/* -*- Mode: C++; tab-width: 2; indent-tabs-mode: nil; c-basic-offset: 2 -*- * * This Source Code Form is subject to the terms of the Mozilla Public * License, v. 2.0. If a copy of the MPL was not distributed with this * file, You can obtain one at http://mozilla.org/MPL/2.0/. */ /* The Graphics Interchange Format(c) is the copyright property of CompuServe Incorporated. Only CompuServe Incorporated is authorized to define, redefine, enhance, alter, modify or change in any way the definition of the format. CompuServe Incorporated hereby grants a limited, non-exclusive, royalty-free license for the use of the Graphics Interchange Format(sm) in computer software; computer software utilizing GIF(sm) must acknowledge ownership of the Graphics Interchange Format and its Service Mark by CompuServe Incorporated, in User and Technical Documentation. Computer software utilizing GIF, which is distributed or may be distributed without User or Technical Documentation must display to the screen or printer a message acknowledging ownership of the Graphics Interchange Format and the Service Mark by CompuServe Incorporated; in this case, the acknowledgement may be displayed in an opening screen or leading banner, or a closing screen or trailing banner. A message such as the following may be used: "The Graphics Interchange Format(c) is the Copyright property of CompuServe Incorporated. GIF(sm) is a Service Mark property of CompuServe Incorporated." For further information, please contact : CompuServe Incorporated Graphics Technology Department 5000 Arlington Center Boulevard Columbus, Ohio 43220 U. S. A. CompuServe Incorporated maintains a mailing list with all those individuals and organizations who wish to receive copies of this document when it is corrected or revised. This service is offered free of charge; please provide us with your mailing address. */ #include #include "imgFrame.h" #include "nsGIFDecoder2.h" #include "nsIInputStream.h" #include "RasterImage.h" #include "SurfaceFilters.h" #include "SurfacePipeFactory.h" #include "gfxColor.h" #include "gfxPlatform.h" #include "qcms.h" #include #include "mozilla/Telemetry.h" using namespace mozilla::gfx; namespace mozilla { namespace image { // GETN(n, s) requests at least 'n' bytes available from 'q', at start of state // 's'. Colormaps are directly copied in the resp. global_colormap or the // local_colormap of the PAL image frame So a fixed buffer in gif_struct is // good enough. This buffer is only needed to copy left-over data from one // GifWrite call to the next #define GETN(n,s) \ PR_BEGIN_MACRO \ mGIFStruct.bytes_to_consume = (n); \ mGIFStruct.state = (s); \ PR_END_MACRO // Get a 16-bit value stored in little-endian format #define GETINT16(p) ((p)[1]<<8|(p)[0]) ////////////////////////////////////////////////////////////////////// // GIF Decoder Implementation nsGIFDecoder2::nsGIFDecoder2(RasterImage* aImage) : Decoder(aImage) , mOldColor(0) , mCurrentFrameIndex(-1) , mGIFOpen(false) , mSawTransparency(false) { // Clear out the structure, excluding the arrays memset(&mGIFStruct, 0, sizeof(mGIFStruct)); // Initialize as "animate once" in case no NETSCAPE2.0 extension is found mGIFStruct.loop_count = 1; // Start with the version (GIF89a|GIF87a) mGIFStruct.state = gif_type; mGIFStruct.bytes_to_consume = 6; } nsGIFDecoder2::~nsGIFDecoder2() { moz_free(mGIFStruct.local_colormap); moz_free(mGIFStruct.hold); } void nsGIFDecoder2::FinishInternal() { MOZ_ASSERT(!HasError(), "Shouldn't call FinishInternal after error!"); // If the GIF got cut off, handle it anyway if (!IsMetadataDecode() && mGIFOpen) { if (mCurrentFrameIndex == mGIFStruct.images_decoded) { EndImageFrame(); } PostDecodeDone(mGIFStruct.loop_count - 1); mGIFOpen = false; } } void nsGIFDecoder2::FlushImageData() { Maybe invalidRect = mPipe.TakeInvalidRect(); if (!invalidRect) { return; } PostInvalidation(invalidRect->mInputSpaceRect, Some(invalidRect->mOutputSpaceRect)); } //****************************************************************************** // GIF decoder callback methods. Part of public API for GIF2 //****************************************************************************** //****************************************************************************** void nsGIFDecoder2::BeginGIF() { if (mGIFOpen) { return; } mGIFOpen = true; PostSize(mGIFStruct.screen_width, mGIFStruct.screen_height); } bool nsGIFDecoder2::CheckForTransparency(const IntRect& aFrameRect) { // Check if the image has a transparent color in its palette. if (mGIFStruct.is_transparent) { PostHasTransparency(); return true; } if (mGIFStruct.images_decoded > 0) { return false; // We only care about first frame padding below. } // If we need padding on the first frame, that means we don't draw into part // of the image at all. Report that as transparency. IntRect imageRect(0, 0, mGIFStruct.screen_width, mGIFStruct.screen_height); if (!imageRect.IsEqualEdges(aFrameRect)) { PostHasTransparency(); mSawTransparency = true; // Make sure we don't optimize it away. return true; } return false; } IntRect nsGIFDecoder2::ClampToImageRect(const IntRect& aRect) { IntRect imageRect(0, 0, mGIFStruct.screen_width, mGIFStruct.screen_height); IntRect visibleFrameRect = aRect.Intersect(imageRect); // If there's no intersection, |visibleFrameRect| will be an empty rect // positioned at the maximum of |imageRect|'s and |aRect|'s coordinates, which // is not what we want. Force it to (0, 0) in that case. if (visibleFrameRect.IsEmpty()) { visibleFrameRect.MoveTo(0, 0); } return visibleFrameRect; } //****************************************************************************** nsresult nsGIFDecoder2::BeginImageFrame(const IntRect& aFrameRect, uint16_t aDepth, bool aIsInterlaced) { MOZ_ASSERT(HasSize()); bool hasTransparency = CheckForTransparency(aFrameRect); gfx::SurfaceFormat format = hasTransparency ? SurfaceFormat::B8G8R8A8 : SurfaceFormat::B8G8R8X8; // Make sure there's no animation if we're downscaling. MOZ_ASSERT_IF(mDownscaler, !GetImageMetadata().HasAnimation()); SurfacePipeFlags pipeFlags = aIsInterlaced ? SurfacePipeFlags::DEINTERLACE : SurfacePipeFlags(); Maybe pipe; if (mGIFStruct.images_decoded == 0) { // This is the first frame. We may be downscaling, so compute the target // size. IntSize targetSize = mDownscaler ? mDownscaler->TargetSize() : GetSize(); // The first frame may be displayed progressively. pipeFlags |= SurfacePipeFlags::PROGRESSIVE_DISPLAY; // The first frame is always decoded into an RGB surface. pipe = SurfacePipeFactory::CreateSurfacePipe(this, mGIFStruct.images_decoded, GetSize(), targetSize, aFrameRect, format, pipeFlags); } else { // This is an animation frame (and not the first). To minimize the memory // usage of animations, the image data is stored in paletted form. MOZ_ASSERT(!mDownscaler); pipe = SurfacePipeFactory::CreatePalettedSurfacePipe(this, mGIFStruct.images_decoded, GetSize(), aFrameRect, format, aDepth, pipeFlags); } mCurrentFrameIndex = mGIFStruct.images_decoded; if (!pipe) { mPipe = SurfacePipe(); return NS_ERROR_FAILURE; } mPipe = Move(*pipe); return NS_OK; } //****************************************************************************** void nsGIFDecoder2::EndImageFrame() { Opacity opacity = Opacity::SOME_TRANSPARENCY; // First flush all pending image data if (mGIFStruct.images_decoded == 0) { // Only need to flush first