暫無描述
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

Upgrade.php 13KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329
  1. <?php
  2. /**
  3. * eyoucms
  4. * ============================================================================
  5. * 版权所有 2016-2028 海口快推科技有限公司,并保留所有权利。
  6. * 网站地址: http://www.eyoucms.com
  7. * ----------------------------------------------------------------------------
  8. * 如果商业用途务必到官方购买正版授权, 以免引起不必要的法律纠纷.
  9. * ============================================================================
  10. * Author: 小虎哥 <1105415366@qq.com>
  11. * Date: 2018-4-3
  12. */
  13. namespace app\admin\controller;
  14. use think\Controller;
  15. use think\Db;
  16. use think\response\Json;
  17. use app\admin\model;
  18. class Upgrade extends Controller {
  19. /**
  20. * 析构函数
  21. */
  22. function __construct() {
  23. parent::__construct();
  24. function_exists('set_time_limit') && set_time_limit(0);
  25. @ini_set('memory_limit','-1');
  26. // @ini_set('memory_limit', '1024M'); // 设置内存大小
  27. // @ini_set("max_execution_time", "0"); // 请求超时时间 0 为不限时
  28. // @ini_set('default_socket_timeout', 3600); // 设置 file_get_contents 请求超时时间 官方的说明,似乎没有不限时间的选项,也就是不能填0,你如果填0,那么socket就会立即返回失败,
  29. $this->assign('version', getCmsVersion());
  30. }
  31. public function welcome()
  32. {
  33. $sys_info['os'] = PHP_OS;
  34. $sys_info['zlib'] = function_exists('gzclose') ? 'YES' : 'NO';//zlib
  35. $sys_info['safe_mode'] = (boolean) ini_get('safe_mode') ? 'YES' : 'NO';//safe_mode = Off
  36. $sys_info['timezone'] = function_exists("date_default_timezone_get") ? date_default_timezone_get() : "no_timezone";
  37. $sys_info['curl'] = function_exists('curl_init') ? 'YES' : 'NO';
  38. $sys_info['web_server'] = $_SERVER['SERVER_SOFTWARE'];
  39. $sys_info['phpv'] = phpversion();
  40. $sys_info['ip'] = GetHostByName($_SERVER['SERVER_NAME']);
  41. $sys_info['fileupload'] = @ini_get('file_uploads') ? ini_get('upload_max_filesize') :'unknown';
  42. $sys_info['max_ex_time'] = @ini_get("max_execution_time").'s'; //脚本最大执行时间
  43. $sys_info['set_time_limit'] = function_exists("set_time_limit") ? true : false;
  44. $sys_info['domain'] = request()->host();
  45. $sys_info['memory_limit'] = ini_get('memory_limit');
  46. $sys_info['version'] = file_get_contents(DATA_PATH.'conf/version.txt');
  47. $mysqlinfo = Db::query("SELECT VERSION() as version");
  48. $sys_info['mysql_version'] = $mysqlinfo[0]['version'];
  49. if(function_exists("gd_info")){
  50. $gd = gd_info();
  51. $sys_info['gdinfo'] = $gd['GD Version'];
  52. }else {
  53. $sys_info['gdinfo'] = "未知";
  54. }
  55. $globalTpCache = tpCache('global');
  56. $upgradeLogic = new \app\admin\logic\UpgradeLogic();
  57. $sys_info['curent_version'] = $upgradeLogic->curent_version; //当前程序版本
  58. $sys_info['web_name'] = !empty($globalTpCache['web_name']) ? $globalTpCache['web_name'] : '';
  59. $this->assign('sys_info', $sys_info);
  60. $upgradeMsg = $upgradeLogic->checkVersion(); //升级包消息
  61. $this->assign('upgradeMsg',$upgradeMsg);
  62. if (isset($globalTpCache['web_show_popup_upgrade']) && 2 == $globalTpCache['web_show_popup_upgrade'] && $this->php_servicemeal <= 0) {
  63. $globalTpCache['web_show_popup_upgrade'] = -1;
  64. }
  65. $this->assign('web_show_popup_upgrade', $globalTpCache['web_show_popup_upgrade']);
  66. $this->assign('global', $globalTpCache);
  67. return $this->fetch();
  68. }
  69. /**
  70. * 一键升级
  71. */
  72. public function OneKeyUpgrade(){
  73. header('Content-Type:application/json; charset=utf-8');
  74. function_exists('set_time_limit') && set_time_limit(0);
  75. /*权限控制 by 小虎哥*/
