friendica_2021-01/include/gprobe.php

<?php

require_once("boot.php");
require_once('include/Scrape.php');
require_once('include/socgraph.php');

function gprobe_run(&$argv, &$argc){
	global $a, $db;

	if(is_null($a)) {
		$a = new App;
	}

	if(is_null($db)) {
	    @include(".htconfig.php");
    	require_once("include/dba.php");
	    $db = new dba($db_host, $db_user, $db_pass, $db_data);
    	unset($db_host, $db_user, $db_pass, $db_data);
  	};

	require_once('include/session.php');
	require_once('include/datetime.php');

	load_config('config');
	load_config('system');

	$a->set_baseurl(get_config('system','url'));

	load_hooks();

	if($argc != 2)
		return;

	$url = hex2bin($argv[1]);

	$r = q("select * from gcontact where nurl = '%s' limit 1",
		dbesc(normalise_link($url))
	);

	logger("gprobe start for ".normalise_link($url), LOGGER_DEBUG);

	if(! count($r)) {

		// Is it a DDoS attempt?
		$urlparts = parse_url($url);

		$result = Cache::get("gprobe:".$urlparts["host"]);
		if (!is_null($result)) {
			$result = unserialize($result);
			if (in_array($result["network"], array(NETWORK_FEED, NETWORK_PHANTOM))) {
				logger("DDoS attempt detected for ".$urlparts["host"]." by ".$_SERVER["REMOTE_ADDR"].". server data: ".print_r($_SERVER, true), LOGGER_DEBUG);
				return;
			}
		}

		$arr = probe_url($url);

		if (is_null($result))
			Cache::set("gprobe:".$urlparts["host"],serialize($arr));

		if(count($arr) && x($arr,'network') && $arr['network'] === NETWORK_DFRN) {
			q("insert into `gcontact` (`name`,`url`,`nurl`,`photo`)
				values ( '%s', '%s', '%s', '%s') ",
				dbesc($arr['name']),
				dbesc($arr['url']),
				dbesc(normalise_link($arr['url'])),
				dbesc($arr['photo'])
			);
		}
		$r = q("select * from gcontact where nurl = '%s' limit 1",
			dbesc(normalise_link($url))
		);
	}
	if(count($r))
		poco_load(0,0,$r[0]['id'], str_replace('/profile/','/poco/',$r[0]['url']));

	logger("gprobe end for ".normalise_link($url), LOGGER_DEBUG);
	return;
}

if (array_search(__file__,get_included_files())===0){
  gprobe_run($_SERVER["argv"],$_SERVER["argc"]);
  killme();
}
hidden plugins (add .hidden file to dir) 2012-05-01 08:07:52 +02:00			`<?php`

			`require_once("boot.php");`
			`require_once('include/Scrape.php');`
fn not found 2012-05-02 05:11:35 +02:00			`require_once('include/socgraph.php');`
hidden plugins (add .hidden file to dir) 2012-05-01 08:07:52 +02:00
pass $argv & $argc as reference to *_run() functions. 2012-11-05 09:28:54 +01:00			`function gprobe_run(&$argv, &$argc){`
hidden plugins (add .hidden file to dir) 2012-05-01 08:07:52 +02:00			`global $a, $db;`

			`if(is_null($a)) {`
			`$a = new App;`
			`}`
Logging to analyse the stale gprobe processes 2014-12-08 11:02:03 +01:00
hidden plugins (add .hidden file to dir) 2012-05-01 08:07:52 +02:00			`if(is_null($db)) {`
			`@include(".htconfig.php");`
use explicit include paths 2012-12-28 22:51:50 +01:00			`require_once("include/dba.php");`
hidden plugins (add .hidden file to dir) 2012-05-01 08:07:52 +02:00			`$db = new dba($db_host, $db_user, $db_pass, $db_data);`
			`unset($db_host, $db_user, $db_pass, $db_data);`
			`};`

			`require_once('include/session.php');`
			`require_once('include/datetime.php');`

			`load_config('config');`
			`load_config('system');`

			`$a->set_baseurl(get_config('system','url'));`

			`load_hooks();`

			`if($argc != 2)`
			`return;`

			`$url = hex2bin($argv[1]);`

			`$r = q("select * from gcontact where nurl = '%s' limit 1",`
			`dbesc(normalise_link($url))`
			`);`

Logging to analyse the stale gprobe processes 2014-12-08 11:02:03 +01:00			`logger("gprobe start for ".normalise_link($url), LOGGER_DEBUG);`

link socgraph to zrls 2012-05-01 10:34:47 +02:00			`if(! count($r)) {`
hidden plugins (add .hidden file to dir) 2012-05-01 08:07:52 +02:00
Preventing a DDoS with the zrl parameter. 2015-03-28 08:29:01 +01:00			`// Is it a DDoS attempt?`
			`$urlparts = parse_url($url);`

			`$result = Cache::get("gprobe:".$urlparts["host"]);`
			`if (!is_null($result)) {`
			`$result = unserialize($result);`
Issue 1913: Report invalid feed 2015-10-04 00:28:15 +02:00			`if (in_array($result["network"], array(NETWORK_FEED, NETWORK_PHANTOM))) {`
Some more logging added for the DDoS prevention 2015-03-28 08:49:24 +01:00			`logger("DDoS attempt detected for ".$urlparts["host"]." by ".$_SERVER["REMOTE_ADDR"].". server data: ".print_r($_SERVER, true), LOGGER_DEBUG);`
Preventing a DDoS with the zrl parameter. 2015-03-28 08:29:01 +01:00			`return;`
			`}`
			`}`

link socgraph to zrls 2012-05-01 10:34:47 +02:00			`$arr = probe_url($url);`
Preventing a DDoS with the zrl parameter. 2015-03-28 08:29:01 +01:00
			`if (is_null($result))`
			`Cache::set("gprobe:".$urlparts["host"],serialize($arr));`

link socgraph to zrls 2012-05-01 10:34:47 +02:00			`if(count($arr) && x($arr,'network') && $arr['network'] === NETWORK_DFRN) {`
			q("insert into `gcontact` (`name`,`url`,`nurl`,`photo`)
			`values ( '%s', '%s', '%s', '%s') ",`
			`dbesc($arr['name']),`
			`dbesc($arr['url']),`
			`dbesc(normalise_link($arr['url'])),`
			`dbesc($arr['photo'])`
			`);`
			`}`
			`$r = q("select * from gcontact where nurl = '%s' limit 1",`
			`dbesc(normalise_link($url))`
hidden plugins (add .hidden file to dir) 2012-05-01 08:07:52 +02:00			`);`
			`}`
link socgraph to zrls 2012-05-01 10:34:47 +02:00			`if(count($r))`
			`poco_load(0,0,$r[0]['id'], str_replace('/profile/','/poco/',$r[0]['url']));`
Logging to analyse the stale gprobe processes 2014-12-08 11:02:03 +01:00
			`logger("gprobe end for ".normalise_link($url), LOGGER_DEBUG);`
hidden plugins (add .hidden file to dir) 2012-05-01 08:07:52 +02:00			`return;`
			`}`

			`if (array_search(__file__,get_included_files())===0){`
Replaced $argv and $argc with the $_SERVER array 2015-01-04 13:24:16 +01:00			`gprobe_run($_SERVER["argv"],$_SERVER["argc"]);`
hidden plugins (add .hidden file to dir) 2012-05-01 08:07:52 +02:00			`killme();`
			`}`