mirror of https://github.com/BOINC/boinc.git
151 lines
3.6 KiB
PHP
151 lines
3.6 KiB
PHP
<?php
|
|
|
|
require_once('../inc/util.inc');
|
|
|
|
// database-related functions.
|
|
// Presentation code (HTML) shouldn't be here
|
|
|
|
function db_init_aux() {
|
|
$config = get_config();
|
|
$user = parse_config($config, "<db_user>");
|
|
$pass = parse_config($config, "<db_passwd>");
|
|
$host = parse_config($config, "<db_host>");
|
|
if ($host == null) {
|
|
$host = "localhost";
|
|
}
|
|
$retval = mysql_pconnect($host, $user, $pass);
|
|
if (!$retval) {
|
|
return 1;
|
|
}
|
|
$db_name = parse_config($config, "<db_name>");
|
|
if(!mysql_select_db($db_name)) {
|
|
return 2;
|
|
}
|
|
|
|
return 0;
|
|
}
|
|
|
|
function lookup_user_auth($auth) {
|
|
$result = mysql_query("select * from user where authenticator='$auth'");
|
|
if ($result) {
|
|
$user = mysql_fetch_object($result);
|
|
mysql_free_result($result);
|
|
return $user;
|
|
}
|
|
return null;
|
|
}
|
|
|
|
function lookup_user_id($id) {
|
|
$result = mysql_query("select * from user where id=$id");
|
|
if ($result) {
|
|
$user = mysql_fetch_object($result);
|
|
mysql_free_result($result);
|
|
return $user;
|
|
}
|
|
return null;
|
|
}
|
|
|
|
function lookup_user_email_addr($email_addr) {
|
|
$result = mysql_query("select * from user where email_addr='$email_addr'");
|
|
if ($result) {
|
|
$user = mysql_fetch_object($result);
|
|
mysql_free_result($result);
|
|
return $user;
|
|
}
|
|
return null;
|
|
}
|
|
|
|
function lookup_host($id) {
|
|
$result = mysql_query("select * from host where id=$id");
|
|
if ($result) {
|
|
$host = mysql_fetch_object($result);
|
|
mysql_free_result($result);
|
|
return $host;
|
|
}
|
|
return null;
|
|
}
|
|
|
|
function lookup_team($id) {
|
|
$result = mysql_query("select * from team where id=$id");
|
|
if ($result) {
|
|
$team = mysql_fetch_object($result);
|
|
mysql_free_result($result);
|
|
return $team;
|
|
}
|
|
return null;
|
|
}
|
|
|
|
function lookup_wu($id) {
|
|
$result = mysql_query("select * from workunit where id=$id");
|
|
if ($result) {
|
|
$wu = mysql_fetch_object($result);
|
|
mysql_free_result($result);
|
|
return $wu;
|
|
}
|
|
return null;
|
|
}
|
|
|
|
function lookup_result($id) {
|
|
$result = mysql_query("select * from result where id=$id");
|
|
if ($result) {
|
|
$r = mysql_fetch_object($result);
|
|
mysql_free_result($result);
|
|
return $r;
|
|
}
|
|
return null;
|
|
}
|
|
|
|
function lookup_app($id) {
|
|
$result = mysql_query("select * from app where id=$id");
|
|
if ($result) {
|
|
$app = mysql_fetch_object($result);
|
|
mysql_free_result($result);
|
|
return $app;
|
|
}
|
|
return null;
|
|
}
|
|
|
|
function lookup_tentative_user($nonce) {
|
|
$result = mysql_query("select * from tentative_user where nonce='$nonce'");
|
|
if ($result) {
|
|
$tu = mysql_fetch_object($result);
|
|
mysql_free_result($result);
|
|
return $tu;
|
|
}
|
|
return null;
|
|
}
|
|
|
|
// apply this to any user-supplied strings used in queries
|
|
//
|
|
function boinc_real_escape_string($x) {
|
|
if (version_compare(phpversion(),"4.3.0")>=0) {
|
|
return mysql_real_escape_string($x);
|
|
} else {
|
|
$x = str_replace("'", "\'", $x);
|
|
$x = str_replace("\"", "\\\"", $x);
|
|
return $x;
|
|
}
|
|
}
|
|
|
|
// Process user-supplied text prior to using in query;
|
|
// trims whitespace and escapes quotes.
|
|
// Does NOT remove HTML tags.
|
|
//
|
|
function process_user_text($value) {
|
|
$value = trim($value);
|
|
if (get_magic_quotes_gpc()) {
|
|
$value = stripslashes($value);
|
|
}
|
|
return boinc_real_escape_string($value);
|
|
}
|
|
|
|
// escape a string for MySQL "like"
|
|
//
|
|
function escape_pattern($str) {
|
|
$str = str_replace('_', '\\\\_', $str);
|
|
$str = str_replace('%', '\\\\%', $str);
|
|
return $str;
|
|
}
|
|
|
|
?>
|