dd/d4d/xnuimagefuzzer_8m_source.html

/*!

 *  @file xnuimagefuzzer.m

 *  @brief XNU Image Fuzzer

 *  @author David Hoyt

 *  @date 01 JUN 2024

 *  @version 1.8.1

 *

 *  This program is free software: you can redistribute it and/or modify

 *  it under the terms of the GNU General Public License as published by

 *  the Free Software Foundation, either version 3 of the License, or

 *  (at your option) any later version.

 *

 *  This program is distributed in the hope that it will be useful,

 *  but WITHOUT ANY WARRANTY; without even the implied warranty of

 *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the

 *  GNU General Public License for more details.

 *

 *  You should have received a copy of the GNU General Public License

 *  along with this program. If not, see <http://www.gnu.org/licenses/>.

 *

 *  @section CHANGES

 *  - 26/11/2023, h02332: Initial commit

 *  - 21/02/2024, h02332: Refactor Programming Mistakes

 *  - 21/02/2024, h02332: PermaLink https://srd.cx/xnu-image-fuzzer/

 *  - 01/06/2024, h02332: Syntax Changes for Documentation Tools

 *

 *  @section ROADMAP

 *  - Grayscale Implementation

 *  - ICC Color Profiles.

 */


#pragma mark - Headers


/*!

* @brief Core and external libraries necessary for the fuzzer functionality.

*

* @details This section includes the necessary headers for the Foundation framework, UIKit, Core Graphics,

* standard input/output, standard library, memory management, mathematical functions,

* Boolean type, floating-point limits, and string functions. These libraries support

* image processing, UI interaction, and basic C operations essential for the application.

*/

#import <Foundation/Foundation.h>

#import <UIKit/UIKit.h>

#import <CoreGraphics/CoreGraphics.h>

#import "AppDelegate.h"

#import <os/log.h>

#import <os/signpost.h>

#include <stdio.h>

#include <stdlib.h>

#include <sys/mman.h>

#include <math.h>

#include <stdbool.h>

#include <float.h>

#include <string.h>

#include <stdint.h>

#include <sys/sysctl.h>

#import <ImageIO/ImageIO.h>

#import <UniformTypeIdentifiers/UniformTypeIdentifiers.h> // For UTTypePNG


#pragma mark - Verbose Logging


static int verboseLogging = 0; // 1 enables detailed logging, 0 disables it.


#pragma mark - Constants


/*!

 * @brief Defines constants for general application configuration.

 *

 * This section includes definitions for constants used throughout the application to control its behavior and configuration. These constants are pivotal for ensuring the application operates within defined parameters and accesses system resources correctly.

 *

 * - `ALL`: A special flag used to indicate an operation applies to all items or states. Useful for functions that require a broad application of their logic.

 * - `MAX_PERMUTATION`: Defines the upper limit on the number of permutations that can be applied in image processing tasks. This constant helps in preventing excessive processing time and resource consumption.

 * - `COMM_PAGE64_BASE_ADDRESS`: The base memory address for the comm page, which is a reserved area of memory used by the system to store variables that are accessed frequently.

 * - `COMM_PAGE_CPU_CAPABILITIES64`: An offset from `COMM_PAGE64_BASE_ADDRESS` that points to the CPU capabilities. Useful for quickly determining the hardware capabilities of the system.

 *

 * ## Example Usage:

 * @code

 * if (operationMode == ALL) {

 *     // Apply operation to all items

 * }

 *

 * int permutations = MAX_PERMUTATION;

 * uint64_t commPageAddress = COMM_PAGE64_BASE_ADDRESS;

 * uint64_t cpuCapabilitiesAddress = COMM_PAGE_CPU_CAPABILITIES64;

 * @endcode

 *

 * @note These constants are designed to be used across various components of the application, providing a centralized point of reference for important values and system parameters.

 */

#define ALL -1 // Special flag for operations applicable to all items or states.

#define MAX_PERMUTATION 12 // Maximum permutations in image processing.

#define COMM_PAGE64_BASE_ADDRESS (0x0000000FFFFFC000ULL)

#define COMM_PAGE_CPU_CAPABILITIES64 (COMM_PAGE64_BASE_ADDRESS + 0x010)

#define MAX_PERMUTATION 12 // Maximum permutations in image processing.

#ifdef __arm64__

#define COMM_PAGE64_BASE_ADDRESS        (0x0000000FFFFFC000ULL)

#elif defined(__x86_64__)

// Adjust this base address for x86_64 architectures as necessary

// #define COMM_PAGE64_BASE_ADDRESS        (0x00007fffffe00000ULL)

#endif


#define COMM_PAGE_VERSION               (COMM_PAGE64_BASE_ADDRESS + 0x01E)

#define COMM_PAGE_NCPUS                 (COMM_PAGE64_BASE_ADDRESS + 0x022)

#define COMM_PAGE_CACHE_LINESIZE        (COMM_PAGE64_BASE_ADDRESS + 0x026)

#define COMM_PAGE_SCHED_GEN             (COMM_PAGE64_BASE_ADDRESS + 0x028)

#define COMM_PAGE_MEMORY_PRESSURE       (COMM_PAGE64_BASE_ADDRESS + 0x02c)

#define COMM_PAGE_SPIN_COUNT            (COMM_PAGE64_BASE_ADDRESS + 0x030)

#define COMM_PAGE_KDEBUG_ENABLE         (COMM_PAGE64_BASE_ADDRESS + 0x044)

#define COMM_PAGE_ATM_DIAGNOSTIC_CONFIG (COMM_PAGE64_BASE_ADDRESS + 0x048)

#define COMM_PAGE_BOOTTIME_USEC         (COMM_PAGE64_BASE_ADDRESS + 0x0C8)

#define COMM_PAGE_ACTIVE_CPUS           (COMM_PAGE64_BASE_ADDRESS + 0x034)

#define COMM_PAGE_PHYSICAL_CPUS         (COMM_PAGE64_BASE_ADDRESS + 0x035)

#define COMM_PAGE_LOGICAL_CPUS          (COMM_PAGE64_BASE_ADDRESS + 0x036)

#define COMM_PAGE_MEMORY_SIZE           (COMM_PAGE64_BASE_ADDRESS + 0x038)

#define COMM_PAGE_CPUFAMILY             (COMM_PAGE64_BASE_ADDRESS + 0x040)

#define COMM_PAGE_CPU_CAPABILITIES64    (COMM_PAGE64_BASE_ADDRESS + 0x010)


#pragma mark - Color Definitions


/*!

 * @brief Provides ANSI color codes for enhancing console output readability.

 *

 * @details Use these definitions to add color to console logs, improving the distinction between different types of messages. Each macro wraps a given string with the ANSI code for a specific color and automatically resets the color to default after the string. This ensures that only the intended text is colored, without affecting subsequent console output.

 *

 * - `MAG(string)`: Magenta colored text.

 * - `BLUE(string)`: Blue colored text.

 * - `RED(string)`: Red colored text for errors or warnings.

 * - `WHT(string)`: White colored text.

 * - `GRN(string)`: Green colored text for success messages.

 * - `YEL(string)`: Yellow colored text for cautionary messages.

 * - `CYN(string)`: Cyan colored text for informational messages.

 * - `HWHT(string)`: High-intensity white colored text.

 * - `NORMAL_COLOR(string)`: Resets text color to default console color.

 * - `RESET_COLOR`: ANSI code to reset text color to default.

 *

 * ## Example Usage:

 * @code

 * NSLog(@"%@", RED("Error: Invalid input"));

 * NSLog(@"%@", GRN("Operation completed successfully"));

 * @endcode

 *

 * @note The effectiveness and appearance of these color codes can vary based on the terminal or console application used. Ensure your development and deployment environments support ANSI color codes.

 */

#define _XOPEN_SOURCE

#define MAG(string)  "\x1b[0;35m" string RESET_COLOR

#define BLUE(string) "\x1b[34m" string RESET_COLOR

#define RED(string)  "\x1b[31m" string RESET_COLOR

#define WHT(string)  "\x1b[0;37m" string RESET_COLOR

#define GRN(string)  "\x1b[0;32m" string RESET_COLOR

#define YEL(string)  "\x1b[0;33m" string RESET_COLOR

#define CYN(string)  "\x1b[0;36m" string RESET_COLOR

#define HWHT(string) "\x1b[0;97m" string RESET_COLOR

#define NORMAL_COLOR(string) "\x1B[0m" string RESET_COLOR

#define RESET_COLOR "\x1b[0m"


#pragma mark - Injection Strings Configuration


#pragma mark - Injection Strings Configuration


/*!

 * @brief Configures robust strings for security testing within the application.

 *

 * These strings are tailored to simulate a variety of inputs aimed at testing the application's resilience against common and uncommon vulnerabilities. They include tests for SQL injections, XSS, buffer overflows, and more.

 *

 * - `INJECT_STRING_1` to `INJECT_STRING_10`: Each string targets different aspects of security handling, from special character processing to injection attacks.

 *

 * `NUMBER_OF_STRINGS`: Denotes the total number of defined injection strings, aiding in their application across varied test scenarios.

 *

 * ## Example Usage:

 * @code

 * for (int i = 0; i < NUMBER_OF_STRINGS; i++) {

 *     testFunctionWithInjectionString(INJECT_STRINGS[i]);

 * }

 * @endcode

 *

 * @note Use these strings in a controlled environment to ensure they help identify potential security flaws without causing unintended harm.

 */

#define INJECT_STRING_1 "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA" // Test buffer overflow.

#define INJECT_STRING_2 "<script>console.error('XNU Image Fuzzer');</script>" // Test for XSS.

#define INJECT_STRING_3 "' OR ''='" // SQL injection.

#define INJECT_STRING_4 "%d %s %d %s" // Format string vulnerabilities.

#define INJECT_STRING_5 "XNU Image Fuzzer" // Regular input for control.

#define INJECT_STRING_6 "123456; DROP TABLE users" // SQL command injection.

#define INJECT_STRING_7 "!@#$%^&*()_+=" // Special characters.

#define INJECT_STRING_8 "..//..//..//win" // Path traversal.

#define INJECT_STRING_9 "\0\0\0" // Null byte injection.

#define INJECT_STRING_10 "<?xml version=\"1.0\"?><!DOCTYPE replace [<!ENTITY example \"XNUImageFuzzer\"> ]><userInfo><firstName>XNUImageFuzzer<&example;></firstName></userInfo>" // XXE injection.

#define NUMBER_OF_STRINGS 10 // Total injection strings count.


// Array for iteration and application in tests.


char* injectStrings[NUMBER_OF_STRINGS] = {

    INJECT_STRING_1,

    INJECT_STRING_2,

    INJECT_STRING_3,

    INJECT_STRING_4,

    INJECT_STRING_5,

    INJECT_STRING_6,

    INJECT_STRING_7,

    INJECT_STRING_8,

    INJECT_STRING_9,

    INJECT_STRING_10

};


#pragma mark - Debugging Macros


/*!

 * @brief Provides macros for enhanced logging and assertions during development.

 *

 * This section defines two key macros designed to assist in the debugging process, ensuring that developers can log detailed information and perform assertions with customized messages. These macros are especially useful in DEBUG builds, where additional context can significantly aid in diagnosing issues.

 *

 * ## Features:

 * - `DebugLog`: This macro is used for logging detailed debug information, including the name of the current function and the line number from where it's called. It's instrumental in tracing the execution flow or pinpointing the location of specific events or states in the code.

 * - `AssertWithMessage`: This macro allows for the execution of assertions that, upon failure, log a custom message. It's valuable for validating assumptions within the code and providing immediate feedback if those assumptions are violated.

 *

 * ## Usage:

 *

 * ### DebugLog

 * Use the `DebugLog` macro to log messages with additional context, such as the function name and line number. This macro is only active in DEBUG builds, helping to avoid the potential exposure of sensitive information in release builds.

 *

 * @code

 * DebugLog(@"An informative debug message with context.");

 * @endcode

 */

#ifdef DEBUG

#define DebugLog(fmt, ...) NSLog((@"%s [Line %d] " fmt), __PRETTY_FUNCTION__, __LINE__, ##__VA_ARGS__)

#else

#define DebugLog(...)

#endif


#pragma mark - Assertion

/*!

 * @brief Asserts a condition and logs a custom message upon failure.

 *

 * Use the `AssertWithMessage` macro to assert conditions and provide immediate feedback with a custom message if the condition is false. This macro logs the assertion and message before performing a standard assert.

 *

 * @param condition The condition to evaluate.

 * @param message The custom message to log if the assertion fails.

 *

 * @example Usage:

 * @code

 * AssertWithMessage(x > 0, "x must be greater than 0");

 * @endcode

 */


#define AssertWithMessage(condition, message, ...) \

    do { \

        if (!(condition)) { \

            NSLog((@"Assertion failed: %s " message), #condition, ##__VA_ARGS__); \

            assert(condition); \

        } \

    } while(0)


#pragma mark - Date and Time Utilities


/*!

 * @brief Formats the current date and time into a standardized, human-readable string.

 *

 * @return NSString representing the current date and time, formatted according to 'yyyy-MM-dd at HH:mm:ss'.

 *

 * Leverages `NSDateFormatter` to generate a string from the current date (`NSDate`), using the specified format. This encapsulates the process of obtaining a formatted current date and time, abstracting the configuration of `NSDateFormatter`.

 *

 * @example

 * @code

 * NSString *currentDateTimeString = formattedCurrentDateTime();

 * NSLog(@"Current Date and Time: %@", currentDateTimeString);

 * @endcode

 */


NSString* formattedCurrentDateTime(void) {

    NSDateFormatter *dateFormatter = [[NSDateFormatter alloc] init];

    [dateFormatter setDateFormat:@"yyyy-MM-dd HH:mm:ss"];

    NSString *formattedDate = [dateFormatter stringFromDate:[NSDate date]];

    return formattedDate;

}


#pragma mark - Signature


/*!

 * @brief Retrieves a signature from a predefined memory address.

 *

 * This function allocates memory and copies a 16-byte signature from a specified base address in memory,

 * commonly used for retrieving system or application-specific signatures stored in a secure memory region.

 *

 * The memory is allocated with calloc, ensuring all bytes are initialized to zero, including the byte following

 * the signature, effectively null-terminating the string.

 *

 * @return A pointer to a null-terminated string containing the signature. The caller is responsible for freeing

 * this memory using free(). Returns NULL if memory allocation fails.

 *

 * @note This function directly accesses memory and should be used with caution, ensuring that

 * COMM_PAGE64_BASE_ADDRESS points to a valid, accessible memory address to prevent undefined behavior.

 *

 * @example

 * @code

 * char *sig = signature();

 * if (sig) {

 *     printf("Signature: %s\n", sig);

 *     free(sig);

 * } else {

 *     fprintf(stderr, "Failed to retrieve signature.\n");

 * }

 * @endcode

 */


char *signature(void) {

    // Allocate memory using calloc; +1 for null terminator, initializing all bits to zero

    char *signature = calloc(1, 0x10 + 1); // Replaces malloc(0x10 + 1) and initializes memory

    if (!signature) {

        fprintf(stderr, "Error: Failed to allocate memory for signature.\n");

        return NULL;

    }


    // Ensure that COMM_PAGE64_BASE_ADDRESS is valid and not NULL before using memcpy

    const char *base_address = (const char *)COMM_PAGE64_BASE_ADDRESS;

    if (!base_address) {

        fprintf(stderr, "Error: COMM_PAGE64_BASE_ADDRESS is null.\n");

        free(signature);

        return NULL;

    }


    // Copy data safely

    memcpy(signature, base_address, 0x10);


    // No need to explicitly set the null terminator since calloc initializes the memory to zero

    return signature;

}


#pragma mark - iOS Device Information


/*!

 * @brief Logs comprehensive information about the current device.

 *

 * This utility function leverages the `UIDevice` class to access and log a wide range of information about the device on which the application is running. It covers basic device identifiers, operating system details, and battery status, providing a holistic view of the device's configuration and state.

 *

 * The function temporarily enables battery monitoring to retrieve the current battery level and state, supplementing the device information with power status. This could be particularly useful for applications that need to adjust their behavior or performance based on the device's power status.

 *

 * @warning Battery information is specific to iOS and iPadOS devices and might not reflect real-time changes accurately due to system optimizations and power management.

 *

 * @code

 * dumpDeviceInfo();

 * @endcode

 * This example demonstrates how to call dumpDeviceInfo to log device information. This can be particularly useful during development and debugging to understand the environment in which the application is operating.

 *

 * @note Ensure that you check the device's capability to provide battery information and handle any potential inaccuracies in the reported levels and states. Consider the privacy implications of logging and handling the unique identifier for the vendor (identifierForVendor).

 *

 * @see UIDevice for detailed documentation on accessing device properties.

 */


void dumpDeviceInfo(void) {

UIDevice *device = [UIDevice currentDevice];

NSLog(@"Device Information:");

NSLog(@"  Name: %@", device.name);

NSLog(@"  Model: %@", device.model);

NSLog(@"  System Name: %@", device.systemName);

NSLog(@"  System Version: %@", device.systemVersion);

NSLog(@"  Identifier For Vendor: %@", device.identifierForVendor.UUIDString);


device.batteryMonitoringEnabled = YES; // Enable battery monitoring

NSLog(@"  Battery Level: %f", device.batteryLevel * 100); // Convert to percentage

NSString *batteryState;

switch (device.batteryState) {

    case UIDeviceBatteryStateUnknown:

        batteryState = @"Unknown";

        break;

    case UIDeviceBatteryStateUnplugged:

        batteryState = @"Unplugged";

        break;

    case UIDeviceBatteryStateCharging:

        batteryState = @"Charging";

        break;

    case UIDeviceBatteryStateFull:

        batteryState = @"Full";

        break;

    default:

        batteryState = @"Not Available";

        break;

}

NSLog(@"  Battery State: %@", batteryState);

device.batteryMonitoringEnabled = NO; // Disable battery monitoring after fetching information

}


#pragma mark - macOS System Information


/*!

 * @brief Logs system information for macOS devices.

 *

 * This function is specifically designed to fetch and log key pieces of system information for macOS devices, utilizing the `sysctl` interface. It provides insights into the kernel version, hardware model, and CPU type, among others, offering a clear snapshot of the underlying hardware and operating system specifics.

 *

 * ## Key Information Retrieved:

 * - **Kernel Version**: The version of the Darwin kernel the system is running.

 * - **Hardware Model**: The specific model of the macOS device, useful for identifying hardware capabilities.

 * - **CPU Type**: Details about the CPU, including its brand and specifications, which can inform performance expectations and compatibility.

