2007-07-02 05:51:26 +00:00
|
|
|
<?php
|
2009-08-29 13:54:25 +00:00
|
|
|
$history = &$_SESSION["history"][$_GET["server"]][DB];
|
2009-07-17 13:53:10 +00:00
|
|
|
if (!$error && $_POST["clear"]) {
|
|
|
|
|
$history = array();
|
|
|
|
|
redirect(remove_from_uri("history"));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
page_header(lang('SQL command'), $error);
|
2007-07-02 05:51:26 +00:00
|
|
|
|
2008-09-30 12:22:24 +00:00
|
|
|
if (!$error && $_POST) {
|
2009-09-01 13:09:00 +00:00
|
|
|
$fp = false;
|
2009-08-26 11:55:45 +00:00
|
|
|
$query = $_POST["query"];
|
|
|
|
|
if ($_POST["webfile"]) {
|
2009-09-01 13:09:00 +00:00
|
|
|
$fp = @fopen((file_exists("adminer.sql") ? "adminer.sql"
|
2009-08-29 13:50:28 +00:00
|
|
|
: (file_exists("adminer.sql.gz") ? "compress.zlib://adminer.sql.gz"
|
|
|
|
|
: "compress.bzip2://adminer.sql.bz2"
|
2009-09-01 13:09:00 +00:00
|
|
|
)), "rb");
|
|
|
|
|
$query = ($fp ? fread($fp, 1e6) : false);
|
2009-08-26 11:55:45 +00:00
|
|
|
} elseif ($_POST["file"]) {
|
2009-08-28 11:49:57 +00:00
|
|
|
$query = get_file("sql_file", true);
|
2009-08-26 11:55:45 +00:00
|
|
|
}
|
2009-09-01 13:09:00 +00:00
|
|
|
if (is_string($query)) { // get_file() returns error as number, fread() as false
|
2009-08-26 14:27:12 +00:00
|
|
|
$space = "(\\s|/\\*.*\\*/|(#|-- )[^\n]*\n|--\n)";
|
|
|
|
|
$alter_database = "(CREATE|DROP)$space+(DATABASE|SCHEMA)\\b~isU";
|
|
|
|
|
$databases = &$_SESSION["databases"][$_GET["server"]];
|
2009-09-09 15:51:26 +00:00
|
|
|
if (!$fp && strlen($query) && (!$history || end($history) != $query)) { // don't add repeated
|
|
|
|
|
$history[] = $query;
|
|
|
|
|
}
|
2009-08-26 14:27:12 +00:00
|
|
|
if (isset($databases) && !preg_match("~\\b$alter_database", $query)) { // quick check - may be inside string
|
2009-09-01 13:09:00 +00:00
|
|
|
//! false positive with $fp
|
2009-08-26 14:27:12 +00:00
|
|
|
session_write_close();
|
|
|
|
|
}
|
2008-09-30 12:22:24 +00:00
|
|
|
$delimiter = ";";
|
|
|
|
|
$offset = 0;
|
|
|
|
|
$empty = true;
|
2009-08-29 13:54:25 +00:00
|
|
|
$dbh2 = (strlen(DB) ? connect() : null); // connection for exploring indexes (to not replace FOUND_ROWS()) //! PDO - silent error
|
2009-06-03 18:34:57 +00:00
|
|
|
if (is_object($dbh2)) {
|
2009-08-29 13:54:25 +00:00
|
|
|
$dbh2->select_db(DB);
|
2009-06-03 18:34:57 +00:00
|
|
|
}
|
2009-06-16 10:31:09 +00:00
|
|
|
while (strlen($query)) {
|
2008-09-30 12:22:24 +00:00
|
|
|
if (!$offset && preg_match('~^\\s*DELIMITER\\s+(.+)~i', $query, $match)) {
|
2008-10-02 15:23:30 +00:00
|
|
|
$delimiter = $match[1];
|
2008-09-30 12:22:24 +00:00
|
|
|
$query = substr($query, strlen($match[0]));
|
2009-08-21 12:43:46 +00:00
|
|
|
} else {
|
|
|
|
|
