/src/ghostpdl/base/slzwd.c

Source (jump to first uncovered line)
/* Copyright (C) 2001-2023 Artifex Software, Inc.
   All Rights Reserved.

   This software is provided AS-IS with no warranty, either express or
   implied.

   This software is distributed under license and may not be copied,
   modified or distributed except as expressly authorized under the terms
   of the license contained in the file LICENSE in this distribution.

   Refer to licensing information at http://www.artifex.com or contact
   Artifex Software, Inc.,  39 Mesa Street, Suite 108A, San Francisco,
   CA 94129, USA, for further information.
*/


/* LZW decoding filter */
#include "stdio_.h"   /* includes std.h */
#include "gdebug.h"
#include "strimpl.h"
#include "slzwx.h"

/* ------ LZWDecode ------ */

/********************************************************/
/* LZW routines are based on:                           */
/* Dr. Dobbs Journal --- Oct. 1989.                     */
/* Article on LZW Data Compression by Mark R. Nelson    */
/********************************************************/

/* Define the special codes in terms of code_escape, which is */
/* 1 << InitialCodeLength. */
#define code_reset (code_escape + 0)
#define code_eod (code_escape + 1)
#define code_0 (code_escape + 2)  /* first assignable code */

struct lzw_decode_s {
    byte datum;
    byte len;     /* length of code */
    ushort prefix;    /* code to be prefixed */
};

gs_private_st_simple(st_lzw_decode, lzw_decode, "lzw_decode");
/* We can use a simple type as the element type, */
/* because there are no pointers to enumerate or relocate. */
#define st_lzw_decode_element st_lzw_decode
#define lzw_decode_max 4096  /* must be 4096 */

/* Initialize LZWDecode filter */
/* We separate out the reset function for some non-stream clients. */
static int
s_LZWD_reset(stream_state * st)
{
    stream_LZW_state *const ss = (stream_LZW_state *) st;
    register lzw_decode *dc = ss->table.decode;
    register int i;
    uint code_escape = 1 << ss->InitialCodeLength;

    ss->bits_left = 0;
    ss->bytes_left = 0;
    ss->next_code = code_0;
    ss->code_size = ss->InitialCodeLength + 1;
    ss->prev_code = -1;
    ss->copy_code = -1;
    dc[code_reset].len = 255;
    dc[code_eod].len = 255;
    for (i = 0; i < code_escape; i++, dc++)
        dc->datum = i, dc->len = 1, dc->prefix = code_eod;
    return 0;
}
static int
s_LZWD_init(stream_state * st)
{
    stream_LZW_state *const ss = (stream_LZW_state *) st;
    lzw_decode *dc =
    gs_alloc_struct_array(st->memory, lzw_decode_max + 1,
                          lzw_decode, &st_lzw_decode_element,
                          "LZWDecode(init)");

    if (dc == 0)
        return ERRC;
/****** WRONG ******/
    ss->table.decode = dc;
    ss->min_left = 1;
    return s_LZWD_reset(st);
}

/* Process a buffer */
static int
s_LZWD_process(stream_state * st, stream_cursor_read * pr,
               stream_cursor_write * pw, bool last)
{
    stream_LZW_state *const ss = (stream_LZW_state *) st;
    register const byte *p = pr->ptr;
    register byte *q = pw->ptr;

#ifdef DEBUG
    byte *q0 = q;

#endif
    const byte *rlimit = pr->limit; /* constant pointer */
    byte *wlimit = pw->limit; /* constant pointer */
    int status = 0;
    int code = ss->copy_code;
    int prev_code = ss->prev_code;
    uint prev_len = ss->prev_len;
    byte bits = ss->bits;
    int bits_left = ss->bits_left;
    int bytes_left = ss->bytes_left;
    int code_size = ss->code_size;
    int code_mask;
    int switch_code;
    int next_code = ss->next_code;
    lzw_decode *table = ss->table.decode; /* constant pointer */
    lzw_decode *dc_next = table + next_code;  /* invariant */
    lzw_decode *dc;
    int code_escape = 1 << ss->InitialCodeLength;
    int eod = code_eod;
    bool low_order = ss->FirstBitLowOrder;
    bool old_tiff = ss->OldTiff;
    uint len;
    int c;
    byte b;
    byte *q1;

