wanghongjun
/
qingyuan
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
test
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
70 Commits
1 Branch
0 Tags
72 MiB
 
 
 
 
 
 
Tree: 134d89e61d
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '134d89e61d'
${ noResults }
qingyuan/framework/library/phpexcel/PHPExcel/Calculation/Token/phpsql.php

1183 lines
34 KiB
Raw Blame History

<?php
/*
PHP Mini MySQL Admin
(c) 2004-2014 Oleg Savchuk <osalabs@gmail.com> http://osalabs.com
Light standalone PHP script for quick and easy access MySQL databases.
http://phpminiadmin.sourceforge.net
Dual licensed: GPL v2 and MIT, see texts at http://opensource.org/licenses/
朽木汉化 <xiumu@mail.com> http://www.xiumu.org/
*/
$ACCESS_PWD='we71234'; #!!!重要!!! 设置访问密码
#默认数据库连接设置
# --- 重要! --- 如果开启了自动连接,务必设置访问密码
$DBDEF=array(
'user'=>"",#必填
'pwd'=>"", #必填
'db'=>"", #可选,默认数据库
'host'=>"",#可选
'port'=>"",#可选
'chset'=>"utf8",#可选,默认编码
);
file_exists($f=dirname(__FILE__) . '/phpminiconfig.php')&&require($f); // 从配置文件读取设置
if (function_exists('date_default_timezone_set')) date_default_timezone_set('UTC');#PHP版本需要大于 5.1+
//常量
$VERSION='1.9.150108';
$MAX_ROWS_PER_PAGE=50; #最大行数
$D="\r\n"; #默认导出分隔符
$BOM=chr(239).chr(187).chr(191);
$SHOW_D="SHOW DATABASES";
$SHOW_T="SHOW TABLE STATUS";
$DB=array(); #数据库配置
$self=$_SERVER['PHP_SELF'];
session_set_cookie_params(0, null, null, false, true);
session_start();
if (!isset($_SESSION['XSS'])) $_SESSION['XSS']=get_rand_str(16);
$xurl='XSS='.$_SESSION['XSS'];
ini_set('display_errors',1); #TODO turn off before deploy
error_reporting(E_ALL ^ E_NOTICE);
if (get_magic_quotes_gpc()){
$_COOKIE=array_map('killmq',$_COOKIE);
$_REQUEST=array_map('killmq',$_REQUEST);
}
if (!$ACCESS_PWD) {
$_SESSION['is_logged']=true;
loadcfg();
}
if ($_REQUEST['login']){
if ($_REQUEST['pwd']!=$ACCESS_PWD){
$err_msg="Invalid password. Try again";
}else{
$_SESSION['is_logged']=true;
loadcfg();
}
}
if ($_REQUEST['logoff']){
check_xss();
$_SESSION = array();
savecfg();
session_destroy();
$url=$self;
if (!$ACCESS_PWD) $url='/';
header("location: $url");
exit;
}
if (!$_SESSION['is_logged']){
print_login();
exit;
}
if ($_REQUEST['savecfg']){
check_xss();
savecfg();
}
loadsess();
if ($_REQUEST['showcfg']){
print_cfg();
exit;
}
//get initial values
$SQLq=trim($_REQUEST['q']);
$page=$_REQUEST['p']+0;
if ($_REQUEST['refresh'] && $DB['db'] && preg_match('/^show/',$SQLq) ) $SQLq=$SHOW_T;
if (db_connect('nodie')){
$time_start=microtime_float();
if ($_REQUEST['phpinfo']){
ob_start();phpinfo();$sqldr='<div style="font-size:130%">'.ob_get_clean().'</div>';
}else{
if ($DB['db']){
if ($_REQUEST['shex']){
print_export();
}elseif ($_REQUEST['doex']){
check_xss();do_export();
}elseif ($_REQUEST['shim']){
print_import();
}elseif ($_REQUEST['doim']){
check_xss();do_import();
}elseif ($_REQUEST['dosht']){
check_xss();do_sht();
}elseif (!$_REQUEST['refresh'] || preg_match('/^select|show|explain|desc/i',$SQLq) ){
if ($SQLq)check_xss();
do_sql($SQLq);
}
}else{
if ( $_REQUEST['refresh'] ){
check_xss();do_sql($SHOW_D);
}elseif ($_REQUEST['crdb']){
check_xss();do_sql('CREATE DATABASE `'.$_REQUEST['new_db'].'`');do_sql($SHOW_D);
}elseif ( preg_match('/^(?:show\s+(?:databases|status|variables|process)|create\s+database|grant\s+)/i',$SQLq) ){
check_xss();do_sql($SQLq);
}else{
$err_msg="请选择数据库";
if (!$SQLq) do_sql($SHOW_D);
}
}
}
$time_all=ceil((microtime_float()-$time_start)*10000)/10000;
print_screen();
}else{
print_cfg();
}
function do_sql($q){
global $dbh,$last_sth,$last_sql,$reccount,$out_message,$SQLq,$SHOW_T;
$SQLq=$q;
if (!do_multi_sql($q)){
$out_message="Error: ".mysql_error($dbh);
}else{
if ($last_sth && $last_sql){
$SQLq=$last_sql;
if (preg_match("/^select|show|explain|desc/i",$last_sql)) {
if ($q!=$last_sql) $out_message="Results of the last select displayed:";
display_select($last_sth,$last_sql);
} else {
$reccount=mysql_affected_rows($dbh);
$out_message="Done.";
