Gazelle/sections/torrents/download.php

<?
if (!isset($_REQUEST['authkey']) || !isset($_REQUEST['torrent_pass'])) {
	enforce_login();
	$TorrentPass = $LoggedUser['torrent_pass'];
	$DownloadAlt = $LoggedUser['DownloadAlt'];
	$UserID		 = $LoggedUser['ID'];
	$AuthKey	 = $LoggedUser['AuthKey'];
} else {
	if (strpos($_REQUEST['torrent_pass'], '_') !== false) {
		error(404);
	}
	
	$UserInfo = $Cache->get_value('user_'.$_REQUEST['torrent_pass']);
	if (!is_array($UserInfo)) {
		$DB->query("
			SELECT ID, DownloadAlt, la.UserID
			FROM users_main AS m
				INNER JOIN users_info AS i ON i.UserID = m.ID
				LEFT JOIN locked_accounts AS la ON la.UserID = m.ID
			WHERE m.torrent_pass = '".db_string($_REQUEST['torrent_pass'])."'
				AND m.Enabled = '1'");
		$UserInfo = $DB->next_record();
		$Cache->cache_value('user_'.$_REQUEST['torrent_pass'], $UserInfo, 3600);
	}
	$UserInfo = array($UserInfo);
	list($UserID, $DownloadAlt, $Locked) = array_shift($UserInfo);
	if (!$UserID) {
		error(0);
	}
	$TorrentPass = $_REQUEST['torrent_pass'];
	$AuthKey = $_REQUEST['authkey'];

	if ($Locked == $UserID) {
		header('HTTP/1.1 403 Forbidden');
		die();
	}
}

$TorrentID = $_REQUEST['id'];


if (!is_number($TorrentID)) {
	error(0);
}

/* uTorrent Remote and various scripts redownload .torrent files periodically.
	To prevent this retardation from blowing bandwidth etc., let's block it
	if the .torrent file has been downloaded four times before */
$ScriptUAs = array('BTWebClient*', 'Python-urllib*', 'python-requests*', 'uTorrent*');
if (Misc::in_array_partial($_SERVER['HTTP_USER_AGENT'], $ScriptUAs)) {
	$DB->query("
		SELECT 1
		FROM users_downloads
		WHERE UserID = $UserID
			AND TorrentID = $TorrentID
		LIMIT 4");
	if ($DB->record_count() === 4) {
		error('You have already downloaded this torrent file four times. If you need to download it again, please do so from your browser.', true);
		die();
	}
}

$Info = $Cache->get_value('torrent_download_'.$TorrentID);
if (!is_array($Info) || !array_key_exists('PlainArtists', $Info) || empty($Info[10])) {
	$DB->query("
		SELECT
			t.Media,
			t.Format,
			t.Encoding,
			IF(t.RemasterYear = 0, tg.Year, t.RemasterYear),
			tg.ID AS GroupID,
			tg.Name,
			tg.WikiImage,
			tg.CategoryID,
			t.Size,
			t.FreeTorrent,
			t.info_hash
		FROM torrents AS t
			INNER JOIN torrents_group AS tg ON tg.ID = t.GroupID
		WHERE t.ID = '".db_string($TorrentID)."'");
	if (!$DB->has_results()) {
		error(404);
	}
	$Info = array($DB->next_record(MYSQLI_NUM, array(4, 5, 6, 10)));
	$Artists = Artists::get_artist($Info[0][4], false);
	$Info['Artists'] = Artists::display_artists($Artists, false, true);
	$Info['PlainArtists'] = Artists::display_artists($Artists, false, true, false);
	$Cache->cache_value("torrent_download_$TorrentID", $Info, 0);
}
if (!is_array($Info[0])) {
	error(404);
}
list($Media, $Format, $Encoding, $Year, $GroupID, $Name, $Image, $CategoryID, $Size, $FreeTorrent, $InfoHash) = array_shift($Info); // used for generating the filename
$Artists = $Info['Artists'];

// If he's trying use a token on this, we need to make sure he has one,
// deduct it, add this to the FLs table, and update his cache key.
if ($_REQUEST['usetoken'] && $FreeTorrent == '0') {
	if (isset($LoggedUser)) {
		$FLTokens = $LoggedUser['FLTokens'];
		if ($LoggedUser['CanLeech'] != '1') {
			error('You cannot use tokens while leech disabled.');
		}
	}
	else {
		$UInfo = Users::user_heavy_info($UserID);
		if ($UInfo['CanLeech'] != '1') {
			error('You may not use tokens while leech disabled.');
		}
		$FLTokens = $UInfo['FLTokens'];
	}

