update.compare.inc

  1. drupal
    1. 6 modules/update/update.compare.inc
    2. 7 modules/update/update.compare.inc
    3. 8 core/modules/update/update.compare.inc

Code required only when comparing available updates to existing data.

Functions & methods

NameDescription
update_calculate_project_dataCalculate the current update status of all projects on the site.
update_calculate_project_update_statusCalculate the current update status of a specific project.
update_filter_project_infoFilter the project .info data to only save attributes we need.
update_get_projectsFetch an array of installed and enabled projects.
update_get_project_nameGiven a $file object (as returned by system_get_files_database()), figure out what project it belongs to.
update_process_project_infoProcess the list of projects on the system to figure out the currently installed versions, and other information that is required before we can compare against the available releases to produce the status report.
update_project_cacheRetrieve data from {cache_update} or empty the cache when necessary.
_update_process_info_listPopulate an array of project data.

File

modules/update/update.compare.inc
View source
  1. <?php

  2. 

  3. /**

  4.  * @file

  5.  * Code required only when comparing available updates to existing data.

  6.  */

  7. 

  8. /**

  9.  * Fetch an array of installed and enabled projects.

  10.  *

  11.  * This is only responsible for generating an array of projects (taking into

  12.  * account projects that include more than one module or theme). Other

  13.  * information like the specific version and install type (official release,

  14.  * dev snapshot, etc) is handled later in update_process_project_info() since

  15.  * that logic is only required when preparing the status report, not for

  16.  * fetching the available release data.

  17.  *

  18.  * This array is fairly expensive to construct, since it involves a lot of

  19.  * disk I/O, so we cache the results into the {cache_update} table using the

  20.  * 'update_project_projects' cache ID. However, since this is not the data

  21.  * about available updates fetched from the network, it is ok to invalidate it

  22.  * somewhat quickly. If we keep this data for very long, site administrators

  23.  * are more likely to see incorrect results if they upgrade to a newer version

  24.  * of a module or theme but do not visit certain pages that automatically

  25.  * clear this cache.

  26.  *

  27.  * @see update_process_project_info()

  28.  * @see update_calculate_project_data()

  29.  * @see update_project_cache()

  30.  */

  31. function update_get_projects() {

  32.   $projects = &drupal_static(__FUNCTION__, array());

  33.   if (empty($projects)) {

  34.     // Retrieve the projects from cache, if present.

  35.     $projects = update_project_cache('update_project_projects');

  36.     if (empty($projects)) {

  37.       // Still empty, so we have to rebuild the cache.

  38.       $module_data = system_rebuild_module_data();

  39.       $theme_data = system_rebuild_theme_data();

  40.       _update_process_info_list($projects, $module_data, 'module', TRUE);

  41.       _update_process_info_list($projects, $theme_data, 'theme', TRUE);

  42.       if (variable_get('update_check_disabled', FALSE)) {

  43.         _update_process_info_list($projects, $module_data, 'module', FALSE);

  44.         _update_process_info_list($projects, $theme_data, 'theme', FALSE);

  45.       }

  46.       // Allow other modules to alter projects before fetching and comparing.

  47.       drupal_alter('update_projects', $projects);

  48.       // Cache the site's project data for at most 1 hour.

  49.       _update_cache_set('update_project_projects', $projects, REQUEST_TIME + 3600);

  50.     }

  51.   }

  52.   return $projects;

  53. }

  54. 

  55. /**

  56.  * Populate an array of project data.

  57.  *

  58.  * This iterates over a list of the installed modules or themes and groups

  59.  * them by project and status. A few parts of this function assume that

  60.  * enabled modules and themes are always processed first, and if disabled

  61.  * modules or themes are being processed (there is a setting to control if

  62.  * disabled code should be included in the Available updates report or not),

  63.  * those are only processed after $projects has been populated with

  64.  * information about the enabled code. 'Hidden' modules and themes are always

  65.  * ignored. This function also records the latest change time on the .info

  66.  * files for each module or theme, which is important data which is used when

  67.  * deciding if the cached available update data should be invalidated.

  68.  *

  69.  * @param $projects

  70.  *   Reference to the array of project data of what's installed on this site.

  71.  * @param $list

  72.  *   Array of data to process to add the relevant info to the $projects array.

  73.  * @param $project_type

  74.  *   The kind of data in the list (can be 'module' or 'theme').

  75.  * @param $status

  76.  *   Boolean that controls what status (enabled or disabled) to process out of

  77.  *   the $list and add to the $projects array.

