Home Explore Help
Sign In
wqg
/
typecho_wqg
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: d9e0baed4a
Branches Tags
typecho_wqg
/
var
/
Typecho
/
Common.php

Common.php 53 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697989910010110210310410510610710810911011111211311411511611711811912012112212312412512612712812913013113213313413513613713813914014114214314414514614714814915015115215315415515615715815916016116216316416516616716816917017117217317417517617717817918018118218318418518618718818919019119219319419519619719819920020120220320420520620720820921021121221321421521621721821922022122222322422522622722822923023123223323423523623723823924024124224324424524624724824925025125225325425525625725825926026126226326426526626726826927027127227327427527627727827928028128228328428528628728828929029129229329429529629729829930030130230330430530630730830931031131231331431531631731831932032132232332432532632732832933033133233333433533633733833934034134234334434534634734834935035135235335435535635735835936036136236336436536636736836937037137237337437537637737837938038138238338438538638738838939039139239339439539639739839940040140240340440540640740840941041141241341441541641741841942042142242342442542642742842943043143243343443543643743843944044144244344444544644744844945045145245345445545645745845946046146246346446546646746846947047147247347447547647747847948048148248348448548648748848949049149249349449549649749849950050150250350450550650750850951051151251351451551651751851952052152252352452552652752852953053153253353453553653753853954054154254354454554654754854955055155255355455555655755855956056156256356456556656756856957057157257357457557657757857958058158258358458558658758858959059159259359459559659759859960060160260360460560660760860961061161261361461561661761861962062162262362462562662762862963063163263363463563663763863964064164264364464564664764864965065165265365465565665765865966066166266366466566666766866967067167267367467567667767867968068168268368468568668768868969069169269369469569669769869970070170270370470570670770870971071171271371471571671771871972072172272372472572672772872973073173273373473573673773873974074174274374474574674774874975075175275375475575675775875976076176276376476576676776876977077177277377477577677777877978078178278378478578678778878979079179279379479579679779879980080180280380480580680780880981081181281381481581681781881982082182282382482582682782882983083183283383483583683783883984084184284384484584684784884985085185285385485585685785885986086186286386486586686786886987087187287387487587687787887988088188288388488588688788888989089189289389489589689789889990090190290390490590690790890991091191291391491591691791891992092192292392492592692792892993093193293393493593693793893994094194294394494594694794894995095195295395495595695795895996096196296396496596696796896997097197297397497597697797897998098198298398498598698798898999099199299399499599699799899910001001100210031004100510061007100810091010101110121013101410151016101710181019102010211022102310241025102610271028102910301031103210331034103510361037103810391040104110421043104410451046104710481049105010511052105310541055105610571058105910601061106210631064106510661067106810691070107110721073107410751076107710781079108010811082108310841085108610871088108910901091109210931094109510961097109810991100110111021103110411051106110711081109111011111112111311141115111611171118111911201121112211231124112511261127112811291130113111321133113411351136113711381139114011411142114311441145114611471148114911501151115211531154115511561157115811591160116111621163116411651166116711681169117011711172117311741175117611771178117911801181118211831184118511861187118811891190119111921193119411951196119711981199120012011202120312041205120612071208120912101211121212131214121512161217121812191220122112221223122412251226122712281229123012311232123312341235123612371238123912401241124212431244124512461247124812491250125112521253125412551256125712581259126012611262126312641265126612671268126912701271127212731274127512761277127812791280128112821283128412851286128712881289129012911292129312941295129612971298129913001301130213031304130513061307130813091310131113121313131413151316131713181319132013211322132313241325132613271328132913301331133213331334133513361337133813391340134113421343134413451346134713481349135013511352135313541355135613571358135913601361136213631364136513661367136813691370137113721373137413751376137713781379138013811382138313841385138613871388138913901391139213931394139513961397139813991400140114021403140414051406140714081409141014111412141314141415141614171418141914201421142214231424142514261427142814291430143114321433143414351436143714381439144014411442144314441445144614471448144914501451145214531454145514561457145814591460146114621463146414651466146714681469147014711472147314741475147614771478147914801481 
  1. <?php
    2. 

  2. 

  3. namespace {
    4. 

  4. 

  5.     use Typecho\I18n;
    6. 

  6. 

  7.     /**
    8. 

  8.      * @deprecated use json_encode and json_decode directly
    9. 

  9.      */
    10. 

  10.     class Json
    11. 

  11.     {
    12. 

  12.         /**
    13. 

  13.          * @param $value
    14. 

  14.          * @return string
    15. 

  15.          */
    16. 

  16.         public static function encode($value): string
    17. 

  17.         {
    18. 

  18.             return json_encode($value);
    19. 

  19.         }
    20. 

  20. 

  21.         /**
    22. 

  22.          * @param string $string
    23. 

  23.          * @param bool $assoc
    24. 

  24.          * @return mixed
    25. 

  25.          */
    26. 

  26.         public static function decode(string $string, bool $assoc = false)
    27. 

  27.         {
    28. 

  28.             return json_decode($string, $assoc);
    29. 

  29.         }
    30. 

  30.     }
    31. 

  31. 

  32.     /**
    33. 

  33.      * I18n function
    34. 

  34.      *
    35. 

  35.      * @param string $string 需要翻译的文字
    36. 

  36.      * @param mixed ...$args 参数
    37. 

  37.      *
    38. 

  38.      * @return string
    39. 

  39.      */
    40. 

  40.     function _t(string $string, ...$args): string
    41. 

  41.     {
    42. 

  42.         if (empty($args)) {
    43. 

  43.             return I18n::translate($string);
    44. 

  44.         } else {
    45. 

  45.             return vsprintf(I18n::translate($string), $args);
    46. 

  46.         }
    47. 

  47.     }
    48. 

  48. 

  49.     /**
    50. 

  50.      * I18n function, translate and echo
    51. 

  51.      *
    52. 

  52.      * @param string $string 需要翻译的文字
    53. 

  53.      * @param mixed ...$args 参数
    54. 

  54.      */
    55. 

  55.     function _e(string $string, ...$args)
    56. 

  56.     {
    57. 

  57.         array_unshift($args, $string);
    58. 

  58.         echo call_user_func_array('_t', $args);
    59. 

  59.     }
    60. 

  60. 

  61.     /**
    62. 

  62.      * 针对复数形式的翻译函数
    63. 

  63.      *
    64. 

  64.      * @param string $single 单数形式的翻译
    65. 

  65.      * @param string $plural 复数形式的翻译
    66. 

  66.      * @param integer $number 数字
    67. 

  67.      *
    68. 

  68.      * @return string
    69. 

  69.      */
    70. 

  70.     function _n(string $single, string $plural, int $number): string
    71. 

  71.     {
    72. 

  72.         return str_replace('%d', $number, I18n::ngettext($single, $plural, $number));
    73. 

  73.     }
    74. 

  74. }
    75. 

  75. 

  76. namespace Typecho {
    77. 

  77.     const PLUGIN_NAMESPACE = 'TypechoPlugin';
    78. 

  78. 

  79.     spl_autoload_register(function (string $className) {
    80. 

  80.         $isDefinedAlias = defined('__TYPECHO_CLASS_ALIASES__');
    81. 

  81.         $isNamespace = strpos($className, '\\') !== false;
    82. 

  82.         $isAlias = $isDefinedAlias && isset(__TYPECHO_CLASS_ALIASES__[$className]);
    83. 

  83.         $isPlugin = false;
    84. 

  84. 

  85.         // detect if class is predefined
    86. 

  86.         if ($isNamespace) {
    87. 

  87.             $isPlugin = strpos(ltrim($className, '\\'), PLUGIN_NAMESPACE . '\\') !== false;
    88. 

  88. 

  89.             if ($isPlugin) {
    90. 

  90.                 $realClassName = substr($className, strlen(PLUGIN_NAMESPACE) + 1);
    91. 

  91.                 $alias = Common::nativeClassName($realClassName);
    92. 

  92.                 $path = str_replace('\\', '/', $realClassName);
    93. 

  93.             } else {
    94. 

  94.                 if ($isDefinedAlias) {
    95. 

  95.                     $alias = array_search('\\' . ltrim($className, '\\'), __TYPECHO_CLASS_ALIASES__);
    96. 

  96.                 }
    97. 

  97. 

  98.                 $alias = empty($alias) ? Common::nativeClassName($className) : $alias;
    99. 

  99.                 $path = str_replace('\\', '/', $className);
    100. 

  100.             }
    101. 

  101.         } elseif (strpos($className, '_') !== false || $isAlias) {
    102. 

  102.             $isPlugin = !$isAlias && !preg_match("/^(Typecho|Widget|IXR)_/", $className);
    103. 

  103. 

  104.             if ($isPlugin) {
    105. 

  105.                 $alias = '\\TypechoPlugin\\' . str_replace('_', '\\', $className);
    106. 

  106.                 $path = str_replace('_', '/', $className);
    107. 

  107.             } else {
    108. 

  108.                 $alias = $isAlias ? __TYPECHO_CLASS_ALIASES__[$className]
    109. 

  109.                     : '\\' . str_replace('_', '\\', $className);
    110. 

  110. 

  111.                 $path = str_replace('\\', '/', $alias);
    112. 

  112.             }
    113. 

  113.         } else {
    114. 

  114.             $path = $className;
    115. 

  115.         }
    116. 

  116. 

  117.         if (
    118. 

  118.             isset($alias)
    119. 

  119.             && (class_exists($alias, false)
    120. 

  120.                 || interface_exists($alias, false)
    121. 

  121.                 || trait_exists($alias, false))
    122. 

  122.         ) {
    123. 

  123.             class_alias($alias, $className, false);
    124. 

  124.             return;
    125. 

  125.         }
    126. 

  126. 

  127.         // load class file
    128. 

  128.         $path .= '.php';
    129. 

  129.         $defaultFile = __TYPECHO_ROOT_DIR__ . '/var/' . $path;
    130. 

  130. 

  131.         if (file_exists($defaultFile) && !$isPlugin) {
    132. 

  132.             include_once $defaultFile;
    133. 

  133.         } else {
    134. 

  134.             $pluginFile = __TYPECHO_ROOT_DIR__ . __TYPECHO_PLUGIN_DIR__ . '/' . $path;
    135. 

  135. 

  136.             if (file_exists($pluginFile)) {
    137. 

  137.                 include_once $pluginFile;
    138. 

  138.             } else {
    139. 

