['db_escape_string']($attachdir))), - '{$boarddir}' => $smcFunc['db_escape_string'](dirname(__FILE__)), - '{$boardurl}' => $boardurl, - '{$enableCompressedOutput}' => isset($_POST['compress']) ? '1' : '0', - '{$databaseSession_enable}' => isset($_POST['dbsession']) ? '1' : '0', - '{$smf_version}' => SMF_VERSION, - '{$current_time}' => time(), - '{$sched_task_offset}' => 82800 + mt_rand(0, 86399), - '{$registration_method}' => isset($_POST['reg_mode']) ? $_POST['reg_mode'] : 0, - ); - - foreach ($txt as $key => $value) - { - if (substr($key, 0, 8) == 'default_') - $replaces['{$' . $key . '}'] = $smcFunc['db_escape_string']($value); - } - $replaces['{$default_reserved_names}'] = strtr($replaces['{$default_reserved_names}'], array('\\\\n' => '\\n')); - - // MySQL-specific stuff - storage engine and UTF8 handling - if (substr($db_type, 0, 5) == 'mysql') - { - // Just in case the query fails for some reason... - $engines = array(); - - // Figure out storage engines - what do we have, etc. - $get_engines = $smcFunc['db_query']('', 'SHOW ENGINES', array()); - - while ($row = $smcFunc['db_fetch_assoc']($get_engines)) - { - if ($row['Support'] == 'YES' || $row['Support'] == 'DEFAULT') - $engines[] = $row['Engine']; - } - - // Done with this now - $smcFunc['db_free_result']($get_engines); - - // InnoDB is better, so use it if possible... - $has_innodb = in_array('InnoDB', $engines); - $replaces['{$engine}'] = $has_innodb ? 'InnoDB' : 'MyISAM'; - $replaces['{$memory}'] = (!$has_innodb && in_array('MEMORY', $engines)) ? 'MEMORY' : $replaces['{$engine}']; - - // UTF-8 is required. - $replaces['{$engine}'] .= ' DEFAULT CHARSET=utf8 COLLATE=utf8_general_ci'; - $replaces['{$memory}'] .= ' DEFAULT CHARSET=utf8 COLLATE=utf8_general_ci'; - - // One last thing - if we don't have InnoDB, we can't do transactions... - if (!$has_innodb) - { - $replaces['START TRANSACTION;'] = ''; - $replaces['COMMIT;'] = ''; - } - } - else - { - $has_innodb = false; - } - - // Read in the SQL. Turn this on and that off... internationalize... etc. - $type = ($db_type == 'mysqli' ? 'mysql' : $db_type); - $sql_lines = explode("\n", strtr(implode(' ', file(dirname(__FILE__) . '/install_' . DB_SCRIPT_VERSION . '_' . $type . '.sql')), $replaces)); - - // Execute the SQL. - $current_statement = ''; - $exists = array(); - $incontext['failures'] = array(); - $incontext['sql_results'] = array( - 'tables' => 0, - 'inserts' => 0, - 'table_dups' => 0, - 'insert_dups' => 0, - ); - foreach ($sql_lines as $count => $line) - { - // No comments allowed! - if (substr(trim($line), 0, 1) != '#') - $current_statement .= "\n" . rtrim($line); - - // Is this the end of the query string? - if (empty($current_statement) || (preg_match('~;[\s]*$~s', $line) == 0 && $count != count($sql_lines))) - continue; - - // Does this table already exist? If so, don't insert more data into it! - if (preg_match('~^\s*INSERT INTO ([^\s\n\r]+?)~', $current_statement, $match) != 0 && in_array($match[1], $exists)) - { - preg_match_all('~\)[,;]~', $current_statement, $matches); - if (!empty($matches[0])) - $incontext['sql_results']['insert_dups'] += count($matches[0]); - else - $incontext['sql_results']['insert_dups']++; - - $current_statement = ''; - continue; - } - - if ($smcFunc['db_query']('', $current_statement, array('security_override' => true, 'db_error_skip' => true), $db_connection) === false) - { - // Error 1050: Table already exists! - // @todo Needs to be made better! - if ((($db_type != 'mysql' && $db_type != 'mysqli') || mysqli_errno($db_connection) == 1050) && preg_match('~^\s*CREATE TABLE ([^\s\n\r]+?)~', $current_statement, $match) == 1) - { - $exists[] = $match[1]; - $incontext['sql_results']['table_dups']++; - } - // Don't error on duplicate indexes (or duplicate operators in PostgreSQL.) - elseif (!preg_match('~^\s*CREATE( UNIQUE)? INDEX ([^\n\r]+?)~', $current_statement, $match) && !