'; 22 | echo " ($Release) A new version of the SERVER REMOTE CONSOLE is available! $version --> $NewVersion"; 23 | echo "
Please, consider to update in order to fix bugs and improve new features."; 24 | echo "

Description: ".$obj->description; 25 | } 26 | else 27 | { 28 | echo '

'; 29 | echo " Your version ($version) is up to date ($lastupdate). No action required."; 30 | } 31 | 32 | echo '

'; 33 | 34 | 35 | 36 | ?> -------------------------------------------------------------------------------- /styles/server_console.css: -------------------------------------------------------------------------------- 1 | 2 | /* 3 | * 4 | * SERVER REMOTE CONSOLE 5 | * CSS - Style fixes based on Bootstrap 4 6 | * 7 | * Developed by Maxel (marianosciacco.it) 8 | * Github - src.debug.ovh 9 | * 10 | */ 11 | 12 | 13 | body{ 14 | background-color: #343a40; 15 | } 16 | 17 | .main_container{ 18 | margin: 50px auto; 19 | background-color: white; 20 | box-shadow: 3px 8px 24px #000; 21 | } 22 | 23 | .page{ 24 | background-color: #FFF; 25 | padding: 20px; 26 | } 27 | 28 | a { 29 | color: #444; 30 | text-decoration: none; 31 | } 32 | 33 | a:hover{ 34 | color: #999; 35 | } 36 | 37 | .logo{ 38 | max-width: 100%; 39 | } 40 | 41 | .progress-bar{ 42 | border-right: 1px solid #FFF; 43 | cursor: pointer; 44 | } 45 | 46 | .header{ 47 | 48 | } 49 | 50 | .header h1{ 51 | margin: 10px auto; 52 | } 53 | 54 | .header a{ 55 | color: #0f545f; 56 | } 57 | 58 | .header a:hover{ 59 | text-decoration: none; 60 | color: #c27634; 61 | } 62 | 63 | footer { 64 | margin-top: 15px; 65 | margin-bottom: 10px; 66 | border-top: 1px solid #E8E8E8; 67 | padding: 10px 0 0; 68 | text-align: right; 69 | } 70 | 71 | .progress-bar:hover{ 72 | background-color: #CCC !important; 73 | } 74 | 75 | .btn{ 76 | margin-top: 2px; 77 | margin-bottom: 2px; 78 | } 79 | 80 | .PlayersList { 81 | max-height: 244px; 82 | overflow-y: auto; 83 | } 84 | 85 | hr.lesshigh{ 86 | margin-top: 0; 87 | } -------------------------------------------------------------------------------- /install.php: -------------------------------------------------------------------------------- 1 | "; 39 | Ok("The Server Remote Console has been successfully installed. Please, click here to continue."); 40 | } 41 | else 42 | { 43 | 44 | if(file_exists("./includes/Config/modes.config.php") && file_exists("./includes/Config/parameters.config.php")) 45 | { 46 | include("./includes/Config/modes.config.php"); 47 | include("./includes/Config/parameters.config.php"); 48 | 49 | //$srcp = SRC_PASSWORD; 50 | $ips = IP_SERVER; 51 | $port = PORT_SERVER; 52 | //$rcon = RCON_SERVER; 53 | $user = SERVER_SSH_USER; 54 | //$pass = SERVER_SSH_PSW; 55 | $path = SERVER_SSH_PATH; 56 | /*$ercon = $config->EnableRCON; 57 | $essh = $config->EnableSSH; 58 | $srcon = $config->ShowRCON;*/ 59 | } 60 | else 61 | { 62 | list($ips, $port, $user, $path, $ercon, $essh, $srcon) = array("","7777","","",0,0,0); 63 | } 64 | 65 | if(!empty($a)) 66 | require("controllers/installation.ctrl.php"); 67 | 68 | require("views/installation.view.php"); 69 | } 70 | 71 | require("views/footer.view.php"); 72 | 73 | ?> 74 | -------------------------------------------------------------------------------- /resources/System/SSH_Agent.php: -------------------------------------------------------------------------------- 1 | 33 | * @copyright 2014 Jim Wigginton 34 | * @license http://www.opensource.org/licenses/mit-license.html MIT License 35 | * @link http://phpseclib.sourceforge.net 36 | * @internal See http://api.libssh.org/rfc/PROTOCOL.agent 37 | */ 38 | 39 | require_once 'SSH/Agent.php'; 40 | -------------------------------------------------------------------------------- /index.php: -------------------------------------------------------------------------------- 1 | EnableGuestPage) 48 | location("status.php"); 49 | else 50 | location("login.php"); 51 | } 52 | else 53 | { 54 | 55 | if(isset($_GET['updates'])) 56 | { 57 | require("controllers/updates.ctrl.php"); 58 | } 59 | 60 | 61 | if(isset($_GET['settings'])) 62 | { 63 | if($a != "") 64 | require("controllers/settings.ctrl.php"); 65 | require("views/settings.view.php"); 66 | } 67 | elseif(isset($_GET['bulletins'])) 68 | { 69 | 70 | $f = !isset($_GET['file']) ? "" : $_GET['file']; 71 | $ord = isset($_GET['ord']) && $_GET['ord']<4 ? $_GET['ord'] : 0; 72 | 73 | if($a != "") 74 | require("controllers/bulletins.ctrl.php"); 75 | require("views/bulletins.view.php"); 76 | } 77 | else 78 | { 79 | $server = new SampQuery(IP_SERVER, PORT_SERVER); 80 | $status = ($server->connect()) ? 1 : 0; 81 | $statusMessage = $status ? Ok("Online", 1, 1) : No("Offline", 1, 1); 82 | 83 | require("views/tools.view.php"); 84 | 85 | if(!empty($a)) 86 | { 87 | require("controllers/server-actions.ctrl.php"); 88 | } 89 | } 90 | } 91 | 92 | 93 | require("views/footer.view.php"); 94 | 95 | ?> 96 | -------------------------------------------------------------------------------- /controllers/settings.ctrl.php: -------------------------------------------------------------------------------- 1 | ShowRCON; 32 | $ercon = $config->EnableRCON; 33 | $essh = $config->EnableSSH; 34 | 35 | 36 | $modesFile = fopen("./includes/Config/modes.config.php", "w+") or die($errorPermissions); 37 | 38 | $newModes = ' 39 | '.$srcon.' , 47 | "EnableGuestPage" => '.$gpage.' , 48 | "EnableRCON" => '.$ercon.' , 49 | "EnableSSH" => '.$essh.' 50 | ); 51 | ?>'; 52 | 53 | fwrite($modesFile, $newModes); 54 | fclose($modesFile); 55 | 56 | if($modesFile) 57 | { 58 | Ok("Changes to General settings have been applied successfully. Reload page."); 59 | } 60 | } 61 | elseif($a == "edit-gpage" && $config->EnableGuestPage) 62 | { 63 | $gname = str_replace('"', '\"',$_POST['gname']); 64 | $gusers = (int)$_POST['gusers']; 65 | $gstatus = (int)$_POST['gstatus']; 66 | 67 | if(!Regex($gname) || strlen($gname) > 32) 68 | No("Only letters, numbers, spaces and underscores are allowed. Requested length: 1-24 characters."); 69 | else 70 | { 71 | 72 | $modesFile = fopen("./includes/Config/guestpage.config.php", "w+") or die($errorPermissions); 73 | 74 | $newModes = ' 75 | "'.$gname.'" , 83 | "ShowPlayersList" => '.$gusers.' , 84 | "EnableStatus" => '.$gstatus.' 85 | ); 86 | ?>'; 87 | 88 | fwrite($modesFile, $newModes); 89 | fclose($modesFile); 90 | 91 | if($modesFile) 92 | { 93 | Ok("Changes to Guest Page have been applied successfully. Reload page."); 94 | } 95 | else 96 | No("Unexpected error."); 97 | } 98 | } 99 | 100 | 101 | ?> -------------------------------------------------------------------------------- /controllers/bulletins.ctrl.php: -------------------------------------------------------------------------------- 1 | /store folder."); 21 | } 22 | else 23 | { 24 | Ok("The bulletin has been deleted successfully. Continue to Bulletins' List"); 25 | } 26 | } 27 | else 28 | { 29 | 30 | $content = $_POST['content']; 31 | $priority = $_POST['priority']; 32 | 33 | if($content == "") 34 | { 35 | No("No content has been submitted. Please write something before submitting the bulletin."); 36 | } 37 | elseif(strlen($content) > 1024) 38 | { 39 | No("Content too long, please reduce the message to 1024 characters."); 40 | } 41 | elseif(isset($_GET['add'])) 42 | { 43 | $Bull = new Status(); 44 | $Last = new Bulletin($Bull->getLastBulletin()); 45 | if($Last->getTimestamp() > (time()-120)) 46 | No("Wait for about 2 minutes before sending another bulletin update."); 47 | else 48 | { 49 | $filename = time()."_".$priority.".txt"; 50 | $handle = fopen(BULL_FOLDER.$filename, "w"); 51 | $hwrite = fwrite($handle, $content); 52 | fclose($handle); 53 | 54 | if(!$handle || !$hwrite) 55 | No("An error has occurred while submitting the new bulletin. Please make sure to give all the necessary permissions to /store folder."); 56 | else 57 | Ok("The new bulletin has been submitted! Go to bulletins' list"); 58 | } 59 | } 60 | elseif(isset($_GET['edit'])) 61 | { 62 | if(!file_exists(BULL_FOLDER.$f)) 63 | { 64 | No("An error has occurred while editing the bulletin. Please make sure to give all the necessary permissions to /store folder."); 65 | } 66 | else 67 | { 68 | $Bull = new Bulletin($f); 69 | $hdel = unlink(BULL_FOLDER.$f); 70 | $filename = $Bull->getTimestamp()."_".$priority.BULL_EXTENSION; 71 | $handle = fopen(BULL_FOLDER.$filename, "w"); 72 | $hwrite = fwrite($handle, $content); 73 | fclose($handle); 74 | 75 | if(!$handle || !$hwrite || !$hdel) 76 | No("An error has occurred while editing the bulletin. Please make sure to give all the necessary permissions to /store folder."); 77 | else 78 | { 79 | Ok("The bulletin has been updated! Go to bulletins' list"); 80 | $f = CleanFileExt($filename); // !! IMPORTANT 81 | } 82 | } 83 | } 84 | } 85 | 86 | echo "

"; 87 | 88 | 89 | ?> -------------------------------------------------------------------------------- /views/emergency.view.php: -------------------------------------------------------------------------------- 1 | 12 | 13 | 14 |

The site has been blocked

15 |

16 |

The site has been blocked for security issues. It will be back as soon as possible.

17 |

If you're the web master, delete emergency.lock from website root folder to reactivate the site.

18 |

If you're a user or a guest, while the webmaster fixes the issues, let's play Rock, Paper, Scissors:

19 | 20 |

21 |

22 |

23 |

24 |

25 |

26 |

27 |

28 | 29 | -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 | # Server Remote Console (SA-MP) 2 | 3 | [Go to the Official SA-MP thread of this project](http://forum.sa-mp.com/showthread.php?t=652832) 4 | 5 | 6 | > **Version 1.1.1 has been released!** Checkout the changelog in the [Releases](releases) section. 7 | 8 | 9 | ![logo](https://i.imgur.com/gfzshsv.png) 10 | 11 | 12 | **Current Release:** 1.1.1 (stable) 13 | 14 | **Release date:** May 6, 2018 15 | 16 | 17 | This web application written in PHP is a simple remote console to manage players and server activities. You can easily start & stop your server, once configured, and you can view server logs, server bans and server configuration as well as server advanced informations and player's list. Moreover, it is possible to kick or ban players directely from the web, send several rcon commands and enable a guest page with basic server informations, players' list and custom bulletins to inform your players about the server status. 18 | Finally, the installation is fully based on a Web Installer and it is easy to configure. 19 | 20 | 21 | ![New Version 1.1](https://i.imgur.com/IrFZCuH.png) 22 | 23 | 24 | ## Features 25 | 26 | 27 | - Easy configuration 28 | - No mysql database needed 29 | - Different types of configurations and personalization 30 | - [NEW] Easy and Quick Installation Wizard 31 | - [NEW] Guest page with server status and small players' list 32 | - [NEW] Status tracker with built-in exclusive bulletins 33 | - [NEW] Status bar with last 7/14/21/30 days bulletins 34 | - [NEW] Bulletins management (add/edit/delete/list) 35 | - Password protected area 36 | - Anti-spam protection for the login area 37 | - Simple Server Start (via SSH) 38 | - Simple Server Stop & Hard Stop (via RCON and SSH) 39 | - Restart / Next gamemode (via RCON) 40 | - Possibility to send several RCON commands directly from the Web 41 | - [NEW] View server bans and configuration 42 | - Direct access to server_logs.txt and quick reset (via SSH) 43 | - Advanced information panel about the server 44 | - Advanced player's list (with score, username, id and ping) and kick/ban options (via RCON) 45 | - [NEW] Emergency Block mode, in case of password theft 46 | - Bootstrap 4.0 coding and font-awesome icons 47 | - [NEW] Mobile & Desktop version 48 | 49 | 50 | Features may be added in the future. Stay tuned. 51 | 52 | 53 | 54 | ## Installation & Configuration 55 | 56 | Please, use the wiki to install and configure the remote console. 57 | * [Requirements](https://github.com/Maxelweb/ServerRemoteConsoleSAMP/wiki/Requirements) 58 | * [Installation](https://github.com/Maxelweb/ServerRemoteConsoleSAMP/wiki/Installation) 59 | * [FAQ - Frequently Asked Questions](https://github.com/Maxelweb/ServerRemoteConsoleSAMP/wiki/FAQ) 60 | 61 | 62 | ## Credits 63 | 64 | The server remote console for SA-MP has been developed and coded by **Maxel** (marianosciacco.it) 65 | This project has started in __19/04/2018__ and it is __still supported__. 66 | 67 | Special thanks to __StatusRed__ aka __Edward McKnight__ for his plugin **SA-MP Query and RCON API for PHP** (originally developed by __Westie__) which is used in this project, as well as __Wouter van Eekelen__ and __Peter Beverloo__ for **SA-MP Query server (Version 0.3)** used for the guest page. 68 | Bootstrap 4 and Font-Awesome.com has been also used to make the HTML template and style of this website. 69 | -------------------------------------------------------------------------------- /views/guestpage.view.php: -------------------------------------------------------------------------------- 1 | 12 | 13 | 14 |

ServerName;?>

15 | 16 | 22 | 23 | 24 |

25 |

26 | 27 |

28 |

29 |

">

30 | 31 | 32 |

33 | players 34 | 35 | 36 | 37 |

38 |

39 |

40 | ShowPlayersList) echo "

";?> 42 |

43 |

44 |

45 |

46 |

47 |

48 |

49 | 50 | ShowPlayersList && $sStatus) { ?> 51 |

52 |

53 |

54 | Players 55 | Score 56 |

57 | 58 |

59 |

60 | 61 |

62 | EnableStatus) { ?> 63 |

Bulletins Tracker

64 | 65 |

66 |

67 | 74 | ListNormal(); else { ?> 75 | ShowStatusBar($Days);?> 76 |

77 |

78 | 79 |

80 |

81 | ListAsCalendar($Days);?> 82 | 83 |

84 |

85 | 86 | 87 | -------------------------------------------------------------------------------- /views/header.view.php: -------------------------------------------------------------------------------- 1 | 12 | 13 | 14 | 15 | 16 | 17 | Server Remote Console <?=$version?> | SA-MP 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | 35 | 36 | 37 | 38 |

39 |

40 |

41 |

42 | 43 |

44 | 45 | 46 |

47 |

48 |

49 | Server Remote Console 50 | 51 | 52 |

53 | 54 | 55 |

56 | EnableGuestPage) { ?> 57 | 58 | Guest Page 59 | 60 | 61 | 62 | Settings 63 | 64 | 65 | Logout 66 | 67 |

68 | 69 |

70 | 71 | Go to the Protected Area 72 | 73 |

74 | 75 |

76 |

77 | 78 | -------------------------------------------------------------------------------- /views/settings.view.php: -------------------------------------------------------------------------------- 1 | 2 | 13 | 14 |

General settings

15 | 16 |

17 |

18 |

19 | 20 | 21 | 22 | 23 | 38 | 39 | 40 | 41 | 42 | 43 | 44 | 47 | 48 | 49 |

Modes:	24 \| EnableRCON) ? "checked" : ""; ?> value="1" disabled> 25 \| Enable control with RCON password 26 \| EnableSSH) ? "checked" : ""; ?> value="1" disabled> 27 \| Enable control with SSH access (Ubuntu / Debian required) 28 \| ShowRCON) ? "checked" : ""; ?> value="1" disabled> 29 \| Show RCON password on server information (protected area) 30 \| EnableGuestPage) ? "checked" : ""; ?> value="1"> 31 \| Enable Guest Page for server information and status 32 \| 35 \| 36 \| 37 \|
To change SSH access, RCON password and/or SRC password, restart the installation process. Delete `installed.lock` file from root folder. Note: this will not remove or damage the bulletins submitted.
Emergency Block:	Activate Block Mode 45 \| Warning In case of password theft, activate the emergency mode to immediatly block the entire site. Remove `emergency.lock` to reactivate it. 46 \|

50 |

51 |

52 |

53 | 54 | 55 | EnableGuestPage) { ?> 56 | 57 |

Guest Page configuration

58 | 59 |

60 | 84 |

85 | 86 | -------------------------------------------------------------------------------- /includes/functions.php: -------------------------------------------------------------------------------- 1 | location.replace('$url');"; 22 | } 23 | 24 | function CleanFileExt($file) 25 | { 26 | $ex = explode(".", $file); 27 | return $ex[0]; 28 | } 29 | 30 | function ConvertArray($arr) 31 | { 32 | $pInfo = array(); 33 | foreach($arr as $key => $info) 34 | array_push($pInfo, $info); 35 | return $pInfo; 36 | } 37 | 38 | function Regex($value, $type=0) 39 | { 40 | if($type==1) $reg = "/^[a-zA-Z0-9\s]+$/"; // only letters, numbers and spaces 41 | elseif($type==2) $reg = "/^[a-zA-Z0-9]+$/"; // only letters and numbers 42 | elseif($type==3) $reg = "/^[0-9]+$/"; // only numbers 43 | elseif($type==4) $reg = "/^[a-zA-Z]+$/"; // only letters 44 | elseif($type==5) $reg = "/^[a-zA-Z_]+$/"; // only letters and underscore 45 | elseif($type==6) $reg = "/^[a-zA-Z\s]+$/"; // only letters and spaces 46 | elseif($type==7) $reg = "/^[a-z][a-z0-9\.,\-_]{5,31}$/i"; // Skype 47 | elseif($type==8) $reg = "/^[a-zA-Z0-9_-]+$/"; // only letters, numbers dashes and underscore 48 | elseif($type==9) $reg = "/^[^\s]+\/$/"; // No spaces allowed 49 | else $reg = "/^[a-zA-Z0-9\s_-]+$/"; // only letters, numbers, spaces dashes and underscores 50 | return preg_match($reg, $value); 51 | } 52 | 53 | 54 | /* 55 | * Messages / Alerts functions 56 | */ 57 | 58 | 59 | function Ok($mex, $asreturn=0, $notime=0) 60 | { 61 | $time = $notime ? "" : "(".date('H:i:s').")"; 62 | $x = " $time $mex"; 63 | if(!$asreturn) echo $x; else return $x; 64 | } 65 | 66 | function No($mex, $asreturn=0, $notime=1) 67 | { 68 | $time = $notime ? "" : "(".date('H:i:s').")"; 69 | $x = " $time $mex"; 70 | if(!$asreturn) echo $x; else return $x; 71 | } 72 | 73 | function Alert($mex, $asreturn=0, $notime=1) 74 | { 75 | $time = $notime ? "" : "(".date('H:i:s').")"; 76 | $x = " $time $mex"; 77 | if(!$asreturn) echo $x; else return $x; 78 | } 79 | 80 | 81 | /* 82 | * Priorities functions 83 | */ 84 | 85 | 86 | function Priority($priority) 87 | { 88 | switch ($priority) 89 | { 90 | case 1: 91 | return " Announcement"; 92 | break; 93 | case 2: 94 | return " Changelog"; 95 | break; 96 | case 3: 97 | return " General Maintenance"; 98 | break; 99 | default: 100 | return " Status update"; 101 | break; 102 | } 103 | } 104 | 105 | function ShowPriority($equals) 106 | { 107 | if($equals > 3) $equals == 0; 108 | 109 | for($i=0; $i<4; $i++) 110 | { 111 | echo '

"; 118 | } 119 | } 120 | 121 | 122 | ?> 123 | -------------------------------------------------------------------------------- /status.php: -------------------------------------------------------------------------------- 1 | EnableGuestPage) 36 | { 37 | location("login.php"); 38 | } 39 | else 40 | { 41 | 42 | try { 43 | 44 | $query = new QueryServer(IP_SERVER, PORT_SERVER); 45 | 46 | $Info = $query->GetInfo(); 47 | $Rules = $query->GetRules(); 48 | 49 | if(empty($Rules)) location("?id=".$id); 50 | 51 | $sStatus = 1; 52 | $ServerStatus = "ONLINE"; 53 | list($sPassword, $sPlayers, $sMaxPlayers, $sHostname, $sGamemode) = ConvertArray($Info); 54 | list($sLagComp, $sMap, $sVersion, $sWeather, $sUrl, $sWorldTime) = ConvertArray($Rules); 55 | $sDesc = "The server is up and running. "; 56 | $sDesc .= ($sPassword) ? " However, you need a password to join it." : "You can join the server without any restriction."; 57 | $sColor = ($sPassword) ? "warning text-dark" : "success"; 58 | $sIcon = ($sPassword) ? "lock" : "check"; 59 | 60 | $sTotPlayers = "$sPlayers / $sMaxPlayers"; 61 | 62 | if($sPlayers>50) 63 | { 64 | $PlayerBlock = "

The server has more than 50 players online .
For technical limitation the players' list won't be shown.

