Re: [FFmpeg-devel] [PATCH]lavf/swfdec: Reduce score when auto-detecting swf files

2018-01-20 Thread Carl Eugen Hoyos 
2018-01-20 3:14 GMT+01:00 Michael Niedermayer :
> On Sat, Jan 20, 2018 at 02:36:08AM +0100, Carl Eugen Hoyos wrote:
>> 2018-01-19 23:42 GMT+01:00 Michael Niedermayer :
>> > On Fri, Jan 19, 2018 at 07:25:43PM +0100, Carl Eugen Hoyos wrote:
>> >> 2018-01-19 18:51 GMT+01:00 Michael Niedermayer :
>> >> > On Thu, Jan 18, 2018 at 09:28:40PM +0100, Carl Eugen Hoyos wrote:
>> >> >> Hi!
>> >> >>
>> >> >> The probe score for swf files (with uncompressed headers) is currently
>> >> >> very high after testing a little more than 24bit, attached patch
>> >> >> reduces the score.
>> >> >
>> >> > hmm
>> >> > the first 24 bits are tested and all but 2 values are rejected
>> >> >
>> >> > thats 23 bits that must match
>> >>
>> >> Ok.
>> >>
>> >> > then 4 values are tested which can be from 1 to 31 bits each
>> >> > the tests are each either == 0 or != 0 so they are a bit weak
>> >> > but its at least adding 4 bits that must match and also len
>> >>
>> >> I was sure this is not equivalent to four bits on a specific
>> >> position (but for the patch I assumed a "best case scenario"
>> >> where this actually were the case).
>> >>
>> >> > itself has to be smallish so we could argue that this gets us to
>> >> > about 28 bits
>> >>
>> >> > and then buf[3] is checked to be < 20
>> >> > at this point we need about 32bits to be matching, still not huge but
>> >> > id think this is stronger than what file extensions prove which are
>> >> > MAX/2
>> >>
>> >> We return MAX/2 for many "initial 32 bits" tests and I believe
>> >> we made good experience (and for MAX/2 the extension is
>> >> ignored or do I misremember?)
>> >>
>> >
>> >> > The test is weakened by using 0 / not 0 / ascii as values though
>> >> >
>> >> > Have you seen an actual probe failure ?
>> >>
>> >> No, I was looking at another issue.
>> >
>> > we have many files with wrong extensions, its not uncommon
>>
>> Yes, I misremembered how extensions are rated, I actually
>> wanted to set the return value to "AVPROBE_SCORE_EXTENSION + 1".
>> Would that be ok?
>
> yes

Pushed with this new value.

Thank you, Carl Eugen
___
ffmpeg-devel mailing list
ffmpeg-devel@ffmpeg.org
http://ffmpeg.org/mailman/listinfo/ffmpeg-devel

Re: [FFmpeg-devel] [PATCH]lavf/swfdec: Reduce score when auto-detecting swf files

2018-01-19 Thread Michael Niedermayer 
On Sat, Jan 20, 2018 at 02:36:08AM +0100, Carl Eugen Hoyos wrote:
> 2018-01-19 23:42 GMT+01:00 Michael Niedermayer :
> > On Fri, Jan 19, 2018 at 07:25:43PM +0100, Carl Eugen Hoyos wrote:
> >> 2018-01-19 18:51 GMT+01:00 Michael Niedermayer :
> >> > On Thu, Jan 18, 2018 at 09:28:40PM +0100, Carl Eugen Hoyos wrote:
> >> >> Hi!
> >> >>
> >> >> The probe score for swf files (with uncompressed headers) is currently
> >> >> very high after testing a little more than 24bit, attached patch
> >> >> reduces the score.
> >> >
> >> > hmm
> >> > the first 24 bits are tested and all but 2 values are rejected
> >> >
> >> > thats 23 bits that must match
> >>
> >> Ok.
> >>
> >> > then 4 values are tested which can be from 1 to 31 bits each
> >> > the tests are each either == 0 or != 0 so they are a bit weak
> >> > but its at least adding 4 bits that must match and also len
> >>
> >> I was sure this is not equivalent to four bits on a specific
> >> position (but for the patch I assumed a "best case scenario"
> >> where this actually were the case).
> >>
> >> > itself has to be smallish so we could argue that this gets us to
> >> > about 28 bits
> >>
> >> > and then buf[3] is checked to be < 20
> >> > at this point we need about 32bits to be matching, still not huge but
> >> > id think this is stronger than what file extensions prove which are
> >> > MAX/2
> >>
> >> We return MAX/2 for many "initial 32 bits" tests and I believe
> >> we made good experience (and for MAX/2 the extension is
> >> ignored or do I misremember?)
> >>
> >
> >> > The test is weakened by using 0 / not 0 / ascii as values though
> >> >
> >> > Have you seen an actual probe failure ?
> >>
> >> No, I was looking at another issue.
> >
> > we have many files with wrong extensions, its not uncommon
> 
> Yes, I misremembered how extensions are rated, I actually
> wanted to set the return value to "AVPROBE_SCORE_EXTENSION + 1".
> Would that be ok?