($db_type == 'postgresql' && preg_match('~^\s*CREATE OPERATOR (^\n\r]+?)~', $current_statement, $match))) - { - // MySQLi requires a connection object. It's optional with MySQL and Postgres - $incontext['failures'][$count] = $smcFunc['db_error']($db_connection); - } - } - else - { - if (preg_match('~^\s*CREATE TABLE ([^\s\n\r]+?)~', $current_statement, $match) == 1) - $incontext['sql_results']['tables']++; - elseif (preg_match('~^\s*INSERT INTO ([^\s\n\r]+?)~', $current_statement, $match) == 1) - { - preg_match_all('~\)[,;]~', $current_statement, $matches); - if (!empty($matches[0])) - $incontext['sql_results']['inserts'] += count($matches[0]); - else - $incontext['sql_results']['inserts']++; - } - } - - $current_statement = ''; - - // Wait, wait, I'm still working here! - @set_time_limit(60); - } - - // Sort out the context for the SQL. - foreach ($incontext['sql_results'] as $key => $number) - { - if ($number == 0) - unset($incontext['sql_results'][$key]); - else - $incontext['sql_results'][$key] = sprintf($txt['db_populate_' . $key], $number); - } - - // Make sure UTF will be used globally. - $newSettings[] = array('global_character_set', 'UTF-8'); - - // Are we allowing stat collection? - if (!empty($_POST['stats']) && substr($boardurl, 0, 16) != 'http://localhost' && empty($modSettings['allow_sm_stats']) && empty($modSettings['enable_sm_stats'])) - { - $incontext['allow_sm_stats'] = true; - - // Attempt to register the site etc. - $fp = @fsockopen('www.simplemachines.org', 443, $errno, $errstr); - if (!$fp) - $fp = @fsockopen('www.simplemachines.org', 80, $errno, $errstr); - if ($fp) - { - $out = 'GET /smf/stats/register_stats.php?site=' . base64_encode($boardurl) . ' HTTP/1.1' . "\r\n"; - $out .= 'Host: www.simplemachines.org' . "\r\n"; - $out .= 'Connection: Close' . "\r\n\r\n"; - fwrite($fp, $out); - - $return_data = ''; - while (!feof($fp)) - $return_data .= fgets($fp, 128); - - fclose($fp); - - // Get the unique site ID. - preg_match('~SITE-ID:\s(\w{10})~', $return_data, $ID); - - if (!empty($ID[1])) - $smcFunc['db_insert']('replace', - $db_prefix . 'settings', - array('variable' => 'string', 'value' => 'string'), - array( - array('sm_stats_key', $ID[1]), - array('enable_sm_stats', 1), - ), - array('variable') - ); - } - } - // Don't remove stat collection unless we unchecked the box for real, not from the loop. - elseif (empty($_POST['stats']) && empty($incontext['allow_sm_stats'])) - $smcFunc['db_query']('', ' - DELETE FROM {db_prefix}settings - WHERE variable = {string:enable_sm_stats}', - array( - 'enable_sm_stats' => 'enable_sm_stats', - 'db_error_skip' => true, - ) - ); - - // Are we enabling SSL? - if (!empty($_POST['force_ssl'])) - $newSettings[] = array('force_ssl', 1); - - // Setting a timezone is required. - if (!isset($modSettings['default_timezone']) && function_exists('date_default_timezone_set')) - { - // Get PHP's default timezone, if set - $ini_tz = ini_get('date.timezone'); - if (!empty($ini_tz)) - $timezone_id = $ini_tz; - else - $timezone_id = ''; - - // If date.timezone is unset, invalid, or just plain weird, make a best guess - if (!in_array($timezone_id, timezone_identifiers_list())) - { - $server_offset = @mktime(0, 0, 0, 1, 1, 1970) * -1; - $timezone_id = timezone_name_from_abbr('', $server_offset, 0); - - if (empty($timezone_id)) - $timezone_id = 'UTC'; - } - - if (date_default_timezone_set($timezone_id)) - $newSettings[] = array('default_timezone', $timezone_id); - } - - if (!empty($newSettings)) - { - $smcFunc['db_insert']('replace', - '{db_prefix}settings', - array('variable' => 'string-255', 'value' => 'string-65534'), - $newSettings, - array('variable') - ); - } - - // Populate the smiley_files table. - // Can't just dump this data in the SQL file because we need to know the id for each smiley. - $smiley_filenames = array( - ':)' => 'smiley', - ';)' => 'wink', - ':D' => 'cheesy', - ';D' => 'grin', - '>:(' => 