  78.  *

  79.  * @see update_get_projects()

  80.  */

  81. function _update_process_info_list(&$projects, $list, $project_type, $status) {

  82.   foreach ($list as $file) {

  83.     // A disabled base theme of an enabled sub-theme still has all of its code

  84.     // run by the sub-theme, so we include it in our "enabled" projects list.

  85.     if ($status && !$file->status && !empty($file->sub_themes)) {

  86.       foreach ($file->sub_themes as $key => $name) {

  87.         // Build a list of enabled sub-themes.

  88.         if ($list[$key]->status) {

  89.           $file->enabled_sub_themes[$key] = $name;

  90.         }

  91.       }

  92.       // If there are no enabled subthemes, we should ignore this base theme

  93.       // for the enabled case. If the site is trying to display disabled

  94.       // themes, we'll catch it then.

  95.       if (empty($file->enabled_sub_themes)) {

  96.         continue;

  97.       }

  98.     }

  99.     // Otherwise, just add projects of the proper status to our list.

  100.     elseif ($file->status != $status) {

  101.       continue;

  102.     }

  103. 

  104.     // Skip if the .info file is broken.

  105.     if (empty($file->info)) {

  106.       continue;

  107.     }

  108. 

  109.     // Skip if it's a hidden module or theme.

  110.     if (!empty($file->info['hidden'])) {

  111.       continue;

  112.     }

  113. 

  114.     // If the .info doesn't define the 'project', try to figure it out.

  115.     if (!isset($file->info['project'])) {

  116.       $file->info['project'] = update_get_project_name($file);

  117.     }

  118. 

  119.     // If we still don't know the 'project', give up.

  120.     if (empty($file->info['project'])) {

  121.       continue;

  122.     }

  123. 

  124.     // If we don't already know it, grab the change time on the .info file

  125.     // itself. Note: we need to use the ctime, not the mtime (modification

  126.     // time) since many (all?) tar implementations will go out of their way to

  127.     // set the mtime on the files it creates to the timestamps recorded in the

  128.     // tarball. We want to see the last time the file was changed on disk,

  129.     // which is left alone by tar and correctly set to the time the .info file

  130.     // was unpacked.

  131.     if (!isset($file->info['_info_file_ctime'])) {

  132.       $info_filename = dirname($file->uri) . '/' . $file->name . '.info';

  133.       $file->info['_info_file_ctime'] = filectime($info_filename);

  134.     }

  135. 

  136.     if (!isset($file->info['datestamp'])) {

  137.       $file->info['datestamp'] = 0;

  138.     }

  139. 

  140.     $project_name = $file->info['project'];

  141. 

  142.     // Figure out what project type we're going to use to display this module

  143.     // or theme. If the project name is 'drupal', we don't want it to show up

  144.     // under the usual "Modules" section, we put it at a special "Drupal Core"

  145.     // section at the top of the report.

  146.     if ($project_name == 'drupal') {

  147.       $project_display_type = 'core';

  148.     }

  149.     else {

  150.       $project_display_type = $project_type;

  151.     }

  152.     if (empty($status) && empty($file->enabled_sub_themes)) {

  153.       // If we're processing disabled modules or themes, append a suffix.

  154.       // However, we don't do this to a a base theme with enabled

  155.       // subthemes, since we treat that case as if it is enabled.

  156.       $project_display_type .= '-disabled';

  157.     }

  158.     // Add a list of sub-themes that "depend on" the project and a list of base

  159.     // themes that are "required by" the project.

  160.     if ($project_name == 'drupal') {

  161.       // Drupal core is always required, so this extra info would be noise.

  162.       $sub_themes = array();

  163.       $base_themes = array();

  164.     }

  165.     else {

  166.       // Add list of enabled sub-themes.

  167.       $sub_themes = !empty($file->enabled_sub_themes) ? $file->enabled_sub_themes : array();

  168.       // Add list of base themes.

  169.       $base_themes = !empty($file->base_themes) ? $file->base_themes : array();

  170.     }

  171.     if (!isset($projects[$project_name])) {

  172.       // Only process this if we haven't done this project, since a single

  173.       // project can have multiple modules or themes.

  174.       $projects[$project_name] = array(

  175.         'name' => $project_name,

  176.         // Only save attributes from the .info file we care about so we do not

  177.         // bloat our RAM usage needlessly.