    if_debug2m('w', ss->memory, "[w]process decode: code_size=%d next_code=%d\n",
               code_size, next_code);
#define set_code_size()\
  code_mask = (1 << code_size) - 1,\
  switch_code = code_mask + 1 - ss->EarlyChange
    set_code_size();
    if (!ss->BlockData)
        bytes_left = rlimit - p + 2; /* never stop for bytes_left */
    /* If we are in the middle of copying a string, */
    /* do some more now. */
    if (code >= 0) {
        int rlen = ss->copy_left;
        int wlen = wlimit - q;
        int n = len = min(rlen, wlen);

        c = code;
        ss->copy_left = rlen -= len;
        if_debug3m('W', ss->memory, "[W]copying 0x%x, %d byte(s) out of %d left\n",
                   code, len, rlen + len);
        while (rlen)
            c = table[c].prefix,
                rlen--;
        q1 = q += len;
        n = len;
        while (--n >= 0) {
            *q1-- = (dc = &table[c])->datum;
            c = dc->prefix;
        }
        if (ss->copy_left) { /* more to do */
            pw->ptr = q;
            return 1;
        }
        ss->copy_code = -1;
        len = ss->copy_len;
        /* Retrieve the first byte of the code just copied. */
        if (c == eod) {   /* We just copied the entire code, */
            /* so the byte we want is immediately available. */
            b = q1[1];
        } else {   /* We have to scan to the beginning of the code. */
            for (; c != eod; c = table[c].prefix)
                b = (byte) c;
        }
        goto add;
    }
    while (1) /* Loop while we have data to handle */
    {
        if (code_size > bits_left) {
            if (bytes_left == 0) {
                if (p == rlimit)
                    goto out;
                bytes_left = *++p;
                if_debug1m('W', ss->memory, "[W]block count %d\n", bytes_left);
                if (bytes_left == 0) {
                    status = EOFC;
                    goto out;
                }
                continue;
            }
            if (low_order)
                code = bits >> (8 - bits_left);
            else
                code = (uint) bits << (code_size - bits_left);
            if (bits_left + 8 < code_size) { /* Need 2 more data bytes */
                if (bytes_left == 1) {
                    if (rlimit - p < 3)
                        goto out;
                    bytes_left = p[2];
                    if_debug1m('W', ss->memory, "[W]block count %d\n",
                               bytes_left);
                    if (bytes_left == 0) {
                        status = EOFC;
                        goto out;
                    }
                    bytes_left++;
                    bits = p[1];
                    p++;
                } else {
                    if (rlimit - p < 2)
                        goto out;
                    bits = p[1];
                }
                if (low_order)
                    code += (uint) bits << bits_left;
                else
                    code += (uint) bits << (code_size - 8 - bits_left);
                bits_left += 8;
                bits = p[2];
                p += 2;
                bytes_left -= 2;
            } else {
                if (p == rlimit)
                    goto out;
                bits = *++p;
                bytes_left--;
            }
            if (low_order)
                code += (uint) bits << bits_left,
                    bits_left += 8 - code_size;
            else
                bits_left += 8 - code_size,
                    code += bits >> bits_left;
        } else {
            if (low_order)
                code = bits >> (8 - bits_left),
                    bits_left -= code_size;
            else
                bits_left -= code_size,
                    code = bits >> bits_left;
        }
        code &= code_mask;
        if_debug2m('W', ss->memory, "[W]reading 0x%x,%d\n", code, code_size);
        /*
         * There is an anomalous case where a code S is followed
         * immediately by another occurrence of the S string.
         * In this case, the next available code will be defined as
         * S followed by the first character of S, and will be
         * emitted immediately after the code S.  We have to
         * recognize this case specially, by noting that the code is
         * equal to next_code.
         */
        if (code >= next_code) {
            if ((code > next_code) || (prev_code < 0)) {
#ifdef DEBUG
                mlprintf3(ss->memory, "[W]code = %d > next_code = %d  or prev_code = %d < 0\n",
                          code, next_code, prev_code);
#endif
                status = ERRC;
                goto out;
            }
            /* Fabricate the entry for the code.  It will be */
            /* overwritten immediately, of course. */
            for (c = prev_code; c != eod; c = table[c].prefix)
                dc_next->datum = c;
            len = prev_len + 1;
            dc_next->len = min(len, 255);
            dc_next->prefix = prev_code;
            if_debug3m('w', ss->memory, "[w]decoding anomalous 0x%x=0x%x+%c\n",
                       next_code, prev_code, dc_next->datum);
        }
        /* See if there is enough room for the code. */
        while (1) /* Loop while we have codes to handle */
        {
            len = table[code].len;
            if (len == 255) { /* Check for special code (reset or end). */
                /* We set their lengths to 255 to avoid doing */
                /* an extra check in the normal case. */
                if (code == code_reset) {
                    if_debug1m('w', ss->memory, "[w]reset: next_code was %d\n",
                               next_code);
                    next_code = code_0;
                    dc_next = table + code_0;
                    code_size = ss->InitialCodeLength + 1;
                    set_code_size();
                    prev_code = -1;
                    goto loop;
                } else if (code == eod) {
                    status = EOFC;
                    goto out;
                }
                /* The code length won't fit in a byte, */
                /* compute it the hard way. */
                for (c = code, len = 0; c != eod; len++)
                    c = table[c].prefix;
                if_debug2m('w', ss->memory, "[w]long code %d, length=%d\n", code, len);
            }
            if (wlimit - q < len) {
                ss->copy_code = code;
                ss->copy_left = ss->copy_len = len;
                status = 1;
                goto out;
            }
            /* Copy the string to the buffer (back to front). */
            /* Optimize for short codes, which are the most frequent. */
            dc = &table[code];
            switch (len) {
                default:
                {
                    byte *q1 = q += len;

