PHP JPG image re-creation from original file

A third party can upload files via FTP to a client's webserver. These images should be displayed on a public-available webpage. The upload directory is not accessible via normal HTTP. To increase security I thought it might be a good idea to re-create the images and store it in the web-folder manually.

The import format is always JPG. The function will return the new filename if the image could be created or null otherwise.

Is there any way to improve it? Especially all the "early returns" look kind of ugly.

function processImage($filename, $importPath, $storagePath, $quality = 80) {
 $source = $importPath . $filename . '.jpg';
 $target = $filename . '_processed.jpg';
 $storage = $storagePath . $target;
 if (!file_exists($source)) {
 return null;
 }
 $image = imagecreatefromstring(file_get_contents($source));
 if (!$image) {
 return null;
 }
 $dimension = [
 imagesx($image),
 imagesy($image)
 ];
 $newImage = imagecreatetruecolor($dimension[0], $dimension[1]);
 if (!$newImage) {
 return null;
 }
 if (!imagecopyresampled($newImage, $image, 0, 0, 0, 0, $dimension[0], $dimension[1], $dimension[0], $dimension[1])) {
 return null;
 }
 if (!imagejpeg($newImage, $storage, $quality)) {
 return null;
 }
 return $target;
}

PS: The filename is available without the extension .jpg as a string. In case you worry about the first line.

• 3
  \$\begingroup\$ I do not see the 'early returns' ugly - if you make long if-else brancges, then it would be ugly. \$\endgroup\$

  TimSparrow

  – TimSparrow

  2017年10月10日 12:16:06 +00:00

  Commented Oct 10, 2017 at 12:16
• 1
  \$\begingroup\$ @Iwrestledabearonce. you can always search or post on security.stackexchange, but with my own familiarity with JS/JPEG polygots and security in general, exploiting such a vulnerability is difficult, and what the OP is doing most likely will remove any malicious code. You can probably get some good opinions on security, but like with all stack exchange sites, make sure you read the rules-of-conduct before posting there. \$\endgroup\$

  Conor Mancone

  – Conor Mancone

  2017年11月09日 18:50:25 +00:00

  Commented Nov 9, 2017 at 18:50
• 1
  \$\begingroup\$ @Iwrestledabearonce. apologies if you felt I was being argumentative. I wasn't trying to avoid explaining or being argumentative: rather, this is a lot for a comment thread which is why I suggested opening a question on security. The reason why this would strip out malicious code doesn't have to do with meta data. The 'resampling' in imagecopyresampled will redraw the image: the resampling will effectively randomize the bits in the image, destroying any ascii data that is hiding in it. \$\endgroup\$

  Conor Mancone

  – Conor Mancone

  2017年11月09日 20:11:16 +00:00

  Commented Nov 9, 2017 at 20:11
• 2
  \$\begingroup\$ Also, the attack itself only works in limited circumstances: primarily (but maybe not exclusively), the image has to be loaded in a script tag, which is unusual, or takes additional effort to make happen. This limits the effectiveness of such an attack. Hosting a JPG file with malicious data embedded doesn't immediately pose a risk to anyone, except perhaps by giving an attacker a way to circumvent CSP protections if they find an XSS vulnerability. Again, security.stackexchange.com is a great place to discuss such a thing in detail. \$\endgroup\$

  Conor Mancone

  – Conor Mancone

  2017年11月09日 20:12:39 +00:00

  Commented Nov 9, 2017 at 20:12
• 1
  \$\begingroup\$ @ConorMancone - thank you for clearing that up for me. no need to post on security, you were very concise with your explanation. +1 \$\endgroup\$

  I wrestled a bear once.

  – I wrestled a bear once.

  2017年11月09日 20:20:16 +00:00

  Commented Nov 9, 2017 at 20:20

1 Answer 1

Start asking to get answers

Find the answer to your question by asking.

Explore related questions

See similar questions with these tags.