  178.         'info' => update_filter_project_info($file->info),

  179.         'datestamp' => $file->info['datestamp'],

  180.         'includes' => array($file->name => $file->info['name']),

  181.         'project_type' => $project_display_type,

  182.         'project_status' => $status,

  183.         'sub_themes' => $sub_themes,

  184.         'base_themes' => $base_themes,

  185.       );

  186.     }

  187.     elseif ($projects[$project_name]['project_type'] == $project_display_type) {

  188.       // Only add the file we're processing to the 'includes' array for this

  189.       // project if it is of the same type and status (which is encoded in the

  190.       // $project_display_type). This prevents listing all the disabled

  191.       // modules included with an enabled project if we happen to be checking

  192.       // for disabled modules, too.

  193.       $projects[$project_name]['includes'][$file->name] = $file->info['name'];

  194.       $projects[$project_name]['info']['_info_file_ctime'] = max($projects[$project_name]['info']['_info_file_ctime'], $file->info['_info_file_ctime']);

  195.       $projects[$project_name]['datestamp'] = max($projects[$project_name]['datestamp'], $file->info['datestamp']);

  196.       if (!empty($sub_themes)) {

  197.         $projects[$project_name]['sub_themes'] += $sub_themes;

  198.       }

  199.       if (!empty($base_themes)) {

  200.         $projects[$project_name]['base_themes'] += $base_themes;

  201.       }

  202.     }

  203.     elseif (empty($status)) {

  204.       // If we have a project_name that matches, but the project_display_type

  205.       // does not, it means we're processing a disabled module or theme that

  206.       // belongs to a project that has some enabled code. In this case, we add

  207.       // the disabled thing into a separate array for separate display.

  208.       $projects[$project_name]['disabled'][$file->name] = $file->info['name'];

  209.     }

  210.   }

  211. }

  212. 

  213. /**

  214.  * Given a $file object (as returned by system_get_files_database()), figure

  215.  * out what project it belongs to.

  216.  *

  217.  * @see system_get_files_database()

  218.  */

  219. function update_get_project_name($file) {

  220.   $project_name = '';

  221.   if (isset($file->info['project'])) {

  222.     $project_name = $file->info['project'];

  223.   }

  224.   elseif (isset($file->info['package']) && (strpos($file->info['package'], 'Core') === 0)) {

  225.     $project_name = 'drupal';

  226.   }

  227.   return $project_name;

  228. }

  229. 

  230. /**

  231.  * Process the list of projects on the system to figure out the currently

  232.  * installed versions, and other information that is required before we can

  233.  * compare against the available releases to produce the status report.

  234.  *

  235.  * @param $projects

  236.  *   Array of project information from update_get_projects().

  237.  */

  238. function update_process_project_info(&$projects) {

  239.   foreach ($projects as $key => $project) {

  240.     // Assume an official release until we see otherwise.

  241.     $install_type = 'official';

  242. 

  243.     $info = $project['info'];

  244. 

  245.     if (isset($info['version'])) {

  246.       // Check for development snapshots

  247.       if (preg_match('@(dev|HEAD)@', $info['version'])) {

  248.         $install_type = 'dev';

  249.       }

  250. 

  251.       // Figure out what the currently installed major version is. We need

  252.       // to handle both contribution (e.g. "5.x-1.3", major = 1) and core

  253.       // (e.g. "5.1", major = 5) version strings.

  254.       $matches = array();

  255.       if (preg_match('/^(\d+\.x-)?(\d+)\..*$/', $info['version'], $matches)) {

  256.         $info['major'] = $matches[2];

  257.       }

  258.       elseif (!isset($info['major'])) {

  259.         // This would only happen for version strings that don't follow the

  260.         // drupal.org convention. We let contribs define "major" in their

  261.         // .info in this case, and only if that's missing would we hit this.

  262.         $info['major'] = -1;

  263.       }

  264.     }

  265.     else {

  266.       // No version info available at all.

  267.       $install_type = 'unknown';

  268.       $info['version'] = t('Unknown');

  269.       $info['major'] = -1;

  270.     }

  271. 

  272.     // Finally, save the results we care about into the $projects array.

  273.     $projects[$key]['existing_version'] = $info['version'];

  274.     $projects[$key]['existing_major'] = $info['major'];

  275.     $projects[$key]['install_type'] = $install_type;

  276.   }

  277. }

  278. 

  279. /**

  280.  * Calculate the current update status of all projects on the site.