                    c = code;
                    do {
                        *q1-- = (dc = &table[c])->datum;
                    }
                    while ((c = dc->prefix) != eod);
                    b = q1[1];
                    break;
                }
                case 3:
                    q[3] = dc->datum;
                    dc = &table[dc->prefix];
                case 2:
                    q[2] = dc->datum;
                    dc = &table[dc->prefix];
                case 1:
                    q[1] = b = dc->datum;
                    q += len;
            }
  add:        /* Add a new entry to the table */
            if (prev_code >= 0) {
                /*
                 * Unfortunately, we have to check for next_code ==
                 * lzw_decode_max every time: just checking at power
                 * of 2 boundaries stops us one code too soon.
                 */
                if (!old_tiff && next_code == lzw_decode_max) {
                    /*
                     * A few anomalous files have one data item too many before the
                     * reset code.  We think this is a bug in the application that
                     * produced the files, but Acrobat accepts the files, so we do
                     * too.
                     */
                    if (!ss->BlockData) { /* don't do this for GIF */
                        if (bits_left < 8 && p >= rlimit && last) {
                            /* We're at EOD. */
                            goto out;
                        }
                        if (bits_left + ((rlimit - p) << 3) < code_size) {
                            /*
                             * We need more data to decide whether a reset is next.
                             * Return an error if we cannot get more.
                             */
                            if (last)
                                status = ERRC;
                            goto out;
                        }
                        if (low_order) {
                            code = bits >> (8 - bits_left);
                            code += (bits = *++p) << bits_left;
                            if (bits_left + 8 < code_size)
                                code += (bits = *++p) << (bits_left + 8);
                        } else {
                            code = bits & ((1 << bits_left) - 1);
                            code = (code << 8) + (bits = *++p);
                            if (bits_left + 8 < code_size)
                                code = (code << 8) + (bits = *++p);
                            code >>= (bits_left - code_size) & 7;
                        }
                        bits_left = (bits_left - code_size) & 7;
                        if (code == code_reset)
                            continue; /* Loop back to handle the reset */
                    }
                    status = ERRC;
                    goto out;
                }
                if (next_code < lzw_decode_max) {
                    dc_next->datum = b; /* added char of string */
                    dc_next->len = min(prev_len, 254) + 1;
                    dc_next->prefix = prev_code;
                    dc_next++;
                    if_debug4m('W', ss->memory, "[W]adding 0x%x=0x%x+%c(%d)\n",
                               next_code, prev_code, b, min(len, 255));
                }
                if (++next_code == switch_code) { /* Crossed a power of 2. */
                    /* We have to make a strange special check for */
                    /* reaching the end of the code space. */
                    if (next_code < lzw_decode_max - 1) {
                        code_size++;
                        set_code_size();
                        if_debug2m('w', ss->memory, "[w]crossed power of 2: new code_size=%d, next_code=%d\n",
                                   code_size, next_code);
                    }
                }
            }
            break; /* No more codes to handle */
        }
        prev_code = code;
        prev_len = len;
  loop: {}
    } /* Loop back to the top */
  out:pr->ptr = p;
    pw->ptr = q;
    ss->code_size = code_size;
    ss->prev_code = prev_code;
    ss->prev_len = prev_len;
    ss->bits = bits;
    ss->bits_left = bits_left;
    ss->bytes_left = bytes_left;
    ss->next_code = next_code;
    if_debug3m('w', ss->memory, "[w]decoded %d bytes, prev_code=%d, next_code=%d\n",
               (int)(q - q0), prev_code, next_code);
    return status;
}

