Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations derfloh on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
File Upload to MYSQL, some files don't upload properly 1
- Thread starter laurin1
- Start date
- Thread starter
- #2
CORRECTION:
I just checked the files using Query Browser and the file downloads fine from there. So the file uploads correctly and is stored in the database correctly. The problem must be in my download code:
I just checked the files using Query Browser and the file downloads fine from there. So the file uploads correctly and is stored in the database correctly. The problem must be in my download code:
Code:
<?php session_start();
require_once('connections/local.php');
require_once('library/common.php');
if(isset($sFileID)){
$sql = "SELECT name, type, size, file FROM files WHERE id=" . $sFileID;
$result = mysql_query($sql) or die('Error, query failed');
$array = mysql_fetch_array($result);
header("Content-length: " . $array['size']);
header("Content-type: " . $array['type']);
header("Content-Disposition: attachment; filename=" . $array['name']);
echo $array['file'];
}
?>-
1
- #3
try adding
to the start of your code. i'm surprised that some types of binary file work and that txt files do not. i'd also suspect that the problem is in your upload script rather than download but checking magic quotes is a good starting point.
Code:
set_magic_quotes_runtime(0);to the start of your code. i'm surprised that some types of binary file work and that txt files do not. i'd also suspect that the problem is in your upload script rather than download but checking magic quotes is a good starting point.
- Thread starter
- #4
- Thread starter
- #6
- Thread starter
- #8
ok try this script instead (i'm assuming that you are populating the $sFileID somehow outside the script):
Code:
session_start();
require_once('connections/local.php');
require_once('library/common.php');
if(isset($sFileID)){
$sql = "SELECT name, type, size, file FROM files WHERE id=" . $sFileID;
$result = mysql_query($sql) or die('Error, query failed');
$array = mysql_fetch_array($result);
header("Content-Length: " . strlen($array['file']) );
header("Content-Type: application/octet-stream");
header('Content-Disposition: attachment; filename="'.$array['name'].'"');
header("Content-Transfer-Encoding: binary\n");
echo $array['file'];
}- Thread starter
- #10
- Thread starter
- #11
Oh, and I looked in the MySQL table and the file size is correct there. When I download it from the Query Browser the file size is also correct. Something is being added upon download.
Keith Davis
MCSA, A+, N+, Guru+, Geek+, Child of God++++++
Love and Service
Keith Davis
MCSA, A+, N+, Guru+, Geek+, Child of God++++++
Love and Service
- Thread starter
- #12
Also, I did this to the code and it reports the right number:
Keith Davis
MCSA, A+, N+, Guru+, Geek+, Child of God++++++
Love and Service
Code:
<?php
session_start();
require_once('connections/local.php');
require_once('library/common.php');
if(isset($sFileID)){
$sql = "SELECT name, type, size, file FROM files WHERE id=" . $sFileID;
$result = mysql_query($sql) or die('Error, query failed');
$array = mysql_fetch_array($result);
echo strlen($array['file']);
}
?>Keith Davis
MCSA, A+, N+, Guru+, Geek+, Child of God++++++
Love and Service
Keith
i can't see why there should be errors but you have not provided your upload script or form definition. the fact that another php application (like phpmyadmin) may work is not necessarily conclusive that the file upload is not to blame.
in any event, i have written an upload, download and management script and posted it to my webserver for you to try. the source code is also present if you want to recreate the applet on your own servers.
Justin
i can't see why there should be errors but you have not provided your upload script or form definition. the fact that another php application (like phpmyadmin) may work is not necessarily conclusive that the file upload is not to blame.
in any event, i have written an upload, download and management script and posted it to my webserver for you to try. the source code is also present if you want to recreate the applet on your own servers.