 *

 * ## Usage:

 * This function is tailor-made for macOS environments and can be invoked directly to log the system information to the console:

 * @code

 * dumpMacDeviceInfo();

 * @endcode

 *

 * Example Output:

 * ```

 * System Information:

 * Kernel Version: Darwin 20.3.0

 * Hardware Model: MacBookPro15,1

 * CPU Type: Intel(R) Core(TM) i7-9750H CPU @ 2.60GHz

 * ```

 *

 * @note While this function is designed with macOS in mind, accessing system information via sysctl is a method that could potentially be adapted for other Unix-like systems with appropriate modifications.

 *

 * @see For more in-depth details on using sysctl, refer to the man pages (man sysctl) or the official documentation for the sysctl interface.

 */


void dumpMacDeviceInfo(void) {

    char str[128];

    size_t size = sizeof(str);


    // Query and log the kernel version

    sysctlbyname("kern.osrelease", str, &size, NULL, 0);

    NSLog(@"Kernel Version: %s", str);


    // Reset size for the next sysctlbyname call

    size = sizeof(str);

    // Query and log the hardware model

    sysctlbyname("hw.model", str, &size, NULL, 0);

    NSLog(@"Hardware Model: %s", str);


    // Reset size for the next sysctlbyname call

    size = sizeof(str);

    // Query and log the CPU type

    sysctlbyname("machdep.cpu.brand_string", str, &size, NULL, 0);

    NSLog(@"CPU Type: %s", str);


}


#pragma mark - CPU Cap Strings


/*!

 * @brief Identifies the CPU's supported capabilities.

 *

 * This section enumerates various CPU capabilities and instruction sets that modern processors might support. These capabilities enhance the processor's performance and security features. Identifiers for these capabilities are used to represent specific hardware features and instruction sets, such as Multimedia Extensions, Streaming SIMD Extensions, Advanced Encryption Standard instruction sets, and others.

 *

 * ## Usage:

 * The identifiers provided are used to map the CPU capability bits to human-readable strings. This mapping aids developers and system administrators in understanding the features supported by the CPU on a given device, facilitating optimizations and security enhancements.

 *

 * ## Key Identifiers:

 * - `MMX`: Refers to Multimedia Extensions that enhance multimedia and communication tasks.

 * - `SSE`, `SSE2`, `SSE3`, `SSE4_1`, `SSE4_2`: Streaming SIMD Extensions and their versions, improving performance on floating point and integer operations.

 * - `AES`: Denotes support for the Advanced Encryption Standard instruction set, crucial for fast and secure data encryption.

 * - `AVX1_0`, `AVX2_0`: Advanced Vector Extensions that improve performance for applications requiring high computational throughput.

 * - `BMI1`, `BMI2`: Bit Manipulation Instruction Sets, enhancing the efficiency of certain data processing tasks.

 * - `RTM`: Restricted Transactional Memory, supporting transactional memory synchronization.

 * - `HLE`: Hardware Lock Elision, aimed at improving the performance of lock-based concurrent algorithms.

 * - `ADX`: Multi-Precision Add-Carry Instruction Extensions, useful in cryptographic algorithms.

 * - `RDSEED`, `MPX`, `SGX`: Various security and protection extensions, including random number generation, memory protection, and trusted execution.

 *

 * ## Note:

 * The availability and support for these capabilities are highly dependent on the CPU model and the architecture of the device's processor. Detection and utilization of these features typically require querying through system-specific interfaces or leveraging instruction sets designed for this purpose.

 *

 * @see Consult the documentation for your processor or use system utilities designed to query and report CPU capabilities for detailed information on the supported features.

 */


const char *cpu_cap_strings[] = {

    "MMX", "SSE", "SSE2", "SSE3", "Cache32", "Cache64", "Cache128",

    "FastThreadLocalStorage", "SupplementalSSE3", "64Bit", "SSE4_1", "SSE4_2",

    "AES", "InOrderPipeline", "Slow", "UP", "NumCPUs", "AVX1_0", "RDRAND",

    "F16C", "ENFSTRG", "FMA", "AVX2_0", "BMI1", "BMI2", "RTM", "HLE", "ADX",

    "RDSEED", "MPX", "SGX"

};


#pragma mark - Dump Comm Page


/*!

 * @brief Dumps key communication page details for diagnostic purposes.

 *

 * This function extracts and logs essential details from the system's communication page, such as the signature, version, and number of CPUs, along with CPU capabilities. It utilizes the `READ_COMM_PAGE_VALUE` macro to read values directly from specified memory addresses, facilitating a low-level inspection of system configurations and capabilities.

 *

 * ## Behavior:

 * 1. Retrieves and logs the communication page signature. If the signature cannot be read, logs an error message.

 * 2. Logs the communication page version and number of CPU cores by reading from predefined offsets within the communication page.

 * 3. Enumerates and logs CPU capabilities based on the `COMM_PAGE_CPU_CAPABILITIES64` address. Each capability is checked and logged, indicating whether it is supported.

 *

 * ## Parameters:

 * This function does not take any parameters.

 *

 * ## Return:

 * This function does not return a value.

 *

 * ## Example Output:

 * - `[*] COMM_PAGE_SIGNATURE: <signature_value>` or `[*] COMM_PAGE_SIGNATURE: Error reading signature.`

 * - `[*] COMM_PAGE_VERSION: <version_number>`

 * - `[*] COMM_PAGE_NCPUS: <cpu_count>`

 * - Lists CPU capabilities as true/false based on the current system's hardware configuration.

 *

 * ## Note:

 * - The actual information logged will depend on the specific system and its configuration.

 * - The `READ_COMM_PAGE_VALUE` macro is crucial for the function's operation, casting the specified address to the appropriate type before dereferencing.

 *

 * ## See Also:

 * - `READ_COMM_PAGE_VALUE` macro for how memory addresses are read.

 * - System documentation for the communication page structure and definitions.

 *

 * ### Usage:

 * @code

 * dump_comm_page(); // Logs the communication page details for the current system.

 * @endcode

 */

#define READ_COMM_PAGE_VALUE(type, address) (*((type *)(address)))


void dump_comm_page(void) {

    char *sig = signature();

    if (sig) {

        NSLog(@"[*] COMM_PAGE_SIGNATURE: %s", sig);

        free(sig);

    } else {

        NSLog(@"[*] COMM_PAGE_SIGNATURE: Error reading signature.");

    }


    // Utilizing macro for simplified reading

    NSLog(@"[*] COMM_PAGE_VERSION: %d", READ_COMM_PAGE_VALUE(uint16_t, COMM_PAGE64_BASE_ADDRESS + 0x01E));

    NSLog(@"[*] COMM_PAGE_NCPUS: %d", READ_COMM_PAGE_VALUE(uint8_t, COMM_PAGE64_BASE_ADDRESS + 0x022));

    // Additional comm page details could be added here


    NSLog(@"[*] COMM_PAGE_CPU_CAPABILITIES64:");

    uint64_t cpu_caps = READ_COMM_PAGE_VALUE(uint64_t, COMM_PAGE_CPU_CAPABILITIES64);

    for (int i = 0, shift = 0; i < (int)(sizeof(cpu_cap_strings) / sizeof(char *)); i++) {

        if (i == 16) { // Special handling for NumCPUs

            NSLog(@"\t%s: %d", cpu_cap_strings[i], (int)(cpu_caps >> 16) & 0xFF);

            shift = 24; // Skip to the next relevant bit

            continue;

        }

        NSLog(@"\t%s: %@", cpu_cap_strings[i], (cpu_caps & (1ULL << shift)) ? @"true" : @"false");

        shift++;

    }

    NSLog(@"[*] Done dumping comm page.");

}


#pragma mark - Print Color Function


/*!

 * @brief Prints a message with specified ANSI color to the console.

 *

 * This utility function enhances console log visibility by allowing messages to be printed in different colors. It wraps a provided message with the specified ANSI color code, ensuring the message stands out in the console output. After printing the message, it resets the console color back to its default, maintaining the terminal's readability for subsequent outputs.

 *

 * @param color The ANSI color code that dictates the color of the message. This parameter expects a string representation of ANSI color codes (e.g., "\033[31m" for red).

 * @param message The text message to be printed. This string is the content that will be displayed in the specified color in the console.

 *

 * @note This function relies on the terminal or console's support for ANSI color codes. If the terminal does not support these codes, the message will be printed without color formatting, and escape codes may be visible.

 *

 * ### Example Usage:

 * @code

 * printColored("\033[31m", "Error: File not found.");

 * @endcode

 *

 * This example demonstrates how to use the printColored function to print an error message in red, making it more noticeable in the console output.

 *

 * See Also:

 * ANSI color codes documentation for more information on how colors are represented in terminals.

 */


void printColored(const char* color, const char* message) {

    NSLog(@"%s%s%s", color, message, RESET_COLOR);

}


#pragma mark - Function Prototypes


/*!

 * @brief Prototypes for utility functions used in image processing.

 *

 * @details This section declares functions essential for the image processing pipeline,

 * ranging from path validation to image manipulation and utility operations. These functions

 * facilitate tasks such as validating image paths, loading images from files, applying various

 * image processing permutations, and managing output directories and string hashing.

 *

 * - `isValidImagePath`: Validates the specified image path.

 * - `loadImageFromFile`: Loads an image from the given file path.

 * - `processImage`: Processes the image with a specified permutation algorithm.

 * - Additional utilities include noise application, color inversion, value adjustments, and string hashing.

 *

 * @return Various return types depending on the function's purpose.

 *

 * @note Some functions, such as `processImage`, might modify the input image directly.

 */

BOOL isValidImagePath(NSString *path);

unsigned long hashString(const char* str);

UIImage *loadImageFromFile(NSString *path);

UIImage *loadImageFromFile(NSString *filePath);

// NSString* formattedCurrentDateTime(void);

// NSString *createUniqueDirectoryForSavingImages(void);

NSData* UIImageGIFRepresentation(UIImage *image);

NSData* generateFuzzedImageData(size_t width, size_t height, CFStringRef imageType);

void processImage(UIImage *image, int permutation);

// void performAllImagePermutations(void);

void addAdditiveNoise(float *pixel);

void applyMultiplicativeNoise(float *pixel);

void invertColor(float *pixel);

void applyExtremeValues(float *pixel);

void assignSpecialFloatValues(float *pixel);

void applyColorShift(unsigned char *data, size_t index);

void applyPixelScramble(unsigned char *data, size_t index);

void createBitmapContextStandardRGB(CGImageRef cgImg, int permutation);

void createBitmapContextPremultipliedFirstAlpha(CGImageRef cgImg);

void createBitmapContextNonPremultipliedAlpha(CGImageRef cgImg);

void createBitmapContext16BitDepth(CGImageRef cgImg);

void createBitmapContextGrayscale(CGImageRef cgImg);

void createBitmapContextHDRFloatComponents(CGImageRef cgImg);

void createBitmapContextAlphaOnly(CGImageRef cgImg);

void createBitmapContext1BitMonochrome(CGImageRef cgImg);

void createBitmapContextBigEndian(CGImageRef cgImg);

void createBitmapContextLittleEndian(CGImageRef cgImg);

void createBitmapContext8BitInvertedColors(CGImageRef cgImg);

void createBitmapContext32BitFloat4Component(CGImageRef cgImg);

void applyFuzzingToBitmapContext(unsigned char *rawData, size_t width, size_t height);

void applyEnhancedFuzzingToBitmapContext(unsigned char *rawData, size_t width, size_t height, BOOL verbose);

void logPixelData(unsigned char *rawData, size_t width, size_t height, const char *message, BOOL verbose);

void convertTo1BitMonochrome(unsigned char *rawData, size_t width, size_t height);

void saveMonochromeImage(UIImage *image, NSString *identifier);

// void dumpDeviceInfo(void);

// void dumpMacDeviceInfo(void);

// void dump_comm_page(void);


#pragma mark - IO Handling


#pragma mark - saveFuzzedImage


/*!

 * @brief Saves a modified (fuzzed) UIImage to the documents directory.

 * @details This function takes a UIImage object that has undergone modifications (e.g., fuzzing) and saves it to the documents directory with a unique filename derived from a provided context description. It's designed to facilitate the persistence of images altered through security testing, experimental modifications, or user interactions within an application. The process includes validation of input parameters, generation of a unique filename, and the actual saving of the image in specified formats including PNG, JPEG, and GIF.

 *

 * @param image The modified UIImage object to be saved.

 * @param contextDescription A description of the context in which the image was modified, used to generate a unique file name.

 *

 * @note The function includes several key steps:

 * - **Validation**: Checks `contextDescription` for validity to avoid file path issues.

 * - **Filename Generation**: Creates a unique filename with "fuzzed_image_" prefix and appropriate file extension.

 * - **Directory Retrieval**: Uses `NSSearchPathForDirectoriesInDomains` to find the documents directory, ensuring iOS compatibility.

 * - **File Path Creation**: Combines the directory path with the filename.

 * - **Image Conversion**: Encodes the UIImage as PNG, JPEG, or GIF data.

 * - **File Writing**: Atomically writes the image data to the filesystem.

 * - **Logging**: Outputs the result of the operation for debugging and verification.

 *

 * ### Usage Scenarios:

 * - Ideal for applications that need to save images after applying security-related fuzzing or other modifications.

 * - Supports persisting images modified by user actions in editing or customization features.

 * - Facilitates the creation and storage of a series of programmatically altered images for analysis or review.

 *

 * ### Implementation Notes:

 * - Assumes the UIImage and context description are valid and appropriate for the intended save operation.

 * - Utilizes NSLog for logging, suitable for debugging but may require adaptation for production-level error handling or logging.

 */


void saveFuzzedImage(UIImage *image, NSString *contextDescription) {

    // Ensure contextDescription is valid to prevent file path issues

    if (contextDescription == nil || [contextDescription length] == 0) {

        NSLog(@"Context description is invalid.");

        return;

    }


    // Determine the image format and file extension from contextDescription

    NSString *fileExtension = @"png"; // Default to PNG

    NSData *imageData;


    if ([contextDescription containsString:@"jpeg"] || [contextDescription containsString:@"jpg"]) {

        fileExtension = @"jpg";

        imageData = UIImageJPEGRepresentation(image, 0.9); // Using a JPEG quality factor of 0.9

        NSLog(@"Saving image as JPEG");

    } else if ([contextDescription containsString:@"gif"]) {

        fileExtension = @"gif";

        imageData = UIImageGIFRepresentation(image);

        if (imageData) {

            NSLog(@"Successfully created GIF data");

        } else {

            NSLog(@"Failed to create GIF data");

        }

    } else if ([contextDescription containsString:@"premultipliedfirstalpha"]) {

        // Handle PremultipliedFirstAlpha specific logic here

        imageData = UIImagePNGRepresentation(image);

        NSLog(@"Saving image as PNG with premultipliedfirstalpha");

    } else {

        // Default case handles PNG and other unspecified formats as PNG

        imageData = UIImagePNGRepresentation(image);

        NSLog(@"Saving image as PNG");

    }


    // Generate file name based on the context description

    NSString *fileName = [NSString stringWithFormat:@"fuzzed_image_%@.%@", contextDescription, fileExtension];


    // Fetch the documents directory path

    NSString *documentsDirectory = [NSSearchPathForDirectoriesInDomains(NSDocumentDirectory, NSUserDomainMask, YES) firstObject];

    NSString *filePath = [documentsDirectory stringByAppendingPathComponent:fileName];


    // Save the image data to the file

    BOOL success = [imageData writeToFile:filePath atomically:YES];


    if (success) {

        NSLog(@"Fuzzed image for '%@' context saved to %@", contextDescription, filePath);

    } else {

        NSLog(@"Failed to save fuzzed image for '%@' context", contextDescription);

    }

}


#pragma mark - GIF UIImage


/*!

 * @brief Creates a GIF representation of a UIImage.

 * This custom function handles the conversion of a UIImage to GIF data using the Image I/O framework.

 *

 * @param image The UIImage to be converted.

 * @return NSData containing the GIF representation of the image.

 */


NSData* UIImageGIFRepresentation(UIImage *image) {

    // Check for valid input

    if (!image) {

        NSLog(@"UIImageGIFRepresentation: Invalid image input.");

        return nil;

    }


    // Create a mutable data object to hold the GIF data

    NSMutableData *gifData = [NSMutableData data];


    // Create an image destination for the GIF data

    CGImageDestinationRef destination = CGImageDestinationCreateWithData((CFMutableDataRef)gifData, (__bridge CFStringRef)UTTypeGIF.identifier, 1, NULL);


    if (!destination) {

        NSLog(@"UIImageGIFRepresentation: Failed to create image destination for GIF.");

        return nil;

    }


    // Set GIF properties (e.g., loop count)

    NSDictionary *gifProperties = @{

        (__bridge id)kCGImagePropertyGIFDictionary: @{

            (__bridge id)kCGImagePropertyGIFLoopCount: @0 // 0 means loop forever

        }

    };


    // Add the image to the destination

    CGImageDestinationAddImage(destination, image.CGImage, (__bridge CFDictionaryRef)gifProperties);


    // Finalize the image destination

    if (!CGImageDestinationFinalize(destination)) {

        NSLog(@"UIImageGIFRepresentation: Failed to finalize the GIF image destination.");

        CFRelease(destination);

        return nil;

    }


    CFRelease(destination);

    return gifData;

}


#pragma mark - MonoConversionFunction


/*!

 * @brief Converts image data to 1-bit monochrome using a simple thresholding technique.

 * @details This function iterates over each pixel in the input image data, applying a fixed threshold to determine if a pixel should be black or white in the resulting monochrome image. This is a basic form of binarization, suitable for simplifying images or preparing them for certain types of processing where color is not needed.

 *

 * @param rawData Pointer to the image data.

 * @param width The width of the image in pixels.

 * @param height The height of the image in pixels.

 *

 * ### Example Usage:

 * @code

 * uint8_t *rawData = ...; // Assume this is already allocated and populated with image data

 * size_t width = ...;   // The width of the image

 * size_t height = ...;  // The height of the image

 * convertTo1BitMonochrome(rawData, width, height);

 * @endcode

 */


extern void convertTo1BitMonochrome(unsigned char *rawData, size_t width, size_t height) {

    size_t bytesPerRow = (width + 7) / 8; // Calculate the bytes per row for 1bpp

    unsigned char threshold = 127; // Midpoint threshold for black/white conversion


    for (size_t y = 0; y < height; y++) {

        for (size_t x = 0; x < width; x++) {

            size_t byteIndex = y * bytesPerRow + x / 8;

            unsigned char pixelValue = rawData[y * width + x]; // Assuming rawData is in a format where each pixel is a byte

            unsigned char bit = (pixelValue > threshold) ? 1 : 0; // Apply threshold


            rawData[byteIndex] &= ~(1 << (7 - (x % 8))); // Clear the bit

            rawData[byteIndex] |= (bit << (7 - (x % 8))); // Set the bit based on threshold

        }

    }

}


#pragma mark - MonoSavingFunction


/*!