/* Stream template */
const stream_template s_LZWD_template =
{&st_LZW_state, s_LZWD_init, s_LZWD_process, 3, 1, s_LZW_release,
 s_LZW_set_defaults, s_LZWD_reset
};

Coverage Report

Created: 2025-06-10 06:56

Line	Count	Source (jump to first uncovered line)
1		/* Copyright (C) 2001-2023 Artifex Software, Inc.
2		All Rights Reserved.
3
4		This software is provided AS-IS with no warranty, either express or
5		implied.
6
7		This software is distributed under license and may not be copied,
8		modified or distributed except as expressly authorized under the terms
9		of the license contained in the file LICENSE in this distribution.
10
11		Refer to licensing information at http://www.artifex.com or contact
12		Artifex Software, Inc., 39 Mesa Street, Suite 108A, San Francisco,
13		CA 94129, USA, for further information.
14		*/
15
16
17		/* LZW decoding filter */
18		#include "stdio_.h" /* includes std.h */
19		#include "gdebug.h"
20		#include "strimpl.h"
21		#include "slzwx.h"
22
23		/* ------ LZWDecode ------ */
24
25		/********************************************************/
26		/* LZW routines are based on: */
27		/* Dr. Dobbs Journal --- Oct. 1989. */
28		/* Article on LZW Data Compression by Mark R. Nelson */
29		/********************************************************/
30
31		/* Define the special codes in terms of code_escape, which is */
32		/* 1 << InitialCodeLength. */
33	114	#define code_reset (code_escape + 0)
34	2.66k	#define code_eod (code_escape + 1)
35	217	#define code_0 (code_escape + 2) /* first assignable code */
36
37		struct lzw_decode_s {
38		byte datum;
39		byte len; /* length of code */
40		ushort prefix; /* code to be prefixed */
41		};
42
43		gs_private_st_simple(st_lzw_decode, lzw_decode, "lzw_decode");
44		/* We can use a simple type as the element type, */
45		/* because there are no pointers to enumerate or relocate. */
46		#define st_lzw_decode_element st_lzw_decode
47	29.2k	#define lzw_decode_max 4096 /* must be 4096 */
48
49		/* Initialize LZWDecode filter */
50		/* We separate out the reset function for some non-stream clients. */
51		static int
52		s_LZWD_reset(stream_state * st)
53	9	{
54	9	stream_LZW_state const ss = (stream_LZW_state ) st;
55	9	register lzw_decode *dc = ss->table.decode;
56	9	register int i;
57	9	uint code_escape = 1 << ss->InitialCodeLength;
58
59	9	ss->bits_left = 0;
60	9	ss->bytes_left = 0;
61	9	ss->next_code = code_0;
62	9	ss->code_size = ss->InitialCodeLength + 1;
63	9	ss->prev_code = -1;
64	9	ss->copy_code = -1;
65	9	dc[code_reset].len = 255;
66	9	dc[code_eod].len = 255;
67	2.31k	for (i = 0; i < code_escape; i++, dc++)
68	2.30k	dc->datum = i, dc->len = 1, dc->prefix = code_eod;
69	9	return 0;
70	9	}
71		static int
72		s_LZWD_init(stream_state * st)
73	9	{
74	9	stream_LZW_state const ss = (stream_LZW_state ) st;
75	9	lzw_decode *dc =
76	9	gs_alloc_struct_array(st->memory, lzw_decode_max + 1,
77	9	lzw_decode, &st_lzw_decode_element,
78	9	"LZWDecode(init)");
79
80	9	if (dc == 0)
81	0	return ERRC;
82		/**** WRONG ****/
83	9	ss->table.decode = dc;
84	9	ss->min_left = 1;
85	9	return s_LZWD_reset(st);
86	9	}
87
88		/* Process a buffer */
89		static int
90		s_LZWD_process(stream_state * st, stream_cursor_read * pr,
91		stream_cursor_write * pw, bool last)
92	347	{
93	347	stream_LZW_state const ss = (stream_LZW_state ) st;
94	347	register const byte *p = pr->ptr;
95	347	register byte *q = pw->ptr;
96
