gitlabFork/ISPConfig3.git - Solinfo Gitblit

			@@ -86,7 +86,7 @@
			$this->_sqlerror('Zugriff auf Datenbankserver fehlgeschlagen! / Database server not accessible!');
			return false;
			}
			if(!((bool)mysqli_query( $this->_iConnId, "USE $this->dbName"))) {
			if(!((bool)mysqli_query( $this->_iConnId, 'USE `' . $this->dbName . '`'))) {
			$this->close();
			$this->_sqlerror('Datenbank nicht gefunden / Database not found');
			return false;
			@@ -176,6 +176,7 @@
			private function _query($sQuery = '') {
			global $app;

			//if($this->isConnected == false) return false;
			if ($sQuery == '') {
			$this->_sqlerror('Keine Anfrage angegeben / No query given');
			return false;
			@@ -187,6 +188,17 @@
			$ok = mysqli_ping($this->_iConnId);
			if(!$ok) {
			if(!mysqli_connect($this->dbHost, $this->dbUser, $this->dbPass, $this->dbName)) {
			if($this->errorNumber == '111') {
			// server is not available
			if($try > 9) {
			if(isset($app) && isset($app->forceErrorExit)) {
			$app->forceErrorExit('Database connection failure!');
			}
			// if we reach this, the app object is missing or has no exit method, so we continue as normal
			}
			sleep(30); // additional seconds, please!
			}

			if($try > 9) {
			$this->_sqlerror('DB::query -> reconnect');
			return false;
			@@ -378,6 +390,35 @@


			/**
			* check if a utf8 string is valid
			*
			* @access public
			* @param string $string the string to check
			* @return bool true if it is valid utf8, false otherwise
			*/
			private function check_utf8($str) {
			$len = strlen($str);
			for($i = 0; $i < $len; $i++){
			$c = ord($str[$i]);
			if ($c > 128) {
			if (($c > 247)) return false;
			elseif ($c > 239) $bytes = 4;
			elseif ($c > 223) $bytes = 3;
			elseif ($c > 191) $bytes = 2;
			else return false;
			if (($i + $bytes) > $len) return false;
			while ($bytes > 1) {
			$i++;
			$b = ord($str[$i]);
			if ($b < 128 \|\| $b > 191) return false;
			$bytes--;
			}
			}
			}
			return true;
			} // end of check_utf8

			/**
			* Escape a string for usage in a query
			*
			* @access public
			@@ -393,16 +434,16 @@
			$sString = '';
			}

			/*$cur_encoding = mb_detect_encoding($sString);
			$cur_encoding = mb_detect_encoding($sString);
			if($cur_encoding != "UTF-8") {
			if($cur_encoding != 'ASCII') {
			$app->log('String ' . substr($sString, 0, 25) . '... is ' . $cur_encoding . '.', LOGLEVEL_WARN);
			$app->log('String ' . substr($sString, 0, 25) . '... is ' . $cur_encoding . '.', LOGLEVEL_INFO);
			if($cur_encoding) $sString = mb_convert_encoding($sString, 'UTF-8', $cur_encoding);
			else $sString = mb_convert_encoding($sString, 'UTF-8');
			}
			} elseif(!PXBase::check_utf8($sString)) {
			} elseif(!$this->check_utf8($sString)) {
			$sString = utf8_encode($sString);
			}*/
			}

			if($this->_iConnId) return mysqli_real_escape_string($this->_iConnId, $sString);
			else return addslashes($sString);
			@@ -424,7 +465,7 @@
			if($this->show_error_messages && $conf['demo_mode'] === false) {
			echo $sErrormsg . $sAddMsg;
			} else if(is_object($app) && method_exists($app, 'log')) {
			$app->log($sErrormsg . $sAddMsg, LOGLEVEL_WARN);
			$app->log($sErrormsg . $sAddMsg . ' -> ' . $mysql_errno . ' (' . $mysql_error . ')', LOGLEVEL_WARN);
			}
			}

			@@ -574,20 +615,26 @@
			if(is_array($insert_data)) {
			$key_str = '';
			$val_str = '';
			$params = array($tablename);
			$v_params = array();
			foreach($insert_data as $key => $val) {
			$key_str .= "`".$key ."`,";
			$val_str .= "'".$this->escape($val)."',";
			$key_str .= '??,'
			$params[] = $key;

			$val_str .= '?,';
			$v_params[] = $val;
			}
			$key_str = substr($key_str, 0, -1);
			$val_str = substr($val_str, 0, -1);
			$insert_data_str = '('.$key_str.') VALUES ('.$val_str.')';
			$this->query("INSERT INTO ?? $insert_data_str", true, $params + $v_params);
			} else {
			/* TODO: deprecate this method! */
			$insert_data_str = $insert_data;
			$this->query("INSERT INTO ?? $insert_data_str", $tablename);
			}
			/* TODO: reduce risk of insert_data_str! */


			$old_rec = array();
			$this->query("INSERT INTO ?? $insert_data_str", $tablename);
			$index_value = $this->insertID();
			$new_rec = $this->queryOneRecord("SELECT * FROM ?? WHERE ? = ?", $tablename, $index_field, $index_value);
			$this->datalogSave($tablename, 'INSERT', $index_field, $index_value, $old_rec, $new_rec);
			@@ -602,17 +649,23 @@
			$old_rec = $this->queryOneRecord("SELECT * FROM ?? WHERE ?? = ?", $tablename, $index_field, $index_value);

			if(is_array($update_data)) {
			$params = array($tablename);
			$update_data_str = '';
			foreach($update_data as $key => $val) {
			$update_data_str .= "`".$key ."` = '".$this->escape($val)."',";
			$update_data_str .= '?? = ?,';
			$params[] = $key;
			$params[] = $val;
			}
			$params[] = $index_field;
			$params[] = $index_value;
			$update_data_str = substr($update_data_str, 0, -1);
			$this->query("UPDATE ?? SET $update_data_str WHERE ?? = ?", true, $params);
			} else {
			/* TODO: deprecate this method! */
			$update_data_str = $update_data;
			$this->query("UPDATE ?? SET $update_data_str WHERE ?? = ?", $tablename, $index_field, $index_value);
			}
			/* TODO: reduce risk of update_data_str */

			$this->query("UPDATE ?? SET $update_data_str WHERE ?? = ?", $tablename, $index_field, $index_value);
			$new_rec = $this->queryOneRecord("SELECT * FROM ?? WHERE ?? = ?", $tablename, $index_field, $index_value);
			$this->datalogSave($tablename, 'UPDATE', $index_field, $index_value, $old_rec, $new_rec, $force_update);

			@@ -635,7 +688,7 @@
			public function datalogError($errormsg) {
			global $app;

			if(isset($app->modules->current_datalog_id) && $app->modules->current_datalog_id > 0) $this->query("UPDATE sys_datalog set error = '".$this->quote($errormsg)."' WHERE datalog_id = ".$app->modules->current_datalog_id);
			if(isset($app->modules->current_datalog_id) && $app->modules->current_datalog_id > 0) $this->query("UPDATE sys_datalog set error = ? WHERE datalog_id = ?", $errormsg, $app->modules->current_datalog_id);

			return true;
			}