  76. $admin_info = session('admin_info');
  77. if (0 < intval($admin_info['role_id'])) {
  78. $auth_role_info = $admin_info['auth_role_info'];
  79. if (!empty($auth_role_info) && intval($auth_role_info['online_update']) <= 0) {
  80. $this->error('您没有操作权限,请联系超级管理员分配权限');
  81. }
  82. }
  83. /*--end*/
  84. $curent_version = getCmsVersion();
  85. $upgradeLogic = new \app\admin\logic\UpgradeLogic();
  86. $data = $upgradeLogic->OneKeyUpgrade(); //升级包消息
  87. if (1 <= intval($data['code'])) {
  88. adminLog("系统在线升级:{$curent_version} -> ".getCmsVersion());
  89. $this->success($data['msg'], null, ['code'=>$data['code']]);
  90. } else {
  91. $code = 0;
  92. $msg = '升级异常,请排查问题!';
  93. if (is_array($data)) {
  94. isset($data['code']) && $code = $data['code'];
  95. isset($data['msg']) && $msg = $data['msg'];
  96. }
  97. $this->error($msg, null, ['code'=>$code]);
  98. }
  99. }
  100. /**
  101. * 设置弹窗更新-不再提醒
  102. */
  103. public function setPopupUpgrade()
  104. {
  105. $show_popup_upgrade = input('param.show_popup_upgrade/s', '1');
  106. $inc_type = 'web';
  107. tpCache($inc_type, array($inc_type.'_show_popup_upgrade'=>$show_popup_upgrade));
  108. respose(1);
  109. }
  110. /**
  111. * 检测目录权限、当前版本的数据库是否与官方一致
  112. */
  113. public function check_authority()
  114. {
  115. /*------------------检测目录读写权限----------------------*/
  116. $filelist = tpCache('system.system_upgrade_filelist');
  117. $filelist = base64_decode($filelist);
  118. $filelist = htmlspecialchars_decode($filelist);
  119. $filelist = explode('<br>', $filelist);
  120. $dirs = array();
  121. $i = -1;
  122. foreach($filelist as $filename)
  123. {
  124. $tfilename = $filename;
  125. $curdir = $this->GetDirName($tfilename);
  126. if (empty($curdir) || !file_exists($curdir)) {
  127. continue;
  128. }
  129. if( !isset($dirs[$curdir]) )
  130. {
  131. $dirs[$curdir] = $this->TestIsFileDir($curdir);
  132. }
  133. if($dirs[$curdir]['isdir'] == FALSE)
  134. {
  135. continue;
  136. }
  137. else {
  138. @tp_mkdir($curdir, 0777);
  139. $dirs[$curdir] = $this->TestIsFileDir($curdir);
  140. }
  141. $i++;
  142. }
  143. $is_pass = true;
  144. $msg = '检测通过';
  145. if($i > -1)
  146. {
  147. $n = 0;
  148. $dirinfos = '';
  149. foreach($dirs as $curdir)
  150. {
  151. $dirinfos .= $curdir['name']."&nbsp;&nbsp;状态:";
  152. if ($curdir['writeable']) {
  153. $dirinfos .= "[√正常]";
  154. } else {
  155. $is_pass = false;
  156. $n++;
  157. $dirinfos .= "<font color='red'>[×不可写]</font>";
  158. }
  159. $dirinfos .= "<br />";
  160. }
  161. $title = "本次升级需要在下面文件夹写入更新文件,已检测站点有 <font color='red'>{$n}</font> 处没有写入权限:<br />";
  162. $title .= "<font color='red'>问题分析(如有问题,请咨询技术支持):<br />";
  163. $title .= "1、检查站点目录的用户组与所有者,禁止是 root ;<br />";
  164. $title .= "2、检查站点目录的读写权限,一般权限值是 0755 ;<br />";
  165. $title .= "</font>涉及更新目录列表如下:<br />";
  166. $msg = $title . $dirinfos;
  167. }
  168. /*------------------end----------------------*/
  169. if (true == $is_pass) {
  170. /*------------------检测目录读写权限----------------------*/
  171. $values = [
  172. 'version' => getCmsVersion(),
  173. ];
  174. $upgradeLogic = new \app\admin\logic\UpgradeLogic;
  175. $upgradeLogic->GetKeyData($values);
  176. $url = $upgradeLogic->getServiceUrl().'/index.php?m=api&c=Service&a=get_database_txt';
  177. $response = @httpRequest($url, 'POST', $values, [], 5);
  178. if (false === $response) {
  179. $url = $url.'&'.http_build_query($values);
  180. $context = stream_context_set_default(array('http' => array('timeout' => 5,'method'=>'GET')));
  181. $response = @file_get_contents($url, false, $context);