97		#ifdef DEBUG
98		byte *q0 = q;
99
100		#endif
101	347	const byte rlimit = pr->limit; / constant pointer */
102	347	byte wlimit = pw->limit; / constant pointer */
103	347	int status = 0;
104	347	int code = ss->copy_code;
105	347	int prev_code = ss->prev_code;
106	347	uint prev_len = ss->prev_len;
107	347	byte bits = ss->bits;
108	347	int bits_left = ss->bits_left;
109	347	int bytes_left = ss->bytes_left;
110	347	int code_size = ss->code_size;
111	347	int code_mask;
112	347	int switch_code;
113	347	int next_code = ss->next_code;
114	347	lzw_decode table = ss->table.decode; / constant pointer */
115	347	lzw_decode dc_next = table + next_code; / invariant */
116	347	lzw_decode *dc;
117	347	int code_escape = 1 << ss->InitialCodeLength;
118	347	int eod = code_eod;
119	347	bool low_order = ss->FirstBitLowOrder;
120	347	bool old_tiff = ss->OldTiff;
121	347	uint len;
122	347	int c;
123	347	byte b;
124	347	byte *q1;
125
126	347	if_debug2m('w', ss->memory, "[w]process decode: code_size=%d next_code=%d\n",
127	347	code_size, next_code);
128	347	#define set_code_size()\
129	451	code_mask = (1 << code_size) - 1,\
130	451	switch_code = code_mask + 1 - ss->EarlyChange
131	347	set_code_size();
132	347	if (!ss->BlockData)
133	347	bytes_left = rlimit - p + 2; /* never stop for bytes_left */
134		/* If we are in the middle of copying a string, */
135		/* do some more now. */
136	347	if (code >= 0) {
137	321	int rlen = ss->copy_left;
138	321	int wlen = wlimit - q;
139	321	int n = len = min(rlen, wlen);
140
141	321	c = code;
142	321	ss->copy_left = rlen -= len;
143	321	if_debug3m('W', ss->memory, "[W]copying 0x%x, %d byte(s) out of %d left\n",
144	321	code, len, rlen + len);
145	321	while (rlen)
146	0	c = table[c].prefix,
147	0	rlen--;
148	321	q1 = q += len;
149	321	n = len;
150	25.7k	while (--n >= 0) {
151	25.4k	*q1-- = (dc = &table[c])->datum;
152	25.4k	c = dc->prefix;
153	25.4k	}
154	321	if (ss->copy_left) { /* more to do */
155	0	pw->ptr = q;
156	0	return 1;
157	0	}
158	321	ss->copy_code = -1;
159	321	len = ss->copy_len;
160		/* Retrieve the first byte of the code just copied. */
161	321	if (c == eod) { /* We just copied the entire code, */
162		/* so the byte we want is immediately available. */
163	321	b = q1[1];
164	321	} else { /* We have to scan to the beginning of the code. */
165	0	for (; c != eod; c = table[c].prefix)
166	0	b = (byte) c;
167	0	}
168	321	goto add;
169	321	}
170	14.8k	while (1) /* Loop while we have data to handle */
171	14.8k	{
172	14.8k	if (code_size > bits_left) {
173	14.8k	if (bytes_left == 0) {
174	0	if (p == rlimit)
175	0	goto out;
176	0	bytes_left = *++p;
177	0	if_debug1m('W', ss->memory, "[W]block count %d\n", bytes_left);
178	0	if (bytes_left == 0) {
179	0	status = EOFC;
180	0	goto out;
181	0	}
182	0	continue;
183	0	}
184	14.8k	if (low_order)
185	0	code = bits >> (8 - bits_left);
186	14.8k	else
187	14.8k	code = (uint) bits << (code_size - bits_left);
188	14.8k	if (bits_left + 8 < code_size) { /* Need 2 more data bytes */
189	1.87k	if (bytes_left == 1) {
190	0	if (rlimit - p < 3)
191	0	goto out;
192	0	bytes_left = p[2];
193	0	if_debug1m('W', ss->memory, "[W]block count %d\n",
194	0	bytes_left);
195	0	if (bytes_left == 0) {
196	0	status = EOFC;
197	0	goto out;
198	0	}
199	0	bytes_left++;
200	0	bits = p[1];
201	0	p++;
202	1.87k	} else {
203	1.87k	if (rlimit - p < 2)
204	12	goto out;
205	1.85k	bits = p[1];
206	1.85k	}
207	1.85k	if (low_order)