  281.  *

  282.  * The results of this function are expensive to compute, especially on sites

  283.  * with lots of modules or themes, since it involves a lot of comparisons and

  284.  * other operations. Therefore, we cache the results into the {cache_update}

  285.  * table using the 'update_project_data' cache ID. However, since this is not

  286.  * the data about available updates fetched from the network, it is ok to

  287.  * invalidate it somewhat quickly. If we keep this data for very long, site

  288.  * administrators are more likely to see incorrect results if they upgrade to

  289.  * a newer version of a module or theme but do not visit certain pages that

  290.  * automatically clear this cache.

  291.  *

  292.  * @param array $available

  293.  *   Data about available project releases.

  294.  *

  295.  * @see update_get_available()

  296.  * @see update_get_projects()

  297.  * @see update_process_project_info()

  298.  * @see update_project_cache()

  299.  */

  300. function update_calculate_project_data($available) {

  301.   // Retrieve the projects from cache, if present.

  302.   $projects = update_project_cache('update_project_data');

  303.   // If $projects is empty, then the cache must be rebuilt.

  304.   // Otherwise, return the cached data and skip the rest of the function.

  305.   if (!empty($projects)) {

  306.     return $projects;

  307.   }

  308.   $projects = update_get_projects();

  309.   update_process_project_info($projects);

  310.   foreach ($projects as $project => $project_info) {

  311.     if (isset($available[$project])) {

  312.       update_calculate_project_update_status($project, $projects[$project], $available[$project]);

  313.     }

  314.     else {

  315.       $projects[$project]['status'] = UPDATE_UNKNOWN;

  316.       $projects[$project]['reason'] = t('No available releases found');

  317.     }

  318.   }

  319.   // Give other modules a chance to alter the status (for example, to allow a

  320.   // contrib module to provide fine-grained settings to ignore specific

  321.   // projects or releases).

  322.   drupal_alter('update_status', $projects);

  323. 

  324.   // Cache the site's update status for at most 1 hour.

  325.   _update_cache_set('update_project_data', $projects, REQUEST_TIME + 3600);

  326.   return $projects;

  327. }

  328. 

  329. /**

  330.  * Calculate the current update status of a specific project.

  331.  *

  332.  * This function is the heart of the update status feature. For each project

  333.  * it is invoked with, it first checks if the project has been flagged with a

  334.  * special status like "unsupported" or "insecure", or if the project node

  335.  * itself has been unpublished. In any of those cases, the project is marked

  336.  * with an error and the next project is considered.

  337.  *

  338.  * If the project itself is valid, the function decides what major release

  339.  * series to consider. The project defines what the currently supported major

  340.  * versions are for each version of core, so the first step is to make sure

  341.  * the current version is still supported. If so, that's the target version.

  342.  * If the current version is unsupported, the project maintainer's recommended

  343.  * major version is used. There's also a check to make sure that this function

  344.  * never recommends an earlier release than the currently installed major

  345.  * version.

  346.  *

  347.  * Given a target major version, it scans the available releases looking for

  348.  * the specific release to recommend (avoiding beta releases and development

  349.  * snapshots if possible). This is complicated to describe, but an example

  350.  * will help clarify. For the target major version, find the highest patch

  351.  * level. If there is a release at that patch level with no extra ("beta",

  352.  * etc), then we recommend the release at that patch level with the most

  353.  * recent release date. If every release at that patch level has extra (only

  354.  * betas), then recommend the latest release from the previous patch

  355.  * level. For example:

  356.  *

  357.  * 1.6-bugfix <-- recommended version because 1.6 already exists.

  358.  * 1.6

  359.  *

  360.  * or

  361.  *

  362.  * 1.6-beta

  363.  * 1.5 <-- recommended version because no 1.6 exists.

  364.  * 1.4

  365.  *

  366.  * It also looks for the latest release from the same major version, even a

  367.  * beta release, to display to the user as the "Latest version" option.

  368.  * Additionally, it finds the latest official release from any higher major

  369.  * versions that have been released to provide a set of "Also available"

  370.  * options.

  371.  *

  372.  * Finally, and most importantly, it keeps scanning the release history until

  373.  * it gets to the currently installed release, searching for anything marked

  374.  * as a security update. If any security updates have been found between the

  375.  * recommended release and the installed version, all of the releases that

  376.  * included a security fix are recorded so that the site administrator can be

  377.  * warned their site is insecure, and links pointing to the release notes for

  378.  * each security update can be included (which, in turn, will link to the

  379.  * official security announcements for each vulnerability).