"; 65 | } 66 | else 67 | { 68 | 69 | $players = $query->GetPlayers(); 70 | 71 | if(!count($players)) 72 | { 73 | $PlayerBlock = "

The server is actually empty

"; 74 | } 75 | else 76 | { 77 | 78 | $PlayerBlock = "

"; 86 | $PlayerBlock .= "$pUsername $pScore"; 87 | $PlayerBlock .= "

"; 90 | } 91 | } 92 | 93 | 94 | $query->Close(); 95 | 96 | } catch(QueryServerException $e) { 97 | 98 | $sStatus = 0; 99 | $ServerStatus = "OFFLINE"; 100 | $sIcon = "times"; 101 | $sColor = "danger"; 102 | $sDesc = "The server is not responding, it may be offline or it has several players connected thus leading to connection issues.

Retry to connect"; 103 | //
Error: ".$e->toString()." 104 | } 105 | 106 | 107 | // This is the number of bulletins showed, base 7 * x, 108 | // where x is the value selected in the 23 |

Choose a Password to access the SRC. Letters, numbers, dashes and underscores only; [4-32] characters length.

24 | 25 |

Insert the SA-MP server IP address. Example: 92.133.132.181

26 | 27 |

Insert the SA-MP server Port Example: 7777 (default SA-MP port)

28 | 29 |

RCON configuration RECOMMENDED

30 | Enable control with RCON password
31 | Show RCON password in protected area
32 |

If disabled, the RCON password won't be shown while fetching server.cfg from SSH and in the Index Toolbar.

33 | 34 |

Required, if Control with RCON password is checked. Otherwise leave it blank.

35 | 36 |

SSH configuration RECOMMENDED

37 | Enable control with SSH access (Ubuntu / Debian required) 38 |

Required, if Control with SSH access is checked. Otherwise leave it blank.

39 |

Warning Please, do not use root. Create a samp user instaed, without sudoers privileges.

40 |
41 |
42 | 43 |

Warning, the folder MUST end with /. For example: samp03/

44 |

45 | Force installation Not Recommended 46 |

Use this option to bypass SSH and RCON controls. If credentials are wrong, some features won't work.

47 |
48 | 49 | 50 | 51 | 52 | 53 | -------------------------------------------------------------------------------- /views/bulletins.view.php: -------------------------------------------------------------------------------- 1 | 12 | 13 | « Go back to Home 14 |

Bulletins Management

15 | 16 |

From this section you can add, edit or remove server bulletins. Bulletins are usually used in case of important technical update or server issues.

17 | 18 |

35 | 36 | 37 | Bulletins are ordered by the oldest."; 40 | elseif($ord == 2) echo "

Bulletins are ordered by priority (highest)."; 41 | elseif($ord == 3) echo "

Bulletins are ordered by priority (lowest)."; 42 | else echo "

Bulletins are ordered by the newest."; 43 | $bull = new Status(); 44 | $bull->ListAdmin($ord); 45 | 46 | } elseif(isset($_GET['edit'], $_GET['file'])) { ?> 47 | 48 |

62 | 63 | 64 | 65 | 73 | 74 | "; 77 | 78 | if(!$gpage->EnableStatus) 79 | $Al = Alert("The status block is actually not visible to guests.", 0, 1); 80 | else 81 | $Al = Ok("The status block is actually visible to guests", 0,1); 82 | 83 | $Status = new Status(); 84 | $tot = $Status->getTotalBulletins(); 85 | if($tot) 86 | { 87 | $Last = new Bulletin($Status->getLastBulletin()); 88 | $days = (int)((time()-$Last->getTimestamp())/86400); 89 | $days = $days < 1 ? "less than one day ago" : ($days == 1 ? $days." day ago" : $days." days ago"); 90 | } 91 | else $days = "N/A"; 92 | 93 | echo "

There are currently ".$tot." bulletins published. "; 94 | if($tot>100) Alert("You have more than 100 bulletins. Consider to delete some of the oldest bulletins.", 0, 1); 95 | echo "
The last bulletin has been submitted ".$days.".

"; 96 | 97 | $query = new SampQuery(IP_SERVER, PORT_SERVER); 98 | if(!$query->connect()) 99 | No(" The server is not responding or it may be offline! Send a new bulletin to inform your players about server issues!

"); 100 | $query->close(); 101 | 102 | } ?> -------------------------------------------------------------------------------- /controllers/installation.ctrl.php: -------------------------------------------------------------------------------- 1 | 32 || strlen($srcp) < 5) 29 | No("Only letters, numbers, dash and underscores are permitted as SRC Password. Requested length: 4-32 characters."); 30 | elseif(!filter_var($ips, FILTER_VALIDATE_IP)) 31 | No("The IP inserted is not in a valid format. Retry."); 32 | elseif(strlen($port) != 4) 33 | No("Invalid Port. Please insert 4 numbers. Default sa-mp port: 7777"); 34 | elseif($srcon && !$ercon) 35 | No("RCON password must be enabled to activate Show RCON password in protected area"); 36 | elseif(!Regex($path, 9) && $essh) 37 | No("The path inserted is invalid. Do not use spaces and don't forget the ending slash /. Retry."); 38 | else 39 | { 40 | 41 | echo "Starting configuration, please wait...
"; 42 | 43 | if($finstall) 44 | No("[FORCE INSTALLATION] RCON and SSH controls have been skipped!
"); 45 | else 46 | { 47 | if($ercon) 48 | { 49 | $query = new SampRcon($ips, $port, $rcon); 50 | if(!$query->connect()) 51 | die(No("Connection error. Retry.",1)); 52 | 53 | if(count($query->getCommandList()) <= 1) // if invalid, returns one element with error message 54 | exit(No("RCON password - The RCON is invalid, please insert a valid RCON to continue. Make sure there's no rcon 0 in your server.cfg. Otherwise, change it to rcon 1 to enable remote rcon commands.")); 55 | else 56 | Ok("RCON password - Accepted.
"); 57 | } 58 | 59 | if($essh) 60 | { 61 | $ssh = new Net_SSH2($ips); 62 | if (!$ssh->login($user, $pass)) 63 | exit(No('SSH access - Login incorrect. Please, retry.')); 64 | else 65 | { 66 | if(trim($ssh->exec('find '.$path.'samp03svr')) != $path."samp03svr") 67 | exit(No("SSH access - Login correct, but invalid server path. The path should contains the samp03svr execution file as well as the basic SA-MP files and folders.")); 68 | else 69 | Ok('SSH access - Done.
'); 70 | } 71 | } 72 | } 73 | 74 | 75 | $rcon = str_replace('"', '\"', $rcon); 76 | $pass = str_replace('"', '\"', $pass); 77 | 78 | 79 | $configFile = fopen("./includes/Config/parameters.config.php", "w+") or die($errorPermissions); 80 | 81 | $newConfig = ""; 82 | 83 | fwrite($configFile, $newConfig); 84 | 85 | $newConfig = ' 86 | '; 100 | 101 | fwrite($configFile, $newConfig); 102 | fclose($configFile); 103 | 104 | 105 | $modesFile = fopen("./includes/Config/modes.config.php", "w+") or die($errorPermissions); 106 | 107 | $newModes = ' 108 | '.$srcon.' , 116 | "EnableGuestPage" => 1 , 117 | "EnableRCON" => '.$ercon.' , 118 | "EnableSSH" => '.$essh.' 119 | ); 120 | ?>'; 121 | 122 | fwrite($modesFile, $newModes); 123 | fclose($modesFile); 124 | 125 | 126 | if(file_exists("includes/Config/guestpage.config.php")) 127 | { 128 | $gpageFile = 1; 129 | } 130 | else 131 | { 132 | $gpageFile = fopen("./includes/Config/guestpage.config.php", "w+") or die($errorPermissions); 133 | 134 | $newGpage = ' 135 | "Server Tracker" , 143 | "ShowPlayersList" => 1 , 144 | "EnableStatus" => 1 145 | ); 146 | ?>'; 147 | 148 | fwrite($gpageFile, $newGpage); 149 | fclose($gpageFile); 150 | 151 | } 152 | 153 | if($newConfig && $modesFile && $gpageFile) 154 | { 155 | $lock = fopen("installed.lock", "x"); 156 | if($lock) Ok("Configuration completed! Wait.."); 157 | else die($errorPermissions); 158 | sleep(3); 159 | location("install.php"); 160 | } 161 | else 162 | { 163 | No("Unexpected error."); 164 | } 165 | } 166 | 167 | 168 | ?> -------------------------------------------------------------------------------- /views/tools.view.php: -------------------------------------------------------------------------------- 1 | 12 | 13 | EnableSSH) ? 17 | '' : "") 27 | : (($config->EnableRCON) ? 28 | "" : ""); 29 | 30 | ?> 31 | 32 | 33 | 34 |

35 | 36 |

37 |

38 | 39 | 42 | 43 |

44 |

46 | Info and players 47 |
50 | 51 | Logs & Banlist 52 | 53 |
54 | View server logs 55 | View server configuration 56 | View banlist 57 | Reset server logs 58 |
59 |
63 | 64 | Server Actions 65 | 66 |
67 | EnableRCON) {?> 68 | Restart / Next Gamemode 69 | EnableSSH) {?> 70 | Hard Server Stop (Kill Process) 71 | 72 |
73 |
77 | Bulletins Management 78 |

81 | 84 |

85 |

86 |

87 | 88 |

89 | 90 | 91 | 92 | 93 | 94 | 95 | ShowRCON) { ?> 96 | 97 | 98 | 99 | 100 | 101 | 102 | 103 | 104 | 105 | 106 |

Server IP:
Server RCON password:
Status:

107 |

108 | 109 | EnableRCON) {?> 110 | 133 | 134 | 135 | 136 |

-------------------------------------------------------------------------------- /resources/Crypt/AES.php: -------------------------------------------------------------------------------- 1 | 25 | * setKey('abcdefghijklmnop'); 31 | * 32 | * $size = 10 * 1024; 33 | * $plaintext = ''; 34 | * for ($i = 0; $i < $size; $i++) { 35 | * $plaintext.= 'a'; 36 | * } 37 | * 38 | * echo $aes->decrypt($aes->encrypt($plaintext)); 39 | * ?> 40 | * 41 | * 42 | * LICENSE: Permission is hereby granted, free of charge, to any person obtaining a copy 43 | * of this software and associated documentation files (the "Software"), to deal 44 | * in the Software without restriction, including without limitation the rights 45 | * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell 46 | * copies of the Software, and to permit persons to whom the Software is 47 | * furnished to do so, subject to the following conditions: 48 | * 49 | * The above copyright notice and this permission notice shall be included in 50 | * all copies or substantial portions of the Software. 51 | * 52 | * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR 53 | * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, 54 | * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE 55 | * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER 56 | * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, 57 | * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN 58 | * THE SOFTWARE. 59 | * 60 | * @category Crypt 61 | * @package Crypt_AES 62 | * @author Jim Wigginton 63 | * @copyright 2008 Jim Wigginton 64 | * @license http://www.opensource.org/licenses/mit-license.html MIT License 65 | * @link http://phpseclib.sourceforge.net 66 | */ 67 | 68 | /** 69 | * Include Crypt_Rijndael 70 | */ 71 | if (!class_exists('Crypt_Rijndael')) { 72 | include_once 'Rijndael.php'; 73 | } 74 | 75 | /**#@+ 76 | * @access public 77 | * @see self::encrypt() 78 | * @see self::decrypt() 79 | */ 80 | /** 81 | * Encrypt / decrypt using the Counter mode. 82 | * 83 | * Set to -1 since that's what Crypt/Random.php uses to index the CTR mode. 84 | * 85 | * @link http://en.wikipedia.org/wiki/Block_cipher_modes_of_operation#Counter_.28CTR.29 86 | */ 87 | define('CRYPT_AES_MODE_CTR', CRYPT_MODE_CTR); 88 | /** 89 | * Encrypt / decrypt using the Electronic Code Book mode. 90 | * 91 | * @link http://en.wikipedia.org/wiki/Block_cipher_modes_of_operation#Electronic_codebook_.28ECB.29 92 | */ 93 | define('CRYPT_AES_MODE_ECB', CRYPT_MODE_ECB); 94 | /** 95 | * Encrypt / decrypt using the Code Book Chaining mode. 96 | * 97 | * @link http://en.wikipedia.org/wiki/Block_cipher_modes_of_operation#Cipher-block_chaining_.28CBC.29 98 | */ 99 | define('CRYPT_AES_MODE_CBC', CRYPT_MODE_CBC); 100 | /** 101 | * Encrypt / decrypt using the Cipher Feedback mode. 102 | * 103 | * @link http://en.wikipedia.org/wiki/Block_cipher_modes_of_operation#Cipher_feedback_.28CFB.29 104 | */ 105 | define('CRYPT_AES_MODE_CFB', CRYPT_MODE_CFB); 106 | /** 107 | * Encrypt / decrypt using the Cipher Feedback mode. 108 | * 109 | * @link http://en.wikipedia.org/wiki/Block_cipher_modes_of_operation#Output_feedback_.28OFB.29 110 | */ 111 | define('CRYPT_AES_MODE_OFB', CRYPT_MODE_OFB); 112 | /**#@-*/ 113 | 114 | /** 115 | * Pure-PHP implementation of AES. 116 | * 117 | * @package Crypt_AES 118 | * @author Jim Wigginton 119 | * @access public 120 | */ 121 | class Crypt_AES extends Crypt_Rijndael 122 | { 123 | /** 124 | * The namespace used by the cipher for its constants. 125 | * 126 | * @see Crypt_Base::const_namespace 127 | * @var string 128 | * @access private 129 | */ 130 | var $const_namespace = 'AES'; 131 | 132 | /** 133 | * Dummy function 134 | * 135 | * Since Crypt_AES extends Crypt_Rijndael, this function is, technically, available, but it doesn't do anything. 136 | * 137 | * @see Crypt_Rijndael::setBlockLength() 138 | * @access public 139 | * @param int $length 140 | */ 141 | function setBlockLength($length) 142 | { 143 | return; 144 | } 145 | 146 | /** 147 | * Sets the key length 148 | * 149 | * Valid key lengths are 128, 192, and 256. If the length is less than 128, it will be rounded up to 150 | * 128. If the length is greater than 128 and invalid, it will be rounded down to the closest valid amount. 151 | * 152 | * @see Crypt_Rijndael:setKeyLength() 153 | * @access public 154 | * @param int $length 155 | */ 156 | function setKeyLength($length) 157 | { 158 | switch ($length) { 159 | case 160: 160 | $length = 192; 161 | break; 162 | case 224: 163 | $length = 256; 164 | } 165 | parent::setKeyLength($length); 166 | } 167 | 168 | /** 169 | * Sets the key. 170 | * 171 | * Rijndael supports five different key lengths, AES only supports three. 172 | * 173 | * @see Crypt_Rijndael:setKey() 174 | * @see setKeyLength() 175 | * @access public 176 | * @param string $key 177 | */ 178 | function setKey($key) 179 | { 180 | parent::setKey($key); 181 | 182 | if (!$this->explicit_key_length) { 183 | $length = strlen($key); 184 | switch (true) { 185 | case $length <= 16: 186 | $this->key_length = 16; 187 | break; 188 | case $length <= 24: 189 | $this->key_length = 24; 190 | break; 191 | default: 192 | $this->key_length = 32; 193 | } 194 | $this->_setEngine(); 195 | } 196 | } 197 | } 198 | -------------------------------------------------------------------------------- /includes/Class/Bulletins.class.php: -------------------------------------------------------------------------------- 1 | file = $singlefile; 35 | $this->time = $date[0]; 36 | $this->priority = $pr[0]; 37 | 38 | } 39 | else 40 | { 41 | No("File does not exists."); 42 | return; 43 | } 44 | } 45 | 46 | private function PriorityName() 47 | { 48 | return Priority($this->priority); 49 | } 50 | 51 | private function PriorityColor() 52 | { 53 | switch ($this->priority) { 54 | case 1: 55 | return "primary"; 56 | break; 57 | case 2: 58 | return "info"; 59 | break; 60 | case 3: 61 | return "danger"; 62 | break; 63 | default: 64 | return "secondary"; 65 | break; 66 | } 67 | } 68 | 69 | public function getContent() 70 | { 71 | $handleFile = fopen(self::folder.$this->file, "r"); 72 | $desc = fread($handleFile,filesize(self::folder.$this->file)); 73 | fclose($handleFile); 74 | return $desc; 75 | } 76 | 77 | public function Datetime($onlytime=0) 78 | { 79 | if($onlytime) 80 | return date("g:i a", $this->time); 81 | else 82 | return date("Y-m-d, g:i a", $this->time); 83 | } 84 | 85 | private function Description($inline=0) 86 | { 87 | return ($inline) ? $this->getContent() : "

".$this->getContent()."

"; 88 | } 89 | 90 | public function Date() 91 | { 92 | return date("Y-m-d", $this->time); 93 | } 94 | 95 | public function getTimestamp() 96 | { 97 | return $this->time; 98 | } 99 | 100 | public function getPriorityId() 101 | { 102 | return $this->priority; 103 | } 104 | 105 | public function View($asitem=0, $onlytime=0, $inline=0) 106 | { 107 | $Title = $this->PriorityName(); 108 | $Date = $this->Datetime($onlytime); 109 | $Description = $this->Description($inline); 110 | 111 | if($asitem) echo "

"; 112 | echo $Title." ".$Date." ".$Description; 113 | if($asitem) echo "

"; 114 | } 115 | } 116 | 117 | 118 | 119 | class Status 120 | { 121 | const folder = "./store/"; 122 | 123 | private $bulletins = array(); 124 | 125 | public function __construct() 126 | { 127 | $this->bulletins = array_diff(scandir(self::folder), array('..', '.')); 128 | } 129 | 130 | public function getLastBulletin() 131 | { 132 | arsort($this->bulletins); 133 | foreach($this->bulletins as $file) 134 | { 135 | return $file; 136 | break; 137 | } 138 | } 139 | 140 | public function ListNormal($maxnum=0) 141 | { 142 | echo "

"; 143 | arsort($this->bulletins); 144 | if($maxnum) $this->bulletins = array_slice($this->bulletins, 0, $maxnum); 145 | foreach ($this->bulletins as $file) 146 | { 147 | $bulletin = new Bulletin($file); 148 | $bulletin->View(1, 0, 1); 149 | } 150 | echo ""; 151 | } 152 | 153 | public function getTotalBulletins() 154 | { 155 | return count($this->bulletins); 156 | } 157 | 158 | private function OrderByPriority($ord) 159 | { 160 | // 0 == from highest 161 | // 1 == from lowest 162 | 163 | foreach ($this->bulletins as &$file) 164 | { 165 | $ex = explode("_", $file); 166 | $file = $ex[1]."_".$ex[0]; 167 | } 168 | 169 | if(!$ord) arsort($this->bulletins); 170 | else asort($this->bulletins); 171 | 172 | foreach ($this->bulletins as &$file) 173 | { 174 | $ex = explode("_", $file); 175 | $file = $ex[1]."_".$ex[0]; 176 | } 177 | } 178 | 179 | public function ListAdmin($ord=0) 180 | { 181 | echo "

Edit 193 | Delete » "; 194 | $bulletin->View(0, 0, 1); 195 | echo "

"; 198 | } 199 | 200 | public function ShowStatusBar($days) 201 | { 202 | $width = (100 / $days); 203 | 204 | echo "

"; 205 | for($i=$days; $i>=0; $i--) 206 | { 207 | $time = time()-(86400*$i); 208 | $comp = date("Y-m-d", $time); 209 | $color = "success"; 210 | foreach ($this->bulletins as $file) 211 | { 212 | $bulletin = new Bulletin($file); 213 | $filedate = $bulletin->Date(); 214 | if($filedate == $comp) 215 | { 216 | $color = "warning"; 217 | break; 218 | } 219 | else 220 | continue; 221 | } 222 | 223 | $AnyBulletins = $comp.": "; 224 | $AnyBulletins .= $color=="success" ? "No incidents reported." : "Some bulletins have been submitted!"; 225 | echo '

'; 226 | } 227 | echo "

"; 228 | echo "

Last ".$days." days

"; 229 | echo "

Today

"; 230 | } 231 | 232 | public function ListAsCalendar($days) 233 | { 234 | for($i=0; $i<$days; $i++) 235 | { 236 | $time = time()-(86400*$i); 237 | $day = date("M d, Y", $time); 238 | $comp = date("Y-m-d", $time); 239 | $flag = 0; 240 | if($day == date("M d, Y")) $day .= " (today)"; 241 | echo "

242 |

".$day."