if (preg_match("/^insert|replace/i",$last_sql)) $out_message.=" Last inserted id=".get_identity();
if (preg_match("/^drop|truncate/i",$last_sql)) do_sql($SHOW_T);
}
}
}
}
function display_select($sth,$q){
global $dbh,$DB,$sqldr,$reccount,$is_sht,$xurl;
$rc=array("o","e");
$dbn=$DB['db'];
$sqldr='';
$is_shd=(preg_match('/^show\s+databases/i',$q));
$is_sht=(preg_match('/^show\s+tables|^SHOW\s+TABLE\s+STATUS/',$q));
$is_show_crt=(preg_match('/^show\s+create\s+table/i',$q));
if ($sth===FALSE or $sth===TRUE) return;
$reccount=mysql_num_rows($sth);
$fields_num=mysql_num_fields($sth);
$w='';
if ($is_sht || $is_shd) {$w='wa';
$url='?'.$xurl."&db=$dbn";
$sqldr.="<div class='dot' style='margin-bottom:10px;'>
&nbsp;服务器:
&nbsp;&#183;<a href='$url&q=show+variables'>显示配置变量</a>
&nbsp;&#183;<a href='$url&q=show+status'>显示统计</a>
&nbsp;&#183;<a href='$url&q=show+processlist'>显示进程列表</a>";
if ($is_shd) $sqldr.="&nbsp;&#183;<label>创建新的数据库: <input type='text' name='new_db' placeholder='输入数据库名称'></label> <input type='submit' name='crdb' value='创建'>";
$sqldr.="<br>";
if ($is_sht) $sqldr.="&nbsp;数据库:&nbsp;&#183;<a href='$url&q=show+table+status'>显示表状态</a>";
$sqldr.="</div>";
}
if ($is_sht){
$abtn="&nbsp;<input type='submit' value='导出' onclick=\"sht('exp')\">
<input type='submit' value='删除' onclick=\"if(ays()){sht('drop')}else{return false}\">
<input type='submit' value='清空' onclick=\"if(ays()){sht('trunc')}else{return false}\">
<input type='submit' value='优化' onclick=\"sht('opt')\">
<b>选中项</b>";
$sqldr.=$abtn."<input type='hidden' name='dosht' value=''>";
}
$sqldr.="<table class='res $w'>";
$headers="<tr class='h'>";
if ($is_sht) $headers.="<td><input type='checkbox' name='cball' value='' onclick='chkall(this)'></td>";
for($i=0;$i<$fields_num;$i++){
if ($is_sht && $i>0) break;
$meta=mysql_fetch_field($sth,$i);
$meta->name = str_replace(array('Name','Database'),array('表','数据库'),$meta->name);
$headers.="<th>".$meta->name."</th>";
}
if ($is_shd) $headers.="<th>创建数据库SQL</th><th>表状态</th><th>触发器</th>";
if ($is_sht) $headers.="<th>类型</th><th>行数</th><th>数据大小</th><th>索引大小</th><th>创建表SQL</th><th>详细</th><th>索引</th><th>导出</th><th>删除</th><th>清空</th><th>优化</th><th>修复</th>";
$headers.="</tr>\n";
$sqldr.=$headers;
$swapper=false;
while($row=mysql_fetch_row($sth)){
$sqldr.="<tr class='".$rc[$swp=!$swp]."' onclick='tc(this)'>";
for($i=0;$i<$fields_num;$i++){
$v=$row[$i];$more='';
if ($is_sht && $v){
if ($i>0) break;
$vq='`'.$v.'`';
$url='?'.$xurl."&db=$dbn";
$v="<input type='checkbox' name='cb[]' value=\"$vq\"></td>"
."<td><a href=\"$url&q=select+*+from+$vq\">$v</a></td>"
."<td>".$row[1]."</td>"
."<td align='right'>".$row[4]."</td>"
."<td align='right'>".$row[6]."</td>"
."<td align='right'>".$row[8]."</td>"
."<td><a href=\"$url&q=show+create+table+$vq\">显示</a></td>"
."<td><a href=\"$url&q=explain+$vq\">详情</a></td>"
."<td><a href=\"$url&q=show+index+from+$vq\">索引</a></td>"
."<td><a href=\"$url&shex=1&t=$vq\">导出</a></td>"
."<td><a href=\"$url&q=drop+table+$vq\" onclick='return ays()'>删除</a></td>"
."<td><a href=\"$url&q=truncate+table+$vq\" onclick='return ays()'>清空</a></td>"
."<td><a href=\"$url&q=optimize+table+$vq\" onclick='return ays()'>优化</a></td>"
."<td><a href=\"$url&q=repair+table+$vq\" onclick='return ays()'>修复</a>";
}elseif ($is_shd && $i==0 && $v){
$url='?'.$xurl."&db=$v";
$v="<a href=\"$url&q=SHOW+TABLE+STATUS\">$v</a></td>"
."<td><a href=\"$url&q=show+create+database+`$v`\">显示</a></td>"
."<td><a href=\"$url&q=show+table+status\">状态</a></td>"
."<td><a href=\"$url&q=show+triggers\">触发器</a></td>"
;
}else{
if (is_null($v)) $v="NULL";
elseif (preg_match('/[\x00-\x09\x0B\x0C\x0E-\x1F]+/',$v)) {
$vl=strlen($v);$pf='';
if ($vl>16 && $fields_num>1){
$v=substr($v, 0, 16);$pf='...';
}
$v='BINARY: '.chunk_split(strtoupper(bin2hex($v)),2,' ').$pf;
}else $v=htmlspecialchars($v);
}
if ($is_show_crt) $v="<pre>$v</pre>";
$sqldr.="<td>$v".(!strlen($v)?"<br>":'')."</td>";
}
$sqldr.="</tr>\n";
}
$sqldr.="</table>\n".$abtn;
}
function print_header(){
