keejef
/
session-ios
mirror of https://github.com/oxen-io/session-ios
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
master
dev
voice-calls-2
voice-calls
authentication
2.5.0
2.4.5
2.4.4
2.4.3
2.4.2
2.4.1
2.4.0
2.3.2
2.3.1
2.3.0
2.2.14
2.2.13
2.2.12
2.2.11
2.2.10
2.2.9
2.2.6
2.2.4
2.2.2
2.2.1
2.2.0
2.1.1
2.0.3
2.0.2
2.0.1
2.0.0
1.0.0-alpha.1
audit-2
audit
2.8.0
2.7.4
2.7.3
2.7.2
2.7.1
2.7.0
2.6.3
2.6.2
2.6.1
2.6.0
2.2.8
2.2.7
2.2.5
2.2.3
2.1.0
1.9.7
1.9.6
1.9.5
1.9.4
1.9.3
1.9.1
1.9.0
1.8.3
1.8.2
1.8.1
1.8.0
1.7.8
1.7.7
1.7.6
1.7.5
1.7.4
1.7.3
1.7.2
1.7.0
1.6.5
1.6.4
1.6.3
1.6.2
1.6.1
1.6.0
1.5.3
1.5.2
1.5.1-beta
1.5.0-beta
1.5.0
1.4.7
1.4.6
1.4.5
1.4.4
1.4.3
1.4.2
1.4.0-beta
1.4.0
1.3.0-alpha.1
1.3.0
1.2.6
1.2.5
1.2.4
1.2.3
1.2.1
1.2.0-alpha.2
1.2.0-alpha.1
1.2.0
1.13.0
1.12.9
1.12.8
1.12.7
1.12.6
1.12.5
1.12.4
1.12.2
1.12.1
1.11.9
1.11.8
1.11.7
1.11.6
1.11.5
1.11.4
1.11.3
1.11.24
1.11.23
1.11.22
1.11.21
1.11.20
1.11.2
1.11.19
1.11.18
1.11.17
1.11.16
1.11.15
1.11.14
1.11.13
1.11.12
1.11.11
1.11.10
1.11.1
1.11.0
1.10.2
1.10.1
1.10.0
1.1.0-alpha.4
1.1.0-alpha.3
1.1.0-alpha.2
1.1.0-alpha.1
1.1.0
1.0.8
1.0.7
1.0.6
1.0.5
1.0.4
1.0.3
1.0.2
1.0.1
1.0.0-alpha.3
1.0.0-alpha.2
1.0.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '6e144ec9b7'
${ noResults }
session-ios/SessionUtilitiesKit/Media/Data+Image.swift

155 lines
6.3 KiB
Swift
Raw Normal View History Unescape Escape

Further work on SessionMessagingKit migrations Added migrations for contacts and started working through thread migration (have contact and closed group threads migrating) Deprecated usage of ECKeyPair in the migrations (want to be able to remove Curve25519Kit in the future)
3 years ago
// Copyright © 2022 Rangeproof Pty Ltd. All rights reserved.
import Foundation
import ImageIO
public extension Data {
var isValidImage: Bool {
let imageFormat: ImageFormat = self.guessedImageFormat
let isAnimated: Bool = (imageFormat == .gif)
let maxFileSize: UInt = (isAnimated ?
OWSMediaUtils.kMaxFileSizeAnimatedImage :
OWSMediaUtils.kMaxFileSizeImage
)
return (
count < maxFileSize &&
isValidImage(mimeType: nil, format: imageFormat) &&
hasValidImageDimensions(isAnimated: isAnimated)
)
}
var guessedImageFormat: ImageFormat {
let twoBytesLength: Int = 2
guard count > twoBytesLength else { return .unknown }
var bytes: [UInt8] = [UInt8](repeating: 0, count: twoBytesLength)
self.copyBytes(to: &bytes, from: (self.startIndex..<self.startIndex.advanced(by: twoBytesLength)))
switch (bytes[0], bytes[1]) {
case (0x47, 0x49): return .gif
case (0x89, 0x50): return .png
case (0xff, 0xd8): return .jpeg
case (0x42, 0x4d): return .bmp
case (0x4D, 0x4D): return .tiff // Motorola byte order TIFF
case (0x49, 0x49): return .tiff // Intel byte order TIFF
default: return .unknown
}
}
// Parse the GIF header to prevent the "GIF of death" issue.
