refactor(upgrade): migrate upgrade framework to namespaced classes with DI (#10)

* refactor(upgrade): migrate upgrade framework to namespaced classes with DI

  Complete the upgrade framework modernization that was partially started
  with the scanner classes. Migrates the three core classes from legacy
  flat files to PSR-4 namespaced structure, adds a proper autoloader, and
  updates every upd_*/index.php to use constructor dependency injection.

  Framework changes:
  - class/abstract.php              → class/Xoops/Upgrade/XoopsUpgrade.php
  - class/control.php               → class/Xoops/Upgrade/UpgradeControl.php
  - class/patchstatus.php           → class/Xoops/Upgrade/PatchStatus.php
  - class/autoload.php              (new) PSR-4 autoloader for Xoops\Upgrade
  - class/fatal_error_handler.php   (new) centralized fatal error capture

  Every upd_*/index.php file updated to:
  - use Xoops\Upgrade\XoopsUpgrade; use Xoops\Upgrade\UpgradeControl;
  - public function __construct(XoopsMySQLDatabase $db, UpgradeControl $control)
  - parent::__construct($db, $control, basename(__DIR__))

  upd_2.5.11-to-2.7.0/index.php gains 6 new upgrade tasks:
  - widenconfid           — config.conf_id + configoption.conf_id smallint → int
  - widenimagename        — image.image_name varchar(30) → varchar(191)
  - cleanuplibraries      — delete obsolete build artifacts from class/libraries/
  - deletetinymce5nested  — delete duplicate tinymce5/tinymce5/ nested directory
  - deleteflashsanitizer  — delete obsolete Flash text sanitizer plugin
  - cleancache            — clear compiled templates and cache files

  upgrade_tpl.php refactored to use a $viewModel array for cleaner
  separation between the upgrade controller and its template rendering.

  Tested end-to-end by running the upgrade wizard from a fresh XOOPS 2.5.11
  install through to 2.7.0 RC1, including the System module update step
  that seeds menus. All upgrade tasks completed successfully.

* fix(upgrade): resolve PR #10 review issues in upgrade refactor

  Fix the upgrade entrypoint `use`-statement placement, restore legacy
  license placeholder checks for older upgrade paths, and repopulate
  support links on the preflight page (resetting supportSites before
  each loadLanguage() call to prevent cross-language accumulation).

  Also restore noopener/noreferrer on external links and mask filesystem
  paths in the upgrade fatal error handler.

* fix(upgrade): harden upgrade entrypoints and helper output

  Validate and normalize upgrade language selection before loading language files,
  add boundary checks for entrypoint includes, and mark the upgrader UI as errored
  when a patch apply fails.

  Escape view-model data rendered by the upgrade template, harden the fatal error
  handler against XSS and additional fatal types, update the legacy license
  upgrade guidance to match the actual 0644 permission change, escape parameters
  in UpgradeControl::oneButtonContinueForm(), and guard scandir() against false
  returns in the 2.7.0 folder cleanup helper.

* fix(upgrade): harden remaining legacy patch and migration paths

  Replace the last raw upgrade request/cookie reads with Xmf\Request, harden
  legacy license file writers against fopen/file/fwrite failures, and stop
  treating failed SHOW KEYS metadata queries as success.

  Make the 2.2.x block migration fail fast before destructive table drops,
  escape the upgrade language stylesheet path, catch cache cleanup failures,
  and mask absolute filesystem paths in 2.7.0 cleanup logs via a new
  relativePath() helper that strips XOOPS_ROOT_PATH and XOOPS_TRUST_PATH.
  Restore @SInCE 2.7.0 on the 2.7.0 upgrade script (was stale from the
  wamp import), and drop the pre-write chmod calls in the 2.3.3 and 2.4.0
  license writers since is_writable() is the real guard.

* fix(upgrade): close remaining migration and file-write safety gaps

  Make upgrade patch discovery independent of the process working directory,
  clear stale mainfile rewrite keys, and harden the 2.2.x migration so config,
  profile, and block conversions fail fast on the first DB error.

  Also switch legacy license updates to temp-file writes before replacing the live
  license.php, wire advertised preflight paths into usedFiles, and sanitize cache
  cleanup exception text before it reaches upgrade logs.