243 | Back to the top ↑ 244 |

245 |

"; 246 | foreach ($this->bulletins as $file) 247 | { 248 | $bulletin = new Bulletin($file); 249 | $filedate = $bulletin->Date(); 250 | if($filedate == $comp) 251 | { 252 | $bulletin->View(0, 1); 253 | if(!$flag) $flag = 1; 254 | } 255 | } 256 | if(!$flag) echo "

No bulletins submitted.

"; 257 | echo "
"; 258 | } 259 | } 260 | 261 | } 262 | 263 | 264 | 265 | 266 | 267 | ?> -------------------------------------------------------------------------------- /includes/Class/SampQuery.class.php: -------------------------------------------------------------------------------- 1 | 29 | $this->server = $server; 30 | $this->port = $port; 31 | 32 | $this->sock = fsockopen("udp://".$this->server, $this->port, $errorNum, $errorString, 2); 33 | socket_set_timeout($this->sock, 2); 34 | // 35 | } 36 | 37 | /** 38 | * Returns an array of server information. 39 | * @return Array[] 40 | * ( 41 | * [password] => 0 or 1 42 | * [players] => players 43 | * [maxplayers] => maxPlayers 44 | * [hostname] => hostName 45 | * [gamemode] => gamemode 46 | * [map] => map 47 | * ) 48 | */ 49 | public function getInfo() { 50 | // 51 | @fwrite($this->sock, $this->assemblePacket("i")); 52 | 53 | fread($this->sock, 11); 54 | 55 | $serverInfo = array(); 56 | 57 | $serverInfo['password'] = (integer) ord(fread($this->sock, 1)); 58 | 59 | $serverInfo['players'] = (integer) $this->toInt(fread($this->sock, 2)); 60 | 61 | $serverInfo['maxplayers'] = (integer) $this->toInt(fread($this->sock, 2)); 62 | 63 | $strLen = ord(fread($this->sock, 4)); 64 | if(!$strLen) return -1; 65 | 66 | $serverInfo['hostname'] = (string) fread($this->sock, $strLen); 67 | 68 | $strLen = ord(fread($this->sock, 4)); 69 | $serverInfo['gamemode'] = (string) fread($this->sock, $strLen); 70 | 71 | $strLen = ord(fread($this->sock, 4)); 72 | $serverInfo['map'] = (string) fread($this->sock, $strLen); 73 | 74 | return $serverInfo; 75 | // 76 | } 77 | 78 | 79 | /** 80 | * Returns a multidimensional array of basic player information. 81 | * @return Array[] 82 | * ( 83 | * [0] => Array[] 84 | * ( 85 | * [name] => playerName 86 | * [score] => score 87 | * ) 88 | * ... 89 | * ) 90 | * @see getDetailedPlayers() 91 | */ 92 | public function getBasicPlayers() { 93 | // 94 | @fwrite($this->sock, $this->assemblePacket("c")); 95 | fread($this->sock, 11); 96 | 97 | $playerCount = ord(fread($this->sock, 2)); 98 | $players = array(); 99 | 100 | if($playerCount > 0) { 101 | for($i = 0; $i < $playerCount; ++$i) { 102 | $strLen = ord(fread($this->sock, 1)); 103 | $players[$i] = array 104 | ( 105 | "name" => (string) fread($this->sock, $strLen), 106 | "score" => (integer) $this->toInt(fread($this->sock, 4)), 107 | ); 108 | } 109 | } 110 | return $players; 111 | // 112 | } 113 | 114 | 115 | /** 116 | * Returns a multidimensional array of detailed player information. 117 | * @return Array[] 118 | * ( 119 | * [0] => Array 120 | * ( 121 | * [playerid] => playerid 122 | * [nickname] => playername 123 | * [score] => score 124 | * [ping] => pinh 125 | * ) 126 | * ... 127 | * ) 128 | * @see getBasicPlayers() 129 | */ 130 | public function getDetailedPlayers() { 131 | // 132 | @fwrite($this->sock, $this->assemblePacket("d")); 133 | fread($this->sock, 11); 134 | 135 | $playerCount = ord(fread($this->sock, 2)); 136 | $players = array(); 137 | 138 | for($i = 0; $i < $playerCount; ++$i) { 139 | $player['playerid'] = (integer) ord(fread($this->sock, 1)); 140 | 141 | $strLen = ord(fread($this->sock, 1)); 142 | $player['nickname'] = (string) fread($this->sock, $strLen); 143 | 144 | $player['score'] = (integer) $this->toInt(fread($this->sock, 4)); 145 | $player['ping'] = (integer) $this->toInt(fread($this->sock, 4)); 146 | 147 | $players[$i] = $player; 148 | unset($player); 149 | } 150 | return $players; 151 | // 152 | } 153 | 154 | 155 | /** 156 | * Returns an array of server rules. 157 | * @return Array[] 158 | * ( 159 | * [gravity] => gravity 160 | * [mapname] => map 161 | * [version] => version 162 | * [weather] => weather 163 | * [weburl] => weburl 164 | * [worldtime] => worldtime 165 | * ) 166 | */ 167 | public function getRules() { 168 | // 169 | @fwrite($this->sock, $this->assemblePacket("r")); 170 | fread($this->sock, 11); 171 | 172 | $ruleCount = ord(fread($this->sock, 2)); 173 | $rules = array(); 174 | 175 | for($i = 0; $i< $ruleCount; ++$i) { 176 | $strLen = ord(fread($this->sock, 1)); 177 | $rule = (string) fread($this->sock, $strLen); 178 | 179 | $strLen = ord(fread($this->sock, 1)); 180 | $rules[$rule] = (string) fread($this->sock, $strLen); 181 | } 182 | return $rules; 183 | // 184 | } 185 | 186 | /** 187 | * Returns the server's ping. 188 | * @return integer 189 | */ 190 | public function getPing() { 191 | // 192 | $ping = 0; 193 | $beforeSend = microtime(true); 194 | @fwrite($this->sock, $this->assemblePacket("r")); 195 | fread($this->sock, 15); 196 | $afterReceive = microtime(true); 197 | 198 | $ping = ($afterReceive - $beforeSend) * 1000; 199 | 200 | return round($ping); 201 | // 202 | } 203 | 204 | /** 205 | * Converts a string to an integer 206 | * 207 | * @param String $string 208 | * @return int|null 209 | */ 210 | private function toInt($string) { 211 | // 212 | if($string === "") { 213 | return null; 214 | } 215 | 216 | $int = 0; 217 | $int += (ord($string[0])); 218 | 219 | if(isset($string[1])) { 220 | $int += (ord($string[1]) << 8); 221 | } 222 | 223 | if(isset($string[2])) { 224 | $int += (ord($string[2]) << 16); 225 | } 226 | 227 | if(isset($string[3])) { 228 | $int += (ord($string[3]) << 24); 229 | } 230 | 231 | if($int >= 4294967294) { 232 | $int -= 4294967296; 233 | } 234 | return $int; 235 | // 236 | } 237 | 238 | /** 239 | * Assembles a packet, ready for sending 240 | * 241 | * @param char $type 242 | * @return String 243 | */ 244 | private function assemblePacket($type) { 245 | // 246 | $packet = "SAMP"; 247 | $packet .= chr(strtok($this->server, ".")); 248 | $packet .= chr(strtok(".")); 249 | $packet .= chr(strtok(".")); 250 | $packet .= chr(strtok(".")); 251 | $packet .= chr($this->port & 0xFF); 252 | $packet .= chr($this->port >> 8 & 0xFF); 253 | $packet .= $type; 254 | 255 | return $packet; 256 | // 257 | } 258 | 259 | /** 260 | * Attempts to connect to the server and returns whether it was successful. 261 | * @return boolean 262 | */ 263 | public function connect() { 264 | // 265 | $connected = false; 266 | fwrite($this->sock, $this->assemblePacket("p0101")); 267 | 268 | if(fread($this->sock, 10)) { 269 | if(fread($this->sock, 5) == 'p0101') { 270 | $connected = true; 271 | } 272 | } 273 | return $connected; 274 | // 275 | } 276 | 277 | /** 278 | * Closes the connection 279 | */ 280 | public function close() { 281 | @fclose($this->sock); 282 | } 283 | } -------------------------------------------------------------------------------- /includes/Class/QueryServer.class.php: -------------------------------------------------------------------------------- 1 | szServerIP = $this->VerifyAddress( $szServerIP ); 35 | $this->iPort = $iPort; 36 | 37 | if (empty( $this->szServerIP ) || !is_numeric( $iPort )) { 38 | throw new QueryServerException( 'Either the ip-address or the port isn\'t filled in correctly.' ); 39 | } 40 | 41 | $this->rSocketID = @fsockopen( 'udp://' . $this->szServerIP, $iPort, $iErrorNo, $szErrorStr, 5 ); 42 | if (!$this->rSocketID) { 43 | throw new QueryServerException( 'Cannot connect to the server: ' . $szErrorStr ); 44 | } 45 | 46 | socket_set_timeout( $this->rSocketID, 0, 500000 ); 47 | $this->bStatus = true; 48 | } 49 | 50 | // The VerifyAddress function verifies the given hostname/ 51 | // IP address and returns the actual IP Address. 52 | function VerifyAddress( $szServerIP ) 53 | { 54 | if (ip2long( $szServerIP ) !== false && 55 | long2ip( ip2long( $szServerIP ) ) == $szServerIP ) { 56 | return $szServerIP; 57 | } 58 | 59 | $szAddress = gethostbyname( $szServerIP ); 60 | if ($szAddress == $szServerIP) { 61 | return ""; 62 | } 63 | 64 | return $szAddress; 65 | } 66 | 67 | // The SendPacket function sends a packet to the server which 68 | // requests information, based on the type of packet send. 69 | function SendPacket( $cPacket ) 70 | { 71 | $szPacket = 'SAMP'; 72 | $aIpChunks = explode( '.', $this->szServerIP ); 73 | 74 | foreach( $aIpChunks as $szChunk ) { 75 | $szPacket .= chr( $szChunk ); 76 | } 77 | 78 | $szPacket .= chr( $this->iPort & 0xFF ); 79 | $szPacket .= chr( $this->iPort >> 8 & 0xFF ); 80 | $szPacket .= $cPacket; 81 | 82 | return fwrite( $this->rSocketID, $szPacket, strlen( $szPacket ) ); 83 | } 84 | 85 | // The GetPacket() function returns a specific number of bytes 86 | // read from the socket. This uses a special way of getting stuff. 87 | function GetPacket( $iBytes ) 88 | { 89 | $iResponse = fread( $this->rSocketID, $iBytes ); 90 | if ($iResponse === false) { 91 | throw new QueryServerException( 'Connection to ' . $this->szServerIP . ' failed or has dropped.' ); 92 | } 93 | 94 | $iLength = ord( $iResponse ); 95 | if ($iLength > 0) 96 | return fread( $this->rSocketID, $iLength ); 97 | 98 | return ""; 99 | } 100 | 101 | // After we're done, the connection needs to be closed using 102 | // the Close() function. Otherwise stuff might go wrong. 103 | function Close( ) 104 | { 105 | if ($this->rSocketID !== false) { 106 | fclose( $this->rSocketID ); 107 | } 108 | } 109 | 110 | // A little function that's needed to properly convert the 111 | // four bytes we're recieving to integers to an actual PHP 112 | // integer. ord() can't handle value's higher then 255. 113 | function toInteger( $szData ) 114 | { 115 | $iInteger = 0; 116 | 117 | $iInteger += ( ord( @$szData[ 0 ] ) ); 118 | $iInteger += ( ord( @$szData[ 1 ] ) << 8 ); 119 | $iInteger += ( ord( @$szData[ 2 ] ) << 16 ); 120 | $iInteger += ( ord( @$szData[ 3 ] ) << 24 ); 121 | 122 | if( $iInteger >= 4294967294 ) 123 | $iInteger -= 4294967296; 124 | 125 | return $iInteger; 126 | } 127 | 128 | // The GetInfo() function returns basic information about the 129 | // server, like the hostname, number of players online etc. 130 | function GetInfo( ) 131 | { 132 | if ($this->SendPacket('i') === false) { 133 | throw new QueryServerException( 'Connection to ' . $this->szServerIP . ' failed or has dropped.' ); 134 | } 135 | 136 | $szFirstData = fread( $this->rSocketID, 4 ); 137 | if (empty( $szFirstData ) || $szFirstData != 'SAMP') { 138 | throw new QueryServerException( 'The server is not a SA-MP Server.' ); //at ' . $this->szServerIP . ' 139 | } 140 | 141 | // Pop the first seven characters returned. 142 | fread( $this->rSocketID, 7 ); 143 | 144 | return array ( 145 | 'Password' => ord( fread( $this->rSocketID, 1 ) ), 146 | 'Players' => $this->toInteger( fread( $this->rSocketID, 2 ) ), 147 | 'MaxPlayers' => $this->toInteger( fread( $this->rSocketID, 2 ) ), 148 | 'Hostname' => $this->GetPacket( 4 ), 149 | 'Gamemode' => $this->GetPacket( 4 ), 150 | 'Map' => $this->GetPacket( 4 ) 151 | ); 152 | } 153 | 154 | // The GetRules() function returns the rules which are set 155 | // on the server, e.g. the gravity, version etcetera. 156 | function GetRules( ) 157 | { 158 | if ($this->SendPacket('r') === false) { 159 | throw new QueryServerException( 'Connection to ' . $this->szServerIP . ' failed or has dropped.' ); 160 | } 161 | 162 | // Pop the first 11 bytes from the response; 163 | fread( $this->rSocketID, 11 ); 164 | 165 | $iRuleCount = ord( fread( $this->rSocketID, 2 ) ); 166 | $aReturnArray = array( ); 167 | 168 | for( $i = 0; $i < $iRuleCount; $i ++ ) { 169 | $szRuleName = $this->GetPacket( 1 ); 170 | $aReturnArray[ $szRuleName ] = $this->GetPacket( 1 ); 171 | } 172 | 173 | return $aReturnArray; 174 | } 175 | 176 | // The GetPlayers() function is pretty much simelar to the 177 | // detailed function, but faster and contains less information. 178 | function GetPlayers( ) 179 | { 180 | if ($this->SendPacket('c') === false) { 181 | throw new QueryServerException( 'Connection to ' . $this->szServerIP . ' failed or has dropped.' ); 182 | } 183 | 184 | // Again, pop the first eleven bytes send; 185 | fread( $this->rSocketID, 11 ); 186 | 187 | $iPlayerCount = ord( fread( $this->rSocketID, 2 ) ); 188 | $aReturnArray = array( ); 189 | 190 | for( $i = 0; $i < $iPlayerCount; $i ++ ) 191 | { 192 | $aReturnArray[ ] = array ( 193 | 'Nickname' => $this->GetPacket( 1 ), 194 | 'Score' => $this->toInteger( fread( $this->rSocketID, 4 ) ) 195 | ); 196 | } 197 | 198 | return $aReturnArray; 199 | } 200 | 201 | // The GetDetailedPlayers() function returns the player list, 202 | // but in a detailed form inclusing the score and the ping. 203 | function GetDetailedPlayers( ) 204 | { 205 | if ($this->SendPacket('d') === false) { 206 | throw new QueryServerException( 'Connection to ' . $this->szServerIP . ' failed or has dropped.' ); 207 | } 208 | 209 | // Skip the first 11 bytes of the response; 210 | fread( $this->rSocketID, 11 ); 211 | 212 | $iPlayerCount = ord( fread( $this->rSocketID, 2 ) ); 213 | $aReturnArray = array( ); 214 | 215 | for( $i = 0; $i < $iPlayerCount; $i ++ ) { 216 | $aReturnArray[ ] = array( 217 | 'PlayerID' => $this->toInteger( fread( $this->rSocketID, 1 ) ), 218 | 'Nickname' => $this->GetPacket( 1 ), 219 | 'Score' => $this->toInteger( fread( $this->rSocketID, 4 ) ), 220 | 'Ping' => $this->toInteger( fread( $this->rSocketID, 4 ) ) 221 | ); 222 | } 223 | 224 | return $aReturnArray; 225 | } 226 | 227 | function RCON($rcon, $command) 228 | { 229 | echo 'Password '.$rcon.' with '.$command; 230 | if ($this->SendPacket('x '.$rcon.' '.$command) === false) { 231 | throw new QueryServerException( 'Connection to ' . $this->szServerIP . ' failed or has dropped.' ); 232 | } 233 | 234 | // Pop the first 11 bytes from the response; 235 | $aReturnArray = fread( $this->rSocketID, 11 ); 236 | 237 | echo fread( $this->rSocketID, 11 ); 238 | 239 | return $aReturnArray; 240 | } 241 | 242 | } 243 | 244 | /********************************************* 245 | * 246 | * The QueryServerException is used to throw errors when querying 247 | * a specific server. That way we force the user to use proper 248 | * error-handling, and preferably even a try-/catch statement. 249 | * 250 | **********************************************/ 251 | 252 | class QueryServerException extends Exception 253 | { 254 | // The actual error message is stored in this variable. 255 | private $szMessage; 256 | 257 | // Again, the __construct function gets called as soon 258 | // as the exception is being thrown, in here we copy the message. 259 | function __construct( $szMessage ) 260 | { 261 | $this->szMessage = $szMessage; 262 | } 263 | 264 | // In order to read the exception being thrown, we have 265 | // a .NET-like toString() function, which returns the message. 266 | function toString( ) 267 | { 268 | return $this->szMessage; 269 | } 270 | } 271 | ?> -------------------------------------------------------------------------------- /controllers/server-actions.ctrl.php: -------------------------------------------------------------------------------- 1 | EnableSSH) 22 | { 23 | $ssh = new Net_SSH2(IP_SERVER); 24 | if (!$ssh->login(SERVER_SSH_USER, SERVER_SSH_PSW)) 25 | exit(No('Host access refused!')); 26 | $response = $ssh->exec('pgrep samp03svr'); 27 | if($response && $_POST['start']) No("The server is already running! You can use Force start, if you're running multiple server. Please, if you notice any small issue consider to Hard Stop the SA-MP server, by killing all SA-MP processes."); 28 | elseif((!$response && $_POST['start']) || $_POST['forcestart']) 29 | { 30 | $ssh->exec('cd '.SERVER_SSH_PATH.'; nohup ./samp03svr &'); 31 | Ok("Server started! Reload the page"); 32 | } 33 | } 34 | elseif(isset($_POST['stop']) && $config->EnableRCON) 35 | { 36 | $query = new SampRcon(IP_SERVER, PORT_SERVER, RCON_SERVER); 37 | if(!$query->connect()) die(No("Connection error. Retry.",1)); 38 | $query->call("say {c726e0} [SRC] {FFFFFF}The server is turning off. You're going to be drop-kicked by Chuck Norris soon.", 1); 39 | $query->call("exit", 2); 40 | $query->close(); 41 | Ok("Server stopped! Reload the page"); 42 | } 43 | elseif(isset($_GET['gmx']) && $config->EnableRCON) 44 | { 45 | $query = new SampRcon(IP_SERVER, PORT_SERVER, RCON_SERVER); 46 | if(!$query->connect()) return "Connection error. Retry."; 47 | $query->call("say {c726e0}[SRC] {FFFFFF}The server is changing mode. Please, consider to relog.", 1); 48 | $query->gmx(); 49 | $query->close(); 50 | Ok("Changing mode... done! Reload the page"); 51 | } 52 | elseif(isset($_GET['viewcfg']) && $config->EnableSSH) 53 | { 54 | echo "

Server Configuration

";
 60 | 				$File = $ssh->exec('cd '.SERVER_SSH_PATH.'; cat server.cfg'); 
 61 | 				if($config->ShowRCON) echo $File;
 62 | 				else
 63 | 				{
 64 | 					$Line = preg_split('/\r\n|\r|\n/', $File);
 65 | 					foreach($Line as $L) 
 66 | 						if(!(strpos($L, "rcon_password") !== false)) echo $L."\n";
 67 | 						else echo "*** RCON has been hidden as of SRC configuration ***\n";
 68 | 					
 69 | 				}
 70 | 				echo "

"; 71 | } 72 | elseif(isset($_GET['viewbans']) && $config->EnableSSH) 73 | { 74 | echo "

Server Banlist

";
 80 | 				echo $ssh->exec('cd '.SERVER_SSH_PATH.'; cat samp.ban'); 
 81 | 				echo "

"; 82 | } 83 | elseif(isset($_GET['viewlogs']) && $config->EnableSSH) 84 | { 85 | echo "

Server Logs

";
 91 | 				echo $ssh->exec('cd '.SERVER_SSH_PATH.'; cat server_log.txt'); 
 92 | 				echo "