global $err_msg,$VERSION,$DB,$dbh,$self,$is_sht,$xurl,$SHOW_T;
$dbn=$DB['db'];
?>
<!DOCTYPE html>
<html>
<head><title>phpMiniAdmin <?php eo($VERSION)?></title>
<meta charset="utf-8">
<style type="text/css">
body{font-family:Arial,sans-serif;font-size:80%;padding:0;margin:0;color:#555;}
th,td{padding:0;margin:0}
a{text-decoration: none;color:#476dd1}
a:hover{text-decoration: underline;}
div{padding:3px}
pre{font-size:125%}
.nav{text-align:center}
.inv{background-color:#333;color:#333;padding:8px;}
.inv a{color:#eee;padding:0 3px;}
table.res{width:100%;empty-cells: show;border-collapse:collapse;margin:10px 0;line-height:24px;}
table.wa{width:auto}
table.res th,table.res td{padding:4px;border:1px solid #e1e1e1;vertical-align: top;color:#666;}
table.restr{vertical-align:top}
tr.e{background-color:#fff}
tr.o{background-color:#f3f3f3}
tr.e:hover, tr.o:hover {background-color:#eee}
tr.h{background-color:#eee;}
tr.s{background-color:#ff9}
.results,.err{padding:0 0 0 20px;line-height:24px;background:#01A31C;color:#fff;}
.err{background:#D44A26;text-align:center;font-weight:bold;}
.frm{width:380px;border:1px solid #e1e1e1;background-color:#f9f9f9;padding:15px;text-align:left;color:#666;}
.frm dl{margin-bottom:15px;}
.frm label .l{width:80px;float:left}
.dot{border-bottom: 1px solid #e1e1e1;}
.qnav{width:30px}
.sqldr{padding:10px 0;}
select{background-color:#F6F6F6;}
input[type=text],
input[type=password],
textarea{border:1px solid #CCC; padding:3px; border-top-color:#666;border-left-color:#666;background-color:#F6F6F6; line-height:14px; width:150px;vertical-align:middle;outline:0;}
input[type=text]:focus,
input[type=password]:focus,
textarea:focus{border:1px solid #5EA2D9;background-color:#EDF3F8;}
input[type=submit],
input[type=button],
button{border:1px solid #999;overflow:hidden;outline:0;border-top:#E0E0E0;border-left:#E0E0E0;background-color:#E0E0E0;font-weight:bold;color:#555;padding:0 5px; line-height:17px;height:23px;cursor: pointer;}
</style>
<script type="text/javascript">
var LSK='pma_',LSKX=LSK+'max',LSKM=LSK+'min',qcur=0,LSMAX=32;
function $(i){return document.getElementById(i)}
function frefresh(){
var F=document.DF;
F.method='get';
F.refresh.value="1";
F.submit();
}
function go(p,sql){
var F=document.DF;
F.p.value=p;
if(sql)F.q.value=sql;
F.submit();
}
function ays(){
return confirm('Are you sure to continue?');
}
function chksql(){
var F=document.DF,v=F.q.value;
if(/^\s*(?:delete|drop|truncate|alter)/.test(v)) if(!ays())return false;
if(lschk(1)){
var lsm=lsmax()+1,ls=localStorage;
ls[LSK+lsm]=v;
ls[LSKX]=lsm;
//keep just last LSMAX queries in log
if(!ls[LSKM])ls[LSKM]=1;
var lsmin=parseInt(ls[LSKM]);
if((lsm-lsmin+1)>LSMAX){
lsclean(lsmin,lsm-LSMAX);
}
}
return true;
}
function tc(tr){
if (tr.className=='s'){
tr.className=tr.classNameX;
}else{
tr.classNameX=tr.className;
tr.className='s';
}
}
function lschk(skip){
if (!localStorage || !skip && !localStorage[LSKX]) return false;
return true;
}
function lsmax(){
var ls=localStorage;
if(!lschk() || !ls[LSKX])return 0;
return parseInt(ls[LSKX]);
}
function lsclean(from,to){
ls=localStorage;
for(var i=from;i<=to;i++){
delete ls[LSK+i];ls[LSKM]=i+1;
}
}
function q_prev(){
var ls=localStorage;
if(!lschk())return;
qcur--;
var x=parseInt(ls[LSKM]);
if(qcur<x)qcur=x;
$('q').value=ls[LSK+qcur];
}
function q_next(){
var ls=localStorage;
if(!lschk())return;
qcur++;
var x=parseInt(ls[LSKX]);
if(qcur>x)qcur=x;
$('q').value=ls[LSK+qcur];
}
function after_load(){
var p=document.DF.pwd;
if (p) p.focus();
qcur=lsmax();
}
function logoff(){
if(lschk()){
var ls=localStorage;
var from=parseInt(ls[LSKM]),to=parseInt(ls[LSKX]);
for(var i=from;i<=to;i++){
delete ls[LSK+i];
}
delete ls[LSKM];delete ls[LSKX];
}
}
function cfg_toggle(){
var e=$('cfg-adv');
e.style.display=e.style.display=='none'?'':'none';
}
<?php if($is_sht){?>
function chkall(cab){
var e=document.DF.elements;
if (e!=null){
var cl=e.length;