  139.                 return;
    140. 

  140.             }
    141. 

  141.         }
    142. 

  142. 

  143.         if (isset($alias)) {
    144. 

  144.             $classLoaded = class_exists($className, false)
    145. 

  145.                 || interface_exists($className, false)
    146. 

  146.                 || trait_exists($className, false);
    147. 

  147. 

  148.             $aliasLoaded = class_exists($alias, false)
    149. 

  149.                 || interface_exists($alias, false)
    150. 

  150.                 || trait_exists($alias, false);
    151. 

  151. 

  152.             if ($classLoaded && !$aliasLoaded) {
    153. 

  153.                 class_alias($className, $alias);
    154. 

  154.             } elseif ($aliasLoaded && !$classLoaded) {
    155. 

  155.                 class_alias($alias, $className);
    156. 

  156.             }
    157. 

  157.         }
    158. 

  158.     });
    159. 

  159. 

  160.     /**
    161. 

  161.      * Typecho公用方法
    162. 

  162.      *
    163. 

  163.      * @category typecho
    164. 

  164.      * @package Common
    165. 

  165.      * @copyright Copyright (c) 2008 Typecho team (http://www.typecho.org)
    166. 

  166.      * @license GNU General Public License 2.0
    167. 

  167.      */
    168. 

  168.     class Common
    169. 

  169.     {
    170. 

  170.         /** 程序版本 */
    171. 

  171.         public const VERSION = '1.2.1';
    172. 

  172. 

  173.         /**
    174. 

  174.          * 将路径转化为链接
    175. 

  175.          *
    176. 

  176.          * @access public
    177. 

  177.          *
    178. 

  178.          * @param string|null $path 路径
    179. 

  179.          * @param string|null $prefix 前缀
    180. 

  180.          *
    181. 

  181.          * @return string
    182. 

  182.          */
    183. 

  183.         public static function url(?string $path, ?string $prefix): string
    184. 

  184.         {
    185. 

  185.             $path = $path ?? '';
    186. 

  186.             $path = (0 === strpos($path, './')) ? substr($path, 2) : $path;
    187. 

  187.             return rtrim($prefix ?? '', '/') . '/'
    188. 

  188.                 . str_replace('//', '/', ltrim($path, '/'));
    189. 

  189.         }
    190. 

  190. 

  191.         /**
    192. 

  192.          * 程序初始化方法
    193. 

  193.          *
    194. 

  194.          * @access public
    195. 

  195.          * @return void
    196. 

  196.          */
    197. 

  197.         public static function init()
    198. 

  198.         {
    199. 

  199.             // init response
    200. 

  200.             Response::getInstance()->enableAutoSendHeaders(false);
    201. 

  201. 

  202.             ob_start(function ($content) {
    203. 

  203.                 Response::getInstance()->sendHeaders();
    204. 

  204.                 return $content;
    205. 

  205.             });
    206. 

  206. 

  207.             /** 设置异常截获函数 */
    208. 

  208.             set_exception_handler(function (\Throwable $exception) {
    209. 

  209.                 echo '<pre><code>';
    210. 

  210.                 echo '<h1>' . htmlspecialchars($exception->getMessage()) . '</h1>';
    211. 

  211.                 echo htmlspecialchars($exception->__toString());
    212. 

  212.                 echo '</code></pre>';
    213. 

  213.                 exit;
    214. 

  214.             });
    215. 

  215.         }
    216. 

  216. 

  217.         /**
    218. 

  218.          * 输出错误页面
    219. 

  219.          *
    220. 

  220.          * @param \Throwable $exception 错误信息
    221. 

  221.          */
    222. 

  222.         public static function error(\Throwable $exception)
    223. 

  223.         {
    224. 

  224.             $code = $exception->getCode() ?: 500;
    225. 

  225.             $message = $exception->getMessage();
    226. 

  226. 

  227.             if ($exception instanceof \Typecho\Db\Exception) {
    228. 

  228.                 $code = 500;
    229. 

  229. 

  230.                 //覆盖原始错误信息
    231. 

  231.                 $message = 'Database Server Error';
    232. 

  232. 

  233.                 if ($exception instanceof \Typecho\Db\Adapter\ConnectionException) {
    234. 

  234.                     $code = 503;
    235. 

  235.                     $message = 'Error establishing a database connection';
    236. 

  236.                 } elseif ($exception instanceof \Typecho\Db\Adapter\SQLException) {
    237. 

  237.                     $message = 'Database Query Error';
    238. 

  238.                 }
    239. 

  239.             }
    240. 

  240. 

  241.             /** 设置http code */
    242. 

  242.             if (is_numeric($code) && $code > 200) {
    243. 

  243.                 Response::getInstance()->setStatus($code);
    244. 

  244.             }
    245. 

  245. 

  246.             $message = nl2br($message);
    247. 

  247. 

  248.             if (defined('__TYPECHO_EXCEPTION_FILE__')) {
    249. 

  249.                 require_once __TYPECHO_EXCEPTION_FILE__;
    250. 

  250.             } else {
    251. 

  251.                 echo
    252. 

  252.                 <<<EOF
    253. 

  253. <!DOCTYPE html>
    254. 

  254. <html lang="en">
    255. 

  255.     <head>
    256. 

  256.         <meta charset="UTF-8">
    257. 

  257.         <title>{$code}</title>
    258. 

  258.         <style>
    259. 

  259.             html {
    260. 

  260.                 padding: 50px 10px;
    261. 

  261.                 font-size: 16px;
    262. 

  262.                 line-height: 1.4;
    263. 

  263.                 color: #666;
    264. 

  264.                 background: #F6F6F3;
    265. 

  265.                 -webkit-text-size-adjust: 100%;
    266. 

  266.                 -ms-text-size-adjust: 100%;
    267. 

  267.             }
    268. 

  268. 

  269.             html,
    270. 

  270.             input { font-family: "Helvetica Neue", Helvetica, Arial, sans-serif; }
    271. 

  271.             body {
    272. 

  272.                 max-width: 500px;
    273. 

  273.                 _width: 500px;
    274. 

  274.                 padding: 30px 20px;
    275. 

  275.                 margin: 0 auto;
    276. 

  276.                 background: #FFF;
    277. 

  277.             }
    278. 

  278.             ul {
    279. 

  279.                 padding: 0 0 0 40px;
    280. 

  280.             }
    281. 

  281.             .container {
    282. 

  282.                 max-width: 380px;
    283. 

  283.                 _width: 380px;
    284. 

  284.                 margin: 0 auto;
    285. 

  285.             }
    286. 

  286.         </style>
    287. 

  287.     </head>
    288. 

  288.     <body>
    289. 

  289.         <div class="container">
    290. 

  290.             {$message}
    291. 

  291.         </div>
    292. 

  292.     </body>
    293. 

  293. </html>
    294. 

  294. EOF;
    295. 

  295.             }
    296. 

  296. 

  297.             exit(1);
    298. 

  298.         }
    299. 

  299. 

  300.         /**
    301. 

  301.          * @param string $className 类名
    302. 

  302.          * @return boolean
    303. 

  303.          * @deprecated
    304. 

  304.          */
    305. 

  305.         public static function isAvailableClass(string $className): bool
    306. 

  306.         {
    307. 

  307.             return class_exists($className);
    308. 

  308.         }
    309. 

  309. 

  310.         /**
    311. 

  311.          * @param array $value
    312. 

  312.          * @param $key
    313. 

  313.          *
    314. 

  314.          * @return array
    315. 

  315.          * @deprecated use array_column instead
    316. 

  316.          *
    317. 

  317.          */
    318. 

  318.         public static function arrayFlatten(array $value, $key): array
    319. 

  319.         {
    320. 

  320.             return array_column($value, $key);
    321. 

  321.         }
    322. 

  322. 

  323.         /**
    324. 

  324.          * @param string $className
    325. 

  325.          * @return string
    326. 

  326.          */
    327. 

  327.         public static function nativeClassName(string $className): string
    328. 

  328.         {
    329. 

  329.             return trim(str_replace('\\', '_', $className), '_');
    330. 

  330.         }
    331. 

  331. 

  332.         /**
    333. 

  333.          * 根据count数目来输出字符
    334. 

  334.          * <code>
    335. 

  335.          * echo splitByCount(20, 10, 20, 30, 40, 50);
    336. 

  336.          * </code>
    337. 

  337.          *
    338. 

  338.          * @param int $count
    339. 

  339.          * @param int ...$sizes
    340. 

  340.          * @return int
    341. 

  341.          */
    342. 

  342.         public static function splitByCount(int $count, int ...$sizes): int
    343. 

  343.         {
    344. 

  344.             foreach ($sizes as $size) {
    345. 

  345.                 if ($count < $size) {
    346. 

  346.                     return $size;
    347. 

  347.                 }
    348. 

  348.             }
    349. 

  349. 

  350.             return 0;
    351. 

  351.         }
    352. 

  352. 

  353.         /**
    354. 

  354.          * 自闭合html修复函数
    355. 

  355.          * 使用方法:
    356. 

  356.          * <code>
    357. 

  357.          * $input = '这是一段被截断的html文本<a href="#"';
    358. 

  358.          * echo Common::fixHtml($input);
    359. 

  359.          * //output: 这是一段被截断的html文本
    360. 

  360.          * </code>
    361. 

  361.          *
    362. 

  362.          * @param string|null $string 需要修复处理的字符串
    363. 

  363.          * @return string|null
    364. 

  364.          */
    365. 

  365.         public static function fixHtml(?string $string): ?string
    366. 

  366.         {
    367. 

  367.             //关闭自闭合标签
    368. 

  368.             $startPos = strrpos($string, "<");
    369. 

  369. 

  370.             if (false == $startPos) {
    371. 

  371.                 return $string;
    372. 

  372.             }
    373. 

  373. 

  374.             $trimString = substr($string, $startPos);
    375. 

  375. 

  376.             if (false === strpos($trimString, ">")) {
    377. 

  377.                 $string = substr($string, 0, $startPos);
    378. 

  378.             }
    379. 

  379. 

  380.             //非自闭合html标签列表
    381. 

  381.             preg_match_all("/<([_0-9a-zA-Z-\:]+)\s*([^>]*)>/is", $string, $startTags);
    382. 

  382.             preg_match_all("/<\/([_0-9a-zA-Z-\:]+)>/is", $string, $closeTags);
    383. 

  383. 

  384.             if (!empty($startTags[1]) && is_array($startTags[1])) {
    385. 