'angry', - ':(' => 'sad', - ':o' => 'shocked', - '8)' => 'cool', - '???' => 'huh', - '::)' => 'rolleyes', - ':P' => 'tongue', - ':-[' => 'embarrassed', - ':-X' => 'lipsrsealed', - ':-\\' => 'undecided', - ':-*' => 'kiss', - ':\'(' => 'cry', - '>:D' => 'evil', - '^-^' => 'azn', - 'O0' => 'afro', - ':))' => 'laugh', - 'C:-)' => 'police', - 'O:-)' => 'angel' - ); - $smiley_set_extensions = array('fugue' => '.png', 'alienine' => '.png'); - - $smiley_inserts = array(); - $request = $smcFunc['db_query']('', ' - SELECT id_smiley, code - FROM {db_prefix}smileys', - array() - ); - while ($row = $smcFunc['db_fetch_assoc']($request)) - { - foreach ($smiley_set_extensions as $set => $ext) - $smiley_inserts[] = array($row['id_smiley'], $set, $smiley_filenames[$row['code']] . $ext); - } - $smcFunc['db_free_result']($request); - - $smcFunc['db_insert']('ignore', - '{db_prefix}smiley_files', - array('id_smiley' => 'int', 'smiley_set' => 'string-48', 'filename' => 'string-48'), - $smiley_inserts, - array('id_smiley', 'smiley_set') - ); - - // Let's optimize those new tables, but not on InnoDB, ok? - if (!$has_innodb) - { - db_extend(); - $tables = $smcFunc['db_list_tables']($db_name, $db_prefix . '%'); - foreach ($tables as $table) - { - $smcFunc['db_optimize_table']($table) != -1 or $db_messed = true; - - if (!empty($db_messed)) - { - $incontext['failures'][-1] = $smcFunc['db_error'](); - break; - } - } - } - - // MySQL specific stuff - if (substr($db_type, 0, 5) != 'mysql') - return false; - - // Find database user privileges. - $privs = array(); - $get_privs = $smcFunc['db_query']('', 'SHOW PRIVILEGES', array()); - while ($row = $smcFunc['db_fetch_assoc']($get_privs)) - { - if ($row['Privilege'] == 'Alter') - $privs[] = $row['Privilege']; - } - $smcFunc['db_free_result']($get_privs); - - // Check for the ALTER privilege. - if (!empty($databases[$db_type]['alter_support']) && !in_array('Alter', $privs)) - { - $incontext['error'] = $txt['error_db_alter_priv']; - return false; - } - - if (!empty($exists)) - { - $incontext['page_title'] = $txt['user_refresh_install']; - $incontext['was_refresh'] = true; - } - - return false; -} - -// Ask for the administrator login information. -function AdminAccount() -{ - global $txt, $db_type, $smcFunc, $incontext, $db_prefix, $db_passwd, $sourcedir, $db_character_set; - - $incontext['sub_template'] = 'admin_account'; - $incontext['page_title'] = $txt['user_settings']; - $incontext['continue'] = 1; - - // Skipping? - if (!empty($_POST['skip'])) - return true; - - // Need this to check whether we need the database password. - require(dirname(__FILE__) . '/Settings.php'); - load_database(); - - require_once($sourcedir . '/Subs-Auth.php'); - - require_once($sourcedir . '/Subs.php'); - - // Reload settings & set some global funcs - require_once($sourcedir . '/Load.php'); - reloadSettings(); - - // We need this to properly hash the password for Admin - $smcFunc['strtolower'] = function($string) - { - global $sourcedir; - require_once($sourcedir . '/Subs-Charset.php'); - return utf8_strtolower($string); - }; - - if (!isset($_POST['username'])) - $_POST['username'] = ''; - if (!isset($_POST['email'])) - $_POST['email'] = ''; - if (!isset($_POST['server_email'])) - $_POST['server_email'] = ''; - - $incontext['username'] = htmlspecialchars($_POST['username']); - $incontext['email'] = htmlspecialchars($_POST['email']); - $incontext['server_email'] = htmlspecialchars($_POST['server_email']); - - $incontext['require_db_confirm'] = empty($db_type); - - // Only allow skipping if we think they already have an account setup. - $request = $smcFunc['db_query']('', ' - SELECT id_member - FROM {db_prefix}members - WHERE id_group = {int:admin_group} OR FIND_IN_SET({int:admin_group}, additional_groups) != 0 - LIMIT 1', - array( - 'db_error_skip' => true, - 'admin_group' => 1, - ) - ); - if ($smcFunc['db_num_rows']($request) != 0) - $incontext['skip'] = 