  380.  *

  381.  * This function relies on the fact that the .xml release history data comes

  382.  * sorted based on major version and patch level, then finally by release date

  383.  * if there are multiple releases such as betas from the same major.patch

  384.  * version (e.g. 5.x-1.5-beta1, 5.x-1.5-beta2, and 5.x-1.5). Development

  385.  * snapshots for a given major version are always listed last.

  386.  *

  387.  */

  388. function update_calculate_project_update_status($project, &$project_data, $available) {

  389.   foreach (array('title', 'link') as $attribute) {

  390.     if (!isset($project_data[$attribute]) && isset($available[$attribute])) {

  391.       $project_data[$attribute] = $available[$attribute];

  392.     }

  393.   }

  394. 

  395.   // If the project status is marked as something bad, there's nothing else

  396.   // to consider.

  397.   if (isset($available['project_status'])) {

  398.     switch ($available['project_status']) {

  399.       case 'insecure':

  400.         $project_data['status'] = UPDATE_NOT_SECURE;

  401.         if (empty($project_data['extra'])) {

  402.           $project_data['extra'] = array();

  403.         }

  404.         $project_data['extra'][] = array(

  405.           'class' => array('project-not-secure'),

  406.           'label' => t('Project not secure'),

  407.           'data' => t('This project has been labeled insecure by the Drupal security team, and is no longer available for download. Immediately disabling everything included by this project is strongly recommended!'),

  408.         );

  409.         break;

  410.       case 'unpublished':

  411.       case 'revoked':

  412.         $project_data['status'] = UPDATE_REVOKED;

  413.         if (empty($project_data['extra'])) {

  414.           $project_data['extra'] = array();

  415.         }

  416.         $project_data['extra'][] = array(

  417.           'class' => array('project-revoked'),

  418.           'label' => t('Project revoked'),

  419.           'data' => t('This project has been revoked, and is no longer available for download. Disabling everything included by this project is strongly recommended!'),

  420.         );

  421.         break;

  422.       case 'unsupported':

  423.         $project_data['status'] = UPDATE_NOT_SUPPORTED;

  424.         if (empty($project_data['extra'])) {

  425.           $project_data['extra'] = array();

  426.         }

  427.         $project_data['extra'][] = array(

  428.           'class' => array('project-not-supported'),

  429.           'label' => t('Project not supported'),

  430.           'data' => t('This project is no longer supported, and is no longer available for download. Disabling everything included by this project is strongly recommended!'),

  431.         );

  432.         break;

  433.       case 'not-fetched':

  434.         $project_data['status'] = UPDATE_NOT_FETCHED;

  435.         $project_data['reason'] = t('Failed to get available update data.');

  436.         break;

  437. 

  438.       default:

  439.         // Assume anything else (e.g. 'published') is valid and we should

  440.         // perform the rest of the logic in this function.

  441.         break;

  442.     }

  443.   }

  444. 

  445.   if (!empty($project_data['status'])) {

  446.     // We already know the status for this project, so there's nothing else to

  447.     // compute. Record the project status into $project_data and we're done.

  448.     $project_data['project_status'] = $available['project_status'];

  449.     return;

  450.   }

  451. 

  452.   // Figure out the target major version.

  453.   $existing_major = $project_data['existing_major'];

  454.   $supported_majors = array();

  455.   if (isset($available['supported_majors'])) {

  456.     $supported_majors = explode(',', $available['supported_majors']);

  457.   }

  458.   elseif (isset($available['default_major'])) {

  459.     // Older release history XML file without supported or recommended.

  460.     $supported_majors[] = $available['default_major'];

  461.   }

  462. 

  463.   if (in_array($existing_major, $supported_majors)) {

  464.     // Still supported, stay at the current major version.

  465.     $target_major = $existing_major;

  466.   }

  467.   elseif (isset($available['recommended_major'])) {

  468.     // Since 'recommended_major' is defined, we know this is the new XML

  469.     // format. Therefore, we know the current release is unsupported since

  470.     // its major version was not in the 'supported_majors' list. We should

  471.     // find the best release from the recommended major version.

  472.     $target_major = $available['recommended_major'];

  473.     $project_data['status'] = UPDATE_NOT_SUPPORTED;

  474.   }

  475.   elseif (isset($available['default_major'])) {

  476.     // Older release history XML file without recommended, so recommend

  477.     // the currently defined "default_major" version.

  478.     $target_major = $available['default_major'];

  479.   }

  480.   else {

  481.     // Malformed XML file? Stick with the current version.

