Home Explore Help
Sign In
SMusatov
/
ydb
mirror of https://github.com/ydb-platform/ydb.git
1
0
Fork 0
Files
Tree: a35b025b59
Branches Tags
ydb
/
contrib
/
python
/
Pillow
/
py3
/
libImaging
/
SgiRleDecode.c

SgiRleDecode.c 7.9 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288 
  1. /*
    2. 

  2.  * The Python Imaging Library.
    3. 

  3.  * $Id$
    4. 

  4.  *
    5. 

  5.  * decoder for Sgi RLE data.
    6. 

  6.  *
    7. 

  7.  * history:
    8. 

  8.  * 2017-07-28 mb    fixed for images larger than 64KB
    9. 

  9.  * 2017-07-20 mb    created
    10. 

  10.  *
    11. 

  11.  * Copyright (c) Mickael Bonfill 2017.
    12. 

  12.  *
    13. 

  13.  * See the README file for information on usage and redistribution.
    14. 

  14.  */
    15. 

  15. 

  16. #include "Imaging.h"
    17. 

  17. #include "Sgi.h"
    18. 

  18. 

  19. #define SGI_HEADER_SIZE 512
    20. 

  20. #define RLE_COPY_FLAG 0x80
    21. 

  21. #define RLE_MAX_RUN 0x7f
    22. 

  22. 

  23. static void
    24. 

  24. read4B(UINT32 *dest, UINT8 *buf) {
    25. 

  25.     *dest = (UINT32)((buf[0] << 24) | (buf[1] << 16) | (buf[2] << 8) | buf[3]);
    26. 

  26. }
    27. 

  27. 

  28. /*
    29. 

  29.    SgiRleDecoding is done in a single channel row oriented set of RLE chunks.
    30. 

  30. 

  31.    * The file is arranged as
    32. 

  32.      - SGI Header
    33. 

  33.      - Rle Offset Table
    34. 

  34.      - Rle Length Table
    35. 

  35.      - Scanline Data
    36. 

  36. 

  37.    * Each RLE atom is c->bpc bytes wide (1 or 2)
    38. 

  38. 

  39.    * Each RLE Chunk is [specifier atom] [ 1 or n data atoms ]
    40. 

  40. 

  41.    * Copy Atoms are a byte with the high bit set, and the low 7 are
    42. 

  42.      the number of bytes to copy from the source to the
    43. 

  43.      destination. e.g.
    44. 

  44. 

  45.          CBBBBBBBB or 0CHLHLHLHLHLHL   (B=byte, H/L = Hi low bytes)
    46. 

  46. 

  47.    * Run atoms do not have the high bit set, and the low 7 bits are
    48. 

  48.      the number of copies of the next atom to copy to the
    49. 

  49.      destination. e.g.:
    50. 

  50. 

  51.          RB -> BBBBB or RHL -> HLHLHLHLHL
    52. 

  52. 

  53.    The upshot of this is, there is no way to determine the required
    54. 

  54.    length of the input buffer from reloffset and rlelength without
    55. 

  55.    going through the data at that scan line.
    56. 

  56. 

  57.    Furthermore, there's no requirement that individual scan lines
    58. 

  58.    pointed to from the rleoffset table are in any sort of order or
    59. 

  59.    used only once, or even disjoint. There's also no requirement that
    60. 

  60.    all of the data in the scan line area of the image file be used
    61. 

  61. 

  62.  */
    63. 

  63. static int
    64. 

  64. expandrow(UINT8 *dest, UINT8 *src, int n, int z, int xsize, UINT8 *end_of_buffer) {
    65. 

  65.     /*
    66. 

  66.      * n here is the number of rlechunks
    67. 

  67.      * z is the number of channels, for calculating the interleave
    68. 

  68.      *   offset to go to RGBA style pixels
    69. 

  69.      * xsize is the row width
    70. 

  70.      * end_of_buffer is the address of the end of the input buffer
    71. 

  71.      */
    72. 

  72. 

  73.     UINT8 pixel, count;
    74. 

  74.     int x = 0;
    75. 

  75. 

  76.     for (; n > 0; n--) {
    77. 

  77.         if (src > end_of_buffer) {
    78. 

  78.             return -1;
    79. 

  79.         }
    80. 

  80.         pixel = *src++;
    81. 

  81.         if (n == 1 && pixel != 0) {
    82. 

  82.             return n;
    83. 

  83.         }
    84. 

  84.         count = pixel & RLE_MAX_RUN;
    85. 

  85.         if (!count) {
    86. 

  86.             return count;
    87. 

  87.         }
    88. 

  88.         if (x + count > xsize) {
    89. 

  89.             return -1;
    90. 

  90.         }
    91. 

  91.         x += count;
    92. 

  92.         if (pixel & RLE_COPY_FLAG) {
    93. 

  93.             if (src + count > end_of_buffer) {
    94. 