for (i=0;i<cl;i++){var m=e[i];if(m.checked!=null && m.type=="checkbox"){m.checked=cab.checked}}
}
}
function sht(f){
document.DF.dosht.value=f;
}
<?php }?>
</script>
</head>
<body onLoad="after_load()">
<form method="post" name="DF" action="<?php eo($self)?>" enctype="multipart/form-data">
<input type="hidden" name="XSS" value="<?php eo($_SESSION['XSS'])?>">
<input type="hidden" name="refresh" value="">
<input type="hidden" name="p" value="">
<div class="inv">
<a href="?<?php eo($xurl)?>"><b>phpMiniAdmin</b></a>
<?php if ($_SESSION['is_logged'] && $dbh){ ?>
| <a href="?<?php eo($xurl)?>&q=show+databases">数据库</a>: <select name="db" onChange="frefresh()"><option value='*'> - 选择/刷新 -</option><option value=''> - 显示全部 -</option>
<?php echo get_db_select($dbn)?></select>
<?php if($dbn){ $z=" &#183; <a href='".hs($self."?$xurl&db=$dbn"); ?>
<?php echo $z.'&q='.urlencode($SHOW_T)?>'>表结构</a>
<?php echo $z?>&shex=1'>导出</a>
<?php echo $z?>&shim=1'>导入</a>
<?php } ?>
| <a href="?showcfg=1">设置</a>
<?php } ?>
<?php if ($GLOBALS['ACCESS_PWD']){?> | <a href="?<?php eo($xurl)?>&logoff=1" onClick="logoff()">注销</a> <?php }?>
| <a href="?phpinfo=1">phpinfo()</a>
</div>
<div class="err"><?php eo($err_msg)?></div>
<?php
}
function print_screen(){
global $out_message, $SQLq, $err_msg, $reccount, $time_all, $sqldr, $page, $MAX_ROWS_PER_PAGE, $is_limited_sql, $last_count;
$nav='';
if ($is_limited_sql && ($page || $reccount>=$MAX_ROWS_PER_PAGE) ){
$nav="<div class='nav'>".get_nav($page, 10000, $MAX_ROWS_PER_PAGE, "javascript:go(%p%)")."</div>";
}
print_header();
?>
<div style="padding:10px 0 10px 20px">
<label for="q">SQL查询 (多行查询使用";"分割):</label>&nbsp;<button type="button" class="qnav" onClick="q_prev()">&lt;</button><button type="button" class="qnav" onClick="q_next()">&gt;</button>
<textarea id="q" name="q" cols="70" rows="10" style="width:98%;margin:10px 0;"><?php eo($SQLq)?></textarea>
<input type="submit" name="GoSQL" value="执行" onClick="return chksql()" style="width:100px">&nbsp;&nbsp;
<input type="button" name="Clear" value=" 清除 " onClick="document.DF.q.value=''" style="width:100px">
</div>
<?php
if (empty($out_message)) {
?>
<div class="results">
共 <b><?php eo($reccount); if(!is_null($last_count) && $reccount<$last_count){eo(' out of '.$last_count);}?></b> 行, 查询花费 <?php eo($time_all)?> 秒
</div>
<?php
}else{
?>
<div class="results" style="background:#D44A26;">
<b><?php eo($out_message);?></b>
</div>
<?php
}?>
<div class="sqldr">
<?php echo $nav.$sqldr.$nav; ?>
</div>
<?php
print_footer();
}
function print_footer(){
?>
</form>
</body>
</html>
<?php
}
function print_login(){
print_header();
?>
<center>
<h3>请输入访问密码</h3>
<div style="width:400px;border:1px solid #999999;background-color:#eeeeee">
<label>密码: <input type="password" name="pwd" value=""></label>
<input type="hidden" name="login" value="1">
<input type="submit" value=" Login ">
</div>
</center>
<?php
print_footer();
}
function print_cfg(){
global $DB,$err_msg,$self;
print_header();
?>
<center>
<h3>数据库连接设置</h3>
<div class="frm">
<dl><dd><label><div class="l">用户名:</div><input type="text" name="v[user]" value="<?php eo($DB['user'])?>"></label></dd></dl>
<dl><dd><label><div class="l">密码:</div><input type="password" name="v[pwd]" value=""></label></dd></dl>
<div style="text-align:right"><a href="#" onClick="cfg_toggle()">高级设置</a></div>
<div id="cfg-adv" style="display:none;">
<dl><dd><label><div class="l">数据库名称:</div><input type="text" name="v[db]" value="<?php eo($DB['db'])?>"></label></dd></dl>
<dl><dd><label><div class="l">数据库地址:</div><input type="text" name="v[host]" value="<?php eo($DB['host'])?>"></label> <label>端口: <input type="text" name="v[port]" value="<?php eo($DB['port'])?>" size="4" style="width:30px;"></label></dd></dl>
<dl><dd><label><div class="l">编码:</div><select name="v[chset]"><option value="">- default -</option><?php echo chset_select($DB['chset'])?></select></label></dd></dl>