  385.                 krsort($startTags[1]);
    386. 

  386.                 $closeTagsIsArray = is_array($closeTags[1]);
    387. 

  387.                 foreach ($startTags[1] as $key => $tag) {
    388. 

  388.                     $attrLength = strlen($startTags[2][$key]);
    389. 

  389.                     if ($attrLength > 0 && "/" == trim($startTags[2][$key][$attrLength - 1])) {
    390. 

  390.                         continue;
    391. 

  391.                     }
    392. 

  392. 

  393.                     // 白名单
    394. 

  394.                     if (
    395. 

  395.                         preg_match(
    396. 

  396.                             "/^(area|base|br|col|embed|hr|img|input|keygen|link|meta|param|source|track|wbr)$/i",
    397. 

  397.                             $tag
    398. 

  398.                         )
    399. 

  399.                     ) {
    400. 

  400.                         continue;
    401. 

  401.                     }
    402. 

  402. 

  403.                     if (!empty($closeTags[1]) && $closeTagsIsArray) {
    404. 

  404.                         if (false !== ($index = array_search($tag, $closeTags[1]))) {
    405. 

  405.                             unset($closeTags[1][$index]);
    406. 

  406.                             continue;
    407. 

  407.                         }
    408. 

  408.                     }
    409. 

  409.                     $string .= "</{$tag}>";
    410. 

  410.                 }
    411. 

  411.             }
    412. 

  412. 

  413.             return preg_replace("/\<br\s*\/\>\s*\<\/p\>/is", '</p>', $string);
    414. 

  414.         }
    415. 

  415. 

  416.         /**
    417. 

  417.          * 去掉字符串中的html标签
    418. 

  418.          * 使用方法:
    419. 

  419.          * <code>
    420. 

  420.          * $input = '<a href="http://test/test.php" title="example">hello</a>';
    421. 

  421.          * $output = Common::stripTags($input, <a href="">);
    422. 

  422.          * echo $output;
    423. 

  423.          * //display: '<a href="http://test/test.php">hello</a>'
    424. 

  424.          * </code>
    425. 

  425.          *
    426. 

  426.          * @param string|null $html 需要处理的字符串
    427. 

  427.          * @param string|null $allowableTags 需要忽略的html标签
    428. 

  428.          * @return string
    429. 

  429.          */
    430. 

  430.         public static function stripTags(?string $html, ?string $allowableTags = null): string
    431. 

  431.         {
    432. 

  432.             $normalizeTags = '';
    433. 

  433.             $allowableAttributes = [];
    434. 

  434. 

  435.             if (!empty($allowableTags) && preg_match_all("/\<([_a-z0-9-]+)([^>]*)\>/is", $allowableTags, $tags)) {
    436. 

  436.                 $normalizeTags = '<' . implode('><', array_map('strtolower', $tags[1])) . '>';
    437. 

  437.                 $attributes = array_map('trim', $tags[2]);
    438. 

  438.                 foreach ($attributes as $key => $val) {
    439. 

  439.                     $allowableAttributes[strtolower($tags[1][$key])] =
    440. 

  440.                         array_map('strtolower', array_keys(self::parseAttrs($val)));
    441. 

  441.                 }
    442. 

  442.             }
    443. 

  443. 

  444.             $html = strip_tags($html, $normalizeTags);
    445. 

  445.             return preg_replace_callback(
    446. 

  446.                 "/<([_a-z0-9-]+)(\s+[^>]+)?>/is",
    447. 

  447.                 function ($matches) use ($allowableAttributes) {
    448. 

  448.                     if (!isset($matches[2])) {
    449. 

  449.                         return $matches[0];
    450. 

  450.                     }
    451. 

  451. 

  452.                     $str = trim($matches[2]);
    453. 

  453. 

  454.                     if (empty($str)) {
    455. 

  455.                         return $matches[0];
    456. 

  456.                     }
    457. 

  457. 

  458.                     $attrs = self::parseAttrs($str);
    459. 

  459.                     $parsedAttrs = [];
    460. 

  460.                     $tag = strtolower($matches[1]);
    461. 

  461. 

  462.                     foreach ($attrs as $key => $val) {
    463. 

  463.                         if (in_array($key, $allowableAttributes[$tag])) {
    464. 

  464.                             $parsedAttrs[] = " {$key}" . (empty($val) ? '' : "={$val}");
    465. 

  465.                         }
    466. 

  466.                     }
    467. 

  467. 

  468.                     return '<' . $tag . implode('', $parsedAttrs) . '>';
    469. 

  469.                 },
    470. 

  470.                 $html
    471. 

  471.             );
    472. 

  472.         }
    473. 

  473. 

  474.         /**
    475. 

  475.          * 过滤用于搜索的字符串
    476. 

  476.          *
    477. 

  477.          * @access public
    478. 

  478.          *
    479. 

  479.          * @param string|null $query 搜索字符串
    480. 

  480.          *
    481. 

  481.          * @return string
    482. 

  482.          */
    483. 

  483.         public static function filterSearchQuery(?string $query): string
    484. 

  484.         {
    485. 

  485.             return isset($query) ? str_replace('-', ' ', self::slugName($query) ?? '') : '';
    486. 

  486.         }
    487. 

  487. 

  488.         /**
    489. 

  489.          * 生成缩略名
    490. 

  490.          *
    491. 

  491.          * @access public
    492. 

  492.          *
    493. 

  493.          * @param string|null $str 需要生成缩略名的字符串
    494. 

  494.          * @param string|null $default 默认的缩略名
    495. 

  495.          * @param integer $maxLength 缩略名最大长度
    496. 

  496.          *
    497. 

  497.          * @return string
    498. 

  498.          */
    499. 

  499.         public static function slugName(?string $str, ?string $default = null, int $maxLength = 128): ?string
    500. 

  500.         {
    501. 

  501.             $str = trim($str ?? '');
    502. 

  502. 

  503.             if (!strlen($str)) {
    504. 

  504.                 return $default;
    505. 

  505.             }
    506. 

  506. 

  507.             mb_regex_encoding('UTF-8');
    508. 

  508.             mb_ereg_search_init($str, "[\w" . preg_quote('_-') . "]+");
    509. 

  509.             $result = mb_ereg_search();
    510. 

  510.             $return = '';
    511. 

  511. 

  512.             if ($result) {
    513. 

  513.                 $regs = mb_ereg_search_getregs();
    514. 

  514.                 $pos = 0;
    515. 

  515.                 do {
    516. 

  516.                     $return .= ($pos > 0 ? '-' : '') . $regs[0];
    517. 

  517.                     $pos++;
    518. 

  518.                 } while ($regs = mb_ereg_search_regs());
    519. 

  519.             }
    520. 

  520. 

  521.             $str = trim($return, '-_');
    522. 

  522.             $str = !strlen($str) ? $default : $str;
    523. 

  523.             return substr($str, 0, $maxLength);
    524. 

  524.         }
    525. 

  525. 

  526.         /**
    527. 

  527.          * 将url中的非法字符串
    528. 

  528.          *
    529. 

  529.          * @param string $url 需要过滤的url
    530. 

  530.          *
    531. 

  531.          * @return string
    532. 

  532.          */
    533. 

  533.         public static function safeUrl($url)
    534. 

  534.         {
    535. 

  535.             //~ 针对location的xss过滤, 因为其特殊性无法使用removeXSS函数
    536. 

  536.             //~ fix issue 66
    537. 

  537.             $params = parse_url(str_replace(["\r", "\n", "\t", ' '], '', $url));
    538. 

  538. 

  539.             /** 禁止非法的协议跳转 */
    540. 

  540.             if (isset($params['scheme'])) {
    541. 

  541.                 if (!in_array($params['scheme'], ['http', 'https'])) {
    542. 

  542.                     return '/';
    543. 

  543.                 }
    544. 

  544.             }
    545. 

  545. 

  546.             $params = array_map(function ($string) {
    547. 

  547.                 $string = str_replace(['%0d', '%0a'], '', strip_tags($string));
    548. 

  548.                 return preg_replace([
    549. 

  549.                     "/\(\s*(\"|')/i",           //函数开头
    550. 

  550.                     "/(\"|')\s*\)/i",           //函数结尾
    551. 

  551.                 ], '', $string);
    552. 

  552.             }, $params);
    553. 

  553. 

  554.             return self::buildUrl($params);
    555. 

  555.         }
    556. 

  556. 

  557.         /**
    558. 

  558.          * 根据parse_url的结果重新组合url
    559. 

  559.          *
    560. 

  560.          * @param array $params 解析后的参数
    561. 

  561.          *
    562. 

  562.          * @return string
    563. 

  563.          */
    564. 

  564.         public static function buildUrl(array $params): string
    565. 

  565.         {
    566. 

  566.             return (isset($params['scheme']) ? $params['scheme'] . '://' : null)
    567. 

  567.                 . (isset($params['user']) ? $params['user']
    568. 

  568.                     . (isset($params['pass']) ? ':' . $params['pass'] : null) . '@' : null)
    569. 

  569.                 . ($params['host'] ?? null)
    570. 

  570.                 . (isset($params['port']) ? ':' . $params['port'] : null)
    571. 

  571.                 . ($params['path'] ?? null)
    572. 

  572.                 . (isset($params['query']) ? '?' . $params['query'] : null)
    573. 

  573.                 . (isset($params['fragment']) ? '#' . $params['fragment'] : null);
    574. 

  574.         }
    575. 

  575. 

  576.         /**
    577. 

  577.          * 处理XSS跨站攻击的过滤函数
    578. 

  578.          *
    579. 

  579.          * @param string|null $val 需要处理的字符串
    580. 

  580.          * @return string
    581. 

  581.          */
    582. 

  582.         public static function removeXSS(?string $val): string
    583. 

  583.         {
    584. 

  584.             // remove all non-printable characters. CR(0a) and LF(0b) and TAB(9) are allowed
    585. 

  585.             // this prevents some character re-spacing such as <java\0script>
    586. 

  586.             // note that you have to handle splits with \n, \r, and \t later since they *are* allowed in some inputs
    587. 

  587.             $val = preg_replace('/([\x00-\x08]|[\x0b-\x0c]|[\x0e-\x19])/', '', $val);
    588. 

  588. 

  589.             // straight replacements, the user should never need these since they're normal characters
    590. 