yes

thx

[...]
-- 
Michael GnuPG fingerprint: 9FF2128B147EF6730BADF133611EC787040B0FAB

Democracy is the form of government in which you can choose your dictator


signature.asc
Description: PGP signature
___
ffmpeg-devel mailing list
ffmpeg-devel@ffmpeg.org
http://ffmpeg.org/mailman/listinfo/ffmpeg-devel

Re: [FFmpeg-devel] [PATCH]lavf/swfdec: Reduce score when auto-detecting swf files

2018-01-19 Thread Carl Eugen Hoyos 
2018-01-19 23:42 GMT+01:00 Michael Niedermayer :
> On Fri, Jan 19, 2018 at 07:25:43PM +0100, Carl Eugen Hoyos wrote:
>> 2018-01-19 18:51 GMT+01:00 Michael Niedermayer :
>> > On Thu, Jan 18, 2018 at 09:28:40PM +0100, Carl Eugen Hoyos wrote:
>> >> Hi!
>> >>
>> >> The probe score for swf files (with uncompressed headers) is currently
>> >> very high after testing a little more than 24bit, attached patch
>> >> reduces the score.
>> >
>> > hmm
>> > the first 24 bits are tested and all but 2 values are rejected
>> >
>> > thats 23 bits that must match
>>
>> Ok.
>>
>> > then 4 values are tested which can be from 1 to 31 bits each
>> > the tests are each either == 0 or != 0 so they are a bit weak
>> > but its at least adding 4 bits that must match and also len
>>
>> I was sure this is not equivalent to four bits on a specific
>> position (but for the patch I assumed a "best case scenario"
>> where this actually were the case).
>>
>> > itself has to be smallish so we could argue that this gets us to
>> > about 28 bits
>>
>> > and then buf[3] is checked to be < 20
>> > at this point we need about 32bits to be matching, still not huge but
>> > id think this is stronger than what file extensions prove which are
>> > MAX/2
>>
>> We return MAX/2 for many "initial 32 bits" tests and I believe
>> we made good experience (and for MAX/2 the extension is
>> ignored or do I misremember?)
>>
>
>> > The test is weakened by using 0 / not 0 / ascii as values though
>> >
>> > Have you seen an actual probe failure ?
>>
>> No, I was looking at another issue.
>
> we have many files with wrong extensions, its not uncommon

Yes, I misremembered how extensions are rated, I actually
wanted to set the return value to "AVPROBE_SCORE_EXTENSION + 1".
Would that be ok?

Carl Eugen
___
ffmpeg-devel mailing list
ffmpeg-devel@ffmpeg.org
http://ffmpeg.org/mailman/listinfo/ffmpeg-devel

Re: [FFmpeg-devel] [PATCH]lavf/swfdec: Reduce score when auto-detecting swf files

2018-01-19 Thread Michael Niedermayer 
On Fri, Jan 19, 2018 at 07:25:43PM +0100, Carl Eugen Hoyos wrote:
> 2018-01-19 18:51 GMT+01:00 Michael Niedermayer :
> > On Thu, Jan 18, 2018 at 09:28:40PM +0100, Carl Eugen Hoyos wrote:
> >> Hi!
> >>
> >> The probe score for swf files (with uncompressed headers) is currently
> >> very high after testing a little more than 24bit, attached patch
> >> reduces the score.
> >
> > hmm
> > the first 24 bits are tested and all but 2 values are rejected
> >
> > thats 23 bits that must match
> 
> Ok.
> 
> > then 4 values are tested which can be from 1 to 31 bits each
> > the tests are each either == 0 or != 0 so they are a bit weak
> > but its at least adding 4 bits that must match and also len
> 
> I was sure this is not equivalent to four bits on a specific
> position (but for the patch I assumed a "best case scenario"
> where this actually were the case).
> 
> > itself has to be smallish so we could argue that this gets us to
> > about 28 bits
> 
> > and then buf[3] is checked to be < 20
> > at this point we need about 32bits to be matching, still not huge but
> > id think this is stronger than what file extensions prove which are
> > MAX/2
> 
> We return MAX/2 for many "initial 32 bits" tests and I believe
> we made good experience (and for MAX/2 the extension is
> ignored or do I misremember?)
> 

