[RESOLVED] Siggy script not working after upgrading to PHP 5.3.18, weird...

Lord_Yggdrasill

Well I have a script that processes images and displays them as formatted signature-style pixels. It was working well a few weeks ago, and in fact it had never been malfunctioning in the past. The problem is, well, instead of actually showing the siggy image, it shows a server connection error like this:

[ATTACH]4727[/ATTACH]

I have absolutely no idea why it goes wrong like this. It all started after I upgraded my PHP version, I am currently using PHP 5.3.18 but this might have been there since the last upgrade to PHP 5.3.16. For this reason I wonder if it has anything to do with the new PHP version not supporting any of the old functions I am using in the script? Anyway I havent touched this script like in ages, theres a good chance. I've posted the entire code, can anyone of you please go through it and lemme know if there are any deprecated functions or functions that got modified significantly in new php releases? I am just totally clueless now...

<?php

include("functions/functions.php");
include("functions/functions_users.php");
include("functions/functions_adopts.php");
include("inc/lang.php");

//***************//
//  START SCRIPT //
//***************//

// We need to grab an adoptable ID

$id = $_GET["id"];

// Check that ID exists and is valid

if(is_numeric($id)){

// The ID appears to be valid, so double check...


$row = $adopts->select("owned_adoptables", array(), "aid='{$id}'")->fetchObject();	
if($row->aid == $id){

// The adoptable exists, so let's try and show the image

$usingimage = "no";

$image = getcurrentimage($id);

// Let's see if the server has support for GD or not
// Also to use fancy images the image must be a gif and fancy images must be enabled...

$usegd = grabanysetting("gdimages");
$imageinfo = @getimagesize($image);
$imagemime = $imageinfo["mime"]; // Mime type of the image file, should be a .gif file...

if(function_exists('imagegif') and $usegd == "yes" and $imagemime == "image/gif")
{

$usingimage = "yes"; //Turn the template system off

// BEGIN NEW CODE

list($width, $height, $row->type, $attr) = getimagesize($image); // The size of the original adoptable image

// Begin the fancy outputs...

// Lets create the new target image, with a size big enough for the text for the adoptable

$newheight = $height + 72;

if($newwidth < 250){
$newwidth = 250;
}
else{
$newwidth = $width;
}

  $img_temp = imagecreatetruecolor($newwidth, $newheight); 


  $alphablending = true;  


	// Lets create the image and save its transparency  
  $img_old = @imagecreatefromgif($image);  
  imagealphablending($img_old, true);  
  imagesavealpha($img_old, true);

 // Lets copy the old image into the new image with  
 // the given size  
 ImageCopyResampled(  
     $img_temp,  
     $img_old,  
     0, 0, 0, 0,  
     $width,  
     $height,  
     $width,  
     $height  
 );  


$textheight = $width + 2;

$image = $img_temp;

$bgi = imagecreatetruecolor($newwidth, $newheight);

$color = imagecolorallocate($bgi, 51, 51, 51);


$str1 = "Name: ".$row->name;
$str2 = "Owner: ".$row->owner;
$str3 = "Click Here to Feed Me!";
$str4 = "More Adopts at:";
$str5 = "www.".constant("DOMAIN");


imagestring ($image, 12, 0, $textheight,  $str1, $color);
imagestring ($image, 12, 0, $textheight + 13,  $str2, $color);
imagestring ($image, 12, 0, $textheight + 26,  $str3, $color);
imagestring ($image, 12, 0, $textheight + 42,  $str4, $color);
imagestring ($image, 12, 0, $textheight + 55,  $str5, $color);

$background = imagecolorallocate($image, 0, 0, 0);  
  ImageColorTransparent($image, $background);  

header("Content-Type: image/GIF");
ImageGif ($image);
imagedestroy($image);
imagedestroy($img_temp);
imagedestroy($img_old);
imagedestroy($bgi);

}
else{

// We are going to try and get this image the old fashioned way...
// Define a list of allowed file extentions...

$extList = array();
$extList['gif'] = 'image/gif';
$extList['jpg'] = 'image/jpeg';
$extList['jpeg'] = 'image/jpeg';
$extList['png'] = 'image/png';

//Define the output file type
$contentType = 'Content-type: '.$extList[ $imageinfo['extension'] ];

if($imageinfo['extension'] =! "image/gif" and $imageinfo['extension'] =! "image/jpeg" and $imageinfo['extension'] =! "image/png"){

// The file type is NOT ALLOWED
die("Hacking Attempt!");

}
else{

// File type is allowed, so proceed
// Try and read the file in

$status = "";

header ($contentType);
$status = readfile($image);

if($status == "" or $status == "false" or $status == "FALSE"){

// Reading the file failed, so show an error...	
header ("text/plain");
die("Readfile appears to be disabled on your host.");

}



} 

}


}
else{

// Bogus ID

$article_title = $err_idnoexist;
$article_content = $err_idnoexist_text;


}
}
else{

// Bogus ID

$article_title = $err_idnoexist;
$article_content = $err_idnoexist_text;

}

?>

server error.png

Ashley_Sheridan

I don't see anything in there that strikes me as immediately wrong, but there are a lot of include files which presumably contain the functions referenced by this script. Check your error logs, see if there's anything in there that gives a clue about this.

bradgrafelman

Ashley Sheridan;11018539 wrote:
Check your error logs

... which should include not only PHP's own error log but your webserver's error log as well. Note that you should also probably verify (e.g. via [man]phpinfo/man) that log_errors is set to On and error_reporting is set to E_ALL (or better).