  590.             // this prevents like <IMG SRC=&#X40&#X61&#X76&#X61&#X73&#X63&#X72&#X69&#X70&#X74&#X3A&#X61&#X6C&#X65&#X72&#X74&#X28&#X27&#X58&#X53&#X53&#X27&#X29>
    591. 

  591.             $search = 'abcdefghijklmnopqrstuvwxyz';
    592. 

  592.             $search .= 'ABCDEFGHIJKLMNOPQRSTUVWXYZ';
    593. 

  593.             $search .= '1234567890!@#$%^&*()';
    594. 

  594.             $search .= '~`";:?+/={}[]-_|\'\\';
    595. 

  595. 

  596.             for ($i = 0; $i < strlen($search); $i++) {
    597. 

  597.                 // ;? matches the ;, which is optional
    598. 

  598.                 // 0{0,7} matches any padded zeros, which are optional and go up to 8 chars
    599. 

  599. 

  600.                 // &#x0040 @ search for the hex values
    601. 

  601.                 $val = preg_replace('/(&#[xX]0{0,8}' . dechex(ord($search[$i])) . ';?)/i', $search[$i], $val);
    602. 

  602.                 // &#00064 @ 0{0,7} matches '0' zero to seven times
    603. 

  603.                 $val = preg_replace('/(&#0{0,8}' . ord($search[$i]) . ';?)/', $search[$i], $val); // with a ;
    604. 

  604.             }
    605. 

  605. 

  606.             // now the only remaining whitespace attacks are \t, \n, and \r
    607. 

  607.             $ra1 = ['javascript', 'vbscript', 'expression', 'applet', 'meta', 'xml', 'blink', 'link', 'style', 'script',
    608. 

  608.                     'embed', 'object', 'iframe', 'frame', 'frameset', 'ilayer', 'layer', 'bgsound', 'title', 'base'];
    609. 

  609.             $ra2 = [
    610. 

  610.                 'onabort', 'onactivate', 'onafterprint', 'onafterupdate', 'onbeforeactivate', 'onbeforecopy',
    611. 

  611.                 'onbeforecut', 'onbeforedeactivate', 'onbeforeeditfocus', 'onbeforepaste', 'onbeforeprint',
    612. 

  612.                 'onbeforeunload', 'onbeforeupdate', 'onblur', 'onbounce', 'oncellchange', 'onchange', 'onclick',
    613. 

  613.                 'oncontextmenu', 'oncontrolselect', 'oncopy', 'oncut', 'ondataavailable', 'ondatasetchanged',
    614. 

  614.                 'ondatasetcomplete', 'ondblclick', 'ondeactivate', 'ondrag', 'ondragend', 'ondragenter', 'ondragleave',
    615. 

  615.                 'ondragover', 'ondragstart', 'ondrop', 'onerror', 'onerrorupdate', 'onfilterchange', 'onfinish',
    616. 

  616.                 'onfocus', 'onfocusin', 'onfocusout', 'onhelp', 'onkeydown', 'onkeypress', 'onkeyup',
    617. 

  617.                 'onlayoutcomplete', 'onload', 'onlosecapture', 'onmousedown', 'onmouseenter',
    618. 

  618.                 'onmouseleave', 'onmousemove', 'onmouseout', 'onmouseover', 'onmouseup', 'onmousewheel',
    619. 

  619.                 'onmove', 'onmoveend', 'onmovestart', 'onpaste', 'onpropertychange', 'onreadystatechange',
    620. 

  620.                 'onreset', 'onresize', 'onresizeend', 'onresizestart', 'onrowenter', 'onrowexit', 'onrowsdelete',
    621. 

  621.                 'onrowsinserted', 'onscroll', 'onselect', 'onselectionchange', 'onselectstart', 'onstart', 'onstop',
    622. 

  622.                 'onsubmit', 'onunload'
    623. 

  623.             ];
    624. 

  624.             $ra = array_merge($ra1, $ra2);
    625. 

  625. 

  626.             $found = true; // keep replacing as long as the previous round replaced something
    627. 

  627.             while ($found == true) {
    628. 

  628.                 $val_before = $val;
    629. 

  629.                 for ($i = 0; $i < sizeof($ra); $i++) {
    630. 

  630.                     $pattern = '/';
    631. 

  631.                     for ($j = 0; $j < strlen($ra[$i]); $j++) {
    632. 

  632.                         if ($j > 0) {
    633. 

  633.                             $pattern .= '(';
    634. 

  634.                             $pattern .= '(&#[xX]0{0,8}([9ab]);)';
    635. 

  635.                             $pattern .= '|';
    636. 

  636.                             $pattern .= '|(&#0{0,8}([9|10|13]);)';
    637. 

  637.                             $pattern .= ')*';
    638. 

  638.                         }
    639. 

  639.                         $pattern .= $ra[$i][$j];
    640. 

  640.                     }
    641. 

  641.                     $pattern .= '/i';
    642. 

  642.                     $replacement = substr($ra[$i], 0, 2) . '<x>' . substr($ra[$i], 2); // add in <> to nerf the tag
    643. 

  643.                     $val = preg_replace($pattern, $replacement, $val); // filter out the hex tags
    644. 

  644. 

  645.                     if ($val_before == $val) {
    646. 

  646.                         // no replacements were made, so exit the loop
    647. 

  647.                         $found = false;
    648. 

  648.                     }
    649. 

  649.                 }
    650. 

  650.             }
    651. 

  651. 

  652.             return $val;
    653. 

  653.         }
    654. 

  654. 

  655.         /**
    656. 

  656.          * 宽字符串截字函数
    657. 

  657.          *
    658. 

  658.          * @param string $str 需要截取的字符串
    659. 

  659.          * @param integer $start 开始截取的位置
    660. 

  660.          * @param integer $length 需要截取的长度
    661. 

  661.          * @param string $trim 截取后的截断标示符
    662. 

  662.          *
    663. 

  663.          * @return string
    664. 

  664.          */
    665. 

  665.         public static function subStr(string $str, int $start, int $length, string $trim = "..."): string
    666. 

  666.         {
    667. 

  667.             if (!strlen($str)) {
    668. 

  668.                 return '';
    669. 

  669.             }
    670. 

  670. 

  671.             $iLength = self::strLen($str) - $start;
    672. 

  672.             $tLength = $length < $iLength ? ($length - self::strLen($trim)) : $length;
    673. 

  673.             $str = mb_substr($str, $start, $tLength, 'UTF-8');
    674. 

  674. 

  675.             return $length < $iLength ? ($str . $trim) : $str;
    676. 

  676.         }
    677. 

  677. 

  678.         /**
    679. 

  679.          * 获取宽字符串长度函数
    680. 

  680.          *
    681. 

  681.          * @param string $str 需要获取长度的字符串
    682. 

  682.          * @return integer
    683. 

  683.          */
    684. 

  684.         public static function strLen(string $str): int
    685. 

  685.         {
    686. 

  686.             return mb_strlen($str, 'UTF-8');
    687. 

  687.         }
    688. 

  688. 

  689.         /**
    690. 

  690.          * 判断hash值是否相等
    691. 

  691.          *
    692. 

  692.          * @access public
    693. 

  693.          *
    694. 

  694.          * @param string|null $from 源字符串
    695. 

  695.          * @param string|null $to 目标字符串
    696. 

  696.          *
    697. 

  697.          * @return boolean
    698. 

  698.          */
    699. 

  699.         public static function hashValidate(?string $from, ?string $to): bool
    700. 

  700.         {
    701. 

  701.             if (!isset($from) || !isset($to)) {
    702. 

  702.                 return false;
    703. 

  703.             }
    704. 

  704. 

  705.             if ('$T$' == substr($to, 0, 3)) {
    706. 

  706.                 $salt = substr($to, 3, 9);
    707. 

  707.                 return self::hash($from, $salt) === $to;
    708. 

  708.             } else {
    709. 

  709.                 return md5($from) === $to;
    710. 

  710.             }
    711. 

  711.         }
    712. 

  712. 

  713.         /**
    714. 

  714.          * 对字符串进行hash加密
    715. 

  715.          *
    716. 

  716.          * @access public
    717. 

  717.          *
    718. 

  718.          * @param string|null $string 需要hash的字符串
    719. 

  719.          * @param string|null $salt 扰码
    720. 

  720.          *
    721. 

  721.          * @return string
    722. 

  722.          */
    723. 

  723.         public static function hash(?string $string, ?string $salt = null): string
    724. 

  724.         {
    725. 

  725.             if (!isset($string)) {
    726. 

  726.                 return '';
    727. 

  727.             }
    728. 

  728. 

  729.             /** 生成随机字符串 */
    730. 

  730.             $salt = empty($salt) ? self::randString(9) : $salt;
    731. 

  731.             $length = strlen($string);
    732. 

  732. 

  733.             if ($length == 0) {
    734. 

  734.                 return '';
    735. 

  735.             }
    736. 

  736. 

  737.             $hash = '';
    738. 

  738.             $last = ord($string[$length - 1]);
    739. 

  739.             $pos = 0;
    740. 

  740. 

  741.             /** 判断扰码长度 */
    742. 

  742.             if (strlen($salt) != 9) {
    743. 

  743.                 /** 如果不是9直接返回 */
    744. 

  744.                 return '';
    745. 

  745.             }
    746. 

  746. 

  747.             while ($pos < $length) {
    748. 

  748.                 $asc = ord($string[$pos]);
    749. 

  749.                 $last = ($last * ord($salt[($last % $asc) % 9]) + $asc) % 95 + 32;
    750. 

  750.                 $hash .= chr($last);
    751. 

  751.                 $pos++;
    752. 

  752.             }
    753. 

  753. 

  754.             return '$T$' . $salt . md5($hash);
    755. 

  755.         }
    756. 

  756. 

  757.         /**
    758. 

  758.          * 生成随机字符串
    759. 

  759.          *
    760. 

  760.          * @access public
    761. 

  761.          *
    762. 

  762.          * @param integer $length 字符串长度
    763. 

  763.          * @param boolean $specialChars 是否有特殊字符
    764. 

  764.          *
    765. 

  765.          * @return string
    766. 

  766.          */
    767. 

  767.         public static function randString(int $length, bool $specialChars = false): string
    768. 

  768.         {
    769. 

  769.             $chars = 'abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789';
    770. 

  770.             if ($specialChars) {
    771. 

  771.                 $chars .= '!@#$%^&*()';
    772. 

  772.             }
    773. 

  773. 

  774.             $result = '';
    775. 

  775.             $max = strlen($chars) - 1;
    776. 