preg_match('(' . preg_quote($delimiter) . '|[\'`"]|/\\*|-- |#|$)', $query, $match, PREG_OFFSET_CAPTURE, $offset); // should always match
|
|
|
|
|
$found = $match[0][0];
|
|
|
|
|
$offset = $match[0][1] + strlen($found);
|
2009-09-01 13:09:00 +00:00
|
|
|
if (!$found && $fp && !feof($fp)) {
|
|
|
|
|
$query .= fread($fp, 1e6);
|
|
|
|
|
} else {
|
|
|
|
|
if (!$found && !strlen(rtrim($query))) {
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
if (!$found || $found == $delimiter) { // end of a query
|
|
|
|
|
$empty = false;
|
|
|
|
|
echo "<pre class='jush-sql'>" . shorten_utf8(trim(substr($query, 0, $match[0][1]))) . "</pre>\n";
|
|
|
|
|
ob_flush();
|
|
|
|
|
flush(); // can take a long time - show the running query
|
|
|
|
|
$start = explode(" ", microtime()); // microtime(true) is available since PHP 5
|
|
|
|
|
//! don't allow changing of character_set_results, convert encoding of displayed query
|
|
|
|
|
if (!$dbh->multi_query(substr($query, 0, $match[0][1]))) {
|
|
|
|
|
echo "<p class='error'>" . lang('Error in query') . ": " . h($dbh->error) . "\n";
|
|
|
|
|
if ($_POST["error_stops"]) {
|
|
|
|
|
break;
|
2009-08-05 14:27:34 +00:00
|
|
|
}
|
2009-09-01 13:09:00 +00:00
|
|
|
} else {
|
|
|
|
|
$end = explode(" ", microtime());
|
|
|
|
|
$i = 0;
|
|
|
|
|
do {
|
|
|
|
|
$result = $dbh->store_result();
|
|
|
|
|
if (!$i) {
|
2009-09-11 17:08:18 +00:00
|
|
|
echo "<p class='time'>" . (is_object($result) ? lang('%d row(s)', $result->num_rows) . ", ": "") . lang('%.3f s', max(0, $end[0] - $start[0] + $end[1] - $start[1])) . "</p>\n";
|
2009-09-01 13:09:00 +00:00
|
|
|
$i++;
|
|
|
|
|
}
|
|
|
|
|
if (is_object($result)) {
|
|
|
|
|
select($result, $dbh2);
|
|
|
|
|
} else {
|
|
|
|
|
if (preg_match("~^$space*$alter_database", $query)) {
|
|
|
|
|
$databases = null; // clear cache
|
|
|
|
|
}
|
|
|
|
|
echo "<p class='message'>" . lang('Query executed OK, %d row(s) affected.', $dbh->affected_rows) . "\n";
|
2008-09-30 12:22:24 +00:00
|
|
|
}
|
2009-09-01 13:09:00 +00:00
|
|
|
unset($result); // free resultset
|
|
|
|
|
} while ($dbh->next_result());
|
|
|
|
|
}
|
|
|
|
|
$query = substr($query, $offset);
|
|
|
|
|
$offset = 0;
|
|
|
|
|
} else { // find matching quote or comment end
|
|
|
|
|
while (preg_match('~' . ($found == '/*' ? '\\*/' : (ereg('-- |#', $found) ? "\n" : "$found|\\\\.")) . '|$~s', $query, $match, PREG_OFFSET_CAPTURE, $offset)) { //! respect sql_mode NO_BACKSLASH_ESCAPES
|
|
|
|
|
$s = $match[0][0];
|
|
|
|
|
$offset = $match[0][1] + strlen($s);
|
|
|
|
|
if (!$s && $fp && !feof($fp)) {
|
|
|
|
|
$query .= fread($fp, 1e6);
|
|
|
|
|
} elseif ($s[0] != "\\") {
|
|
|
|
|
break;
|
2007-07-17 05:54:19 +00:00
|
|
|
}
|
2009-08-26 11:55:45 +00:00
|
|
|
}
|
|
|
|
|
}
|
2007-07-10 13:30:42 +00:00
|
|
|
}
|
2007-07-02 05:51:26 +00:00