frame FlushImageData(); // The first frame was preallocated with alpha; if it wasn't transparent, we // should fix that. We can also mark it opaque unconditionally if we didn't // actually see any transparent pixels - this test is only valid for the // first frame. if (!mGIFStruct.is_transparent && !mSawTransparency) { opacity = Opacity::FULLY_OPAQUE; } } // Unconditionally increment images_decoded, because we unconditionally // append frames in BeginImageFrame(). This ensures that images_decoded // always refers to the frame in mImage we're currently decoding, // even if some of them weren't decoded properly and thus are blank. mGIFStruct.images_decoded++; // Tell the superclass we finished a frame PostFrameStop(opacity, DisposalMethod(mGIFStruct.disposal_method), mGIFStruct.delay_time); // Reset the transparent pixel if (mOldColor) { mColormap[mGIFStruct.tpixel] = mOldColor; mOldColor = 0; } mCurrentFrameIndex = -1; } template PixelSize nsGIFDecoder2::ColormapIndexToPixel(uint8_t aIndex) { MOZ_ASSERT(sizeof(PixelSize) == sizeof(uint32_t)); // Retrieve the next color, clamping to the size of the colormap. uint32_t color = mColormap[aIndex & mColorMask]; // Check for transparency. if (mGIFStruct.is_transparent) { mSawTransparency = mSawTransparency || color == 0; } return color; } template <> uint8_t nsGIFDecoder2::ColormapIndexToPixel(uint8_t aIndex) { return aIndex & mColorMask; } template NextPixel nsGIFDecoder2::YieldPixel(const uint8_t*& aCurrentByteInOut) { MOZ_ASSERT(mGIFStruct.stackp >= mGIFStruct.stack); // If we don't have any decoded data to yield, try to read some input and // produce some. if (mGIFStruct.stackp == mGIFStruct.stack) { while (mGIFStruct.bits < mGIFStruct.codesize && mGIFStruct.count > 0) { // Feed the next byte into the decoder's 32-bit input buffer. mGIFStruct.datum += int32_t(*aCurrentByteInOut) << mGIFStruct.bits; mGIFStruct.bits += 8; ++aCurrentByteInOut; --mGIFStruct.count; } if (mGIFStruct.bits < mGIFStruct.codesize) { return AsVariant(WriteState::NEED_MORE_DATA); } // Get the leading variable-length symbol from the data stream. int code = mGIFStruct.datum & mGIFStruct.codemask; mGIFStruct.datum >>= mGIFStruct.codesize; mGIFStruct.bits -= mGIFStruct.codesize; const int clearCode = ClearCode(); // Reset the dictionary to its original state, if requested if (code == clearCode) { mGIFStruct.codesize = mGIFStruct.datasize + 1; mGIFStruct.codemask = (1 << mGIFStruct.codesize) - 1; mGIFStruct.avail = clearCode + 2; mGIFStruct.oldcode = -1; return AsVariant(WriteState::NEED_MORE_DATA); } // Check for explicit end-of-stream code. It should only appear after all // image data, but if that was the case we wouldn't be in this function, so // this is always an error condition. if (code == (clearCode + 1)) { return AsVariant(WriteState::FAILURE); } if (mGIFStruct.oldcode == -1) { if (code >= MAX_BITS) { return AsVariant(WriteState::FAILURE); // The code's too big; something's wrong. } mGIFStruct.firstchar = mGIFStruct.oldcode = code; // Yield a pixel at the appropriate index in the colormap. mGIFStruct.pixels_remaining--; return AsVariant(ColormapIndexToPixel(mGIFStruct.suffix[code])); } int incode = code; if (code >= mGIFStruct.avail) { *mGIFStruct.stackp++ = mGIFStruct.firstchar; code = mGIFStruct.oldcode; if (mGIFStruct.stackp >= mGIFStruct.stack + MAX_BITS) { return AsVariant(WriteState::FAILURE); // Stack overflow; something's wrong. } } while (code >= clearCode) { if ((code >= MAX_BITS) || (code == mGIFStruct.prefix[code])) { return AsVariant(WriteState::FAILURE); } *mGIFStruct.stackp++ = mGIFStruct.suffix[code]; code = mGIFStruct.prefix[code]; if (mGIFStruct.stackp >= mGIFStruct.stack + MAX_BITS) { return AsVariant(WriteState::FAILURE); // Stack overflow; something's wrong. } } *mGIFStruct.stackp++ = mGIFStruct.firstchar = mGIFStruct.suffix[code]; // Define a new codeword in the dictionary. if (mGIFStruct.avail < 4096) { mGIFStruct.prefix[mGIFStruct.avail] = mGIFStruct.oldcode; mGIFStruct.suffix[mGIFStruct.avail] = mGIFStruct.firstchar; mGIFStruct.avail++; // If we've used up all the codewords of a given length increase the // length of codewords by one bit, but don't exceed the specified maximum // codeword size of 12 bits. if (((mGIFStruct.avail & mGIFStruct.codemask) == 0) && (mGIFStruct.avail < 4096)) { mGIFStruct.codesize++; mGIFStruct.codemask += mGIFStruct.avail; } } mGIFStruct.oldcode = incode; } if (MOZ_UNLIKELY(mGIFStruct.stackp <= mGIFStruct.stack)) { MOZ_ASSERT_UNREACHABLE("No decoded data but we didn't return early?"); return AsVariant(WriteState::FAILURE); } // Yield a pixel at the appropriate index in the colormap. mGIFStruct.pixels_remaining--; return AsVariant(ColormapIndexToPixel(*--mGIFStruct.stackp)); } bool nsGIFDecoder2::DoLzw(const uint8_t* aData) { const uint8_t* currentByte = aData; while (mGIFStruct.count > 0 && mGIFStruct.pixels_remaining > 0) { auto result = mGIFStruct.images_decoded > 0 ? mPipe.WritePixels([&]() { return YieldPixel(currentByte); }) : mPipe.WritePixels([&]() { return YieldPixel(currentByte); }); switch (result) { case WriteState::NEED_MORE_DATA: continue; case WriteState::FINISHED: NS_WARN_IF(mGIFStruct.pixels_remaining > 0); mGIFStruct.pixels_remaining = 0; return true; case WriteState::FAILURE: return false; } } return true; } /// Expand the colormap from RGB to Packed ARGB as needed by Cairo. /// And apply any LCMS transformation. static void ConvertColormap(uint32_t* aColormap, uint32_t aColors) { // Apply CMS transformation if enabled and available if (gfxPlatform::GetCMSMode() == eCMSMode_All) { qcms_transform* transform = gfxPlatform::GetCMSRGBTransform(); if (transform) { qcms_transform_data(transform, aColormap, aColormap, aColors); } } // Convert from the GIF's RGB format to the Cairo format. // Work from end to begin, because of the in-place expansion uint8_t* from = ((uint8_t*)aColormap) + 3 * aColors; uint32_t* to = aColormap + aColors; // Convert color entries to Cairo format // set up for loops below if (!aColors) { return; } uint32_t c = aColors; // copy as bytes until source pointer is 32-bit-aligned // NB: can't use 32-bit reads, they might read off the end of the buffer for (; (NS_PTR_TO_UINT32(from) & 0x3) && c; --c) { from -= 3; *--to = gfxPackedPixel(0xFF, from[0], from[1], from[2]); } // bulk copy of pixels. while (c >= 4) { from -= 12; to -= 4; c -= 4; GFX_BLOCK_RGB_TO_FRGB(from,to); } // copy remaining pixel(s) // NB: can't use 32-bit reads, they might read off the end of the buffer while (c--) { from -= 3; *--to = gfxPackedPixel(0xFF, from[0], from[1], from[2]); } } void nsGIFDecoder2::WriteInternal(const char* aBuffer, uint32_t aCount) { MOZ_ASSERT(!HasError(), "Shouldn't call WriteInternal after error!"); // These variables changed names; renaming would make a much bigger patch :( const uint8_t* buf = (const uint8_t*)aBuffer; uint32_t len = aCount; const uint8_t* q = buf; // Add what we have sofar to the block // If previous call to me left something in the hold first complete current // block, or if we are filling the colormaps, first complete the colormap uint8_t* p = (mGIFStruct.state == gif_global_colormap) ? (uint8_t*) mGIFStruct.global_colormap : (mGIFStruct.state == gif_image_colormap) ? (uint8_t*) mColormap : (mGIFStruct.bytes_in_hold) ? mGIFStruct.hold : nullptr; if (len == 0 && buf == nullptr) { // We've just gotten the frame