EDIT: Also, unlike Ashley, I do see several things that seem "wrong" to me. For example:

You should find a coding style you are comfortable with and adhere to it, especially as far as whitespace/indentation rules go. Otherwise:
```
i  m     pr  ope  r  lyspac  e dcod   e  i sh a    rdto re   a  d!  !   !!
```
Where does $adopts get instantiated? Do you do any error checking to make sure that it's usable (e.g. SQL server connection, authentication, and DB selection all went as planned and caused no errors) and, if not, abort execution?
What happens if your select() method generates a SQL error, or if there are no rows returned? Does calling fetchObject() in either of those cases make any sense?
Likewise, what happens if the fetchObject() method fails to fetch a row? What does it return in that case?
Why are you calling [man]getimagesize/man on the same image twice? What's wrong with simply re-using the array you already have after the first call?
What's with the use of the '@' error suppressor? IMHO, this should almost never be used.
You create four different GD images simultaneously... why is that? Don't you only need two? At the most you need three, since the image resource in $bgi never gets used (e.g. outputted or saved to a file) before you destroy it.

Lord_Yggdrasill

bradgrafelman;11018551 wrote:
... which should include not only PHP's own error log but your webserver's error log as well. Note that you should also probably verify (e.g. via [man]phpinfo/man) that log_errors is set to On and error_reporting is set to E_ALL (or better).

EDIT: Also, unlike Ashley, I do see several things that seem "wrong" to me. For example:
You should find a coding style you are comfortable with and adhere to it, especially as far as whitespace/indentation rules go. Otherwise:
i  m     pr  ope  r  lyspac  e dcod   e  i sh a    rdto re   a  d!  !   !!
Where does $adopts get instantiated? Do you do any error checking to make sure that it's usable (e.g. SQL server connection, authentication, and DB selection all went as planned and caused no errors) and, if not, abort execution?

What happens if your select() method generates a SQL error, or if there are no rows returned? Does calling fetchObject() in either of those cases make any sense?

Likewise, what happens if the fetchObject() method fails to fetch a row? What does it return in that case?

Why are you calling [man]getimagesize/man on the same image twice? What's wrong with simply re-using the array you already have after the first call?

What's with the use of the '@' error suppressor? IMHO, this should almost never be used.

You create four different GD images simultaneously... why is that? Don't you only need two? At the most you need three, since the image resource in $bgi never gets used (e.g. outputted or saved to a file) before you destroy it.

Well the $adopt is an instance of PDO object that become available after loading the functions.php file, it has always been the way it is so I do not think its the cause of the error.

And yeah you are right, the coding style is somewhat messed up. I wasnt the one who created this siggy script in the first place, I took it over and made some minor modifications so that it loads images correctly. I cannot really answer some of the questions above for this reason, I aint really quite familiar with those image functions actually. All I know of was that the script used to be working, but now its malfunctioning when I made no changes to it like in months. In fact, what really bothers me is that its not malfunctioning all the time. Occasionally the siggy image actually shows up, but in about 3/4 of the times it gives server error. I just do not know how to explain this... sigh

I've asked the host if they can find anything wrong with the server, they said no. I cannot change php.ini settings myself, so I requested them to check if the error log is set to E_ALL. Hopefully they will find something useful. Here's what they told me last time though:

We did not perform any modification of services on your dedicated server since 30 Oct 2012 (per ticket GRY-279694). As we have already stated no errors connected with the provided URL can be met in the server logs, so it could be just temporary network connection issues between your location and the server itself. To troubleshoot it please provide us with the trace results made from your location to the server when the error occurs. Trace results you can take with the help of WinMtr (http://winmtr.net/) utility.

dalecosp

header ("text/plain");

😉

Weedpacket

Rather than check the value of [font=monospace]$imageinfo['mime'][/font], which exists for the convenience of specifying MIME type in the HTTP headers of a served image, a more direct determination of image type is [font=monospace]$imageinfo[2][/font] and compare the result against the appropriate IMAGETYPE_* constant (IMAGETYPE_GIF, in this case).

Lord_Yggdrasill

dalecosp wrote:
header ("text/plain");
😉

What do you mean by this? I do have a header("text/plain") line, but this has nothing to do with the image display. It is used to error handling.

Weedpacket wrote:
8. Rather than check the value of $imageinfo['mime'], which exists for the convenience of specifying MIME type in the HTTP headers of a served image, a more direct determination of image type is $imageinfo[2] and compare the result against the appropriate IMAGETYPE_* constant (IMAGETYPE_GIF, in this case).

I see, I will try to find out if this is the cause of the problem. Also do you think using curl functions will possibly make it work?

Edit: I just found that the siggy image displays just fine on my iphone. I went to my school's library and it also seems not to have a problem with their computer. So theres a good chance that, well, it has something to do with my local computer? Weird... Could it be Kaspersky blocking the image from showing? o_o

dalecosp

I was referring to this:

rfc2616#section-4.2 wrote:
HTTP header fields, which include general-header (section 4.5), request-header (section 5.3), response-header (section 6.2), and entity-header (section 7.1) fields, follow the same generic format as that given in Section 3.1 of RFC 822 [9]. Each header field consists of a name followed by a colon (":") and the field value.

... which was the only anomaly I saw in looking at the code.

Could it be Kaspersky blocking the image from showing?

Stranger things could've happened, although I don't have a good guess at WHY it would be doing this.

Lord_Yggdrasill

Actually it did turn out to be my stupid kaspersky's doing. Added all my sites from the server to trust list and the problem was gone. Now I feel so foolish to have raised this question, lol.

dalecosp

Glad to hear you got it sorted. Can you mark this one as "RESOLVED", please?