  182. }
  183. $params = json_decode($response,true);
  184. if (false == $params) {
  185. $this->error('连接升级服务器超时,请刷新重试!', null, ['code'=>2]);
  186. }
  187. if (is_array($params)) {
  188. if (1 == intval($params['code'])) {
  189. /*------------------组合本地数据库信息----------------------*/
  190. $dbtables = Db::query('SHOW TABLE STATUS');
  191. $local_database = array();
  192. foreach ($dbtables as $k => $v) {
  193. $table = $v['Name'];
  194. if (preg_match('/^'.PREFIX.'/i', $table)) {
  195. $local_database[$table] = [
  196. 'name' => $table,
  197. 'field' => [],
  198. ];
  199. }
  200. }
  201. /*------------------end----------------------*/
  202. /*------------------组合官方远程数据库信息----------------------*/
  203. $info = $params['info'];
  204. $info = preg_replace("#[\r\n]{1,}#", "\n", $info);
  205. $infos = explode("\n", $info);
  206. $infolists = [];
  207. foreach ($infos as $key => $val) {
  208. if (!empty($val)) {
  209. $arr = explode('|', $val);
  210. $infolists[$arr[0]] = $val;
  211. }
  212. }
  213. /*------------------end----------------------*/
  214. /*------------------校验数据库是否合格----------------------*/
  215. foreach ([1] as $testk => $testv) {
  216. // 对比数据表数量
  217. if (count($local_database) < count($infolists)) {
  218. $is_pass = false;
  219. break;
  220. }
  221. // 对比数据表字段数量
  222. foreach ($infolists as $k1 => $v1) {
  223. $arr1 = explode('|', $v1);
  224. if (1 >= count($arr1)) {
  225. continue; // 忽略不对比的数据表
  226. }
  227. $fieldArr = explode(',', $arr1[1]);
  228. $table = preg_replace('/^ey_/i', PREFIX, $arr1[0]);
  229. $local_fields = Db::getFields($table); // 本地数据表字段列表
  230. $local_database[$table]['field'] = $local_fields;
  231. if (count($local_fields) < count($fieldArr)) {
  232. $is_pass = false;
  233. break;
  234. }
  235. }
  236. if (false == $is_pass) break;
  237. }
  238. /*------------------end----------------------*/
  239. } else if (2 == intval($params['code'])) {
  240. $this->error('官方缺少版本号'.getCmsVersion().'的数据库比较文件!', null, ['code'=>2]);
  241. }
  242. }
  243. if (true == $is_pass) {
  244. $this->success($msg);
  245. } else {
  246. $this->error('当前数据库结构与官方不一致,请查看官方解决教程!', null, ['code'=>2]);
  247. }
  248. /*------------------end----------------------*/
  249. } else {
  250. $this->error($msg, null, ['code'=>1]);
  251. }
  252. }
  253. /**
  254. * 获取文件的目录路径
  255. * @param string $filename 文件路径+文件名
  256. * @return string
  257. */
  258. private function GetDirName($filename)
  259. {
  260. $dirname = preg_replace("#[\\\\\/]{1,}#", '/', $filename);
  261. $dirname = preg_replace("#([^\/]*)$#", '', $dirname);
  262. $dirname = preg_replace('/^data\/backup\/tpl\//i', '', $dirname);
  263. return $dirname;
  264. }
  265. /**
  266. * 测试目录路径是否有读写权限
  267. * @param string $dirname 文件目录路径
  268. * @return array
  269. */
  270. private function TestIsFileDir($dirname)
  271. {
  272. $dirs = array('name'=>'', 'isdir'=>FALSE, 'writeable'=>FALSE);
  273. $dirs['name'] = $dirname;
  274. tp_mkdir($dirname);
  275. if(is_dir($dirname))
  276. {
  277. $dirs['isdir'] = TRUE;
  278. $dirs['writeable'] = $this->TestWriteAble($dirname);
  279. }
  280. return $dirs;
  281. }
  282. /**
  283. * 测试目录路径是否有写入权限
  284. * @param string $d 目录路劲
  285. * @return boolean
  286. */
  287. private function TestWriteAble($d)
  288. {
  289. $tfile = '_eyout.txt';
  290. $fp = @fopen($d.$tfile,'w');
  291. if(!$fp) {
  292. if (@is_writable($d)) {
  293. return true;
  294. }
  295. return false;
  296. }
  297. else {
  298. fclose($fp);
  299. $rs = @unlink($d.$tfile);
  300. return true;
  301. }
  302. }
  303. }