Personal Computer World 2005 October

home *** CD-ROM | disk | FTP | other *** search

/ Personal Computer World 2005 October / PCWOCT05.iso / Software / FromTheMag / XAMPP 1.4.14 / xampp-win32-1.4.14-installer.exe / xampp / phpMyAdmin / read_dump.php < prev next >

Wrap

PHP Script | 2005-01-26 | 15.5 KB | 429 lines

<?php /* $Id: read_dump.php,v 2.33 2005/01/27 14:49:29 nijel Exp $ */ // vim: expandtab sw=4 ts=4 sts=4: /** * Gets some core libraries */ require_once('./libraries/read_dump.lib.php'); require_once('./libraries/grab_globals.lib.php'); require_once('./libraries/common.lib.php'); if (!isset($db)) { $db = ''; } /** * Increases the max. allowed time to run a script */ @set_time_limit($cfg['ExecTimeLimit']); /** * Defines the url to return to in case of error in a sql statement */ if (!isset($goto) || !preg_match('@^(db_details|tbl_properties)(_[a-z]*)?\.php$@i', $goto)) { $goto = 'db_details.php'; } $err_url = $goto . '?' . PMA_generate_common_url($db) . (preg_match('@^tbl_properties(_[a-z]*)?\.php$@', $goto) ? '&table=' . urlencode($table) : ''); /** * Set up default values for some variables */ $view_bookmark = 0; $sql_bookmark = isset($sql_bookmark) ? $sql_bookmark : ''; $sql_query = isset($sql_query) ? $sql_query : ''; if (!empty($sql_localfile) && !empty($cfg['UploadDir'])) { // sanitize $sql_localfile as it comes from a POST $sql_localfile = PMA_securePath($sql_localfile); if (substr($cfg['UploadDir'], -1) != '/') { $cfg['UploadDir'] .= '/'; } $sql_file = $cfg['UploadDir'] . $sql_localfile; } else if (empty($sql_file)) { $sql_file = 'none'; } /** * Bookmark Support: get a query back from bookmark if required */ if (!empty($id_bookmark)) { require_once('./libraries/bookmark.lib.php'); switch ($action_bookmark) { case 0: // bookmarked query that have to be run $sql_query = PMA_queryBookmarks($db, $cfg['Bookmark'], $id_bookmark,'id', (isset($action_bookmark_all) ? TRUE : FALSE)); if (isset($bookmark_variable) && !empty($bookmark_variable)) { $sql_query = preg_replace('|/\*(.*)\[VARIABLE\](.*)\*/|imsU', '${1}' . PMA_sqlAddslashes($bookmark_variable) . '${2}', $sql_query); } break; case 1: // bookmarked query that have to be displayed $sql_query = PMA_queryBookmarks($db, $cfg['Bookmark'], $id_bookmark); $view_bookmark = 1; break; case 2: // bookmarked query that have to be deleted $sql_query = PMA_deleteBookmarks($db, $cfg['Bookmark'], $id_bookmark); break; } } // end if /** * Prepares the sql query */ // Gets the query from a file if required if ($sql_file != 'none') { // file_exists() returns false if open_basedir is set if ((is_uploaded_file($sql_file)) ||(isset($sql_localfile) && $sql_file == $cfg['UploadDir'] . $sql_localfile) && file_exists($sql_file)) { $open_basedir = @ini_get('open_basedir'); if (!isset($sql_file_compression)) $sql_file_compression = ''; // If we are on a server with open_basedir, we must move the file // before opening it. The doc explains how to create the "./tmp" // directory if (!empty($open_basedir)) { $tmp_subdir = (PMA_IS_WINDOWS ? '.\\tmp\\' : './tmp/'); // function is_writeable() is valid on PHP3 and 4 if (!is_writeable($tmp_subdir)) { $sql_query = PMA_readFile($sql_file, $sql_file_compression); if ($sql_query == FALSE) { $message = $strFileCouldNotBeRead; } } else { $sql_file_new = $tmp_subdir . basename($sql_file); if (move_uploaded_file($sql_file, $sql_file_new)) { $sql_query = PMA_readFile($sql_file_new, $sql_file_compression); if ($sql_query == FALSE) { $message = $strFileCouldNotBeRead; } unlink($sql_file_new); } else { // Moving uploaded file failed. Falling back to try reading it immediately. $sql_query = PMA_readFile($sql_file, $sql_file_compression); if ($sql_query == FALSE) { $message = $strFileCouldNotBeRead; } } } } else { // read from the normal upload dir $sql_query = PMA_readFile($sql_file, $sql_file_compression); if ($sql_query == FALSE) { $message = $strFileCouldNotBeRead; } } // Convert the file's charset if necessary if (PMA_MYSQL_INT_VERSION < 40100 && $cfg['AllowAnywhereRecoding'] && $allow_recoding && isset($charset_of_file) && $charset_of_file != $charset) { $sql_query = PMA_convert_string($charset_of_file, $charset, $sql_query); } else if (PMA_MYSQL_INT_VERSION >= 40100 && isset($charset_of_file) && $charset_of_file != 'utf8') { $sql_query = 'SET NAMES \'' . $charset_of_file . "';\n" . $sql_query . "\n" . "SET CHARACTER SET utf8;\n" . "SET SESSION collation_connection ='" . $collation_connection . "';"; } } // end uploaded file stuff } // Kanji convert SQL textfile 2002/1/4 by Y.Kawada if (@function_exists('PMA_kanji_str_conv')) { // do not trim here: see bug #1030644 //$sql_tmp = trim($sql_query); $sql_tmp = $sql_query; PMA_change_enc_order(); $sql_query = PMA_kanji_str_conv($sql_tmp, $knjenc, isset($xkana) ? $xkana : ''); PMA_change_enc_order(); } //else { // do not trim here: see bug #1030644 //$sql_query = trim($sql_query); //} // $sql_query come from the query textarea, if it's a reposted query gets its // 'true' value if (!empty($prev_sql_query)) { $prev_sql_query = urldecode($prev_sql_query); if ($sql_query == trim(htmlspecialchars($prev_sql_query))) { $sql_query = $prev_sql_query; } } // Drop database is not allowed -> ensure the query can be run if (!$cfg['AllowUserDropDatabase'] && preg_match('@DROP[[:space:]]+(IF EXISTS[[:space:]]+)?DATABASE @i', $sql_query)) { // Checks if the user is a Superuser // TODO: set a global variable with this information // loic1: optimized query if (!($result = PMA_DBI_select_db('mysql'))) { require_once('./header.inc.php'); PMA_mysqlDie($strNoDropDatabases, '', '', $err_url); } } define('PMA_CHK_DROP', 1); /** * Store a query as a bookmark before executing it? */ if (isset($SQLbookmark) && $sql_query != '') { require_once('./libraries/bookmark.lib.php'); $bfields = array( 'dbase' => $db, 'user' => $cfg['Bookmark']['user'], 'query' => urlencode($sql_query), 'label' => $bkm_label ); PMA_addBookmarks($bfields, $cfg['Bookmark'], (isset($bkm_all_users) && $bkm_all_users == 'true' ? true : false)); } /** * Executes the query */ if ($sql_query != '') { $pieces = array(); PMA_splitSqlFile($pieces, $sql_query, PMA_MYSQL_INT_VERSION); $pieces_count = count($pieces); // Copy of the cleaned sql statement for display purpose only (see near the // beginning of "db_details.php" & "tbl_properties.php") // You can either // * specify the amount of maximum pieces per query (having max_*_length set to 0!) or // * specify the amount of maximum chars per query (having max_*_pieces set to 0!) // - max_nofile_* is used for any queries submitted via copy&paste in the textarea // - max_file_* is used for any file-submitted query if (!$cfg['VerboseMultiSubmit']) { // Here be the values if the Verbose-Mode (see config.inc.php) is NOT activated $max_nofile_length = 500; $max_nofile_pieces = 0; // Nijel: Here must be some limit, as extended inserts can be really // huge and parsing them eats megabytes of memory $max_file_length = 10000; $max_file_pieces = 10; } else { // Values for verbose-mode $max_nofile_length = 0; $max_nofile_pieces = 50; // Nijel: Here must be some limit, as extended inserts can be really // huge and parsing them eats megabytes of memory $max_file_length = 50000; $max_file_pieces = 50; } if ($sql_file != 'none' && (($max_file_pieces != 0 && ($pieces_count > $max_file_pieces)) || ($max_file_length != 0 && (strlen($sql_query) > $max_file_length)))) { // Be nice with bandwidth... $sql_query_cpy = $sql_query = ''; $save_bandwidth = TRUE; $save_bandwidth_length = $max_file_length; $save_bandwidth_pieces = $max_file_pieces; } else { $sql_query_cpy = $sql_query; // Be nice with bandwidth... for now, an arbitrary limit of 500, // could be made configurable but probably not necessary if (($max_nofile_length != 0 && (strlen($sql_query_cpy) > $max_nofile_length)) || ($max_nofile_pieces != 0 && $pieces_count > $max_nofile_pieces)) { $sql_query_cpy = $sql_query = ''; $save_bandwidth = TRUE; $save_bandwidth_length = $max_nofile_length; $save_bandwidth_pieces = $max_nofile_pieces; } } // really run the query? if ($view_bookmark == 0) { // Only one query to run if ($pieces_count == 1 && !empty($pieces[0]['query'])) { $sql_query = $pieces[0]['query']; // .*? below is non greedy expansion, just in case somebody wants to understand it... if (preg_match('@^((-- |#)[^\n]*\n|/\*.*?\*/)*(DROP|CREATE)[[:space:]]+(IF EXISTS[[:space:]]+)?(TABLE|DATABASE)[[:space:]]+(.