  776.             for ($i = 0; $i < $length; $i++) {
    777. 

  777.                 $result .= $chars[rand(0, $max)];
    778. 

  778.             }
    779. 

  779.             return $result;
    780. 

  780.         }
    781. 

  781. 

  782.         /**
    783. 

  783.          * 创建一个会过期的Token
    784. 

  784.          *
    785. 

  785.          * @param $secret
    786. 

  786.          * @return string
    787. 

  787.          */
    788. 

  788.         public static function timeToken($secret): string
    789. 

  789.         {
    790. 

  790.             return sha1($secret . '&' . time());
    791. 

  791.         }
    792. 

  792. 

  793.         /**
    794. 

  794.          * 在时间范围内验证token
    795. 

  795.          *
    796. 

  796.          * @param $token
    797. 

  797.          * @param $secret
    798. 

  798.          * @param int $timeout
    799. 

  799.          * @return bool
    800. 

  800.          */
    801. 

  801.         public static function timeTokenValidate($token, $secret, int $timeout = 5): bool
    802. 

  802.         {
    803. 

  803.             $now = time();
    804. 

  804.             $from = $now - $timeout;
    805. 

  805. 

  806.             for ($i = $now; $i >= $from; $i--) {
    807. 

  807.                 if (sha1($secret . '&' . $i) == $token) {
    808. 

  808.                     return true;
    809. 

  809.                 }
    810. 

  810.             }
    811. 

  811. 

  812.             return false;
    813. 

  813.         }
    814. 

  814. 

  815.         /**
    816. 

  816.          * 获取gravatar头像地址
    817. 

  817.          *
    818. 

  818.          * @param string|null $mail
    819. 

  819.          * @param int $size
    820. 

  820.          * @param string|null $rating
    821. 

  821.          * @param string|null $default
    822. 

  822.          * @param bool $isSecure
    823. 

  823.          *
    824. 

  824.          * @return string
    825. 

  825.          */
    826. 

  826.         public static function gravatarUrl(
    827. 

  827.             ?string $mail,
    828. 

  828.             int $size,
    829. 

  829.             ?string $rating = null,
    830. 

  830.             ?string $default = null,
    831. 

  831.             bool $isSecure = true
    832. 

  832.         ): string {
    833. 

  833.             if (defined('__TYPECHO_GRAVATAR_PREFIX__')) {
    834. 

  834.                 $url = __TYPECHO_GRAVATAR_PREFIX__;
    835. 

  835.             } else {
    836. 

  836.                 $url = $isSecure ? 'https://secure.gravatar.com' : 'http://www.gravatar.com';
    837. 

  837.                 $url .= '/avatar/';
    838. 

  838.             }
    839. 

  839. 

  840.             if (!empty($mail)) {
    841. 

  841.                 $url .= md5(strtolower(trim($mail)));
    842. 

  842.             }
    843. 

  843. 

  844.             $url .= '?s=' . $size;
    845. 

  845. 

  846.             if (isset($rating)) {
    847. 

  847.                 $url .= '&amp;r=' . $rating;
    848. 

  848.             }
    849. 

  849. 

  850.             if (isset($default)) {
    851. 

  851.                 $url .= '&amp;d=' . $default;
    852. 

  852.             }
    853. 

  853. 

  854.             return $url;
    855. 

  855.         }
    856. 

  856. 

  857.         /**
    858. 

  858.          * 给javascript赋值加入扰码设计
    859. 

  859.          *
    860. 

  860.          * @param string $value
    861. 

  861.          *
    862. 

  862.          * @return string
    863. 

  863.          */
    864. 

  864.         public static function shuffleScriptVar(string $value): string
    865. 

  865.         {
    866. 

  866.             $length = strlen($value);
    867. 

  867.             $max = 3;
    868. 

  868.             $offset = 0;
    869. 

  869.             $result = [];
    870. 

  870.             $cut = [];
    871. 

  871. 

  872.             while ($length > 0) {
    873. 

  873.                 $len = rand(0, min($max, $length));
    874. 

  874.                 $rand = "'" . self::randString(rand(1, $max)) . "'";
    875. 

  875. 

  876.                 if ($len > 0) {
    877. 

  877.                     $val = "'" . substr($value, $offset, $len) . "'";
    878. 

  878.                     $result[] = rand(0, 1) ? "//{$rand}\n{$val}" : "{$val}//{$rand}\n";
    879. 

  879.                 } else {
    880. 

  880.                     if (rand(0, 1)) {
    881. 

  881.                         $result[] = rand(0, 1) ? "''///*{$rand}*/{$rand}\n" : "/* {$rand}//{$rand} */''";
    882. 

  882.                     } else {
    883. 

  883.                         $result[] = rand(0, 1) ? "//{$rand}\n{$rand}" : "{$rand}//{$rand}\n";
    884. 

  884.                         $cut[] = [$offset, strlen($rand) - 2 + $offset];
    885. 

  885.                     }
    886. 

  886.                 }
    887. 

  887. 

  888.                 $offset += $len;
    889. 

  889.                 $length -= $len;
    890. 

  890.             }
    891. 

  891. 

  892.             $name = '_' . self::randString(rand(3, 7));
    893. 

  893.             $cutName = '_' . self::randString(rand(3, 7));
    894. 

  894.             $var = implode('+', $result);
    895. 

  895.             $cutVar = json_encode($cut);
    896. 

  896.             return "(function () {
    897. 

  897.     var {$name} = {$var}, {$cutName} = {$cutVar};
    898. 

  898.     
    899. 

  899.     for (var i = 0; i < {$cutName}.length; i ++) {
    900. 

  900.         {$name} = {$name}.substring(0, {$cutName}[i][0]) + {$name}.substring({$cutName}[i][1]);
    901. 

  901.     }
    902. 

  902. 

  903.     return {$name};
    904. 

  904. })();";
    905. 

  905.         }
    906. 

  906. 

  907.         /**
    908. 

  908.          * 创建备份文件缓冲
    909. 

  909.          *
    910. 

  910.          * @param string $type
    911. 

  911.          * @param string $header
    912. 

  912.          * @param string $body
    913. 

  913.          *
    914. 

  914.          * @return string
    915. 

  915.          */
    916. 

  916.         public static function buildBackupBuffer(string $type, string $header, string $body): string
    917. 

  917.         {
    918. 

  918.             $buffer = '';
    919. 

  919. 

  920.             $buffer .= pack('vvV', $type, strlen($header), strlen($body));
    921. 

  921.             $buffer .= $header . $body;
    922. 

  922.             $buffer .= md5($buffer);
    923. 

  923. 

  924.             return $buffer;
    925. 

  925.         }
    926. 

  926. 

  927.         /**
    928. 

  928.          * 从备份文件中解压
    929. 

  929.          *
    930. 

  930.          * @param resource $fp
    931. 

  931.          * @param int|null $offset
    932. 

  932.          * @param string $version
    933. 

  933.          * @return array|bool
    934. 

  934.          */
    935. 

  935.         public static function extractBackupBuffer($fp, ?int &$offset, string $version)
    936. 

  936.         {
    937. 

  937.             $realMetaLen = $version == 'FILE' ? 6 : 8;
    938. 

  938. 

  939.             $meta = fread($fp, $realMetaLen);
    940. 

  940.             $offset += $realMetaLen;
    941. 

  941.             $metaLen = strlen($meta);
    942. 

  942. 

  943.             if (false === $meta || $metaLen != $realMetaLen) {
    944. 

  944.                 return false;
    945. 

  945.             }
    946. 

  946. 

  947.             [$type, $headerLen, $bodyLen]
    948. 

  948.                 = array_values(unpack($version == 'FILE' ? 'v3' : 'v1type/v1headerLen/V1bodyLen', $meta));
    949. 

  949. 

  950.             $header = @fread($fp, $headerLen);
    951. 

  951.             $offset += $headerLen;
    952. 

  952. 

  953.             if (false === $header || strlen($header) != $headerLen) {
    954. 

  954.                 return false;
    955. 

  955.             }
    956. 

  956. 

  957.             if ('FILE' == $version) {
    958. 

  958.                 $bodyLen = array_reduce(json_decode($header, true), function ($carry, $len) {
    959. 

  959.                     return null === $len ? $carry : $carry + $len;
    960. 

  960.                 }, 0);
    961. 

  961.             }
    962. 

  962. 

  963.             $body = @fread($fp, $bodyLen);
    964. 

  964.             $offset += $bodyLen;
    965. 

  965. 

  966.             if (false === $body || strlen($body) != $bodyLen) {
    967. 

  967.                 return false;
    968. 

  968.             }
    969. 

  969. 

  970.             $md5 = @fread($fp, 32);
    971. 

  971.             $offset += 32;
    972. 

  972. 

  973.             if (false === $md5 || $md5 != md5($meta . $header . $body)) {
    974. 

  974.                 return false;
    975. 

  975.             }
    976. 

  976. 

  977.             return [$type, $header, $body];
    978. 

  978.         }
    979. 

  979. 

  980.         /**
    981. 

  981.          * 检查是否是一个安全的主机名
    982. 

  982.          *
    983. 

  983.          * @param string $host
    984. 

  984.          * @return bool
    985. 

  985.          */
    986. 

  986.         public static function checkSafeHost(string $host): bool
    987. 

  987.         {
    988. 

  988.             if ('localhost' == $host) {
    989. 

  989.                 return false;
    990. 

  990.             }
    991. 

  991. 

  992.             $address = gethostbyname($host);
    993. 

  993.             $inet = inet_pton($address);
    994. 

  994. 

  995.             if (false === $inet) {
    996. 

  996.                 // 有可能是ipv6的地址
    997. 

  997.                 $records = dns_get_record($host, DNS_AAAA);
    998. 

  998. 

  999.                 if (empty($records)) {
    1000. 

  1000.                     return false;
    1001. 

  1001.                 }
    1002. 

  1002. 

  1003.                 $address = $records[0]['ipv6'];
    1004. 

  1004.                 $inet = inet_pton($address);
    1005. 

  1005.             }
    1006. 

  1006. 

  1007.             return filter_var(
    1008. 

  1008.                 $address,
    1009. 

  1009.                 FILTER_VALIDATE_IP,
    1010. 

  1010.                 FILTER_FLAG_NO_PRIV_RANGE | FILTER_FLAG_NO_RES_RANGE
    1011. 

  1011.             ) !== false;
    1012. 

  1012.         }
    1013. 

