Skip to content

fix: issue of corrupted PNG file. #174

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
deepin-bot merged 1 commit into from
Jan 5, 2026
Merged

fix: issue of corrupted PNG file. #174

deepin-bot merged 1 commit into from
Jan 5, 2026

Conversation

@lichaofan2008
Copy link
Contributor

@lichaofan2008 lichaofan2008 commented Jan 5, 2026

Some corrupted PNG files will trigger error messages during parsing, but data is still read from them, and we process them following the normal procedure.
某些已损坏的PNG文件解析时会报错,但同时也读取到了数据,我们按正常流程处理。

Bug: https://pms.uniontech.com//bug-view-346475.html

@lichaofan2008
fix: issue of corrupted PNG file.
f9974f0 
Some corrupted PNG files will trigger error messages during parsing, but data is still read from them, and we process them following the normal procedure.
某些已损坏的PNG文件解析时会报错,但同时也读取到了数据,我们按正常流程处理。

Bug: https://pms.uniontech.com//bug-view-346475.html
@deepin-ci-robot
Copy link

deepin-ci-robot commented Jan 5, 2026

deepin pr auto review

我来对这个代码修改进行审查:

  1. 代码逻辑分析:
    这段代码是在处理图片读取逻辑。主要修改是增加了日志输出,并改变了图片读取的方式,从直接赋值改为使用指针参数读取。

  2. 存在的问题:

a) 逻辑错误:

if (readerF.read(&try_res)) {
    qInfo() << "img read success after can read, file:" << path;
} else {
    qWarning() << "img read failed after can read, file:" << path;
}

这里有个严重的逻辑问题:即使read()返回false,代码也没有进行错误处理,而是继续执行。根据注释说"某些已损坏的PNG文件这里会返回false,但同时也读取到了数据",这种处理方式是不安全的,因为:

  • 可能使用了不完整的图片数据
  • 没有验证图片数据的完整性
  • 可能导致后续处理出现问题

b) 代码冗余:
增加了过多的日志输出,这些日志在生产环境中可能会影响性能,而且有些信息并不是必要的。

c) 错误处理不完整:

  • 没有在read()失败时设置errorMsg
  • 没有在read()失败时返回false
  • 没有对try_res的有效性进行检查
  1. 改进建议:
if (readerF.canRead()) {
    qInfo() << "Attempting to read image file:" << path;
    if (readerF.read(&try_res)) {
        // 验证读取的图片是否有效
        if (!try_res.isNull()) {
            qInfo() << "Successfully read image file:" << path;
        } else {
            errorMsg = "Read returned true but image is null: " + path;
            return false;
        }
    } else {
        errorMsg = "Failed to read image: " + readerF.errorString() + format;
        qWarning() << errorMsg;
        return false;
    }
}
  1. 性能考虑:
  • 移除不必要的日志输出
  • 在release版本中可以考虑使用条件编译来控制日志输出
  • 添加图片有效性检查,避免使用损坏的数据
  1. 安全考虑:
  • 必须验证读取的图片数据是否有效
  • 对于损坏的图片文件应该明确返回错误
  • 需要确保不会使用未初始化或部分损坏的图片数据
  1. 其他建议:
  • 考虑添加文件大小限制,防止处理过大的图片文件
  • 可以添加图片格式白名单,只处理支持的格式
  • 考虑添加超时机制,防止处理损坏文件时卡死

这些改进将使代码更加健壮和安全,同时保持良好的性能。

@deepin-ci-robot
Copy link

deepin-ci-robot commented Jan 5, 2026

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: lichaofan2008, max-lvs

The full list of commands accepted by this bot can be found here.

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@lichaofan2008
Copy link
Contributor Author

lichaofan2008 commented Jan 5, 2026

/merge

@deepin-bot deepin-bot bot merged commit 39afac5 into linuxdeepin:develop/eagle Jan 5, 2026
20 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@max-lvs max-lvs max-lvs approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@lichaofan2008 @deepin-ci-robot @max-lvs