208	0	code += (uint) bits << bits_left;
209	1.85k	else
210	1.85k	code += (uint) bits << (code_size - 8 - bits_left);
211	1.85k	bits_left += 8;
212	1.85k	bits = p[2];
213	1.85k	p += 2;
214	1.85k	bytes_left -= 2;
215	12.9k	} else {
216	12.9k	if (p == rlimit)
217	7	goto out;
218	12.9k	bits = *++p;
219	12.9k	bytes_left--;
220	12.9k	}
221	14.8k	if (low_order)
222	0	code += (uint) bits << bits_left,
223	0	bits_left += 8 - code_size;
224	14.8k	else
225	14.8k	bits_left += 8 - code_size,
226	14.8k	code += bits >> bits_left;
227	14.8k	} else {
228	0	if (low_order)
229	0	code = bits >> (8 - bits_left),
230	0	bits_left -= code_size;
231	0	else
232	0	bits_left -= code_size,
233	0	code = bits >> bits_left;
234	0	}
235	14.8k	code &= code_mask;
236	14.8k	if_debug2m('W', ss->memory, "[W]reading 0x%x,%d\n", code, code_size);
237		/*
238		* There is an anomalous case where a code S is followed
239		* immediately by another occurrence of the S string.
240		* In this case, the next available code will be defined as
241		* S followed by the first character of S, and will be
242		* emitted immediately after the code S. We have to
243		* recognize this case specially, by noting that the code is
244		* equal to next_code.
245		*/
246	14.8k	if (code >= next_code) {
247	10.1k	if ((code > next_code) \|\| (prev_code < 0)) {
248		#ifdef DEBUG
249		mlprintf3(ss->memory, "[W]code = %d > next_code = %d or prev_code = %d < 0\n",
250		code, next_code, prev_code);
251		#endif
252	6	status = ERRC;
253	6	goto out;
254	6	}
255		/* Fabricate the entry for the code. It will be */
256		/* overwritten immediately, of course. */
257	564k	for (c = prev_code; c != eod; c = table[c].prefix)
258	554k	dc_next->datum = c;
259	10.1k	len = prev_len + 1;
260	10.1k	dc_next->len = min(len, 255);
261	10.1k	dc_next->prefix = prev_code;
262	10.1k	if_debug3m('w', ss->memory, "[w]decoding anomalous 0x%x=0x%x+%c\n",
263	10.1k	next_code, prev_code, dc_next->datum);
264	10.1k	}
265		/* See if there is enough room for the code. */
266	14.8k	while (1) /* Loop while we have codes to handle */
267	14.8k	{
268	14.8k	len = table[code].len;
269	14.8k	if (len == 255) { /* Check for special code (reset or end). */
270		/* We set their lengths to 255 to avoid doing */
271		/* an extra check in the normal case. */
272	105	if (code == code_reset) {
273	104	if_debug1m('w', ss->memory, "[w]reset: next_code was %d\n",
274	104	next_code);
275	104	next_code = code_0;
276	104	dc_next = table + code_0;
277	104	code_size = ss->InitialCodeLength + 1;
278	104	set_code_size();
279	104	prev_code = -1;
280	104	goto loop;
281	104	} else if (code == eod) {
282	1	status = EOFC;
283	1	goto out;
284	1	}
285		/* The code length won't fit in a byte, */
286		/* compute it the hard way. */
287	0	for (c = code, len = 0; c != eod; len++)
288	0	c = table[c].prefix;
289	0	if_debug2m('w', ss->memory, "[w]long code %d, length=%d\n", code, len);
290	0	}
291	14.7k	if (wlimit - q < len) {
292	321	ss->copy_code = code;
293	321	ss->copy_left = ss->copy_len = len;
294	321	status = 1;
295	321	goto out;
296	321	}
297		/* Copy the string to the buffer (back to front). */
298		/* Optimize for short codes, which are the most frequent. */
299	14.4k	dc = &table[code];
300	14.4k	switch (len) {
301	11.7k	default:
302	11.7k	{
303	11.7k	byte *q1 = q += len;
304
305	11.7k	c = code;
306	617k	do {
307	617k	*q1-- = (dc = &table[c])->datum;
308	617k	}
309	617k	while ((c = dc->prefix) != eod);
