WebSVN – oidinfo_api – Blame – /trunk/oidinfo_api.inc.phps

Rev	Author	Line No.	Line
2	daniel-mar	1	<?php
		2
8	daniel-mar	3	/*
		4	* OID-Info.com API for PHP
13	daniel-mar	5	* Copyright 2019-2020 Daniel Marschall, ViaThinkSoft
		6	* Version 2020-09-12
8	daniel-mar	7	*
		8	* Licensed under the Apache License, Version 2.0 (the "License");
		9	* you may not use this file except in compliance with the License.
		10	* You may obtain a copy of the License at
		11	*
		12	* http://www.apache.org/licenses/LICENSE-2.0
		13	*
		14	* Unless required by applicable law or agreed to in writing, software
		15	* distributed under the License is distributed on an "AS IS" BASIS,
		16	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
		17	* See the License for the specific language governing permissions and
		18	* limitations under the License.
2	daniel-mar	19	*/
		20
		21	error_reporting(E_ALL \| E_NOTICE \| E_STRICT \| E_DEPRECATED);
		22
9	daniel-mar	23	if(!defined('STDIN')) define('STDIN', fopen('php://stdin', 'rb'));
		24	if(!defined('STDOUT')) define('STDOUT', fopen('php://stdout', 'wb'));
		25	if(!defined('STDERR')) define('STDERR', fopen('php://stderr', 'wb'));
		26
2	daniel-mar	27	if (file_exists(__DIR__ . '/oid_utils.inc.phps')) require_once __DIR__ . '/oid_utils.inc.phps';
		28	if (file_exists(__DIR__ . '/oid_utils.inc.php')) require_once __DIR__ . '/oid_utils.inc.php';
		29	if (file_exists(__DIR__ . '/xml_utils.inc.phps')) require_once __DIR__ . '/xml_utils.inc.phps';
		30	if (file_exists(__DIR__ . '/xml_utils.inc.php')) require_once __DIR__ . '/xml_utils.inc.php';
4	daniel-mar	31	if (file_exists(__DIR__ . '/../includes/oid_utils.inc.php')) require_once __DIR__ . '/../includes/oid_utils.inc.php';
		32	if (file_exists(__DIR__ . '/../includes/xml_utils.inc.php')) require_once __DIR__ . '/../includes/xml_utils.inc.php';
		33	if (file_exists(__DIR__ . '/../../includes/oid_utils.inc.php')) require_once __DIR__ . '/../../includes/oid_utils.inc.php';
		34	if (file_exists(__DIR__ . '/../../includes/xml_utils.inc.php')) require_once __DIR__ . '/../../includes/xml_utils.inc.php';
		35	if (file_exists(__DIR__ . '/../../../includes/oid_utils.inc.php')) require_once __DIR__ . '/../../../includes/oid_utils.inc.php';
		36	if (file_exists(__DIR__ . '/../../../includes/xml_utils.inc.php')) require_once __DIR__ . '/../../../includes/xml_utils.inc.php';
2	daniel-mar	37
		38	class OIDInfoException extends Exception {
		39	}
		40
		41	class OIDInfoAPI {
		42
		43	# --- PART 0: Constants
		44
		45	// First digit of the ping result
		46	// "-" = error
		47	// "0" = OID does not exist
		48	// "1" = OID does exist, but is not approved yet
		49	// "2" = OID does exist and is accessible
		50	/private/ const PING_IDX_EXISTS = 0;
		51
		52	// Second digit of the ping result
		53	// "-" = error
		54	// "0" = The OID may not be created
		55	// "1" = OID is not an illegal OID, and none of its ascendant is a leaf and its parent OID is not frozen
		56	/private/ const PING_IDX_MAY_CREATE = 1;
		57
		58	/private/ const SOFT_CORRECT_BEHAVIOR_NONE = 0;
		59	/private/ const SOFT_CORRECT_BEHAVIOR_LOWERCASE_BEGINNING = 1;
		60	/private/ const SOFT_CORRECT_BEHAVIOR_ALL_POSSIBLE = 2;
		61
		62	/public/ const DEFAULT_ILLEGALITY_RULE_FILE = __DIR__ . '/oid_illegality_rules';
		63
		64	# --- Part 1: "Ping API" for checking if OIDs are available or allowed to create
		65
		66	public $verbosePingProviders = array('https://misc.daniel-marschall.de/oid-repository/ping_oid.php?oid={OID}');
		67
		68	private $pingCache = array();
		69
		70	public $pingCacheMaxAge = 3600;
		71
		72	public function clearPingCache() {
		73	$this->pingCache = array();
		74	}
		75
		76	public function checkOnlineExists($oid) {
		77	if (!self::strictCheckSyntax($oid)) return false;
		78
		79	$pingResult = $this->pingOID($oid);
		80	$ret = $pingResult[self::PING_IDX_EXISTS] >= 1;
		81	return $ret;
		82	}
		83
		84	public function checkOnlineAvailable($oid) {
		85	if (!self::strictCheckSyntax($oid)) return false;
		86
		87	$pingResult = $this->pingOID($oid);
		88	$ret = $pingResult[self::PING_IDX_EXISTS] == 2;
		89	return $ret;
		90	}
		91
		92	public function checkOnlineAllowed($oid) {
		93	if (!self::strictCheckSyntax($oid)) return false;
		94
		95	$pingResult = $this->pingOID($oid);
		96	return $pingResult[self::PING_IDX_MAY_CREATE] == 1;
		97	}
		98
		99	public function checkOnlineMayCreate($oid) {
		100	if (!self::strictCheckSyntax($oid)) return false;
		101
		102	$pingResult = $this->pingOID($oid);
		103
		104	// OID is either illegal, or one of their parents are leaf or frozen
		105	# if (!checkOnlineAllowed($oid)) return false;