 * @brief Saves a monochrome UIImage with a specified identifier to the documents directory.

 * @details This function saves the provided UIImage object as a PNG file in the application's documents directory, using the specified identifier as part of the file name. It's useful for persisting processed images for later retrieval, sharing, or comparison.

 *

 * @param image The UIImage to save.

 * @param identifier A unique identifier for the image file.

 *

 * ### Example Usage:

 * @code

 * UIImage *monochromeImage = ...; // Assume this is a valid UIImage

 * NSString *identifier = @"example_monochrome_image";

 * saveMonochromeImage(monochromeImage, identifier);

 * @endcode

 */


extern void saveMonochromeImage(UIImage *image, NSString *identifier) {

    NSData *imageData = UIImagePNGRepresentation(image);

    NSString *docsDir = [NSSearchPathForDirectoriesInDomains(NSDocumentDirectory, NSUserDomainMask, YES) firstObject];

    NSString *filePath = [docsDir stringByAppendingPathComponent:[NSString stringWithFormat:@"%@.png", identifier]];


    if ([imageData writeToFile:filePath atomically:YES]) {

        NSLog(@"Saved monochrome image with identifier %@ at %@", identifier, filePath);

    } else {

        NSLog(@"Error saving monochrome image with identifier %@", identifier);

    }

}


#pragma mark - Directory Management


/*!

 * @brief Creates a unique directory for saving images within the documents directory.

 *

 * @details Generates a unique directory name by combining the current date-time stamp and a random component,

 * ensuring uniqueness. This directory is created within the application's documents directory, intended for

 * storing processed images. Useful in scenarios requiring organized storage without naming conflicts, maintaining

 * chronological order. The inclusion of a random component further ensures directory name uniqueness, even when

 * created in rapid succession.

 *

 * @return The path to the newly created unique directory, or nil if an error occurred. This path can be used

 * directly to save files within the new directory.

 */


NSString *createUniqueDirectoryForSavingImages(void) {

    // Initialize date formatter for timestamp

    NSDateFormatter *formatter = [[NSDateFormatter alloc] init];

    formatter.dateFormat = @"yyyy-MM-dd_HH-mm-ss-SSS";


    // Generate unique directory name with current date-time and a random component

    NSString *dateString = [formatter stringFromDate:[NSDate date]];

    uint32_t randomComponent = arc4random_uniform(10000); // Ensures additional uniqueness

    NSString *uniqueDirectoryName = [NSString stringWithFormat:@"%@_%u", dateString, randomComponent];


    // Retrieve path to the documents directory

    NSString *documentsDirectory = [NSSearchPathForDirectoriesInDomains(NSDocumentDirectory, NSUserDomainMask, YES) firstObject];


    // Construct the path for the new unique directory

    NSString *uniqueDirPath = [documentsDirectory stringByAppendingPathComponent:uniqueDirectoryName];


    // Attempt to create the directory

    NSError *error = nil;

    if (![[NSFileManager defaultManager] createDirectoryAtPath:uniqueDirPath withIntermediateDirectories:YES attributes:nil error:&error]) {

        NSLog(@"Error creating directory for saving images: %@", error.localizedDescription);

        return nil; // Return nil in case of failure

    }


    // Return the path of the successfully created directory

    return uniqueDirPath;

}


#pragma mark - Pixel Logging


#pragma mark - Raw Image Data


/*!

 * @brief Logs information about a random set of pixels from an image's raw data.

 *

 * @details Selects a random set of pixels from the provided image data and logs their RGBA components.

 * If verbose logging is enabled, it decodes and logs character data embedded within the pixel values,

 * providing insights into the image's content or image processing results. Assumes RGBA format for pixel data.

 *

 * @param rawData The raw pixel data of the image.

 * @param width The width of the image in pixels.

 * @param height The height of the image in pixels.

 * @param message A contextual message or identifier for the log.

 * @param verboseLogging Enables detailed information logging, including decoded data, when set to true.

 *

 * @note Ensure the provided raw data correctly corresponds to the specified width and height to avoid out-of-bounds access.

 */


void logPixelData(unsigned char *rawData, size_t width, size_t height, const char *message, BOOL verboseLogging) {

    if (!rawData || width == 0 || height == 0) {

        NSLog(@"%s - Invalid data or dimensions. Logging aborted.", message);

        return;

    }


    const int numberOfPixelsToLog = 5; // Number of random pixels to log


    NSLog(@"%s - %s logging %d random pixels:", message, verboseLogging ? "Verbose" : "Basic", numberOfPixelsToLog);


    for (int i = 0; i < numberOfPixelsToLog; i++) {

        unsigned int randomX = arc4random_uniform((unsigned int)width);

        unsigned int randomY = arc4random_uniform((unsigned int)height);

        size_t pixelIndex = (randomY * width + randomX) * 4; // Index for RGBA


        if (pixelIndex + 3 < width * height * 4) {

            unsigned char r = rawData[pixelIndex];

            unsigned char g = rawData[pixelIndex + 1];

            unsigned char b = rawData[pixelIndex + 2];

            unsigned char a = rawData[pixelIndex + 3];


            NSLog(@"%s - Pixel[%u, %u]: R=%u, G=%u, B=%u, A=%u", message, randomX, randomY, r, g, b, a);


            if (verboseLogging) {

                // Decoding embedded character data from pixel values as an example

                unsigned char decodedChar = (r & 1) | ((g & 1) << 1) | ((b & 1) << 2);

                NSLog(@"%s - Decoded data from Pixel[%u, %u]: %c", message, randomX, randomY, decodedChar);

            }

        } else {

            NSLog(@"%s - Out of bounds pixel access prevented at [%u, %u].", message, randomX, randomY);

        }

    }

}


#pragma mark - Random Image Data


/*!

 * @brief Logs information about a random set of pixels from an image's raw data.

 * @details This function is designed to offer a quick diagnostic look at the content of an image by logging the color values of a randomly selected set of pixels. It's particularly useful for debugging and for verifying the effects of image processing algorithms. By providing a message or identifier, developers can contextualize the log output, making it easier to track logs related to specific images or operations. The function provides a high-level overview of pixel data without detailed analysis or decoding.

 *

 * @param rawData The raw pixel data of the image. This should be a pointer to the start of the pixel data array.

 * @param width The width of the image in pixels. This is used to calculate the position of pixels within the raw data array.

 * @param height The height of the image in pixels. Along with width, this determines the total number of pixels that can be logged.

 * @param message A message or identifier to include in the log for context. This helps to identify the log output related to specific images or processing steps.

 */


void LogRandomPixelData(unsigned char *rawData, size_t width, size_t height, const char *message) {

    if (!rawData || width == 0 || height == 0) {

        NSLog(@"%s - Invalid data or dimensions. Logging aborted.", message);

        return;

    }


    const int numberOfPixelsToLog = 5; // Number of random pixels to log

    NSLog(@"%s - Logging %d random pixels:", message, numberOfPixelsToLog);


    for (int i = 0; i < numberOfPixelsToLog; i++) {

        unsigned int randomX = arc4random_uniform((unsigned int)width);

        unsigned int randomY = arc4random_uniform((unsigned int)height);

        size_t pixelIndex = (randomY * width + randomX) * 4; // Assumes 4 bytes per pixel (RGBA)


        if (pixelIndex + 3 < width * height * 4) {

            NSLog(@"%s - Pixel[%u, %u]: R=%d, G=%d, B=%d, A=%d",

                  message, randomX, randomY,

                  rawData[pixelIndex], rawData[pixelIndex + 1],

                  rawData[pixelIndex + 2], rawData[pixelIndex + 3]);

        } else {

            NSLog(@"%s - Out of bounds pixel access prevented at [%u, %u].", message, randomX, randomY);

        }

    }

}


#pragma mark - Fuzzing Functions


#pragma mark - applyColorShift

/*!

 * @brief Applies a color shift to a specific pixel within the image data.

 * @details This method modifies the RGB values of the specified pixel by randomly increasing or decreasing these values, which can simulate color distortion effects useful in fuzzing tests.

 * @param data The raw image data array.

 * @param index The index of the pixel within the data array where the color shift will be applied.

 */


void applyColorShift(unsigned char *data, size_t index) {

    for (int i = 0; i < 3; i++) { // Affecting RGB channels

        int shift = (arc4random_uniform(2) == 0) ? -15 : 15; // Randomly decide to increase or decrease color value

        int newValue = data[index + i] + shift;

        data[index + i] = (unsigned char)fmax(0, fmin(255, newValue)); // Ensure the new value is within the byte range

    }

}


#pragma mark - Pixel Scramble


/*!

 * @brief Randomly scrambles the RGB values of a pixel.

 * @details This method swaps the values of two RGB channels at the given pixel index, which can help in uncovering issues related to incorrect channel processing or assumptions in color models.

 * @param data The raw image data.

 * @param index The index of the pixel where the RGB channels will be scrambled.

 */


void applyPixelScramble(unsigned char *data, size_t index) {

    unsigned char temp;

    int swapIndex = arc4random_uniform(3); // Choose a random channel to swap with another

    temp = data[index + swapIndex];

    data[index + swapIndex] = data[index + (swapIndex + 1) % 3];

    data[index + (swapIndex + 1) % 3] = temp;

}


#pragma mark - applyEnhancedFuzzingToBitmapContext


/*!

 * @brief Applies enhanced fuzzing techniques to bitmap data.

 *

 * This function targets the robustness of image processing routines by applying a comprehensive set of fuzzing techniques directly to the raw pixel data of a bitmap. Techniques include string injections to simulate security testing scenarios, visual distortions such as inversion, noise addition, random color adjustments, pixel value shifts, contrast modifications, and color swapping under predefined conditions. The goal is to simulate a variety of real-world inputs, both benign and malicious, thereby uncovering potential vulnerabilities and ensuring the image processing system can handle unexpected inputs gracefully.

 *

 * @param rawData Pointer to the raw pixel data of the bitmap, which is modified in place. This data should be in RGBA format, where each pixel is represented by four bytes for red, green, blue, and alpha components.

 * @param width The width of the bitmap in pixels, used to navigate the pixel data array.

 * @param height The height of the bitmap in pixels, indicating the total number of pixel rows in the rawData.

 * @param verboseLogging If enabled (true), the function logs detailed information about each fuzzing action and its effect on the pixel data, facilitating debugging and providing insights into the impact of different fuzzing techniques on the bitmap.

 *

 * @note The rawData buffer is expected to accommodate width * height pixels, each represented by 4 bytes. The function directly modifies this buffer, reflecting the applied fuzzing techniques without returning any value. It serves as a critical tool for enhancing the security and robustness of image processing algorithms by exposing them to a broad spectrum of test conditions.

 */


void applyEnhancedFuzzingToBitmapContext(unsigned char *rawData, size_t width, size_t height, BOOL verboseLogging) {

    if (!rawData || width == 0 || height == 0) {

        NSLog(@"No valid raw data or dimensions available for enhanced fuzzing.");

        return;

    }


    size_t stringIndex = 0;

    size_t injectIndex = 0;

    size_t totalStringsInjected = 0;

    const size_t numFuzzMethods = 8; // Increased number of fuzz methods


    if (verboseLogging) {

        NSLog(@"Starting enhanced fuzzing on bitmap context");

    }


    for (size_t y = 0; y < height; y++) {

        for (size_t x = 0; x < width; x++) {

            size_t pixelIndex = (y * width + x) * 4; // Assuming RGBA format

            int fuzzMethod = arc4random_uniform(numFuzzMethods); // Now selecting from eight methods


            if (totalStringsInjected < NUMBER_OF_STRINGS) {

                if (injectIndex == 0 && verboseLogging) {

                    NSLog(@"Starting injection of string %zu: %s", stringIndex + 1, injectStrings[stringIndex]);

                }


                char *currentString = injectStrings[stringIndex];

                size_t stringLength = strlen(currentString);


                if (injectIndex < stringLength) {

                    // Encode a character into both the MSB and LSB of the pixel data

                    for (int i = 0; i < 3; i++) { // Affecting RGB channels

                        // Encoding into the Least Significant Bit

                        rawData[pixelIndex + i] &= 0xFE; // Clear the least significant bit

                        rawData[pixelIndex + i] |= (currentString[injectIndex] & 0x01); // Set the least significant bit


                        // Encoding into the Most Significant Bit

                        rawData[pixelIndex + i] &= 0x7F; // Clear the most significant bit

                        rawData[pixelIndex + i] |= (currentString[injectIndex] & 0x80); // Set the most significant bit if needed

                    }

                    injectIndex++;

                }


                    if (injectIndex == stringLength) {

                        if (verboseLogging) {

                            NSLog(@"Completed injection of string %zu: %s", stringIndex + 1, currentString);

                        }

                        injectIndex = 0; // Reset the injection index for the next string

                        stringIndex = (stringIndex + 1) % NUMBER_OF_STRINGS; // Cycle through strings

                        totalStringsInjected++;

                   }

                }


            switch (fuzzMethod) {

                case 0: // Inversion

                    if (verboseLogging) {

                        NSLog(@"Inversion applied at Pixel[%zu, %zu]", x, y);

                    }

                    for (int i = 0; i < 3; i++) { // Apply inversion to RGB

                        rawData[pixelIndex + i] = 255 - rawData[pixelIndex + i];

                    }

                    break;

                case 1: // Random noise

                    if (verboseLogging) {

                        NSLog(@"Random noise applied at Pixel[%zu, %zu]", x, y);

                    }

                    for (int i = 0; i < 4; i++) { // Including alpha channel

                        int noise = (arc4random_uniform(101) - 50); // Noise range [-50, 50]

                        int newValue = rawData[pixelIndex + i] + noise;

                        rawData[pixelIndex + i] = (unsigned char)fmax(0, fmin(255, newValue));

                    }

                    break;

                case 2: // Random color

                    if (verboseLogging) {

                        NSLog(@"Random color set at Pixel[%zu, %zu]", x, y);

                    }

                    // Assign random colors to RGB, leaving alpha unchanged

                    for (int i = 0; i < 3; i++) {

                        rawData[pixelIndex + i] = arc4random_uniform(256);

                    }

                    break;

                case 3: // Shift pixel values

                    if (verboseLogging) {

                        NSLog(@"Shift pixel values applied at Pixel[%zu, %zu]", x, y);

                    }

                    // Circular shift right for RGB values

                    unsigned char temp = rawData[pixelIndex + 2]; // Temporarily store the Blue value

                    rawData[pixelIndex + 2] = rawData[pixelIndex + 1]; // Move Green to Blue

                    rawData[pixelIndex + 1] = rawData[pixelIndex]; // Move Red to Green

                    rawData[pixelIndex] = temp; // Move original Blue to Red

                    break;

                case 4: // Extreme contrast adjustment

                    if (verboseLogging) {

                        NSLog(@"Extreme contrast adjustment at Pixel[%zu, %zu]", x, y);

                    }

                    for (int i = 0; i < 3; i++) {

                        rawData[pixelIndex + i] = rawData[pixelIndex + i] < 128 ? 0 : 255;

                    }

                    break;

                case 5: // Conditional color swap

                    if (verboseLogging) {

                        NSLog(@"Conditional color swap at Pixel[%zu, %zu]", x, y);

                    }

                    // Swap Red and Blue based on a simple condition

                    if ((x + y) % 2 == 0) {

                        unsigned char temp = rawData[pixelIndex];

                        rawData[pixelIndex] = rawData[pixelIndex + 2];

                        rawData[pixelIndex + 2] = temp;

                    }

                    break;

                case 6:

                    applyColorShift(rawData, pixelIndex);

                    if (verboseLogging) {

                        NSLog(@"Color Shift applied at Pixel[%zu, %zu]", x, y);

                    }

                    break;

                case 7:

                    applyPixelScramble(rawData, pixelIndex);

                    if (verboseLogging) {

                        NSLog(@"Pixel Scramble applied at Pixel[%zu, %zu]", x, y);

                    }

                    break;

            }

        }

    }


    if (verboseLogging) {

        if (totalStringsInjected == NUMBER_OF_STRINGS) {

            NSLog(@"Successfully injected all %zu strings.", totalStringsInjected);

        } else {

            NSLog(@"Error: Not all strings were successfully injected. Total injected: %zu", totalStringsInjected);

        }

        NSLog(@"Enhanced fuzzing on bitmap context completed.");

    }

}


#pragma mark - applyEnhancedFuzzingToBitmapContextWithFloats


/*!

 * @brief Applies enhanced fuzzing techniques to bitmap data using 32-bit floating-point precision.

 *

 * This function is designed to test the robustness of image processing algorithms by applying a variety of fuzzing techniques to the raw pixel data of a bitmap. It iterates through a predefined set of strings, each dictating a specific fuzzing method based on its hash value. Techniques include additive and multiplicative noise, color inversion, setting extreme values, and applying special floating-point values such as NaN or Infinity. The function aims to uncover potential vulnerabilities by simulating real-world inputs and ensuring that the image processing system can gracefully handle unexpected or malicious inputs.

 *

 * @param rawData Pointer to the raw pixel data of the bitmap, which is modified in place. The data is assumed to be in RGBA format, with each pixel represented by four 32-bit floating-point values for red, green, blue, and alpha components.

 * @param width The width of the bitmap in pixels, used to calculate the location of each pixel in the rawData array.

 * @param height The height of the bitmap in pixels, used along with the width to navigate through the rawData array.

 * @param verboseLogging A boolean value that, when set to YES, enables detailed logging of each fuzzing action and its effects on the pixel data. This facilitates debugging and provides insights into how different fuzzing techniques impact the bitmap.

 *

 * @note The function modifies the rawData buffer in place, reflecting the applied fuzzing techniques. The buffer is expected to accommodate width * height pixels, with each pixel's data represented by four 32-bit floating-point values. It is a critical tool for enhancing the security and robustness of image processing algorithms by exposing them to a broad spectrum of test conditions.

