Prevent pixel flooding attacks by blocking images larger than 10,000x…

…10,000 that need to be transformed
willnorris · Dec 8, 2020 · b5cd1fe · b5cd1fe
1 parent c08b3c5
commit b5cd1fe
Showing 1 changed file with 13 additions and 0 deletions.
diff --git a/transform.go b/transform.go
@@ -16,6 +16,7 @@ package imageproxy
 
 import (
 	"bytes"
+	"errors"
 	"fmt"
 	"image"
 	_ "image/gif" // register gif format
@@ -54,6 +55,18 @@ func Transform(img []byte, opt Options) ([]byte, error) {
 		return img, nil
 	}
 
+	// decode image metadata
+	imageMeta, _, err := image.DecodeConfig(bytes.NewReader(img))
+	if err != nil {
+		return nil, err
+	}
+
+	// prevent pixel flooding attacks
+	// accept no larger than a 10,000 x 10,000 image
+	if imageMeta.Width*imageMeta.Height > 100000000 {
+		return nil, errors.New("image too large")
+	}
+
 	// decode image
 	m, format, err := image.Decode(bytes.NewReader(img))
 	if err != nil {