		106	if ($pingResult[self::PING_IDX_MAY_CREATE] == 0) return false;
		107
		108	// The OID exists already, so we don't need to create it again
		109	# if ($this->checkOnlineExists($oid)) return false;
		110	if ($pingResult[self::PING_IDX_EXISTS] >= 1) return false;
		111
		112	return true;
		113	}
		114
		115	protected function pingOID($oid) {
		116	if (isset($this->pingCache[$oid])) {
		117	$cacheAge = $this->pingCache[$oid][0] - time();
		118	if ($cacheAge <= $this->pingCacheMaxAge) {
		119	return $this->pingCache[$oid][1];
		120	}
		121	}
		122
		123	if (count($this->verbosePingProviders) == 0) {
		124	throw new OIDInfoException("No verbose ping provider available!");
		125	}
		126
		127	$res = false;
		128	foreach ($this->verbosePingProviders as $url) {
		129	$url = str_replace('{OID}', $oid, $url);
		130	$cn = @file_get_contents($url);
		131	if ($cn === false) continue;
		132	$loc_res = trim($cn);
		133	if (strpos($loc_res, '-') === false) {
		134	$res = $loc_res;
		135	break;
		136	}
		137	}
		138	if ($res === false) {
		139	throw new OIDInfoException("Could not ping OID $oid status!");
		140	}
		141
		142	// if ($this->pingCacheMaxAge >= 0) {
		143	$this->pingCache[$oid] = array(time(), $res);
		144	//}
		145
		146	return $res;
		147	}
		148
		149	# --- PART 2: Syntax checking
		150
		151	public static function strictCheckSyntax($oid) {
		152	return oid_valid_dotnotation($oid, false, false, 1);
		153	}
		154
		155	// Returns false if $oid has wrong syntax
		156	// Return an OID without leading dot or zeroes, if the syntax is acceptable
		157	public static function trySanitizeOID($oid) {
		158	// Allow leading dots and leading zeroes, but remove then afterwards
		159	$ok = oid_valid_dotnotation($oid, true, true, 1);
		160	if ($ok === false) return false;
		161
		162	return sanitizeOID($oid, $oid[0] == '.');
		163	}
		164
		165	# --- PART 3: XML file creation
		166
		167	protected static function eMailValid($email) {
		168	# TODO: use isemail project
		169
		170	if (empty($email)) return false;
		171
		172	if (strpos($email, '@') === false) return false;
		173
		174	$ary = explode('@', $email, 2);
		175	if (!isset($ary[1])) return false;
		176	if (strpos($ary[1], '.') === false) return false;
		177
		178	return true;
		179	}
		180
		181	public function softCorrectEMail($email, $params) {
		182	$email = str_replace(' ', '', $email);
		183	$email = str_replace('&', '@', $email);
		184	$email = str_replace('(at)', '@', $email);
		185	$email = str_replace('[at]', '@', $email);
		186	$email = str_replace('(dot)', '.', $email);
		187	$email = str_replace('[dot]', '.', $email);
		188	$email = trim($email);
		189
		190	if (!$params['allow_illegal_email'] && !self::eMailValid($email)) {
		191	return '';
		192	}
		193
		194	return $email;
		195	}
		196
		197	public function softCorrectPhone($phone, $params) {
		198	// TODO: if no "+", add "+1" , but only if address is in USA
		199	// TODO: or use param to fixate country if it is not known
		200	/*
		201	NOTE: with german phone numbers, this will cause trouble, even if we assume "+49"
		202	06223 / 1234
		203	shall be
		204	+49 6223 1234
		205	and not
		206	+49 06223 1234
		207	*/
		208
		209	$phone = str_replace('-', ' ', $phone);
		210	$phone = str_replace('.', ' ', $phone);
		211	$phone = str_replace('/', ' ', $phone);
		212	$phone = str_replace('(', ' ', $phone);
		213	$phone = str_replace(')', ' ', $phone);
		214
		215	// HL7 registry has included this accidently
		216	$phone = str_replace('"', '', $phone);
		217
		218	$phone = trim($phone);
		219
		220	return $phone;
		221	}
		222
5	daniel-mar	223	private static function strip_to_xhtml_light($str, $allow_strong_text=false) {
		224	// <strong> is allowed in the XSD, but not <b>
2	daniel-mar	225	$str = str_ireplace('<b>', '<strong>', $str);
		226	$str = str_ireplace('</b>', '</strong>', $str);
		227
5	daniel-mar	228	if (!$allow_strong_text) {
		229	// <strong> is only used for very important things like the word "deprecated". It should therefore not used for anything else
		230	$str = str_ireplace('<strong>', '', $str);
		231	$str = str_ireplace('</strong>', '', $str);
		232	}
		233
2	daniel-mar	234	$str = preg_replace('@<\sscript.+<\s/script.*>@isU', '', $str);
		235	$str = preg_replace('@<\sstyle.+<\s/style.*>@isU', '', $str);
		236
		237	$str = preg_replace_callback(
		238	'@<(\s/{0,1}\d)([^\s/>]+)(\s[^>])>@i',
		239	function ($treffer) {
		240	// see http://oid-info.com/xhtml-light.xsd
		241	$whitelist = array('a', 'br', 'code', 'em', 'font', 'img', 'li', 'strong', 'sub', 'sup', 'ul');
		242
		243	$pre = $treffer[1];
		244	$tag = $treffer[2];
		245	$attrib = $treffer[3];
		246	if (in_array($tag, $whitelist)) {