	// First make sure this isn't already FL, and if it is, do nothing

	if (!Torrents::has_token($TorrentID)) {
		if ($FLTokens <= 0) {
			error('You do not have any freeleech tokens left. Please use the regular DL link.');
		}
		if ($Size >= 1073741824) {
			error('This torrent is too large. Please use the regular DL link.');
		}

		// Let the tracker know about this
		if (!Tracker::update_tracker('add_token', array('info_hash' => rawurlencode($InfoHash), 'userid' => $UserID))) {
			error('Sorry! An error occurred while trying to register your token. Most often, this is due to the tracker being down or under heavy load. Please try again later.');
		}

		if (!Torrents::has_token($TorrentID)) {
			$DB->query("
				INSERT INTO users_freeleeches (UserID, TorrentID, Time)
				VALUES ($UserID, $TorrentID, NOW())
				ON DUPLICATE KEY UPDATE
					Time = VALUES(Time),
					Expired = FALSE,
					Uses = Uses + 1");
			$DB->query("
				UPDATE users_main
				SET FLTokens = FLTokens - 1
				WHERE ID = $UserID");

			// Fix for downloadthemall messing with the cached token count
			$UInfo = Users::user_heavy_info($UserID);
			$FLTokens = $UInfo['FLTokens'];

			$Cache->begin_transaction("user_info_heavy_$UserID");
			$Cache->update_row(false, array('FLTokens' => ($FLTokens - 1)));
			$Cache->commit_transaction(0);

			$Cache->delete_value("users_tokens_$UserID");
		}
	}
}

//Stupid Recent Snatches On User Page
if ($CategoryID == '1' && $Image != '') {
	$RecentSnatches = $Cache->get_value("recent_snatches_$UserID");
	if (!empty($RecentSnatches)) {
		$Snatch = array(
				'ID' => $GroupID,
				'Name' => $Name,
				'Artist' => $Artists,
				'WikiImage' => $Image);
		if (!in_array($Snatch, $RecentSnatches)) {
			if (count($RecentSnatches) === 5) {
				array_pop($RecentSnatches);
			}
			array_unshift($RecentSnatches, $Snatch);
		} elseif (!is_array($RecentSnatches)) {
			$RecentSnatches = array($Snatch);
		}
		$Cache->cache_value("recent_snatches_$UserID", $RecentSnatches, 0);
	}
}

$DB->query("
	INSERT IGNORE INTO users_downloads (UserID, TorrentID, Time)
	VALUES ('$UserID', '$TorrentID', '".sqltime()."')");

$DB->query("
	SELECT File
	FROM torrents_files
	WHERE TorrentID = '$TorrentID'");

Torrents::set_snatch_update_time($UserID, Torrents::SNATCHED_UPDATE_AFTERDL);
list($Contents) = $DB->next_record(MYSQLI_NUM, false);
$FileName = TorrentsDL::construct_file_name($Info['PlainArtists'], $Name, $Year, $Media, $Format, $Encoding, $TorrentID, $DownloadAlt);

if ($DownloadAlt) {
	header('Content-Type: text/plain; charset=utf-8');
} elseif (!$DownloadAlt || $Failed) {
	header('Content-Type: application/x-bittorrent; charset=utf-8');
}
header('Content-disposition: attachment; filename="'.$FileName.'"');

echo TorrentsDL::get_file($Contents, ANNOUNCE_URL."/$TorrentPass/announce");

define('SKIP_NO_CACHE_HEADERS', 1);
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`<?`
			`if (!isset($_REQUEST['authkey']) \|\| !isset($_REQUEST['torrent_pass'])) {`
			`enforce_login();`
			`$TorrentPass = $LoggedUser['torrent_pass'];`
			`$DownloadAlt = $LoggedUser['DownloadAlt'];`
Empty commit 2013-02-07 08:00:47 +00:00			`$UserID = $LoggedUser['ID'];`
			`$AuthKey = $LoggedUser['AuthKey'];`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`} else {`
Empty commit 2015-12-25 08:00:29 +00:00			`if (strpos($_REQUEST['torrent_pass'], '_') !== false) {`
			`error(404);`
			`}`

Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`$UserInfo = $Cache->get_value('user_'.$_REQUEST['torrent_pass']);`
Empty commit 2013-04-13 08:00:19 +00:00			`if (!is_array($UserInfo)) {`
Empty commit 2013-07-04 08:00:56 +00:00			`$DB->query("`
Empty commit 2016-01-28 08:00:28 +00:00			`SELECT ID, DownloadAlt, la.UserID`
Empty commit 2011-10-08 08:00:14 +00:00			`FROM users_main AS m`
Empty commit 2013-07-04 08:00:56 +00:00			`INNER JOIN users_info AS i ON i.UserID = m.ID`
Empty commit 2016-01-28 08:00:28 +00:00			`LEFT JOIN locked_accounts AS la ON la.UserID = m.ID`
Empty commit 2013-07-04 08:00:56 +00:00			`WHERE m.torrent_pass = '".db_string($_REQUEST['torrent_pass'])."'`
			`AND m.Enabled = '1'");`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`$UserInfo = $DB->next_record();`
			`$Cache->cache_value('user_'.$_REQUEST['torrent_pass'], $UserInfo, 3600);`
			`}`
			`$UserInfo = array($UserInfo);`
Empty commit 2016-01-28 08:00:28 +00:00			`list($UserID, $DownloadAlt, $Locked) = array_shift($UserInfo);`
Empty commit 2013-03-10 08:00:41 +00:00			`if (!$UserID) {`
			`error(0);`
			`}`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`$TorrentPass = $_REQUEST['torrent_pass'];`
Empty commit 2012-06-20 08:00:14 +00:00			`$AuthKey = $_REQUEST['authkey'];`
Empty commit 2016-01-28 08:00:28 +00:00
			`if ($Locked == $UserID) {`
			`header('HTTP/1.1 403 Forbidden');`
			`die();`
			`}`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`}`

			`$TorrentID = $_REQUEST['id'];`

Empty commit 2012-06-19 08:00:14 +00:00

Empty commit 2013-03-10 08:00:41 +00:00			`if (!is_number($TorrentID)) {`
			`error(0);`
			`}`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00
Empty commit 2013-10-07 08:01:03 +00:00			`/* uTorrent Remote and various scripts redownload .torrent files periodically.`
Empty commit 2013-07-04 08:00:56 +00:00			`To prevent this retardation from blowing bandwidth etc., let's block it`
Empty commit 2013-10-07 08:01:03 +00:00			`if the .torrent file has been downloaded four times before */`
Empty commit 2015-01-28 08:00:26 +00:00			`$ScriptUAs = array('BTWebClient', 'Python-urllib', 'python-requests', 'uTorrent');`
Empty commit 2013-10-18 08:00:55 +00:00			`if (Misc::in_array_partial($_SERVER['HTTP_USER_AGENT'], $ScriptUAs)) {`
Empty commit 2013-07-04 08:00:56 +00:00			`$DB->query("`
			`SELECT 1`
			`FROM users_downloads`
			`WHERE UserID = $UserID`
			`AND TorrentID = $TorrentID`
Empty commit 2013-10-07 08:01:03 +00:00			`LIMIT 4");`
			`if ($DB->record_count() === 4) {`
			`error('You have already downloaded this torrent file four times. If you need to download it again, please do so from your browser.', true);`
Empty commit 2012-10-24 08:00:16 +00:00			`die();`
			`}`
			`}`

Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`$Info = $Cache->get_value('torrent_download_'.$TorrentID);`
Empty commit 2013-04-13 08:00:19 +00:00			`if (!is_array($Info) \|\| !array_key_exists('PlainArtists', $Info) \|\| empty($Info[10])) {`
Empty commit 2013-07-04 08:00:56 +00:00			`$DB->query("`
			`SELECT`
			`t.Media,`
			`t.Format,`
			`t.Encoding,`
			`IF(t.RemasterYear = 0, tg.Year, t.RemasterYear),`
			`tg.ID AS GroupID,`
			`tg.Name,`
			`tg.WikiImage,`
			`tg.CategoryID,`
			`t.Size,`
			`t.FreeTorrent,`
			`t.info_hash`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`FROM torrents AS t`
Empty commit 2013-07-04 08:00:56 +00:00			`INNER JOIN torrents_group AS tg ON tg.ID = t.GroupID`
			`WHERE t.ID = '".db_string($TorrentID)."'");`
Empty commit 2013-07-10 00:08:53 +00:00			`if (!$DB->has_results()) {`
Empty commit 2012-05-18 13:35:17 +00:00			`error(404);`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`}`
Empty commit 2013-07-04 08:00:56 +00:00			`$Info = array($DB->next_record(MYSQLI_NUM, array(4, 5, 6, 10)));`
			`$Artists = Artists::get_artist($Info[0][4], false);`
Empty commit 2012-10-11 08:00:15 +00:00			`$Info['Artists'] = Artists::display_artists($Artists, false, true);`
			`$Info['PlainArtists'] = Artists::display_artists($Artists, false, true, false);`
Empty commit 2013-07-04 08:00:56 +00:00			`$Cache->cache_value("torrent_download_$TorrentID", $Info, 0);`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`}`
Empty commit 2013-04-13 08:00:19 +00:00			`if (!is_array($Info[0])) {`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`error(404);`
			`}`
Empty commit 2013-07-04 08:00:56 +00:00			`list($Media, $Format, $Encoding, $Year, $GroupID, $Name, $Image, $CategoryID, $Size, $FreeTorrent, $InfoHash) = array_shift($Info); // used for generating the filename`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`$Artists = $Info['Artists'];`