 Also fold in follow-up hygiene: fail-fast on deletion errors in the 2.5.10
  Smarty cleanup task, correct the 2.7.0 CleanCache folder ID docblock to
  match SystemMaintenance, and add string type hints to the legacy 2.0.x
  query() helpers so their signatures match the documented contract.

* fix(upgrade): close final legacy patch and cleanup gaps

  Propagate DB write failures in the remaining 2.0.x auth patches, replace the
  hard-coded qmail config ID with a lookup by config name, and harden both
  recursive delete helpers against scandir() failure and symlink traversal.

  Also make library cleanup detection check the full obsolete target set, replace
  the remaining TYPE=MyISAM syntax with ENGINE=MyISAM, and correct the
  UpgradeControl supportSites PHPDoc shape.

* fix(upgrade): resolve final review issues in upgrade flow and legacy patches

  Replace the remaining raw POST handling in the upgrade login flow, remove
  legacy addSlashes-based SQL building, and convert remaining upgrade-path
  failures to logged boolean returns instead of uncaught exceptions.

  Also fix broken migration log formatting, harden template and SameSite option
  writes, add delete-root validation for recursive cleanup, and record SHOW KEYS
  and ALTER TABLE failures in the legacy key upgrade patch.

* fix(upgrade): resolve final PR #10 review issues

  Validate patch classes in UpgradeControl, merge writable-file requirements from
  PatchStatus, and document the language-file $supports coupling used during
  upgrade language loading.

  Also wire 2.5.11 preflight paths into usedFiles, allow safe unlink of top-level
  symlink cleanup targets in 2.7.0, and keep the remaining legacy upgrade fixes
  for login handling, license file paths, mainfile patching, and malformed custom
  block payloads in the same branch state.

* fix(upgrade): resolve final PR #10 review issues

  Validate patch classes in UpgradeControl, merge writable-file requirements from
  PatchStatus, and document the language-file $supports coupling used during
  upgrade language loading.

  Also wire 2.5.11 preflight paths into usedFiles, allow safe unlink of top-level
  symlink cleanup targets in 2.7.0, and keep the remaining legacy upgrade fixes
  for login handling, license file paths, mainfile patching, and malformed custom
  block payloads in the same branch state.

* fix(upgrade): harden check_imptotal guard and log apply_keys failures

  Check_imptotal() now validates the query result is a mysqli_result
  instance before calling mysqli_fetch_field_direct(), and logs the
  underlying DB error when either the query or the field-info read fails.

  Apply_keys() now logs which ALTER TABLE index creation failed instead
  of swallowing the exec() return value in an unused assignment.

* fix(upgrade): harden block migration and make 2.5.11 patches rerunnable

  Fail fast in the 2.2.x block migration when the modules root cannot be
  resolved, replace unsupported ALTER IGNORE with explicit deduplication plus a
  plain primary-key add, and remove the remaining suppressed block lookup.

  Make the 2.5.11 template and notification-method patches fully idempotent
  by validating the complete expected template set, requiring tplsource rows,
  backfilling missing configoption rows, and treating missing reads or failed
  inserts as hard failures. Finally, stop treating a failed config_type metadata
  query in the 2.0.17-to-2.0.18 upgrade as success.

   Also add error logging to the 2.5.4 banner imptotal migration and include
   composer/ and firebase/ in the 2.7.0 class/libraries/ cleanup list since
   both are now redundant with xoops_lib/vendor/.

* fix(upgrade): load Db_manager explicitly in 2.5.11 template upgrade

  Require the installer Db_manager class before the 2.5.10-to-2.5.11 upgrader
  instantiates it for template import/backfill work.

  This closes the last real runtime issue from the latest PR #10 review batch; the
  remaining comments are style/refactor suggestions rather than correctness bugs.

* fix(upgrade): cast block id in legacy options update

  Cast the fetched block id to int when rebuilding non-custom block options in the
  2.2.x-to-2.3.0 upgrader so the final UPDATE matches the defensive style already
  used elsewhere in the same migration.