 *

 * ### Example usage:

 * @code

 * float *rawData = ...; // Assume this is already allocated and populated with image data

 * size_t width = ...;   // The width of the image

 * size_t height = ...;  // The height of the image

 * BOOL verboseLogging = YES; // Enable detailed logging

 * applyEnhancedFuzzingToBitmapContextWithFloats(rawData, width, height, verboseLogging);

 * @endcode

 */


void applyEnhancedFuzzingToBitmapContextWithFloats(float *rawData, size_t width, size_t height, BOOL verboseLogging) {

    if (!rawData || width == 0 || height == 0) {

        NSLog(@"Invalid parameters for enhanced fuzzing.");

        return;

    }


    for (int stringIndex = 0; stringIndex < NUMBER_OF_STRINGS; stringIndex++) {

        // Log the start of fuzzing with the specific injection string

        if (verboseLogging) {

            NSLog(@"Starting enhanced fuzzing with injection string %d: %s", stringIndex + 1, injectStrings[stringIndex]);

        }


        // Hash the selected injection string to determine the fuzzing method

        unsigned long hash = hashString(injectStrings[stringIndex]) % 5; // Modulo by 5 to fit our method range


        for (size_t y = 0; y < height; y++) {

            for (size_t x = 0; x < width; x++) {

                size_t pixelIndex = (y * width + x) * 4; // Assuming RGBA format


                // Apply fuzzing based on hash of injection string

                switch (hash) {

                    case 0:

                        // Additive noise

                        for (int i = 0; i < 4; i++) {

                            rawData[pixelIndex + i] += ((float)arc4random_uniform(6) / RAND_MAX * 2.0f - 1.0f); // Noise range [-1, 1] // Noise range [-1, 1]

                        }

                        break;

                    case 1:

                        // Multiplicative noise (scale)

                        for (int i = 0; i < 4; i++) {

                            rawData[pixelIndex + i] *= ((float)arc4random_uniform(6) / RAND_MAX * 2.0f); // Scale range [0, 2]

                        }

                        break;

                    case 2:

                        // Inversion

                        for (int i = 0; i < 3; i++) { // Skipping alpha for inversion

                            rawData[pixelIndex + i] = 1.0f - rawData[pixelIndex + i];

                        }

                        break;

                    case 3:

                        // Extreme values

                        for (int i = 0; i < 4; i++) {

                            rawData[pixelIndex + i] = (arc4random_uniform(6) % 2) ? FLT_MAX : FLT_MIN;

                        }

                        break;

                    case 4:

                        // Special floating-point values

                        for (int i = 0; i < 4; i++) {

                            switch (arc4random_uniform(6) % 3) {

                                case 0: rawData[pixelIndex + i] = NAN; break;

                                case 1: rawData[pixelIndex + i] = INFINITY; break;

                                case 2: rawData[pixelIndex + i] = -INFINITY; break;

                            }

                        }

                        break;

                }

            }

        }


        // Log completion of the fuzzing for the specific injection string

        if (verboseLogging) {

            NSLog(@"Enhanced fuzzing with injection string %d: %s completed", stringIndex + 1, injectStrings[stringIndex]);

        }

    }


    // Final log to indicate completion of all fuzzing processes

    if (verboseLogging) {

        NSLog(@"All enhanced fuzzing processes completed.");

    }

}


#pragma mark - applyEnhancedFuzzingToBitmapContextAlphaOnly


/*!

 * @brief Applies enhanced fuzzing techniques to the alpha channel of bitmap pixel data.

 * @details This function focuses on testing and improving the resilience of image processing routines to handle unusual or extreme alpha values effectively. By manipulating the alpha transparency data in various ways, it simulates edge cases or malicious inputs that could occur in real-world applications. The function employs several fuzzing methods, including alpha inversion, setting random transparency extremes, and introducing noise, to challenge and enhance the robustness of image processing algorithms.

 *

 * @param alphaData Pointer to the alpha channel data of the bitmap context. This buffer contains only the alpha (transparency) values for each pixel, represented by one byte per pixel.

 * @param width The width of the bitmap in pixels, defining the row length in the alpha data array.

 * @param height The height of the bitmap in pixels, indicating the total number of rows in the alpha data.

 * @param verboseLogging When YES, enables detailed logging of each fuzzing operation and its impact on the alpha channel, aiding in debugging and analysis of the fuzzing effects.

 *

 * @note The function iteratively applies fuzzing techniques to each alpha value, directly modifying the `alphaData` buffer to reflect these changes. It includes initial validity checks to ensure that operations are conducted on valid data with positive dimensions, and logs a message before aborting if parameters are found to be invalid. The goal is to ensure that image processing systems are capable of handling a wide range of transparency variations, thereby enhancing both the visual quality and security of applications that rely on such routines.

 */


void applyEnhancedFuzzingToBitmapContextAlphaOnly(unsigned char *alphaData, size_t width, size_t height, BOOL verboseLogging) {

    if (!alphaData || width == 0 || height == 0) {

        NSLog(@"No valid alpha data or dimensions available for enhanced fuzzing.");

        return;

    }


    if (verboseLogging) {

        NSLog(@"Starting enhanced fuzzing on Alpha-only bitmap context");

    }


    for (size_t y = 0; y < height; y++) {

        for (size_t x = 0; x < width; x++) {

            size_t pixelIndex = y * width + x; // Direct index as we're dealing with 1 byte per pixel


            // Randomly decide on a fuzzing method

            switch (arc4random_uniform(3)) { // Example with 3 simple fuzzing methods

                case 0: // Invert alpha value

                    alphaData[pixelIndex] = 255 - alphaData[pixelIndex];

                    break;

                case 1: // Set to fully transparent or fully opaque

                    if (arc4random_uniform(2) == 0) {

                        alphaData[pixelIndex] = 0; // Fully transparent

                    } else {

                        alphaData[pixelIndex] = 255; // Fully opaque

                    }

                    break;

                case 2: // Apply random noise

                    {

                        int noise = (arc4random_uniform(51)) - 25; // Random noise between -25 and 25

                        int newAlpha = (int)alphaData[pixelIndex] + noise;

                        alphaData[pixelIndex] = (unsigned char)fmax(0, fmin(255, newAlpha)); // Clamp between 0 and 255

                    }

                    break;

            }

        }

    }


    if (verboseLogging) {

        NSLog(@"Enhanced fuzzing on Alpha-only bitmap context completed");

    }

}


#pragma mark - applyFuzzingToBitmapContext


/*!

 * @brief Applies fuzzing to the RGB components of each pixel in a bitmap context.

 * @details This function introduces small, random variations to the RGB values of each pixel to test the resilience of image processing algorithms to input data variations. The fuzzing process adjusts the R, G, and B components of each pixel within a specified range, while optionally encoding additional data into the alpha channel of the first row of pixels. This method is useful for evaluating how image processing systems handle slight inconsistencies or errors in visual data.

 *

 * @param rawData Pointer to the bitmap's raw pixel data, modified in-place. Assumes RGBA format, with 4 bytes per pixel. RGB components are randomly adjusted, and the alpha channel of certain pixels may encode additional data.

 * @param width The width of the bitmap in pixels, determining the row length in the data array.

 * @param height The height of the bitmap in pixels, indicating the total number of rows.

 *

 * @note The function iterates over every pixel, applying a random adjustment of -25 to +25 to the RGB values, chosen to introduce noticeable yet non-drastic variations. The alpha channel is generally preserved to maintain transparency, except in the first row where specific pixels might encode data, demonstrating a technique for embedding metadata. This fuzzing aims to reveal how slight data variations affect image processing outcomes, with an optional feature for data encoding that showcases a method for preserving information through image transformations.

 *

 * - Utilizes `arc4random_uniform` for a uniform distribution of fuzz factors, avoiding biases.

 * - Directly modifies the `rawData`, requiring users to back up original data if preservation is needed.

 * - Maintains original transparency for most pixels, focusing visual impact on color variations only.

 */


void applyFuzzingToBitmapContext(unsigned char *rawData, size_t width, size_t height) {

    NSLog(@"Beginning fuzzing operation on bitmap context.");


    for (size_t y = 0; y < height; y++) {

        for (size_t x = 0; x < width; x++) {

            size_t pixelIndex = (y * width + x) * 4; // 4 bytes per pixel (RGBA)


            // Fuzzing each color component (R, G, B) within the range of 0-255

            for (int i = 0; i < 3; i++) { // Looping over R, G, B components

                // Using arc4random_uniform for a more uniform distribution and to avoid modulo bias

                int fuzzFactor = (int)arc4random_uniform(51) - 25; // Random number between -25 and 25

                int newValue = rawData[pixelIndex + i] + fuzzFactor;

                rawData[pixelIndex + i] = (unsigned char) fmax(0, fmin(255, newValue));

            }

            // Alpha (offset + 3) is not altered


            // Optionally, inject encoded data into the alpha channel for testing purposes

            if (x < NUMBER_OF_STRINGS && y == 0) { // Simple method to inject data at the start of the image

                rawData[pixelIndex + 3] = strlen(injectStrings[x]); // Use the length of each string as a simple data point

            }

        }

    }


    NSLog(@"Fuzzing applied to RGB components of the bitmap context. Injection data encoded in the alpha channel of the first row.");

}


#pragma mark - Memory Handling


#pragma mark - debugMemoryHandling


/*!

 * @brief Allocates and deallocates memory chunks using mmap and munmap for debugging.

 *

 * @details This function facilitates memory handling debugging by allocating and then deallocating a predetermined number of memory chunks. It utilizes the mmap and munmap system calls, offering a lower-level look at memory management beyond what high-level languages typically provide. This approach is useful for examining application behavior under various memory conditions and demonstrating memory mapping techniques.

 *

 * - **Allocation**: Allocates 64 chunks of memory, each 64 KB in size, using the MAP_ANONYMOUS and MAP_PRIVATE flags with mmap, simulating a scenario where memory is used but not backed by any file.

 * - **Initialization**: Each allocated chunk is filled with the byte 0x41 ('A'), which can help in identifying how memory content changes over time or remains unaltered after certain operations.

 * - **Deallocation**: Utilizes munmap to free each allocated chunk, ensuring no memory leaks and providing a clean state post-execution.

 *

 * @note This function is instrumental for developers looking to understand or teach memory management intricacies, debug memory allocation issues, or test how their applications respond to specific memory usage patterns. It logs the address of each allocated and subsequently deallocated chunk, enhancing transparency in memory management operations.

 *

 * ### Example Usage:

 * @code

 * // Call debugMemoryHandling to observe memory allocation and deallocation behavior

 * debugMemoryHandling();

 *

 * // Output will include the address of allocated memory chunks and confirmation of their deallocation

 * @endcode

 *

 * - The use of NSLog for logging makes this function readily applicable in macOS or iOS development environments. However, the logging mechanism can be adapted for use in other environments as needed.

 * - The chosen memory chunk size (0x10000 bytes) and the number of chunks (64) can be modified to suit different debugging needs or to test application behavior under various memory load scenarios.

 */


void debugMemoryHandling(void) {

    const size_t sz = 0x10000;

    char* chunks[64] = { NULL };

    for (int i = 0; i < 64; i++) {

        char* chunk = (char *)mmap(0, sz, PROT_READ | PROT_WRITE, MAP_ANONYMOUS | MAP_PRIVATE, -1, 0);

        if (chunk == MAP_FAILED) {

            NSLog(@"Failed to map memory for chunk %d", i);

            continue;

        }

        memset(chunk, 0x41, sz);

        NSLog(@"Chunk @ %p", chunk);

        chunks[i] = chunk;

    }


    for (int i = 0; i < 64; i++) {

        if (chunks[i] != NULL) {

            if (munmap(chunks[i], sz) == -1) {

                NSLog(@"Failed to unmap chunk @ %p", chunks[i]);

            } else {

                NSLog(@"Successfully unmapped chunk @ %p", chunks[i]);

            }

        }

    }

}


#pragma mark - Hash


#pragma mark - Hash String


/*!

 * @brief Computes a hash value for a given string.

 * @details This function implements the djb2 algorithm, a simple and effective hash function for strings. The algorithm iterates over each character in the input string, combining the previous hash value and the current character to produce a new hash. This method is known for its simplicity and decent distribution properties, making it suitable for a variety of hashing needs where extreme cryptographic security is not required.

 *

 * @param str Pointer to the input string to be hashed. The string is assumed to be null-terminated.

 * @return Returns an unsigned long representing the hash value of the input string.

 *

 * @note The hash value is computed using a specific formula: hash * 33 + c, where hash is the current hash value, and c is the ASCII value of the current character. This formula is applied iteratively over each character of the string, starting with an initial hash value of 5381, which is a commonly used starting point for the djb2 algorithm.

 */


unsigned long hashString(const char* str) {

    unsigned long hash = 5381; // Initial value for djb2 algorithm

    int c;


    // Iteratively compute the hash value for each character

    while ((c = *str++)) {

        hash = ((hash << 5) + hash) + c; // hash * 33 + c

    }


    return hash; // Return the computed hash value

}


#pragma mark - Random Images


#pragma mark - performAllImagePermutations


/*!

 * @brief Generates a random image and processes it with all permutation strategies.

 *

 * @details This function defines the dimensions and image type for a generated image,

 * creates the image data, writes it to a temporary file, loads the image, and processes

 * it with permutation -1, indicating all permutations.

 *

 * - **Image Generation**: Creates a random image with specified dimensions and type.

 * - **File Handling**: Writes the generated image data to a temporary file.

 * - **Image Loading**: Loads the generated image from the file.

 * - **Image Processing**: Processes the image with all permutations.

 *

 * @note This function is used when no command-line arguments are provided to automatically

 * generate and process an image.

 */


void performAllImagePermutations(void) {

    // Define dimensions and image type for the generated image

    size_t width = 128;

    size_t height = 128;

    CFStringRef imageType = (__bridge CFStringRef)UTTypePNG.identifier;


    // Generate the fuzzed image data

    NSData *fuzzedImage = generateFuzzedImageData(width, height, imageType);

    NSString *path = @"/tmp/fuzzed_image.png";

    [fuzzedImage writeToFile:path atomically:YES];


    // Load the generated image

    UIImage *image = [UIImage imageWithData:fuzzedImage];

    if (!image) {

        NSLog(@"Failed to load generated image from path: %@", path);

        return;

    }


    // Process the image with permutation -1 (all permutations)

    processImage(image, -1);

}


#pragma mark - generateFuzzedImageData


/*!

 * @brief Generates a random image for fuzzing.

 *

 * @details This function creates a random image with specified width, height, and type,

 * fills it with random data, and returns the generated image data.

 *

 * - **Parameters**:

 *   - width: The width of the generated image.

 *   - height: The height of the generated image.

 *   - imageType: The type of the generated image (e.g., PNG, JPEG).

 *

 * - **Image Data**: Allocates a buffer and fills it with random data.

 * - **Graphics Context**: Creates a bitmap graphics context and generates an image.

 * - **Image Destination**: Adds the image to a destination and finalizes it.

 *

 * @param width The width of the generated image.

 * @param height The height of the generated image.

 * @param imageType The type of the generated image.

 * @return NSData containing the generated image data.

 */


NSData* generateFuzzedImageData(size_t width, size_t height, CFStringRef imageType) {

    size_t bytesPerPixel = 4; // Assuming RGBA

    size_t bitsPerComponent = 8;

    size_t bytesPerRow = width * bytesPerPixel;

    size_t bufferSize = bytesPerRow * height;


    uint8_t *buffer = (uint8_t *)malloc(bufferSize);

    for (size_t i = 0; i < bufferSize; i++) {

        buffer[i] = arc4random_uniform(256);

    }


    CGColorSpaceRef colorSpace = CGColorSpaceCreateDeviceRGB();

    CGContextRef context = CGBitmapContextCreate(buffer, width, height, bitsPerComponent, bytesPerRow, colorSpace, kCGImageAlphaPremultipliedLast);

    CGImageRef imageRef = CGBitmapContextCreateImage(context);


    NSMutableData *imageData = [NSMutableData data];

    CGImageDestinationRef destination = CGImageDestinationCreateWithData((CFMutableDataRef)imageData, imageType, 1, NULL);

    CGImageDestinationAddImage(destination, imageRef, NULL);

    CGImageDestinationFinalize(destination);


    CGColorSpaceRelease(colorSpace);

    CGContextRelease(context);

    CGImageRelease(imageRef);

    CFRelease(destination);

    free(buffer);


    return imageData;

}


#pragma mark - Application Entry Point


/*!

 * @brief Entry point of the application, handling initialization, argument parsing, and image processing.

 *

 * @details Sets up the application environment, parses command-line arguments for image loading and processing,

 * and manages resources efficiently. Demonstrates a command-line utility pattern in Objective-C, integrating

 * C and Objective-C elements for image processing tasks.

 *

 * - **Environment Variables Setup**: Configures variables for detailed logging and debugging.

 * - **Command-Line Arguments**: Validates and parses arguments for image processing.

 * - **Image Processing**: Loads and processes the specified image.

 *

 * @param argc Count of command-line arguments.

 * @param argv Array of command-line arguments.

 * @return Returns 0 on success, 1 on failure.

 *

 * @note Utilizes `@autoreleasepool` for efficient memory management. The initial environment variable configurations

 * are for debugging and may need adjustment depending on deployment.

 */


#pragma mark - main


int main(int argc, const char * argv[]) {

    @autoreleasepool {

        // Initial log with timestamp

        NSString *currentTime = formattedCurrentDateTime();

        NSLog(@"XNU Image Fuzzer starting %@", currentTime);


        // Set environment variables for detailed logging and debugging

        const char *envVars[] = {

            "CGBITMAP_CONTEXT_LOG_ERRORS", "CG_PDF_VERBOSE", "CG_CONTEXT_SHOW_BACKTRACE",

            "CG_CONTEXT_SHOW_BACKTRACE_ON_ERROR", "CG_IMAGE_SHOW_MALLOC", "CG_LAYER_SHOW_BACKTRACE",

            "CGBITMAP_CONTEXT_LOG", "CGCOLORDATAPROVIDER_VERBOSE", "CGPDF_LOG_PAGES",

            "MALLOC_CHECK_", "NSZombieEnabled", "NSAssertsEnabled", "NSShowAllViews",

            "IDELogRedirectionPolicy"

        };

        const char *envValues[] = {

            "1", "1", "1", "1", "1", "1", "1", "1", "1", "1", "YES", "YES", "YES", "oslogToStdio"

        };

        for (int i = 0; i < sizeof(envVars) / sizeof(char *); i++) {

            setenv(envVars[i], envValues[i], 1);

        }


        // Detect if launched with user-provided command-line arguments for image processing

        if (argc > 2 && argv[1][0] != '-') {

            NSString *imageName = [NSString stringWithUTF8String:argv[1]];

            int permutation = atoi(argv[2]);


            NSLog(@"Loading file: %@", imageName);

            UIImage *image = loadImageFromFile(imageName);

            if (!image) {

                NSLog(@"Failed to find path for image: %@", imageName);

                NSLog(@"Failed to load image: %@", imageName);

                return 1; // Error due to failed image loading

            }


            processImage(image, permutation);

            dump_comm_page();

            dumpDeviceInfo();

            dumpMacDeviceInfo();


            NSLog(@"XNU Image Fuzzer ✅ %@", currentTime);

            return 0; // Successful completion of command-line image processing

        } else if (argc == 1 || (argc > 2 && argv[1][0] == '-')) {

            // Perform all image permutations if no valid user-provided arguments are present

            performAllImagePermutations();

            return 0; // Successful completion of image permutation fuzzing

        } else {

            NSLog(@"Incorrect usage. Expected 0 or 2 arguments, got %d", argc - 1);

            NSLog(@"Usage: %s <imagePath> <permutation>", argv[0]);

            return 1; // Error due to incorrect usage

        }

    }

}


#pragma mark - isImagePathValid


/*!