> > The test is weakened by using 0 / not 0 / ascii as values though
> >
> > Have you seen an actual probe failure ?
> 
> No, I was looking at another issue.

we have many files with wrong extensions, its not uncommon

so if we have no example of this failing then it is clearly
a stronger check than file extension checking which is at score 50
so the score should be higher

[...]
-- 
Michael GnuPG fingerprint: 9FF2128B147EF6730BADF133611EC787040B0FAB

The worst form of inequality is to try to make unequal things equal.
-- Aristotle


signature.asc
Description: PGP signature
___
ffmpeg-devel mailing list
ffmpeg-devel@ffmpeg.org
http://ffmpeg.org/mailman/listinfo/ffmpeg-devel

Re: [FFmpeg-devel] [PATCH]lavf/swfdec: Reduce score when auto-detecting swf files

2018-01-19 Thread Carl Eugen Hoyos 
2018-01-19 18:51 GMT+01:00 Michael Niedermayer :
> On Thu, Jan 18, 2018 at 09:28:40PM +0100, Carl Eugen Hoyos wrote:
>> Hi!
>>
>> The probe score for swf files (with uncompressed headers) is currently
>> very high after testing a little more than 24bit, attached patch
>> reduces the score.
>
> hmm
> the first 24 bits are tested and all but 2 values are rejected
>
> thats 23 bits that must match

Ok.

> then 4 values are tested which can be from 1 to 31 bits each
> the tests are each either == 0 or != 0 so they are a bit weak
> but its at least adding 4 bits that must match and also len

I was sure this is not equivalent to four bits on a specific
position (but for the patch I assumed a "best case scenario"
where this actually were the case).

> itself has to be smallish so we could argue that this gets us to
> about 28 bits

> and then buf[3] is checked to be < 20
> at this point we need about 32bits to be matching, still not huge but
> id think this is stronger than what file extensions prove which are
> MAX/2

We return MAX/2 for many "initial 32 bits" tests and I believe
we made good experience (and for MAX/2 the extension is
ignored or do I misremember?)

> The test is weakened by using 0 / not 0 / ascii as values though
>
> Have you seen an actual probe failure ?

No, I was looking at another issue.

Carl Eugen
___
ffmpeg-devel mailing list
ffmpeg-devel@ffmpeg.org
http://ffmpeg.org/mailman/listinfo/ffmpeg-devel

Re: [FFmpeg-devel] [PATCH]lavf/swfdec: Reduce score when auto-detecting swf files

2018-01-19 Thread Carl Eugen Hoyos 
2018-01-19 18:33 GMT+01:00 Michael Niedermayer :
> On Fri, Jan 19, 2018 at 04:21:54PM +0100, Tomas Härdin wrote:
>> On 2018-01-18 21:28, Carl Eugen Hoyos wrote:
>> >Hi!
>> >
>> >The probe score for swf files (with uncompressed headers) is currently
>> >very high after testing a little more than 24bit, attached patch
>> >reduces the score.
>> >
>> >Please comment, Carl Eugen
>>
>> Would be consistent with the discussion about .c2 files. Could we document
>> this in avformat.h? Something like:
>>
>
>> // Score should be no more than AVPROBE_SCORE_MAX * identifying_bits/64
>> // if the number of identifying "magic" bits are less than 64
>
> this is a bit oversimplifying it i think

I don't disagree.

> its more a question of "entropy" than bits
> 24bits tested for at one location is much stronger than 24 bits found at any
> location in 20mb. (later is in fact close to telling us nothing)

Of course.

I believe that for ~64 initial bits, we should return MAX - 1.

But for many formats, "initial bits" is of no relevance.

Carl Eugen
___
ffmpeg-devel mailing list
ffmpeg-devel@ffmpeg.org
http://ffmpeg.org/mailman/listinfo/ffmpeg-devel

Re: [FFmpeg-devel] [PATCH]lavf/swfdec: Reduce score when auto-detecting swf files

2018-01-19 Thread Michael Niedermayer 
On Thu, Jan 18, 2018 at 09:28:40PM +0100, Carl Eugen Hoyos wrote:
> Hi!
> 
> The probe score for swf files (with uncompressed headers) is currently
> very high after testing a little more than 24bit, attached patch
> reduces the score.

hmm
the first 24 bits are tested and all but 2 values are rejected

thats 23 bits that must match

then 4 values are tested which can be from 1 to 31 bits each
the tests are each either == 0 or != 0 so they are a bit weak
but its at least adding 4 bits that must match and also len
itself has to be smallish so we could argue that this gets us to
about 28 bits
and then buf[3] is checked to be < 20
at this point we need about 32bits to be matching, still not huge but
id think this is stronger than what file extensions prove which are
MAX/2
The test is weakened by using 0 / not 0 / ascii as values though

Have you seen an actual probe failure ?