we asked for. Time to use the data we // stashed away. len = mGIFStruct.bytes_in_hold; q = buf = p; } else if (p) { // Add what we have sofar to the block uint32_t l = std::min(len, mGIFStruct.bytes_to_consume); memcpy(p+mGIFStruct.bytes_in_hold, buf, l); if (l < mGIFStruct.bytes_to_consume) { // Not enough in 'buf' to complete current block, get more mGIFStruct.bytes_in_hold += l; mGIFStruct.bytes_to_consume -= l; return; } // Point 'q' to complete block in hold (or in colormap) q = p; } // Invariant: // 'q' is start of current to be processed block (hold, colormap or buf) // 'bytes_to_consume' is number of bytes to consume from 'buf' // 'buf' points to the bytes to be consumed from the input buffer // 'len' is number of bytes left in input buffer from position 'buf'. // At entrance of the for loop will 'buf' will be moved 'bytes_to_consume' // to point to next buffer, 'len' is adjusted accordingly. // So that next round in for loop, q gets pointed to the next buffer. for (;len >= mGIFStruct.bytes_to_consume; q=buf, mGIFStruct.bytes_in_hold = 0) { // Eat the current block from the buffer, q keeps pointed at current block buf += mGIFStruct.bytes_to_consume; len -= mGIFStruct.bytes_to_consume; switch (mGIFStruct.state) { case gif_lzw: if (!DoLzw(q)) { mGIFStruct.state = gif_error; break; } GETN(1, gif_sub_block); break; case gif_lzw_start: { // Make sure the transparent pixel is transparent in the colormap if (mGIFStruct.is_transparent) { // Save old value so we can restore it later if (mColormap == mGIFStruct.global_colormap) { mOldColor = mColormap[mGIFStruct.tpixel]; } mColormap[mGIFStruct.tpixel] = 0; } // Initialize LZW parser/decoder mGIFStruct.datasize = *q; const int clear_code = ClearCode(); if (mGIFStruct.datasize > MAX_LZW_BITS || clear_code >= MAX_BITS) { mGIFStruct.state = gif_error; break; } mGIFStruct.avail = clear_code + 2; mGIFStruct.oldcode = -1; mGIFStruct.codesize = mGIFStruct.datasize + 1; mGIFStruct.codemask = (1 << mGIFStruct.codesize) - 1; mGIFStruct.datum = mGIFStruct.bits = 0; // init the tables for (int i = 0; i < clear_code; i++) { mGIFStruct.suffix[i] = i; } mGIFStruct.stackp = mGIFStruct.stack; GETN(1, gif_sub_block); } break; // All GIF files begin with "GIF87a" or "GIF89a" case gif_type: if (!strncmp((char*)q, "GIF89a", 6)) { mGIFStruct.version = 89; } else if (!strncmp((char*)q, "GIF87a", 6)) { mGIFStruct.version = 87; } else { mGIFStruct.state = gif_error; break; } GETN(7, gif_global_header); break; case gif_global_header: // This is the height and width of the "screen" or // frame into which images are rendered. The // individual images can be smaller than the // screen size and located with an origin anywhere // within the screen. mGIFStruct.screen_width = GETINT16(q); mGIFStruct.screen_height = GETINT16(q + 2); mGIFStruct.global_colormap_depth = (q[4]&0x07) + 1; // screen_bgcolor is not used //mGIFStruct.screen_bgcolor = q[5]; // q[6] = Pixel Aspect Ratio // Not used // float aspect = (float)((q[6] + 15) / 64.0); if (q[4] & 0x80) { // Get the global colormap const uint32_t size = (3 << mGIFStruct.global_colormap_depth); if (len < size) { // Use 'hold' pattern to get the global colormap GETN(size, gif_global_colormap); break; } // Copy everything, go to colormap state to do CMS correction memcpy(mGIFStruct.global_colormap, buf, size); buf += size; len -= size; GETN(0, gif_global_colormap); break; } GETN(1, gif_image_start); break; case gif_global_colormap: // Everything is already copied into global_colormap // Convert into Cairo colors including CMS transformation ConvertColormap(mGIFStruct.global_colormap, 1< 0) { // The file is corrupt, but one or more images have // been decoded