 * @brief Validates the existence of a file at a specified path.

 * @details Checks if an image file exists at a given path, essential for applications that require the presence of a file before performing further operations. Utilizes `NSFileManager`'s `fileExistsAtPath:` to assess file presence, ensuring the path's validity for subsequent processing or operations. This function is crucial in contexts where the accuracy of file paths directly impacts application behavior or user experience.

 *

 * @param path NSString representing the file path to validate.

 *

 * @return Returns YES if the file exists at the specified path; otherwise, returns NO.

 *

 * @note

 * - **Implementation**: Leverages `NSFileManager` for reliable file existence checks. Logs the outcome to provide clear feedback on path validity.

 * - **Versatility**: While demonstrated for image files, this method can be adapted for any file type, enhancing its utility across various application needs.

 *

 * ### Example Usage:

 * @code

 * BOOL valid = isImagePathValid(@"/path/to/image.png");

 * if (valid) {

 *     NSLog(@"The image path is valid. Proceed with loading or processing.");

 * } else {

 *     NSLog(@"The image path is invalid. Check the path or notify the user.");

 * }

 * @endcode

 */


BOOL isValidImagePath(NSString *path) {

    BOOL fileExists = [[NSFileManager defaultManager] fileExistsAtPath:path];

    NSLog(fileExists ? @"Valid image path: %@" : @"Invalid image path: %@", path);

    return fileExists;

}


#pragma mark - loadImageFromFile


/*!

 * @brief Loads an image from the application bundle into a UIImage object.

 * @details Essential for iOS applications, this function loads images stored within the app's resources, facilitating the display or processing of those images. It abstracts filesystem complexities, allowing developers to concentrate on resource utilization.

 *

 * @param imageName NSString representing the file name (including its extension) of the image to load.

 *

 * @return A `UIImage` object initialized with the specified image file's contents or nil if the image could not be loaded.

 *

 * @note

 * - **Path Retrieval**: Uses `NSBundle`'s `pathForResource:ofType:` to locate the image file, simplifying access to app resources.

 * - **Data Conversion**: Converts the file content into `NSData`, a format compatible with `UIImage`'s `imageWithData:` initializer.

 * - **UIImage Initialization**: Creates a `UIImage` from `NSData`. On success, logs image details like dimensions and scale for debugging or information.

 *

 * ### Example Usage:

 * @code

 * UIImage *loadedImage = loadImageFromFile(@"exampleImage.png");

 * if (loadedImage) {

 *     NSLog(@"Image loaded successfully with dimensions: %f x %f", loadedImage.size.width, loadedImage.size.height);

 * } else {

 *     NSLog(@"Failed to load image.");

 * }

 * @endcode

 */


UIImage *loadImageFromFile(NSString *imageName) {

    NSLog(@"Loading file: %@", imageName);

    NSString *imagePath = [[NSBundle mainBundle] pathForResource:imageName ofType:nil];

    if (!imagePath) {

        NSLog(@"Failed to find path for image: %@", imageName);

        return nil;

    }

    NSLog(@"Image path: %@", imagePath);


    NSData *content = [NSData dataWithContentsOfFile:imagePath];

    if (!content) {

        NSLog(@"Failed to load data from file: %@", imagePath);

        return nil;

    }


    UIImage *image = [UIImage imageWithData:content];

    if (!image) {

        NSLog(@"Failed to create UIImage from data.");

        return nil;

    }


    NSLog(@"UIImage created: %@, Size: {width: %.2f, height: %.2f}, Scale: %f, Orientation: %ld",

          image, image.size.width, image.size.height, image.scale, (long)image.imageOrientation);


    return image;

}


#pragma mark - Process Image


/*!

 * @brief Processes an image using various bitmap context configurations.

 * @details Central to testing different bitmap context configurations, this function allows for the exploration and application of a wide range of image processing techniques. Configurations vary by color space, alpha settings, bit depth, and pixel format, enabling comprehensive testing across different image processing scenarios.

 *

 * @param image The `UIImage` object to be processed, which must contain a valid `CGImage`.

 * @param permutation An integer specifying the bitmap context configuration to apply. A value of -1 applies all configurations in a loop, while any other value selects a specific configuration.

 *

 * @note

 * - **CGImage Retrieval**: Begins by extracting the `CGImage` from the `UIImage`. Logs an error and exits if this step fails.

 * - **Configuration Application**: Iterates through or selects a specific bitmap context configuration to apply. Logs each action and utilizes corresponding functions for creating and processing the bitmap context.

 * - **Modular Processing Logic**: Processing for each configuration is handled in separate functions, facilitating easy adjustments or expansions to processing capabilities.

 *

 * ### Usage Example:

 * @code

 * // Process with all configurations

 * processImage(myImage, -1);

 *

 * // Process with a specific configuration

 * processImage(myImage, 3); // Example: Applies Non-Premultiplied Alpha settings

 * @endcode

 */


void processImage(UIImage *image, int permutation) {

    CGImageRef cgImg = [image CGImage];

    if (!cgImg) {

        NSLog(@"Failed to get CGImage from UIImage.");

        return;

    }

    NSLog(@"CGImage created from UIImage. Dimensions: %zu x %zu", CGImageGetWidth(cgImg), CGImageGetHeight(cgImg));


    if (permutation == -1) {

        for (int i = 1; i <= 12; i++) {

            switch (i) {

                case 1:

                    NSLog(@"Case: Creating bitmap context with Standard RGB settings");

                    createBitmapContextStandardRGB(cgImg, permutation);

                    break;

                case 2:

                    NSLog(@"Case: Creating bitmap context with Premultiplied First Alpha settings");

                    createBitmapContextPremultipliedFirstAlpha(cgImg);

                    break;

                case 3:

                    NSLog(@"Case: Creating bitmap context with Non-Premultiplied Alpha settings");

                    createBitmapContextNonPremultipliedAlpha(cgImg);

                    break;

                case 4:

                    NSLog(@"Case: Creating bitmap context with 16-bit depth settings");

                    createBitmapContext16BitDepth(cgImg);

                    break;

                case 5:

                    NSLog(@"Grayscale image processing is currently pending implementation.");

                    break;

                case 6:

                    NSLog(@"Case: Creating bitmap context with HDR Float Components settings");

                    createBitmapContextHDRFloatComponents(cgImg);

                    break;

                case 7:

                    NSLog(@"Case: Creating bitmap context with Alpha Only settings");

                    createBitmapContextAlphaOnly(cgImg);

                    break;

                case 8:

                    NSLog(@"Case: Creating bitmap context with 1-bit Monochrome settings");

                    createBitmapContext1BitMonochrome(cgImg);

                    break;

                case 9:

                    NSLog(@"Case: Creating bitmap context with Big Endian pixel format settings");

                    createBitmapContextBigEndian(cgImg);

                    break;

                case 10:

                    NSLog(@"Case: Creating bitmap context with Little Endian pixel format settings");

                    createBitmapContextLittleEndian(cgImg);

                    break;

                case 11:

                    NSLog(@"Case: Creating bitmap context with 8-bit depth, inverted colors settings");

                    createBitmapContext8BitInvertedColors(cgImg);

                    break;

                case 12:

                    NSLog(@"Case: Creating bitmap context with 32-bit float, 4-component settings");

                    createBitmapContext32BitFloat4Component(cgImg);

                    break;

                default:

                    NSLog(@"Case: Invalid permutation number %d", permutation);

                    break;

            }

            NSLog(@"Completed image processing for permutation %d", i);

        }

    } else {

        switch (permutation) {

            case 1:

                NSLog(@"Case: Creating bitmap context with Standard RGB settings");

                createBitmapContextStandardRGB(cgImg, permutation);

                break;

            case 2:

                NSLog(@"Case: Creating bitmap context with Premultiplied First Alpha settings");

                createBitmapContextPremultipliedFirstAlpha(cgImg);

                break;

            case 3:

                NSLog(@"Case: Creating bitmap context with Non-Premultiplied Alpha settings");

                createBitmapContextNonPremultipliedAlpha(cgImg);

                break;

            case 4:

                NSLog(@"Case: Creating bitmap context with 16-bit depth settings");

                createBitmapContext16BitDepth(cgImg);

                break;

            case 5:

                NSLog(@"Grayscale image processing is currently pending implementation.");

                return;

            case 6:

                NSLog(@"Case: Creating bitmap context with HDR Float Components settings");

                createBitmapContextHDRFloatComponents(cgImg);

                break;

            case 7:

                NSLog(@"Case: Creating bitmap context with Alpha Only settings");

                createBitmapContextAlphaOnly(cgImg);

                break;

            case 8:

                NSLog(@"Case: Creating bitmap context with 1-bit Monochrome settings");

                createBitmapContext1BitMonochrome(cgImg);

                break;

            case 9:

                NSLog(@"Case: Creating bitmap context with Big Endian pixel format settings");

                createBitmapContextBigEndian(cgImg);

                break;

            case 10:

                NSLog(@"Case: Creating bitmap context with Little Endian pixel format settings");

                createBitmapContextLittleEndian(cgImg);

                break;

            case 11:

                NSLog(@"Case: Creating bitmap context with 8-bit depth, inverted colors settings");

                createBitmapContext8BitInvertedColors(cgImg);

                break;

            case 12:

                NSLog(@"Case: Creating bitmap context with 32-bit float, 4-component settings");

                createBitmapContext32BitFloat4Component(cgImg);

                break;

            default:

                NSLog(@"Case: Invalid permutation number %d", permutation);

                break;        }

        NSLog(@"Completed image processing for permutation %d", permutation);

    }

}


#pragma mark - createBitmapContextStandardRBG


/*!

 * @brief Creates a bitmap context with standard RGB settings, applies a fuzzing process to alter the image, and saves the fuzzed image. Useful for testing image processing functionalities or creating varied visual effects.

 *

 * @details This function demonstrates how to create a bitmap context, manipulate image pixel data through a fuzzing process, and save the modified image. It covers validating input images, creating bitmap contexts with specific configurations, and applying image processing algorithms to explore and enhance image processing techniques.

 *

 * @param cgImg The source image from which to create the bitmap context, represented as a `CGImageRef`.

 * @param permutation An integer representing the type or level of fuzzing to apply. Though not utilized in this simplified example, it is designed to dictate different fuzzing algorithms or intensities.

 *

 * @note

 * - **Memory Management**: Demonstrates careful release of resources, including color space and bitmap context, and freeing of dynamically allocated memory.

 * - **Debugging**: Includes commented-out calls to `debugMemoryHandling` to illustrate potential insertion points for memory diagnostics.

 * - **Extensibility**: The `permutation` parameter demonstrates the function's potential to apply various fuzzing types based on input parameters, enhancing modularity and maintainability.

 * - **Logging**: Utilizes `NSLog` for debugging purposes. A more sophisticated logging framework is recommended for production code.

 * - **Separation of Concerns**: Abstracts the actual fuzzing logic into the `applyEnhancedFuzzingToBitmapContext` function, promoting code modularity and maintainability.

 *

 * ### Process Overview:

 * 1. Validates the `CGImageRef` input to ensure a source image is provided.

 * 2. Retrieves source image dimensions and calculates bytes per row for an RGBA pixel format.

 * 3. Allocates memory for raw pixel data.

 * 4. Creates a `CGColorSpaceRef` in the device RGB color space.

 * 5. Specifies bitmap information for alpha channel handling and byte order.

 * 6. Creates the bitmap context with allocated memory, color space, and specified bitmap info.

 * 7. Draws the source image into the bitmap context.

 * 8. Applies a fuzzing algorithm to manipulate the pixel data directly.

 * 9. Generates a new `CGImageRef` from the bitmap context, converts it to `UIImage`, and saves the result.

 * 10. Releases allocated resources, including the bitmap context and pixel data memory.

 *

 * ### Usage Example:

 * @code

 * // Process with all configurations

 * processImage(myImage, -1);

 *

 * // Process with a specific configuration

 * processImage(myImage, 3); // Example: Applies Non-Premultiplied Alpha settings

 * @endcode

 */


void createBitmapContextStandardRGB(CGImageRef cgImg, int permutation) {

    NSLog(@"Creating bitmap context with Standard RGB settings and applying fuzzing");

//    debugMemoryHandling();


    if (!cgImg) {

        NSLog(@"Invalid CGImageRef provided.");

        return;

    }


    size_t width = CGImageGetWidth(cgImg);

    size_t height = CGImageGetHeight(cgImg);

    size_t bytesPerRow = width * 4; // 4 bytes per pixel (RGBA)


    unsigned char *rawData = (unsigned char *)calloc(height * bytesPerRow, sizeof(unsigned char));

    if (!rawData) {

        NSLog(@"Failed to allocate memory for image processing");

//        debugMemoryHandling();

        return;

    }


    CGColorSpaceRef colorSpace = CGColorSpaceCreateDeviceRGB();

    if (!colorSpace) {

        NSLog(@"Failed to create color space");

        free(rawData);

//        debugMemoryHandling();

        return;

    }


    CGBitmapInfo bitmapInfo = kCGImageAlphaPremultipliedLast | kCGBitmapByteOrder32Big;

    CGContextRef ctx = CGBitmapContextCreate(rawData, width, height, 8, bytesPerRow, colorSpace, bitmapInfo);


    CGColorSpaceRelease(colorSpace);


    if (!ctx) {

        NSLog(@"Failed to create bitmap context");

        free(rawData);

//        debugMemoryHandling();

        return;

    }


    CGContextDrawImage(ctx, CGRectMake(0, 0, width, height), cgImg);


    NSLog(@"Applying enhanced fuzzing logic to the bitmap context");

    applyEnhancedFuzzingToBitmapContext(rawData, width, height, verboseLogging);

    // Initialize a variable to keep track of unchanged and changed bytes

    size_t unchangedCount = 0;

    size_t changedCount = 0;


    // Check for 0x41 pattern after operations and detect changes

    for (size_t i = 0; i < height * bytesPerRow; i++) {

        if (rawData[i] == 0x41) {

            unchangedCount++;

        } else {

            // Log the first few changes to avoid flooding the log

            if (changedCount < 10) { // Limiting to the first 10 changes for brevity

                NSLog(@"Detected change from 0x41 at byte offset %zu, new value: 0x%X", i, rawData[i]);

            }

            changedCount++;

        }

    }


    // Summarize findings

    if (unchangedCount > 0) {

        NSLog(@"Detected unchanged 0x41 pattern in %zu places.", unchangedCount);

    }

    NSLog(@"Detected changes in %zu places.", changedCount);


    CGImageRef newCgImg = CGBitmapContextCreateImage(ctx);

    if (!newCgImg) {

        NSLog(@"Failed to create CGImage from context");

    } else {

        UIImage *newImage = [UIImage imageWithCGImage:newCgImg];

        CGImageRelease(newCgImg);


        saveFuzzedImage(newImage, @"premultiplied_first_alpha_png");

        saveFuzzedImage(newImage, @"premultiplied_first_alpha_jpeg");

        saveFuzzedImage(newImage, @"premultiplied_first_alpha_gif");


        NSLog(@"Modified UIImage created and saved successfully.");

    }


    CGContextRelease(ctx);

    free(rawData);

//    debugMemoryHandling();

}


#pragma mark - createBitmapContextPremultipliedFirstAlpha


/*!

 * @brief Creates a bitmap context with Premultiplied First Alpha settings and applies image processing.

 *

 * This function initializes a bitmap context optimized for image processing with premultiplied first alpha settings, drawing a provided CGImage into this context. It fills the allocated memory with a 0x41 pattern to facilitate debugging and security analysis by identifying unused or inefficiently managed memory regions. After processing the image, it checks for any unchanged memory areas and logs their locations, offering insights into memory utilization.

 *

 * @param cgImg A `CGImageRef` representing the source image to be transformed. Must not be NULL.

 *

 * Utilizing a 0x41 pattern fill and subsequent check, this function aids in debugging memory handling and potentially identifying security vulnerabilities related to buffer overflow or improper memory management. It's designed for enhanced debugging and should be used with consideration for its performance impact in production environments.

 *

 * ### Example Usage:

 * @code

 * CGImageRef sourceImage = CGImageCreate(...); // Create or obtain a CGImageRef

 * createBitmapContextPremultipliedFirstAlpha(sourceImage);

 * CGImageRelease(sourceImage); // Clean up the source image if it's no longer needed

 * @endcode

 *

 * @note Ensure that the `CGImageRef` provided to this function is valid. The function logs detailed information about its operation, especially detecting unchanged memory areas after processing, which can be instrumental in identifying inefficiencies or vulnerabilities.