		247	return '<'.$pre.$tag.$attrib.'>';
		248	} else {
		249	return '';
		250	}
		251	}, $str);
		252
		253	return $str;
		254	}
		255
		256	const OIDINFO_CORRECT_DESC_OPTIONAL_ENDING_DOT = 0;
		257	const OIDINFO_CORRECT_DESC_ENFORCE_ENDING_DOT = 1;
		258	const OIDINFO_CORRECT_DESC_DISALLOW_ENDING_DOT = 2;
		259
		260	public function correctDesc($desc, $params, $ending_dot_policy=self::OIDINFO_CORRECT_DESC_OPTIONAL_ENDING_DOT, $enforce_xhtml_light=false) {
		261	$desc = trim($desc);
		262
		263	$desc = preg_replace('@<!\\[CDATA\\[(.+)\\]\\]>@ismU', '\\1', $desc);
		264
		265	if (substr_count($desc, '>') != substr_count($desc, '<')) {
		266	$params['allow_html'] = false;
		267	}
		268
		269	$desc = str_replace("\r", '', $desc);
		270
		271	if (!$params['allow_html']) {
		272	// htmlentities_numeric() does this for us
		273	/*
		274	$desc = str_replace('&', '&', $desc);
		275	$desc = str_replace('<', '<', $desc);
		276	$desc = str_replace('>', '>', $desc);
		277	$desc = str_replace('"', '"', $desc);
		278	$desc = str_replace("'", ''', $desc); // ' is not HTML. It is XML
		279	*/
		280
		281	$desc = str_replace("\n", '<br />', $desc);
		282	} else {
		283	// Some problems we had with HL7 registry
		284	$desc = preg_replace('@<(/{0,1}(p\|i\|b\|u\|ul\|li))>@ismU', '<\\1>', $desc);
		285	# preg_match_all('@<[^ :\\@]+>@ismU', $desc, $m);
		286	# if (count($m[0]) > 0) print_r($m);
		287
		288	$desc = preg_replace('@<i>(.+)<i/>@ismU', '<i>\\1</i>', $desc);
		289	$desc = str_replace('<p><p>', '</p><p>', $desc);
		290
		291	// <p> are not supported by oid-info.com
		292	$desc = str_replace('<p>', '<br /><br />', $desc);
		293	$desc = str_replace('</p>', '', $desc);
		294	}
		295
		296	// Escape unicode characters as numeric &#...;
		297	// The XML 1.0 standard does only has a few entities, but nothing like e.g. € , so we prefer numeric
		298
		299	//$desc = htmlentities_numeric($desc, $params['allow_html']);
		300	if (!$params['allow_html']) $desc = htmlentities($desc);
		301	$desc = html_named_to_numeric_entities($desc);
		302
		303	// Remove HTML tags which are not allowed
		304	if ($params['allow_html'] && (!$params['ignore_xhtml_light']) && $enforce_xhtml_light) {
		305	// oid-info.com does only allow a few HTML tags
		306	// see http://oid-info.com/xhtml-light.xsd
		307	$desc = self::strip_to_xhtml_light($desc);
		308	}
		309
		310	// Solve some XML problems...
		311	$desc = preg_replace('@<\sbr\s>@ismU', '<br/>', $desc); // auto close <br>
		312	$desc = preg_replace('@(href\s=\s)(["\'])(.)&([^#].)(\2)@ismU', '\1\2\3&\4\5', $desc); // fix "&" inside href-URLs to &
		313	// TODO: what do we do if there are more XHTML errors (e.g. additional open tags) which would make the XML invalid?
		314
		315	// "Trim" <br/>
13	daniel-mar	316	$count = 0;
2	daniel-mar	317	do { $desc = preg_replace('@^\s<\sbr\s/{0,1}\s>@isU', '', $desc, -1, $count); } while ($count > 0); // left trim
		318	do { $desc = preg_replace('@<\sbr\s/{0,1}\s>\s$@isU', '', $desc, -1, $count); } while ($count > 0); // right trim
		319
		320	// Correct double-encoded stuff
		321	if (!isset($params['tolerant_htmlentities']) \|\| $params['tolerant_htmlentities']) {
		322	do {
		323	$old_desc = $desc;
		324	# Full list of entities: https://www.freeformatter.com/html-entities.html
		325	# Max: 8 chars ( &thetasym; )
		326	# Min: 2 chars ( lt,gt,ni,or,ne,le,ge,Mu,Nu,Xi,Pi,mu,nu,xi,pi )
		327	$desc = preg_replace('@(&\|&)(#\|#)(\d+);@ismU', '&#\3;', $desc);
		328	$desc = preg_replace('@(&\|&)([a-zA-Z0-9]{2,8});@ismU', '&\2;', $desc);
		329	} while ($old_desc != $desc);
		330	}
		331
		332	// TODO: use the complete list of oid-info.com
		333	// TODO: Make this step optional using $params
		334	/*
		335	Array
		336	(
		337	[0] => Root OID for
		338	[1] => OID for
		339	[2] => OID identifying
		340	[3] => Top arc for
		341	[4] => Arc for
		342	[5] => arc root
		343	[6] => Node for
		344	[7] => Leaf node for
		345	[8] => This OID describes
		346	[9] => [tT]his oid
		347	[10] => This arc describes
		348	[11] => This identifies
		349	[12] => Identifies a
		350	[13] => [Oo]bject [Ii]dentifier
		351	[14] => Identifier for
		352	[15] => This [Ii]dentifier is for
		353	[16] => Identifiers used by
		354	[17] => identifier$
		355	[18] => This branch
		356	[19] => Branch for
		357	[20] => Child tree for
		358	[21] => Child for
		359	[22] => Subtree for
		360	[23] => Sub-OID
		361	[24] => Tree for
		362	[25] => Child object
		363	[26] => Parent OID
		364	[27] => root for
		365	[28] => Assigned for
		366	[29] => Used to identify
		367	[30] => Used in
		368	[31] => Used for
		369	[32] => For use by
		370	[33] => Entry for
		371	[34] => This is for
		372	[35] => ["]?OID["]?