93 | "; 95 | } 96 | elseif(isset($_GET['resetlogs']) && $config->EnableSSH) 97 | { 98 | $ssh = new Net_SSH2(IP_SERVER); 99 | if (!$ssh->login(SERVER_SSH_USER, SERVER_SSH_PSW)) 100 | exit(No('Host access refused!')); 101 | echo $ssh->exec('cd '.SERVER_SSH_PATH.'; rm server_log.txt; touch server_log.txt'); 102 | Ok("Server logs cleaned!"); 103 | } 104 | elseif(isset($_GET['hardstop']) && $config->EnableSSH) 105 | { 106 | $ssh = new Net_SSH2(IP_SERVER); 107 | if (!$ssh->login(SERVER_SSH_USER, SERVER_SSH_PSW)) 108 | exit(No('Host access refused!')); 109 | $ssh->exec('pkill -f samp03svr'); 110 | Ok("Server Process Killed! Reload the page"); 111 | } 112 | } 113 | elseif($a == "rcon" && $config->EnableRCON) 114 | { 115 | 116 | $query = new SampRcon(IP_SERVER, PORT_SERVER, RCON_SERVER); 117 | if(!$query->connect()) die(No("Connection error. Retry.",1)); 118 | 119 | $text = $_POST['mex']; 120 | 121 | switch ((int)$_POST['cmd']) 122 | { 123 | case 1: 124 | $query->call("say {c726e0}[SRC] {FFFFFF}".$text, 1); 125 | $cmd = "say"; 126 | break; 127 | case 2: 128 | if($text == 0 || filter_var($text, FILTER_VALIDATE_INT)) 129 | $query->kick($text); 130 | else 131 | die(No("This is not a valid ID, retry.", 1)); 132 | $cmd = "kick"; 133 | break; 134 | case 3: 135 | if($text == 0 || filter_var($text, FILTER_VALIDATE_INT)) 136 | { 137 | $query->ban($text); 138 | $query->reloadBans(); 139 | } 140 | else 141 | die(No("This is not a valid ID, retry.", 1)); 142 | $cmd = "ban"; 143 | break; 144 | case 4: 145 | if(filter_var($text, FILTER_VALIDATE_IP)) 146 | { 147 | $query->banAddress($text); 148 | $query->reloadBans(); 149 | } 150 | else 151 | die(No("This is not a valid IP, retry.", 1)); 152 | $cmd = "banip"; 153 | break; 154 | case 5: 155 | if(filter_var($text, FILTER_VALIDATE_IP)) 156 | { 157 | $query->unbanAddress($text); 158 | $query->reloadBans(); 159 | } 160 | else 161 | die(No("This is not a valid IP, retry.", 1)); 162 | $cmd = "unbanip"; 163 | break; 164 | case 6: 165 | $query->setGameModeText($text); 166 | $cmd = "gamemodetext"; 167 | break; 168 | case 7: 169 | $query->setHostName($text); 170 | $cmd = "hostname"; 171 | break; 172 | case 8: 173 | $query->setPassword($text); 174 | $cmd = "password"; 175 | break; 176 | case 9: 177 | $query->removePassword(); 178 | $cmd = "password 0"; 179 | break; 180 | case 10: 181 | $query->setURL($text); 182 | $cmd = "weburl"; 183 | break; 184 | case 11: 185 | $query->call("language ".$text, 1); 186 | $cmd = "language"; 187 | break; 188 | case 12: 189 | $query->setMapName($text); 190 | $cmd = "mapname"; 191 | break; 192 | default: 193 | die(No("Command not found.")); 194 | break; 195 | } 196 | 197 | Ok("RCON command sent: /rcon ".$cmd." ".$text.""); 198 | $query->close(); 199 | 200 | } 201 | elseif($a == "kickPlayer" && $config->EnableRCON) 202 | { 203 | $name = $_GET['name']; 204 | $query = new SampRcon(IP_SERVER, PORT_SERVER, RCON_SERVER); 205 | if(!$query->connect()) return "Connection error. Retry."; 206 | $query->call("say {c726e0}[KICK-SRC] {FFFFFF} The player $name has been kicked from the server.", 1); 207 | $query->call("kick $id", 5); 208 | $query->close(); 209 | Ok("The player $name has been kicked successfully."); 210 | } 211 | elseif($a == "banPlayer" && $config->EnableRCON) 212 | { 213 | $name = $_GET['name']; 214 | $query = new SampRcon(IP_SERVER, PORT_SERVER, RCON_SERVER); 215 | if(!$query->connect()) return "Connection error. Retry."; 216 | $query->call("say {c726e0}[BAN-SRC] {FFFFFF} The player $name has been banned from the server.", 1); 217 | $query->call("ban $id", 5); 218 | $query->reloadBans(); 219 | $query->close(); 220 | Ok("The player $name has been banned successfully."); 221 | } 222 | elseif($a == "info") 223 | { 224 | 225 | $query = new SampQuery(IP_SERVER, PORT_SERVER); 226 | 227 | 228 | if ($query->connect()) 229 | { 230 | echo "

Server information

"; 231 | 232 | Ok("Connection established

"); 233 | 234 | echo "

"; 235 | echo "

".ucfirst($key).": $value

"; 242 | echo "

".ucfirst($key).": $value

"; 246 | echo "

"; 247 | 248 | echo "

Online players

249 |

250 | 251 | 252 | 253 | 254 | "; 255 | 256 | if($config->EnableRCON) echo ""; 257 | 258 | echo " 259 | 260 | "; 261 | $players = $query->getDetailedPlayers(); 262 | $fieldsnum = $config->EnableRCON ? 5 : 4; 263 | 264 | if(!count($players)) 265 | { 266 | echo ""; 267 | } 268 | else 269 | foreach($players as $arr) 270 | { 271 | $id = 0; 272 | $name = ""; 273 | echo " "; 274 | foreach($arr as $key => $value) 275 | { 276 | if($key == "playerid") $id = $value; 277 | if($key == "nickname") $name = $value; 278 | echo ""; 279 | } 280 | 281 | if($config->EnableRCON) echo ""; 282 | echo ""; 283 | } 284 | echo "

PlayerID	Nickname	Score	Ping	Options
The server is actually empty or has more than 50 players connected.
$value	Kick Ban

"; 285 | 286 | } 287 | else 288 | No("The server is not responding! It may be offline.
"); 289 | 290 | 291 | $query->close(); 292 | 293 | 294 | echo "

