[issue2386] h264_mp4toannexb filter crashes

Carl Eugen Hoyos Fri, 26 Nov 2010 02:26:34 -0800

Carl Eugen Hoyos <[email protected]> added the comment:


250MB sample uploaded to samples/3D, please delete if you think it is too big
and not useful.

(gdb) r -i tests/data/vsynth1/mpeg4-thread.avi -vcodec copy -vbsf
h264_mp4toannexb -f h264 -y /dev/null
Starting program: ffmpeg_g -i tests/data/vsynth1/mpeg4-thread.avi -vcodec copy
-vbsf h264_mp4toannexb -f h264 -y /dev/null
[Thread debugging using libthread_db enabled]
FFmpeg version SVN-r25831, Copyright (c) 2000-2010 the FFmpeg developers
  built on Nov 26 2010 11:20:47 with gcc 4.4.5
  configuration: --cc=/usr/local/gcc-4.4.5/bin/gcc
  libavutil     50.33. 0 / 50.33. 0
  libavcore      0.14. 0 /  0.14. 0
  libavcodec    52.97. 2 / 52.97. 2
  libavformat   52.87. 0 / 52.87. 0
  libavdevice   52. 2. 2 / 52. 2. 2
  libavfilter    1.65. 0 /  1.65. 0
  libswscale     0.12. 0 /  0.12. 0
Input #0, avi, from 'tests/data/vsynth1/mpeg4-thread.avi':
  Duration: 00:00:02.00, start: 0.000000, bitrate: 3099 kb/s
    Stream #0.0: Video: mpeg4, yuv420p, 352x288 [PAR 1:1 DAR 11:9], 25 tbr, 25
tbn, 25 tbc
Output #0, h264, to '/dev/null':
  Metadata:
    encoder         : Lavf52.87.0
    Stream #0.0: Video: mpeg4, yuv420p, 352x288 [PAR 1:1 DAR 11:9], q=2-31, 90k
tbn, 25 tbc
Stream mapping:
  Stream #0.0 -> #0.0
Press [q] to stop encoding

Program received signal SIGSEGV, Segmentation fault.
h264_mp4toannexb_filter (bsfc=<value optimized out>, avctx=<value optimized
out>, args=<value optimized out>, poutbuf=0x7fffffffc890,
poutbuf_size=0x7fffffffc898, buf=0x11ed4c0 "", buf_size=<value optimized out>,
keyframe=1)
    at libavcodec/h264_mp4toannexb_bsf.c:117
117             memset(out + total_size, 0, FF_INPUT_BUFFER_PADDING_SIZE);
(gdb) bt
#0  h264_mp4toannexb_filter (bsfc=<value optimized out>, avctx=<value optimized
out>, args=<value optimized out>, poutbuf=0x7fffffffc890,
poutbuf_size=0x7fffffffc898, buf=0x11ed4c0 "", buf_size=<value optimized out>,
keyframe=1)
    at libavcodec/h264_mp4toannexb_bsf.c:117
#1  0x0000000000406d69 in write_frame (s=<value optimized out>,
pkt=0x7fffffffcc30, avctx=0x11e9670, bsfc=0x11d9860) at ffmpeg.c:741
#2  0x0000000000409db8 in output_packet (ist=0x11dad30, ist_index=<value
optimized out>, ost_table=<value optimized out>, nb_ostreams=<value optimized
out>, pkt=<value optimized out>) at ffmpeg.c:1715
#3  0x000000000040c500 in transcode (nb_output_files=<value optimized out>,
nb_input_files=<value optimized out>, stream_maps=<value optimized out>,
nb_stream_maps=<value optimized out>, input_files=<value optimized out>,
    output_files=<value optimized out>) at ffmpeg.c:2628
#4  0x000000000040d4a3 in main (argc=11, argv=<value optimized out>) at
ffmpeg.c:4319
(gdb) disass $pc-32 $pc+32
Dump of assembler code from 0x5c43be to 0x5c43fe:
0x00000000005c43be <h264_mp4toannexb_filter+1102>:      rex.WXB add   
%rax,-0x77(%r9)
0x00000000005c43c2 <h264_mp4toannexb_filter+1106>:      (bad)
0x00000000005c43c5 <h264_mp4toannexb_filter+1109>:      decl   (%rdi)
0x00000000005c43c7 <h264_mp4toannexb_filter+1111>:      test  
%edx,-0x1(%rdi,%rdi,8)
0x00000000005c43cb <h264_mp4toannexb_filter+1115>:      decl   -0x77(%rax)
0x00000000005c43ce <h264_mp4toannexb_filter+1118>:      callq  0x24b8cf1b
0x00000000005c43d3 <h264_mp4toannexb_filter+1123>:      and    %cl,-0x75(%rax)
0x00000000005c43d6 <h264_mp4toannexb_filter+1126>:      insb   (%dx),%es:(%rdi)
0x00000000005c43d7 <h264_mp4toannexb_filter+1127>:      and    $0x30,%al
0x00000000005c43d9 <h264_mp4toannexb_filter+1129>:      mov    0x40(%rsp),%r14
0x00000000005c43de <h264_mp4toannexb_filter+1134>:      movq   
$0x0,(%rax,%r12,1)
0x00000000005c43e6 <h264_mp4toannexb_filter+1142>:      mov    0x38(%rsp),%rdx
0x00000000005c43eb <h264_mp4toannexb_filter+1147>:      mov    %rax,0x10(%rsp)
0x00000000005c43f0 <h264_mp4toannexb_filter+1152>:      mov    0x20(%rdx),%rdi
0x00000000005c43f4 <h264_mp4toannexb_filter+1156>:      callq  0x903480 
<av_free>
0x00000000005c43f9 <h264_mp4toannexb_filter+1161>:      mov    0x10(%rsp),%rax
End of assembler dump.
(gdb) info registers
rax            0x0      0
rbx            0x7fffffffc890   140737488341136
rcx            0x11dadf7        18722295
rdx            0x1      1
rsi            0x11e9670        18781808
rdi            0x11d9840        18716736
rbp            0x7fffffffc898   0x7fffffffc898
rsp            0x7fffffffc7d0   0x7fffffffc7d0
r8             0x7fffffffc898   140737488341144
r9             0x11ed4c0        18797760
r10            0xc870a0 13136032
r11            0x0      0
r12            0x0      0
r13            0x1      1
r14            0x11ed4c0        18797760
r15            0x0      0
rip            0x5c43de 0x5c43de <h264_mp4toannexb_filter+1134>
eflags         0x10246  [ PF ZF IF RF ]
cs             0x33     51
ss             0x2b     43
ds             0x0      0
es             0x0      0
fs             0x0      0
gs             0x0      0
fctrl          0x37f    895
fstat          0x0      0
ftag           0xffff   65535
fiseg          0x0      0
fioff          0x0      0
foseg          0x0      0
fooff          0x0      0
fop            0x0      0
mxcsr          0x1fa0   [ PE IM DM ZM OM UM PM ]

----------
status: new -> open
substatus: new -> reproduced
topic: +avcodec

________________________________________________
FFmpeg issue tracker <[email protected]>
<https://roundup.ffmpeg.org/issue2386>
________________________________________________

[issue2386] h264_mp4toannexb filter crashes

Reply via email to