//
// See: https://blog.flanker017.me/cve-2017-2416-gif-remote-exec/
// See: https://www.w3.org/Graphics/GIF/spec-gif89a.txt
var hasValidGifSize: Bool {
let signatureLength: Int = 3
let versionLength: Int = 3
let widthLength: Int = 2
let heightLength: Int = 2
let prefixLength: Int = (signatureLength + versionLength)
let bufferLength: Int = (signatureLength + versionLength + widthLength + heightLength)
guard count > bufferLength else { return false }
var bytes: [UInt8] = [UInt8](repeating: 0, count: bufferLength)
self.copyBytes(to: &bytes, from: (self.startIndex..<self.startIndex.advanced(by: bufferLength)))
let gif87APrefix: [UInt8] = [0x47, 0x49, 0x46, 0x38, 0x37, 0x61]
let gif89APrefix: [UInt8] = [0x47, 0x49, 0x46, 0x38, 0x39, 0x61]
guard bytes.starts(with: gif87APrefix) || bytes.starts(with: gif89APrefix) else {
return false
}
let width: UInt = (UInt(bytes[prefixLength]) | (UInt(bytes[prefixLength + 1]) << 8))
let height: UInt = (UInt(bytes[prefixLength + 2]) | (UInt(bytes[prefixLength + 3]) << 8))
// We need to ensure that the image size is "reasonable"
// We impose an arbitrary "very large" limit on image size
// to eliminate harmful values
let maxValidSize: UInt = (1 << 18)
return (width > 0 && width < maxValidSize && height > 0 && height < maxValidSize)
}
func hasValidImageDimensions(isAnimated: Bool) -> Bool {
guard
let dataPtr: CFData = CFDataCreate(kCFAllocatorDefault, self.bytes, self.count),
let imageSource = CGImageSourceCreateWithData(dataPtr, nil)
else { return false }
return Data.hasValidImageDimension(source: imageSource, isAnimated: isAnimated)
}
func isValidImage(mimeType: String?, format: ImageFormat) -> Bool {
// Don't trust the file extension; iOS (e.g. UIKit, Core Graphics) will happily
// load a .gif with a .png file extension
//
// Instead, use the "magic numbers" in the file data to determine the image format
//
// If the image has a declared MIME type, ensure that agrees with the
// deduced image format
switch format {
case .unknown: return false
case .png: return (mimeType == nil || mimeType == OWSMimeTypeImagePng)
case .jpeg: return (mimeType == nil || mimeType == OWSMimeTypeImageJpeg)
case .gif:
guard hasValidGifSize else { return false }
return (mimeType == nil || mimeType == OWSMimeTypeImageGif)
case .tiff:
return (
mimeType == nil ||
mimeType == OWSMimeTypeImageTiff1 ||
mimeType == OWSMimeTypeImageTiff2
)
case .bmp:
return (
mimeType == nil ||
mimeType == OWSMimeTypeImageBmp1 ||
mimeType == OWSMimeTypeImageBmp2
)
}
}
static func hasValidImageDimension(source: CGImageSource, isAnimated: Bool) -> Bool {
guard let properties = CGImageSourceCopyPropertiesAtIndex(source, 0, nil) as? [CFString: Any] else { return false }
guard let width = properties[kCGImagePropertyPixelWidth] as? Double else { return false }
guard let height = properties[kCGImagePropertyPixelHeight] as? Double else { return false }
// The number of bits in each color sample of each pixel. The value of this key is a CFNumberRef
guard let depthBits = properties[kCGImagePropertyDepth] as? UInt else { return false }
// This should usually be 1.
let depthBytes: CGFloat = ceil(CGFloat(depthBits) / 8.0)
// The color model of the image such as "RGB", "CMYK", "Gray", or "Lab"
// The value of this key is CFStringRef
guard
let colorModel = properties[kCGImagePropertyColorModel] as? String,
(
colorModel != (kCGImagePropertyColorModelRGB as String) ||
colorModel != (kCGImagePropertyColorModelGray as String)
)
else { return false }
// We only support (A)RGB and (A)Grayscale, so worst case is 4.
let worseCastComponentsPerPixel: CGFloat = 4
let bytesPerPixel: CGFloat = (worseCastComponentsPerPixel * depthBytes)
let expectedBytePerPixel: CGFloat = 4
let maxValidImageDimension: CGFloat = CGFloat(isAnimated ?
OWSMediaUtils.kMaxAnimatedImageDimensions :
OWSMediaUtils.kMaxStillImageDimensions
)
let maxBytes: CGFloat = (maxValidImageDimension * maxValidImageDimension * expectedBytePerPixel)
let actualBytes: CGFloat = (width * height * bytesPerPixel)
return (actualBytes <= maxBytes)
}
}