1; - $smcFunc['db_free_result']($request); - - // Trying to create an account? - if (isset($_POST['password1']) && !empty($_POST['contbutt'])) - { - // Wrong password? - if ($incontext['require_db_confirm'] && $_POST['password3'] != $db_passwd) - { - $incontext['error'] = $txt['error_db_connect']; - return false; - } - // Not matching passwords? - if ($_POST['password1'] != $_POST['password2']) - { - $incontext['error'] = $txt['error_user_settings_again_match']; - return false; - } - // No password? - if (strlen($_POST['password1']) < 4) - { - $incontext['error'] = $txt['error_user_settings_no_password']; - return false; - } - if (!file_exists($sourcedir . '/Subs.php')) - { - $incontext['error'] = sprintf($txt['error_sourcefile_missing'], 'Subs.php'); - return false; - } - - // Update the webmaster's email? - if (!empty($_POST['server_email']) && (empty($webmaster_email) || $webmaster_email == 'noreply@myserver.com')) - installer_updateSettingsFile(array('webmaster_email' => $_POST['server_email'])); - - // Work out whether we're going to have dodgy characters and remove them. - $invalid_characters = preg_match('~[<>&"\'=\\\]~', $_POST['username']) != 0; - $_POST['username'] = preg_replace('~[<>&"\'=\\\]~', '', $_POST['username']); - - $result = $smcFunc['db_query']('', ' - SELECT id_member, password_salt - FROM {db_prefix}members - WHERE member_name = {string:username} OR email_address = {string:email} - LIMIT 1', - array( - 'username' => $_POST['username'], - 'email' => $_POST['email'], - 'db_error_skip' => true, - ) - ); - if ($smcFunc['db_num_rows']($result) != 0) - { - list ($incontext['member_id'], $incontext['member_salt']) = $smcFunc['db_fetch_row']($result); - $smcFunc['db_free_result']($result); - - $incontext['account_existed'] = $txt['error_user_settings_taken']; - } - elseif ($_POST['username'] == '' || strlen($_POST['username']) > 25) - { - // Try the previous step again. - $incontext['error'] = $_POST['username'] == '' ? $txt['error_username_left_empty'] : $txt['error_username_too_long']; - return false; - } - elseif ($invalid_characters || $_POST['username'] == '_' || $_POST['username'] == '|' || strpos($_POST['username'], '[code') !== false || strpos($_POST['username'], '[/code') !== false) - { - // Try the previous step again. - $incontext['error'] = $txt['error_invalid_characters_username']; - return false; - } - elseif (empty($_POST['email']) || !filter_var($_POST['email'], FILTER_VALIDATE_EMAIL) || strlen($_POST['email']) > 255) - { - // One step back, this time fill out a proper admin email address. - $incontext['error'] = sprintf($txt['error_valid_admin_email_needed'], $_POST['username']); - return false; - } - elseif (empty($_POST['server_email']) || !filter_var($_POST['server_email'], FILTER_VALIDATE_EMAIL) || strlen($_POST['server_email']) > 255) - { - // One step back, this time fill out a proper admin email address. - $incontext['error'] = $txt['error_valid_server_email_needed']; - return false; - } - elseif ($_POST['username'] != '') - { - if (!is_callable('random_int')) - require_once('Sources/random_compat/random.php'); - - $incontext['member_salt'] = bin2hex(random_bytes(16)); - - // Format the username properly. - $_POST['username'] = preg_replace('~[\t\n\r\x0B\0\xA0]+~', ' ', $_POST['username']); - $ip = isset($_SERVER['REMOTE_ADDR']) ? substr($_SERVER['REMOTE_ADDR'], 0, 255) : ''; - - $_POST['password1'] = hash_password($_POST['username'], $_POST['password1']); - - $incontext['member_id'] = $smcFunc['db_insert']('', - $db_prefix . 