		373	[36] => ^OID
		374	[37] => OID$
		375	[38] => oid
		376	[39] => oid$
		377	[40] => OIDs
		378	)
		379	$x = 'Root OID for ; OID for ; OID identifying ; Top arc for ; Arc for ; arc root; Node for ; Leaf node for ; This OID describes ; [tT]his oid ; This arc describes ; This identifies ; Identifies a ; [Oo]bject [Ii]dentifier; Identifier for ; This [Ii]dentifier is for ; Identifiers used by ; identifier$; This branch ; Branch for ; Child tree for ; Child for ; Subtree for ; Sub-OID; Tree for ; Child object; Parent OID; root for ; Assigned for ; Used to identify ; Used in ; Used for ; For use by ; Entry for ; This is for ; ["]?OID["]? ; ^OID ; OID$; oid ; oid$; OIDs';
		380	$ary = explode('; ', $x);
		381	print_r($ary);
		382	*/
		383	$desc = preg_replace("@^Root OID for the @i", '', $desc);
		384	$desc = preg_replace("@^Root OID for @i", '', $desc);
		385	$desc = preg_replace("@^OID root for the @i", '', $desc);
		386	$desc = preg_replace("@^OID root for @i", '', $desc);
		387	$desc = preg_replace("@^This OID will be used for @i", '', $desc);
		388	$desc = preg_replace("@^This will be a generic OID for the @i", '', $desc);
		389	$desc = preg_replace("@^OID for @i", '', $desc);
		390	$desc = preg_replace("@ Root OID$@i", '', $desc);
		391	$desc = preg_replace("@ OID$@i", '', $desc);
		392	$desc = preg_replace("@ OID Namespace$@i", '', $desc);
		393	$desc = preg_replace("@^OID for @i", '', $desc);
		394
		395	$desc = rtrim($desc);
		396	if ($ending_dot_policy == self::OIDINFO_CORRECT_DESC_ENFORCE_ENDING_DOT) {
		397	if (($desc != '') && (substr($desc, -1)) != '.') $desc .= '.';
		398	} else if ($ending_dot_policy == self::OIDINFO_CORRECT_DESC_DISALLOW_ENDING_DOT) {
		399	$desc = preg_replace('@\\.$@', '', $desc);
		400	}
		401
		402	return $desc;
		403	}
		404
		405	public function xmlAddHeader($firstName, $lastName, $email) {
		406	// TODO: encode
		407
		408	$firstName = htmlentities_numeric($firstName);
		409	if (empty($firstName)) {
		410	throw new OIDInfoException("Please supply a first name");
		411	}
		412
		413	$lastName = htmlentities_numeric($lastName);
		414	if (empty($lastName)) {
		415	throw new OIDInfoException("Please supply a last name");
		416	}
		417
		418	$email = htmlentities_numeric($email);
		419	if (empty($email)) {
		420	throw new OIDInfoException("Please supply an email address");
		421	}
		422
		423	// $out = "<!DOCTYPE oid-database>\n\n";
		424	$out = '<?xml version="1.0" encoding="UTF-8" ?>'."\n";
		425	$out .= '<oid-database xmlns="http://oid-info.com"'."\n";
		426	$out .= ' xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"'."\n";
		427	$out .= ' xsi:schemaLocation="http://oid-info.com '."\n";
		428	$out .= ' http://oid-info.com/oid.xsd">'."\n";
		429	$out .= "\t<submitter>\n";
		430	$out .= "\t\t<first-name>$firstName</first-name>\n";
		431	$out .= "\t\t<last-name>$lastName</last-name>\n";
		432	$out .= "\t\t<email>$email</email>\n";
		433	$out .= "\t</submitter>\n";
		434
		435	if (!self::eMailValid($email)) {
		436	throw new OIDInfoException("eMail address '$email' is invalid");
		437	}
		438
		439	return $out;
		440	}
		441
		442	public function xmlAddFooter() {
		443	return "</oid-database>\n";
		444	}
		445
		446	/*
		447	-- CODE TEMPLATE --
		448
		449	$params['allow_html'] = false; // Allow HTML in <description> and <information>
		450	$params['allow_illegal_email'] = true; // We should allow it, because we don't know if the user has some kind of human-readable anti-spam technique
		451	$params['soft_correct_behavior'] = OIDInfoAPI::SOFT_CORRECT_BEHAVIOR_NONE;
		452	$params['do_online_check'] = false; // Flag to disable this online check, because it generates a lot of traffic and runtime.
		453	$params['do_illegality_check'] = true;
		454	$params['do_simpleping_check'] = true;
		455	$params['auto_extract_name'] = '';
		456	$params['auto_extract_url'] = '';
		457	$params['always_output_comment'] = false; // Also output comment if there was an error (e.g. OID already existing)
		458	$params['creation_allowed_check'] = true;
		459	$params['tolerant_htmlentities'] = true;
		460	$params['ignore_xhtml_light'] = false;
		461
		462	$elements['synonymous-identifier'] = ''; // string or array
		463	$elements['description'] = '';
		464	$elements['information'] = '';
		465
		466	$elements['first-registrant']['first-name'] = '';
		467	$elements['first-registrant']['last-name'] = '';
		468	$elements['first-registrant']['address'] = '';
		469	$elements['first-registrant']['email'] = '';
		470	$elements['first-registrant']['phone'] = '';
		471	$elements['first-registrant']['fax'] = '';
		472	$elements['first-registrant']['creation-date'] = '';
		473
		474	$elements['current-registrant']['first-name'] = '';
		475	$elements['current-registrant']['last-name'] = '';
		476	$elements['current-registrant']['address'] = '';
		477	$elements['current-registrant']['email'] = '';
		478	$elements['current-registrant']['phone'] = '';
		479	$elements['current-registrant']['fax'] = '';
		480	$elements['current-registrant']['modification-date'] = '';
		481
		482	$oid = '1.2.3';
		483
		484	$comment = 'test';
		485
		486	echo $oa->createXMLEntry($oid, $elements, $params, $comment);
		487	*/
		488	public function createXMLEntry($oid, $elements, $params, $comment='') {
		489	// Backward compatibility
		490	if (!isset($params['do_csv_check'])) $params['do_simpleping_check'] = true;
		491
		492	// Set default behavior
		493	if (!isset($params['allow_html'])) $params['allow_html'] = false; // Allow HTML in <description> and <information>
		494	if (!isset($params['allow_illegal_email'])) $params['allow_illegal_email'] = true; // We should allow it, because we don't know if the user has some kind of human-readable anti-spam technique
		495	if (!isset($params['soft_correct_behavior'])) $params['soft_correct_behavior'] = self::SOFT_CORRECT_BEHAVIOR_NONE;
		496	if (!isset($params['do_online_check'])) $params['do_online_check'] = false; // Flag to disable this online check, because it generates a lot of traffic and runtime.
		497	if (!isset($params['do_illegality_check'])) $params['do_illegality_check'] = true;
		498	if (!isset($params['do_simpleping_check'])) $params['do_simpleping_check'] = true;
		499	if (!isset($params['auto_extract_name'])) $params['auto_extract_name'] = '';
		500	if (!isset($params['auto_extract_url'])) $params['auto_extract_url'] = '';
		501	if (!isset($params['always_output_comment'])) $params['always_output_comment'] = false; // Also output comment if there was an error (e.g. OID already existing)
		502	if (!isset($params['creation_allowed_check'])) $params['creation_allowed_check'] = true;
		503	if (!isset($params['tolerant_htmlentities'])) $params['tolerant_htmlentities'] = true;
		504	if (!isset($params['ignore_xhtml_light'])) $params['ignore_xhtml_light'] = false;
		505
		506	$out = '';
		507	if (!empty($comment)) $out .= "\t\t<!-- $comment -->\n";
		508
		509	if ($params['always_output_comment']) {
		510	$err = $out;
		511	} else {
		512	$err = false;
		513	}
		514
		515	if (isset($elements['dotted_oid'])) {
		516	throw new OIDInfoException("'dotted_oid' in the \$elements array is not supported. Please use the \$oid argument.");
		517	}
		518	if (isset($elements['value'])) {
		519	// TODO: WHAT SHOULD WE DO WITH THAT?