  1013. 

  1014.         /**
    1015. 

  1015.          * @return bool
    1016. 

  1016.          * @deprecated after 1.2.0
    1017. 

  1017.          */
    1018. 

  1018.         public static function isAppEngine(): bool
    1019. 

  1019.         {
    1020. 

  1020.             return false;
    1021. 

  1021.         }
    1022. 

  1022. 

  1023.         /**
    1024. 

  1024.          * 获取图片
    1025. 

  1025.          *
    1026. 

  1026.          * @access public
    1027. 

  1027.          *
    1028. 

  1028.          * @param string $fileName 文件名
    1029. 

  1029.          *
    1030. 

  1030.          * @return string
    1031. 

  1031.          */
    1032. 

  1032.         public static function mimeContentType(string $fileName): string
    1033. 

  1033.         {
    1034. 

  1034.             //改为并列判断
    1035. 

  1035.             if (function_exists('mime_content_type')) {
    1036. 

  1036.                 return mime_content_type($fileName);
    1037. 

  1037.             }
    1038. 

  1038. 

  1039.             if (function_exists('finfo_open')) {
    1040. 

  1040.                 $fInfo = @finfo_open(FILEINFO_MIME_TYPE);
    1041. 

  1041. 

  1042.                 if (false !== $fInfo) {
    1043. 

  1043.                     $mimeType = finfo_file($fInfo, $fileName);
    1044. 

  1044.                     finfo_close($fInfo);
    1045. 

  1045.                     return $mimeType;
    1046. 

  1046.                 }
    1047. 

  1047.             }
    1048. 

  1048. 

  1049.             $mimeTypes = [
    1050. 

  1050.                 'ez'       => 'application/andrew-inset',
    1051. 

  1051.                 'csm'      => 'application/cu-seeme',
    1052. 

  1052.                 'cu'       => 'application/cu-seeme',
    1053. 

  1053.                 'tsp'      => 'application/dsptype',
    1054. 

  1054.                 'spl'      => 'application/x-futuresplash',
    1055. 

  1055.                 'hta'      => 'application/hta',
    1056. 

  1056.                 'cpt'      => 'image/x-corelphotopaint',
    1057. 

  1057.                 'hqx'      => 'application/mac-binhex40',
    1058. 

  1058.                 'nb'       => 'application/mathematica',
    1059. 

  1059.                 'mdb'      => 'application/msaccess',
    1060. 

  1060.                 'doc'      => 'application/msword',
    1061. 

  1061.                 'dot'      => 'application/msword',
    1062. 

  1062.                 'bin'      => 'application/octet-stream',
    1063. 

  1063.                 'oda'      => 'application/oda',
    1064. 

  1064.                 'ogg'      => 'application/ogg',
    1065. 

  1065.                 'oga'      => 'audio/ogg',
    1066. 

  1066.                 'ogv'      => 'video/ogg',
    1067. 

  1067.                 'prf'      => 'application/pics-rules',
    1068. 

  1068.                 'key'      => 'application/pgp-keys',
    1069. 

  1069.                 'pdf'      => 'application/pdf',
    1070. 

  1070.                 'pgp'      => 'application/pgp-signature',
    1071. 

  1071.                 'ps'       => 'application/postscript',
    1072. 

  1072.                 'ai'       => 'application/postscript',
    1073. 

  1073.                 'eps'      => 'application/postscript',
    1074. 

  1074.                 'rss'      => 'application/rss+xml',
    1075. 

  1075.                 'rtf'      => 'text/rtf',
    1076. 

  1076.                 'smi'      => 'application/smil',
    1077. 

  1077.                 'smil'     => 'application/smil',
    1078. 

  1078.                 'wp5'      => 'application/wordperfect5.1',
    1079. 

  1079.                 'xht'      => 'application/xhtml+xml',
    1080. 

  1080.                 'xhtml'    => 'application/xhtml+xml',
    1081. 

  1081.                 'zip'      => 'application/zip',
    1082. 

  1082.                 'cdy'      => 'application/vnd.cinderella',
    1083. 

  1083.                 'mif'      => 'application/x-mif',
    1084. 

  1084.                 'xls'      => 'application/vnd.ms-excel',
    1085. 

  1085.                 'xlb'      => 'application/vnd.ms-excel',
    1086. 

  1086.                 'cat'      => 'application/vnd.ms-pki.seccat',
    1087. 

  1087.                 'stl'      => 'application/vnd.ms-pki.stl',
    1088. 

  1088.                 'ppt'      => 'application/vnd.ms-powerpoint',
    1089. 

  1089.                 'pps'      => 'application/vnd.ms-powerpoint',
    1090. 

  1090.                 'pot'      => 'application/vnd.ms-powerpoint',
    1091. 

  1091.                 'sdc'      => 'application/vnd.stardivision.calc',
    1092. 

  1092.                 'sda'      => 'application/vnd.stardivision.draw',
    1093. 

  1093.                 'sdd'      => 'application/vnd.stardivision.impress',
    1094. 

  1094.                 'sdp'      => 'application/vnd.stardivision.impress',
    1095. 

  1095.                 'smf'      => 'application/vnd.stardivision.math',
    1096. 

  1096.                 'sdw'      => 'application/vnd.stardivision.writer',
    1097. 

  1097.                 'vor'      => 'application/vnd.stardivision.writer',
    1098. 

  1098.                 'sgl'      => 'application/vnd.stardivision.writer-global',
    1099. 

  1099.                 'sxc'      => 'application/vnd.sun.xml.calc',
    1100. 

  1100.                 'stc'      => 'application/vnd.sun.xml.calc.template',
    1101. 

  1101.                 'sxd'      => 'application/vnd.sun.xml.draw',
    1102. 

  1102.                 'std'      => 'application/vnd.sun.xml.draw.template',
    1103. 

  1103.                 'sxi'      => 'application/vnd.sun.xml.impress',
    1104. 

  1104.                 'sti'      => 'application/vnd.sun.xml.impress.template',
    1105. 

  1105.                 'sxm'      => 'application/vnd.sun.xml.math',
    1106. 

  1106.                 'sxw'      => 'application/vnd.sun.xml.writer',
    1107. 

  1107.                 'sxg'      => 'application/vnd.sun.xml.writer.global',
    1108. 

  1108.                 'stw'      => 'application/vnd.sun.xml.writer.template',
    1109. 

  1109.                 'sis'      => 'application/vnd.symbian.install',
    1110. 

  1110.                 'wbxml'    => 'application/vnd.wap.wbxml',
    1111. 

  1111.                 'wmlc'     => 'application/vnd.wap.wmlc',
    1112. 

  1112.                 'wmlsc'    => 'application/vnd.wap.wmlscriptc',
    1113. 

  1113.                 'wk'       => 'application/x-123',
    1114. 

  1114.                 'dmg'      => 'application/x-apple-diskimage',
    1115. 

  1115.                 'bcpio'    => 'application/x-bcpio',
    1116. 

  1116.                 'torrent'  => 'application/x-bittorrent',
    1117. 

  1117.                 'cdf'      => 'application/x-cdf',
    1118. 

  1118.                 'vcd'      => 'application/x-cdlink',
    1119. 

  1119.                 'pgn'      => 'application/x-chess-pgn',
    1120. 

  1120.                 'cpio'     => 'application/x-cpio',
    1121. 

  1121.                 'csh'      => 'text/x-csh',
    1122. 

  1122.                 'deb'      => 'application/x-debian-package',
    1123. 

  1123.                 'dcr'      => 'application/x-director',
    1124. 

  1124.                 'dir'      => 'application/x-director',
    1125. 

  1125.                 'dxr'      => 'application/x-director',
    1126. 

  1126.                 'wad'      => 'application/x-doom',
    1127. 

  1127.                 'dms'      => 'application/x-dms',
    1128. 

  1128.                 'dvi'      => 'application/x-dvi',
    1129. 

  1129.                 'pfa'      => 'application/x-font',
    1130. 

  1130.                 'pfb'      => 'application/x-font',
    1131. 

  1131.                 'gsf'      => 'application/x-font',
    1132. 

  1132.                 'pcf'      => 'application/x-font',
    1133. 

  1133.                 'pcf.Z'    => 'application/x-font',
    1134. 

  1134.                 'gnumeric' => 'application/x-gnumeric',
    1135. 

  1135.                 'sgf'      => 'application/x-go-sgf',
    1136. 

  1136.                 'gcf'      => 'application/x-graphing-calculator',
    1137. 

  1137.                 'gtar'     => 'application/x-gtar',
    1138. 

  1138.                 'tgz'      => 'application/x-gtar',
    1139. 

  1139.                 'taz'      => 'application/x-gtar',
    1140. 

  1140.                 'gz'       => 'application/x-gtar',
    1141. 

  1141.                 'hdf'      => 'application/x-hdf',
    1142. 

  1142.                 'phtml'    => 'application/x-httpd-php',
    1143. 

  1143.                 'pht'      => 'application/x-httpd-php',
    1144. 

  1144.                 'php'      => 'application/x-httpd-php',
    1145. 

  1145.                 'phps'     => 'application/x-httpd-php-source',
    1146. 

  1146.                 'php3'     => 'application/x-httpd-php3',
    1147. 

  1147.                 'php3p'    => 'application/x-httpd-php3-preprocessed',
    1148. 

  1148.                 'php4'     => 'application/x-httpd-php4',
    1149. 

  1149.                 'ica'      => 'application/x-ica',
    1150. 

  1150.                 'ins'      => 'application/x-internet-signup',
    1151. 

  1151.                 'isp'      => 'application/x-internet-signup',
    1152. 

  1152.                 'iii'      => 'application/x-iphone',
    1153. 

  1153.                 'jar'      => 'application/x-java-archive',
    1154. 

  1154.                 'jnlp'     => 'application/x-java-jnlp-file',
    1155. 

  1155.                 'ser'      => 'application/x-java-serialized-object',
    1156. 

  1156.                 'class'    => 'application/x-java-vm',
    1157. 

  1157.                 'js'       => 'application/x-javascript',
    1158. 

  1158.                 'chrt'     => 'application/x-kchart',
    1159. 

  1159.                 'kil'      => 'application/x-killustrator',
    1160. 

  1160.                 'kpr'      => 'application/x-kpresenter',
    1161. 

  1161.                 'kpt'      => 'application/x-kpresenter',
    1162. 

  1162.                 'skp'      => 'application/x-koan',
    1163. 