<dl><dd><label for ="rmb"><input type="checkbox" name="rmb" id="rmb" value="1" checked> 保存配置</label></dd></dl>
</div>
<center>
<input type="hidden" name="savecfg" value="1">
<input type="submit" value="应用">
<input type="button" value="取消" onClick="window.location='<?php eo($self)?>'">
</center>
</div>
</center>
<?php
print_footer();
}
//* utilities
function db_connect($nodie=0){
global $dbh,$DB,$err_msg;
$dbh=@mysql_connect($DB['host'].($DB['port']?":$DB[port]":''),$DB['user'],$DB['pwd']);
if (!$dbh) {
$err_msg='Cannot connect to the database because: '.mysql_error();
if (!$nodie) die($err_msg);
}
if ($dbh && $DB['db']) {
$res=mysql_select_db($DB['db'], $dbh);
if (!$res) {
$err_msg='Cannot select db because: '.mysql_error();
if (!$nodie) die($err_msg);
}else{
if ($DB['chset']) db_query("SET NAMES ".$DB['chset']);
}
}
return $dbh;
}
function db_checkconnect($dbh1=NULL, $skiperr=0){
global $dbh;
if (!$dbh1) $dbh1=&$dbh;
if (!$dbh1 or !mysql_ping($dbh1)) {
db_connect($skiperr);
$dbh1=&$dbh;
}
return $dbh1;
}
function db_disconnect(){
global $dbh;
mysql_close($dbh);
}
function dbq($s){
global $dbh;
if (is_null($s)) return "NULL";
return "'".mysql_real_escape_string($s,$dbh)."'";
}
function db_query($sql, $dbh1=NULL, $skiperr=0){
$dbh1=db_checkconnect($dbh1, $skiperr);
$sth=@mysql_query($sql, $dbh1);
if (!$sth && $skiperr) return;
if (!$sth) die("Error in DB operation:<br>\n".mysql_error($dbh1)."<br>\n$sql");
return $sth;
}
function db_array($sql, $dbh1=NULL, $skiperr=0, $isnum=0){
$sth=db_query($sql, $dbh1, $skiperr);
if (!$sth) return;
$res=array();
if ($isnum){
while($row=mysql_fetch_row($sth)) $res[]=$row;
}else{
while($row=mysql_fetch_assoc($sth)) $res[]=$row;
}
return $res;
}
function db_row($sql){
$sth=db_query($sql);
return mysql_fetch_assoc($sth);
}
function db_value($sql){
$sth=db_query($sql);
$row=mysql_fetch_row($sth);
return $row[0];
}
function get_identity($dbh1=NULL){
$dbh1=db_checkconnect($dbh1);
return mysql_insert_id($dbh1);
}
function get_db_select($sel=''){
global $DB,$SHOW_D;
if (is_array($_SESSION['sql_sd']) && $_REQUEST['db']!='*'){//check cache
$arr=$_SESSION['sql_sd'];
}else{
$arr=db_array($SHOW_D,NULL,1);
if (!is_array($arr)){
$arr=array( 0 => array('Database' => $DB['db']) );
}
$_SESSION['sql_sd']=$arr;
}
return @sel($arr,'Database',$sel);
}
function chset_select($sel=''){
global $DBDEF;
$result='';
if ($_SESSION['sql_chset']){
$arr=$_SESSION['sql_chset'];
}else{
$arr=db_array("show character set",NULL,1);
if (!is_array($arr)) $arr=array(array('Charset'=>$DBDEF['chset']));
$_SESSION['sql_chset']=$arr;
}
return @sel($arr,'Charset',$sel);
}
function sel($arr,$n,$sel=''){
foreach($arr as $a){
$b=$a[$n];
$res.="<option value='$b' ".($sel && $sel==$b?'selected':'').">$b</option>";
}
return $res;
}
function microtime_float(){
list($usec,$sec)=explode(" ",microtime());
return ((float)$usec+(float)$sec);
}
/* page nav
*/
function get_nav($pg, $all, $PP, $ptpl, $show_all=''){
$n='&nbsp;';
$sep=" $n|$n\n";
if (!$PP) $PP=10;
$allp=floor($all/$PP+0.999999);
$pname='';
$res='';
$w=array('Less','More','Back','Next','First','Total');
$sp=$pg-2;
if($sp<0) $sp=0;
if($allp-$sp<5 && $allp>=5) $sp=$allp-5;
$res="";
if($sp>0){
$pname=pen($sp-1,$ptpl);
$res.="<a href='$pname'>$w[0]</a>";
$res.=$sep;
}
for($p_p=$sp;$p_p<$allp && $p_p<$sp+5;$p_p++){
$first_s=$p_p*$PP+1;
$last_s=($p_p+1)*$PP;
$pname=pen($p_p,$ptpl);
if($last_s>$all){
$last_s=$all;
}
if($p_p==$pg){
$res.="<b>$first_s..$last_s</b>";
}else{
$res.="<a href='$pname'>$first_s..$last_s</a>";
}
if($p_p+1<$allp) $res.=$sep;
}
if($sp+5<$allp){
$pname=pen($sp+5,$ptpl);
$res.="<a href='$pname'>$w[1]</a>";
}
$res.=" <br>\n";
if($pg>0){
$pname=pen($pg-1,$ptpl);
$res.="<a href='$pname'>$w[2]</a> $n|$n ";
$pname=pen(0,$ptpl);
$res.="<a href='$pname'>$w[4]</a>";
}
if($pg>0 && $pg+1<$allp) $res.=$sep;
if($pg+1<$allp){
$pname=pen($pg+1,$ptpl);
$res.="<a href='$pname'>$w[3]</a>";
}
if ($show_all) $res.=" <b>($w[5] - $all)</b> ";
return $res;
}
function pen($p,$np=''){