Author: mambax7

upgrade/assets/fonts/glyphicons-halflings-regular.svg

@@ -1,26 +1,38 @@
 <?php
+/*
+ You may not change or alter any portion of this comment or credits
+ of supporting developers from this source code or any supporting source code
+ which is considered copyrighted (c) material of the original comment or credit authors.
+
+ This program is distributed in the hope that it will be useful,
+ but WITHOUT ANY WARRANTY; without even the implied warranty of
+ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
+*/
+
 /**
  * Load mainfile.php wedge that checks for needed upgrades.
  *
- * This should be included instead of mainfile.php
+ * This should be included instead of mainfile.php.
  *
- * You may not change or alter any portion of this comment or credits
- * of supporting developers from this source code or any supporting source code
- * which is considered copyrighted (c) material of the original comment or credit authors.
- * This program is distributed in the hope that it will be useful,
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
- *
- * @copyright 2000-2026 XOOPS Project (https://xoops.org)
- * @license   GNU GPL 2 (https://www.gnu.org/licenses/gpl-2.0.html)
- * @package   upgrader
+ * @copyright (c) 2000-2026 XOOPS Project (https://xoops.org)
+ * @license   GNU GPL 2.0 or later (https://www.gnu.org/licenses/gpl-2.0.html)
  * @since     2.5.9
  * @author    Richard Griffith <richard@geekwright.com>
+ * @author    XOOPS Development Team
  */
 
-$loadCommon = !isset($xoopsOption['nocommon']);
+$loadCommon             = !isset($xoopsOption['nocommon']);
 $xoopsOption['nocommon'] = true;
-include_once __DIR__ . '/../mainfile.php';
+
+if (!defined('XOOPS_ROOT_PATH')) {
+    define('XOOPS_ROOT_PATH', dirname(__DIR__));
+}
+
+if (file_exists(XOOPS_ROOT_PATH . '/mainfile.php')) {
+    include_once XOOPS_ROOT_PATH . '/mainfile.php';
+} else {
+    exit('mainfile.php not found.');
+}
 
 $mainfileKeys = [
     // in mainfile.php

upgrade/checkmainfile.php

@@ -0,0 +1,86 @@
+<?php
+/*
+ * You may not change or alter any portion of this comment or credits
+ * of supporting developers from this source code or any supporting source code
+ * which is considered copyrighted (c) material of the original comment or credit authors.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
+ */
+
+namespace Xoops\Upgrade;
+
+defined('XOOPS_ROOT_PATH') || exit('Restricted access');
+
+/**
+ * XOOPS Upgrade PatchStatus
+ *
+ * Holds the status of a single upgrade patch, indicating whether it has been
+ * applied and which tasks and files are still needed.
+ *
+ * @category  Xoops\Upgrade
+ * @package   Xoops
+ * @author    XOOPS Development Team
+ * @copyright 2000-2026 XOOPS Project (https://xoops.org)
+ * @license   GNU GPL 2 or later (https://www.gnu.org/licenses/gpl-2.0.html)
+ * @link      https://xoops.org
+ */
+class PatchStatus
+{
+    /** @var string $patchClass class name of patch */
+    public string $patchClass = '';
+
+    /** @var bool $applied true if this patch is applied, false if it is needed */
+    public bool $applied = true;
+
+    /** @var string[] $tasks tasks that need to be run */
+    public array $tasks = [];
+
+    /** @var string[] $files files that need to be writable */
+    public array $files = [];
+
+    /** @var XoopsUpgrade the patch instance */
+    private XoopsUpgrade $patch;
+
+    /**
+     * PatchStatus constructor.
+     *
+     * @param XoopsUpgrade $patch patch to check status for
+     */
+    public function __construct(XoopsUpgrade $patch)
+    {
+        $this->patchClass = get_class($patch);
+        $this->patch = $patch;
+        foreach ($patch->tasks as $task) {
+            if (!$patch->{"check_{$task}"}()) {
+                $this->addTask($task);
+            }
+        }
+        if (!empty($patch->usedFiles) && !$this->applied) {
+            $this->files = $patch->usedFiles;
+        }
+    }
+
+    /**
+     * Get the stored patch instance.
+     *
+     * @return XoopsUpgrade
+     */
+    public function getPatch(): XoopsUpgrade
+    {
+        return $this->patch;
+    }
+
+    /**
+     * Add a task that needs to be run to the tasks property
+     *
+     * @param  string $task task name
+     * @return void
+     */
+    protected function addTask(string $task): void
+    {
+        $this->tasks[] = $task;
+        $this->applied = false;
+    }
+}