"; 295 | } 296 | 297 | ?> -------------------------------------------------------------------------------- /resources/Crypt/RC4.php: -------------------------------------------------------------------------------- 1 | 20 | * setKey('abcdefgh'); 26 | * 27 | * $size = 10 * 1024; 28 | * $plaintext = ''; 29 | * for ($i = 0; $i < $size; $i++) { 30 | * $plaintext.= 'a'; 31 | * } 32 | * 33 | * echo $rc4->decrypt($rc4->encrypt($plaintext)); 34 | * ?> 35 | * 36 | * 37 | * LICENSE: Permission is hereby granted, free of charge, to any person obtaining a copy 38 | * of this software and associated documentation files (the "Software"), to deal 39 | * in the Software without restriction, including without limitation the rights 40 | * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell 41 | * copies of the Software, and to permit persons to whom the Software is 42 | * furnished to do so, subject to the following conditions: 43 | * 44 | * The above copyright notice and this permission notice shall be included in 45 | * all copies or substantial portions of the Software. 46 | * 47 | * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR 48 | * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, 49 | * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE 50 | * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER 51 | * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, 52 | * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN 53 | * THE SOFTWARE. 54 | * 55 | * @category Crypt 56 | * @package Crypt_RC4 57 | * @author Jim Wigginton 58 | * @copyright 2007 Jim Wigginton 59 | * @license http://www.opensource.org/licenses/mit-license.html MIT License 60 | * @link http://phpseclib.sourceforge.net 61 | */ 62 | 63 | /** 64 | * Include Crypt_Base 65 | * 66 | * Base cipher class 67 | */ 68 | if (!class_exists('Crypt_Base')) { 69 | include_once 'Base.php'; 70 | } 71 | 72 | /**#@+ 73 | * @access private 74 | * @see self::_crypt() 75 | */ 76 | define('CRYPT_RC4_ENCRYPT', 0); 77 | define('CRYPT_RC4_DECRYPT', 1); 78 | /**#@-*/ 79 | 80 | /** 81 | * Pure-PHP implementation of RC4. 82 | * 83 | * @package Crypt_RC4 84 | * @author Jim Wigginton 85 | * @access public 86 | */ 87 | class Crypt_RC4 extends Crypt_Base 88 | { 89 | /** 90 | * Block Length of the cipher 91 | * 92 | * RC4 is a stream cipher 93 | * so we the block_size to 0 94 | * 95 | * @see Crypt_Base::block_size 96 | * @var int 97 | * @access private 98 | */ 99 | var $block_size = 0; 100 | 101 | /** 102 | * Key Length (in bytes) 103 | * 104 | * @see Crypt_RC4::setKeyLength() 105 | * @var int 106 | * @access private 107 | */ 108 | var $key_length = 128; // = 1024 bits 109 | 110 | /** 111 | * The namespace used by the cipher for its constants. 112 | * 113 | * @see Crypt_Base::const_namespace 114 | * @var string 115 | * @access private 116 | */ 117 | var $const_namespace = 'RC4'; 118 | 119 | /** 120 | * The mcrypt specific name of the cipher 121 | * 122 | * @see Crypt_Base::cipher_name_mcrypt 123 | * @var string 124 | * @access private 125 | */ 126 | var $cipher_name_mcrypt = 'arcfour'; 127 | 128 | /** 129 | * Holds whether performance-optimized $inline_crypt() can/should be used. 130 | * 131 | * @see Crypt_Base::inline_crypt 132 | * @var mixed 133 | * @access private 134 | */ 135 | var $use_inline_crypt = false; // currently not available 136 | 137 | /** 138 | * The Key 139 | * 140 | * @see self::setKey() 141 | * @var string 142 | * @access private 143 | */ 144 | var $key; 145 | 146 | /** 147 | * The Key Stream for decryption and encryption 148 | * 149 | * @see self::setKey() 150 | * @var array 151 | * @access private 152 | */ 153 | var $stream; 154 | 155 | /** 156 | * Default Constructor. 157 | * 158 | * Determines whether or not the mcrypt extension should be used. 159 | * 160 | * @see Crypt_Base::Crypt_Base() 161 | * @return Crypt_RC4 162 | * @access public 163 | */ 164 | function __construct() 165 | { 166 | parent::__construct(CRYPT_MODE_STREAM); 167 | } 168 | 169 | /** 170 | * PHP4 compatible Default Constructor. 171 | * 172 | * @see self::__construct() 173 | * @access public 174 | */ 175 | function Crypt_RC4() 176 | { 177 | $this->__construct(); 178 | } 179 | 180 | /** 181 | * Test for engine validity 182 | * 183 | * This is mainly just a wrapper to set things up for Crypt_Base::isValidEngine() 184 | * 185 | * @see Crypt_Base::Crypt_Base() 186 | * @param int $engine 187 | * @access public 188 | * @return bool 189 | */ 190 | function isValidEngine($engine) 191 | { 192 | if ($engine == CRYPT_ENGINE_OPENSSL) { 193 | if (version_compare(PHP_VERSION, '5.3.7') >= 0) { 194 | $this->cipher_name_openssl = 'rc4-40'; 195 | } else { 196 | switch (strlen($this->key)) { 197 | case 5: 198 | $this->cipher_name_openssl = 'rc4-40'; 199 | break; 200 | case 8: 201 | $this->cipher_name_openssl = 'rc4-64'; 202 | break; 203 | case 16: 204 | $this->cipher_name_openssl = 'rc4'; 205 | break; 206 | default: 207 | return false; 208 | } 209 | } 210 | } 211 | 212 | return parent::isValidEngine($engine); 213 | } 214 | 215 | /** 216 | * Dummy function. 217 | * 218 | * Some protocols, such as WEP, prepend an "initialization vector" to the key, effectively creating a new key [1]. 219 | * If you need to use an initialization vector in this manner, feel free to prepend it to the key, yourself, before 220 | * calling setKey(). 221 | * 222 | * [1] WEP's initialization vectors (IV's) are used in a somewhat insecure way. Since, in that protocol, 223 | * the IV's are relatively easy to predict, an attack described by 224 | * {@link http://www.drizzle.com/~aboba/IEEE/rc4_ksaproc.pdf Scott Fluhrer, Itsik Mantin, and Adi Shamir} 225 | * can be used to quickly guess at the rest of the key. The following links elaborate: 226 | * 227 | * {@link http://www.rsa.com/rsalabs/node.asp?id=2009 http://www.rsa.com/rsalabs/node.asp?id=2009} 228 | * {@link http://en.wikipedia.org/wiki/Related_key_attack http://en.wikipedia.org/wiki/Related_key_attack} 229 | * 230 | * @param string $iv 231 | * @see self::setKey() 232 | * @access public 233 | */ 234 | function setIV($iv) 235 | { 236 | } 237 | 238 | /** 239 | * Sets the key length 240 | * 241 | * Keys can be between 1 and 256 bytes long. 242 | * 243 | * @access public 244 | * @param int $length 245 | */ 246 | function setKeyLength($length) 247 | { 248 | if ($length < 8) { 249 | $this->key_length = 1; 250 | } elseif ($length > 2048) { 251 | $this->key_length = 256; 252 | } else { 253 | $this->key_length = $length >> 3; 254 | } 255 | 256 | parent::setKeyLength($length); 257 | } 258 | 259 | /** 260 | * Encrypts a message. 261 | * 262 | * @see Crypt_Base::decrypt() 263 | * @see self::_crypt() 264 | * @access public 265 | * @param string $plaintext 266 | * @return string $ciphertext 267 | */ 268 | function encrypt($plaintext) 269 | { 270 | if ($this->engine != CRYPT_ENGINE_INTERNAL) { 271 | return parent::encrypt($plaintext); 272 | } 273 | return $this->_crypt($plaintext, CRYPT_RC4_ENCRYPT); 274 | } 275 | 276 | /** 277 | * Decrypts a message. 278 | * 279 | * $this->decrypt($this->encrypt($plaintext)) == $this->encrypt($this->encrypt($plaintext)). 280 | * At least if the continuous buffer is disabled. 281 | * 282 | * @see Crypt_Base::encrypt() 283 | * @see self::_crypt() 284 | * @access public 285 | * @param string $ciphertext 286 | * @return string $plaintext 287 | */ 288 | function decrypt($ciphertext) 289 | { 290 | if ($this->engine != CRYPT_ENGINE_INTERNAL) { 291 | return parent::decrypt($ciphertext); 292 | } 293 | return $this->_crypt($ciphertext, CRYPT_RC4_DECRYPT); 294 | } 295 | 296 | 297 | /** 298 | * Setup the key (expansion) 299 | * 300 | * @see Crypt_Base::_setupKey() 301 | * @access private 302 | */ 303 | function _setupKey() 304 | { 305 | $key = $this->key; 306 | $keyLength = strlen($key); 307 | $keyStream = range(0, 255); 308 | $j = 0; 309 | for ($i = 0; $i < 256; $i++) { 310 | $j = ($j + $keyStream[$i] + ord($key[$i % $keyLength])) & 255; 311 | $temp = $keyStream[$i]; 312 | $keyStream[$i] = $keyStream[$j]; 313 | $keyStream[$j] = $temp; 314 | } 315 | 316 | $this->stream = array(); 317 | $this->stream[CRYPT_RC4_DECRYPT] = $this->stream[CRYPT_RC4_ENCRYPT] = array( 318 | 0, // index $i 319 | 0, // index $j 320 | $keyStream 321 | ); 322 | } 323 | 324 | /** 325 | * Encrypts or decrypts a message. 326 | * 327 | * @see self::encrypt() 328 | * @see self::decrypt() 329 | * @access private 330 | * @param string $text 331 | * @param int $mode 332 | * @return string $text 333 | */ 334 | function _crypt($text, $mode) 335 | { 336 | if ($this->changed) { 337 | $this->_setup(); 338 | $this->changed = false; 339 | } 340 | 341 | $stream = &$this->stream[$mode]; 342 | if ($this->continuousBuffer) { 343 | $i = &$stream[0]; 344 | $j = &$stream[1]; 345 | $keyStream = &$stream[2]; 346 | } else { 347 | $i = $stream[0]; 348 | $j = $stream[1]; 349 | $keyStream = $stream[2]; 350 | } 351 | 352 | $len = strlen($text); 353 | for ($k = 0; $k < $len; ++$k) { 354 | $i = ($i + 1) & 255; 355 | $ksi = $keyStream[$i]; 356 | $j = ($j + $ksi) & 255; 357 | $ksj = $keyStream[$j]; 358 | 359 | $keyStream[$i] = $ksj; 360 | $keyStream[$j] = $ksi; 361 | $text[$k] = $text[$k] ^ chr($keyStream[($ksj + $ksi) & 255]); 362 | } 363 | 364 | return $text; 365 | } 366 | } 367 | -------------------------------------------------------------------------------- /resources/Net/SCP.php: -------------------------------------------------------------------------------- 1 | 12 | * login('username', 'password')) { 18 | * exit('bad login'); 19 | * } 20 | * 21 | * $scp = new Net_SCP($ssh); 22 | * $scp->put('abcd', str_repeat('x', 1024*1024)); 23 | * ?> 24 | * 25 | * 26 | * LICENSE: Permission is hereby granted, free of charge, to any person obtaining a copy 27 | * of this software and associated documentation files (the "Software"), to deal 28 | * in the Software without restriction, including without limitation the rights 29 | * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell 30 | * copies of the Software, and to permit persons to whom the Software is 31 | * furnished to do so, subject to the following conditions: 32 | * 33 | * The above copyright notice and this permission notice shall be included in 34 | * all copies or substantial portions of the Software. 35 | * 36 | * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR 37 | * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, 38 | * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE 39 | * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER 40 | * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, 41 | * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN 42 | * THE SOFTWARE. 43 | * 44 | * @category Net 45 | * @package Net_SCP 46 | * @author Jim Wigginton 47 | * @copyright 2010 Jim Wigginton 48 | * @license http://www.opensource.org/licenses/mit-license.html MIT License 49 | * @link http://phpseclib.sourceforge.net 50 | */ 51 | 52 | /**#@+ 53 | * @access public 54 | * @see self::put() 55 | */ 56 | /** 57 | * Reads data from a local file. 58 | */ 59 | define('NET_SCP_LOCAL_FILE', 1); 60 | /** 61 | * Reads data from a string. 62 | */ 63 | define('NET_SCP_STRING', 2); 64 | /**#@-*/ 65 | 66 | /**#@+ 67 | * @access private 68 | * @see self::_send() 69 | * @see self::_receive() 70 | */ 71 | /** 72 | * SSH1 is being used. 73 | */ 74 | define('NET_SCP_SSH1', 1); 75 | /** 76 | * SSH2 is being used. 77 | */ 78 | define('NET_SCP_SSH2', 2); 79 | /**#@-*/ 80 | 81 | /** 82 | * Pure-PHP implementations of SCP. 83 | * 84 | * @package Net_SCP 85 | * @author Jim Wigginton 86 | * @access public 87 | */ 88 | class Net_SCP 89 | { 90 | /** 91 | * SSH Object 92 | * 93 | * @var object 94 | * @access private 95 | */ 96 | var $ssh; 97 | 98 | /** 99 | * Packet Size 100 | * 101 | * @var int 102 | * @access private 103 | */ 104 | var $packet_size; 105 | 106 | /** 107 | * Mode 108 | * 109 | * @var int 110 | * @access private 111 | */ 112 | var $mode; 113 | 114 | /** 115 | * Default Constructor. 116 | * 117 | * Connects to an SSH server 118 | * 119 | * @param Net_SSH1|Net_SSH2 $ssh 120 | * @return Net_SCP 121 | * @access public 122 | */ 123 | function __construct($ssh) 124 | { 125 | if (!is_object($ssh)) { 126 | return; 127 | } 128 | 129 | switch (strtolower(get_class($ssh))) { 130 | case 'net_ssh2': 131 | $this->mode = NET_SCP_SSH2; 132 | break; 133 | case 'net_ssh1': 134 | $this->packet_size = 50000; 135 | $this->mode = NET_SCP_SSH1; 136 | break; 137 | default: 138 | return; 139 | } 140 | 141 | $this->ssh = $ssh; 142 | } 143 | 144 | /** 145 | * PHP4 compatible Default Constructor. 146 | * 147 | * @see self::__construct() 148 | * @param Net_SSH1|Net_SSH2 $ssh 149 | * @access public 150 | */ 151 | function Net_SCP($ssh) 152 | { 153 | $this->__construct($ssh); 154 | } 155 | 156 | /** 157 | * Uploads a file to the SCP server. 158 | * 159 | * By default, Net_SCP::put() does not read from the local filesystem. $data is dumped directly into $remote_file. 160 | * So, for example, if you set $data to 'filename.ext' and then do Net_SCP::get(), you will get a file, twelve bytes 161 | * long, containing 'filename.ext' as its contents. 162 | * 163 | * Setting $mode to NET_SCP_LOCAL_FILE will change the above behavior. With NET_SCP_LOCAL_FILE, $remote_file will 164 | * contain as many bytes as filename.ext does on your local filesystem. If your filename.ext is 1MB then that is how 165 | * large $remote_file will be, as well. 166 | * 167 | * Currently, only binary mode is supported. As such, if the line endings need to be adjusted, you will need to take 168 | * care of that, yourself. 169 | * 170 | * @param string $remote_file 171 | * @param string $data 172 | * @param int $mode 173 | * @param callable $callback 174 | * @return bool 175 | * @access public 176 | */ 177 | function put($remote_file, $data, $mode = NET_SCP_STRING, $callback = null) 178 | { 179 | if (!isset($this->ssh)) { 180 | return false; 181 | } 182 | 183 | if (!$this->ssh->exec('scp -t ' . escapeshellarg($remote_file), false)) { // -t = to 184 | return false; 185 | } 186 | 187 | $temp = $this->_receive(); 188 | if ($temp !== chr(0)) { 189 | return false; 190 | } 191 | 192 | if ($this->mode == NET_SCP_SSH2) { 193 | $this->packet_size = $this->ssh->packet_size_client_to_server[NET_SSH2_CHANNEL_EXEC] - 4; 194 | } 195 | 196 | $remote_file = basename($remote_file); 197 | 198 | if ($mode == NET_SCP_STRING) { 199 | $size = strlen($data); 200 | } else { 201 | if (!is_file($data)) { 202 | user_error("$data is not a valid file", E_USER_NOTICE); 203 | return false; 204 | } 205 | 206 | $fp = @fopen($data, 'rb'); 207 | if (!$fp) { 208 | return false; 209 | } 210 | $size = filesize($data); 211 | } 212 | 213 | $this->_send('C0644 ' . $size . ' ' . $remote_file . "\n"); 214 | 215 | $temp = $this->_receive(); 216 | if ($temp !== chr(0)) { 217 | return false; 218 | } 219 | 220 | $sent = 0; 221 | while ($sent < $size) { 222 | $temp = $mode & NET_SCP_STRING ? substr($data, $sent, $this->packet_size) : fread($fp, $this->packet_size); 223 | $this->_send($temp); 224 | $sent+= strlen($temp); 225 | 226 | if (is_callable($callback)) { 227 | call_user_func($callback, $sent); 228 | } 229 | } 230 | $this->_close(); 231 | 232 | if ($mode != NET_SCP_STRING) { 233 | fclose($fp); 234 | } 235 | 236 | return true; 237 | } 238 | 239 | /** 240 | * Downloads a file from the SCP server. 241 | * 242 | * Returns a string containing the contents of $remote_file if $local_file is left undefined or a boolean false if 243 | * the operation was unsuccessful. If $local_file is defined, returns true or false depending on the success of the 244 | * operation 245 | * 246 | * @param string $remote_file 247 | * @param string $local_file 248 | * @return mixed 249 | * @access public 250 | */ 251 | function get($remote_file, $local_file = false) 252 | { 253 | if (!isset($this->ssh)) { 254 | return false; 255 | } 256 | 257 | if (!$this->ssh->exec('scp -f ' . escapeshellarg($remote_file), false)) { // -f = from 258 | return false; 259 | } 260 | 261 | $this->_send("\0"); 262 | 263 | if (!preg_match('#(?[^ ]+) (?\d+) (?.+)#', rtrim($this->_receive()), $info)) { 264 | return false; 265 | } 266 | 267 | $this->_send("\0"); 268 | 269 | $size = 0; 270 | 271 | if ($local_file !== false) { 272 | $fp = @fopen($local_file, 'wb'); 273 | if (!$fp) { 274 | return false; 275 | } 276 | } 277 | 278 | $content = ''; 279 | while ($size < $info['size']) { 280 | $data = $this->_receive(); 281 | // SCP usually seems to split stuff out into 16k chunks 282 | $size+= strlen($data); 283 | 284 | if ($local_file === false) { 285 | $content.= $data; 286 | } else { 287 | fputs($fp, $data); 288 | } 289 | } 290 | 291 | $this->_close(); 292 | 293 | if ($local_file !== false) { 294 | fclose($fp); 295 | return true; 296 | } 297 | 298 | return $content; 299 | } 300 | 301 | /** 302 | * Sends a packet to an SSH server 303 | * 304 | * @param string $data 305 | * @access private 306 | */ 307 | function _send($data) 308 | { 309 | switch ($this->mode) { 310 | case NET_SCP_SSH2: 311 | $this->ssh->_send_channel_packet(NET_SSH2_CHANNEL_EXEC, $data); 312 | break; 313 | case NET_SCP_SSH1: 314 | $data = pack('CNa*', NET_SSH1_CMSG_STDIN_DATA, strlen($data), $data); 315 | $this->ssh->_send_binary_packet($data); 316 | } 317 | } 318 | 319 | /** 320 | * Receives a packet from an SSH server 321 | * 322 | * @return string 323 | * @access private 324 | */ 325 | function _receive() 326 | { 327 | switch ($this->mode) { 328 | case NET_SCP_SSH2: 329 | return $this->ssh->_get_channel_packet(NET_SSH2_CHANNEL_EXEC, true); 330 | case NET_SCP_SSH1: 331 | if (!$this->ssh->bitmap) { 332 | return false; 333 | } 334 | while (true) { 335 | $response = $this->ssh->_get_binary_packet(); 336 | switch ($response[NET_SSH1_RESPONSE_TYPE]) { 337 | case NET_SSH1_SMSG_STDOUT_DATA: 338 | if (strlen($response[NET_SSH1_RESPONSE_DATA]) < 4) { 339 | return false; 340 | } 341 | extract(unpack('Nlength', $response[NET_SSH1_RESPONSE_DATA])); 342 | return $this->ssh->_string_shift($response[NET_SSH1_RESPONSE_DATA], $length); 343 | case NET_SSH1_SMSG_STDERR_DATA: 344 | break; 345 | case NET_SSH1_SMSG_EXITSTATUS: 346 | $this->ssh->_send_binary_packet(chr(NET_SSH1_CMSG_EXIT_CONFIRMATION)); 347 | fclose($this->ssh->fsock); 348 | $this->ssh->bitmap = 0; 349 | return false; 350 | default: 351 | user_error('Unknown packet received', E_USER_NOTICE); 352 | return false; 353 | } 354 | } 355 | } 356 | } 357 | 358 | /** 359 | * Closes the connection to an SSH server 360 | * 361 | * @access private 362 | */ 363 | function _close() 364 | { 365 | switch ($this->mode) { 366 | case NET_SCP_SSH2: 367 | $this->ssh->_close_channel(NET_SSH2_CHANNEL_EXEC, true); 368 | break; 369 | case NET_SCP_SSH1: 370 | $this->ssh->disconnect(); 371 | } 372 | } 373 | } 374 | -------------------------------------------------------------------------------- /includes/Class/SampRcon.class.php: -------------------------------------------------------------------------------- 1 | 31 | $this->server = $server; 32 | $this->port = $port; 33 | $this->password = $password; 34 | // 35 | } 36 | 37 | /** 38 | * Returns an array of rcon commands. 39 | * @return Array 40 | * ( 41 | * Array[0] => "echo" 42 | * ... 43 | * ) 44 | * ... 45 | * @see getServerVariables() 46 | */ 47 | public function getCommandList() { 48 | // 49 | $commands = $this->rconSend('cmdlist'); 50 | 51 | foreach($commands as &$command) { 52 | $command = trim($command); 53 | } 54 | return $commands; 55 | // 56 | } 57 | 58 | /** 59 | * Returns an array of server variables. 60 | * @return Array[] 61 | * ( 62 | * ['variableName'] = variableValue 63 | * ... 64 | * ) 65 | * @see getCommandList 66 | */ 67 | public function getServerVariables() { 68 | // 69 | $aVariables = $this->rconSend('varlist'); 70 | unset($aVariables[0]); 71 | $aReturn = array(); 72 | 73 | foreach($aVariables as $sString) { 74 | preg_match('/(.*)=[\s]+(.*)/', $sString, $aMatches); 75 | 76 | if($aMatches[2][0] == '"') { 77 | preg_match('/\"(.*)\"[\s]+\(/', $aMatches[2], $aTemp); 78 | $aReturn[trim($aMatches[1])] = $aTemp[1]; 79 | } else { 80 | preg_match('/(.*?)\s+\(/', $aMatches[2], $aTemp); 81 | $aReturn[trim($aMatches[1])] = $aTemp[1]; 82 | } 83 | } 84 | return $aReturn; 85 | // 86 | } 87 | 88 | /** 89 | * Sets the server's current weather, if no weather ID is given 1 is used. 90 | * @param $weatherID weather ID 91 | */ 92 | public function setWeather($weatherID=1) { 93 | $this->rconSend("weather ".$weatherID, false); 94 | } 95 | 96 | /** 97 | * Sets the server's current gravity, of mp gravity is given 0.008 is used. 98 | * @param $gravity gravity double / float 99 | */ 100 | public function setGravity($gravity=0.008) { 101 | $this->rconSend("gravity ".$gravity, false); 102 | } 103 | 104 | 105 | /** 106 | * Ban a player from the server. 107 | * @param $playerID player's ID 108 | * @return Output from ban 109 | */ 110 | public function ban($playerID) { 111 | return $this->rconSend("ban ".$playerID); 112 | } 113 | 114 | /** 115 | * Kick a player from the server. 116 | * @param $playerID player's ID 117 | * @return Output from kick 118 | */ 119 | public function kick($playerID) { 120 | return $this->rconSend("kick ".$playerID); 121 | } 122 | 123 | /** 124 | * Ban an IP address from the server. 125 | * @param $address IP address 126 | * @return Output from ban 127 | */ 128 | public function banAddress($address) { 129 | return $this->rconSend("banip ".$address); 130 | } 131 | 132 | /** 133 | * Unban an IP address from the server. 134 | * @param $address IP address 135 | * @return Output from unban 136 | */ 137 | public function unbanAddress($address) { 138 | return $this->rconSend("unbanip ".$address); 139 | } 140 | 141 | /** 142 | * Reload the server's log file. 143 | */ 144 | public function reloadLog() { 145 | return $this->rconSend("reloadlog"); 146 | } 147 | 148 | /** 149 | * Reload the server's bans file. 150 | */ 151 | public function reloadBans() { 152 | return $this->rconSend("reloadbans"); 153 | } 154 | 155 | /** 156 | * Send an admin message to players on the server. 157 | * @param $message message to send to players 158 | */ 159 | public function say($message) { 160 | $this->rconSend("say ".$message, false); 161 | } 162 | 163 | 164 | /** 165 | * Change the server's current gamemode. 166 | * @param $gameMode game mode to change to 167 | */ 168 | public function changeGameMode($gameMode) { 169 | $this->rconSend("changemode ".