dany/libwebp
1
0
Fork 0
mirror of https://github.com/webmproject/libwebp.git synced 2026-04-09 14:22:31 +02:00
Code Issues Actions Packages Projects Releases Wiki Activity

Add a fuzzer for ReadAnimatedImage

Browse Source 
Bug: 496629074
Change-Id: Ie984f0eab67e8e6eda44abeedf9c13aa213dd340
This commit is contained in:
Vincent Rabaud
2026-03-27 14:49:51 +01:00
parent a7441f5630
commit b8814a57f0
6 changed files with 141 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
examples/Makefile.am
View File

@@ -24,23 +24,32 @@ if BUILD_WEBPINFO
endif
noinst_LTLIBRARIES = libexample_util.la
noinst_LTLIBRARIES += libanim_util.la
libexample_util_la_SOURCES = example_util.c example_util.h
libexample_util_la_LIBADD = ../src/libwebp.la
anim_diff_SOURCES = anim_diff.c anim_util.c anim_util.h gifdec.c gifdec.h
libanim_util_la_SOURCES = anim_util.c anim_util.h gifdec.c gifdec.h
libanim_util_la_LIBADD =
libanim_util_la_LIBADD += ../src/libwebp.la
libanim_util_la_LIBADD += ../src/demux/libwebpdemux.la
libanim_util_la_LIBADD += $(GIF_LIBS)
anim_diff_SOURCES = anim_diff.c
anim_diff_CPPFLAGS = $(AM_CPPFLAGS) $(GIF_INCLUDES)
anim_diff_LDADD =
anim_diff_LDADD += ../src/demux/libwebpdemux.la
anim_diff_LDADD += libanim_util.la
anim_diff_LDADD += libexample_util.la
anim_diff_LDADD += ../imageio/libimageio_util.la
anim_diff_LDADD += $(GIF_LIBS) -lm
anim_dump_SOURCES = anim_dump.c anim_util.c anim_util.h gifdec.c gifdec.h
anim_dump_SOURCES = anim_dump.c
anim_dump_CPPFLAGS = $(AM_CPPFLAGS) $(PNG_INCLUDES)
anim_dump_CPPFLAGS += $(GIF_INCLUDES)
anim_dump_LDADD =
anim_dump_LDADD += ../src/demux/libwebpdemux.la
anim_dump_LDADD += libanim_util.la
anim_dump_LDADD += libexample_util.la
anim_dump_LDADD += ../imageio/libimageio_util.la
anim_dump_LDADD += ../imageio/libimageenc.la