  482.     $target_major = $existing_major;

  483.   }

  484. 

  485.   // Make sure we never tell the admin to downgrade. If we recommended an

  486.   // earlier version than the one they're running, they'd face an

  487.   // impossible data migration problem, since Drupal never supports a DB

  488.   // downgrade path. In the unfortunate case that what they're running is

  489.   // unsupported, and there's nothing newer for them to upgrade to, we

  490.   // can't print out a "Recommended version", but just have to tell them

  491.   // what they have is unsupported and let them figure it out.

  492.   $target_major = max($existing_major, $target_major);

  493. 

  494.   $release_patch_changed = '';

  495.   $patch = '';

  496. 

  497.   // If the project is marked as UPDATE_FETCH_PENDING, it means that the

  498.   // data we currently have (if any) is stale, and we've got a task queued

  499.   // up to (re)fetch the data. In that case, we mark it as such, merge in

  500.   // whatever data we have (e.g. project title and link), and move on.

  501.   if (!empty($available['fetch_status']) && $available['fetch_status'] == UPDATE_FETCH_PENDING) {

  502.     $project_data['status'] = UPDATE_FETCH_PENDING;

  503.     $project_data['reason'] = t('No available update data');

  504.     $project_data['fetch_status'] = $available['fetch_status'];

  505.     return;

  506.   }

  507. 

  508.   // Defend ourselves from XML history files that contain no releases.

  509.   if (empty($available['releases'])) {

  510.     $project_data['status'] = UPDATE_UNKNOWN;

  511.     $project_data['reason'] = t('No available releases found');

  512.     return;

  513.   }

  514.   foreach ($available['releases'] as $version => $release) {

  515.     // First, if this is the existing release, check a few conditions.

  516.     if ($project_data['existing_version'] === $version) {

  517.       if (isset($release['terms']['Release type']) &&

  518.           in_array('Insecure', $release['terms']['Release type'])) {

  519.         $project_data['status'] = UPDATE_NOT_SECURE;

  520.       }

  521.       elseif ($release['status'] == 'unpublished') {

  522.         $project_data['status'] = UPDATE_REVOKED;

  523.         if (empty($project_data['extra'])) {

  524.           $project_data['extra'] = array();

  525.         }

  526.         $project_data['extra'][] = array(

  527.           'class' => array('release-revoked'),

  528.           'label' => t('Release revoked'),

  529.           'data' => t('Your currently installed release has been revoked, and is no longer available for download. Disabling everything included in this release or upgrading is strongly recommended!'),

  530.         );

  531.       }

  532.       elseif (isset($release['terms']['Release type']) &&

  533.               in_array('Unsupported', $release['terms']['Release type'])) {

  534.         $project_data['status'] = UPDATE_NOT_SUPPORTED;

  535.         if (empty($project_data['extra'])) {

  536.           $project_data['extra'] = array();

  537.         }

  538.         $project_data['extra'][] = array(

  539.           'class' => array('release-not-supported'),

  540.           'label' => t('Release not supported'),

  541.           'data' => t('Your currently installed release is now unsupported, and is no longer available for download. Disabling everything included in this release or upgrading is strongly recommended!'),

  542.         );

  543.       }

  544.     }

  545. 

  546.     // Otherwise, ignore unpublished, insecure, or unsupported releases.

  547.     if ($release['status'] == 'unpublished' ||

  548.         (isset($release['terms']['Release type']) &&

  549.          (in_array('Insecure', $release['terms']['Release type']) ||

  550.           in_array('Unsupported', $release['terms']['Release type'])))) {

  551.       continue;

  552.     }

  553. 

  554.     // See if this is a higher major version than our target and yet still

  555.     // supported. If so, record it as an "Also available" release.

  556.     if ($release['version_major'] > $target_major) {

  557.       if (in_array($release['version_major'], $supported_majors)) {

  558.         if (!isset($project_data['also'])) {

  559.           $project_data['also'] = array();

  560.         }

  561.         if (!isset($project_data['also'][$release['version_major']])) {

  562.           $project_data['also'][$release['version_major']] = $version;

  563.           $project_data['releases'][$version] = $release;

  564.         }

  565.       }

  566.       // Otherwise, this release can't matter to us, since it's neither

  567.       // from the release series we're currently using nor the recommended

  568.       // release. We don't even care about security updates for this

  569.       // branch, since if a project maintainer puts out a security release

  570.       // at a higher major version and not at the lower major version,

  571.       // they must remove the lower version from the supported major

  572.       // versions at the same time, in which case we won't hit this code.