 */


void createBitmapContextPremultipliedFirstAlpha(CGImageRef cgImg) {

    NSLog(@"Creating bitmap context with Premultiplied First Alpha settings");


    if (!cgImg) {

        NSLog(@"Invalid CGImageRef provided.");

        return;

    }


    size_t width = CGImageGetWidth(cgImg);

    size_t height = CGImageGetHeight(cgImg);

    size_t bytesPerRow = width * 4;


    unsigned char *rawData = (unsigned char *)calloc(height * bytesPerRow, sizeof(unsigned char));

    if (!rawData) {

        NSLog(@"Failed to allocate memory for image processing");

        return;

    }


    // Initialize memory with 0x41 pattern

    memset(rawData, 0x41, height * bytesPerRow);


    CGColorSpaceRef colorSpace = CGColorSpaceCreateDeviceRGB();

    if (!colorSpace) {

        NSLog(@"Failed to create color space");

        free(rawData);

        return;

    }


    CGBitmapInfo bitmapInfo = kCGImageAlphaPremultipliedFirst | kCGBitmapByteOrder32Big;

    CGContextRef ctx = CGBitmapContextCreate(rawData, width, height, 8, bytesPerRow, colorSpace, bitmapInfo);

    CGColorSpaceRelease(colorSpace);


    if (!ctx) {

        NSLog(@"Failed to create bitmap context");

        free(rawData);

        return;

    }


    CGContextDrawImage(ctx, CGRectMake(0, 0, width, height), cgImg);


    NSLog(@"Applying enhanced fuzzing logic to the bitmap context");

    applyEnhancedFuzzingToBitmapContext(rawData, width, height, YES);


    // Initialize a variable to keep track of unchanged and changed bytes

    size_t unchangedCount = 0;

    size_t changedCount = 0;


    // Check for 0x41 pattern after operations and detect changes

    for (size_t i = 0; i < height * bytesPerRow; i++) {

        if (rawData[i] == 0x41) {

            unchangedCount++;

        } else {

            // Log the first few changes to avoid flooding the log

            if (changedCount < 10) { // Limiting to the first 10 changes for brevity

                NSLog(@"Detected change from 0x41 at byte offset %zu, new value: 0x%X", i, rawData[i]);

            }

            changedCount++;

        }

    }


    // Summarize findings

    if (unchangedCount > 0) {

        NSLog(@"Detected unchanged 0x41 pattern in %zu places.", unchangedCount);

    }

    NSLog(@"Detected changes in %zu places.", changedCount);


    CGImageRef newCgImg = CGBitmapContextCreateImage(ctx);

    if (!newCgImg) {

        NSLog(@"Failed to create CGImage from context");

    } else {

        UIImage *newImage = [UIImage imageWithCGImage:newCgImg];

        CGImageRelease(newCgImg);


        // Save the image in both PNG and JPEG formats

        // The contextDescription now should indicate the desired format

        saveFuzzedImage(newImage, @"premultiplied_first_alpha_png");

        saveFuzzedImage(newImage, @"premultiplied_first_alpha_jpeg");

        saveFuzzedImage(newImage, @"premultiplied_first_alpha_gif");


        NSLog(@"Modified UIImage created and saved successfully in both PNG and JPEG formats.");

    }


    CGContextRelease(ctx);

    free(rawData);

}


#pragma mark - createBitmapContextNonPremultipliedAlpha


/*!

 * @brief Creates a bitmap graphics context with Non-Premultiplied Alpha settings for processing a CGImage.

 * @details Tailored for scenarios where non-premultiplied alpha handling is crucial, this function facilitates precise control over the alpha channel during image processing. It's particularly useful where premultiplication could obscure details or degrade quality. The function outlines a structured approach to creating a bitmap context that maintains the integrity of the alpha channel, applying modifications through an "enhanced fuzzing" process, and concluding with the saving of the altered image.

 *

 * The procedure includes validating the CGImageRef, memory allocation for pixel data, setting up a Device RGB color space, configuring bitmap context parameters for non-premultiplied alpha, image rendering, applying custom processing logic, and resource cleanup.

 *

 * @param cgImg The `CGImageRef` representing the image to be processed, used as the source for the bitmap context.

 *

 * @note

 * - Emphasizes meticulous memory management to prevent leaks, including the release of the bitmap context and allocated pixel data.

 * - Incorporates diagnostic logging at various stages to support debugging and ensure processing accuracy.

 *

 * ### Process:

 * 1. **Validation**: Ensures the `CGImageRef` is non-null and valid for processing.

 * 2. **Memory Allocation**: Determines the required dimensions and allocates memory for storing the image's pixel data.

 * 3. **Color Space Setup**: Creates a Device RGB color space for the bitmap context, essential for accurate color reproduction.

 * 4. **Bitmap Context Configuration**: Establishes a bitmap context tailored for non-premultiplied alpha, specifying relevant bitmap info flags.

 * 5. **Image Rendering**: Draws the source CGImage into the bitmap context, preserving raw pixel data integrity.

 * 6. **Custom Processing**: Applies an "enhanced fuzzing" algorithm to the pixel data, modifying the image's appearance or characteristics.

 * 7. **Image Generation and Saving**: Converts the processed bitmap context into a new CGImage and a UIImage, saving the result with a distinctive identifier.

 * 8. **Resource Cleanup**: Carefully releases the bitmap context and frees the memory allocated for pixel data, ensuring no memory leaks occur.

 *

 * ### Usage Example:

 * @code

 * // Assuming cgImg is a valid CGImageRef

 * createBitmapContextNonPremultipliedAlpha(cgImg);

 * @endcode

 */


void createBitmapContextNonPremultipliedAlpha(CGImageRef cgImg) {

    NSLog(@"Creating bitmap context with Non-Premultiplied Alpha settings");


    if (!cgImg) {

        NSLog(@"Invalid CGImageRef provided.");

        return;

    }


    size_t width = CGImageGetWidth(cgImg);

    size_t height = CGImageGetHeight(cgImg);

    size_t bytesPerRow = width * 4; // RGBA format


    // Allocate memory for raw image data

    unsigned char *rawData = (unsigned char *)calloc(height * bytesPerRow, sizeof(unsigned char));

    if (!rawData) {

        NSLog(@"Failed to allocate memory for image processing");

        return;

    }


    // Create a color space for the bitmap context

    CGColorSpaceRef colorSpace = CGColorSpaceCreateDeviceRGB();

    if (!colorSpace) {

        NSLog(@"Failed to create color space");

        free(rawData);

        return;

    }


    // Define bitmap info with non-premultiplied alpha

    CGBitmapInfo bitmapInfo = kCGImageAlphaNoneSkipLast | kCGBitmapByteOrder32Big;

    CGContextRef ctx = CGBitmapContextCreate(rawData, width, height, 8, bytesPerRow, colorSpace, bitmapInfo);

    CGColorSpaceRelease(colorSpace);


    if (!ctx) {

        NSLog(@"Failed to create bitmap context");

        free(rawData);

        return;

    }


    // Draw the CGImage into the bitmap context

    CGContextDrawImage(ctx, CGRectMake(0, 0, width, height), cgImg);


    // Apply fuzzing logic directly to the bitmap's raw data

    NSLog(@"Applying enhanced fuzzing logic to the bitmap context with non-premultiplied alpha");

    applyEnhancedFuzzingToBitmapContext(rawData, width, height, YES); // Assuming verbose logging is desired

    // Initialize a variable to keep track of unchanged and changed bytes

        size_t unchangedCount = 0;

        size_t changedCount = 0;


        // Check for 0x41 pattern after operations and detect changes

        for (size_t i = 0; i < height * bytesPerRow; i++) {

            if (rawData[i] == 0x41) {

                unchangedCount++;

            } else {

                // Log the first few changes to avoid flooding the log

                if (changedCount < 10) { // Limiting to the first 10 changes for brevity

                    NSLog(@"Detected change from 0x41 at byte offset %zu, new value: 0x%X", i, rawData[i]);

                }

                changedCount++;

            }

        }


        // Summarize findings

        if (unchangedCount > 0) {

            NSLog(@"Detected unchanged 0x41 pattern in %zu places.", unchangedCount);

        }

        NSLog(@"Detected changes in %zu places.", changedCount);


    // Create a new image from the modified context

    CGImageRef newCgImg = CGBitmapContextCreateImage(ctx);

    if (!newCgImg) {

        NSLog(@"Failed to create CGImage from context");

    } else {

        UIImage *newImage = [UIImage imageWithCGImage:newCgImg];

        CGImageRelease(newCgImg);


        // Save the fuzzed image with a context-specific identifier

        saveFuzzedImage(newImage, @"non_premultiplied_alpha_png");

        saveFuzzedImage(newImage, @"non_premultiplied_alpha_jpeg");

        saveFuzzedImage(newImage, @"non_premultiplied_alpha_gif");


        NSLog(@"Modified UIImage created and saved successfully for non-premultiplied alpha in both PNG, JPEG and GIF formats.");

    }


    // Cleanup

    CGContextRelease(ctx);

    free(rawData);

}


#pragma mark - createBitmapContext16BitDepth


/*!

 * @brief Creates a bitmap graphics context for 16-bit depth per channel processing.

 * @details This function is tailored for scenarios requiring high color fidelity, utilizing 16-bit depth per channel to enhance color range and reduce artifacts. It's ideal for high-quality image processing and editing, ensuring the highest fidelity in color information. The process involves validating the source image, allocating a memory buffer with adequate depth, setting up a suitable color space, configuring and rendering into the bitmap context, applying custom image processing, and managing resources efficiently.

 *

 * @param cgImg The `CGImageRef` representing the source image for processing in the 16-bit depth bitmap context.

 *

 * @note

 * - Prioritizes detailed logging for debugging and error tracking, particularly useful given the function's complexity and higher memory demands.

 * - Includes commented-out sections for memory diagnostics, indicating a considered approach to monitoring and managing memory usage in high-depth processing scenarios.

 *

 * ### Process:

 * 1. **Input Validation**: Checks the `CGImageRef` for nullity, logging any errors encountered.

 * 2. **Dimension Calculation**: Determines the necessary dimensions for the bitmap context and pixel data buffer based on the source image's size.

 * 3. **Memory Allocation**: Allocates memory for the raw pixel data, factoring in the increased requirements for 16-bit depth per channel.

 * 4. **Color Space Creation**: Establishes a Device RGB color space to ensure accurate color reproduction within the context.

 * 5. **Bitmap Context Configuration**: Sets up the bitmap context to support 16-bit depth per color channel, including considerations for premultiplied alpha.

 * 6. **Image Rendering**: Captures the source CGImage within the bitmap context, maintaining high color depth.

 * 7. **Custom Processing**: Applies an "enhanced fuzzing" algorithm to the high-depth pixel data, with an emphasis on thorough diagnostic logging.

 * 8. **Image Generation and Saving**: Creates a new CGImage from the context, encapsulates it in a UIImage, and saves the result, denoting its 16-bit depth processing.

 * 9. **Resource Cleanup**: Ensures the release of all allocated resources, including the bitmap context and pixel data buffer, to maintain operational cleanliness.

 *

 * ### Usage Example:

 * @code

 * // Assuming cgImg is a valid CGImageRef

 * createBitmapContext16BitDepth(cgImg);

 * @endcode

 */


void createBitmapContext16BitDepth(CGImageRef cgImg) {

    NSLog(@"Creating bitmap context with 16-bit depth per channel");


    // Pre-operation memory diagnostic

//    debugMemoryHandling();


    if (!cgImg) {

        NSLog(@"Invalid CGImageRef provided.");

        return;

    }


    size_t width = CGImageGetWidth(cgImg);

    size_t height = CGImageGetHeight(cgImg);

    // Considering 8 bytes per pixel (2 bytes per component * 4 components: RGBA)

    size_t bytesPerRow = width * 8;


    // Allocate memory for raw image data

    unsigned char *rawData = (unsigned char *)calloc(height * bytesPerRow, sizeof(unsigned char));

    if (!rawData) {

        NSLog(@"Failed to allocate memory for image processing");

//        debugMemoryHandling(); // Post-failure diagnostic

        return;

    }


    // Create a color space for the bitmap context

    CGColorSpaceRef colorSpace = CGColorSpaceCreateDeviceRGB();

    if (!colorSpace) {

        NSLog(@"Failed to create color space");

        free(rawData);

//        debugMemoryHandling(); // Diagnostic before early exit

        return;

    }


    // Define bitmap info for 16-bit depth per channel

    CGBitmapInfo bitmapInfo = kCGImageAlphaPremultipliedLast | kCGBitmapByteOrderDefault;

    CGContextRef ctx = CGBitmapContextCreate(rawData, width, height, 16, bytesPerRow, colorSpace, bitmapInfo);

    CGColorSpaceRelease(colorSpace);


    if (!ctx) {

        NSLog(@"Failed to create bitmap context");

        free(rawData);

//        debugMemoryHandling(); // Diagnostic if context creation fails

        return;

    }


    // Draw the CGImage into the bitmap context

    CGContextDrawImage(ctx, CGRectMake(0, 0, width, height), cgImg);


    // Apply fuzzing logic directly to the bitmap's raw data

    NSLog(@"Applying enhanced fuzzing logic to the bitmap context with 16-bit depth");

    applyEnhancedFuzzingToBitmapContext(rawData, width, height, YES); // Assuming verbose logging is desired

    // Initialize a variable to keep track of unchanged and changed bytes

    size_t unchangedCount = 0;

    size_t changedCount = 0;


    // Check for 0x41 pattern after operations and detect changes

    for (size_t i = 0; i < height * bytesPerRow; i++) {

        if (rawData[i] == 0x41) {

            unchangedCount++;

        } else {

            // Log the first few changes to avoid flooding the log

            if (changedCount < 10) { // Limiting to the first 10 changes for brevity

                NSLog(@"Detected change from 0x41 at byte offset %zu, new value: 0x%X", i, rawData[i]);

            }

            changedCount++;

        }

    }


    // Summarize findings

    if (unchangedCount > 0) {

        NSLog(@"Detected unchanged 0x41 pattern in %zu places.", unchangedCount);

    }

    NSLog(@"Detected changes in %zu places.", changedCount);


    // Create a new image from the modified context

    CGImageRef newCgImg = CGBitmapContextCreateImage(ctx);

    if (!newCgImg) {

        NSLog(@"Failed to create CGImage from context");

    } else {

        UIImage *newImage = [UIImage imageWithCGImage:newCgImg];

        CGImageRelease(newCgImg);


        // Save the fuzzed image with a context-specific identifier

        saveFuzzedImage(newImage, @"16bit_depth_png");

        saveFuzzedImage(newImage, @"16bit_depth_jpeg");

        saveFuzzedImage(newImage, @"16bit_depth_gif");


        NSLog(@"Modified UIImage created and saved successfully in both PNG and JPEG formats.");

    }


    // Cleanup

    CGContextRelease(ctx);

    free(rawData);

//    debugMemoryHandling(); // Post-operation diagnostic

}


#pragma mark - createBitmapContextGrayscale


void createBitmapContextGrayscale(CGImageRef cgImg) {

    NSLog(@"Grayscale image processing is not yet implemented.");

    // No further processing or memory allocations

}


#pragma mark - createBitmapContextHDRFloatComponents


/*!

 * @brief Initializes a bitmap context for HDR content with floating-point components.

 * @details This function is pivotal for handling High Dynamic Range (HDR) images, enabling the precise manipulation of extended color and brightness ranges. By employing floating-point components and an HDR-compatible color space, it facilitates the processing of images with significantly broader luminance and color gamut than traditional 8-bit or 16-bit formats allow. The function outlines steps for validating the source image, allocating memory for HDR data, setting up an HDR-compatible color space and bitmap context, and applying custom image processing.

 *

 * @param cgImg The `CGImageRef` representing the source image for processing in the HDR bitmap context.

 *

 * @note

 * - The function's design caters to advanced image processing experiments, including dynamic manipulation and fuzzing based on varying data inputs.

 * - Assumes the use of a mechanism to cycle through predefined strings for the fuzzing process, illustrating the method's adaptability to different parameters or data influences.

 *

 * ### Process:

 * 1. **Input Validation**: Confirms the `CGImageRef` is valid and not null.

 * 2. **Memory Allocation**: Allocates a buffer for floating-point raw data, accounting for HDR's extensive data size requirements.

 * 3. **Color Space Creation**: Initiates an HDR-compatible color space (`kCGColorSpaceExtendedLinearSRGB`) to accurately handle HDR images' expanded gamut and luminance.

 * 4. **Bitmap Context Setup**: Configures the bitmap context with 32 bits per component in floating-point format, suitable for HDR content's nuanced representation.

 * 5. **Image Rendering**: Draws the source CGImage into the context, ensuring it captures the high precision of HDR.

 * 6. **Custom Processing**: Applies a custom fuzzing process to the bitmap data, using predefined strings to demonstrate or test specific effects.

 * 7. **Image Generation and Saving**: Creates a new CGImage from the modified context, then a UIImage, facilitating its use within UIKit applications. Saves the processed image with a relevant identifier.

 * 8. **Resource Cleanup**: Releases all allocated resources, including the color space, bitmap context, and memory buffer, to prevent memory leaks.

 *

 * ### Usage Example:

 * @code

 * // Assuming cgImg is a valid CGImageRef

 * createBitmapContextHDRFloatComponents(cgImg);

 * @endcode

 */


void createBitmapContextHDRFloatComponents(CGImageRef cgImg) {

    NSLog(@"Creating bitmap context with HDR and floating-point components");


    if (!cgImg) {

        NSLog(@"Invalid CGImageRef provided.");

        return;

    }


    size_t width = CGImageGetWidth(cgImg);

    size_t height = CGImageGetHeight(cgImg);

    size_t bytesPerRow = width * 16; // Considering 16 bytes per pixel for HDR


    // Allocate memory for raw image data

    float *rawData = (float *)calloc(height * bytesPerRow, sizeof(float));

    if (!rawData) {

        NSLog(@"Failed to allocate memory for image processing");

        return;

    }


    CGColorSpaceRef colorSpace = CGColorSpaceCreateWithName(kCGColorSpaceExtendedLinearSRGB);

    if (!colorSpace) {

        NSLog(@"Failed to create HDR color space");

        free(rawData);

        return;

    }


    CGBitmapInfo bitmapInfo = kCGImageAlphaPremultipliedLast | kCGBitmapFloatComponents | kCGBitmapByteOrder32Little;

    CGContextRef ctx = CGBitmapContextCreate(rawData, width, height, 32, bytesPerRow, colorSpace, bitmapInfo);

    CGColorSpaceRelease(colorSpace);


    if (!ctx) {

        NSLog(@"Failed to create bitmap context for HDR");

        free(rawData);

        return;

    }


    CGContextDrawImage(ctx, CGRectMake(0, 0, width, height), cgImg);


    NSLog(@"Applying enhanced fuzzing logic to the HDR bitmap context");


    // Cycle through injection strings or select based on specific criteria

    static int currentStringIndex = 0; // Example: simple cycling mechanism

    applyEnhancedFuzzingToBitmapContextWithFloats(rawData, width, height, YES);

    currentStringIndex = (currentStringIndex + 1) % NUMBER_OF_STRINGS; // Move to the next string for the next call


    // Initialize a variable to keep track of unchanged and changed bytes

    size_t unchangedCount = 0;

    size_t changedCount = 0;


    // Check for 0x41 pattern after operations and detect changes

    for (size_t i = 0; i < height * bytesPerRow; i++) {

        if (rawData[i] == 0x41) {

            unchangedCount++;

        } else {

            // Log the first few changes to avoid flooding the log

            if (changedCount < 10) { // Limiting to the first 10 changes for brevity

                // Using a union to reinterpret the float's bits as an unsigned int for logging

                union {

                    float f;

                    unsigned int u;

                } floatToHex;


                floatToHex.f = rawData[i]; // Assign the float value to the union


                NSLog(@"Detected change from 0x41 at byte offset %zu, new value: 0x%X", i, floatToHex.u);

            }

            changedCount++;

        }

    }


    // Summarize findings

    if (unchangedCount > 0) {

        NSLog(@"Detected unchanged 0x41 pattern in %zu places.", unchangedCount);

    }

    NSLog(@"Detected changes in %zu places.", changedCount);


    CGImageRef newCgImg = CGBitmapContextCreateImage(ctx);

    if (!newCgImg) {

        NSLog(@"Failed to create CGImage from HDR context");

    } else {

        UIImage *newImage = [UIImage imageWithCGImage:newCgImg];

        CGImageRelease(newCgImg);


        saveFuzzedImage(newImage, @"hdr_float_png");

        saveFuzzedImage(newImage, @"hdr_float_jpeg");

        saveFuzzedImage(newImage, @"hdr_float_gif");

        NSLog(@"Modified UIImage with HDR and floating-point components created and saved successfully in both PNG, JPEG and GIF formats.");

    }


    CGContextRelease(ctx);

    free(rawData);

}


#pragma mark - createBitmapContextAlphaOnly


/*!