return str_replace('%p%',$p, $np);
}
function killmq($value){
return is_array($value)?array_map('killmq',$value):stripslashes($value);
}
function savecfg(){
$v=$_REQUEST['v'];
$_SESSION['DB']=$v;
unset($_SESSION['sql_sd']);
if ($_REQUEST['rmb']){
$tm=time()+60*60*24*30;
newcookie("conn[db]", $v['db'],$tm);
newcookie("conn[user]",$v['user'],$tm);
newcookie("conn[pwd]", $v['pwd'],$tm);
newcookie("conn[host]",$v['host'],$tm);
newcookie("conn[port]",$v['port'],$tm);
newcookie("conn[chset]",$v['chset'],$tm);
}else{
newcookie("conn[db]", FALSE,-1);
newcookie("conn[user]",FALSE,-1);
newcookie("conn[pwd]", FALSE,-1);
newcookie("conn[host]",FALSE,-1);
newcookie("conn[port]",FALSE,-1);
newcookie("conn[chset]",FALSE,-1);
}
}
// Allow httponly cookies, or the password is stored plain text in a cookie
function newcookie($n,$v,$e){$x;return setcookie($n,$v,$e,$x,$x,!!$x,!$x);}
//during login only - from cookies or use defaults;
function loadcfg(){
global $DBDEF;
if( isset($_COOKIE['conn']) ){
$a=$_COOKIE['conn'];
$_SESSION['DB']=$_COOKIE['conn'];
}else{
$_SESSION['DB']=$DBDEF;
}
if (!strlen($_SESSION['DB']['chset'])) $_SESSION['DB']['chset']=$DBDEF['chset'];
}
//each time - from session to $DB_*
function loadsess(){
global $DB;
$DB=$_SESSION['DB'];
$rdb=$_REQUEST['db'];
if ($rdb=='*') $rdb='';
if ($rdb) {
$DB['db']=$rdb;
}
}
function print_export(){
global $self,$xurl,$DB;
$t=$_REQUEST['t'];
$l=($t)?"表 $t":"数据库";
print_header();
?>
<center>
<h3>导出<?php eo($l)?></h3>
<div class="frm">
<input type="checkbox" name="s" value="1" checked> 表结构<br>
<input type="checkbox" name="d" value="1" checked> 数据<br><br>
<div><label><input type="radio" name="et" value="" checked> .sql</label>&nbsp;</div>
<div>
<?php if ($t && !strpos($t,',')){?>
<label><input type="radio" name="et" value="csv"> .csv (Excel的风格,仅单表)</label>
<?php }else{?>
<label>&nbsp;( ) .csv</label> <small>(要导出CSV - 点击表结构导出单表)</small>
<?php }?>
</div>
<br>
<div><label><input type="checkbox" name="sp" value="1"> import has super privileges</label></div>
<div><label><input type="checkbox" name="gz" value="1"> 压缩为 .gz</label></div>
<br>
<input type="hidden" name="doex" value="1">
<input type="hidden" name="t" value="<?php eo($t)?>">
<input type="submit" value=" 下载 "><input type="button" value=" 取消 " onClick="window.location='<?php eo($self.'?'.$xurl.'&db='.$DB['db'])?>'">
</div>
</center>
<?php
print_footer();
exit;
}
function do_export(){
global $DB,$VERSION,$D,$BOM,$ex_isgz;
$rt=str_replace('`','',$_REQUEST['t']);
$t=explode(",",$rt);
$th=array_flip($t);
$ct=count($t);
$z=db_row("show variables like 'max_allowed_packet'");
$MAXI=floor($z['Value']*0.8);
if(!$MAXI)$MAXI=838860;
$aext='';$ctp='';
$ex_super=($_REQUEST['sp'])?1:0;
$ex_isgz=($_REQUEST['gz'])?1:0;
if ($ex_isgz) {
$aext='.gz';$ctp='application/x-gzip';
}
ex_start();
if ($ct==1&&$_REQUEST['et']=='csv'){
ex_hdr($ctp?$ctp:'text/csv',"$t[0].csv$aext");
if ($DB['chset']=='utf8') ex_w($BOM);
$sth=db_query("select * from `$t[0]`");
$fn=mysql_num_fields($sth);
for($i=0;$i<$fn;$i++){
$m=mysql_fetch_field($sth,$i);
ex_w(qstr($m->name).(($i<$fn-1)?",":""));
}
ex_w($D);
while($row=mysql_fetch_row($sth)) ex_w(to_csv_row($row));
ex_end();
exit;
}
ex_hdr($ctp?$ctp:'text/plain',"$DB[db]".(($ct==1&&$t[0])?".$t[0]":(($ct>1)?'.'.$ct.'tables':'')).".sql$aext");
ex_w("-- phpMiniAdmin dump $VERSION$D-- Datetime: ".date('Y-m-d H:i:s')."$D-- Host: $DB[host]$D-- Database: $DB[db]$D$D");
ex_w("/*!40030 SET NAMES $DB[chset] */;$D");
$ex_super && ex_w("/*!40030 SET GLOBAL max_allowed_packet=16777216 */;$D$D");
ex_w("/*!40014 SET @OLD_FOREIGN_KEY_CHECKS=@@FOREIGN_KEY_CHECKS, FOREIGN_KEY_CHECKS=0 */;$D$D");
$sth=db_query("show tables from `$DB[db]`");
while($row=mysql_fetch_row($sth)){
if (!$rt||array_key_exists($row[0],$th)) do_export_table($row[0],1,$MAXI);
}
ex_w("/*!40014 SET FOREIGN_KEY_CHECKS=@OLD_FOREIGN_KEY_CHECKS */;$D$D");
ex_w("$D-- phpMiniAdmin dump end$D");
ex_end();
exit;
}