$gameMode, false); 170 | } 171 | 172 | /** 173 | * Set the server's current displayed game mode text. 174 | * @param $gameModeText game mode text to change to 175 | */ 176 | public function setGameModeText($gameModeText) { 177 | $this->rconSend("gamemodetext ".$gameModeText, false); 178 | } 179 | 180 | /** 181 | * Run the server's next gamemode (gmx). 182 | */ 183 | public function nextGameMode() { 184 | $this->rconSend("gmx", false); 185 | } 186 | 187 | /** 188 | * Run the server's next gamemode (gmx). 189 | */ 190 | public function gmx() { 191 | $this->nextGamemode(); 192 | } 193 | 194 | /** 195 | * Execute config file. 196 | * @param $config config file to execute 197 | * @return Output from exec 198 | */ 199 | public function execConfig($config) { 200 | return $this->rconSend("exec ".$config); 201 | } 202 | 203 | /** 204 | * Load a filterscript. 205 | * @param $fs filterscript to load 206 | * @return Output from filterscript load 207 | */ 208 | public function loadFilterscript($fs) { 209 | return $this->rconSend("loadfs ".$fs); 210 | } 211 | 212 | /** 213 | * Unload a filterscript. 214 | * @param $fs filterscript to unload 215 | * @return Output from filterscript unload 216 | */ 217 | public function unloadFilterscript($fs) { 218 | return $this->rconSend("unloadfs ".$fs); 219 | } 220 | 221 | /** 222 | * Reload a filterscript. 223 | * @param $fs filterscript to reload 224 | * @return Output from filterscript reload 225 | */ 226 | public function reloadFilterscript($fs) { 227 | return $this->rconSend("reloadfs ".$fs); 228 | } 229 | 230 | /** 231 | * Shutdown the server. 232 | */ 233 | public function exitGame() { 234 | $this->rconSend("exit", false); 235 | } 236 | 237 | /** 238 | * Sets the server's host name. 239 | * @param $hostName the host name to set the server to 240 | */ 241 | public function setHostName($hostName) { 242 | $this->rconSend("hostname ".$hostName, false); 243 | } 244 | 245 | /** 246 | * Sets the server's map name. 247 | * @param $mapName the map name to set the server to 248 | */ 249 | public function setMapname($mapName) { 250 | $this->rconSend("mapname ".$mapName, false); 251 | } 252 | 253 | /** 254 | * Sets the server's time. 255 | * Note: This will not change the weather relative to the time. 256 | * @param $time the time to set the server to 257 | */ 258 | public function setTime($time) { 259 | $this->rconSend("worldtime ".$time, false); 260 | } 261 | 262 | /** 263 | * Sets the server's web url. 264 | * @param $url the url to set the server to 265 | */ 266 | public function setURL($url) { 267 | $this->rconSend("weburl ".$url, false); 268 | } 269 | 270 | /** 271 | * Sets the server's password. 272 | * @param $password the password to set the server to 273 | */ 274 | public function setPassword($password) { 275 | $this->rconSend("password ".$password, false); 276 | } 277 | 278 | /** 279 | * Remove the server's password. 280 | */ 281 | public function removePassword() { 282 | $this->rconSend("password 0", false); 283 | } 284 | 285 | /** 286 | * Sets the server's rcon password. 287 | * @param $password the password the rcon password should be set to 288 | */ 289 | public function setRconPassword($password) { 290 | $this->rconSend("rcon_password ".$password, false); 291 | } 292 | 293 | /** 294 | * Disables remote rcon to the server. 295 | */ 296 | public function disableRcon() { 297 | $this->rconSend("rcon 0", false); 298 | } 299 | 300 | /** 301 | * Enables remote queries to the server. 302 | */ 303 | public function enableQuery() { 304 | $this->rconSend("query 1", false); 305 | } 306 | 307 | /** 308 | * Disables remote queries to the server. 309 | */ 310 | public function disableQuery() { 311 | $this->rconSend("query 0", false); 312 | } 313 | 314 | /** 315 | * Enables the server's announce. 316 | */ 317 | public function enableAnnounce() { 318 | $this->rconSend("announce 1", false); 319 | } 320 | 321 | /** 322 | * Disables the server's announce. 323 | */ 324 | public function disableAnnounce() { 325 | $this->rconSend("announce 0", false); 326 | } 327 | 328 | /** 329 | * Sets the server's max number of NPCs. 330 | * @param $maxNPCs the maximum numbers of NPCs 331 | */ 332 | public function setMaxNPCs($maxNPCs) { 333 | $this->rconSend("maxnpc ".$maxNPCs, false); 334 | } 335 | 336 | /** 337 | * Execute an rcon command. 338 | * @param $command command to execute 339 | * @param $delay delay time, if you don't expect any data back set this to false 340 | * @return Output from command 341 | */ 342 | public function call($command, $delay=1.0) { 343 | return $this->rconSend($command, $delay); 344 | } 345 | 346 | /** 347 | * Send an rcon command 348 | * 349 | * @param String $command 350 | * @param double $delay 351 | * @return String 352 | */ 353 | private function rconSend($command, $delay=1.0) { 354 | // 355 | fwrite($this->sock, $this->assemblePacket($command)); 356 | 357 | if ($delay === false) { 358 | return; 359 | } 360 | 361 | $result = array(); 362 | $iMicrotime = microtime(true) + $delay; 363 | 364 | while (microtime(true) < $iMicrotime) { 365 | $temp = substr(fread($this->sock, 128), 13); 366 | 367 | if (strlen($temp)) { 368 | $result[] = $temp; 369 | } else { 370 | break; 371 | } 372 | } 373 | return $result; 374 | // 375 | } 376 | 377 | /** 378 | * Assembles a packet, ready for sending 379 | * 380 | * @param String $command 381 | * @return String 382 | */ 383 | private function assemblePacket($command) { 384 | // 385 | $sPacket = "SAMP"; 386 | $sPacket .= chr(strtok($this->server, ".")); 387 | $sPacket .= chr(strtok(".")); 388 | $sPacket .= chr(strtok(".")); 389 | $sPacket .= chr(strtok(".")); 390 | $sPacket .= chr($this->port & 0xFF); 391 | $sPacket .= chr($this->port >> 8 & 0xFF); 392 | $sPacket .= "x"; 393 | 394 | $sPacket .= chr(strlen($this->password) & 0xFF); 395 | $sPacket .= chr(strlen($this->password) >> 8 & 0xFF); 396 | $sPacket .= $this->password; 397 | $sPacket .= chr(strlen($command) & 0xFF); 398 | $sPacket .= chr(strlen($command) >> 8 & 0xFF); 399 | $sPacket .= $command; 400 | 401 | return $sPacket; 402 | // 403 | } 404 | 405 | /** 406 | * Attempts to connect to the server and returns whether it was successful. 407 | * @return boolean 408 | */ 409 | public function connect() { 410 | // 411 | $connected = false; 412 | 413 | $packet = "SAMP"; 414 | $packet .= chr(strtok($this->server, ".")); 415 | $packet .= chr(strtok(".")); 416 | $packet .= chr(strtok(".")); 417 | $packet .= chr(strtok(".")); 418 | $packet .= chr($this->port & 0xFF); 419 | $packet .= chr($this->port >> 8 & 0xFF); 420 | $packet .= "p0101"; 421 | 422 | $this->sock = fsockopen("udp://".$this->server, $this->port, $errorNum, $errorString, 2); 423 | socket_set_timeout($this->sock, 2); 424 | 425 | fwrite($this->sock, $packet); 426 | 427 | if(fread($this->sock, 10)) { 428 | if(fread($this->sock, 5) == 'p0101') { 429 | $connected = true; 430 | } 431 | } 432 | return $connected; 433 | // 434 | } 435 | 436 | /** 437 | * Closes the connection 438 | */ 439 | public function close() { 440 | @fclose($this->sock); 441 | } 442 | } -------------------------------------------------------------------------------- /resources/System/SSH/Agent.php: -------------------------------------------------------------------------------- 1 | 10 | * login('username', $agent)) { 18 | * exit('Login Failed'); 19 | * } 20 | * 21 | * echo $ssh->exec('pwd'); 22 | * echo $ssh->exec('ls -la'); 23 | * ?> 24 | * 25 | * 26 | * LICENSE: Permission is hereby granted, free of charge, to any person obtaining a copy 27 | * of this software and associated documentation files (the "Software"), to deal 28 | * in the Software without restriction, including without limitation the rights 29 | * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell 30 | * copies of the Software, and to permit persons to whom the Software is 31 | * furnished to do so, subject to the following conditions: 32 | * 33 | * The above copyright notice and this permission notice shall be included in 34 | * all copies or substantial portions of the Software. 35 | * 36 | * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR 37 | * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, 38 | * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE 39 | * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER 40 | * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, 41 | * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN 42 | * THE SOFTWARE. 43 | * 44 | * @category System 45 | * @package System_SSH_Agent 46 | * @author Jim Wigginton 47 | * @copyright 2014 Jim Wigginton 48 | * @license http://www.opensource.org/licenses/mit-license.html MIT License 49 | * @link http://phpseclib.sourceforge.net 50 | * @internal See http://api.libssh.org/rfc/PROTOCOL.agent 51 | */ 52 | 53 | /**#@+ 54 | * Message numbers 55 | * 56 | * @access private 57 | */ 58 | // to request SSH1 keys you have to use SSH_AGENTC_REQUEST_RSA_IDENTITIES (1) 59 | define('SYSTEM_SSH_AGENTC_REQUEST_IDENTITIES', 11); 60 | // this is the SSH2 response; the SSH1 response is SSH_AGENT_RSA_IDENTITIES_ANSWER (2). 61 | define('SYSTEM_SSH_AGENT_IDENTITIES_ANSWER', 12); 62 | define('SYSTEM_SSH_AGENT_FAILURE', 5); 63 | // the SSH1 request is SSH_AGENTC_RSA_CHALLENGE (3) 64 | define('SYSTEM_SSH_AGENTC_SIGN_REQUEST', 13); 65 | // the SSH1 response is SSH_AGENT_RSA_RESPONSE (4) 66 | define('SYSTEM_SSH_AGENT_SIGN_RESPONSE', 14); 67 | 68 | 69 | /**@+ 70 | * Agent forwarding status 71 | * 72 | * @access private 73 | */ 74 | // no forwarding requested and not active 75 | define('SYSTEM_SSH_AGENT_FORWARD_NONE', 0); 76 | // request agent forwarding when opportune 77 | define('SYSTEM_SSH_AGENT_FORWARD_REQUEST', 1); 78 | // forwarding has been request and is active 79 | define('SYSTEM_SSH_AGENT_FORWARD_ACTIVE', 2); 80 | 81 | /**#@-*/ 82 | 83 | /** 84 | * Pure-PHP ssh-agent client identity object 85 | * 86 | * Instantiation should only be performed by System_SSH_Agent class. 87 | * This could be thought of as implementing an interface that Crypt_RSA 88 | * implements. ie. maybe a Net_SSH_Auth_PublicKey interface or something. 89 | * The methods in this interface would be getPublicKey, setSignatureMode 90 | * and sign since those are the methods phpseclib looks for to perform 91 | * public key authentication. 92 | * 93 | * @package System_SSH_Agent 94 | * @author Jim Wigginton 95 | * @access internal 96 | */ 97 | class System_SSH_Agent_Identity 98 | { 99 | /** 100 | * Key Object 101 | * 102 | * @var Crypt_RSA 103 | * @access private 104 | * @see self::getPublicKey() 105 | */ 106 | var $key; 107 | 108 | /** 109 | * Key Blob 110 | * 111 | * @var string 112 | * @access private 113 | * @see self::sign() 114 | */ 115 | var $key_blob; 116 | 117 | /** 118 | * Socket Resource 119 | * 120 | * @var resource 121 | * @access private 122 | * @see self::sign() 123 | */ 124 | var $fsock; 125 | 126 | /** 127 | * Default Constructor. 128 | * 129 | * @param resource $fsock 130 | * @return System_SSH_Agent_Identity 131 | * @access private 132 | */ 133 | function __construct($fsock) 134 | { 135 | $this->fsock = $fsock; 136 | } 137 | 138 | /** 139 | * PHP4 compatible Default Constructor. 140 | * 141 | * @see self::__construct() 142 | * @param resource $fsock 143 | * @access public 144 | */ 145 | function System_SSH_Agent_Identity($fsock) 146 | { 147 | $this->__construct($fsock); 148 | } 149 | 150 | /** 151 | * Set Public Key 152 | * 153 | * Called by System_SSH_Agent::requestIdentities() 154 | * 155 | * @param Crypt_RSA $key 156 | * @access private 157 | */ 158 | function setPublicKey($key) 159 | { 160 | $this->key = $key; 161 | $this->key->setPublicKey(); 162 | } 163 | 164 | /** 165 | * Set Public Key 166 | * 167 | * Called by System_SSH_Agent::requestIdentities(). The key blob could be extracted from $this->key 168 | * but this saves a small amount of computation. 169 | * 170 | * @param string $key_blob 171 | * @access private 172 | */ 173 | function setPublicKeyBlob($key_blob) 174 | { 175 | $this->key_blob = $key_blob; 176 | } 177 | 178 | /** 179 | * Get Public Key 180 | * 181 | * Wrapper for $this->key->getPublicKey() 182 | * 183 | * @param int $format optional 184 | * @return mixed 185 | * @access public 186 | */ 187 | function getPublicKey($format = null) 188 | { 189 | return !isset($format) ? $this->key->getPublicKey() : $this->key->getPublicKey($format); 190 | } 191 | 192 | /** 193 | * Set Signature Mode 194 | * 195 | * Doesn't do anything as ssh-agent doesn't let you pick and choose the signature mode. ie. 196 | * ssh-agent's only supported mode is CRYPT_RSA_SIGNATURE_PKCS1 197 | * 198 | * @param int $mode 199 | * @access public 200 | */ 201 | function setSignatureMode($mode) 202 | { 203 | } 204 | 205 | /** 206 | * Create a signature 207 | * 208 | * See "2.6.2 Protocol 2 private key signature request" 209 | * 210 | * @param string $message 211 | * @return string 212 | * @access public 213 | */ 214 | function sign($message) 215 | { 216 | // the last parameter (currently 0) is for flags and ssh-agent only defines one flag (for ssh-dss): SSH_AGENT_OLD_SIGNATURE 217 | $packet = pack('CNa*Na*N', SYSTEM_SSH_AGENTC_SIGN_REQUEST, strlen($this->key_blob), $this->key_blob, strlen($message), $message, 0); 218 | $packet = pack('Na*', strlen($packet), $packet); 219 | if (strlen($packet) != fputs($this->fsock, $packet)) { 220 | user_error('Connection closed during signing'); 221 | } 222 | 223 | $length = current(unpack('N', fread($this->fsock, 4))); 224 | $type = ord(fread($this->fsock, 1)); 225 | if ($type != SYSTEM_SSH_AGENT_SIGN_RESPONSE) { 226 | user_error('Unable to retreive signature'); 227 | } 228 | 229 | $signature_blob = fread($this->fsock, $length - 1); 230 | // the only other signature format defined - ssh-dss - is the same length as ssh-rsa 231 | // the + 12 is for the other various SSH added length fields 232 | return substr($signature_blob, strlen('ssh-rsa') + 12); 233 | } 234 | } 235 | 236 | /** 237 | * Pure-PHP ssh-agent client identity factory 238 | * 239 | * requestIdentities() method pumps out System_SSH_Agent_Identity objects 240 | * 241 | * @package System_SSH_Agent 242 | * @author Jim Wigginton 243 | * @access internal 244 | */ 245 | class System_SSH_Agent 246 | { 247 | /** 248 | * Socket Resource 249 | * 250 | * @var resource 251 | * @access private 252 | */ 253 | var $fsock; 254 | 255 | /** 256 | * Agent forwarding status 257 | * 258 | * @access private 259 | */ 260 | var $forward_status = SYSTEM_SSH_AGENT_FORWARD_NONE; 261 | 262 | /** 263 | * Buffer for accumulating forwarded authentication 264 | * agent data arriving on SSH data channel destined 265 | * for agent unix socket 266 | * 267 | * @access private 268 | */ 269 | var $socket_buffer = ''; 270 | 271 | /** 272 | * Tracking the number of bytes we are expecting 273 | * to arrive for the agent socket on the SSH data 274 | * channel 275 | */ 276 | var $expected_bytes = 0; 277 | 278 | /** 279 | * Default Constructor 280 | * 281 | * @return System_SSH_Agent 282 | * @access public 283 | */ 284 | function __construct() 285 | { 286 | switch (true) { 287 | case isset($_SERVER['SSH_AUTH_SOCK']): 288 | $address = $_SERVER['SSH_AUTH_SOCK']; 289 | break; 290 | case isset($_ENV['SSH_AUTH_SOCK']): 291 | $address = $_ENV['SSH_AUTH_SOCK']; 292 | break; 293 | default: 294 | user_error('SSH_AUTH_SOCK not found'); 295 | return false; 296 | } 297 | 298 | $this->fsock = fsockopen('unix://' . $address, 0, $errno, $errstr); 299 | if (!$this->fsock) { 300 | user_error("Unable to connect to ssh-agent (Error $errno: $errstr)"); 301 | } 302 | } 303 | 304 | /** 305 | * PHP4 compatible Default Constructor. 306 | * 307 | * @see self::__construct() 308 | * @access public 309 | */ 310 | function System_SSH_Agent() 311 | { 312 | $this->__construct(); 313 | } 314 | 315 | /** 316 | * Request Identities 317 | * 318 | * See "2.5.2 Requesting a list of protocol 2 keys" 319 | * Returns an array containing zero or more System_SSH_Agent_Identity objects 320 | * 321 | * @return array 322 | * @access public 323 | */ 324 | function requestIdentities() 325 | { 326 | if (!$this->fsock) { 327 | return array(); 328 | } 329 | 330 | $packet = pack('NC', 1, SYSTEM_SSH_AGENTC_REQUEST_IDENTITIES); 331 | if (strlen($packet) != fputs($this->fsock, $packet)) { 332 | user_error('Connection closed while requesting identities'); 333 | } 334 | 335 | $length = current(unpack('N', fread($this->fsock, 4))); 336 | $type = ord(fread($this->fsock, 1)); 337 | if ($type != SYSTEM_SSH_AGENT_IDENTITIES_ANSWER) { 338 | user_error('Unable to request identities'); 339 | } 340 | 341 | $identities = array(); 342 | $keyCount = current(unpack('N', fread($this->fsock, 4))); 343 | for ($i = 0; $i < $keyCount; $i++) { 344 | $length = current(unpack('N', fread($this->fsock, 4))); 345 | $key_blob = fread($this->fsock, $length); 346 | $key_str = 'ssh-rsa ' . base64_encode($key_blob); 347 | $length = current(unpack('N', fread($this->fsock, 4))); 348 | if ($length) { 349 | $key_str.= ' ' . fread($this->fsock, $length); 350 | } 351 | $length = current(unpack('N', substr($key_blob, 0, 4))); 352 | $key_type = substr($key_blob, 4, $length); 353 | switch ($key_type) { 354 | case 'ssh-rsa': 355 | if (!class_exists('Crypt_RSA')) { 356 | include_once 'Crypt/RSA.php'; 357 | } 358 | $key = new Crypt_RSA(); 359 | $key->loadKey($key_str); 360 | break; 361 | case 'ssh-dss': 362 | // not currently supported 363 | break; 364 | } 365 | // resources are passed by reference by default 366 | if (isset($key)) { 367 | $identity = new System_SSH_Agent_Identity($this->fsock); 368 | $identity->setPublicKey($key); 369 | $identity->setPublicKeyBlob($key_blob); 370 | $identities[] = $identity; 371 | unset($key); 372 | } 373 | } 374 | 375 | return $identities; 376 | } 377 | 378 | /** 379 | * Signal that agent forwarding should 380 | * be requested when a channel is opened 381 | * 382 | * @param Net_SSH2 $ssh 383 | * @return bool 384 | * @access public 385 | */ 386 | function startSSHForwarding($ssh) 387 | { 388 | if ($this->forward_status == SYSTEM_SSH_AGENT_FORWARD_NONE) { 389 | $this->forward_status = SYSTEM_SSH_AGENT_FORWARD_REQUEST; 390 | } 391 | } 392 | 393 | /** 394 | * Request agent forwarding of remote server 395 | * 396 | * @param Net_SSH2 $ssh 397 | * @return bool 398 | * @access private 399 | */ 400 | function _request_forwarding($ssh) 401 | { 402 | $request_channel = $ssh->_get_open_channel(); 403 | if ($request_channel === false) { 404 | return false; 405 | } 406 | 407 | $packet = pack( 408 | 'CNNa*C', 409 | NET_SSH2_MSG_CHANNEL_REQUEST, 410 | $ssh->server_channels[$request_channel], 411 | strlen('auth-agent-req@openssh.com'), 412 | 'auth-agent-req@openssh.com', 413 | 1 414 | ); 415 | 416 | $ssh->channel_status[$request_channel] = NET_SSH2_MSG_CHANNEL_REQUEST; 417 | 418 | if (!$ssh->_send_binary_packet($packet)) { 419 | return false; 420 | } 421 | 422 | $response = $ssh->_get_channel_packet($request_channel); 423 | if ($response === false) { 424 | return false; 425 | } 426 | 427 | $ssh->channel_status[$request_channel] = NET_SSH2_MSG_CHANNEL_OPEN; 428 | $this->forward_status = SYSTEM_SSH_AGENT_FORWARD_ACTIVE; 429 | 430 | return true; 431 | } 432 | 433 | /** 434 | * On successful channel open 435 | * 436 | * This method is called upon successful channel 437 | * open to give the SSH Agent an opportunity 438 | * to take further action. i.e. request agent forwarding 439 | * 440 | * @param Net_SSH2 $ssh 441 | * @access private 442 | */ 443 | function _on_channel_open($ssh) 444 | { 445 | if ($this->forward_status == SYSTEM_SSH_AGENT_FORWARD_REQUEST) { 446 | $this->_request_forwarding($ssh); 447 | } 448 | } 449 | 450 | /** 451 | * Forward data to SSH Agent and return data reply 452 | * 453 | * @param string $data 454 | * @return data from SSH Agent 455 | * @access private 456 | */ 457 | function _forward_data($data) 458 | { 459 | if ($this->expected_bytes > 0) { 460 | $this->socket_buffer.= $data; 461 | $this->expected_bytes -= strlen($data); 462 | } else { 463 | $agent_data_bytes = current(unpack('N', $data)); 464 | $current_data_bytes = strlen($data); 465 | $this->socket_buffer = $data; 466 | if ($current_data_bytes != $agent_data_bytes + 4) { 467 | $this->expected_bytes = ($agent_data_bytes + 4) - $current_data_bytes; 468 | return false; 469 | } 470 | } 471 | 472 | if (strlen($this->socket_buffer) != fwrite($this->fsock, $this->socket_buffer)) { 473 | user_error('Connection closed attempting to forward data to SSH agent'); 474 | } 475 | 476 | $this->socket_buffer = ''; 477 | $this->expected_bytes = 0; 478 | 479 | $agent_reply_bytes = current(unpack('N', fread($this->fsock, 4))); 480 | 481 | $agent_reply_data = fread($this->fsock, $agent_reply_bytes); 482 | $agent_reply_data = current(unpack('a*', $agent_reply_data)); 483 | 484 | return pack('Na*', $agent_reply_bytes, $agent_reply_data); 485 | } 486 | } 487 | -------------------------------------------------------------------------------- /resources/Crypt/Random.php: -------------------------------------------------------------------------------- 1 | 13 | * 18 | * 19 | * 20 | * LICENSE: Permission is hereby granted, free of charge, to any person obtaining a copy 21 | * of this software and associated documentation files (the "Software"), to deal 22 | * in the Software without restriction, including without limitation the rights 23 | * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell 24 | * copies of the Software, and to permit persons to whom the Software is 25 | * furnished to do so, subject to the following conditions: 26 | * 27 | * The above copyright notice and this permission notice shall be included in 28 | * all copies or substantial portions of the Software. 29 | * 30 | * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR 31 | * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, 32 | * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE 33 | * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER 34 | * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, 35 | * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN 36 | * THE SOFTWARE. 