解析php下載遠程圖片函數 可偽造來路

　　gurl 要下載的圖片地址
$rfurl 來路如果目標圖像做了防盜鏈設置可以繞過
$filename 下載圖片保存的文件名相對路徑不要用realpath
$gcookie 調整cookie 偽造的cookie
$JumpCount 跳轉計數
$maxtime 最大次數
調用方法DownImageKeep(“””agif””");

復制代碼 代碼如下:
<?php
function DownImageKeep($gurl $rfurl $filename $gcookie="" $JumpCount= $maxtime=)
{
$urlinfos = GetHostInfo($gurl);
$ghost = trim($urlinfos[host]);
if($ghost==)
{
return FALSE;
}
$gquery = $urlinfos[query];
if($gcookie=="" && !empty($rfurl))
{
$gcookie = RefurlCookie($rfurl);
}
$sessionQuery = "GET $gquery HTTP/rn";
$sessionQuery = "Host: $ghostrn";
$sessionQuery = "Referer: $rfurlrn";
$sessionQuery = "Accept: */*rn";
$sessionQuery = "UserAgent: Mozilla/ (compatible; MSIE ; Windows )rn";
if($gcookie!="" && !preg_match("/[rn]/" $gcookie))
{
$sessionQuery = $gcookie"rn";
}
$sessionQuery = "Connection: KeepAlivernrn";
$errno = "";
$errstr = "";
$m_fp = fsockopen($ghost $errno $errstr);
fwrite($m_fp$sessionQuery);
$lnum = ;
//獲取詳細應答頭
$m_httphead = Array();
$httpstas = explode(" "fgets($m_fp));
$m_httphead["httpedition"] = trim($httpstas[]);
$m_httphead["httpstate"] = trim($httpstas[]);
while(!feof($m_fp))
{
$line = trim(fgets($m_fp));
if($line == "" || $lnum>)
{
break;
}
$hkey = "";
$hvalue = "";
$v = ;
for($i=; $i<strlen($line); $i++)
{
if($v==)
{
$hvalue = $line[$i];
}
if($line[$i]==":")
{
$v = ;
}
if($v==)
{
$hkey = $line[$i];
}
}
$hkey = trim($hkey);
if($hkey!="")
{
$m_httphead[strtolower($hkey)] = trim($hvalue);
}
}
//分析返回記錄
if(preg_match("/^/" $m_httphead["httpstate"]))
{
if(isset($m_httphead["location"]) && $JumpCount<)
{
$JumpCount++;
DownImageKeep($gurl$rfurl$filename$gcookie$JumpCount);
}
else
{
return FALSE;
}
}
if(!preg_match("/^/" $m_httphead["httpstate"]))
{
return FALSE;
}
if(!isset($m_httphead))
{
return FALSE;
}
$contentLength = $m_httphead[contentlength];
//保存文件
$fp = fopen($filename"w") or die("寫入文件{$filename} 失敗！");
$i=;
$okdata = "";
$starttime = time();
while(!feof($m_fp))
{
$okdata = fgetc($m_fp);
$i++;
//超時結束
if(time()$starttime>$maxtime)
{
break;
}
//到達指定大小結束
if($i >= $contentLength)
{
break;
}
}
if($okdata!="")
{
fwrite($fp$okdata);
}
fclose($fp);
if($okdata=="")
{
@unlink($filename);
fclose($m_fp);
return FALSE;
}
fclose($m_fp);
return TRUE;
}
/**
* 獲得某頁面返回的Cookie信息
*
* @access public
* @param string $gurl 調整地址
* @return string
*/
function RefurlCookie($gurl)
{
global $gcookie$lastRfurl;
$gurl = trim($gurl);
if(!empty($gcookie) && $lastRfurl==$gurl)
{
return $gcookie;
}
else
{
$lastRfurl=$gurl;
}
if(trim($gurl)==)
{
return ;
}
$urlinfos = GetHostInfo($gurl);
$ghost = $urlinfos[host];
$gquery = $urlinfos[query];
$sessionQuery = "GET $gquery HTTP/rn";
$sessionQuery = "Host: $ghostrn";
$sessionQuery = "Accept: */*rn";
$sessionQuery = "UserAgent: Mozilla/ (compatible; MSIE ; Windows )rn";
$sessionQuery = "Connection: Closernrn";
$errno = "";
$errstr = "";
$m_fp = fsockopen($ghost $errno $errstr) or die($ghost<br />);
fwrite($m_fp$sessionQuery);
$lnum = ;
//獲取詳細應答頭
$gcookie = "";
while(!feof($m_fp))
{
$line = trim(fgets($m_fp));
if($line == "" || $lnum>)
{
break;
}
else
{
if(preg_match("/^cookie/i" $line))
{
$gcookie = $line;
break;
}
}
}
fclose($m_fp);
return $gcookie;
}
/**
* 獲得網址的host和query部份
*
* @access public
* @param string $gurl 調整地址
* @return string
*/
function GetHostInfo($gurl)
{
$gurl = preg_replace("/^http:///i" "" trim($gurl));
$garr[host] = preg_replace("//(*)$/i" "" $gurl);
$garr[query] = "/"preg_replace("/^([^/]*)//i" "" $gurl);
return $garr;
}
?>
From:http://tw.wingwit.com/Article/program/PHP/201311/21209.html