Ticket #3167 (closed defect: fixed)

Opened 4 years ago

Last modified 4 years ago

mapserver defective JPEG code

Reported by: warmerdam Owned by: sdlime
Priority: normal Milestone: 5.6 release
Component: MapServer C Library Version: unspecified
Severity: normal Keywords: jpeg
Cc:

Description

Hello Frank

While updating packages for the new libjpeg version 7 I got hint from Debian maintainer about defective JPEG code in your mapserver package, version 5.4.2.

In file mapraster.c, function drawJPEG, the following code sequence 

  /* muck with scaling */
  if(MS_MIN(skipx, skipy) >= 8)
    cinfo.scale_denom = 8;
  else
    if(MS_MIN(skipx, skipy) >= 4)
      cinfo.scale_denom = 4;
    else
      if(MS_MIN(skipx, skipy) >= 2)
	cinfo.scale_denom = 2;

should be replaced with 

  /* muck with scaling */
  cinfo.scale_num = 1;
  if(MS_MIN(skipx, skipy) >= 8)
    cinfo.scale_denom = 8;
  else
    if(MS_MIN(skipx, skipy) >= 4)
      cinfo.scale_denom = 4;
    else
      if(MS_MIN(skipx, skipy) >= 2)
	cinfo.scale_denom = 2;

i.e. you just add the statement cinfo.scale_num = 1; there.

This addition will work with older and newer versions of the library.

The implicit assumption of the given code that cinfo.scale_num is initialized with 1 by the JPEG library is no longer true for versions 7 and later! Version 7 initializes this field (and the other) with 8, and version 8 and later will initialize the fields with the (variable from 1 to 16) block size of the given JPEG file. (Note that the default resulting scaling factor remains 1 in any case.)

The usual recommendation for versions up to 6 has always been that "scale_num" and "scale_denom" be set *simultaneously* by the calling application. Applications following this recommendation will not suffer an incompatibility with newer JPEG library versions. Newer applications (written for JPEG library versions 7 and later) MAY choose to set only one of both fields, because the initialization defaults are now depending on the input file and are specified as mentioned above (see also  http://jpegclub.org/djpeg/).

The given correction code simply retains the same behaviour with new JPEG library versions as with old JPEG library versions. The code may later be revised to utilize the more flexible scaling choices of v7 and later, but there is no need to do this now.

IJG JPEG 7 is available at the usual place:  http://www.ijg.org .

Regards Guido Vollbeding Organizer Independent JPEG Group

Change History

Changed 4 years ago by warmerdam

  • status changed from new to closed
  • resolution set to fixed
  • milestone set to 5.6 release

Corrected in trunk (r9440), will appear in beta4.

Note that this code is now virtual never used and so it is assumed not to be a major problem.

Note: See TracTickets for help on using tickets.