  94.                 return -1;
    95. 

  95.             }
    96. 

  96.             while (count--) {
    97. 

  97.                 *dest = *src++;
    98. 

  98.                 dest += z;
    99. 

  99.             }
    100. 

  100. 

  101.         } else {
    102. 

  102.             if (src > end_of_buffer) {
    103. 

  103.                 return -1;
    104. 

  104.             }
    105. 

  105.             pixel = *src++;
    106. 

  106.             while (count--) {
    107. 

  107.                 *dest = pixel;
    108. 

  108.                 dest += z;
    109. 

  109.             }
    110. 

  110.         }
    111. 

  111.     }
    112. 

  112.     return 0;
    113. 

  113. }
    114. 

  114. 

  115. static int
    116. 

  116. expandrow2(UINT8 *dest, const UINT8 *src, int n, int z, int xsize, UINT8 *end_of_buffer) {
    117. 

  117.     UINT8 pixel, count;
    118. 

  118.     int x = 0;
    119. 

  119. 

  120.     for (; n > 0; n--) {
    121. 

  121.         if (src + 1 > end_of_buffer) {
    122. 

  122.             return -1;
    123. 

  123.         }
    124. 

  124.         pixel = src[1];
    125. 

  125.         src += 2;
    126. 

  126.         if (n == 1 && pixel != 0) {
    127. 

  127.             return n;
    128. 

  128.         }
    129. 

  129.         count = pixel & RLE_MAX_RUN;
    130. 

  130.         if (!count) {
    131. 

  131.             return count;
    132. 

  132.         }
    133. 

  133.         if (x + count > xsize) {
    134. 

  134.             return -1;
    135. 

  135.         }
    136. 

  136.         x += count;
    137. 

  137.         if (pixel & RLE_COPY_FLAG) {
    138. 

  138.             if (src + 2 * count > end_of_buffer) {
    139. 

  139.                 return -1;
    140. 

  140.             }
    141. 

  141.             while (count--) {
    142. 

  142.                 memcpy(dest, src, 2);
    143. 

  143.                 src += 2;
    144. 

  144.                 dest += z * 2;
    145. 

  145.             }
    146. 

  146.         } else {
    147. 

  147.             if (src + 2 > end_of_buffer) {
    148. 

  148.                 return -1;
    149. 

  149.             }
    150. 

  150.             while (count--) {
    151. 

  151.                 memcpy(dest, src, 2);
    152. 

  152.                 dest += z * 2;
    153. 

  153.             }
    154. 

  154.             src += 2;
    155. 

  155.         }
    156. 

  156.     }
    157. 

  157.     return 0;
    158. 

  158. }
    159. 

  159. 

  160. int
    161. 

  161. ImagingSgiRleDecode(Imaging im, ImagingCodecState state, UINT8 *buf, Py_ssize_t bytes) {
    162. 

  162.     UINT8 *ptr;
    163. 

  163.     SGISTATE *c;
    164. 

  164.     int err = 0;
    165. 

  165.     int status;
    166. 

  166. 

  167.     /* size check */
    168. 

  168.     if (im->xsize > INT_MAX / im->bands || im->ysize > INT_MAX / im->bands) {
    169. 

  169.         state->errcode = IMAGING_CODEC_MEMORY;
    170. 

  170.         return -1;
    171. 

  171.     }
    172. 

  172. 

  173.     /* Get all data from File descriptor */
    174. 

  174.     c = (SGISTATE *)state->context;
    175. 

  175.     _imaging_seek_pyFd(state->fd, 0L, SEEK_END);
    176. 

  176.     c->bufsize = _imaging_tell_pyFd(state->fd);
    177. 

  177.     c->bufsize -= SGI_HEADER_SIZE;
    178. 

  178. 

  179.     c->tablen = im->bands * im->ysize;
    180. 

  180.     /* below, we populate the starttab and lentab into the bufsize,
    181. 

  181.        each with 4 bytes per element of tablen
    182. 

  182.        Check here before we allocate any memory
    183. 

  183.     */
    184. 

  184.     if (c->bufsize < 8 * c->tablen) {
    185. 

  185.         state->errcode = IMAGING_CODEC_OVERRUN;
    186. 

  186.         return -1;
    187. 

  187.     }
    188. 

  188. 

  189.     ptr = malloc(sizeof(UINT8) * c->bufsize);
    190. 

  190.     if (!ptr) {
    191. 

  191.         state->errcode = IMAGING_CODEC_MEMORY;
    192. 

  192.         return -1;
    193. 

  193.     }
    194. 

  194.     _imaging_seek_pyFd(state->fd, SGI_HEADER_SIZE, SEEK_SET);
    195. 

  195.     if (_imaging_read_pyFd(state->fd, (char *)ptr, c->bufsize) != c->bufsize) {
    196. 

  196.         state->errcode = IMAGING_CODEC_UNKNOWN;
    197. 

