Pavel i-love-s...@yandex.ru added the comment:
It's pure luck that on linux it goes on reading memory
previously allocated by other parts of ffmpeg. At least
don't ignore your own valgrind result: ERROR SUMMARY: 21921
errors from 10 contexts (suppressed: 3 from 3)
Most of the read
Pavel i-love-s...@yandex.ru added the comment:
Also, these two lines alone deserve attention:
[mjpeg @ 0x402b540] buffer too small, expanding to 825858
bytes
[mjpeg @ 0x402b540] marker parser used 836843 bytes
(6694742 bits)
which means that parser used 836843 bytes out of 825858
allocated. As
Pavel i-love-s...@yandex.ru added the comment:
It does not happen on Linux, but happens only on windows.
1) is irrelevant to this issue.
2) I'm able to reproduce and anyone who can run win32 build from
http://ffmpeg.arrozcru.org/autobuilds/ can do so as well. Do you intentionally
ignore message
Pavel i-love-s...@yandex.ru added the comment:
In windows it reads way after the buffer end:
Unhandled exception at 0x10251115 (avcodec-52.dll) in ffmpeg.exe: 0xC005:
Access violation reading location 0x00d3a000.
at this point s-gb.buffer_end is: 0x00d38ed4
as you see, it went too far away
Carl Eugen Hoyos ceho...@rainbow.studorg.tuwien.ac.at added the comment:
1) Your original issue was just invalid (missing all necessary information) and
I believe this was not the first issue you opened.
2) Nobody was so far able to reproduce your crash with ffmpeg and provide the
necessary gdb
Pavel i-love-s...@yandex.ru added the comment:
Why is the status needs more info?
I saw in logs other photos also crash mjpeg decoder (all these photos are broken
uploads from iPhone just like the one attached).
djpeg from libjpeg correctly identifies that the image corrupted (Premature end
of
compn te...@twmi.rr.com added the comment:
still need gdb output.
F:\mplayer-testffmpeg -i 1279729383-BLUE01.jpg
FFmpeg version SVN-r24281, Copyright (c) 2000-2010 the
FFmpeg developers
built on Jul 17 2010 04:19:43 with gcc 4.4.2
configuration: --enable-gpl --enable-version3 --enable-
Carl Eugen Hoyos ceho...@rainbow.studorg.tuwien.ac.at added the comment:
Does not crash on Linux and OS X (PPC).
==26309== Command: ./ffmpeg_g -i 1279729383-BLUE01.jpg -f null -
==26309==
FFmpeg version SVN-r24460, Copyright (c) 2000-2010 the FFmpeg developers
built on Jul 23 2010 16:46:14
Reimar Döffinger b...@reimardoeffinger.de added the comment:
On Fri, Jul 23, 2010 at 02:55:14PM +, Carl Eugen Hoyos wrote:
==26309== Use of uninitialised value of size 4
==26309==at 0x8255323: ff_mjpeg_decode_sos (get_bits.h:611)
==26309==
==26309== Invalid read of size 4
==26309==
Carl Eugen Hoyos ceho...@rainbow.studorg.tuwien.ac.at added the comment:
==28469== Use of uninitialised value of size 4
==28469==at 0x822B1D5: decode_block (mjpegdec.c:411)
==28469==by 0x822CCED: mjpeg_decode_scan (mjpegdec.c:812)
==28469==by 0x822DA02: ff_mjpeg_decode_sos
Pavel i-love-s...@yandex.ru added the comment:
The reason it crashes is because the bitreader reads way past the end of
GetBitContext buffer. As a workaround for my case I made a temporary patch like
this:
GET_VLC(code, re, s-gb, s-vlcs[1][ac_index].table, 9, 2)
if(s-gb.buffer + (re_index3)
Carl Eugen Hoyos ceho...@rainbow.studorg.tuwien.ac.at added the comment:
.
--
status: new - closed
substatus: new - invalid
FFmpeg issue tracker iss...@roundup.ffmpeg.org
https://roundup.ffmpeg.org/issue2117
New submission from Pavel i-love-s...@yandex.ru:
Some damaged pictures crash MJPEG decoder from ffmpeg.
Latest svn (july 21) crashes. Output doesn't have any messages.
ffmpeg -i 1279729383-BLUE01.jpg -f image2 -vcodec bmp out.bmp
crashes inside
/* decode block and dequantize */
static int
13 matches
Mail list logo