  573.       continue;

  574.     }

  575. 

  576.     // Look for the 'latest version' if we haven't found it yet. Latest is

  577.     // defined as the most recent version for the target major version.

  578.     if (!isset($project_data['latest_version'])

  579.         && $release['version_major'] == $target_major) {

  580.       $project_data['latest_version'] = $version;

  581.       $project_data['releases'][$version] = $release;

  582.     }

  583. 

  584.     // Look for the development snapshot release for this branch.

  585.     if (!isset($project_data['dev_version'])

  586.         && $release['version_major'] == $target_major

  587.         && isset($release['version_extra'])

  588.         && $release['version_extra'] == 'dev') {

  589.       $project_data['dev_version'] = $version;

  590.       $project_data['releases'][$version] = $release;

  591.     }

  592. 

  593.     // Look for the 'recommended' version if we haven't found it yet (see

  594.     // phpdoc at the top of this function for the definition).

  595.     if (!isset($project_data['recommended'])

  596.         && $release['version_major'] == $target_major

  597.         && isset($release['version_patch'])) {

  598.       if ($patch != $release['version_patch']) {

  599.         $patch = $release['version_patch'];

  600.         $release_patch_changed = $release;

  601.       }

  602.       if (empty($release['version_extra']) && $patch == $release['version_patch']) {

  603.         $project_data['recommended'] = $release_patch_changed['version'];

  604.         $project_data['releases'][$release_patch_changed['version']] = $release_patch_changed;

  605.       }

  606.     }

  607. 

  608.     // Stop searching once we hit the currently installed version.

  609.     if ($project_data['existing_version'] === $version) {

  610.       break;

  611.     }

  612. 

  613.     // If we're running a dev snapshot and have a timestamp, stop

  614.     // searching for security updates once we hit an official release

  615.     // older than what we've got. Allow 100 seconds of leeway to handle

  616.     // differences between the datestamp in the .info file and the

  617.     // timestamp of the tarball itself (which are usually off by 1 or 2

  618.     // seconds) so that we don't flag that as a new release.

  619.     if ($project_data['install_type'] == 'dev') {

  620.       if (empty($project_data['datestamp'])) {

  621.         // We don't have current timestamp info, so we can't know.

  622.         continue;

  623.       }

  624.       elseif (isset($release['date']) && ($project_data['datestamp'] + 100 > $release['date'])) {

  625.         // We're newer than this, so we can skip it.

  626.         continue;

  627.       }

  628.     }

  629. 

  630.     // See if this release is a security update.

  631.     if (isset($release['terms']['Release type'])

  632.         && in_array('Security update', $release['terms']['Release type'])) {

  633.       $project_data['security updates'][] = $release;

  634.     }

  635.   }

  636. 

  637.   // If we were unable to find a recommended version, then make the latest

  638.   // version the recommended version if possible.

  639.   if (!isset($project_data['recommended']) && isset($project_data['latest_version'])) {

  640.     $project_data['recommended'] = $project_data['latest_version'];

  641.   }

  642. 

  643.   //

  644.   // Check to see if we need an update or not.

  645.   //

  646. 

  647.   if (!empty($project_data['security updates'])) {

  648.     // If we found security updates, that always trumps any other status.

  649.     $project_data['status'] = UPDATE_NOT_SECURE;

  650.   }

  651. 

  652.   if (isset($project_data['status'])) {

  653.     // If we already know the status, we're done.

  654.     return;

  655.   }

  656. 

  657.   // If we don't know what to recommend, there's nothing we can report.

  658.   // Bail out early.

  659.   if (!isset($project_data['recommended'])) {

  660.     $project_data['status'] = UPDATE_UNKNOWN;

  661.     $project_data['reason'] = t('No available releases found');

  662.     return;

  663.   }

  664. 

  665.   // If we're running a dev snapshot, compare the date of the dev snapshot

  666.   // with the latest official version, and record the absolute latest in

  667.   // 'latest_dev' so we can correctly decide if there's a newer release

  668.   // than our current snapshot.

  669.   if ($project_data['install_type'] == 'dev') {

  670.     if (isset($project_data['dev_version']) && $available['releases'][$project_data['dev_version']]['date'] > $available['releases'][$project_data['latest_version']]['date']) {

  671.       $project_data['latest_dev'] = $project_data['dev_version'];

  672.     }

  673.     else {

  674.       $project_data['latest_dev'] = $project_data['latest_version'];

  675.     }

  676.   }

  677. 