'members', - array( - 'member_name' => 'string-25', - 'real_name' => 'string-25', - 'passwd' => 'string', - 'email_address' => 'string', - 'id_group' => 'int', - 'posts' => 'int', - 'date_registered' => 'int', - 'password_salt' => 'string', - 'lngfile' => 'string', - 'personal_text' => 'string', - 'avatar' => 'string', - 'member_ip' => 'inet', - 'member_ip2' => 'inet', - 'buddy_list' => 'string', - 'pm_ignore_list' => 'string', - 'website_title' => 'string', - 'website_url' => 'string', - 'signature' => 'string', - 'usertitle' => 'string', - 'secret_question' => 'string', - 'additional_groups' => 'string', - 'ignore_boards' => 'string', - ), - array( - $_POST['username'], - $_POST['username'], - $_POST['password1'], - $_POST['email'], - 1, - 0, - time(), - $incontext['member_salt'], - '', - '', - '', - $ip, - $ip, - '', - '', - '', - '', - '', - '', - '', - '', - '', - ), - array('id_member'), - 1 - ); - } - - // If we're here we're good. - return true; - } - - return false; -} - -// Final step, clean up and a complete message! -function DeleteInstall() -{ - global $smcFunc, $db_character_set, $context, $txt, $incontext; - global $databases, $sourcedir, $modSettings, $user_info, $db_type, $boardurl; - global $auth_secret, $cookiename; - - $incontext['page_title'] = $txt['congratulations']; - $incontext['sub_template'] = 'delete_install'; - $incontext['continue'] = 0; - - require(dirname(__FILE__) . '/Settings.php'); - load_database(); - - chdir(dirname(__FILE__)); - - require_once($sourcedir . '/Errors.php'); - require_once($sourcedir . '/Logging.php'); - require_once($sourcedir . '/Subs.php'); - require_once($sourcedir . '/Load.php'); - require_once($sourcedir . '/Security.php'); - require_once($sourcedir . '/Subs-Auth.php'); - - // Reload settings & set some global funcs - reloadSettings(); - - // Bring a warning over. - if (!empty($incontext['account_existed'])) - $incontext['warning'] = $incontext['account_existed']; - - $smcFunc['db_query']('', ' - SET NAMES {string:db_character_set}', - array( - 'db_character_set' => $db_character_set, - 'db_error_skip' => true, - ) - ); - - // As track stats is by default enabled let's add some activity. - $smcFunc['db_insert']('ignore', - '{db_prefix}log_activity', - array('date' => 'date', 'topics' => 'int', 'posts' => 'int', 'registers' => 'int'), - array(smf_strftime('%Y-%m-%d', time()), 1, 1, (!empty($incontext['member_id']) ? 1 : 0)), - array('date') - ); - - // We're going to want our lovely $modSettings now. - $request = $smcFunc['db_query']('', ' - SELECT variable, value - FROM {db_prefix}settings', - array( - 'db_error_skip' => true, - ) - ); - // Only proceed if we can load the data. - if ($request) - { - while ($row = $smcFunc['db_fetch_row']($request)) - $modSettings[$row[0]] = $row[1]; - $smcFunc['db_free_result']($request); - } - - // Automatically log them in ;) - if (isset($incontext['member_id']) && isset($incontext['member_salt'])) - setLoginCookie(3153600 * 60, $incontext['member_id'], hash_salt($_POST['password1'], $incontext['member_salt'])); - - $result = $smcFunc['db_query']('', ' - SELECT value - FROM {db_prefix}settings - WHERE variable = {string:db_sessions}', - array( - 'db_sessions' => 'databaseSession_enable', - 'db_error_skip' => true, - ) - ); - if ($smcFunc['db_num_rows']($result) != 0) - list ($db_sessions) = $smcFunc['db_fetch_row']($result); - $smcFunc['db_free_result']($result); - - if (empty($db_sessions)) - $_SESSION['admin_time'] = time(); - else - { - $_SERVER['HTTP_USER_AGENT'] = substr($_SERVER['HTTP_USER_AGENT'], 0, 211); - - $smcFunc['db_insert']('replace', - '{db_prefix}sessions', - array( - 'session_id' => 'string', 'last_update' => 'int', 'data' => 'string', - ), - array( - session_id(), time(), 'USER_AGENT|s:' . strlen($_SERVER['HTTP_USER_AGENT']) . ':"' . $_SERVER['HTTP_USER_AGENT'] . '";admin_time|i:' . time() . ';', - ), - array('session_id') - ); - } - - updateStats('member'); - updateStats('message'); - updateStats('topic'); - - // This function is needed to do the updateStats('subject') call. - $smcFunc['strtolower'] = function($string) - { - global $sourcedir; - require_once($sourcedir . '/Subs-Charset.php'); - return utf8_strtolower($string); - }; - - $request = $smcFunc['db_query']('', ' - SELECT id_msg - FROM {db_prefix}messages - WHERE id_msg = 1 - AND modified_time = 0 - LIMIT 1', - array( - 'db_error_skip' => true, - ) - ); - $context['utf8'] = true; - if ($smcFunc['db_num_rows']($request) > 0) - updateStats('subject', 1, htmlspecialchars($txt['default_topic_subject'])); - $smcFunc['db_free_result']($request); - - // Now is the perfect time to fetch the SM files. - require_once($sourcedir . '/ScheduledTasks.php'); - // Sanity check that they loaded earlier! - if (isset($modSettings['recycle_board'])) - { - scheduled_fetchSMfiles(); // Now go get those files! - - // We've just installed! - $user_info['ip'] = $_SERVER['REMOTE_ADDR']; - $user_info['id'] = isset($incontext['member_id']) ? $incontext['member_id'] : 0; - logAction('install', array('version' => SMF_FULL_VERSION), 'admin'); - } - - // Disable the legacy BBC by default for new installs - updateSettings(array( - 'disabledBBC' => implode(',', $context['legacy_bbc']), - )); - - // Some final context for the template. - $incontext['dir_still_writable'] = is_writable(dirname(__FILE__)) && substr(__FILE__, 1, 2) != ':\\'; - $incontext['probably_delete_install'] = isset($_SESSION['installer_temp_ftp']) || is_writable(dirname(__FILE__)) || is_writable(__FILE__); - - // Update hash's cost to an appropriate setting - updateSettings(array( - 'bcrypt_hash_cost' => hash_benchmark(), - )); - - return false; -} - -function installer_updateSettingsFile($vars, $rebuild = false) -{ - global $sourcedir, $context, $db_character_set, $txt; - - $context['utf8'] = true; - - if (empty($sourcedir)) - { - if (file_exists(dirname(__FILE__) . '/Sources') && is_dir(dirname(__FILE__) . '/Sources')) - $sourcedir = dirname(__FILE__) . '/Sources'; - else - return false; - } - - if (!is_writeable(dirname(__FILE__) . '/Settings.php')) - { - @chmod(dirname(__FILE__) . '/Settings.php', 0777); - - if (!is_writeable(dirname(__FILE__) . '/Settings.php')) - return false; - } - - require_once($sourcedir . '/Subs.php'); - require_once($sourcedir . '/Subs-Admin.php'); - - return updateSettingsFile($vars, false, $rebuild); -} - -// Create an .htaccess file to prevent mod_security. SMF has filtering built-in. -function fixModSecurity() -{ - $htaccess_addition = ' - - # Turn off mod_security filtering. SMF is a big boy, it doesn\'t need its hands held. - SecFilterEngine Off - - # The below probably isn\'t needed, but better safe than sorry. - SecFilterScanPOST Off -'; - - if (!function_exists('apache_get_modules') || !in_array('mod_security', apache_get_modules())) - return true; - elseif (file_exists(dirname(__FILE__) . '/.htaccess') && is_writable(dirname(__FILE__) . '/.htaccess')) - { - $current_htaccess = implode('', file(dirname(__FILE__) . '/.htaccess')); - - // Only change something if mod_security hasn't been addressed yet. - if (strpos($current_htaccess, '') === false) - { - if ($ht_handle = fopen(dirname(__FILE__) . '/.htaccess', 'a')) - { - fwrite($ht_handle, $htaccess_addition); - fclose($ht_handle); - return true; - } - else - return false; - } - else - return true; - } - elseif (file_exists(dirname(__FILE__) . '/.htaccess')) - return strpos(implode('', file(dirname(__FILE__) . '/.htaccess')), '') !== false; - elseif (is_writable(dirname(__FILE__))) - { - if ($ht_handle = fopen(dirname(__FILE__) . '/.htaccess', 'w')) - { - fwrite($ht_handle, $htaccess_addition); - fclose($ht_handle); - return true; - } - else - return false; - } - else - return false; -} - -function template_install_above() -{ - global $incontext, $txt, $installurl; - - echo ' - - - - - ', $txt['smf_installer'], ' - - - ', $txt['lang_rtl'] == '1' ? '' : '', ' - - - - - -
- -
'; - - // Have we got a language drop down - if so do it on the first step only. - if (!empty($incontext['detected_languages']) && count($incontext['detected_languages']) > 1 && $incontext['current_step'] == 0) - { - echo ' -
-
-
-
-
- - - -
-
-
-
-
-
'; - } - - echo ' -
-
-
-