Justin
- Thread starter
- #14
I disagree. If the file size is correct in MySQL, but is not after download via a script, I believe that the upload is not to blame. Here is my upload script:
Keith Davis
MCSA, A+, N+, Guru+, Geek+, Child of God++++++
Love and Service
Code:
elseif($cmdSubmit == 'Attach'){
if($_FILES['Attach']['size'] > 0) {
$sFileName = $_FILES['Attach']['name'];
$sTmpName = $_FILES['Attach']['tmp_name'];
$sFileSize = $_FILES['Attach']['size'];
$sFileType = $_FILES['Attach']['type'];
$fp = fopen($sTmpName, 'r');
$sContent = fread($fp, filesize($sTmpName));
$sContent = addslashes($sContent);
fclose($fp);
$sFileName = addslashes($sFileName);
$sql = "SELECT * FROM files WHERE name='" . $sFileName . "' AND caseid=" . $id;
$result = mysql_query($sql) or die('SQL to find same file names failed');
if(mysql_num_rows($result) > 0){
$sql = "DELETE FROM files WHERE name='" . $sFileName . "' AND caseid=" . $id;
mysql_query($sql) or die('Deletion of duplicate file failed');
}
$sql = "INSERT INTO files SET name='" . $sFileName . "', size='" . $sFileSize . "', type='"
. $sFileType . "', modified_date=NULL, create_date=NULL, file='" . $sContent
. "', caseid='" . $id . "'";
mysql_query($sql) or die('Upload Failed');
}
elseif($_FILES['name'] != '') echo 'Upload Failed';
}
Code:
<FORM ENCTYPE="MULTIPART/FORM-DATA" METHOD="POST" ACTION="<?=$_SERVER['PHP_SELF']?>" NAME="frmFiles">
<INPUT TYPE="HIDDEN" NAME="MAX_FILE_SIZE" VALUE="5000000">
<INPUT TYPE="HIDDEN" NAME="id" VALUE="<?=$id?>">
<INPUT TYPE="FILE" NAME="Attach">
<INPUT TYPE="SUBMIT" NAME="cmdSubmit" VALUE="Attach">
</FORM>Keith Davis
MCSA, A+, N+, Guru+, Geek+, Child of God++++++
Love and Service
i still think it is your upload script.
try changing these lines
to either
or
i recomment mysql_escape_string over addslashes and mysql_real_escape_string over the former.
try changing these lines
Code:
$fp = fopen($sTmpName, 'r');
$sContent = fread($fp, filesize($sTmpName));
$sContent = addslashes($sContent);
fclose($fp);
Code:
$fp = fopen($sTmpName, 'rb'); //make binary safe
$sContent = fread($fp, filesize($sTmpName));
$sContent = addslashes($sContent);
fclose($fp);
Code:
$sContent = file_get_contents($sTmpName);
$sContent = addslashes($sContent);i recomment mysql_escape_string over addslashes and mysql_real_escape_string over the former.
Keith
i have replicated your code on my server too
i have indicated in the code where i have changed things from the code that you posted above. It appears to be working so far as I can discern.
Justin
i have replicated your code on my server too
i have indicated in the code where i have changed things from the code that you posted above. It appears to be working so far as I can discern.
Justin
- Thread starter
- #17
I just tried both methods you described and with mysql_real_escape_string and that did not solve my problem.
I just copied the code from your server, which works fine on your server, but it does not work on my server (same problem.) Maybe it's something in my server configuration.
Keith Davis
MCSA, A+, N+, Guru+, Geek+, Child of God++++++
Love and Service
I just copied the code from your server, which works fine on your server, but it does not work on my server (same problem.) Maybe it's something in my server configuration.
Keith Davis
MCSA, A+, N+, Guru+, Geek+, Child of God++++++
Love and Service
- Thread starter
- #19
Ok. I'm a little closer to a solution. I was able to open one of the downloaded files in word and could read some errors at the top (php errors.) I added
to your code and the page you created works on my server. My code is still not working, but I'm willing to bet it's the same problem. It seems when I'm downloading the file, the error messages are being addded to the file, causing it to contain invalid data.
Keith Davis
MCSA, A+, N+, Guru+, Geek+, Child of God++++++
Love and Service
Code:
error_reporting(0);to your code and the page you created works on my server. My code is still not working, but I'm willing to bet it's the same problem. It seems when I'm downloading the file, the error messages are being addded to the file, causing it to contain invalid data.
Keith Davis
MCSA, A+, N+, Guru+, Geek+, Child of God++++++
Love and Service
- Thread starter
- #20
Ok, it wasn't the errors on my download.php, it was common.php. It was sticking some data at the top of the file. I removed it and whala!!!
I should have caught that.
Thanks everyone for all your help, especially you, jpadie!
Keith Davis
MCSA, A+, N+, Guru+, Geek+, Child of God++++++
Love and Service
I should have caught that.
Thanks everyone for all your help, especially you, jpadie!
Keith Davis
MCSA, A+, N+, Guru+, Geek+, Child of God++++++
Love and Service
- Status
Similar threads