function do_export_table($t='',$isvar=0,$MAXI=838860){
global $D;
@set_time_limit(600);
if($_REQUEST['s']){
$sth=db_query("show create table `$t`");
$row=mysql_fetch_row($sth);
$ct=preg_replace("/\n\r|\r\n|\n|\r/",$D,$row[1]);
ex_w("DROP TABLE IF EXISTS `$t`;$D$ct;$D$D");
}
if ($_REQUEST['d']){
$exsql='';
ex_w("/*!40000 ALTER TABLE `$t` DISABLE KEYS */;$D");
$sth=db_query("select * from `$t`");
while($row=mysql_fetch_row($sth)){
$values='';
foreach($row as $v) $values.=(($values)?',':'').dbq($v);
$exsql.=(($exsql)?',':'')."(".$values.")";
if (strlen($exsql)>$MAXI) {
ex_w("INSERT INTO `$t` VALUES $exsql;$D");$exsql='';
}
}
if ($exsql) ex_w("INSERT INTO `$t` VALUES $exsql;$D");
ex_w("/*!40000 ALTER TABLE `$t` ENABLE KEYS */;$D$D");
}
flush();
}
function ex_hdr($ct,$fn){
header("Content-type: $ct");
header("Content-Disposition: attachment; filename=\"$fn\"");
}
function ex_start(){
global $ex_isgz,$ex_gz,$ex_tmpf;
if ($ex_isgz){
$ex_tmpf=tmp_name().'.gz';
if (!($ex_gz=gzopen($ex_tmpf,'wb9'))) die("Error trying to create gz tmp file");
}
}
function ex_w($s){
global $ex_isgz,$ex_gz;
if ($ex_isgz){
gzwrite($ex_gz,$s,strlen($s));
}else{
echo $s;
}
}
function ex_end(){
global $ex_isgz,$ex_gz,$ex_tmpf;
if ($ex_isgz){
gzclose($ex_gz);
readfile($ex_tmpf);
unlink($ex_tmpf);
}
}
function print_import(){
global $self,$xurl,$DB;
print_header();
?>
<center>
<h3>导入数据库</h3>
<div class="frm">
<b>.sql</b> 或者 <b>.gz</b> 文件: <input type="file" name="file1" value="" size=40><br>
<input type="hidden" name="doim" value="1">
<input type="submit" value=" 上传并导入 " onClick="return ays()"><input type="button" value=" 取消 " onClick="window.location='<?php eo($self.'?'.$xurl.'&db='.$DB['db'])?>'">
</div>
<br><br><br>
<!--
<h3>Import one Table from CSV</h3>
<div class="frm">
.csv file (Excel style): <input type="file" name="file2" value="" size=40><br>
<input type="checkbox" name="r1" value="1" checked> first row contain field names<br>
<small>(note: for success, field names should be exactly the same as in DB)</small><br>
Character set of the file: <select name="chset"><?php echo chset_select('utf8')?></select>
<br><br>
Import into:<br>
<input type="radio" name="tt" value="1" checked="checked"> existing table:
<select name="t">
<option value=''>- select -</option>
<?php echo sel(db_array('show tables',NULL,0,1), 0, ''); ?>
</select>
<div style="margin-left:20px">
<input type="checkbox" name="ttr" value="1"> replace existing DB data<br>
<input type="checkbox" name="tti" value="1"> ignore duplicate rows
</div>
<input type="radio" name="tt" value="2"> create new table with name <input type="text" name="tn" value="" size="20">
<br><br>
<input type="hidden" name="doimcsv" value="1">
<input type="submit" value=" Upload and Import " onclick="return ays()"><input type="button" value=" Cancel " onclick="window.location='<?php eo($self)?>'">
</div>
-->
</center>
<?php
print_footer();
exit;
}
function do_import(){
global $err_msg,$out_message,$dbh,$SHOW_T;
$err_msg='';
$F=$_FILES['file1'];
if ($F && $F['name']){
$filename=$F['tmp_name'];
$pi=pathinfo($F['name']);
if ($pi['extension']!='sql'){//if not sql - assume .gz
$tmpf=tmp_name();
if (($gz=gzopen($filename,'rb')) && ($tf=fopen($tmpf,'wb'))){
while(!gzeof($gz)){
if (fwrite($tf,gzread($gz,8192),8192)===FALSE){$err_msg='Error during gz file extraction to tmp file';break;}
}//extract to tmp file
gzclose($gz);fclose($tf);$filename=$tmpf;
}else{$err_msg='Error opening gz file';}
}
if (!$err_msg){
if (!do_multi_sql('', $filename)){
$err_msg='Import Error: '.mysql_error($dbh);
}else{
$out_message='Import done successfully';
do_sql($SHOW_T);
return;
}}
}else{
$err_msg="Error: Please select file first";
}
print_import();
exit;
}
// multiple SQL statements splitter
function do_multi_sql($insql,$fname=''){
@set_time_limit(600);
$sql='';
$ochar='';
$is_cmt='';
$GLOBALS['insql_done']=0;
while ($str=get_next_chunk($insql,$fname)){
$opos=-strlen($ochar);
$cur_pos=0;