', $txt['upgrade_progress'], '

-
    '; - - foreach ($incontext['steps'] as $num => $step) - echo ' - - ', $txt['upgrade_step'], ' ', $step[0], ': ', $step[1], ' - '; - - echo ' -
-
-
-
-

'. $txt['upgrade_overall_progress'], '

- ', $incontext['overall_percent'], '% -
-
-
-
-

', $incontext['page_title'], '

-
'; -} - -function template_install_below() -{ - global $incontext, $txt; - - if (!empty($incontext['continue']) || !empty($incontext['skip'])) - { - echo ' -
'; - - if (!empty($incontext['continue'])) - echo ' - '; - if (!empty($incontext['skip'])) - echo ' - '; - echo ' -
'; - } - - // Show the closing form tag and other data only if not in the last step - if (count($incontext['steps']) - 1 !== (int) $incontext['current_step']) - echo ' - '; - - echo ' -
-
-
-
-
-
- - -'; -} - -// Welcome them to the wonderful world of SMF! -function template_welcome_message() -{ - global $incontext, $txt; - - echo ' - -
-

', sprintf($txt['install_welcome_desc'], SMF_VERSION), '

- '; - - // Show the warnings, or not. - if (template_warning_divs()) - echo ' -

', $txt['install_all_lovely'], '

'; - - // Say we want the continue button! - if (empty($incontext['error'])) - $incontext['continue'] = 1; - - // For the latest version stuff. - echo ' - '; -} - -// A shortcut for any warning stuff. -function template_warning_divs() -{ - global $txt, $incontext; - - // Errors are very serious.. - if (!empty($incontext['error'])) - echo ' -
-

', $txt['upgrade_critical_error'], '

- ', $incontext['error'], ' -
'; - // A warning message? - elseif (!empty($incontext['warning'])) - echo ' -
-

', $txt['upgrade_warning'], '

- ', $incontext['warning'], ' -
'; - - return empty($incontext['error']) && empty($incontext['warning']); -} - -function template_chmod_files() -{ - global $txt, $incontext; - - echo ' -

', $txt['ftp_setup_why_info'], '

-
    -
  • ', implode('
    • -
  • ', $incontext['failed_files']), '
    • -
'; - - if (isset($incontext['systemos'], $incontext['detected_path']) && $incontext['systemos'] == 'linux') - echo ' -
-

', $txt['chmod_linux_info'], '

- # chmod a+w ', implode(' ' . $incontext['detected_path'] . '/', $incontext['failed_files']), ''; - - // This is serious! - if (!template_warning_divs()) - return; - - echo ' -
-

', $txt['ftp_setup_info'], '

'; - - if (!empty($incontext['ftp_errors'])) - echo ' -
- ', $txt['error_ftp_no_connect'], '

- ', implode('
', $incontext['ftp_errors']), ' -
'; - - echo ' - -
-
- -
-
-
- - -
- -
', $txt['ftp_server_info'], '
-
-
- -
-
- -
', $txt['ftp_username_info'], '
-
-
- -
-
- -
', $txt['ftp_password_info'], '
-
-
- -
-
- -
', $incontext['ftp']['path_msg'], '
-
-
-
- -
-
- ', $txt['error_message_click'], ' ', $txt['ftp_setup_again']; -} - -// Get the database settings prepared. -function template_database_settings() -{ - global $incontext, $txt; - - echo ' -
-