		520	throw new OIDInfoException("'value' in the \$elements array is currently not supported.");
		521	}
		522
		523	$bak_oid = $oid;
		524	$oid = self::trySanitizeOID($oid);
		525	if ($oid === false) {
9	daniel-mar	526	fwrite(STDOUT/STDERR/,"<!-- ERROR: Ignored '$bak_oid', because it is not a valid OID -->\n");
6	daniel-mar	527	return $err;
2	daniel-mar	528	}
		529
		530	if ($params['creation_allowed_check']) {
6	daniel-mar	531	if (!$this->oidMayCreate($oid, $params['do_online_check'], $params['do_simpleping_check'], $params['do_illegality_check'])) {
9	daniel-mar	532	fwrite(STDOUT/STDERR/,"<!-- ERROR: Creation of $oid disallowed -->\n");
6	daniel-mar	533	return $err;
		534	}
7	daniel-mar	535	} else {
		536	if ($params['do_illegality_check'] && ($this->illegalOid($oid))) {
9	daniel-mar	537	fwrite(STDOUT/STDERR/,"<!-- ERROR: Creation of $oid disallowed -->\n");
7	daniel-mar	538	return $err;
		539	}
2	daniel-mar	540	}
		541
		542	$elements['description'] = $this->correctDesc($elements['description'], $params, self::OIDINFO_CORRECT_DESC_DISALLOW_ENDING_DOT, true);
		543	$elements['information'] = $this->correctDesc($elements['information'], $params, self::OIDINFO_CORRECT_DESC_ENFORCE_ENDING_DOT, true);
		544
5	daniel-mar	545	// Request by O.D. 26 August 2019
		546	$elements['description'] = trim($elements['description']);
13	daniel-mar	547	$m = array();
5	daniel-mar	548	if (preg_match('@^[a-z]@', $elements['description'], $m)) {
6	daniel-mar	549	$ending_dot_policy = self::OIDINFO_CORRECT_DESC_DISALLOW_ENDING_DOT; // for description
5	daniel-mar	550	if (($ending_dot_policy != self::OIDINFO_CORRECT_DESC_ENFORCE_ENDING_DOT) && (strpos($elements['description'], ' ') === false)) { // <-- added by DM
		551	$elements['description'] = '"' . $elements['description'] . '"';
		552	}
		553	}
		554	// End request by O.D. 26. August 2019
		555
2	daniel-mar	556	if ($params['auto_extract_name'] \|\| $params['auto_extract_url']) {
		557	if (!empty($elements['information'])) $elements['information'] .= '<br /><br />';
		558	if ($params['auto_extract_name'] \|\| $params['auto_extract_url']) {
		559	$elements['information'] .= 'Automatically extracted from <a href="'.$params['auto_extract_url'].'">'.$params['auto_extract_name'].'</a>.';
		560	} else if ($params['auto_extract_name']) {
		561	$elements['information'] .= 'Automatically extracted from '.$params['auto_extract_name'];
		562	} else if ($params['auto_extract_url']) {
		563	$hr_url = $params['auto_extract_url'];
		564	// $hr_url = preg_replace('@^https{0,1}://@ismU', '', $hr_url);
		565	$hr_url = preg_replace('@^http://@ismU', '', $hr_url);
		566	$elements['information'] .= 'Automatically extracted from <a href="'.$params['auto_extract_url'].'">'.$hr_url.'</a>.';
		567	}
		568	}
		569
		570	// Validate ASN.1 ID
		571	if (isset($elements['synonymous-identifier'])) {
		572	if (!is_array($elements['synonymous-identifier'])) {
		573	$elements['synonymous-identifier'] = array($elements['synonymous-identifier']);
		574	}
		575	foreach ($elements['synonymous-identifier'] as &$synid) {
		576	if ($synid == '') {
		577	$synid = null;
		578	continue;
		579	}
		580
		581	$behavior = $params['soft_correct_behavior'];
		582
		583	if ($behavior == self::SOFT_CORRECT_BEHAVIOR_NONE) {
		584	if (!oid_id_is_valid($synid)) $synid = null;
		585	} else if ($behavior == self::SOFT_CORRECT_BEHAVIOR_LOWERCASE_BEGINNING) {
		586	$synid[0] = strtolower($synid[0]);
		587	if (!oid_id_is_valid($synid)) $synid = null;
		588	} else if ($behavior == self::SOFT_CORRECT_BEHAVIOR_ALL_POSSIBLE) {
		589	$synid = oid_soft_correct_id($synid);
		590	// if (!oid_id_is_valid($synid)) $synid = null;
		591	} else {
		592	throw new OIDInfoException("Unexpected soft-correction behavior for ASN.1 IDs");
		593	}
		594	}
		595	}
		596
		597	// ATTENTION: the XML-generator will always add <dotted-oid> , but what will happen if additionally an
		598	// asn1-path (<value>) is given? (the resulting OIDs might be inconsistent/mismatch)
		599	if (isset($elements['value']) && (!asn1_path_valid($elements['value']))) {
		600	unset($elements['value']);
		601	}
		602
		603	// Validate IRI (currently not supported by oid-info.com, but the tag name is reserved)
		604	if (isset($elements['iri'])) {
		605	if (!is_array($elements['iri'])) {
		606	$elements['iri'] = array($elements['iri']);
		607	}
		608	foreach ($elements['iri'] as &$iri) {
		609	// Numeric-only nicht erlauben. Das w�re ja nur in einem IRI-Pfad g�ltig, aber nicht als einzelner Identifier
		610	if (!iri_arc_valid($iri, false)) $iri = null;
		611	}
		612	}
		613
		614	if (isset($elements['first-registrant']['phone']))
		615	$elements['first-registrant']['phone'] = $this->softCorrectPhone($elements['first-registrant']['phone'], $params);