  197.         return -1;
    198. 

  198.     }
    199. 

  199. 

  200. 

  201.     /* decoder initialization */
    202. 

  202.     state->count = 0;
    203. 

  203.     state->y = 0;
    204. 

  204.     if (state->ystep < 0) {
    205. 

  205.         state->y = im->ysize - 1;
    206. 

  206.     } else {
    207. 

  207.         state->ystep = 1;
    208. 

  208.     }
    209. 

  209. 

  210.     /* Allocate memory for RLE tables and rows */
    211. 

  211.     free(state->buffer);
    212. 

  212.     state->buffer = NULL;
    213. 

  213.     /* malloc overflow check above */
    214. 

  214.     state->buffer = calloc(im->xsize * im->bands, sizeof(UINT8) * 2);
    215. 

  215.     c->starttab = calloc(c->tablen, sizeof(UINT32));
    216. 

  216.     c->lengthtab = calloc(c->tablen, sizeof(UINT32));
    217. 

  217.     if (!state->buffer || !c->starttab || !c->lengthtab) {
    218. 

  218.         err = IMAGING_CODEC_MEMORY;
    219. 

  219.         goto sgi_finish_decode;
    220. 

  220.     }
    221. 

  221.     /* populate offsets table */
    222. 

  222.     for (c->tabindex = 0, c->bufindex = 0; c->tabindex < c->tablen;
    223. 

  223.          c->tabindex++, c->bufindex += 4) {
    224. 

  224.         read4B(&c->starttab[c->tabindex], &ptr[c->bufindex]);
    225. 

  225.     }
    226. 

  226.     /* populate lengths table */
    227. 

  227.     for (c->tabindex = 0, c->bufindex = c->tablen * sizeof(UINT32);
    228. 

  228.          c->tabindex < c->tablen;
    229. 

  229.          c->tabindex++, c->bufindex += 4) {
    230. 

  230.         read4B(&c->lengthtab[c->tabindex], &ptr[c->bufindex]);
    231. 

  231.     }
    232. 

  232. 

  233.     /* read compressed rows */
    234. 

  234.     for (c->rowno = 0; c->rowno < im->ysize; c->rowno++, state->y += state->ystep) {
    235. 

  235.         for (c->channo = 0; c->channo < im->bands; c->channo++) {
    236. 

  236.             c->rleoffset = c->starttab[c->rowno + c->channo * im->ysize];
    237. 

  237.             c->rlelength = c->lengthtab[c->rowno + c->channo * im->ysize];
    238. 

  238. 

  239.             // Check for underflow of rleoffset-SGI_HEADER_SIZE
    240. 

  240.             if (c->rleoffset < SGI_HEADER_SIZE) {
    241. 

  241.                 state->errcode = IMAGING_CODEC_OVERRUN;
    242. 

  242.                 goto sgi_finish_decode;
    243. 

  243.             }
    244. 

  244. 

  245.             c->rleoffset -= SGI_HEADER_SIZE;
    246. 

  246. 

  247.             /* row decompression */
    248. 

  248.             if (c->bpc == 1) {
    249. 

  249.                 status = expandrow(
    250. 

  250.                     &state->buffer[c->channo],
    251. 

  251.                     &ptr[c->rleoffset],
    252. 

  252.                     c->rlelength,
    253. 

  253.                     im->bands,
    254. 

  254.                     im->xsize,
    255. 

  255.                     &ptr[c->bufsize-1]);
    256. 

  256.             } else {
    257. 

  257.                 status = expandrow2(
    258. 

  258.                     &state->buffer[c->channo * 2],
    259. 

  259.                     &ptr[c->rleoffset],
    260. 

  260.                     c->rlelength,
    261. 

  261.                     im->bands,
    262. 

  262.                     im->xsize,
    263. 

  263.                     &ptr[c->bufsize-1]);
    264. 

  264.             }
    265. 

  265.             if (status == -1) {
    266. 

  266.                 state->errcode = IMAGING_CODEC_OVERRUN;
    267. 

  267.                 goto sgi_finish_decode;
    268. 

  268.             } else if (status == 1) {
    269. 

  269.                 goto sgi_finish_decode;
    270. 

  270.             }
    271. 

  271. 

  272.         }
    273. 

  273. 

  274.         /* store decompressed data in image */
    275. 

  275.         state->shuffle((UINT8 *)im->image[state->y], state->buffer, im->xsize);
    276. 

  276.     }
    277. 

  277. 

  278. sgi_finish_decode:;
    279. 

  279. 

  280.     free(c->starttab);
    281. 

  281.     free(c->lengthtab);
    282. 

  282.     free(ptr);
    283. 

  283.     if (err != 0) {
    284. 

  284.         state->errcode = err;
    285. 

  285.         return -1;
    286. 

  286.     }
    287. 

  287.     return 0;
    288. 

  288. }
    289.