37 | * 38 | * @category Crypt 39 | * @package Crypt_Random 40 | * @author Jim Wigginton 41 | * @copyright 2007 Jim Wigginton 42 | * @license http://www.opensource.org/licenses/mit-license.html MIT License 43 | * @link http://phpseclib.sourceforge.net 44 | */ 45 | 46 | // laravel is a PHP framework that utilizes phpseclib. laravel workbenches may, independently, 47 | // have phpseclib as a requirement as well. if you're developing such a program you may encounter 48 | // a "Cannot redeclare crypt_random_string()" error. 49 | if (!function_exists('crypt_random_string')) { 50 | /** 51 | * "Is Windows" test 52 | * 53 | * @access private 54 | */ 55 | define('CRYPT_RANDOM_IS_WINDOWS', strtoupper(substr(PHP_OS, 0, 3)) === 'WIN'); 56 | 57 | /** 58 | * Generate a random string. 59 | * 60 | * Although microoptimizations are generally discouraged as they impair readability this function is ripe with 61 | * microoptimizations because this function has the potential of being called a huge number of times. 62 | * eg. for RSA key generation. 63 | * 64 | * @param int $length 65 | * @return string 66 | * @access public 67 | */ 68 | function crypt_random_string($length) 69 | { 70 | if (!$length) { 71 | return ''; 72 | } 73 | 74 | if (CRYPT_RANDOM_IS_WINDOWS) { 75 | // method 1. prior to PHP 5.3, mcrypt_create_iv() would call rand() on windows 76 | if (extension_loaded('mcrypt') && version_compare(PHP_VERSION, '5.3.0', '>=')) { 77 | return @mcrypt_create_iv($length); 78 | } 79 | // method 2. openssl_random_pseudo_bytes was introduced in PHP 5.3.0 but prior to PHP 5.3.4 there was, 80 | // to quote , "possible blocking behavior". as of 5.3.4 81 | // openssl_random_pseudo_bytes and mcrypt_create_iv do the exact same thing on Windows. ie. they both 82 | // call php_win32_get_random_bytes(): 83 | // 84 | // https://github.com/php/php-src/blob/7014a0eb6d1611151a286c0ff4f2238f92c120d6/ext/openssl/openssl.c#L5008 85 | // https://github.com/php/php-src/blob/7014a0eb6d1611151a286c0ff4f2238f92c120d6/ext/mcrypt/mcrypt.c#L1392 86 | // 87 | // php_win32_get_random_bytes() is defined thusly: 88 | // 89 | // https://github.com/php/php-src/blob/7014a0eb6d1611151a286c0ff4f2238f92c120d6/win32/winutil.c#L80 90 | // 91 | // we're calling it, all the same, in the off chance that the mcrypt extension is not available 92 | if (extension_loaded('openssl') && version_compare(PHP_VERSION, '5.3.4', '>=')) { 93 | return openssl_random_pseudo_bytes($length); 94 | } 95 | } else { 96 | // method 1. the fastest 97 | if (extension_loaded('openssl') && version_compare(PHP_VERSION, '5.3.0', '>=')) { 98 | return openssl_random_pseudo_bytes($length); 99 | } 100 | // method 2 101 | static $fp = true; 102 | if ($fp === true) { 103 | // warning's will be output unles the error suppression operator is used. errors such as 104 | // "open_basedir restriction in effect", "Permission denied", "No such file or directory", etc. 105 | $fp = @fopen('/dev/urandom', 'rb'); 106 | } 107 | if ($fp !== true && $fp !== false) { // surprisingly faster than !is_bool() or is_resource() 108 | return fread($fp, $length); 109 | } 110 | // method 3. pretty much does the same thing as method 2 per the following url: 111 | // https://github.com/php/php-src/blob/7014a0eb6d1611151a286c0ff4f2238f92c120d6/ext/mcrypt/mcrypt.c#L1391 112 | // surprisingly slower than method 2. maybe that's because mcrypt_create_iv does a bunch of error checking that we're 113 | // not doing. regardless, this'll only be called if this PHP script couldn't open /dev/urandom due to open_basedir 114 | // restrictions or some such 115 | if (extension_loaded('mcrypt')) { 116 | return @mcrypt_create_iv($length, MCRYPT_DEV_URANDOM); 117 | } 118 | } 119 | // at this point we have no choice but to use a pure-PHP CSPRNG 120 | 121 | // cascade entropy across multiple PHP instances by fixing the session and collecting all 122 | // environmental variables, including the previous session data and the current session 123 | // data. 124 | // 125 | // mt_rand seeds itself by looking at the PID and the time, both of which are (relatively) 126 | // easy to guess at. linux uses mouse clicks, keyboard timings, etc, as entropy sources, but 127 | // PHP isn't low level to be able to use those as sources and on a web server there's not likely 128 | // going to be a ton of keyboard or mouse action. web servers do have one thing that we can use 129 | // however, a ton of people visiting the website. obviously you don't want to base your seeding 130 | // soley on parameters a potential attacker sends but (1) not everything in $_SERVER is controlled 131 | // by the user and (2) this isn't just looking at the data sent by the current user - it's based 132 | // on the data sent by all users. one user requests the page and a hash of their info is saved. 133 | // another user visits the page and the serialization of their data is utilized along with the 134 | // server envirnment stuff and a hash of the previous http request data (which itself utilizes 135 | // a hash of the session data before that). certainly an attacker should be assumed to have 136 | // full control over his own http requests. he, however, is not going to have control over 137 | // everyone's http requests. 138 | static $crypto = false, $v; 139 | if ($crypto === false) { 140 | // save old session data 141 | $old_session_id = session_id(); 142 | $old_use_cookies = ini_get('session.use_cookies'); 143 | $old_session_cache_limiter = session_cache_limiter(); 144 | $_OLD_SESSION = isset($_SESSION) ? $_SESSION : false; 145 | if ($old_session_id != '') { 146 | session_write_close(); 147 | } 148 | 149 | session_id(1); 150 | ini_set('session.use_cookies', 0); 151 | session_cache_limiter(''); 152 | session_start(); 153 | 154 | $v = $seed = $_SESSION['seed'] = pack('H*', sha1( 155 | (isset($_SERVER) ? phpseclib_safe_serialize($_SERVER) : '') . 156 | (isset($_POST) ? phpseclib_safe_serialize($_POST) : '') . 157 | (isset($_GET) ? phpseclib_safe_serialize($_GET) : '') . 158 | (isset($_COOKIE) ? phpseclib_safe_serialize($_COOKIE) : '') . 159 | phpseclib_safe_serialize($GLOBALS) . 160 | phpseclib_safe_serialize($_SESSION) . 161 | phpseclib_safe_serialize($_OLD_SESSION) 162 | )); 163 | if (!isset($_SESSION['count'])) { 164 | $_SESSION['count'] = 0; 165 | } 166 | $_SESSION['count']++; 167 | 168 | session_write_close(); 169 | 170 | // restore old session data 171 | if ($old_session_id != '') { 172 | session_id($old_session_id); 173 | session_start(); 174 | ini_set('session.use_cookies', $old_use_cookies); 175 | session_cache_limiter($old_session_cache_limiter); 176 | } else { 177 | if ($_OLD_SESSION !== false) { 178 | $_SESSION = $_OLD_SESSION; 179 | unset($_OLD_SESSION); 180 | } else { 181 | unset($_SESSION); 182 | } 183 | } 184 | 185 | // in SSH2 a shared secret and an exchange hash are generated through the key exchange process. 186 | // the IV client to server is the hash of that "nonce" with the letter A and for the encryption key it's the letter C. 187 | // if the hash doesn't produce enough a key or an IV that's long enough concat successive hashes of the 188 | // original hash and the current hash. we'll be emulating that. for more info see the following URL: 189 | // 190 | // http://tools.ietf.org/html/rfc4253#section-7.2 191 | // 192 | // see the is_string($crypto) part for an example of how to expand the keys 193 | $key = pack('H*', sha1($seed . 'A')); 194 | $iv = pack('H*', sha1($seed . 'C')); 195 | 196 | // ciphers are used as per the nist.gov link below. also, see this link: 197 | // 198 | // http://en.wikipedia.org/wiki/Cryptographically_secure_pseudorandom_number_generator#Designs_based_on_cryptographic_primitives 199 | switch (true) { 200 | case phpseclib_resolve_include_path('Crypt/AES.php'): 201 | if (!class_exists('Crypt_AES')) { 202 | include_once 'AES.php'; 203 | } 204 | $crypto = new Crypt_AES(CRYPT_AES_MODE_CTR); 205 | break; 206 | case phpseclib_resolve_include_path('Crypt/Twofish.php'): 207 | if (!class_exists('Crypt_Twofish')) { 208 | include_once 'Twofish.php'; 209 | } 210 | $crypto = new Crypt_Twofish(CRYPT_TWOFISH_MODE_CTR); 211 | break; 212 | case phpseclib_resolve_include_path('Crypt/Blowfish.php'): 213 | if (!class_exists('Crypt_Blowfish')) { 214 | include_once 'Blowfish.php'; 215 | } 216 | $crypto = new Crypt_Blowfish(CRYPT_BLOWFISH_MODE_CTR); 217 | break; 218 | case phpseclib_resolve_include_path('Crypt/TripleDES.php'): 219 | if (!class_exists('Crypt_TripleDES')) { 220 | include_once 'TripleDES.php'; 221 | } 222 | $crypto = new Crypt_TripleDES(CRYPT_DES_MODE_CTR); 223 | break; 224 | case phpseclib_resolve_include_path('Crypt/DES.php'): 225 | if (!class_exists('Crypt_DES')) { 226 | include_once 'DES.php'; 227 | } 228 | $crypto = new Crypt_DES(CRYPT_DES_MODE_CTR); 229 | break; 230 | case phpseclib_resolve_include_path('Crypt/RC4.php'): 231 | if (!class_exists('Crypt_RC4')) { 232 | include_once 'RC4.php'; 233 | } 234 | $crypto = new Crypt_RC4(); 235 | break; 236 | default: 237 | user_error('crypt_random_string requires at least one symmetric cipher be loaded'); 238 | return false; 239 | } 240 | 241 | $crypto->setKey($key); 242 | $crypto->setIV($iv); 243 | $crypto->enableContinuousBuffer(); 244 | } 245 | 246 | //return $crypto->encrypt(str_repeat("\0", $length)); 247 | 248 | // the following is based off of ANSI X9.31: 249 | // 250 | // http://csrc.nist.gov/groups/STM/cavp/documents/rng/931rngext.pdf 251 | // 252 | // OpenSSL uses that same standard for it's random numbers: 253 | // 254 | // http://www.opensource.apple.com/source/OpenSSL/OpenSSL-38/openssl/fips-1.0/rand/fips_rand.c 255 | // (do a search for "ANS X9.31 A.2.4") 256 | $result = ''; 257 | while (strlen($result) < $length) { 258 | $i = $crypto->encrypt(microtime()); // strlen(microtime()) == 21 259 | $r = $crypto->encrypt($i ^ $v); // strlen($v) == 20 260 | $v = $crypto->encrypt($r ^ $i); // strlen($r) == 20 261 | $result.= $r; 262 | } 263 | return substr($result, 0, $length); 264 | } 265 | } 266 | 267 | if (!function_exists('phpseclib_safe_serialize')) { 268 | /** 269 | * Safely serialize variables 270 | * 271 | * If a class has a private __sleep() method it'll give a fatal error on PHP 5.2 and earlier. 272 | * PHP 5.3 will emit a warning. 273 | * 274 | * @param mixed $arr 275 | * @access public 276 | */ 277 | function phpseclib_safe_serialize(&$arr) 278 | { 279 | if (is_object($arr)) { 280 | return ''; 281 | } 282 | if (!is_array($arr)) { 283 | return serialize($arr); 284 | } 285 | // prevent circular array recursion 286 | if (isset($arr['__phpseclib_marker'])) { 287 | return ''; 288 | } 289 | $safearr = array(); 290 | $arr['__phpseclib_marker'] = true; 291 | foreach (array_keys($arr) as $key) { 292 | // do not recurse on the '__phpseclib_marker' key itself, for smaller memory usage 293 | if ($key !== '__phpseclib_marker') { 294 | $safearr[$key] = phpseclib_safe_serialize($arr[$key]); 295 | } 296 | } 297 | unset($arr['__phpseclib_marker']); 298 | return serialize($safearr); 299 | } 300 | } 301 | 302 | if (!function_exists('phpseclib_resolve_include_path')) { 303 | /** 304 | * Resolve filename against the include path. 305 | * 306 | * Wrapper around stream_resolve_include_path() (which was introduced in 307 | * PHP 5.3.2) with fallback implementation for earlier PHP versions. 308 | * 309 | * @param string $filename 310 | * @return string|false 311 | * @access public 312 | */ 313 | function phpseclib_resolve_include_path($filename) 314 | { 315 | if (function_exists('stream_resolve_include_path')) { 316 | return stream_resolve_include_path($filename); 317 | } 318 | 319 | // handle non-relative paths 320 | if (file_exists($filename)) { 321 | return realpath($filename); 322 | } 323 | 324 | $paths = PATH_SEPARATOR == ':' ? 325 | preg_split('#(? 12 | * setKey('abcdefghijklmnopqrstuvwx'); 18 | * 19 | * $size = 10 * 1024; 20 | * $plaintext = ''; 21 | * for ($i = 0; $i < $size; $i++) { 22 | * $plaintext.= 'a'; 23 | * } 24 | * 25 | * echo $des->decrypt($des->encrypt($plaintext)); 26 | * ?> 27 | * 28 | * 29 | * LICENSE: Permission is hereby granted, free of charge, to any person obtaining a copy 30 | * of this software and associated documentation files (the "Software"), to deal 31 | * in the Software without restriction, including without limitation the rights 32 | * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell 33 | * copies of the Software, and to permit persons to whom the Software is 34 | * furnished to do so, subject to the following conditions: 35 | * 36 | * The above copyright notice and this permission notice shall be included in 37 | * all copies or substantial portions of the Software. 38 | * 39 | * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR 40 | * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, 41 | * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE 42 | * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER 43 | * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, 44 | * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN 45 | * THE SOFTWARE. 46 | * 47 | * @category Crypt 48 | * @package Crypt_TripleDES 49 | * @author Jim Wigginton 50 | * @copyright 2007 Jim Wigginton 51 | * @license http://www.opensource.org/licenses/mit-license.html MIT License 52 | * @link http://phpseclib.sourceforge.net 53 | */ 54 | 55 | /** 56 | * Include Crypt_DES 57 | */ 58 | if (!class_exists('Crypt_DES')) { 59 | include_once 'DES.php'; 60 | } 61 | 62 | /**#@+ 63 | * @access public 64 | * @see self::Crypt_TripleDES() 65 | */ 66 | /** 67 | * Encrypt / decrypt using inner chaining 68 | * 69 | * Inner chaining is used by SSH-1 and is generally considered to be less secure then outer chaining (CRYPT_DES_MODE_CBC3). 70 | */ 71 | define('CRYPT_MODE_3CBC', -2); 72 | /** 73 | * BC version of the above. 74 | */ 75 | define('CRYPT_DES_MODE_3CBC', -2); 76 | /** 77 | * Encrypt / decrypt using outer chaining 78 | * 79 | * Outer chaining is used by SSH-2 and when the mode is set to CRYPT_DES_MODE_CBC. 80 | */ 81 | define('CRYPT_MODE_CBC3', CRYPT_MODE_CBC); 82 | /** 83 | * BC version of the above. 84 | */ 85 | define('CRYPT_DES_MODE_CBC3', CRYPT_MODE_CBC3); 86 | /**#@-*/ 87 | 88 | /** 89 | * Pure-PHP implementation of Triple DES. 90 | * 91 | * @package Crypt_TripleDES 92 | * @author Jim Wigginton 93 | * @access public 94 | */ 95 | class Crypt_TripleDES extends Crypt_DES 96 | { 97 | /** 98 | * Key Length (in bytes) 99 | * 100 | * @see Crypt_TripleDES::setKeyLength() 101 | * @var int 102 | * @access private 103 | */ 104 | var $key_length = 24; 105 | 106 | /** 107 | * The default salt used by setPassword() 108 | * 109 | * @see Crypt_Base::password_default_salt 110 | * @see Crypt_Base::setPassword() 111 | * @var string 112 | * @access private 113 | */ 114 | var $password_default_salt = 'phpseclib'; 115 | 116 | /** 117 | * The namespace used by the cipher for its constants. 118 | * 119 | * @see Crypt_DES::const_namespace 120 | * @see Crypt_Base::const_namespace 121 | * @var string 122 | * @access private 123 | */ 124 | var $const_namespace = 'DES'; 125 | 126 | /** 127 | * The mcrypt specific name of the cipher 128 | * 129 | * @see Crypt_DES::cipher_name_mcrypt 130 | * @see Crypt_Base::cipher_name_mcrypt 131 | * @var string 132 | * @access private 133 | */ 134 | var $cipher_name_mcrypt = 'tripledes'; 135 | 136 | /** 137 | * Optimizing value while CFB-encrypting 138 | * 139 | * @see Crypt_Base::cfb_init_len 140 | * @var int 141 | * @access private 142 | */ 143 | var $cfb_init_len = 750; 144 | 145 | /** 146 | * max possible size of $key 147 | * 148 | * @see self::setKey() 149 | * @see Crypt_DES::setKey() 150 | * @var string 151 | * @access private 152 | */ 153 | var $key_length_max = 24; 154 | 155 | /** 156 | * Internal flag whether using CRYPT_DES_MODE_3CBC or not 157 | * 158 | * @var bool 159 | * @access private 160 | */ 161 | var $mode_3cbc; 162 | 163 | /** 164 | * The Crypt_DES objects 165 | * 166 | * Used only if $mode_3cbc === true 167 | * 168 | * @var array 169 | * @access private 170 | */ 171 | var $des; 172 | 173 | /** 174 | * Default Constructor. 175 | * 176 | * Determines whether or not the mcrypt extension should be used. 177 | * 178 | * $mode could be: 179 | * 180 | * - CRYPT_DES_MODE_ECB 181 | * 182 | * - CRYPT_DES_MODE_CBC 183 | * 184 | * - CRYPT_DES_MODE_CTR 185 | * 186 | * - CRYPT_DES_MODE_CFB 187 | * 188 | * - CRYPT_DES_MODE_OFB 189 | * 190 | * - CRYPT_DES_MODE_3CBC 191 | * 192 | * If not explicitly set, CRYPT_DES_MODE_CBC will be used. 193 | * 194 | * @see Crypt_DES::Crypt_DES() 195 | * @see Crypt_Base::Crypt_Base() 196 | * @param int $mode 197 | * @access public 198 | */ 199 | function __construct($mode = CRYPT_MODE_CBC) 200 | { 201 | switch ($mode) { 202 | // In case of CRYPT_DES_MODE_3CBC, we init as CRYPT_DES_MODE_CBC 203 | // and additional flag us internally as 3CBC 204 | case CRYPT_DES_MODE_3CBC: 205 | parent::Crypt_Base(CRYPT_MODE_CBC); 206 | $this->mode_3cbc = true; 207 | 208 | // This three $des'es will do the 3CBC work (if $key > 64bits) 209 | $this->des = array( 210 | new Crypt_DES(CRYPT_MODE_CBC), 211 | new Crypt_DES(CRYPT_MODE_CBC), 212 | new Crypt_DES(CRYPT_MODE_CBC), 213 | ); 214 | 215 | // we're going to be doing the padding, ourselves, so disable it in the Crypt_DES objects 216 | $this->des[0]->disablePadding(); 217 | $this->des[1]->disablePadding(); 218 | $this->des[2]->disablePadding(); 219 | break; 220 | // If not 3CBC, we init as usual 221 | default: 222 | parent::__construct($mode); 223 | } 224 | } 225 | 226 | /** 227 | * PHP4 compatible Default Constructor. 228 | * 229 | * @see self::__construct() 230 | * @param int $mode 231 | * @access public 232 | */ 233 | function Crypt_TripleDES($mode = CRYPT_MODE_CBC) 234 | { 235 | $this->__construct($mode); 236 | } 237 | 238 | /** 239 | * Test for engine validity 240 | * 241 | * This is mainly just a wrapper to set things up for Crypt_Base::isValidEngine() 242 | * 243 | * @see Crypt_Base::Crypt_Base() 244 | * @param int $engine 245 | * @access public 246 | * @return bool 247 | */ 248 | function isValidEngine($engine) 249 | { 250 | if ($engine == CRYPT_ENGINE_OPENSSL) { 251 | $this->cipher_name_openssl_ecb = 'des-ede3'; 252 | $mode = $this->_openssl_translate_mode(); 253 | $this->cipher_name_openssl = $mode == 'ecb' ? 'des-ede3' : 'des-ede3-' . $mode; 254 | } 255 | 256 | return parent::isValidEngine($engine); 257 | } 258 | 259 | /** 260 | * Sets the initialization vector. (optional) 261 | * 262 | * SetIV is not required when CRYPT_DES_MODE_ECB is being used. If not explicitly set, it'll be assumed 263 | * to be all zero's. 264 | * 265 | * @see Crypt_Base::setIV() 266 | * @access public 267 | * @param string $iv 268 | */ 269 | function setIV($iv) 270 | { 271 | parent::setIV($iv); 272 | if ($this->mode_3cbc) { 273 | $this->des[0]->setIV($iv); 274 | $this->des[1]->setIV($iv); 275 | $this->des[2]->setIV($iv); 276 | } 277 | } 278 | 279 | /** 280 | * Sets the key length. 281 | * 282 | * Valid key lengths are 64, 128 and 192 283 | * 284 | * @see Crypt_Base:setKeyLength() 285 | * @access public 286 | * @param int $length 287 | */ 288 | function setKeyLength($length) 289 | { 290 | $length >>= 3; 291 | switch (true) { 292 | case $length <= 8: 293 | $this->key_length = 8; 294 | break; 295 | case $length <= 16: 296 | $this->key_length = 16; 297 | break; 298 | default: 299 | $this->key_length = 24; 300 | } 301 | 302 | parent::setKeyLength($length); 303 | } 304 | 305 | /** 306 | * Sets the key. 307 | * 308 | * Keys can be of any length. Triple DES, itself, can use 128-bit (eg. strlen($key) == 16) or 309 | * 192-bit (eg. strlen($key) == 24) keys. This function pads and truncates $key as appropriate. 310 | * 311 | * DES also requires that every eighth bit be a parity bit, however, we'll ignore that. 312 | * 313 | * If the key is not explicitly set, it'll be assumed to be all null bytes. 314 | * 315 | * @access public 316 | * @see Crypt_DES::setKey() 317 | * @see Crypt_Base::setKey() 318 | * @param string $key 319 | */ 320 | function setKey($key) 321 | { 322 | $length = $this->explicit_key_length ? $this->key_length : strlen($key); 323 | if ($length > 8) { 324 | $key = str_pad(substr($key, 0, 24), 24, chr(0)); 325 | // if $key is between 64 and 128-bits, use the first 64-bits as the last, per this: 326 | // http://php.net/function.mcrypt-encrypt#47973 327 | $key = $length <= 16 ? substr_replace($key, substr($key, 0, 8), 16) : substr($key, 0, 24); 328 | } else { 329 | $key = str_pad($key, 8, chr(0)); 330 | } 331 | parent::setKey($key); 332 | 333 | // And in case of CRYPT_DES_MODE_3CBC: 334 | // if key <= 64bits we not need the 3 $des to work, 335 | // because we will then act as regular DES-CBC with just a <= 64bit key. 336 | // So only if the key > 64bits (> 8 bytes) we will call setKey() for the 3 $des. 337 | if ($this->mode_3cbc && $length > 8) { 338 | $this->des[0]->setKey(substr($key, 0, 8)); 339 | $this->des[1]->setKey(substr($key, 8, 8)); 340 | $this->des[2]->setKey(substr($key, 16, 8)); 341 | } 342 | } 343 | 344 | /** 345 | * Encrypts a message. 346 | * 347 | * @see Crypt_Base::encrypt() 348 | * @access public 349 | * @param string $plaintext 350 | * @return string $cipertext 351 | */ 352 | function encrypt($plaintext) 353 | { 354 | // parent::en/decrypt() is able to do all the work for all modes and keylengths, 355 | // except for: CRYPT_MODE_3CBC (inner chaining CBC) with a key > 64bits 356 | 357 | // if the key is smaller then 8, do what we'd normally do 358 | if ($this->mode_3cbc && strlen($this->key) > 8) { 359 | return $this->des[2]->encrypt( 360 | $this->des[1]->decrypt( 361 | $this->des[0]->encrypt( 362 | $this->_pad($plaintext) 363 | ) 364 | ) 365 | ); 366 | } 367 | 368 | return parent::encrypt($plaintext); 369 | } 370 | 371 | /** 372 | * Decrypts a message. 373 | * 374 | * @see Crypt_Base::decrypt() 375 | * @access public 376 | * @param string $ciphertext 377 | * @return string $plaintext 378 | */ 379 | function decrypt($ciphertext) 380 | { 381 | if ($this->mode_3cbc && strlen($this->key) > 8) { 382 | return $this->_unpad( 383 | $this->des[0]->decrypt( 384 | $this->des[1]->encrypt( 385 | $this->des[2]->decrypt( 386 | str_pad($ciphertext, (strlen($ciphertext) + 7) & 0xFFFFFFF8, "\0") 387 | ) 388 | ) 389 | ) 390 | ); 391 | } 392 | 393 | return parent::decrypt($ciphertext); 394 | } 395 | 396 | /** 397 | * Treat consecutive "packets" as if they are a continuous buffer. 398 | * 399 | * Say you have a 16-byte plaintext $plaintext. Using the default behavior, the two following code snippets 400 | * will yield different outputs: 401 | * 402 | *