  678.   // Figure out the status, based on what we've seen and the install type.

  679.   switch ($project_data['install_type']) {

  680.     case 'official':

  681.       if ($project_data['existing_version'] === $project_data['recommended'] || $project_data['existing_version'] === $project_data['latest_version']) {

  682.         $project_data['status'] = UPDATE_CURRENT;

  683.       }

  684.       else {

  685.         $project_data['status'] = UPDATE_NOT_CURRENT;

  686.       }

  687.       break;

  688. 

  689.     case 'dev':

  690.       $latest = $available['releases'][$project_data['latest_dev']];

  691.       if (empty($project_data['datestamp'])) {

  692.         $project_data['status'] = UPDATE_NOT_CHECKED;

  693.         $project_data['reason'] = t('Unknown release date');

  694.       }

  695.       elseif (($project_data['datestamp'] + 100 > $latest['date'])) {

  696.         $project_data['status'] = UPDATE_CURRENT;

  697.       }

  698.       else {

  699.         $project_data['status'] = UPDATE_NOT_CURRENT;

  700.       }

  701.       break;

  702. 

  703.     default:

  704.       $project_data['status'] = UPDATE_UNKNOWN;

  705.       $project_data['reason'] = t('Invalid info');

  706.   }

  707. }

  708. 

  709. /**

  710.  * Retrieve data from {cache_update} or empty the cache when necessary.

  711.  *

  712.  * Two very expensive arrays computed by this module are the list of all

  713.  * installed modules and themes (and .info data, project associations, etc),

  714.  * and the current status of the site relative to the currently available

  715.  * releases. These two arrays are cached in the {cache_update} table and used

  716.  * whenever possible. The cache is cleared whenever the administrator visits

  717.  * the status report, available updates report, or the module or theme

  718.  * administration pages, since we should always recompute the most current

  719.  * values on any of those pages.

  720.  *

  721.  * Note: while both of these arrays are expensive to compute (in terms of disk

  722.  * I/O and some fairly heavy CPU processing), neither of these is the actual

  723.  * data about available updates that we have to fetch over the network from

  724.  * updates.drupal.org. That information is stored with the

  725.  * 'update_available_releases' cache ID -- it needs to persist longer than 1

  726.  * hour and never get invalidated just by visiting a page on the site.

  727.  *

  728.  * @param $cid

  729.  *   The cache id of data to return from the cache. Valid options are

  730.  *   'update_project_data' and 'update_project_projects'.

  731.  *

  732.  * @return

  733.  *   The cached value of the $projects array generated by

  734.  *   update_calculate_project_data() or update_get_projects(), or an empty

  735.  *   array when the cache is cleared.

  736.  */

  737. function update_project_cache($cid) {

  738.   $projects = array();

  739. 

  740.   // On certain paths, we should clear the cache and recompute the projects for

  741.   // update status of the site to avoid presenting stale information.

  742.   $q = $_GET['q'];

  743.   $paths = array(

  744.     'admin/modules',

  745.     'admin/modules/update',

  746.     'admin/appearance',

  747.     'admin/appearance/update',

  748.     'admin/reports',

  749.     'admin/reports/updates',

  750.     'admin/reports/updates/update',

  751.     'admin/reports/status',

  752.     'admin/reports/updates/check',

  753.   );

  754.   if (in_array($q, $paths)) {

  755.     _update_cache_clear($cid);

  756.   }

  757.   else {

  758.     $cache = _update_cache_get($cid);

  759.     if (!empty($cache->data) && $cache->expire > REQUEST_TIME) {

  760.       $projects = $cache->data;

  761.     }

  762.   }

  763.   return $projects;

  764. }

  765. 

  766. /**

  767.  * Filter the project .info data to only save attributes we need.

  768.  *

  769.  * @param array $info

  770.  *   Array of .info file data as returned by drupal_parse_info_file().

  771.  *

  772.  * @return

  773.  *   Array of .info file data we need for the Update manager.

  774.  *

  775.  * @see _update_process_info_list()

  776.  */

  777. function update_filter_project_info($info) {

  778.   $whitelist = array(

  779.     '_info_file_ctime',

  780.     'datestamp',

  781.     'major',

  782.     'name',

  783.     'package',

  784.     'project',

  785.     'project status url',

  786.     'version',

  787.   );

  788.   return array_intersect_key($info, drupal_map_assoc($whitelist));

  789. }

  790.
Login or register to post comments