[...]

-- 
Michael GnuPG fingerprint: 9FF2128B147EF6730BADF133611EC787040B0FAB

Those who are too smart to engage in politics are punished by being
governed by those who are dumber. -- Plato 


signature.asc
Description: PGP signature
___
ffmpeg-devel mailing list
ffmpeg-devel@ffmpeg.org
http://ffmpeg.org/mailman/listinfo/ffmpeg-devel

Re: [FFmpeg-devel] [PATCH]lavf/swfdec: Reduce score when auto-detecting swf files

2018-01-19 Thread Michael Niedermayer 
On Fri, Jan 19, 2018 at 04:21:54PM +0100, Tomas Härdin wrote:
> On 2018-01-18 21:28, Carl Eugen Hoyos wrote:
> >Hi!
> >
> >The probe score for swf files (with uncompressed headers) is currently
> >very high after testing a little more than 24bit, attached patch
> >reduces the score.
> >
> >Please comment, Carl Eugen
> 
> Would be consistent with the discussion about .c2 files. Could we document
> this in avformat.h? Something like:
> 

>     // Score should be no more than AVPROBE_SCORE_MAX * identifying_bits/64
>     // if the number of identifying "magic" bits are less than 64

this is a bit oversimplifying it i think
its more a question of "entropy" than bits
24bits tested for at one location is much stronger than 24 bits found at any
location in 20mb. (later is in fact close to telling us nothing)

If we want to define a limit then one way we might define it somehow based
on how often a large random input would cause probe to trigger with that or a 
higher score.
(this is also testable)

Care has to be taken that this works with existing probe functions.
It would be bad if a rule is added that when followed breaks existing
probe code or doesnt interoperate well with it


[...]
-- 
Michael GnuPG fingerprint: 9FF2128B147EF6730BADF133611EC787040B0FAB

Dictatorship naturally arises out of democracy, and the most aggravated
form of tyranny and slavery out of the most extreme liberty. -- Plato


signature.asc
Description: PGP signature
___
ffmpeg-devel mailing list
ffmpeg-devel@ffmpeg.org
http://ffmpeg.org/mailman/listinfo/ffmpeg-devel

Re: [FFmpeg-devel] [PATCH]lavf/swfdec: Reduce score when auto-detecting swf files

2018-01-19 Thread Tomas Härdin 

On 2018-01-18 21:28, Carl Eugen Hoyos wrote:

Hi!

The probe score for swf files (with uncompressed headers) is currently
very high after testing a little more than 24bit, attached patch
reduces the score.

Please comment, Carl Eugen


Would be consistent with the discussion about .c2 files. Could we 
document this in avformat.h? Something like:


    // Score should be no more than AVPROBE_SCORE_MAX * identifying_bits/64
    // if the number of identifying "magic" bits are less than 64

/Tomas
___
ffmpeg-devel mailing list
ffmpeg-devel@ffmpeg.org
http://ffmpeg.org/mailman/listinfo/ffmpeg-devel

[FFmpeg-devel] [PATCH]lavf/swfdec: Reduce score when auto-detecting swf files

2018-01-18 Thread Carl Eugen Hoyos 
Hi!

The probe score for swf files (with uncompressed headers) is currently
very high after testing a little more than 24bit, attached patch
reduces the score.

Please comment, Carl Eugen
From 561cb5cea0ead726c747edea7d1c3e8c768eac81 Mon Sep 17 00:00:00 2001
From: Carl Eugen Hoyos 
Date: Thu, 18 Jan 2018 21:25:49 +0100
Subject: [PATCH] lavf/swfdec: Reduce score when auto-detecting swf files.

Only a little more than 24bit are tested.
---
 libavformat/swfdec.c |2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/libavformat/swfdec.c b/libavformat/swfdec.c
index 57b619f..da58755 100644
--- a/libavformat/swfdec.c
+++ b/libavformat/swfdec.c
@@ -95,7 +95,7 @@ static int swf_probe(AVProbeData *p)
 if (p->buf[3] >= 20 || xmax < 16 || ymax < 16)
 return AVPROBE_SCORE_MAX / 4;
 
-return AVPROBE_SCORE_MAX;
+return AVPROBE_SCORE_MAX / 2;
 }
 
 #if CONFIG_ZLIB
-- 
1.7.10.4

___
ffmpeg-devel mailing list
ffmpeg-devel@ffmpeg.org
http://ffmpeg.org/mailman/listinfo/ffmpeg-devel