		616
		617	if (isset($elements['current-registrant']['phone']))
		618	$elements['current-registrant']['phone'] = $this->softCorrectPhone($elements['current-registrant']['phone'], $params);
		619
		620	if (isset($elements['first-registrant']['fax']))
		621	$elements['first-registrant']['fax'] = $this->softCorrectPhone($elements['first-registrant']['fax'], $params);
		622
		623	if (isset($elements['current-registrant']['fax']))
		624	$elements['current-registrant']['fax'] = $this->softCorrectPhone($elements['current-registrant']['fax'], $params);
		625
		626	if (isset($elements['first-registrant']['email']))
		627	$elements['first-registrant']['email'] = $this->softCorrectEMail($elements['first-registrant']['email'], $params);
		628
		629	if (isset($elements['current-registrant']['email']))
		630	$elements['current-registrant']['email'] = $this->softCorrectEMail($elements['current-registrant']['email'], $params);
		631
		632	// TODO: if name is empty, but address has 1 line, take it as firstname (but remove hyperlink)
		633
		634	$out_loc = '';
		635	foreach ($elements as $name => $val) {
		636	if (($name == 'first-registrant') \|\| ($name == 'current-registrant')) {
		637	$out_loc2 = '';
		638	foreach ($val as $name2 => $val2) {
		639	if (is_null($val2)) continue;
		640	if (empty($val2)) continue;
		641
		642	if (!is_array($val2)) $val2 = array($val2);
		643
		644	foreach ($val2 as $val3) {
		645	// if (is_null($val3)) continue;
		646	if (empty($val3)) continue;
		647
		648	if ($name2 == 'address') {
		649	// $val3 = htmlentities_numeric($val3);
		650	$val3 = $this->correctDesc($val3, $params, self::OIDINFO_CORRECT_DESC_DISALLOW_ENDING_DOT, true);
		651	} else {
		652	// $val3 = htmlentities_numeric($val3);
		653	$val3 = $this->correctDesc($val3, $params, self::OIDINFO_CORRECT_DESC_DISALLOW_ENDING_DOT, false);
		654	}
		655	$out_loc2 .= "\t\t\t<$name2>".$val3."</$name2>\n";
		656	}
		657	}
		658
		659	if (!empty($out_loc2)) {
		660	$out_loc .= "\t\t<$name>\n";
		661	$out_loc .= $out_loc2;
		662	$out_loc .= "\t\t</$name>\n";
		663	}
		664	} else {
		665	// if (is_null($val)) continue;
		666	if (empty($val) && ($name != 'description')) continue; // description is mandatory, according to http://oid-info.com/oid.xsd
		667
		668	if (!is_array($val)) $val = array($val);
		669
		670	foreach ($val as $val2) {
		671	// if (is_null($val2)) continue;
		672	if (empty($val2) && ($name != 'description')) continue; // description is mandatory, according to http://oid-info.com/oid.xsd
		673
		674	if (($name != 'description') && ($name != 'information')) { // don't correctDesc description/information, because we already did it above.
		675	// $val2 = htmlentities_numeric($val2);
		676	$val2 = $this->correctDesc($val2, $params, self::OIDINFO_CORRECT_DESC_OPTIONAL_ENDING_DOT, false);
		677	}
		678	$out_loc .= "\t\t<$name>".$val2."</$name>\n";
		679	}
		680	}
		681	}
		682
		683	if (!empty($out)) {
		684	$out = "\t<oid>\n"."\t\t".trim($out)."\n";
		685	} else {
		686	$out = "\t<oid>\n";
		687	}
		688	$out .= "\t\t<dot-notation>$oid</dot-notation>\n";
		689	$out .= $out_loc;
		690	$out .= "\t</oid>\n";
		691
		692	return $out;
		693	}
		694
		695	# --- PART 4: Offline check if OIDs are illegal
		696
		697	protected $illegality_rules = array();
		698
		699	public function clearIllegalityRules() {
		700	$this->illegality_rules = array();
		701	}
		702
		703	public function loadIllegalityRuleFile($file) {
		704	if (!file_exists($file)) {
		705	throw new OIDInfoException("Error: File '$file' does not exist");
		706	}
		707
		708	$lines = file($file);
		709
		710	if ($lines === false) {
		711	throw new OIDInfoException("Error: Could not load '$file'");
		712	}
		713
		714	$signature = trim(array_shift($lines));
		715	if (($signature != '[1.3.6.1.4.1.37476.3.1.5.1]') && ($signature != '[1.3.6.1.4.1.37476.3.1.5.2]')) {
		716	throw new OIDInfoException("'$file' does not seem to a valid illegality rule file (file format OID does not match. Signature $signature unexpected)");
		717	}
		718
		719	foreach ($lines as $line) {
		720	// Remove comments
		721	$ary = explode('--', $line);
		722	$rule = trim($ary[0]);
		723
		724	if ($rule !== '') $this->addIllegalityRule($rule);
		725	}
		726	}
		727
		728	public function addIllegalityRule($rule) {
		729	$test = $rule;
		730	$test = preg_replace('@\\.\$!\\d+\$@ismU', '.0', $test); // added in ver 2
		731	$test = preg_replace('@\\.\$\\d+\\+\$@ismU', '.0', $test);
		732	$test = preg_replace('@\\.\$\\d+\\-\$@ismU', '.0', $test);
		733	$test = preg_replace('@\\.\$\\d+\\-\\d+\$@ismU', '.0', $test);
		734	$test = preg_replace('@\\.\\*@ismU', '.0', $test);
		735
		736	if (!oid_valid_dotnotation($test, false, false, 1)) {