 * @brief Creates a bitmap context for alpha channel manipulation of a CGImageRef.

 * @details This function is specifically designed for scenarios requiring isolated handling of image transparency, excluding color data. It supports applications in graphics editing, custom rendering, and transparency management by focusing exclusively on the alpha channel. The function validates the source image, configures a dedicated bitmap context for alpha data, applies custom modifications to transparency levels, and manages resource cleanup effectively.

 *

 * @param cgImg The `CGImageRef` representing the source image from which the alpha channel will be extracted and processed.

 *

 * Implementation Notes:

 * - Assumes the presence of an alpha channel in the input image. In the absence of transparency in the source image, extracted alpha data may lack significance.

 * - References the `applyEnhancedFuzzingToBitmapContextAlphaOnly` function for specific alpha data manipulation, aimed at testing or enhancing transparency effects.

 * - Highlighting the challenge of utilizing processed alpha data for image reconstruction, as this operation concentrates on transparency without color components.

 * - Includes indications for `debugMemoryHandling` to facilitate memory management diagnostics, crucial for optimizing resource use in constrained environments.

 *

 * ### Process:

 * 1. **Input Validation**: Ensures the `CGImageRef` is suitable for transparency extraction and processing.

 * 2. **Dimension Retrieval**: Accurately configures the bitmap context based on the source image's dimensions.

 * 3. **Memory Allocation**: Dedicates a memory buffer for storing alpha data, reflecting opacity with one byte per pixel.

 * 4. **Bitmap Context Creation**: Establishes a context focused on alpha channel information, omitting color space configuration.

 * 5. **Alpha Extraction**: Draws the source image into the context, isolating the alpha channel data.

 * 6. **Transparency Manipulation**: Applies custom fuzzing to the alpha data, adjusting transparency for specific effects or testing.

 * 7. **Resource Cleanup**: Releases the bitmap context and alpha data array, ensuring no memory leaks.

 *

 * ### Usage Example:

 * @code

 * // Assuming cgImg is a valid CGImageRef with an alpha channel

 * createBitmapContextAlphaOnly(cgImg);

 * @endcode

 */


void createBitmapContextAlphaOnly(CGImageRef cgImg) {

    NSLog(@"Creating bitmap context for Alpha channel only");


    // Pre-operation memory diagnostic

//    debugMemoryHandling();


    if (!cgImg) {

        NSLog(@"Invalid CGImageRef provided.");

        return;

    }


    size_t width = CGImageGetWidth(cgImg);

    size_t height = CGImageGetHeight(cgImg);

    size_t bytesPerRow = width; // 1 byte per pixel for Alpha only


    // Allocate memory for raw alpha data

    unsigned char *alphaData = (unsigned char *)calloc(height * bytesPerRow, sizeof(unsigned char));

    if (!alphaData) {

        NSLog(@"Failed to allocate memory for alpha channel processing");

//        debugMemoryHandling(); // Post-failure diagnostic

        return;

    }


    // Since we're dealing with alpha only, no color space is required

    // Adjusting bitmap info to accommodate alpha data correctly

    CGBitmapInfo bitmapInfo = kCGImageAlphaOnly | kCGBitmapByteOrderDefault;


    CGContextRef ctx = CGBitmapContextCreate(alphaData, width, height, 8, bytesPerRow, NULL, bitmapInfo);


    if (!ctx) {

        NSLog(@"Failed to create bitmap context for Alpha channel");

        free(alphaData);

//        debugMemoryHandling(); // Diagnostic if context creation fails

        return;

    }


    // Drawing the alpha channel into the context

    // Assuming the cgImg already contains the alpha channel we want to process

    CGContextDrawImage(ctx, CGRectMake(0, 0, width, height), cgImg);


    // Apply fuzzing logic directly to the alpha data

    NSLog(@"Applying enhanced fuzzing logic to the Alpha-only bitmap context");

    // Note: The applyEnhancedFuzzingToBitmapContext function needs to be adjusted to work with alphaData

    applyEnhancedFuzzingToBitmapContextAlphaOnly(alphaData, width, height, YES); // Assuming verbose logging is desired


    // Creating a new image from the modified context might not be directly applicable

    // as we're dealing with alpha channel only. Further processing might be required

    // to utilize this alpha data with another image or for masking.

    CGImageRef newCgImg = CGBitmapContextCreateImage(ctx);

    if (!newCgImg) {

        NSLog(@"Failed to create CGImage from context");

    } else {

        UIImage *newImage = [UIImage imageWithCGImage:newCgImg];

        CGImageRelease(newCgImg);


        saveFuzzedImage(newImage, @"alpha_channel_png");

        saveFuzzedImage(newImage, @"alpha_channel_jpeg");

        saveFuzzedImage(newImage, @"alpha_channel_gif");


        NSLog(@"Modified UIImage created and saved successfully.");

    }

    // Cleanup and resource management

    CGContextRelease(ctx);

    free(alphaData);

//    debugMemoryHandling(); // Post-operation diagnostic


    NSLog(@"Alpha-only bitmap context processing completed.");

}


#pragma mark - createBitmapContext1BitMonochrome


/*!

 * @brief Creates a bitmap context for 1-bit monochrome image processing.

 * @details This function is crafted for applications that convert color or grayscale images to monochrome using a 1-bit per pixel format. It's particularly suited for environments where reducing data size is crucial, such as in low-bandwidth or memory-constrained situations, or to achieve a certain aesthetic. The function covers the process from validating the input image, through creating a monochrome bitmap context, to finalizing and releasing resources.

 *

 * @param cgImg The `CGImageRef` representing the source image to be converted to 1-bit monochrome.

 *

 * @note The conversion might incorporate techniques like dithering, contrast adjustments, or edge enhancement to optimize the monochrome output. This description assumes a basic approach but acknowledges the potential for more complex processing strategies tailored to specific requirements.

 *

 * ### Process:

 * 1. **Input Validation**: Confirms the `CGImageRef` is valid and non-null.

 * 2. **Dimension and Byte Calculation**: Sets up the bitmap context based on the source image's dimensions and calculates the minimum bytes per row for 1-bit data.

 * 3. **Bitmap Context Creation**: Establishes a monochrome bitmap context without a color space or alpha channel.

 * 4. **Background Initialization**: Prepares the bitmap with a white background for consistent monochrome conversion.

 * 5. **Image Drawing**: Renders the input image into the context, initiating the conversion to 1-bit color depth.

 * 6. **Bitmap Manipulation**: Directly adjusts the bitmap data to refine the monochrome output as needed.

 * 7. **CGImage Generation**: Produces a new CGImage reflecting the monochrome conversion.

 * 8. **UIImage Creation**: Converts the new CGImage into a UIImage for UIKit compatibility or additional processing.

 * 9. **Optional Saving**: Tags and saves the monochrome image for easy storage or retrieval.

 * 10. **Resource Cleanup**: Ensures the release of the bitmap context and any other allocated resources.

 *

 * ### Usage Example:

 * @code

 * // Assuming cgImg is a valid CGImageRef

 * createBitmapContext1BitMonochrome(cgImg);

 * @endcode

 */


void createBitmapContext1BitMonochrome(CGImageRef cgImg) {

    if (!cgImg) {

        NSLog(@"Invalid CGImageRef provided.");

        return;

    }


    NSLog(@"Creating bitmap context with 1-bit Monochrome settings");


    size_t width = CGImageGetWidth(cgImg);

    size_t height = CGImageGetHeight(cgImg);

    // Calculate bytes per row for 1 bit per pixel, rounded up to the nearest byte

    size_t bytesPerRow = (width + 7) / 8; // Round up to account for partial bytes

    CGContextRef ctx = CGBitmapContextCreate(NULL, width, height, 1, bytesPerRow, NULL, kCGImageAlphaNone);

    if (!ctx) {

        NSLog(@"Failed to create bitmap context with 1-bit Monochrome settings");

        return;

    }


    // Set the fill color to white and fill the context to start with a blank slate

    CGContextSetFillColorWithColor(ctx, [UIColor whiteColor].CGColor);

    CGContextFillRect(ctx, CGRectMake(0, 0, width, height));


    // Draw the CGImage into the bitmap context, adjusting it to fit the 1-bit color depth

    CGContextDrawImage(ctx, CGRectMake(0, 0, width, height), cgImg);


    // Access the raw pixel data

    unsigned char *rawData = CGBitmapContextGetData(ctx);

    if (rawData) {

        NSLog(@"Converting bitmap data to 1-bit Monochrome");

        convertTo1BitMonochrome(rawData, width, height);

    }


    // Create a new image from the modified context

    CGImageRef newCgImg = CGBitmapContextCreateImage(ctx);

    if (!newCgImg) {

        NSLog(@"Failed to create CGImage from 1-bit Monochrome context");

    } else {

        UIImage *newImage = [UIImage imageWithCGImage:newCgImg];

        CGImageRelease(newCgImg); // Release the created CGImage


        // Save the monochrome image with a context-specific identifier

        saveMonochromeImage(newImage, @"1Bit_Monochrome");

        NSLog(@"Modified UIImage with 1-bit Monochrome settings created and saved successfully.");

    }


    NSLog(@"Bitmap context with 1-bit Monochrome settings created and handled successfully");

    CGContextRelease(ctx);

}


#pragma mark - createBitmapContextBigEndian


/*!

* @brief Creates a bitmap context with Big Endian byte ordering for image data processing.

* @details This function is designed for scenarios where Big Endian representation is crucial for the consistency of pixel color data in memory, particularly in systems or applications expecting

* this byte order. It validates the input image, establishes an appropriate RGB color space, configures a bitmap context for Big Endian processing, applies an "enhanced fuzzing logic" to the

* pixel data for testing or artistic purposes, and finalizes the process by releasing resources and saving the modified image.

*

* @param cgImg The `CGImageRef` representing the original image for processing. It is essential that this image is not null to proceed with the transformation.

*

* ### Process:

* 1. **Input Validation**: Ensures the `CGImageRef` provided is valid and not null.

* 2. **Color Space Creation**: Sets up a color space suitable for RGB data manipulation.

* 3. **Bitmap Context Configuration**: Initiates a bitmap context with Big Endian byte ordering to prioritize the most significant byte in pixel color data.

* 4. **Image Rendering**: Draws the original image into the configured bitmap context, preparing for data manipulation.

* 5. **Pixel Data Fuzzing**: Applies an "enhanced fuzzing logic" directly to the raw pixel data, aiming to test algorithm resilience, simulate effects, or introduce noise.

* 6. **CGImage Generation**: Creates a new CGImage from the context to encapsulate the modifications.

* 7. **Resource Cleanup**: Releases the color space, bitmap context, and any other allocated resources to ensure efficient memory management.

* 8. **Image Saving**: Marks the transformation's completion by saving the modified image with a unique identifier.

*

* ### Example Usage:

*  @code

* // Assuming cgImg is a valid CGImageRef

* createBitmapContextBigEndian(cgImg);

* @endcode

*/


void createBitmapContextBigEndian(CGImageRef cgImg) {

    if (!cgImg) {

        NSLog(@"Invalid CGImageRef provided.");

        return;

    }


    NSLog(@"Creating bitmap context with Big Endian settings");


    size_t width = CGImageGetWidth(cgImg);

    size_t height = CGImageGetHeight(cgImg);

    CGColorSpaceRef colorSpace = CGColorSpaceCreateDeviceRGB(); // Create color space

    if (!colorSpace) {

        NSLog(@"Failed to create color space for Big Endian settings");

        return;

    }


    CGContextRef ctx = CGBitmapContextCreate(NULL, width, height, 8, width * 4, colorSpace, kCGImageAlphaPremultipliedLast | kCGBitmapByteOrder32Big);

    CGColorSpaceRelease(colorSpace); // Release the color space object


    if (!ctx) {

        NSLog(@"Failed to create bitmap context with Big Endian settings");

        return;

    }


    // Draw the CGImage into the bitmap context

    CGContextDrawImage(ctx, CGRectMake(0, 0, width, height), cgImg);


    // Access the raw pixel data

    unsigned char *rawData = CGBitmapContextGetData(ctx);

    if (rawData) {

        NSLog(@"Applying enhanced fuzzing logic to the Big Endian bitmap context");

        applyEnhancedFuzzingToBitmapContext(rawData, width, height, YES);

    }


    // Create a new image from the modified context

    CGImageRef newCgImg = CGBitmapContextCreateImage(ctx);

    if (!newCgImg) {

        NSLog(@"Failed to create CGImage from Big Endian context");

    } else {

        UIImage *newImage = [UIImage imageWithCGImage:newCgImg];

        CGImageRelease(newCgImg); // Release the created CGImage


        // Save the fuzzed image with a context-specific identifier

        saveFuzzedImage(newImage, @"Big_Endian_png");

        saveFuzzedImage(newImage, @"Big_Endian_jpeg");

        saveFuzzedImage(newImage, @"Big_Endian_gif");

        NSLog(@"Modified UIImage with Big Endian settings created and saved successfully in PNG, JPEG and GIF.");

    }


    NSLog(@"Bitmap context with Big Endian settings created and handled successfully for PNG, JPG and GIF");

    CGContextRelease(ctx); // Release the bitmap context

}


#pragma mark - createBitmapContextLittleEndian


/*!

* @brief Initializes a bitmap context with Little Endian settings for image data processing.

* @details This function focuses on preparing and manipulating a bitmap graphics context optimized for Little Endian byte ordering, suitable for systems and applications that require the least

* significant byte to be stored first. It involves creating an RGB color space, setting up the bitmap context for Little Endian processing, applying predefined fuzzing algorithms to pixel data, and

* finalizing the modified image. The process is aimed at testing image processing capabilities, creating visual effects, or introducing distortions through direct pixel manipulation.

*

* @param cgImg The `CGImageRef` representing the image to be processed, which must not be null to ensure successful transformation.

*

* ### Process:

* 1. **Input Validation**: Confirms that the provided `CGImageRef` is valid and non-null.

* 2. **Color Space and Context Setup**: Establishes an RGB color space and creates a bitmap context tailored for Little Endian byte ordering.

* 3. **Image Drawing and Pixel Manipulation**: Renders the original image into the context, then employs "enhanced fuzzing logic" for direct pixel data alteration.

* 4. **CGImage Creation**: Generates a new CGImage from the modified bitmap context, capturing the changes.

* 5. **Resource Management**: Releases the color space and bitmap context to manage memory usage effectively.

* 6. **Image Saving**: Completes the modification process by saving the altered image with a specific identifier, integrating external routines for saving and potentially additional processing.

*

* ### Example Usage:

*  @code

* // Assuming cgImg is a valid CGImageRef

*  createBitmapContextLittleEndian(cgImg);

* @endcode

*/


void createBitmapContextLittleEndian(CGImageRef cgImg) {

    if (!cgImg) {

        NSLog(@"Invalid CGImageRef provided.");

        return;

    }


    NSLog(@"Creating bitmap context with Little Endian settings");


    size_t width = CGImageGetWidth(cgImg);

    size_t height = CGImageGetHeight(cgImg);

    CGColorSpaceRef colorSpace = CGColorSpaceCreateDeviceRGB(); // Create color space

    if (!colorSpace) {

        NSLog(@"Failed to create color space for Little Endian settings");

        return;

    }


    CGContextRef ctx = CGBitmapContextCreate(NULL, width, height, 8, width * 4, colorSpace, kCGImageAlphaPremultipliedFirst | kCGBitmapByteOrder32Little);

    CGColorSpaceRelease(colorSpace); // Release the color space object


    if (!ctx) {

        NSLog(@"Failed to create bitmap context with Little Endian settings");

        return;

    }


    // Draw the CGImage into the bitmap context

    CGContextDrawImage(ctx, CGRectMake(0, 0, width, height), cgImg);


    // Access the raw pixel data

    unsigned char *rawData = CGBitmapContextGetData(ctx);

    if (rawData) {

        NSLog(@"Applying enhanced fuzzing logic to the Little Endian bitmap context");

        applyEnhancedFuzzingToBitmapContext(rawData, width, height, YES);

    }


    // Create a new image from the modified context

    CGImageRef newCgImg = CGBitmapContextCreateImage(ctx);

    if (!newCgImg) {

        NSLog(@"Failed to create CGImage from Little Endian context");

    } else {

        UIImage *newImage = [UIImage imageWithCGImage:newCgImg];

        CGImageRelease(newCgImg); // Release the created CGImage


        // Save the fuzzed image with a context-specific identifier

        saveFuzzedImage(newImage, @"Little_Endian_png");

        saveFuzzedImage(newImage, @"Little_Endian_jpeg");

        saveFuzzedImage(newImage, @"Little_Endian_gif");

        NSLog(@"Modified UIImage with Little Endian settings created and saved successfully for PNG, JPG and GIF.");

    }


    NSLog(@"Bitmap context with Little Endian settings created successfully");

    CGContextRelease(ctx); // Release the bitmap context

}


#pragma mark - createBitmapContext8BitInvertedColors


/*!

 * @brief Transforms the color representation of an image by inverting its colors and applying an 8-bit color depth.

 *

 * This function is designed for manipulating a bitmap graphics context to invert the RGB values of each pixel in a given CGImageRef,

 * while keeping the alpha channel unchanged. It applies an "enhanced fuzzing logic" to the modified pixel data, making it suitable for creating visual negatives,

 * enhancing image contrast, or evaluating the robustness of image processing algorithms. The color inversion process creates complementary colors for each pixel,

 * offering a straightforward method for achieving visual effects or testing.

 *

 * The setup includes configuring a bitmap context optimized for color inversion and specifying byte order and alpha channel handling. It involves iterating over raw pixel data

 * for manual color inversion and integrating enhanced fuzzing routines for further pixel manipulation. The function concludes by generating a new CGImage that encapsulates all modifications,

 * which is then saved with a unique identifier.