  1163.                 'skd'      => 'application/x-koan',
    1164. 

  1164.                 'skt'      => 'application/x-koan',
    1165. 

  1165.                 'skm'      => 'application/x-koan',
    1166. 

  1166.                 'ksp'      => 'application/x-kspread',
    1167. 

  1167.                 'kwd'      => 'application/x-kword',
    1168. 

  1168.                 'kwt'      => 'application/x-kword',
    1169. 

  1169.                 'latex'    => 'application/x-latex',
    1170. 

  1170.                 'lha'      => 'application/x-lha',
    1171. 

  1171.                 'lzh'      => 'application/x-lzh',
    1172. 

  1172.                 'lzx'      => 'application/x-lzx',
    1173. 

  1173.                 'frm'      => 'application/x-maker',
    1174. 

  1174.                 'maker'    => 'application/x-maker',
    1175. 

  1175.                 'frame'    => 'application/x-maker',
    1176. 

  1176.                 'fm'       => 'application/x-maker',
    1177. 

  1177.                 'fb'       => 'application/x-maker',
    1178. 

  1178.                 'book'     => 'application/x-maker',
    1179. 

  1179.                 'fbdoc'    => 'application/x-maker',
    1180. 

  1180.                 'wmz'      => 'application/x-ms-wmz',
    1181. 

  1181.                 'wmd'      => 'application/x-ms-wmd',
    1182. 

  1182.                 'com'      => 'application/x-msdos-program',
    1183. 

  1183.                 'exe'      => 'application/x-msdos-program',
    1184. 

  1184.                 'bat'      => 'application/x-msdos-program',
    1185. 

  1185.                 'dll'      => 'application/x-msdos-program',
    1186. 

  1186.                 'msi'      => 'application/x-msi',
    1187. 

  1187.                 'nc'       => 'application/x-netcdf',
    1188. 

  1188.                 'pac'      => 'application/x-ns-proxy-autoconfig',
    1189. 

  1189.                 'nwc'      => 'application/x-nwc',
    1190. 

  1190.                 'o'        => 'application/x-object',
    1191. 

  1191.                 'oza'      => 'application/x-oz-application',
    1192. 

  1192.                 'pl'       => 'application/x-perl',
    1193. 

  1193.                 'pm'       => 'application/x-perl',
    1194. 

  1194.                 'p7r'      => 'application/x-pkcs7-certreqresp',
    1195. 

  1195.                 'crl'      => 'application/x-pkcs7-crl',
    1196. 

  1196.                 'qtl'      => 'application/x-quicktimeplayer',
    1197. 

  1197.                 'rpm'      => 'audio/x-pn-realaudio-plugin',
    1198. 

  1198.                 'shar'     => 'application/x-shar',
    1199. 

  1199.                 'swf'      => 'application/x-shockwave-flash',
    1200. 

  1200.                 'swfl'     => 'application/x-shockwave-flash',
    1201. 

  1201.                 'sh'       => 'text/x-sh',
    1202. 

  1202.                 'sit'      => 'application/x-stuffit',
    1203. 

  1203.                 'sv4cpio'  => 'application/x-sv4cpio',
    1204. 

  1204.                 'sv4crc'   => 'application/x-sv4crc',
    1205. 

  1205.                 'tar'      => 'application/x-tar',
    1206. 

  1206.                 'tcl'      => 'text/x-tcl',
    1207. 

  1207.                 'tex'      => 'text/x-tex',
    1208. 

  1208.                 'gf'       => 'application/x-tex-gf',
    1209. 

  1209.                 'pk'       => 'application/x-tex-pk',
    1210. 

  1210.                 'texinfo'  => 'application/x-texinfo',
    1211. 

  1211.                 'texi'     => 'application/x-texinfo',
    1212. 

  1212.                 '~'        => 'application/x-trash',
    1213. 

  1213.                 '%'        => 'application/x-trash',
    1214. 

  1214.                 'bak'      => 'application/x-trash',
    1215. 

  1215.                 'old'      => 'application/x-trash',
    1216. 

  1216.                 'sik'      => 'application/x-trash',
    1217. 

  1217.                 't'        => 'application/x-troff',
    1218. 

  1218.                 'tr'       => 'application/x-troff',
    1219. 

  1219.                 'roff'     => 'application/x-troff',
    1220. 

  1220.                 'man'      => 'application/x-troff-man',
    1221. 

  1221.                 'me'       => 'application/x-troff-me',
    1222. 

  1222.                 'ms'       => 'application/x-troff-ms',
    1223. 

  1223.                 'ustar'    => 'application/x-ustar',
    1224. 

  1224.                 'src'      => 'application/x-wais-source',
    1225. 

  1225.                 'wz'       => 'application/x-wingz',
    1226. 

  1226.                 'crt'      => 'application/x-x509-ca-cert',
    1227. 

  1227.                 'fig'      => 'application/x-xfig',
    1228. 

  1228.                 'au'       => 'audio/basic',
    1229. 

  1229.                 'snd'      => 'audio/basic',
    1230. 

  1230.                 'mid'      => 'audio/midi',
    1231. 

  1231.                 'midi'     => 'audio/midi',
    1232. 

  1232.                 'kar'      => 'audio/midi',
    1233. 

  1233.                 'mpga'     => 'audio/mpeg',
    1234. 

  1234.                 'mpega'    => 'audio/mpeg',
    1235. 

  1235.                 'mp2'      => 'audio/mpeg',
    1236. 

  1236.                 'mp3'      => 'audio/mpeg',
    1237. 

  1237.                 'mp4'      => 'video/mp4',
    1238. 

  1238.                 'm3u'      => 'audio/x-mpegurl',
    1239. 

  1239.                 'sid'      => 'audio/prs.sid',
    1240. 

  1240.                 'aif'      => 'audio/x-aiff',
    1241. 

  1241.                 'aiff'     => 'audio/x-aiff',
    1242. 

  1242.                 'aifc'     => 'audio/x-aiff',
    1243. 

  1243.                 'gsm'      => 'audio/x-gsm',
    1244. 

  1244.                 'wma'      => 'audio/x-ms-wma',
    1245. 

  1245.                 'wax'      => 'audio/x-ms-wax',
    1246. 

  1246.                 'ra'       => 'audio/x-realaudio',
    1247. 

  1247.                 'rm'       => 'audio/x-pn-realaudio',
    1248. 

  1248.                 'ram'      => 'audio/x-pn-realaudio',
    1249. 

  1249.                 'pls'      => 'audio/x-scpls',
    1250. 

  1250.                 'sd2'      => 'audio/x-sd2',
    1251. 

  1251.                 'wav'      => 'audio/x-wav',
    1252. 

  1252.                 'pdb'      => 'chemical/x-pdb',
    1253. 

  1253.                 'xyz'      => 'chemical/x-xyz',
    1254. 

  1254.                 'bmp'      => 'image/x-ms-bmp',
    1255. 

  1255.                 'gif'      => 'image/gif',
    1256. 

  1256.                 'ief'      => 'image/ief',
    1257. 

  1257.                 'jpeg'     => 'image/jpeg',
    1258. 

  1258.                 'jpg'      => 'image/jpeg',
    1259. 

  1259.                 'jpe'      => 'image/jpeg',
    1260. 

  1260.                 'pcx'      => 'image/pcx',
    1261. 

  1261.                 'png'      => 'image/png',
    1262. 

  1262.                 'svg'      => 'image/svg+xml',
    1263. 

  1263.                 'svgz'     => 'image/svg+xml',
    1264. 

  1264.                 'tiff'     => 'image/tiff',
    1265. 

  1265.                 'tif'      => 'image/tiff',
    1266. 

  1266.                 'wbmp'     => 'image/vnd.wap.wbmp',
    1267. 

  1267.                 'ras'      => 'image/x-cmu-raster',
    1268. 

  1268.                 'cdr'      => 'image/x-coreldraw',
    1269. 

  1269.                 'pat'      => 'image/x-coreldrawpattern',
    1270. 

  1270.                 'cdt'      => 'image/x-coreldrawtemplate',
    1271. 

  1271.                 'djvu'     => 'image/x-djvu',
    1272. 

  1272.                 'djv'      => 'image/x-djvu',
    1273. 

  1273.                 'ico'      => 'image/x-icon',
    1274. 

  1274.                 'art'      => 'image/x-jg',
    1275. 

  1275.                 'jng'      => 'image/x-jng',
    1276. 

  1276.                 'psd'      => 'image/x-photoshop',
    1277. 

  1277.                 'pnm'      => 'image/x-portable-anymap',
    1278. 

  1278.                 'pbm'      => 'image/x-portable-bitmap',
    1279. 

  1279.                 'pgm'      => 'image/x-portable-graymap',
    1280. 

  1280.                 'ppm'      => 'image/x-portable-pixmap',
    1281. 

  1281.                 'rgb'      => 'image/x-rgb',
    1282. 

  1282.                 'xbm'      => 'image/x-xbitmap',
    1283. 

  1283.                 'xpm'      => 'image/x-xpixmap',
    1284. 

  1284.                 'xwd'      => 'image/x-xwindowdump',
    1285. 

  1285.                 'igs'      => 'model/iges',
    1286. 

  1286.                 'iges'     => 'model/iges',
    1287. 

  1287.                 'msh'      => 'model/mesh',
    1288. 

  1288.                 'mesh'     => 'model/mesh',
    1289. 

  1289.                 'silo'     => 'model/mesh',
    1290. 

  1290.                 'wrl'      => 'x-world/x-vrml',
    1291. 

  1291.                 'vrml'     => 'x-world/x-vrml',
    1292. 

  1292.                 'csv'      => 'text/comma-separated-values',
    1293. 

  1293.                 'css'      => 'text/css',
    1294. 

  1294.                 '323'      => 'text/h323',
    1295. 

  1295.                 'htm'      => 'text/html',
    1296. 

  1296.                 'html'     => 'text/html',
    1297. 

  1297.                 'uls'      => 'text/iuls',
    1298. 

  1298.                 'mml'      => 'text/mathml',
    1299. 

  1299.                 'asc'      => 'text/plain',
    1300. 

  1300.                 'txt'      => 'text/plain',
    1301. 

  1301.                 'text'     => 'text/plain',
    1302. 

  1302.                 'diff'     => 'text/plain',
    1303. 

  1303.                 'rtx'      => 'text/richtext',
    1304. 

  1304.                 'sct'      => 'text/scriptlet',
    1305. 