		737	throw new OIDInfoException("Illegal illegality rule '$rule'.");
		738	}
		739
		740	$this->illegality_rules[] = $rule;
		741	}
		742
7	daniel-mar	743	private static function bigint_cmp($a, $b) {
		744	if (function_exists('bccomp')) {
		745	return bccomp($a, $b);
		746	}
		747
		748	if (function_exists('gmp_cmp')) {
		749	return gmp_cmp($a, $b);
		750	}
		751
		752	if ($a > $b) return 1;
		753	if ($a < $b) return -1;
		754	return 0;
		755	}
		756
2	daniel-mar	757	public function illegalOID($oid, &$illegal_root='') {
		758	$bak = $oid;
		759	$oid = self::trySanitizeOID($oid);
		760	if ($oid === false) {
		761	$illegal_root = $bak;
		762	return true; // is illegal
		763	}
		764
		765	$rules = $this->illegality_rules;
		766
		767	foreach ($rules as $rule) {
		768	$rule = str_replace(array('(', ')'), '', $rule);
		769
		770	$oarr = explode('.', $oid);
		771	$rarr = explode('.', $rule);
		772
		773	if (count($oarr) < count($rarr)) continue;
		774
		775	$rulefit = true;
		776
		777	$illrootary = array();
		778
		779	$vararcs = 0;
		780	$varsfit = 0;
		781	for ($i=0; $i<count($rarr); $i++) {
		782	$oelem = $oarr[$i];
		783	$relem = $rarr[$i];
		784
		785	$illrootary[] = $oelem;
		786
		787	if ($relem == '*') $relem = '0+';
		788
		789	$startchar = substr($relem, 0, 1);
		790	$endchar = substr($relem, -1, 1);
		791	if ($startchar == '!') { // added in ver 2
		792	$vararcs++;
		793	$relem = substr($relem, 1, strlen($relem)-1); // cut away first char
7	daniel-mar	794	$cmp = self::bigint_cmp($oelem, $relem) != 0;
		795	if ($cmp) $varsfit++;
2	daniel-mar	796	} else if ($endchar == '+') {
		797	$vararcs++;
		798	$relem = substr($relem, 0, strlen($relem)-1); // cut away last char
7	daniel-mar	799	$cmp = self::bigint_cmp($oelem, $relem) >= 0;
		800	if ($cmp) $varsfit++;
2	daniel-mar	801	} else if ($endchar == '-') {
		802	$vararcs++;
		803	$relem = substr($relem, 0, strlen($relem)-1); // cut away last char
7	daniel-mar	804	$cmp = self::bigint_cmp($oelem, $relem) <= 0;
		805	if ($cmp) $varsfit++;
2	daniel-mar	806	} else if (strpos($relem, '-') !== false) {
		807	$vararcs++;
		808	$limarr = explode('-', $relem);
		809	$limmin = $limarr[0];
		810	$limmax = $limarr[1];
7	daniel-mar	811	$cmp_min = self::bigint_cmp($oelem, $limmin) >= 0;
		812	$cmp_max = self::bigint_cmp($oelem, $limmax) <= 0;
		813	if ($cmp_min && $cmp_max) $varsfit++;
2	daniel-mar	814	} else {
		815	if ($relem != $oelem) {
		816	$rulefit = false;
		817	break;
		818	}
		819	}
		820	}
		821
		822	if ($rulefit && ($vararcs == $varsfit)) {
		823	$illegal_root = implode('.', $illrootary);
		824	return true; // is illegal
		825	}
		826	}
		827
		828	$illegal_root = '';
		829	return false; // not illegal
		830	}
		831
		832	# --- PART 5: Misc functions
		833
		834	function __construct() {
		835	if (file_exists(self::DEFAULT_ILLEGALITY_RULE_FILE)) {
		836	$this->loadIllegalityRuleFile(self::DEFAULT_ILLEGALITY_RULE_FILE);
		837	}
		838	}
		839
		840	public static function getPublicURL($oid) {
		841	return "http://oid-info.com/get/$oid";
		842	}
		843
		844	public function oidExisting($oid, $onlineCheck=true, $useSimplePingProvider=true) {
		845	$bak_oid = $oid;
		846	$oid = self::trySanitizeOID($oid);
		847	if ($oid === false) {
		848	throw new OIDInfoException("'$bak_oid' is not a valid OID");
		849	}
		850
		851	$canuseSimplePingProvider = $useSimplePingProvider && $this->simplePingProviderAvailable();
		852	if ($canuseSimplePingProvider) {
		853	if ($this->simplePingProviderCheckOID($oid)) return true;
		854	}
		855	if ($onlineCheck) {
		856	return $this->checkOnlineExists($oid);
		857	}
		858	if ((!$canuseSimplePingProvider) && (!$onlineCheck)) {
		859	throw new OIDInfoException("No simple or verbose checking method chosen/available");
		860	}
		861	return false;
		862	}
		863
		864	public function oidMayCreate($oid, $onlineCheck=true, $useSimplePingProvider=true, $illegalityCheck=true) {
		865	$bak_oid = $oid;
		866	$oid = self::trySanitizeOID($oid);
		867	if ($oid === false) {
		868	throw new OIDInfoException("'$bak_oid' is not a valid OID");
		869	}
		870
		871	if ($illegalityCheck && $this->illegalOID($oid)) return false;
		872
		873	$canuseSimplePingProvider = $useSimplePingProvider && $this->simplePingProviderAvailable();
		874	if ($canuseSimplePingProvider) {
		875	if ($this->simplePingProviderCheckOID($oid)) return false;
		876	}
		877	if ($onlineCheck) {
		878	return $this->checkOnlineMayCreate($oid);
		879	}
		880	if ((!$canuseSimplePingProvider) && (!$onlineCheck)) {
		881	throw new OIDInfoException("No simple or verbose checking method chosen/available");
		882	}
		883	return true;
		884	}
		885
		886	# --- PART 6: Simple Ping Providers
		887	# TODO: Question ... can't these provider concepts (SPP and VPP) not somehow be combined?
