[Ffmpeg-devel] [BUGREPORT] vp6 crash

compn tempn
Fri Sep 15 06:33:09 CEST 2006

i get this crash if i use -demuxer 35 and -nocache and start seeking around
not sure if its a bug or just poor seeking ability.

i could not reproduce the crash on my mac osx ppc box.

btw, if possible, can someone remove the verbosity of nsv demuxer in lavf?

here is mingw gdb report...

(gdb) run;stream.nsv -nocache -demuxer 35
Starting program: d:\cdrive\mplayer/mplaye.exe;stream.nsv -nocache -demuxer 35

MPlayer dev-SVN-r19800-3.2.3 (C) 2000-2006 MPlayer Team

Program received signal SIGSEGV, Segmentation fault.
0x0086d072 in vp56_parse_mb_type (s=0x2c4f050,
    prev_type=VP56_MB_INTER_NOVEC_PF, ctx=0) at vp56.h:190
190                 c->code_word |= *c->buffer++;

(gdb) bt
#0  0x0086d072 in vp56_parse_mb_type (s=0x2c4f050,
    prev_type=VP56_MB_INTER_NOVEC_PF, ctx=0) at vp56.h:190
#1  0x0086d3ae in vp56_decode_mv (s=0x2c4f050, row=14, col=18) at vp56.c:205
#2  0x0086de49 in vp56_decode_mb (s=0x2c4f050, row=14, col=18) at vp56.c:404
#3  0x0086e3d3 in vp56_decode_frame (avctx=0x2c487f0, data=0x2c85820,
    buf=0x2e769e8 "??\e-\a+I\004\025+i++??\217X-\201?MA\232Ndb?\236+t+GKUa\210\2
36?K\n3\2362~?\036Ew??\nPSF%\226e?$W?\226?\ta?w&R>dC++?p\"", buf_size=1068)
    at vp56.c:580
#4  0x005deba7 in avcodec_decode_video (avctx=0x2c487f0, picture=0x2c85820,
    buf=0x2e769e8 "??\e-\a+I\004\025+i++??\217X-\201?MA\232Ndb?\236+t+GKUa\210\2
36?K\n3\2362~?\036Ew??\nPSF%\226e?$W?\226?\ta?w&R>dC++?p\"", buf_size=1068)
    at utils.c:932
#5  0x0046aa00 in decode (sh=0x2c85540, data=0x2e769e8, len=1068, flags=0)
    at vd_ffmpeg.c:720
#6  0x004692b8 in decode_video (sh_video=0x2c85540,
    start=0x2e769e8 "??\e-\a+I\004\025+i++??\217X-\201?MA\232Ndb?\236+t+GKUa\210
\236?K\n3\2362~?\036Ew??\nPSF%\226e?$W?\226?\ta?w&R>dC++?p\"", in_size=1068,
    drop_frame=0, pts=11.333333333333334) at dec_video.c:357
#7  0x0040d688 in main (argc=5, argv=0x1ba2788) at mplayer.c:4091

(gdb) disass $pc-32 $pc+32
Dump of assembler code from 0x86d052 to 0x86d092:
0x86d052 <vp56_parse_mb_type+322>:      mov    %eax,(%ebx)
0x86d054 <vp56_parse_mb_type+324>:      mov    0xc(%ebx),%eax
0x86d057 <vp56_parse_mb_type+327>:      lea    (%eax,%eax,1),%ecx
0x86d05a <vp56_parse_mb_type+330>:      mov    0x4(%ebx),%eax
0x86d05d <vp56_parse_mb_type+333>:      mov    %ecx,0xc(%ebx)
0x86d060 <vp56_parse_mb_type+336>:      dec    %eax
0x86d061 <vp56_parse_mb_type+337>:      test   %eax,%eax
0x86d063 <vp56_parse_mb_type+339>:      mov    %eax,0x4(%ebx)
0x86d066 <vp56_parse_mb_type+342>:    jne    0x86d07e <vp56_parse_mb_type+366>
0x86d068 <vp56_parse_mb_type+344>:      movl   $0x8,0x4(%ebx)
0x86d06f <vp56_parse_mb_type+351>:      mov    0x8(%ebx),%eax
0x86d072 <vp56_parse_mb_type+354>:      movzbl (%eax),%edx
0x86d075 <vp56_parse_mb_type+357>:      inc    %eax
0x86d076 <vp56_parse_mb_type+358>:      mov    %eax,0x8(%ebx)
0x86d079 <vp56_parse_mb_type+361>:      or     %edx,%ecx
0x86d07b <vp56_parse_mb_type+363>:      mov    %ecx,0xc(%ebx)
0x86d07e <vp56_parse_mb_type+366>:      mov    (%ebx),%eax
0x86d080 <vp56_parse_mb_type+368>:      cmp    $0x7f,%eax
0x86d083 <vp56_parse_mb_type+371>:    jle    0x86d050 <vp56_parse_mb_type+320>
0x86d085 <vp56_parse_mb_type+373>:      mov    0xffffffe4(%ebp),%edx
0x86d088 <vp56_parse_mb_type+376>:      test   %edx,%edx
0x86d08a <vp56_parse_mb_type+378>:    je     0x86d0b3 <vp56_parse_mb_type+419>
0x86d08c <vp56_parse_mb_type+380>:      mov    0xffffffe8(%ebp),%edx
0x86d08f <vp56_parse_mb_type+383>:      movsbl (%edx),%eax
End of assembler dump.

(gdb) info all-registers
eax            0x2e77000        48721920
ecx            0x0      0
edx            0x1      1
ebx            0x2c4fd58        46464344
esp            0x22eb3c 0x22eb3c
ebp            0x22eb58 0x22eb58
esi            0x98     152
edi            0x100    256
eip            0x86d072 0x86d072
eflags         0x10246  66118
cs             0x1b     27
ss             0x23     35
ds             0x23     35
es             0x23     35
fs             0x38     56
gs             0x0      0
st0            -nan(0x6969696969606061) (raw 0xffff6969696969606061)
st1            -nan(0x6969696969606061) (raw 0xffff6969696969606061)
st2            -nan(0x601fd71051ffe55)  (raw 0xffff0601fd71051ffe55)
st3            -nan(0x7000700070007)    (raw 0xffff0007000700070007)
st4            -nan(0x1000100010001)    (raw 0xffff0001000100010001)
st5            -nan(0x4000400040004)    (raw 0xffff0004000400040004)
st6            -nan(0x000000003)        (raw 0xffff0000000000000003)
st7            0        (raw 0xffff0000000000000000)
fctrl          0xffff037f       -64641
fstat          0xffff0020       -65504
ftag           0xffffaaaa       -21846
fiseg          0x0      0
fioff          0x0      0
foseg          0xffff0000       -65536
fooff          0x0      0
fop            0x0      0

More information about the ffmpeg-devel mailing list