68
examples/anim_util.c
View File

@@ -23,7 +23,6 @@
#include "../imageio/imageio_util.h"
#include "./gifdec.h"
#include "./unicode.h"
#include "./unicode_gif.h"
#include "webp/decode.h"
#include "webp/demux.h"
#include "webp/format_constants.h"
@@ -294,6 +293,24 @@ End:
#if defined(WEBP_HAVE_GIF)
typedef struct {
const uint8_t* data;
size_t size;
size_t offset;
} GifBufferContext;
static int MemoryReadGIF(GifFileType* gif, GifByteType* dest, int len) {
GifBufferContext* const ctx = (GifBufferContext*)gif->UserData;
if (ctx->offset + len > ctx->size) {
len = (int)(ctx->size - ctx->offset);
}
if (len > 0) {
memcpy(dest, ctx->data + ctx->offset, len);
ctx->offset += len;
}
return len;
}
// Returns true if this is a valid GIF bitstream.
static int IsGIF(const WebPData* const data) {
return data->size > GIF_STAMP_LEN &&
@@ -504,18 +521,25 @@ static int ReadFrameGIF(const SavedImage* const gif_image,
return 1;
}
// Read animated GIF bitstream from 'filename' into 'AnimatedImage' struct.
static int ReadAnimatedGIF(const char filename[], AnimatedImage* const image,
int dump_frames, const char dump_folder[]) {
// Read animated GIF bitstream from 'gif_data' into 'AnimatedImage' struct.
static int ReadAnimatedGIF(const char filename[],
const WebPData* const gif_data,
AnimatedImage* const image, int dump_frames,
const char dump_folder[]) {
uint32_t frame_count;
uint32_t canvas_width, canvas_height;
uint32_t i;
int gif_error;
GifFileType* gif;
GifBufferContext ctx;
gif = DGifOpenFileUnicode((const W_CHAR*)filename, NULL);
ctx.data = gif_data->bytes;
ctx.size = gif_data->size;
ctx.offset = 0;
gif = DGifOpen(&ctx, MemoryReadGIF, &gif_error);
if (gif == NULL) {
WFPRINTF(stderr, "Could not read file: %s.\n", (const W_CHAR*)filename);
WFPRINTF(stderr, "Could not read GIF from memory: %s.\n",
(const W_CHAR*)filename);
return 0;
}
@@ -684,9 +708,12 @@ static int IsGIF(const WebPData* const data) {
return 0;
}
static int ReadAnimatedGIF(const char filename[], AnimatedImage* const image,
int dump_frames, const char dump_folder[]) {
static int ReadAnimatedGIF(const char filename[],
const WebPData* const gif_data,
AnimatedImage* const image, int dump_frames,
const char dump_folder[]) {
(void)filename;
(void)gif_data;
(void)image;
(void)dump_frames;
(void)dump_folder;
@@ -706,18 +733,38 @@ int ReadAnimatedImage(const char filename[], AnimatedImage* const image,
WebPData webp_data;
WebPDataInit(&webp_data);
memset(image, 0, sizeof(*image));
if (!ImgIoUtilReadFile(filename, &webp_data.bytes, &webp_data.size)) {
WFPRINTF(stderr, "Error reading file: %s\n", (const W_CHAR*)filename);
return 0;
}
ok = ReadAnimatedImageFromMemory(filename, webp_data.bytes, webp_data.size,
image, dump_frames, dump_folder);
if (!ok) {
WFPRINTF(stderr, "Error parsing image: %s\n", (const W_CHAR*)filename);
}
WebPDataClear(&webp_data);
return ok;
}
int ReadAnimatedImageFromMemory(const char filename[],
const uint8_t* const data, size_t size,
AnimatedImage* const image, int dump_frames,
const char dump_folder[]) {
int ok = 0;
WebPData webp_data;
webp_data.bytes = data;
webp_data.size = size;
memset(image, 0, sizeof(*image));
if (IsWebP(&webp_data)) {
ok =
ReadAnimatedWebP(filename, &webp_data, image, dump_frames, dump_folder);
} else if (IsGIF(&webp_data)) {
ok = ReadAnimatedGIF(filename, image, dump_frames, dump_folder);
ok = ReadAnimatedGIF(filename, &webp_data, image, dump_frames, dump_folder);
} else {
WFPRINTF(stderr,
"Unknown file type: %s. Supported file types are WebP and GIF\n",
@@ -725,7 +772,6 @@ int ReadAnimatedImage(const char filename[], AnimatedImage* const image,
ok = 0;
}
if (!ok) ClearAnimatedImage(image);
WebPDataClear(&webp_data);
return ok;
}

7
examples/anim_util.h
View File

@@ -52,6 +52,13 @@ void ClearAnimatedImage(AnimatedImage* const image);
int ReadAnimatedImage(const char filename[], AnimatedImage* const image,
int dump_frames, const char dump_folder[]);
// Same as 'ReadAnimatedImage', but from a memory buffer.
// filename is only used for log messages.
int ReadAnimatedImageFromMemory(const char filename[],
const uint8_t* const data, size_t size,
AnimatedImage* const image, int dump_frames,
const char dump_folder[]);
// Given two RGBA buffers, calculate max pixel difference and PSNR.
// If 'premultiply' is true, R/G/B values will be pre-multiplied by the
// transparency before comparison.