df/d99/FuzzAndroidCodec_8cpp_source.html

/*

 * Copyright 2018 Google, LLC

 *

 * Use of this source code is governed by a BSD-style license that can be

 * found in the LICENSE file.

 */


#include "include/codec/SkAndroidCodec.h"

#include "include/core/SkBitmap.h"

#include "include/core/SkCanvas.h"

#include "include/core/SkStream.h"

#include "include/core/SkSurface.h"

#include "include/private/SkGainmapInfo.h"


#include "fuzz/Fuzz.h"


bool FuzzAndroidCodec(const uint8_t *fuzzData, size_t fuzzSize, uint8_t sampleSize) {

    auto codec = SkAndroidCodec::MakeFromStream(SkMemoryStream::MakeDirect(fuzzData, fuzzSize));

    if (!codec) {

        return false;

    }


    auto size = codec->getSampledDimensions(sampleSize);

    auto info = SkImageInfo::MakeN32Premul(size);

    SkBitmap bm;

    if (!bm.tryAllocPixels(info)) {

        // May fail in memory-constrained fuzzing environments

        return false;

    }


    SkAndroidCodec::AndroidOptions options;

    options.fSampleSize = sampleSize;


    auto result = codec->getAndroidPixels(bm.info(), bm.getPixels(), bm.rowBytes(), &options);

    switch (result) {

        case SkCodec::kSuccess:

        case SkCodec::kIncompleteInput:

        case SkCodec::kErrorInInput:

            break;

        default:

            return false;

    }


    SkGainmapInfo gainmapInfo;

    auto gainmapImageStream = std::unique_ptr<SkStream>();


    if (codec->getAndroidGainmap(&gainmapInfo, &gainmapImageStream)) {

        // Do something with the outputs so the compiler does not optimize the call away.

        if (!std::isfinite(gainmapInfo.fDisplayRatioSdr)) {

            return false;

        }

        if (gainmapImageStream->getLength() > 100000000) {

            return false;

        }

    }


    auto surface = SkSurfaces::Raster(SkImageInfo::MakeN32Premul(size.width(), size.height()));

    if (!surface) {

        // May return nullptr in memory-constrained fuzzing environments

        return false;

    }


    surface->getCanvas()->drawImage(bm.asImage(), 0, 0);

    return true;

}


#if defined(SK_BUILD_FOR_LIBFUZZER)

extern "C" int LLVMFuzzerTestOneInput(const uint8_t *data, size_t size) {

    if (size > 10240) {

        return 0;

    }

    Fuzz fuzz(data, size);

    uint8_t sampleSize;

    fuzz.nextRange(&sampleSize, 1, 64);

    FuzzAndroidCodec(fuzz.remainingData(), fuzz.remainingSize(), sampleSize);

    return 0;

}

#endif

options
const char * options
Definition: CommonFlagsConfig.cpp:43

info
static void info(const char *fmt,...) SK_PRINTF_LIKE(1
Definition: DM.cpp:213

FuzzAndroidCodec
bool FuzzAndroidCodec(const uint8_t *fuzzData, size_t fuzzSize, uint8_t sampleSize)
Definition: FuzzAndroidCodec.cpp:17

Fuzz.h

SkAndroidCodec.h

SkBitmap.h

SkCanvas.h

SkGainmapInfo.h

SkStream.h

SkSurface.h

Fuzz
Definition: Fuzz.h:24

SkAndroidCodec::MakeFromStream
static std::unique_ptr< SkAndroidCodec > MakeFromStream(std::unique_ptr< SkStream >, SkPngChunkReader *=nullptr)
Definition: SkAndroidCodec.cpp:206

SkBitmap
Definition: SkBitmap.h:59

SkBitmap::asImage
sk_sp< SkImage > asImage() const
Definition: SkBitmap.cpp:645

SkBitmap::rowBytes
size_t rowBytes() const
Definition: SkBitmap.h:238

SkBitmap::getPixels
void * getPixels() const
Definition: SkBitmap.h:283

SkBitmap::info
const SkImageInfo & info() const
Definition: SkBitmap.h:139

SkBitmap::tryAllocPixels
bool tryAllocPixels(const SkImageInfo &info, size_t rowBytes)
Definition: SkBitmap.cpp:271

SkCodec::kIncompleteInput
@ kIncompleteInput
Definition: SkCodec.h:84

SkCodec::kSuccess
@ kSuccess
Definition: SkCodec.h:80

SkCodec::kErrorInInput
@ kErrorInInput
Definition: SkCodec.h:91

SkMemoryStream::MakeDirect
static std::unique_ptr< SkMemoryStream > MakeDirect(const void *data, size_t length)
Definition: SkStream.cpp:310

LLVMFuzzerTestOneInput
int LLVMFuzzerTestOneInput(const uint8_t *Data, size_t Size)
Definition: dart_libfuzzer.cc:85

surface
VkSurfaceKHR surface
Definition: main.cc:49

result
GAsyncResult * result
Definition: fl_text_input_plugin.cc:106

SkSurfaces::Raster
SK_API sk_sp< SkSurface > Raster(const SkImageInfo &imageInfo, size_t rowBytes, const SkSurfaceProps *surfaceProps)
Definition: SkSurface_Raster.cpp:186

flutter::size
it will be possible to load the file into Perfetto s trace viewer disable asset Prevents usage of any non test fonts unless they were explicitly Loaded via prefetched default font Indicates whether the embedding started a prefetch of the default font manager before creating the engine run In non interactive keep the shell running after the Dart script has completed enable serial On low power devices with low core running concurrent GC tasks on threads can cause them to contend with the UI thread which could potentially lead to jank This option turns off all concurrent GC activities domain network JSON encoded network policy per domain This overrides the DisallowInsecureConnections switch Embedder can specify whether to allow or disallow insecure connections at a domain level old gen heap size
Definition: switches.h:259

skvx::isfinite
SINT bool isfinite(const Vec< N, T > &v)
Definition: SkVx.h:1003

SkAndroidCodec::AndroidOptions
Definition: SkAndroidCodec.h:205

SkGainmapInfo
Definition: SkGainmapInfo.h:43

SkGainmapInfo::fDisplayRatioSdr
float fDisplayRatioSdr
Definition: SkGainmapInfo.h:65

SkImageInfo::MakeN32Premul
static SkImageInfo MakeN32Premul(int width, int height)
Definition: SkImageInfo.cpp:157

data
std::shared_ptr< const fml::Mapping > data
Definition: texture_gles.cc:63