JEMBOT MAWOT Bypass Shell
<?php
/**
* Copyright since 2007 PrestaShop SA and Contributors
* PrestaShop is an International Registered Trademark & Property of PrestaShop SA
*
* NOTICE OF LICENSE
*
* This source file is subject to the Open Software License (OSL 3.0)
* that is bundled with this package in the file LICENSE.md.
* It is also available through the world-wide-web at this URL:
* https://opensource.org/licenses/OSL-3.0
* If you did not receive a copy of the license and are unable to
* obtain it through the world-wide-web, please send an email
* to license@prestashop.com so we can send you a copy immediately.
*
* DISCLAIMER
*
* Do not edit or add to this file if you wish to upgrade PrestaShop to newer
* versions in the future. If you wish to customize PrestaShop for your
* needs please refer to https://devdocs.prestashop.com/ for more information.
*
* @author PrestaShop SA and Contributors <contact@prestashop.com>
* @copyright Since 2007 PrestaShop SA and Contributors
* @license https://opensource.org/licenses/OSL-3.0 Open Software License (OSL 3.0)
*/
namespace PrestaShop\PrestaShop\Core\SqlManager\Configuration;
use PrestaShop\PrestaShop\Core\CommandBus\CommandBusInterface;
use PrestaShop\PrestaShop\Core\Configuration\DataConfigurationInterface;
use PrestaShop\PrestaShop\Core\Domain\SqlManagement\Command\SaveSqlRequestSettingsCommand;
use PrestaShop\PrestaShop\Core\Domain\SqlManagement\Exception\SqlRequestSettingsConstraintException;
use PrestaShop\PrestaShop\Core\Domain\SqlManagement\Query\GetSqlRequestSettings;
use PrestaShop\PrestaShop\Core\Domain\SqlManagement\SqlRequestSettings;
/**
* Class RequestSqlConfiguration is responsible for RequestSql configuration.
*/
final class SqlRequestConfiguration implements DataConfigurationInterface
{
private const DEFINES_FILE = _PS_ROOT_DIR_ . '/config/defines.inc.php';
private const CUSTOM_DEFINES_FILE = _PS_ROOT_DIR_ . '/config/defines_custom.inc.php';
private const PATTERN = '/(define\(\'_PS_ALLOW_MULTI_STATEMENTS_QUERIES_\', )([a-zA-Z]+)(\);)/Ui';
/**
* @var CommandBusInterface
*/
private $commandBus;
/**
* @var CommandBusInterface
*/
private $queryBus;
/**
* @param CommandBusInterface $commandBus
* @param CommandBusInterface $queryBus
*/
public function __construct(
CommandBusInterface $commandBus,
CommandBusInterface $queryBus
) {
$this->commandBus = $commandBus;
$this->queryBus = $queryBus;
}
/**
* {@inheritdoc}
*/
public function getConfiguration()
{
/** @var SqlRequestSettings $sqlRequestSettings */
$sqlRequestSettings = $this->queryBus->handle(new GetSqlRequestSettings());
return [
'default_file_encoding' => $sqlRequestSettings->getFileEncoding(),
'enable_multi_statements' => $this->getMultiStatementsStatus(),
];
}
/**
* {@inheritdoc}
*/
public function updateConfiguration(array $configuration)
{
$errors = [];
if ($this->validateConfiguration($configuration)) {
try {
$command = new SaveSqlRequestSettingsCommand(
$configuration['default_file_encoding']
);
$this->commandBus->handle($command);
} catch (SqlRequestSettingsConstraintException $e) {
$errors = $this->handleUpdateException($e);
}
if ($configuration['enable_multi_statements'] !== $this->getMultiStatementsStatus()
&& !$this->setMultiStatementsStatus($configuration['enable_multi_statements'])
) {
$errors[] = [
'key' => 'Error: Could not write to file. Make sure that the correct permissions are set on the file %s',
'domain' => 'Admin.Advparameters.Notification',
'parameters' => [self::DEFINES_FILE],
];
}
}
return $errors;
}
/**
* {@inheritdoc}
*/
public function validateConfiguration(array $configuration)
{
return isset($configuration['default_file_encoding']);
}
private function getMultiStatementsStatus(): bool
{
return defined('_PS_ALLOW_MULTI_STATEMENTS_QUERIES_') && _PS_ALLOW_MULTI_STATEMENTS_QUERIES_;
}
private function setMultiStatementsStatus(bool $status): bool
{
$replacement = '$1' . ($status ? 'true' : 'false') . '$3';
$cleanedContent = false;
$file = self::CUSTOM_DEFINES_FILE;
$content = '';
if (is_readable(self::CUSTOM_DEFINES_FILE)) {
$content = file_get_contents(self::CUSTOM_DEFINES_FILE);
$cleanedContent = php_strip_whitespace(self::CUSTOM_DEFINES_FILE);
}
if (!$cleanedContent || !preg_match(self::PATTERN, $cleanedContent)) {
$content = file_get_contents(self::DEFINES_FILE);
$cleanedContent = php_strip_whitespace(self::DEFINES_FILE);
$file = self::DEFINES_FILE;
if (!$cleanedContent || !preg_match(self::PATTERN, $cleanedContent)) {
return false;
}
}
$status = file_put_contents($file, preg_replace(self::PATTERN, $replacement, $content));
if (function_exists('opcache_invalidate')) {
@opcache_invalidate($file);
}
return $status !== false;
}
/**
* Handle exception when configuration update fails.
*
* @param SqlRequestSettingsConstraintException $e
*
* @return array Array of errors
*/
private function handleUpdateException(SqlRequestSettingsConstraintException $e)
{
$code = $e->getCode();
$errorMessages = [
SqlRequestSettingsConstraintException::INVALID_FILE_ENCODING => [
'key' => 'The %s field is invalid.',
'parameters' => ['default_file_encoding'],
'domain' => 'Admin.Notifications.Error',
],
SqlRequestSettingsConstraintException::NOT_SUPPORTED_FILE_ENCODING => [
'key' => 'The %s field is invalid.',
'parameters' => ['default_file_encoding'],
'domain' => 'Admin.Notifications.Error',
],
];
return $errorMessages[$code];
}
}
xxxxx1.0, XXX xxxx