+)@im', $sql_query)) { $reload = 1; } require('./sql.php'); } // Runs multiple queries // (Possibly to create a db, so no db was selected in the // left frame and $db is empty) else if (empty($db) || PMA_DBI_select_db($db)) { $mult = TRUE; $info_msg = ''; $info_count = 0; // just skip last empty query (can contain just comments at the end) $count = $pieces_count; if ($pieces[$count - 1]['empty']) $count--; for ($i = 0; $i < $count; $i++) { $a_sql_query = $pieces[$i]['query']; // .*? below is non greedy expansion, just in case somebody wants to understand it... // looks ok here without using PCRE_MULTILINE if ($i == $count - 1 && preg_match('@^((-- |#)[^\n]*\n|[\s]*\n|/\*.*?\*/)*(SELECT|SHOW)@i', $a_sql_query)) { $complete_query = $sql_query; $display_query = $sql_query; $sql_query = $a_sql_query; require('./sql.php'); } $result = PMA_DBI_try_query($a_sql_query); if ($result == FALSE) { // readdump failed if (isset($my_die) && $cfg['IgnoreMultiSubmitErrors']) { $my_die[] = "\n\n" . $a_sql_query; } elseif ($cfg['IgnoreMultiSubmitErrors']) { $my_die = array(); $my_die[] = $a_sql_query; } else { $my_die = $a_sql_query; } if ($cfg['VerboseMultiSubmit']) { $info_msg .= $a_sql_query . '; # ' . $strError . "\n"; $info_count++; } if (!$cfg['IgnoreMultiSubmitErrors']) { break; } } else if ($cfg['VerboseMultiSubmit']) { $a_num_rows = (int)@PMA_DBI_num_rows($result); $a_aff_rows = (int)@PMA_DBI_affected_rows(); if ($a_num_rows > 0) { $a_rows = $a_num_rows; $a_switch = $strRows . ': '; } elseif ($a_aff_rows > 0) { $a_rows = $a_aff_rows; $a_switch = $strAffectedRows;; } else { $a_rows = ''; $a_switch = $strEmptyResultSet; } $info_msg .= $a_sql_query . "; # " . $a_switch . $a_rows . "\n"; $info_count++; } // If a 'USE <db>' SQL-clause was found and the query succeeded, set our current $db to the new one // .*? below is non greedy expansion, just in case somebody wants to understand it... if ($result != FALSE && preg_match('@^((-- |#)^[\n]*|/\*.*?\*/)*USE[[:space:]]*([\S]+)@i', $a_sql_query, $match)) { $db = trim($match[3]); $reload = 1; } // .*? below is non greedy expansion, just in case somebody wants to understand it... // must check $a_sql_query and use PCRE_MULTILINE if (!isset($reload) && preg_match('@^((-- |#)[^\n]*\n|/\*.*?\*/)*(DROP|CREATE)[\s]+(IF EXISTS[[:space:]]+)?(TABLE|DATABASE)[[:space:]]+(.+)@im', $a_sql_query)) { $reload = 1; } } // end for if ($cfg['VerboseMultiSubmit'] && strlen($info_msg) > 0 && ((!isset($save_bandwidth) || $save_bandwidth == FALSE) || ($save_bandwidth_pieces == 0 && strlen($info_msg) < $save_bandwidth_length) || ($save_bandwidth_length == 0 && $info_count < $save_bandwidth_pieces))) { $sql_query = $info_msg; } } // end else if } // end if (really run the query) unset($pieces); } // end if /** * MySQL error */ if (isset($my_die)) { $js_to_run = 'functions.js'; require_once('./header.inc.php'); if (is_array($my_die)) { foreach ($my_die AS $key => $die_string) { PMA_mysqlDie('', $die_string, '', $err_url, FALSE); echo '<hr />'; } } else { PMA_mysqlDie('', $my_die, '', $err_url, TRUE); } } /** * Go back to the calling script */ // Checks for a valid target script if (isset($table) && $table == '') { unset($table); } if (isset($db) && $db == '') { unset($db); } $is_db = $is_table = FALSE; if ($goto == 'tbl_properties.php') { if (!isset($table)) { $goto = 'db_details.php'; } else { PMA_DBI_select_db($db); $is_table = PMA_DBI_try_query('SHOW TABLES LIKE \'' . PMA_sqlAddslashes($table, TRUE) . '\'', NULL, PMA_DBI_QUERY_STORE); if (!($is_table && @PMA_DBI_num_rows($is_table))) { $goto = 'db_details.php'; unset($table); } } // end if... else... } if ($goto == 'db_details.php') { if (isset($table)) { unset($table); } if (!isset($db)) { $goto = 'main.php'; } else { $is_db = @PMA_DBI_select_db($db); if (!$is_db) { $goto = 'main.php'; unset($db); } } // end if... else... } // Defines the message to be displayed if (!empty($id_bookmark) && $action_bookmark == 2) { $message = $strBookmarkDeleted; } else if (!isset($sql_query_cpy)) { if (empty($message)) { $message = $strNoQuery; } } else if ($sql_query_cpy == '') { $message = "$strSuccess:[br]$strTheContent (" . (isset($sql_file_name) ? $sql_file_name . ': ' : '') . "$pieces_count $strInstructions) "; } else { $message = $strSuccess; } // Loads to target script if ($goto == 'db_details.php' || $goto == 'tbl_properties.php') { $js_to_run = 'functions.js'; } if ($goto != 'main.php') { require_once('./header.inc.php'); } $active_page = $goto; require('./' . $goto); ?>