403 |      *    echo $des->encrypt(substr($plaintext, 0, 8));
404 |      *    echo $des->encrypt(substr($plaintext, 8, 8));
405 |      *

406 | *


407 |      *    echo $des->encrypt($plaintext);
408 |      *

409 | * 410 | * The solution is to enable the continuous buffer. Although this will resolve the above discrepancy, it creates 411 | * another, as demonstrated with the following: 412 | * 413 | *


414 |      *    $des->encrypt(substr($plaintext, 0, 8));
415 |      *    echo $des->decrypt($des->encrypt(substr($plaintext, 8, 8)));
416 |      *

417 | *


418 |      *    echo $des->decrypt($des->encrypt(substr($plaintext, 8, 8)));
419 |      *

420 | * 421 | * With the continuous buffer disabled, these would yield the same output. With it enabled, they yield different 422 | * outputs. The reason is due to the fact that the initialization vector's change after every encryption / 423 | * decryption round when the continuous buffer is enabled. When it's disabled, they remain constant. 424 | * 425 | * Put another way, when the continuous buffer is enabled, the state of the Crypt_DES() object changes after each 426 | * encryption / decryption round, whereas otherwise, it'd remain constant. For this reason, it's recommended that 427 | * continuous buffers not be used. They do offer better security and are, in fact, sometimes required (SSH uses them), 428 | * however, they are also less intuitive and more likely to cause you problems. 429 | * 430 | * @see Crypt_Base::enableContinuousBuffer() 431 | * @see self::disableContinuousBuffer() 432 | * @access public 433 | */ 434 | function enableContinuousBuffer() 435 | { 436 | parent::enableContinuousBuffer(); 437 | if ($this->mode_3cbc) { 438 | $this->des[0]->enableContinuousBuffer(); 439 | $this->des[1]->enableContinuousBuffer(); 440 | $this->des[2]->enableContinuousBuffer(); 441 | } 442 | } 443 | 444 | /** 445 | * Treat consecutive packets as if they are a discontinuous buffer. 446 | * 447 | * The default behavior. 448 | * 449 | * @see Crypt_Base::disableContinuousBuffer() 450 | * @see self::enableContinuousBuffer() 451 | * @access public 452 | */ 453 | function disableContinuousBuffer() 454 | { 455 | parent::disableContinuousBuffer(); 456 | if ($this->mode_3cbc) { 457 | $this->des[0]->disableContinuousBuffer(); 458 | $this->des[1]->disableContinuousBuffer(); 459 | $this->des[2]->disableContinuousBuffer(); 460 | } 461 | } 462 | 463 | /** 464 | * Creates the key schedule 465 | * 466 | * @see Crypt_DES::_setupKey() 467 | * @see Crypt_Base::_setupKey() 468 | * @access private 469 | */ 470 | function _setupKey() 471 | { 472 | switch (true) { 473 | // if $key <= 64bits we configure our internal pure-php cipher engine 474 | // to act as regular [1]DES, not as 3DES. mcrypt.so::tripledes does the same. 475 | case strlen($this->key) <= 8: 476 | $this->des_rounds = 1; 477 | break; 478 | 479 | // otherwise, if $key > 64bits, we configure our engine to work as 3DES. 480 | default: 481 | $this->des_rounds = 3; 482 | 483 | // (only) if 3CBC is used we have, of course, to setup the $des[0-2] keys also separately. 484 | if ($this->mode_3cbc) { 485 | $this->des[0]->_setupKey(); 486 | $this->des[1]->_setupKey(); 487 | $this->des[2]->_setupKey(); 488 | 489 | // because $des[0-2] will, now, do all the work we can return here 490 | // not need unnecessary stress parent::_setupKey() with our, now unused, $key. 491 | return; 492 | } 493 | } 494 | // setup our key 495 | parent::_setupKey(); 496 | } 497 | 498 | /** 499 | * Sets the internal crypt engine 500 | * 501 | * @see Crypt_Base::Crypt_Base() 502 | * @see Crypt_Base::setPreferredEngine() 503 | * @param int $engine 504 | * @access public 505 | * @return int 506 | */ 507 | function setPreferredEngine($engine) 508 | { 509 | if ($this->mode_3cbc) { 510 | $this->des[0]->setPreferredEngine($engine); 511 | $this->des[1]->setPreferredEngine($engine); 512 | $this->des[2]->setPreferredEngine($engine); 513 | } 514 | 515 | return parent::setPreferredEngine($engine); 516 | } 517 | } 518 | -------------------------------------------------------------------------------- /resources/File/ANSI.php: -------------------------------------------------------------------------------- 1 | 34 | * @copyright 2012 Jim Wigginton 35 | * @license http://www.opensource.org/licenses/mit-license.html MIT License 36 | * @link http://phpseclib.sourceforge.net 37 | */ 38 | 39 | /** 40 | * Pure-PHP ANSI Decoder 41 | * 42 | * @package File_ANSI 43 | * @author Jim Wigginton 44 | * @access public 45 | */ 46 | class File_ANSI 47 | { 48 | /** 49 | * Max Width 50 | * 51 | * @var int 52 | * @access private 53 | */ 54 | var $max_x; 55 | 56 | /** 57 | * Max Height 58 | * 59 | * @var int 60 | * @access private 61 | */ 62 | var $max_y; 63 | 64 | /** 65 | * Max History 66 | * 67 | * @var int 68 | * @access private 69 | */ 70 | var $max_history; 71 | 72 | /** 73 | * History 74 | * 75 | * @var array 76 | * @access private 77 | */ 78 | var $history; 79 | 80 | /** 81 | * History Attributes 82 | * 83 | * @var array 84 | * @access private 85 | */ 86 | var $history_attrs; 87 | 88 | /** 89 | * Current Column 90 | * 91 | * @var int 92 | * @access private 93 | */ 94 | var $x; 95 | 96 | /** 97 | * Current Row 98 | * 99 | * @var int 100 | * @access private 101 | */ 102 | var $y; 103 | 104 | /** 105 | * Old Column 106 | * 107 | * @var int 108 | * @access private 109 | */ 110 | var $old_x; 111 | 112 | /** 113 | * Old Row 114 | * 115 | * @var int 116 | * @access private 117 | */ 118 | var $old_y; 119 | 120 | /** 121 | * An empty attribute cell 122 | * 123 | * @var object 124 | * @access private 125 | */ 126 | var $base_attr_cell; 127 | 128 | /** 129 | * The current attribute cell 130 | * 131 | * @var object 132 | * @access private 133 | */ 134 | var $attr_cell; 135 | 136 | /** 137 | * An empty attribute row 138 | * 139 | * @var array 140 | * @access private 141 | */ 142 | var $attr_row; 143 | 144 | /** 145 | * The current screen text 146 | * 147 | * @var array 148 | * @access private 149 | */ 150 | var $screen; 151 | 152 | /** 153 | * The current screen attributes 154 | * 155 | * @var array 156 | * @access private 157 | */ 158 | var $attrs; 159 | 160 | /** 161 | * Current ANSI code 162 | * 163 | * @var string 164 | * @access private 165 | */ 166 | var $ansi; 167 | 168 | /** 169 | * Tokenization 170 | * 171 | * @var array 172 | * @access private 173 | */ 174 | var $tokenization; 175 | 176 | /** 177 | * Default Constructor. 178 | * 179 | * @return File_ANSI 180 | * @access public 181 | */ 182 | function __construct() 183 | { 184 | $attr_cell = new stdClass(); 185 | $attr_cell->bold = false; 186 | $attr_cell->underline = false; 187 | $attr_cell->blink = false; 188 | $attr_cell->background = 'black'; 189 | $attr_cell->foreground = 'white'; 190 | $attr_cell->reverse = false; 191 | $this->base_attr_cell = clone($attr_cell); 192 | $this->attr_cell = clone($attr_cell); 193 | 194 | $this->setHistory(200); 195 | $this->setDimensions(80, 24); 196 | } 197 | 198 | /** 199 | * PHP4 compatible Default Constructor. 200 | * 201 | * @see self::__construct() 202 | * @access public 203 | */ 204 | function File_ANSI() 205 | { 206 | $this->__construct($mode); 207 | } 208 | 209 | /** 210 | * Set terminal width and height 211 | * 212 | * Resets the screen as well 213 | * 214 | * @param int $x 215 | * @param int $y 216 | * @access public 217 | */ 218 | function setDimensions($x, $y) 219 | { 220 | $this->max_x = $x - 1; 221 | $this->max_y = $y - 1; 222 | $this->x = $this->y = 0; 223 | $this->history = $this->history_attrs = array(); 224 | $this->attr_row = array_fill(0, $this->max_x + 2, $this->base_attr_cell); 225 | $this->screen = array_fill(0, $this->max_y + 1, ''); 226 | $this->attrs = array_fill(0, $this->max_y + 1, $this->attr_row); 227 | $this->ansi = ''; 228 | } 229 | 230 | /** 231 | * Set the number of lines that should be logged past the terminal height 232 | * 233 | * @param int $x 234 | * @param int $y 235 | * @access public 236 | */ 237 | function setHistory($history) 238 | { 239 | $this->max_history = $history; 240 | } 241 | 242 | /** 243 | * Load a string 244 | * 245 | * @param string $source 246 | * @access public 247 | */ 248 | function loadString($source) 249 | { 250 | $this->setDimensions($this->max_x + 1, $this->max_y + 1); 251 | $this->appendString($source); 252 | } 253 | 254 | /** 255 | * Appdend a string 256 | * 257 | * @param string $source 258 | * @access public 259 | */ 260 | function appendString($source) 261 | { 262 | $this->tokenization = array(''); 263 | for ($i = 0; $i < strlen($source); $i++) { 264 | if (strlen($this->ansi)) { 265 | $this->ansi.= $source[$i]; 266 | $chr = ord($source[$i]); 267 | // http://en.wikipedia.org/wiki/ANSI_escape_code#Sequence_elements 268 | // single character CSI's not currently supported 269 | switch (true) { 270 | case $this->ansi == "\x1B=": 271 | $this->ansi = ''; 272 | continue 2; 273 | case strlen($this->ansi) == 2 && $chr >= 64 && $chr <= 95 && $chr != ord('['): 274 | case strlen($this->ansi) > 2 && $chr >= 64 && $chr <= 126: 275 | break; 276 | default: 277 | continue 2; 278 | } 279 | $this->tokenization[] = $this->ansi; 280 | $this->tokenization[] = ''; 281 | // http://ascii-table.com/ansi-escape-sequences-vt-100.php 282 | switch ($this->ansi) { 283 | case "\x1B[H": // Move cursor to upper left corner 284 | $this->old_x = $this->x; 285 | $this->old_y = $this->y; 286 | $this->x = $this->y = 0; 287 | break; 288 | case "\x1B[J": // Clear screen from cursor down 289 | $this->history = array_merge($this->history, array_slice(array_splice($this->screen, $this->y + 1), 0, $this->old_y)); 290 | $this->screen = array_merge($this->screen, array_fill($this->y, $this->max_y, '')); 291 | 292 | $this->history_attrs = array_merge($this->history_attrs, array_slice(array_splice($this->attrs, $this->y + 1), 0, $this->old_y)); 293 | $this->attrs = array_merge($this->attrs, array_fill($this->y, $this->max_y, $this->attr_row)); 294 | 295 | if (count($this->history) == $this->max_history) { 296 | array_shift($this->history); 297 | array_shift($this->history_attrs); 298 | } 299 | case "\x1B[K": // Clear screen from cursor right 300 | $this->screen[$this->y] = substr($this->screen[$this->y], 0, $this->x); 301 | 302 | array_splice($this->attrs[$this->y], $this->x + 1, $this->max_x - $this->x, array_fill($this->x, $this->max_x - $this->x - 1, $this->base_attr_cell)); 303 | break; 304 | case "\x1B[2K": // Clear entire line 305 | $this->screen[$this->y] = str_repeat(' ', $this->x); 306 | $this->attrs[$this->y] = $this->attr_row; 307 | break; 308 | case "\x1B[?1h": // set cursor key to application 309 | case "\x1B[?25h": // show the cursor 310 | case "\x1B(B": // set united states g0 character set 311 | break; 312 | case "\x1BE": // Move to next line 313 | $this->_newLine(); 314 | $this->x = 0; 315 | break; 316 | default: 317 | switch (true) { 318 | case preg_match('#\x1B\[(\d+)B#', $this->ansi, $match): // Move cursor down n lines 319 | $this->old_y = $this->y; 320 | $this->y+= $match[1]; 321 | break; 322 | case preg_match('#\x1B\[(\d+);(\d+)H#', $this->ansi, $match): // Move cursor to screen location v,h 323 | $this->old_x = $this->x; 324 | $this->old_y = $this->y; 325 | $this->x = $match[2] - 1; 326 | $this->y = $match[1] - 1; 327 | break; 328 | case preg_match('#\x1B\[(\d+)C#', $this->ansi, $match): // Move cursor right n lines 329 | $this->old_x = $this->x; 330 | $this->x+= $match[1]; 331 | break; 332 | case preg_match('#\x1B\[(\d+)D#', $this->ansi, $match): // Move cursor left n lines 333 | $this->old_x = $this->x; 334 | $this->x-= $match[1]; 335 | if ($this->x < 0) { 336 | $this->x = 0; 337 | } 338 | break; 339 | case preg_match('#\x1B\[(\d+);(\d+)r#', $this->ansi, $match): // Set top and bottom lines of a window 340 | break; 341 | case preg_match('#\x1B\[(\d*(?:;\d*)*)m#', $this->ansi, $match): // character attributes 342 | $attr_cell = &$this->attr_cell; 343 | $mods = explode(';', $match[1]); 344 | foreach ($mods as $mod) { 345 | switch ($mod) { 346 | case 0: // Turn off character attributes 347 | $attr_cell = clone($this->base_attr_cell); 348 | break; 349 | case 1: // Turn bold mode on 350 | $attr_cell->bold = true; 351 | break; 352 | case 4: // Turn underline mode on 353 | $attr_cell->underline = true; 354 | break; 355 | case 5: // Turn blinking mode on 356 | $attr_cell->blink = true; 357 | break; 358 | case 7: // Turn reverse video on 359 | $attr_cell->reverse = !$attr_cell->reverse; 360 | $temp = $attr_cell->background; 361 | $attr_cell->background = $attr_cell->foreground; 362 | $attr_cell->foreground = $temp; 363 | break; 364 | default: // set colors 365 | //$front = $attr_cell->reverse ? &$attr_cell->background : &$attr_cell->foreground; 366 | $front = &$attr_cell->{ $attr_cell->reverse ? 'background' : 'foreground' }; 367 | //$back = $attr_cell->reverse ? &$attr_cell->foreground : &$attr_cell->background; 368 | $back = &$attr_cell->{ $attr_cell->reverse ? 'foreground' : 'background' }; 369 | switch ($mod) { 370 | // @codingStandardsIgnoreStart 371 | case 30: $front = 'black'; break; 372 | case 31: $front = 'red'; break; 373 | case 32: $front = 'green'; break; 374 | case 33: $front = 'yellow'; break; 375 | case 34: $front = 'blue'; break; 376 | case 35: $front = 'magenta'; break; 377 | case 36: $front = 'cyan'; break; 378 | case 37: $front = 'white'; break; 379 | 380 | case 40: $back = 'black'; break; 381 | case 41: $back = 'red'; break; 382 | case 42: $back = 'green'; break; 383 | case 43: $back = 'yellow'; break; 384 | case 44: $back = 'blue'; break; 385 | case 45: $back = 'magenta'; break; 386 | case 46: $back = 'cyan'; break; 387 | case 47: $back = 'white'; break; 388 | // @codingStandardsIgnoreEnd 389 | 390 | default: 391 | //user_error('Unsupported attribute: ' . $mod); 392 | $this->ansi = ''; 393 | break 2; 394 | } 395 | } 396 | } 397 | break; 398 | default: 399 | //user_error("{$this->ansi} is unsupported\r\n"); 400 | } 401 | } 402 | $this->ansi = ''; 403 | continue; 404 | } 405 | 406 | $this->tokenization[count($this->tokenization) - 1].= $source[$i]; 407 | switch ($source[$i]) { 408 | case "\r": 409 | $this->x = 0; 410 | break; 411 | case "\n": 412 | $this->_newLine(); 413 | break; 414 | case "\x08": // backspace 415 | if ($this->x) { 416 | $this->x--; 417 | $this->attrs[$this->y][$this->x] = clone($this->base_attr_cell); 418 | $this->screen[$this->y] = substr_replace( 419 | $this->screen[$this->y], 420 | $source[$i], 421 | $this->x, 422 | 1 423 | ); 424 | } 425 | break; 426 | case "\x0F": // shift 427 | break; 428 | case "\x1B": // start ANSI escape code 429 | $this->tokenization[count($this->tokenization) - 1] = substr($this->tokenization[count($this->tokenization) - 1], 0, -1); 430 | //if (!strlen($this->tokenization[count($this->tokenization) - 1])) { 431 | // array_pop($this->tokenization); 432 | //} 433 | $this->ansi.= "\x1B"; 434 | break; 435 | default: 436 | $this->attrs[$this->y][$this->x] = clone($this->attr_cell); 437 | if ($this->x > strlen($this->screen[$this->y])) { 438 | $this->screen[$this->y] = str_repeat(' ', $this->x); 439 | } 440 | $this->screen[$this->y] = substr_replace( 441 | $this->screen[$this->y], 442 | $source[$i], 443 | $this->x, 444 | 1 445 | ); 446 | 447 | if ($this->x > $this->max_x) { 448 | $this->x = 0; 449 | $this->_newLine(); 450 | } else { 451 | $this->x++; 452 | } 453 | } 454 | } 455 | } 456 | 457 | /** 458 | * Add a new line 459 | * 460 | * Also update the $this->screen and $this->history buffers 461 | * 462 | * @access private 463 | */ 464 | function _newLine() 465 | { 466 | //if ($this->y < $this->max_y) { 467 | // $this->y++; 468 | //} 469 | 470 | while ($this->y >= $this->max_y) { 471 | $this->history = array_merge($this->history, array(array_shift($this->screen))); 472 | $this->screen[] = ''; 473 | 474 | $this->history_attrs = array_merge($this->history_attrs, array(array_shift($this->attrs))); 475 | $this->attrs[] = $this->attr_row; 476 | 477 | if (count($this->history) >= $this->max_history) { 478 | array_shift($this->history); 479 | array_shift($this->history_attrs); 480 | } 481 | 482 | $this->y--; 483 | } 484 | $this->y++; 485 | } 486 | 487 | /** 488 | * Returns the current coordinate without preformating 489 | * 490 | * @access private 491 | * @return string 492 | */ 493 | function _processCoordinate($last_attr, $cur_attr, $char) 494 | { 495 | $output = ''; 496 | 497 | if ($last_attr != $cur_attr) { 498 | $close = $open = ''; 499 | if ($last_attr->foreground != $cur_attr->foreground) { 500 | if ($cur_attr->foreground != 'white') { 501 | $open.= ''; 502 | } 503 | if ($last_attr->foreground != 'white') { 504 | $close = '' . $close; 505 | } 506 | } 507 | if ($last_attr->background != $cur_attr->background) { 508 | if ($cur_attr->background != 'black') { 509 | $open.= ''; 510 | } 511 | if ($last_attr->background != 'black') { 512 | $close = '' . $close; 513 | } 514 | } 515 | if ($last_attr->bold != $cur_attr->bold) { 516 | if ($cur_attr->bold) { 517 | $open.= ''; 518 | } else { 519 | $close = '' . $close; 520 | } 521 | } 522 | if ($last_attr->underline != $cur_attr->underline) { 523 | if ($cur_attr->underline) { 524 | $open.= ''; 525 | } else { 526 | $close = '' . $close; 527 | } 528 | } 529 | if ($last_attr->blink != $cur_attr->blink) { 530 | if ($cur_attr->blink) { 531 | $open.= ''; 532 | } else { 533 | $close = '' . $close; 534 | } 535 | } 536 | $output.= $close . $open; 537 | } 538 | 539 | $output.= htmlspecialchars($char); 540 | 541 | return $output; 542 | } 543 | 544 | /** 545 | * Returns the current screen without preformating 546 | * 547 | * @access private 548 | * @return string 549 | */ 550 | function _getScreen() 551 | { 552 | $output = ''; 553 | $last_attr = $this->base_attr_cell; 554 | for ($i = 0; $i <= $this->max_y; $i++) { 555 | for ($j = 0; $j <= $this->max_x; $j++) { 556 | $cur_attr = $this->attrs[$i][$j]; 557 | $output.= $this->_processCoordinate($last_attr, $cur_attr, isset($this->screen[$i][$j]) ? $this->screen[$i][$j] : ''); 558 | $last_attr = $this->attrs[$i][$j]; 559 | } 560 | $output.= "\r\n"; 561 | } 562 | $output = substr($output, 0, -2); 563 | // close any remaining open tags 564 | $output.= $this->_processCoordinate($last_attr, $this->base_attr_cell, ''); 565 | return rtrim($output); 566 | } 567 | 568 | /** 569 | * Returns the current screen 570 | * 571 | * @access public 572 | * @return string 573 | */ 574 | function getScreen() 575 | { 576 | return '

' . $this->_getScreen() . '

'; 577 | } 578 | 579 | /** 580 | * Returns the current screen and the x previous lines 581 | * 582 | * @access public 583 | * @return string 584 | */ 585 | function getHistory() 586 | { 587 | $scrollback = ''; 588 | $last_attr = $this->base_attr_cell; 589 | for ($i = 0; $i < count($this->history); $i++) { 590 | for ($j = 0; $j <= $this->max_x + 1; $j++) { 591 | $cur_attr = $this->history_attrs[$i][$j]; 592 | $scrollback.= $this->_processCoordinate($last_attr, $cur_attr, isset($this->history[$i][$j]) ? $this->history[$i][$j] : ''); 593 | $last_attr = $this->history_attrs[$i][$j]; 594 | } 595 | $scrollback.= "\r\n"; 596 | } 597 | $base_attr_cell = $this->base_attr_cell; 598 | $this->base_attr_cell = $last_attr; 599 | $scrollback.= $this->_getScreen(); 600 | $this->base_attr_cell = $base_attr_cell; 601 | 602 | return '

' . $scrollback . '

'; 603 | } 604 | } 605 | --------------------------------------------------------------------------------

Server Name / Guest page title:	67 \| 68 \|
Options:	ShowPlayersList) ? "checked" : ""; ?> value="1"> 73 \| Show players' list to guests 74 \| EnableStatus) ? "checked" : ""; ?> value="1"> 75 \| Show server status with bulletins to guests 76 \| 77 \| 78 \|

Protected Area

The site has been blocked

ServerName;?>

">

Bulletins Tracker

49 | Server Remote Console 50 | 51 | 52 |

General settings

Guest Page configuration

RCON configuration RECOMMENDED

SSH configuration RECOMMENDED

Bulletins Management

Edit Bulletin

New Bulletin

".$day."

Server Configuration

Server Banlist

Server Logs

Server information

Online players

Protected Area

The site has been blocked

ServerName;?>

">

Bulletins Tracker

49 | Server Remote Console 50 | 51 | 52 |

General settings

Guest Page configuration

RCON configuration RECOMMENDED

SSH configuration RECOMMENDED

Bulletins Management

Edit Bulletin

New Bulletin

Choose an action

".$day."

Server Configuration

Server Banlist

Server Logs

Server information

Online players