New submission from Carl Eugen Hoyos <[email protected]>:
(gdb) r -i combined_22_16_1_64000_v2c_0_exclusive_29.wma -f null -
FFmpeg version SVN-r26313, Copyright (c) 2000-2011 the FFmpeg developers
built on Jan 12 2011 00:18:28 with gcc 4.4.5
configuration: --cc=/usr/local/gcc-4.4.5/bin/gcc --disable-optimizations
--disable-asm
libavutil 50.36. 0 / 50.36. 0
libavcore 0.16. 0 / 0.16. 0
libavcodec 52.108. 0 / 52.108. 0
libavformat 52.92. 0 / 52.92. 0
libavdevice 52. 2. 3 / 52. 2. 3
libavfilter 1.72. 0 / 1.72. 0
libswscale 0.12. 0 / 0.12. 0
Input #0, asf, from 'combined_22_16_1_64000_v2c_0_exclusive_29.wma':
Metadata:
WMFSDKVersion : 10.00.00.3700
WMFSDKNeeded : 0.0.0.0000
IsVBR : 0
Duration: 00:03:49.43, start: 1.579000, bitrate: 64 kb/s
Stream #0.0(eng): Audio: wmapro, 22050 Hz, mono, flt, 64 kb/s
Output #0, null, to 'pipe:':
Metadata:
WMFSDKVersion : 10.00.00.3700
WMFSDKNeeded : 0.0.0.0000
IsVBR : 0
encoder : Lavf52.92.0
Stream #0.0(eng): Audio: pcm_s16le, 22050 Hz, mono, s16, 352 kb/s
Stream mapping:
Stream #0.0 -> #0.0
Press [q] to stop encoding
Multiple frames in a packet from stream 0
Program received signal SIGSEGV, Segmentation fault.
0x0000000000558958 in ff_vector_fmul_window_c (dst=0x1223870, src0=0x1223870,
src1=0x1223870, win=0x80,
add_bias=0, len=32) at libavcodec/dsputil.c:3781
3781 float wi = win[i];
(gdb) bt
#0 0x0000000000558958 in ff_vector_fmul_window_c (dst=0x1223870,
src0=0x1223870, src1=0x1223870,
win=0x80, add_bias=0, len=32) at libavcodec/dsputil.c:3781
#1 0x00000000007aec44 in wmapro_window (s=0x1212d10) at
libavcodec/wmaprodec.c:1028
#2 0x00000000007afa76 in decode_subframe (s=0x1212d10) at
libavcodec/wmaprodec.c:1242
#3 0x00000000007afe3f in decode_frame (s=0x1212d10) at
libavcodec/wmaprodec.c:1337
#4 0x00000000007b06a2 in decode_packet (avctx=0x11b7da0, data=0x1256df0,
data_size=0x7fffffffcf1c,
avpkt=0x7fffffffcf20) at libavcodec/wmaprodec.c:1537
#5 0x0000000000750c2e in avcodec_decode_audio3 (avctx=0x11b7da0,
samples=0x1256df0,
frame_size_ptr=0x7fffffffcf1c, avpkt=0x7fffffffcf20) at
libavcodec/utils.c:686
#6 0x000000000040900e in output_packet (ist=0x11b86a0, ist_index=0,
ost_table=0x11b8740, nb_ostreams=1,
pkt=0x7fffffffd250) at ffmpeg.c:1526
#7 0x000000000040d8b2 in transcode (output_files=0xc6e7e0, nb_output_files=1,
input_files=0xc6dcc0,
nb_input_files=1, stream_maps=0x0, nb_stream_maps=0) at ffmpeg.c:2643
#8 0x0000000000411ff8 in main (argc=6, argv=0x7fffffffddd8) at ffmpeg.c:4365
(gdb) disass $pc-32 $pc+32
Dump of assembler code from 0x558938 to 0x558978:
0x0000000000558938 <ff_vector_fmul_window_c+107>: lock mov
-0x14(%rbp),%eax
0x000000000055893c <ff_vector_fmul_window_c+111>: cltq
0x000000000055893e <ff_vector_fmul_window_c+113>: shl $0x2,%rax
0x0000000000558942 <ff_vector_fmul_window_c+117>: add -0x38(%rbp),%rax
0x0000000000558946 <ff_vector_fmul_window_c+121>: mov (%rax),%eax
0x0000000000558948 <ff_vector_fmul_window_c+123>: mov %eax,-0xc(%rbp)
0x000000000055894b <ff_vector_fmul_window_c+126>: mov -0x18(%rbp),%eax
0x000000000055894e <ff_vector_fmul_window_c+129>: cltq
0x0000000000558950 <ff_vector_fmul_window_c+131>: shl $0x2,%rax
0x0000000000558954 <ff_vector_fmul_window_c+135>: add -0x40(%rbp),%rax
0x0000000000558958 <ff_vector_fmul_window_c+139>: mov (%rax),%eax
0x000000000055895a <ff_vector_fmul_window_c+141>: mov %eax,-0x8(%rbp)
0x000000000055895d <ff_vector_fmul_window_c+144>: mov -0x14(%rbp),%eax
0x0000000000558960 <ff_vector_fmul_window_c+147>: cltq
0x0000000000558962 <ff_vector_fmul_window_c+149>: shl $0x2,%rax
0x0000000000558966 <ff_vector_fmul_window_c+153>: add -0x40(%rbp),%rax
0x000000000055896a <ff_vector_fmul_window_c+157>: mov (%rax),%eax
0x000000000055896c <ff_vector_fmul_window_c+159>: mov %eax,-0x4(%rbp)
0x000000000055896f <ff_vector_fmul_window_c+162>: mov -0x18(%rbp),%eax
0x0000000000558972 <ff_vector_fmul_window_c+165>: cltq
0x0000000000558974 <ff_vector_fmul_window_c+167>: shl $0x2,%rax
End of assembler dump.
(gdb) info register
rax 0x0 0
rbx 0x12237f0 19019760
rcx 0x0 0
rdx 0x1223870 19019888
rsi 0x12237f0 19019760
rdi 0x12237f0 19019760
rbp 0x7fffffffcaf0 0x7fffffffcaf0
rsp 0x7fffffffcaf0 0x7fffffffcaf0
r8 0x20 32
r9 0x5588cd 5605581
r10 0x0 0
r11 0x7ffff6d7f2c3 140737334735555
r12 0x404d20 4214048
r13 0x7fffffffddd0 140737488346576
r14 0x0 0
r15 0x0 0
rip 0x558958 0x558958 <ff_vector_fmul_window_c+139>
eflags 0x10247 [ CF PF ZF IF RF ]
cs 0x33 51
ss 0x2b 43
ds 0x0 0
es 0x0 0
fs 0x0 0
gs 0x0 0
fctrl 0x37f 895
fstat 0x0 0
ftag 0xffff 65535
fiseg 0x0 0
fioff 0x0 0
foseg 0x0 0
fooff 0x0 0
fop 0x0 0
mxcsr 0x1fa0 [ PE IM DM ZM OM UM PM ]
----------
messages: 13378
priority: normal
status: open
substatus: open
title: wmapro: crash in vector_fmul_window
topic: avcodec
type: bug
________________________________________________
FFmpeg issue tracker <[email protected]>
<https://roundup.ffmpeg.org/issue2538>
________________________________________________