  1305.                 'wsc'      => 'text/scriptlet',
    1306. 

  1306.                 'tm'       => 'text/texmacs',
    1307. 

  1307.                 'ts'       => 'text/texmacs',
    1308. 

  1308.                 'tsv'      => 'text/tab-separated-values',
    1309. 

  1309.                 'jad'      => 'text/vnd.sun.j2me.app-descriptor',
    1310. 

  1310.                 'wml'      => 'text/vnd.wap.wml',
    1311. 

  1311.                 'wmls'     => 'text/vnd.wap.wmlscript',
    1312. 

  1312.                 'xml'      => 'text/xml',
    1313. 

  1313.                 'xsl'      => 'text/xml',
    1314. 

  1314.                 'h++'      => 'text/x-c++hdr',
    1315. 

  1315.                 'hpp'      => 'text/x-c++hdr',
    1316. 

  1316.                 'hxx'      => 'text/x-c++hdr',
    1317. 

  1317.                 'hh'       => 'text/x-c++hdr',
    1318. 

  1318.                 'c++'      => 'text/x-c++src',
    1319. 

  1319.                 'cpp'      => 'text/x-c++src',
    1320. 

  1320.                 'cxx'      => 'text/x-c++src',
    1321. 

  1321.                 'cc'       => 'text/x-c++src',
    1322. 

  1322.                 'h'        => 'text/x-chdr',
    1323. 

  1323.                 'c'        => 'text/x-csrc',
    1324. 

  1324.                 'java'     => 'text/x-java',
    1325. 

  1325.                 'moc'      => 'text/x-moc',
    1326. 

  1326.                 'p'        => 'text/x-pascal',
    1327. 

  1327.                 'pas'      => 'text/x-pascal',
    1328. 

  1328.                 '***'      => 'text/x-pcs-***',
    1329. 

  1329.                 'shtml'    => 'text/x-server-parsed-html',
    1330. 

  1330.                 'etx'      => 'text/x-setext',
    1331. 

  1331.                 'tk'       => 'text/x-tcl',
    1332. 

  1332.                 'ltx'      => 'text/x-tex',
    1333. 

  1333.                 'sty'      => 'text/x-tex',
    1334. 

  1334.                 'cls'      => 'text/x-tex',
    1335. 

  1335.                 'vcs'      => 'text/x-vcalendar',
    1336. 

  1336.                 'vcf'      => 'text/x-vcard',
    1337. 

  1337.                 'dl'       => 'video/dl',
    1338. 

  1338.                 'fli'      => 'video/fli',
    1339. 

  1339.                 'gl'       => 'video/gl',
    1340. 

  1340.                 'mpeg'     => 'video/mpeg',
    1341. 

  1341.                 'mpg'      => 'video/mpeg',
    1342. 

  1342.                 'mpe'      => 'video/mpeg',
    1343. 

  1343.                 'qt'       => 'video/quicktime',
    1344. 

  1344.                 'mov'      => 'video/quicktime',
    1345. 

  1345.                 'mxu'      => 'video/vnd.mpegurl',
    1346. 

  1346.                 'dif'      => 'video/x-dv',
    1347. 

  1347.                 'dv'       => 'video/x-dv',
    1348. 

  1348.                 'lsf'      => 'video/x-la-asf',
    1349. 

  1349.                 'lsx'      => 'video/x-la-asf',
    1350. 

  1350.                 'mng'      => 'video/x-mng',
    1351. 

  1351.                 'asf'      => 'video/x-ms-asf',
    1352. 

  1352.                 'asx'      => 'video/x-ms-asf',
    1353. 

  1353.                 'wm'       => 'video/x-ms-wm',
    1354. 

  1354.                 'wmv'      => 'video/x-ms-wmv',
    1355. 

  1355.                 'wmx'      => 'video/x-ms-wmx',
    1356. 

  1356.                 'wvx'      => 'video/x-ms-wvx',
    1357. 

  1357.                 'avi'      => 'video/x-msvideo',
    1358. 

  1358.                 'movie'    => 'video/x-sgi-movie',
    1359. 

  1359.                 'ice'      => 'x-conference/x-cooltalk',
    1360. 

  1360.                 'vrm'      => 'x-world/x-vrml',
    1361. 

  1361.                 'rar'      => 'application/x-rar-compressed',
    1362. 

  1362.                 'cab'      => 'application/vnd.ms-cab-compressed',
    1363. 

  1363.                 'webp'     => 'image/webp'
    1364. 

  1364.             ];
    1365. 

  1365. 

  1366.             $part = explode('.', $fileName);
    1367. 

  1367.             $size = count($part);
    1368. 

  1368. 

  1369.             if ($size > 1) {
    1370. 

  1370.                 $ext = $part[$size - 1];
    1371. 

  1371.                 if (isset($mimeTypes[$ext])) {
    1372. 

  1372.                     return $mimeTypes[$ext];
    1373. 

  1373.                 }
    1374. 

  1374.             }
    1375. 

  1375. 

  1376.             return 'application/octet-stream';
    1377. 

  1377.         }
    1378. 

  1378. 

  1379.         /**
    1380. 

  1380.          * 寻找匹配的mime图标
    1381. 

  1381.          *
    1382. 

  1382.          * @access public
    1383. 

  1383.          *
    1384. 

  1384.          * @param string $mime mime类型
    1385. 

  1385.          *
    1386. 

  1386.          * @return string
    1387. 

  1387.          */
    1388. 

  1388.         public static function mimeIconType(string $mime): string
    1389. 

  1389.         {
    1390. 

  1390.             $parts = explode('/', $mime);
    1391. 

  1391. 

  1392.             if (count($parts) < 2) {
    1393. 

  1393.                 return 'unknown';
    1394. 

  1394.             }
    1395. 

  1395. 

  1396.             [$type, $stream] = $parts;
    1397. 

  1397. 

  1398.             if (in_array($type, ['image', 'video', 'audio', 'text', 'application'])) {
    1399. 

  1399.                 switch (true) {
    1400. 

  1400.                     case in_array($stream, ['msword', 'msaccess', 'ms-powerpoint', 'ms-powerpoint']):
    1401. 

  1401.                     case 0 === strpos($stream, 'vnd.'):
    1402. 

  1402.                         return 'office';
    1403. 

  1403.                     case false !== strpos($stream, 'html')
    1404. 

  1404.                         || false !== strpos($stream, 'xml')
    1405. 

  1405.                         || false !== strpos($stream, 'wml'):
    1406. 

  1406.                         return 'html';
    1407. 

  1407.                     case false !== strpos($stream, 'compressed')
    1408. 

  1408.                         || false !== strpos($stream, 'zip')
    1409. 

  1409.                         || in_array($stream, ['application/x-gtar', 'application/x-tar']):
    1410. 

  1410.                         return 'archive';
    1411. 

  1411.                     case 'text' == $type && 0 === strpos($stream, 'x-'):
    1412. 

  1412.                         return 'script';
    1413. 

  1413.                     default:
    1414. 

  1414.                         return $type;
    1415. 

  1415.                 }
    1416. 

  1416.             } else {
    1417. 

  1417.                 return 'unknown';
    1418. 

  1418.             }
    1419. 

  1419.         }
    1420. 

  1420. 

  1421.         /**
    1422. 

  1422.          * 解析属性
    1423. 

  1423.          *
    1424. 

  1424.          * @param string $attrs 属性字符串
    1425. 

  1425.          * @return array
    1426. 

  1426.          */
    1427. 

  1427.         private static function parseAttrs(string $attrs): array
    1428. 

  1428.         {
    1429. 

  1429.             $attrs = trim($attrs);
    1430. 

  1430.             $len = strlen($attrs);
    1431. 

  1431.             $pos = -1;
    1432. 

  1432.             $result = [];
    1433. 

  1433.             $quote = '';
    1434. 

  1434.             $key = '';
    1435. 

  1435.             $value = '';
    1436. 

  1436. 

  1437.             for ($i = 0; $i < $len; $i++) {
    1438. 

  1438.                 if ('=' != $attrs[$i] && !ctype_space($attrs[$i]) && -1 == $pos) {
    1439. 

  1439.                     $key .= $attrs[$i];
    1440. 

  1440. 

  1441.                     /** 最后一个 */
    1442. 

  1442.                     if ($i == $len - 1) {
    1443. 

  1443.                         if ('' != ($key = trim($key))) {
    1444. 

  1444.                             $result[$key] = '';
    1445. 

  1445.                             $key = '';
    1446. 

  1446.                             $value = '';
    1447. 

  1447.                         }
    1448. 

  1448.                     }
    1449. 

  1449. 

  1450.                 } elseif (ctype_space($attrs[$i]) && -1 == $pos) {
    1451. 

  1451.                     $pos = -2;
    1452. 

  1452.                 } elseif ('=' == $attrs[$i] && 0 > $pos) {
    1453. 

  1453.                     $pos = 0;
    1454. 

  1454.                 } elseif (('"' == $attrs[$i] || "'" == $attrs[$i]) && 0 == $pos) {
    1455. 

  1455.                     $quote = $attrs[$i];
    1456. 

  1456.                     $value .= $attrs[$i];
    1457. 

  1457.                     $pos = 1;
    1458. 

  1458.                 } elseif ($quote != $attrs[$i] && 1 == $pos) {
    1459. 

  1459.                     $value .= $attrs[$i];
    1460. 

  1460.                 } elseif ($quote == $attrs[$i] && 1 == $pos) {
    1461. 

  1461.                     $pos = -1;
    1462. 

  1462.                     $value .= $attrs[$i];
    1463. 

  1463.                     $result[trim($key)] = $value;
    1464. 

  1464.                     $key = '';
    1465. 

  1465.                     $value = '';
    1466. 

  1466.                 } elseif ('=' != $attrs[$i] && !ctype_space($attrs[$i]) && -2 == $pos) {
    1467. 

  1467.                     if ('' != ($key = trim($key))) {
    1468. 

  1468.                         $result[$key] = '';
    1469. 

  1469.                     }
    1470. 

  1470. 

  1471.                     $key = '';
    1472. 

  1472.                     $value = '';
    1473. 

  1473.                     $pos = -1;
    1474. 

  1474.                     $key .= $attrs[$i];
    1475. 

  1475.                 }
    1476. 

  1476.             }
    1477. 

  1477. 

  1478.             return $result;
    1479. 

  1479.         }
    1480. 

  1480.     }
    1481. 

  1481. }
    1482.