		888
		889	protected $simplePingProviders = array();
		890
		891	public function addSimplePingProvider($addr) {
		892	if (!isset($this->simplePingProviders[$addr])) {
		893	if (strtolower(substr($addr, -4, 4)) == '.csv') {
		894	$this->simplePingProviders[$addr] = new CSVSimplePingProvider($addr);
		895	} else {
		896	$this->simplePingProviders[$addr] = new OIDSimplePingProvider($addr);
		897	// $this->simplePingProviders[$addr]->connect();
		898	}
		899	}
		900	return $this->simplePingProviders[$addr];
		901	}
		902
		903	public function removeSimplePingProvider($addr) {
		904	$this->simplePingProviders[$addr]->disconnect();
		905	unset($this->simplePingProviders[$addr]);
		906	}
		907
		908	public function removeAllSimplePingProviders() {
		909	foreach ($this->simplePingProviders as $addr => $obj) {
		910	$this->removeSimplePingProvider($addr);
		911	}
		912	}
		913
		914	public function listSimplePingProviders() {
		915	$out = array();
		916	foreach ($this->simplePingProviders as $addr => $obj) {
		917	$out[] = $addr;
		918	}
		919	return $out;
		920	}
		921
		922	public function simplePingProviderCheckOID($oid) {
		923	if (!$this->simplePingProviderAvailable()) {
		924	throw new OIDInfoException("No simple ping providers available.");
		925	}
		926
		927	$one_null = false;
13	daniel-mar	928	foreach ($this->simplePingProviders as /$addr =>/ $obj) {
2	daniel-mar	929	$res = $obj->queryOID($oid);
		930	if ($res) return true;
		931	if ($res !== false) $one_null = true;
		932	}
		933
		934	return $one_null ? null : false;
		935	}
		936
		937	public function simplePingProviderAvailable() {
		938	return count($this->simplePingProviders) >= 1;
		939	}
		940
		941	}
		942
		943	interface IOIDSimplePingProvider {
		944	public function queryOID($oid);
		945	public function disconnect();
		946	public function connect();
		947	}
		948
		949	class CSVSimplePingProvider implements IOIDSimplePingProvider {
		950	protected $csvfile = '';
		951	protected $lines = array();
		952	protected $filemtime = 0;
		953
		954	public function queryOID($oid) {
		955	$this->reloadCSV();
		956	return in_array($oid, $this->lines);
		957	}
		958
		959	public function disconnect() {
		960	// Nothing
		961	}
		962
		963	public function connect() {
		964	// Nothing
		965	}
		966
		967	// TODO: This cannot handle big CSVs. We need to introduce the old code of "2016-09-02_old_oidinfo_api_with_csv_reader.zip" here.
		968	protected function reloadCSV() {
		969	if (!file_exists($this->csvfile)) {
		970	throw new OIDInfoException("File '".$this->csvfile."' does not exist");
		971	}
		972	$filemtime = filemtime($this->csvfile);
		973	if ($filemtime != $this->filemtime) {
13	daniel-mar	974	$this->lines = file($this->csvfile);
2	daniel-mar	975	$this->filemtime = $filemtime;
		976	}
		977	}
		978
		979	function __construct($csvfile) {
		980	$this->csvfile = $csvfile;
		981	$this->reloadCSV();
		982	}
		983	}
		984
		985
		986	class OIDSimplePingProvider implements IOIDSimplePingProvider {
		987	protected $addr = '';
		988	protected $connected = false;
		989	protected $socket = null;
		990
		991	const SPP_MAX_CONNECTION_ATTEMPTS = 3; // TODO: Auslagern in OIDInfoAPI Klasse...?
		992
		993	const DEFAULT_PORT = 49500;
		994
		995	protected function spp_reader_init() {
		996	$this->spp_reader_uninit();
		997
		998	$ary = explode(':', $this->addr);
		999	$host = $ary[0];
		1000	$service_port = isset($ary[1]) ? $ary[1] : self::DEFAULT_PORT;
		1001	$address = @gethostbyname($host);
		1002	if ($address === false) {
		1003	echo "gethostbyname() failed.\n"; // TODO: exceptions? (Auch alle "echos" darunter)
		1004	return false;
		1005	}
		1006	$this->socket = @socket_create(AF_INET, SOCK_STREAM, SOL_TCP);
		1007	if ($this->socket === false) {
		1008	echo "socket_create() failed: " . socket_strerror(socket_last_error()) . "\n";
		1009	return false;
		1010	}
		1011	$result = @socket_connect($this->socket, $address, $service_port);
		1012	if ($result === false) {
		1013	echo "socket_connect() failed: " . socket_strerror(socket_last_error($this->socket)) . "\n";
		1014	return false;
		1015	}
		1016
		1017	$this->connected = true;
		1018	}
		1019
		1020	protected function spp_reader_avail($oid, $failcount=0) {
		1021	$in = "${oid}\n\0"; // PHP's socket_send() does not send a trailing \n . There needs to be something after the \n ... :(
		1022
		1023	if ($failcount >= self::SPP_MAX_CONNECTION_ATTEMPTS) {
		1024	echo "Query $oid: CONNECTION FAILED!\n";
		1025	return null;
		1026	}
		1027
		1028	if (!$this->connected) {
		1029	$this->spp_reader_init();
		1030	}
		1031
		1032	$s = @socket_send($this->socket, $in, strlen($in), 0);
		1033	if ($s != strlen($in)) {
		1034	// echo "Query $oid: Sending failed\n";
		1035	$this->spp_reader_init();
		1036	if (!$this->socket) return null;
		1037	return $this->spp_reader_avail($oid, $failcount+1);
		1038	}
		1039
		1040	$out = @socket_read($this->socket, 2048);
		1041	if (trim($out) == '1') {
		1042	return true;
		1043	} else if (trim($out) == '0') {
		1044	return false;
		1045	} else {
		1046	// echo "Query $oid: Receiving failed\n";
		1047	$this->spp_reader_init();
		1048	if (!$this->socket) return null;
		1049	return $this->spp_reader_avail($oid, $failcount+1);
		1050	}
		1051	}
		1052
		1053	protected function spp_reader_uninit() {
		1054	if (!$this->connected) return;
		1055	@socket_close($this->socket);
		1056	$this->connected = false;
		1057	}
		1058
		1059	public function queryOID($oid) {
		1060	if (trim($oid) === 'bye') return null;
		1061	return $this->spp_reader_avail($oid);
		1062	}
		1063
		1064	public function disconnect() {
		1065	return $this->spp_reader_uninit();
		1066	}
		1067
		1068	public function connect() {
		1069	return $this->spp_reader_init();
		1070	}
		1071
		1072	function __construct($addr='localhost:49500') {
		1073	$this->addr = $addr;
		1074	}
		1075
		1076	}

Subversion Repositories oidinfo_api

oidinfo_api/trunk/oidinfo_api.inc.phps – Rev 13