Empty commit 2011-10-08 08:00:14 +00:00			`// If he's trying use a token on this, we need to make sure he has one,`
			`// deduct it, add this to the FLs table, and update his cache key.`
74 changes from Mon Oct 3 16:42:37 2011 +0000 to Thu Oct 27 02:24:49 2011 +0000 %B> 2011-10-27 08:00:15 +00:00			`if ($_REQUEST['usetoken'] && $FreeTorrent == '0') {`
			`if (isset($LoggedUser)) {`
			`$FLTokens = $LoggedUser['FLTokens'];`
			`if ($LoggedUser['CanLeech'] != '1') {`
			`error('You cannot use tokens while leech disabled.');`
			`}`
			`}`
			`else {`
Empty commit 2012-10-11 08:00:15 +00:00			`$UInfo = Users::user_heavy_info($UserID);`
74 changes from Mon Oct 3 16:42:37 2011 +0000 to Thu Oct 27 02:24:49 2011 +0000 %B> 2011-10-27 08:00:15 +00:00			`if ($UInfo['CanLeech'] != '1') {`
			`error('You may not use tokens while leech disabled.');`
			`}`
			`$FLTokens = $UInfo['FLTokens'];`
			`}`
Empty commit 2013-02-22 08:00:24 +00:00
Empty commit 2011-10-08 08:00:14 +00:00			`// First make sure this isn't already FL, and if it is, do nothing`
Empty commit 2013-02-22 08:00:24 +00:00
Empty commit 2012-10-16 08:00:18 +00:00			`if (!Torrents::has_token($TorrentID)) {`
74 changes from Mon Oct 3 16:42:37 2011 +0000 to Thu Oct 27 02:24:49 2011 +0000 %B> 2011-10-27 08:00:15 +00:00			`if ($FLTokens <= 0) {`
Empty commit 2013-07-04 08:00:56 +00:00			`error('You do not have any freeleech tokens left. Please use the regular DL link.');`
Empty commit 2011-10-08 08:00:14 +00:00			`}`
			`if ($Size >= 1073741824) {`
Empty commit 2013-07-04 08:00:56 +00:00			`error('This torrent is too large. Please use the regular DL link.');`
Empty commit 2011-10-08 08:00:14 +00:00			`}`
Empty commit 2013-02-22 08:00:24 +00:00
74 changes from Mon Oct 3 16:42:37 2011 +0000 to Thu Oct 27 02:24:49 2011 +0000 %B> 2011-10-27 08:00:15 +00:00			`// Let the tracker know about this`
Empty commit 2012-10-11 08:00:15 +00:00			`if (!Tracker::update_tracker('add_token', array('info_hash' => rawurlencode($InfoHash), 'userid' => $UserID))) {`
Empty commit 2013-07-04 08:00:56 +00:00			`error('Sorry! An error occurred while trying to register your token. Most often, this is due to the tracker being down or under heavy load. Please try again later.');`
74 changes from Mon Oct 3 16:42:37 2011 +0000 to Thu Oct 27 02:24:49 2011 +0000 %B> 2011-10-27 08:00:15 +00:00			`}`
Empty commit 2013-02-22 08:00:24 +00:00
Empty commit 2012-10-16 08:00:18 +00:00			`if (!Torrents::has_token($TorrentID)) {`
Empty commit 2013-07-04 08:00:56 +00:00			`$DB->query("`
			`INSERT INTO users_freeleeches (UserID, TorrentID, Time)`
			`VALUES ($UserID, $TorrentID, NOW())`
			`ON DUPLICATE KEY UPDATE`
			`Time = VALUES(Time),`
			`Expired = FALSE,`
			`Uses = Uses + 1");`
			`$DB->query("`
			`UPDATE users_main`
			`SET FLTokens = FLTokens - 1`
			`WHERE ID = $UserID");`
Empty commit 2013-02-22 08:00:24 +00:00
Empty commit 2011-11-02 08:00:14 +00:00			`// Fix for downloadthemall messing with the cached token count`
Empty commit 2012-10-11 08:00:15 +00:00			`$UInfo = Users::user_heavy_info($UserID);`
Empty commit 2011-11-02 08:00:14 +00:00			`$FLTokens = $UInfo['FLTokens'];`
Empty commit 2013-02-22 08:00:24 +00:00
Empty commit 2013-07-04 08:00:56 +00:00			`$Cache->begin_transaction("user_info_heavy_$UserID");`
			`$Cache->update_row(false, array('FLTokens' => ($FLTokens - 1)));`
Empty commit 2011-10-29 08:00:15 +00:00			`$Cache->commit_transaction(0);`
Empty commit 2013-02-22 08:00:24 +00:00
Empty commit 2013-07-04 08:00:56 +00:00			`$Cache->delete_value("users_tokens_$UserID");`
Empty commit 2011-10-29 08:00:15 +00:00			`}`
Empty commit 2011-10-08 08:00:14 +00:00			`}`
			`}`

Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`//Stupid Recent Snatches On User Page`
Empty commit 2013-05-08 08:00:26 +00:00			`if ($CategoryID == '1' && $Image != '') {`
Empty commit 2013-07-04 08:00:56 +00:00			`$RecentSnatches = $Cache->get_value("recent_snatches_$UserID");`
Empty commit 2013-04-13 08:00:19 +00:00			`if (!empty($RecentSnatches)) {`
Empty commit 2013-07-04 08:00:56 +00:00			`$Snatch = array(`
			`'ID' => $GroupID,`
			`'Name' => $Name,`
			`'Artist' => $Artists,`
			`'WikiImage' => $Image);`
Empty commit 2013-04-13 08:00:19 +00:00			`if (!in_array($Snatch, $RecentSnatches)) {`
Empty commit 2013-07-17 08:00:52 +00:00			`if (count($RecentSnatches) === 5) {`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`array_pop($RecentSnatches);`
			`}`
			`array_unshift($RecentSnatches, $Snatch);`
Empty commit 2013-04-13 08:00:19 +00:00			`} elseif (!is_array($RecentSnatches)) {`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`$RecentSnatches = array($Snatch);`
			`}`
Empty commit 2013-07-04 08:00:56 +00:00			`$Cache->cache_value("recent_snatches_$UserID", $RecentSnatches, 0);`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`}`
			`}`

Empty commit 2013-05-08 08:00:26 +00:00			`$DB->query("`
			`INSERT IGNORE INTO users_downloads (UserID, TorrentID, Time)`
			`VALUES ('$UserID', '$TorrentID', '".sqltime()."')");`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00
Empty commit 2013-07-04 08:00:56 +00:00			`$DB->query("`
			`SELECT File`
			`FROM torrents_files`
			`WHERE TorrentID = '$TorrentID'");`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00
Empty commit 2014-05-30 08:02:33 +00:00			`Torrents::set_snatch_update_time($UserID, Torrents::SNATCHED_UPDATE_AFTERDL);`
Empty commit 2013-02-21 08:00:30 +00:00			`list($Contents) = $DB->next_record(MYSQLI_NUM, false);`
Empty commit 2016-02-19 08:00:30 +00:00			`$FileName = TorrentsDL::construct_file_name($Info['PlainArtists'], $Name, $Year, $Media, $Format, $Encoding, $TorrentID, $DownloadAlt);`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00
Empty commit 2013-02-25 21:16:55 +00:00			`if ($DownloadAlt) {`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`header('Content-Type: text/plain; charset=utf-8');`
Empty commit 2013-04-13 08:00:19 +00:00			`} elseif (!$DownloadAlt \|\| $Failed) {`
Initial import from revision 11440 2011-03-28 14:21:28 +00:00			`header('Content-Type: application/x-bittorrent; charset=utf-8');`
			`}`
			`header('Content-disposition: attachment; filename="'.$FileName.'"');`

Empty commit 2013-02-25 21:16:55 +00:00			`echo TorrentsDL::get_file($Contents, ANNOUNCE_URL."/$TorrentPass/announce");`
Empty commit 2012-08-25 08:00:15 +00:00
Empty commit 2013-08-22 08:00:54 +00:00			`define('SKIP_NO_CACHE_HEADERS', 1);`