$i=strlen($str);
while ($i--){
if ($ochar){
list($clchar, $clpos)=get_close_char($str, $opos+strlen($ochar), $ochar);
if ( $clchar ) {
if ($ochar=='--' || $ochar=='#' || $is_cmt ){
$sql.=substr($str, $cur_pos, $opos-$cur_pos );
}else{
$sql.=substr($str, $cur_pos, $clpos+strlen($clchar)-$cur_pos );
}
$cur_pos=$clpos+strlen($clchar);
$ochar='';
$opos=0;
}else{
$sql.=substr($str, $cur_pos);
break;
}
}else{
list($ochar, $opos)=get_open_char($str, $cur_pos);
if ($ochar==';'){
$sql.=substr($str, $cur_pos, $opos-$cur_pos+1);
if (!do_one_sql($sql)) return 0;
$sql='';
$cur_pos=$opos+strlen($ochar);
$ochar='';
$opos=0;
}elseif(!$ochar) {
$sql.=substr($str, $cur_pos);
break;
}else{
$is_cmt=0;if ($ochar=='/*' && substr($str, $opos, 3)!='/*!') $is_cmt=1;
}
}
}
}
if ($sql){
if (!do_one_sql($sql)) return 0;
$sql='';
}
return 1;
}
//read from insql var or file
function get_next_chunk($insql, $fname){
global $LFILE, $insql_done;
if ($insql) {
if ($insql_done){
return '';
}else{
$insql_done=1;
return $insql;
}
}
if (!$fname) return '';
if (!$LFILE){
$LFILE=fopen($fname,"r+b") or die("Can't open [$fname] file $!");
}
return fread($LFILE, 64*1024);
}
function get_open_char($str, $pos){
if ( preg_match("/(\/\*|^--|(?<=\s)--|#|'|\"|;)/", $str, $m, PREG_OFFSET_CAPTURE, $pos) ) {
$ochar=$m[1][0];
$opos=$m[1][1];
}
return array($ochar, $opos);
}
#RECURSIVE!
function get_close_char($str, $pos, $ochar){
$aCLOSE=array(
'\'' => '(?<!\\\\)\'|(\\\\+)\'',
'"' => '(?<!\\\\)"',
'/*' => '\*\/',
'#' => '[\r\n]+',
'--' => '[\r\n]+',
);
if ( $aCLOSE[$ochar] && preg_match("/(".$aCLOSE[$ochar].")/", $str, $m, PREG_OFFSET_CAPTURE, $pos ) ) {
$clchar=$m[1][0];
$clpos=$m[1][1];
$sl=strlen($m[2][0]);
if ($ochar=="'" && $sl){
if ($sl % 2){ #don't count as CLOSE char if number of slashes before ' ODD
list($clchar, $clpos)=get_close_char($str, $clpos+strlen($clchar), $ochar);
}else{
$clpos+=strlen($clchar)-1;$clchar="'";#correction
}
}
}
return array($clchar, $clpos);
}
function do_one_sql($sql){
global $last_sth,$last_sql,$MAX_ROWS_PER_PAGE,$page,$is_limited_sql, $last_count;
$sql=trim($sql);
$sql=preg_replace("/;$/","",$sql);
if ($sql){
$last_sql=$sql;$is_limited_sql=0;
$last_count=NULL;
if (preg_match("/^select/i",$sql) && !preg_match("/limit +\d+/i", $sql)){
$sql1='select count(*) from ('.$sql.') ___count_table';
$last_count=db_value($sql1);
$offset=$page*$MAX_ROWS_PER_PAGE;
$sql.=" LIMIT $offset,$MAX_ROWS_PER_PAGE";
$is_limited_sql=1;
}
$last_sth=db_query($sql,0,'noerr');
return $last_sth;
}
return 1;
}
function do_sht(){
global $SHOW_T;
$cb=$_REQUEST['cb'];
if (!is_array($cb)) $cb=array();
$sql='';
switch ($_REQUEST['dosht']){
case 'exp':$_REQUEST['t']=join(",",$cb);print_export();exit;
case 'drop':$sq='DROP TABLE';break;
case 'trunc':$sq='TRUNCATE TABLE';break;
case 'opt':$sq='OPTIMIZE TABLE';break;
}
if ($sq){
foreach($cb as $v){
$sql.=$sq." $v;\n";
}
}
if ($sql) do_sql($sql);
do_sql($SHOW_T);
}
function to_csv_row($adata){
global $D;
$r='';
foreach ($adata as $a){
$r.=(($r)?",":"").qstr($a);
}
return $r.$D;
}
function qstr($s){
$s=nl2br($s);
$s=str_replace('"','""',$s);
return '"'.$s.'"';
}
function get_rand_str($len){
$result='';
$chars=preg_split('//','ABCDEFabcdef0123456789');
for($i=0;$i<$len;$i++) $result.=$chars[rand(0,count($chars)-1)];
return $result;
}
function check_xss(){
global $self;
if ($_SESSION['XSS']!=trim($_REQUEST['XSS'])){
unset($_SESSION['XSS']);
header("location: $self");
exit;
}
}
function rw($s){
echo hs($s)."<br>\n";
}
function tmp_name() {
if ( function_exists('sys_get_temp_dir')) return tempnam(sys_get_temp_dir(),'pma');
if( !($temp=getenv('TMP')) )
if( !($temp=getenv('TEMP')) )
if( !($temp=getenv('TMPDIR')) ) {
$temp=tempnam(__FILE__,'');
if (file_exists($temp)) {
unlink($temp);
$temp=dirname($temp);
}
}
return $temp ? tempnam($temp,'pma') : null;
}
function hs($s){
return htmlspecialchars($s, ENT_COMPAT|ENT_HTML401,'UTF-8');
}
function eo($s){//echo+escape
echo hs($s);
}
?>