 *

 * Resource management is a key aspect, ensuring efficient memory use and necessitating the implementation of fuzzing and saving routines elsewhere within the application's codebase.

 *

 * @param cgImg The CGImageRef representing the source image to be transformed. This parameter must not be NULL to ensure proper function execution.

 *

 * @note Utilizing this function requires careful consideration of the source image's format and the intended outcome, particularly in terms of color depth and the specific effects of the enhanced fuzzing logic.

 * The reliance on external methods for the fuzzing process and saving the modified image highlights the need for a comprehensive approach to image processing within the application.

 *

 * ### Example Usage:

 * @code

 * CGImageRef sourceImage = ...; // Assume this is a valid CGImageRef

 * createBitmapContextForColorInversionAndFuzzing(sourceImage);

 * @endcode

 */


void createBitmapContext8BitInvertedColors(CGImageRef cgImg) {

    if (!cgImg) {

        NSLog(@"Invalid CGImageRef provided.");

        return;

    }


    NSLog(@"Creating bitmap context with 8-bit depth, inverted colors");


    size_t width = CGImageGetWidth(cgImg);

    size_t height = CGImageGetHeight(cgImg);

    CGColorSpaceRef colorSpace = CGColorSpaceCreateDeviceRGB(); // Create color space

    if (!colorSpace) {

        NSLog(@"Failed to create color space for 8-bit depth, inverted colors");

        return;

    }


    CGContextRef ctx = CGBitmapContextCreate(NULL, width, height, 8, width * 4, colorSpace, kCGImageAlphaNoneSkipLast | kCGBitmapByteOrder32Little);

    CGColorSpaceRelease(colorSpace); // Release the color space object


    if (!ctx) {

        NSLog(@"Failed to create bitmap context with 8-bit depth, inverted colors");

        return;

    }


    // Draw the CGImage into the bitmap context

    CGContextDrawImage(ctx, CGRectMake(0, 0, width, height), cgImg);


    // Access the raw pixel data

    unsigned char *rawData = CGBitmapContextGetData(ctx);

    if (rawData) {

        // Invert colors for each pixel

        for (size_t i = 0; i < width * height * 4; i += 4) {

            rawData[i] = 255 - rawData[i]; // Invert Red

            rawData[i + 1] = 255 - rawData[i + 1]; // Invert Green

            rawData[i + 2] = 255 - rawData[i + 2]; // Invert Blue

            // Alpha is skipped

        }


        // Apply enhanced fuzzing with string injection logic

        applyEnhancedFuzzingToBitmapContext(rawData, width, height, YES);

    }


    // Create a new image from the modified context

    CGImageRef newCgImg = CGBitmapContextCreateImage(ctx);

    if (!newCgImg) {

        NSLog(@"Failed to create CGImage from 8-bit depth, inverted colors");

    } else {

        UIImage *newImage = [UIImage imageWithCGImage:newCgImg];

        CGImageRelease(newCgImg); // Release the created CGImage


        // Save the fuzzed image with a specific identifier

        saveFuzzedImage(newImage, @"8Bit_InvertedColors_png");

        saveFuzzedImage(newImage, @"8Bit_InvertedColors_jpeg");

        saveFuzzedImage(newImage, @"8Bit_InvertedColors_gif");

        NSLog(@"Modified UIImage with createBitmapContext8BitInvertedColors settings created and saved successfully for PNG, JPG and GIF.");

    }


    CGContextRelease(ctx); // Release the bitmap context

}


#pragma mark - createBitmapContext32BitFloat4Component


/*!

 * @brief Creates a bitmap context with standard RGB settings, applies a fuzzing process to alter the image, and saves the fuzzed image.

 * Useful for testing image processing functionalities or creating varied visual effects.

 *

 * @details This function demonstrates how to create a bitmap context, manipulate image pixel data through a fuzzing process, and save the modified image. It covers validating input images, creating bitmap contexts with specific configurations, and applying image processing algorithms to explore and enhance image processing techniques.

 *

 * @param cgImg The source image from which to create the bitmap context, represented as a `CGImageRef`.

 *

 * @note

 * - **Memory Management**: Demonstrates careful release of resources, including color space and bitmap context, and freeing of dynamically allocated memory.

 * - **Debugging**: Includes commented-out calls to `debugMemoryHandling` to illustrate potential insertion points for memory diagnostics.

 * - **Extensibility**: The `permutation` parameter demonstrates the function's potential to apply various fuzzing types based on input parameters, enhancing modularity and maintainability.

 * - **Logging**: Utilizes `NSLog` for debugging purposes. A more sophisticated logging framework is recommended for production code.

 * - **Separation of Concerns**: Abstracts the actual fuzzing logic into the `applyEnhancedFuzzingToBitmapContext` function, promoting code modularity and maintainability.

 *

 * ### Process Overview:

 * 1. Validates the `CGImageRef` input to ensure a source image is provided.

 * 2. Retrieves source image dimensions and calculates bytes per row for an RGBA pixel format.

 * 3. Allocates memory for raw pixel data.

 * 4. Creates a `CGColorSpaceRef` in the device RGB color space.

 * 5. Specifies bitmap information for alpha channel handling and byte order.

 * 6. Creates the bitmap context with allocated memory, color space, and specified bitmap info.

 * 7. Draws the source image into the bitmap context.

 * 8. Applies a fuzzing algorithm to manipulate the pixel data directly.

 * 9. Generates a new `CGImageRef` from the bitmap context, converts it to `UIImage`, and saves the result.

 * 10. Releases allocated resources, including the bitmap context and pixel data memory.

 *

 * ### Usage Example:

 * @code

 * // Process with all configurations

 * processImage(myImage, -1);

 *

 * // Process with a specific configuration

 * processImage(myImage, 3); // Example: Applies Non-Premultiplied Alpha settings

 * @endcode

 */


void createBitmapContext32BitFloat4Component(CGImageRef cgImg) {

    static dispatch_once_t onceToken;

    static os_log_t createBitmapContextLog;

    dispatch_once(&onceToken, ^{

        createBitmapContextLog = os_log_create("cx.srd.xnuimagefuzzer", "CreateBitmapContext");

    });


    os_signpost_id_t spid = os_signpost_id_generate(createBitmapContextLog);

    os_signpost_event_emit(createBitmapContextLog, spid, "Start creating createBitmapContext32BitFloat4Component context");


    if (!cgImg) {

        NSLog(@"Invalid CGImageRef provided.");

        return;

    }


    NSLog(@"Creating bitmap context with 32-bit float, 4-component settings");


    size_t width = CGImageGetWidth(cgImg);

    size_t height = CGImageGetHeight(cgImg);

    size_t bytesPerRow = width * 4 * sizeof(float);


    CGColorSpaceRef colorSpace = CGColorSpaceCreateDeviceRGB();

    if (!colorSpace) {

        NSLog(@"Failed to create color space");

        return;

    }


    CGBitmapInfo bitmapInfo = kCGImageAlphaPremultipliedLast | kCGBitmapFloatComponents;

    CGContextRef ctx = CGBitmapContextCreate(NULL, width, height, 32, bytesPerRow, colorSpace, bitmapInfo);

    CGColorSpaceRelease(colorSpace);


    if (!ctx) {

        NSLog(@"Failed to create bitmap context with 32-bit float, 4-component settings");

        return;

    }


    CGContextDrawImage(ctx, CGRectMake(0, 0, width, height), cgImg);


    NSLog(@"Applying enhanced fuzzing logic to the bitmap context");

    // Placeholder for enhanced fuzzing logic application. Implement this function based on your fuzzing requirements.

    applyEnhancedFuzzingToBitmapContextWithFloats((float*)CGBitmapContextGetData(ctx), width, height, YES);


    CGImageRef newCgImg = CGBitmapContextCreateImage(ctx);

    if (!newCgImg) {

        NSLog(@"Failed to create CGImage from context");

    } else {

        UIImage *newImage = [UIImage imageWithCGImage:newCgImg];

        CGImageRelease(newCgImg);

        // Placeholder for saving the fuzzed image. Implement this function to save your image as needed.

        saveFuzzedImage(newImage, @"32bit_float4_png");

        saveFuzzedImage(newImage, @"32bit_float4_jpeg");

        saveFuzzedImage(newImage, @"32bit_float4_gif");

        NSLog(@"Modified UIImage with 32-bit float, 4-component settings created and saved successfully for PNG, JPG and GIF.");

    }


    CGContextRelease(ctx);


    os_signpost_event_emit(createBitmapContextLog, spid, "Finished creating bitmap context for 32bit_float4");

}


AppDelegate.h
XNU Image Fuzzer.

printColored
void printColored(const char *color, const char *message)
Prints a message with specified ANSI color to the console.
Definition xnuimagefuzzer.m:552

createBitmapContext16BitDepth
void createBitmapContext16BitDepth(CGImageRef cgImg)
Creates a bitmap graphics context for 16-bit depth per channel processing.
Definition xnuimagefuzzer.m:2152

applyColorShift
void applyColorShift(unsigned char *data, size_t index)
Applies a color shift to a specific pixel within the image data.
Definition xnuimagefuzzer.m:942

applyMultiplicativeNoise
void applyMultiplicativeNoise(float *pixel)

INJECT_STRING_9
#define INJECT_STRING_9
Definition xnuimagefuzzer.m:185

hashString
unsigned long hashString(const char *str)
Computes a hash value for a given string.
Definition xnuimagefuzzer.m:1371

createBitmapContextPremultipliedFirstAlpha
void createBitmapContextPremultipliedFirstAlpha(CGImageRef cgImg)
Creates a bitmap context with Premultiplied First Alpha settings and applies image processing.
Definition xnuimagefuzzer.m:1919

createBitmapContextBigEndian
void createBitmapContextBigEndian(CGImageRef cgImg)
Creates a bitmap context with Big Endian byte ordering for image data processing.
Definition xnuimagefuzzer.m:2578

createBitmapContext8BitInvertedColors
void createBitmapContext8BitInvertedColors(CGImageRef cgImg)
Transforms the color representation of an image by inverting its colors and applying an 8-bit color d...
Definition xnuimagefuzzer.m:2735

createBitmapContextHDRFloatComponents
void createBitmapContextHDRFloatComponents(CGImageRef cgImg)
Initializes a bitmap context for HDR content with floating-point components.
Definition xnuimagefuzzer.m:2284

READ_COMM_PAGE_VALUE
#define READ_COMM_PAGE_VALUE(type, address)
Dumps key communication page details for diagnostic purposes.
Definition xnuimagefuzzer.m:500

dumpDeviceInfo
void dumpDeviceInfo(void)
Logs comprehensive information about the current device.
Definition xnuimagefuzzer.m:344

createBitmapContext1BitMonochrome
void createBitmapContext1BitMonochrome(CGImageRef cgImg)
Creates a bitmap context for 1-bit monochrome image processing.
Definition xnuimagefuzzer.m:2503

LogRandomPixelData
void LogRandomPixelData(unsigned char *rawData, size_t width, size_t height, const char *message)
Logs information about a random set of pixels from an image's raw data.
Definition xnuimagefuzzer.m:908

COMM_PAGE_CPU_CAPABILITIES64
#define COMM_PAGE_CPU_CAPABILITIES64
Definition xnuimagefuzzer.m:92

INJECT_STRING_7
#define INJECT_STRING_7
Definition xnuimagefuzzer.m:183

createUniqueDirectoryForSavingImages
NSString * createUniqueDirectoryForSavingImages(void)
Creates a unique directory for saving images within the documents directory.
Definition xnuimagefuzzer.m:817

INJECT_STRING_1
#define INJECT_STRING_1
Configures robust strings for security testing within the application.
Definition xnuimagefuzzer.m:177

performAllImagePermutations
void performAllImagePermutations(void)
Generates a random image and processes it with all permutation strategies.
Definition xnuimagefuzzer.m:1402

applyExtremeValues
void applyExtremeValues(float *pixel)

createBitmapContextNonPremultipliedAlpha
void createBitmapContextNonPremultipliedAlpha(CGImageRef cgImg)
Creates a bitmap graphics context with Non-Premultiplied Alpha settings for processing a CGImage.
Definition xnuimagefuzzer.m:2035

applyFuzzingToBitmapContext
void applyFuzzingToBitmapContext(unsigned char *rawData, size_t width, size_t height)
Applies fuzzing to the RGB components of each pixel in a bitmap context.
Definition xnuimagefuzzer.m:1281

invertColor
void invertColor(float *pixel)

verboseLogging
static int verboseLogging
Core and external libraries necessary for the fuzzer functionality.
Definition xnuimagefuzzer.m:62

debugMemoryHandling
void debugMemoryHandling(void)
Allocates and deallocates memory chunks using mmap and munmap for debugging.
Definition xnuimagefuzzer.m:1333

applyPixelScramble
void applyPixelScramble(unsigned char *data, size_t index)
Randomly scrambles the RGB values of a pixel.
Definition xnuimagefuzzer.m:958

loadImageFromFile
UIImage * loadImageFromFile(NSString *path)
Loads an image from the application bundle into a UIImage object.
Definition xnuimagefuzzer.m:1605

INJECT_STRING_2
#define INJECT_STRING_2
Definition xnuimagefuzzer.m:178

signature
char * signature(void)
Definition xnuimagefuzzer.m:301

injectStrings
char * injectStrings[10]
Definition xnuimagefuzzer.m:190

NUMBER_OF_STRINGS
#define NUMBER_OF_STRINGS
Definition xnuimagefuzzer.m:187

isValidImagePath
BOOL isValidImagePath(NSString *path)
Prototypes for utility functions used in image processing.
Definition xnuimagefuzzer.m:1574

createBitmapContextStandardRGB
void createBitmapContextStandardRGB(CGImageRef cgImg, int permutation)
Creates a bitmap context with standard RGB settings, applies a fuzzing process to alter the image,...
Definition xnuimagefuzzer.m:1813

saveMonochromeImage
void saveMonochromeImage(UIImage *image, NSString *identifier)
Saves a monochrome UIImage with a specified identifier to the documents directory.
Definition xnuimagefuzzer.m:791

INJECT_STRING_4
#define INJECT_STRING_4
Definition xnuimagefuzzer.m:180

convertTo1BitMonochrome
void convertTo1BitMonochrome(unsigned char *rawData, size_t width, size_t height)
Converts image data to 1-bit monochrome using a simple thresholding technique.
Definition xnuimagefuzzer.m:759

logPixelData
void logPixelData(unsigned char *rawData, size_t width, size_t height, const char *message, BOOL verbose)
Logs information about a random set of pixels from an image's raw data.
Definition xnuimagefuzzer.m:863

createBitmapContextGrayscale
void createBitmapContextGrayscale(CGImageRef cgImg)
Definition xnuimagefuzzer.m:2251

applyEnhancedFuzzingToBitmapContext
void applyEnhancedFuzzingToBitmapContext(unsigned char *rawData, size_t width, size_t height, BOOL verbose)
Applies enhanced fuzzing techniques to bitmap data.
Definition xnuimagefuzzer.m:980

processImage
void processImage(UIImage *image, int permutation)
Processes an image using various bitmap context configurations.
Definition xnuimagefuzzer.m:1655

cpu_cap_strings
const char * cpu_cap_strings[]
Identifies the CPU's supported capabilities.
Definition xnuimagefuzzer.m:455

addAdditiveNoise
void addAdditiveNoise(float *pixel)

saveFuzzedImage
void saveFuzzedImage(UIImage *image, NSString *contextDescription)
Saves a modified (fuzzed) UIImage to the documents directory.
Definition xnuimagefuzzer.m:642

main
int main(int argc, const char *argv[])
Entry point of the application, handling initialization, argument parsing, and image processing.
Definition xnuimagefuzzer.m:1497

assignSpecialFloatValues
void assignSpecialFloatValues(float *pixel)

applyEnhancedFuzzingToBitmapContextWithFloats
void applyEnhancedFuzzingToBitmapContextWithFloats(float *rawData, size_t width, size_t height, BOOL verboseLogging)
Applies enhanced fuzzing techniques to bitmap data using 32-bit floating-point precision.
Definition xnuimagefuzzer.m:1139

INJECT_STRING_6
#define INJECT_STRING_6
Definition xnuimagefuzzer.m:182

INJECT_STRING_10
#define INJECT_STRING_10
Definition xnuimagefuzzer.m:186

createBitmapContext32BitFloat4Component
void createBitmapContext32BitFloat4Component(CGImageRef cgImg)
Creates a bitmap context with standard RGB settings, applies a fuzzing process to alter the image,...
Definition xnuimagefuzzer.m:2833

generateFuzzedImageData
NSData * generateFuzzedImageData(size_t width, size_t height, CFStringRef imageType)
Generates a random image for fuzzing.
Definition xnuimagefuzzer.m:1446

dumpMacDeviceInfo
void dumpMacDeviceInfo(void)
Logs system information for macOS devices.
Definition xnuimagefuzzer.m:407

RESET_COLOR
#define RESET_COLOR
Definition xnuimagefuzzer.m:153

formattedCurrentDateTime
NSString * formattedCurrentDateTime(void)
Definition xnuimagefuzzer.m:266

createBitmapContextAlphaOnly
void createBitmapContextAlphaOnly(CGImageRef cgImg)
Creates a bitmap context for alpha channel manipulation of a CGImageRef.
Definition xnuimagefuzzer.m:2406

INJECT_STRING_3
#define INJECT_STRING_3
Definition xnuimagefuzzer.m:179

applyEnhancedFuzzingToBitmapContextAlphaOnly
void applyEnhancedFuzzingToBitmapContextAlphaOnly(unsigned char *alphaData, size_t width, size_t height, BOOL verboseLogging)
Applies enhanced fuzzing techniques to the alpha channel of bitmap pixel data.
Definition xnuimagefuzzer.m:1223

dump_comm_page
void dump_comm_page(void)
Definition xnuimagefuzzer.m:502

COMM_PAGE64_BASE_ADDRESS
#define COMM_PAGE64_BASE_ADDRESS
Definition xnuimagefuzzer.m:91

UIImageGIFRepresentation
NSData * UIImageGIFRepresentation(UIImage *image)
Creates a GIF representation of a UIImage. This custom function handles the conversion of a UIImage t...
Definition xnuimagefuzzer.m:701

INJECT_STRING_5
#define INJECT_STRING_5
Definition xnuimagefuzzer.m:181

INJECT_STRING_8
#define INJECT_STRING_8
Definition xnuimagefuzzer.m:184

createBitmapContextLittleEndian
void createBitmapContextLittleEndian(CGImageRef cgImg)
Initializes a bitmap context with Little Endian settings for image data processing.
Definition xnuimagefuzzer.m:2655