310	11.7k	b = q1[1];
311	11.7k	break;
312	0	}
313	492	case 3:
314	492	q[3] = dc->datum;
315	492	dc = &table[dc->prefix];
316	1.29k	case 2:
317	1.29k	q[2] = dc->datum;
318	1.29k	dc = &table[dc->prefix];
319	2.70k	case 1:
320	2.70k	q[1] = b = dc->datum;
321	2.70k	q += len;
322	14.4k	}
323	14.7k	add: /* Add a new entry to the table */
324	14.7k	if (prev_code >= 0) {
325		/*
326		* Unfortunately, we have to check for next_code ==
327		* lzw_decode_max every time: just checking at power
328		* of 2 boundaries stops us one code too soon.
329		*/
330	14.6k	if (!old_tiff && next_code == lzw_decode_max) {
331		/*
332		* A few anomalous files have one data item too many before the
333		* reset code. We think this is a bug in the application that
334		* produced the files, but Acrobat accepts the files, so we do
335		* too.
336		*/
337	0	if (!ss->BlockData) { /* don't do this for GIF */
338	0	if (bits_left < 8 && p >= rlimit && last) {
339		/* We're at EOD. */
340	0	goto out;
341	0	}
342	0	if (bits_left + ((rlimit - p) << 3) < code_size) {
343		/*
344		* We need more data to decide whether a reset is next.
345		* Return an error if we cannot get more.
346		*/
347	0	if (last)
348	0	status = ERRC;
349	0	goto out;
350	0	}
351	0	if (low_order) {
352	0	code = bits >> (8 - bits_left);
353	0	code += (bits = *++p) << bits_left;
354	0	if (bits_left + 8 < code_size)
355	0	code += (bits = *++p) << (bits_left + 8);
356	0	} else {
357	0	code = bits & ((1 << bits_left) - 1);
358	0	code = (code << 8) + (bits = *++p);
359	0	if (bits_left + 8 < code_size)
360	0	code = (code << 8) + (bits = *++p);
361	0	code >>= (bits_left - code_size) & 7;
362	0	}
363	0	bits_left = (bits_left - code_size) & 7;
364	0	if (code == code_reset)
365	0	continue; /* Loop back to handle the reset */
366	0	}
367	0	status = ERRC;
368	0	goto out;
369	0	}
370	14.6k	if (next_code < lzw_decode_max) {
371	14.6k	dc_next->datum = b; /* added char of string */
372	14.6k	dc_next->len = min(prev_len, 254) + 1;
373	14.6k	dc_next->prefix = prev_code;
374	14.6k	dc_next++;
375	14.6k	if_debug4m('W', ss->memory, "[W]adding 0x%x=0x%x+%c(%d)\n",
376	14.6k	next_code, prev_code, b, min(len, 255));
377	14.6k	}
378	14.6k	if (++next_code == switch_code) { /* Crossed a power of 2. */
379		/* We have to make a strange special check for */
380		/* reaching the end of the code space. */
381	0	if (next_code < lzw_decode_max - 1) {
382	0	code_size++;
383	0	set_code_size();
384	0	if_debug2m('w', ss->memory, "[w]crossed power of 2: new code_size=%d, next_code=%d\n",
385	0	code_size, next_code);
386	0	}
387	0	}
388	14.6k	}
389	14.7k	break; /* No more codes to handle */
390	14.7k	}
391	14.7k	prev_code = code;
392	14.7k	prev_len = len;
393	14.8k	loop: {}
394	14.8k	} /* Loop back to the top */
395	347	out:pr->ptr = p;
396	347	pw->ptr = q;
397	347	ss->code_size = code_size;
398	347	ss->prev_code = prev_code;
399	347	ss->prev_len = prev_len;
400	347	ss->bits = bits;
401	347	ss->bits_left = bits_left;
402	347	ss->bytes_left = bytes_left;
403	347	ss->next_code = next_code;
404	347	if_debug3m('w', ss->memory, "[w]decoded %d bytes, prev_code=%d, next_code=%d\n",
405	347	(int)(q - q0), prev_code, next_code);
406	347	return status;
407	26	}
408
409		/* Stream template */
410		const stream_template s_LZWD_template =
411		{&st_LZW_state, s_LZWD_init, s_LZWD_process, 3, 1, s_LZW_release,
412		s_LZW_set_defaults, s_LZWD_reset
413		};