correctly. In this case, we proceed // as if the file were correctly terminated and set // the state to gif_done, so the GIF will display. mGIFStruct.state = gif_done; } else { // No images decoded, there is nothing to display. mGIFStruct.state = gif_error; } } break; case gif_extension: mGIFStruct.bytes_to_consume = q[1]; if (mGIFStruct.bytes_to_consume) { switch (*q) { case GIF_GRAPHIC_CONTROL_LABEL: // The GIF spec mandates that the GIFControlExtension header block // length is 4 bytes, and the parser for this block reads 4 bytes, // so we must enforce that the buffer contains at least this many // bytes. If the GIF specifies a different length, we allow that, so // long as it's larger; the additional data will simply be ignored. mGIFStruct.state = gif_control_extension; mGIFStruct.bytes_to_consume = std::max(mGIFStruct.bytes_to_consume, 4u); break; // The GIF spec also specifies the lengths of the following two // extensions' headers (as 12 and 11 bytes, respectively). Because // we ignore the plain text extension entirely and sanity-check the // actual length of the application extension header before reading it, // we allow GIFs to deviate from these values in either direction. This // is important for real-world compatibility, as GIFs in the wild exist // with application extension headers that are both shorter and longer // than 11 bytes. case GIF_APPLICATION_EXTENSION_LABEL: mGIFStruct.state = gif_application_extension; break; case GIF_PLAIN_TEXT_LABEL: mGIFStruct.state = gif_skip_block; break; case GIF_COMMENT_LABEL: mGIFStruct.state = gif_consume_comment; break; default: mGIFStruct.state = gif_skip_block; } } else { GETN(1, gif_image_start); } break; case gif_consume_block: if (!*q) { GETN(1, gif_image_start); } else { GETN(*q, gif_skip_block); } break; case gif_skip_block: GETN(1, gif_consume_block); break; case gif_control_extension: mGIFStruct.is_transparent = *q & 0x1; mGIFStruct.tpixel = q[3]; mGIFStruct.disposal_method = ((*q) >> 2) & 0x7; if (mGIFStruct.disposal_method == 4) { // Some specs say 3rd bit (value 4), other specs say value 3. // Let's choose 3 (the more popular). mGIFStruct.disposal_method = 3; } else if (mGIFStruct.disposal_method > 4) { // This GIF is using a disposal method which is undefined in the spec. // Treat it as DisposalMethod::NOT_SPECIFIED. mGIFStruct.disposal_method = 0; } { DisposalMethod method = DisposalMethod(mGIFStruct.disposal_method); if (method == DisposalMethod::CLEAR_ALL || method == DisposalMethod::CLEAR) { // We may have to display the background under this image during // animation playback, so we regard it as transparent. PostHasTransparency(); } } mGIFStruct.delay_time = GETINT16(q + 1) * 10; if (mGIFStruct.delay_time > 0) { PostIsAnimated(mGIFStruct.delay_time); } GETN(1, gif_consume_block); break; case gif_comment_extension: if (*q) { GETN(*q, gif_consume_comment); } else { GETN(1, gif_image_start); } break; case gif_consume_comment: GETN(1, gif_comment_extension); break; case gif_application_extension: // Check for netscape application extension if (mGIFStruct.bytes_to_consume == 11 && (!strncmp((char*)q, "NETSCAPE2.0", 11) || !strncmp((char*)q, "ANIMEXTS1.0", 11))) { GETN(1, gif_netscape_extension_block); } else { GETN(1, gif_consume_block); } break; // Netscape-specific GIF extension: animation looping case gif_netscape_extension_block: if (*q) { // We might need to consume 3 bytes in // gif_consume_netscape_extension, so make sure we have at least that. GETN(std::max(3, static_cast(*q)), gif_consume_netscape_extension); } else { GETN(1, gif_image_start); } break; // Parse netscape-specific application extensions case gif_consume_netscape_extension: switch (q[0] & 7) { case 1: // Loop entire animation specified # of times. Only read the // loop count during the first iteration. mGIFStruct.loop_count = GETINT16(q + 1); GETN(1, gif_netscape_extension_block); break; case 2: // Wait for specified # of bytes to enter buffer // Don't do this, this extension doesn't exist (isn't used at all) // and doesn't do anything, as our streaming/buffering takes care // of it all... // See: http://semmix.pl/color/exgraf/eeg24.htm GETN(1, gif_netscape_extension_block); break; default: // 0,3-7 are yet to be defined netscape extension codes mGIFStruct.state = gif_error; } break; case gif_image_header: { if (mGIFStruct.images_decoded == 1) { if (!HasAnimation()) { // We should've already called PostIsAnimated(); this must be a // corrupt animated image with a first frame timeout of zero. Signal // that we're animated now, before the first-frame decode early exit // below, so that RasterImage can detect that this happened. PostIsAnimated(/* aFirstFrameTimeout = */ 0); } if (IsFirstFrameDecode()) { // We're about to get a second frame, but we only want the first. Stop // decoding now. mGIFStruct.state = gif_done; break; } if (mDownscaler) { MOZ_ASSERT_UNREACHABLE("Doing downscale-during-decode " "for an animated image?"); mDownscaler.reset(); } } IntRect frameRect; // Get image offsets, with respect to the screen origin frameRect.x = GETINT16(q); frameRect.y = GETINT16(q + 2); // Get image width and height. frameRect.width = GETINT16(q + 4); frameRect.height = GETINT16(q + 6); if (!mGIFStruct.images_decoded) { // Work around broken GIF files where the logical screen // size has weird width or height. We assume that GIF87a // files don't contain animations. if ((mGIFStruct.screen_height < frameRect.height) || (mGIFStruct.screen_width < frameRect.width) || (mGIFStruct.version == 87)) { mGIFStruct.screen_height = frameRect.height; mGIFStruct.screen_width = frameRect.width; frameRect.MoveTo(0, 0); } // Create the image container with the right size. BeginGIF(); if (HasError()) { // Setting the size led to an error. mGIFStruct.state = gif_error; return; } // If we were doing a metadata decode, we're done. if (IsMetadataDecode()) { CheckForTransparency(frameRect); return; } } // Work around more broken GIF files that have zero image width or height if (!frameRect.height || !frameRect.width) { frameRect.height = mGIFStruct.screen_height; frameRect.width = mGIFStruct.screen_width; if (!frameRect.height || !frameRect.width) { mGIFStruct.state = gif_error; break; } } // Depth of colors is determined by colormap // (q[8] & 0x80) indicates local colormap // bits per pixel is (q[8]&0x07 + 1) when local colormap is set uint32_t depth = mGIFStruct.global_colormap_depth; if (q[8] & 0x80) { depth = (q[8]&0x07) + 1; } uint32_t realDepth = depth; while (mGIFStruct.tpixel >= (1 << realDepth) && (realDepth < 8)) { realDepth++; } // Mask to limit the color values within the colormap mColorMask = 0xFF >> (8 - realDepth); // Determine if this frame is interlaced or not. const bool isInterlaced = q[8] & 0x40; if (NS_FAILED(BeginImageFrame(frameRect, realDepth, isInterlaced))) { mGIFStruct.state = gif_error; return; } // While decoders can reuse frames, we unconditionally increment // mGIFStruct.images_decoded when we're done with a frame, so we both can // and need to zero out the colormap and image data after every new frame. memset(mImageData, 0, mImageDataLength); if (mColormap) { memset(mColormap, 0, mColormapSize); } // Clear state from last image mGIFStruct.pixels_remaining = frameRect.width * frameRect.height; // has a local colormap? if (q[8] & 0x80) { mGIFStruct.local_colormap_size = 1 << depth; if (!mGIFStruct.images_decoded) { // First frame has local colormap, allocate space for it // as the image frame doesn't have its own palette mColormapSize = sizeof(uint32_t) << realDepth; if (!mGIFStruct.local_colormap) { mGIFStruct.local_colormap = (uint32_t*)moz_xmalloc(mColormapSize); } mColormap = mGIFStruct.local_colormap; } const uint32_t size = 3 << depth; if (mColormapSize > size) { // Clear the notfilled part of the colormap memset(((uint8_t*)mColormap) + size, 0, mColormapSize - size); } if (len < size) { // Use 'hold' pattern to get the image colormap GETN(size, gif_image_colormap); break; } // Copy everything, go to colormap state to do CMS correction memcpy(mColormap, buf, size); buf += size; len -= size; GETN(0, gif_image_colormap); break; } else { // Switch back to the global palette if (mGIFStruct.images_decoded) { // Copy global colormap into the palette of current frame memcpy(mColormap, mGIFStruct.global_colormap, mColormapSize); } else { mColormap = mGIFStruct.global_colormap; } } GETN(1, gif_lzw_start); } break; case gif_image_colormap: // Everything is already copied into local_colormap // Convert into Cairo colors including CMS transformation ConvertColormap(mColormap, mGIFStruct.local_colormap_size); GETN(1, gif_lzw_start); break; case gif_sub_block: mGIFStruct.count = *q; if (mGIFStruct.count) { // Still working on the same image: Process next LZW data block // Make sure there are still pixels left. If the GIF data // is corrupt, we may not get an explicit terminator. if (mGIFStruct.pixels_remaining <= 0) { #ifdef DONT_TOLERATE_BROKEN_GIFS mGIFStruct.state = gif_error; break; #else // This is an illegal GIF, but we remain tolerant. GETN(1, gif_sub_block); #endif if (mGIFStruct.count == GIF_TRAILER) { // Found a terminator anyway, so consider the image done GETN(1, gif_done); break; } } GETN(mGIFStruct.count, gif_lzw); } else { // See if there are any more images in this sequence. EndImageFrame(); GETN(1, gif_image_start); } break; case gif_done: MOZ_ASSERT(!IsMetadataDecode(), "Metadata decodes shouldn't reach gif_done"); FinishInternal(); goto done; case gif_error: PostDataError(); return; // We shouldn't ever get here. default: MOZ_ASSERT_UNREACHABLE("Unexpected mGIFStruct.state"); PostDecoderError(NS_ERROR_UNEXPECTED); return; } } // if an error state is set but no data remains, code flow reaches here if (mGIFStruct.state == gif_error) { PostDataError(); return; } // Copy the leftover into mGIFStruct.hold if (len) { // Add what we have sofar to the block if (mGIFStruct.state != gif_global_colormap && mGIFStruct.state != gif_image_colormap) { if (!SetHold(buf, len)) { PostDataError(); return; } } else { uint8_t* p = (mGIFStruct.state == gif_global_colormap) ? (uint8_t*)mGIFStruct.global_colormap : (uint8_t*)mColormap; memcpy(p, buf, len); mGIFStruct.bytes_in_hold = len; } mGIFStruct.bytes_to_consume -= len; } // We want to flush before returning if we're on the first frame done: if (!mGIFStruct.images_decoded) { FlushImageData(); } } bool nsGIFDecoder2::SetHold(const uint8_t* buf1, uint32_t count1, const uint8_t* buf2 /* = nullptr */, uint32_t count2 /* = 0 */) { // We have to handle the case that buf currently points to hold uint8_t* newHold = (uint8_t*) moz_malloc(std::max(uint32_t(MIN_HOLD_SIZE), count1 + count2)); if (!newHold) { mGIFStruct.state = gif_error; return false; } memcpy(newHold, buf1, count1); if (buf2) { memcpy(newHold + count1, buf2, count2); } moz_free(mGIFStruct.hold); mGIFStruct.hold = newHold; mGIFStruct.bytes_in_hold = count1 + count2; return true; } Telemetry::ID nsGIFDecoder2::SpeedHistogram() { return Telemetry::IMAGE_DECODE_SPEED_GIF; } } // namespace image } // namespace mozilla