', $txt['db_settings_info'], '

'; - - template_warning_divs(); - - echo ' -
'; - - // More than one database type? - if (count($incontext['supported_databases']) > 1) - { - echo ' -
- -
-
- -
', $txt['db_settings_type_info'], '
-
'; - } - else - { - echo ' -
- -
'; - } - - echo ' -
- -
-
- -
', $txt['db_settings_server_info'], '
-
-
- -
-
- -
', $txt['db_settings_port_info'], '
-
-
- -
-
- -
', $txt['db_settings_username_info'], '
-
-
- -
-
- -
', $txt['db_settings_password_info'], '
-
-
- -
-
- -
- ', $txt['db_settings_database_info'], ' - ', $txt['db_settings_database_info_note'], ' -
-
-
- -
-
- -
', $txt['db_settings_prefix_info'], '
-
-
'; - - // Toggles a warning related to db names in PostgreSQL - echo ' - '; -} - -// Stick in their forum settings. -function template_forum_settings() -{ - global $incontext, $txt; - - echo ' - -

', $txt['install_settings_info'], '

'; - - template_warning_divs(); - - echo ' -
-
- -
-
- -
', $txt['install_settings_name_info'], '
-
-
- -
-
- -
', $txt['install_settings_url_info'], '
-
-
- -
-
- -
', $txt['install_settings_reg_mode_info'], '
-
-
', $txt['install_settings_compress'], ':
-
- - -
', $txt['install_settings_compress_info'], '
-
-
', $txt['install_settings_dbsession'], ':
-
- - -
', $incontext['test_dbsession'] ? $txt['install_settings_dbsession_info1'] : $txt['install_settings_dbsession_info2'], '
-
-
', $txt['install_settings_stats'], ':
-
- - -
', $txt['install_settings_stats_info'], '
-
-
', $txt['force_ssl'], ':
-
- - -
', $txt['force_ssl_info'], '
-
-
'; -} - -// Show results of the database population. -function template_populate_database() -{ - global $incontext, $txt; - - echo ' - -

', !empty($incontext['was_refresh']) ? $txt['user_refresh_install_desc'] : $txt['db_populate_info'], '

'; - - if (!empty($incontext['sql_results'])) - { - echo ' -
    -
  • ', implode('
  • ', $incontext['sql_results']), '
    • -
'; - } - - if (!empty($incontext['failures'])) - { - echo ' -
', $txt['error_db_queries'], '
-
    '; - - foreach ($incontext['failures'] as $line => $fail) - echo ' -
  • ', $txt['error_db_queries_line'], $line + 1, ': ', nl2br(htmlspecialchars($fail)), '
    • '; - - echo ' -
'; - } - - echo ' -

', $txt['db_populate_info2'], '

'; - - template_warning_divs(); - - echo ' - '; -} - -// Create the admin account. -function template_admin_account() -{ - global $incontext, $txt; - - echo ' - -

', $txt['user_settings_info'], '

'; - - template_warning_divs(); - - echo ' -
-
- -
-
- -
', $txt['user_settings_username_info'], '
-
-
- -
-
- -
', $txt['user_settings_password_info'], '
-
-
- -
-
- -
', $txt['user_settings_again_info'], '
-
-
- -
-
- -
', $txt['user_settings_admin_email_info'], '
-
-
- -
-
- -
', $txt['user_settings_server_email_info'], '
-
-
'; - - if ($incontext['require_db_confirm']) - echo ' -

', $txt['user_settings_database'], '

-

', $txt['user_settings_database_info'], '

- -
- -
'; -} - -// Tell them it's done, and to delete. -function template_delete_install() -{ - global $incontext, $installurl, $txt, $boardurl; - - echo ' -

', $txt['congratulations_help'], '

'; - - template_warning_divs(); - - // Install directory still writable? - if ($incontext['dir_still_writable']) - echo ' -

', $txt['still_writable'], '

'; - - // Don't show the box if it's like 99% sure it won't work :P. - if ($incontext['probably_delete_install']) - echo ' - - '; - - echo ' -

', sprintf($txt['go_to_your_forum'], $boardurl . '/index.php'), '

-
- ', $txt['good_luck']; -} - -?> \ No newline at end of file