|
|
|
}
|
|
|
|
|
}
|
2008-09-30 12:22:24 +00:00
|
|
|
if ($empty) {
|
2009-07-11 20:30:40 +00:00
|
|
|
echo "<p class='message'>" . lang('No commands to execute.') . "\n";
|
2008-09-30 12:22:24 +00:00
|
|
|
}
|
|
|
|
|
} else {
|
2009-07-16 13:46:49 +00:00
|
|
|
echo "<p class='error'>" . upload_error($query) . "\n";
|
2007-07-02 05:51:26 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
?>
|
2007-07-09 14:45:11 +00:00
|
|
|
|
2009-06-15 08:18:19 +00:00
|
|
|
<form action="" method="post" enctype="multipart/form-data">
|
2009-09-09 15:51:26 +00:00
|
|
|
<p><textarea name="query" rows="20" cols="80" style="width: 98%;"><?php echo h($_POST ? $_POST["query"] : (strlen($_GET["history"]) ? $history[$_GET["history"]] : $_GET["sql"])); ?></textarea>
|
2007-07-11 11:19:16 +00:00
|
|
|
<p>
|
2009-07-11 20:30:40 +00:00
|
|
|
<input type="hidden" name="token" value="<?php echo $token; ?>">
|
|
|
|
|
<input type="submit" value="<?php echo lang('Execute'); ?>">
|
2009-07-28 16:28:47 +00:00
|
|
|
<label><input type="checkbox" name="error_stops" value="1"<?php echo ($_POST["error_stops"] ? " checked" : ""); ?>><?php echo lang('Stop on error'); ?></label>
|
2007-07-09 06:12:22 +00:00
|
|
|
|
2009-06-21 23:58:15 +00:00
|
|
|
<p>
|
2007-07-09 06:12:22 +00:00
|
|
|
<?php
|
|
|
|
|
if (!ini_get("file_uploads")) {
|
2009-06-21 23:58:15 +00:00
|
|
|
echo lang('File uploads are disabled.');
|
2007-07-09 06:12:22 +00:00
|
|
|
} else { ?>
|
2009-07-11 20:30:40 +00:00
|
|
|
<?php echo lang('File upload'); ?>: <input type="file" name="sql_file">
|
2009-07-13 22:42:47 +00:00
|
|
|
<input type="submit" name="file" value="<?php echo lang('Run file'); ?>">
|
2009-06-21 23:58:15 +00:00
|
|
|
<?php } ?>
|
2009-06-15 09:07:05 +00:00
|
|
|
|
2009-08-25 15:58:04 +00:00
|
|
|
<p><?php echo lang('Webserver file %s', '<code>adminer.sql</code>'); ?> <input type="submit" name="webfile" value="<?php echo lang('Run file'); ?>">
|
|
|
|
|
|
2009-06-15 09:07:05 +00:00
|
|
|
<?php
|
|
|
|
|
if ($history) {
|
|
|
|
|
echo "<fieldset><legend>" . lang('History') . "</legend>\n";
|
|
|
|
|
foreach ($history as $key => $val) {
|
2009-06-21 23:20:32 +00:00
|
|
|
//! save and display timestamp
|
2009-08-26 11:55:45 +00:00
|
|
|
echo '<a href="' . h(ME . "sql=&history=$key") . '">' . lang('Edit') . '</a> <code class="jush-sql">' . shorten_utf8(ltrim(str_replace("\n", " ", str_replace("\r", "", preg_replace('~^(#|-- ).*~m', '', $val)))), 80, "</code>") . "<br>\n";
|
2009-06-15 09:07:05 +00:00
|
|
|
}
|
2009-07-17 13:53:10 +00:00
|
|
|
echo "<input type='submit' name='clear' value='" . lang('Clear') . "'>\n";
|
2009-06-15 09:07:05 +00:00
|
|
|
echo "</fieldset>\n";
|
|
|
|
|
}
|
|
|
|
|
?>
|
|
|
|
|
|
2007-07-02 05:51:26 +00:00
|
|
|
</form>
|
