[FFmpeg-trac] #240(avcodec:open): ffmpeg crashes when forced to decode wma9.1 lossless 6ch with wmav2 decoder

FFmpeg trac at avcodec.org
Tue Jun 21 00:14:30 CEST 2011


#240: ffmpeg crashes when forced to decode wma9.1 lossless 6ch with wmav2 decoder
-----------------------+----------------------
Reporter:  ami_stuff   |       Owner:
    Type:  defect      |      Status:  open
Priority:  normal      |   Component:  avcodec
 Version:  git-master  |  Resolution:
Keywords:              |  Blocked By:
Blocking:              |  Reproduced:  1
Analyzed:  0           |
-----------------------+----------------------
Changes (by cehoyos):

 * status:  new => open
 * version:  unspecified => git-master
 * component:  undetermined => avcodec
 * reproduced:  0 => 1


Comment:

 {{{
 (gdb) r -acodec wmav2 -i [CCCP]_Mega_Weird_Audio_Test.mkv -map 0.22 -vn -f
 null -
 Starting program: ffmpeg_g -acodec wmav2 -i
 [CCCP]_Mega_Weird_Audio_Test.mkv -map 0.22 -vn -f null -
 ffmpeg version N-30884-g54dd50d, Copyright (c) 2000-2011 the FFmpeg
 developers
   built on Jun 21 2011 00:07:42 with gcc 4.5.3
   configuration: --cc=/usr/local/gcc-4.5.3/bin/gcc --disable-asm
 --disable-optimizations
   libavutil    51.  9. 1 / 51.  9. 1
   libavcodec   53.  7. 0 / 53.  7. 0
   libavformat  53.  4. 0 / 53.  4. 0
   libavdevice  53.  1. 1 / 53.  1. 1
   libavfilter   2. 23. 0 /  2. 23. 0
   libswscale    0. 14. 1 /  0. 14. 1
 [mpeg4 @ 0x135c3e0] Invalid and inefficient vfw-avi packed B frames
 detected
 [matroska,webm @ 0x1356350] Estimating duration from bitrate, this may be
 inaccurate
 Input #0, matroska,webm, from '[CCCP]_Mega_Weird_Audio_Test.mkv':
   Metadata:
     title           : Macross Plus - First Simulator Test
   Duration: 00:01:03.70, start: 0.000000, bitrate: 5050 kb/s

 ...

     Stream #0.22(eng): Audio: wmav2, 48000 Hz, 6 channels, s16, 1882 kb/s
     Metadata:
       title           : WMA9.1 Lossless 6ch Audio

 ...

 Output #0, null, to 'pipe:':
   Metadata:
     title           : Macross Plus - First Simulator Test
     encoder         : Lavf53.4.0
     Stream #0.0(eng): Audio: pcm_s16le, 48000 Hz, 6 channels, s16, 4608
 kb/s
     Metadata:
       title           : WMA9.1 Lossless 6ch Audio
 Stream mapping:
   Stream #0.22 -> #0.0
 Press [q] to stop, [?] for help

 Program received signal SIGSEGV, Segmentation fault.
 0x00000000005c2828 in vector_fmul_add_c (dst=0x15d4e10, src0=0x15d0bd0,
 src1=0x0, src2=0x15d4e10,
     len=2048) at libavcodec/dsputil.c:2495
 2495            dst[i] = src0[i] * src1[i] + src2[i];
 (gdb) bt
 #0  0x00000000005c2828 in vector_fmul_add_c (dst=0x15d4e10,
 src0=0x15d0bd0, src1=0x0, src2=0x15d4e10,
     len=2048) at libavcodec/dsputil.c:2495
 #1  0x000000000086ea59 in wma_window (s=0x15c46d0, out=0x15d4e10) at
 libavcodec/wmadec.c:400
 #2  0x0000000000870275 in wma_decode_block (s=0x15c46d0) at
 libavcodec/wmadec.c:762
 #3  0x0000000000870342 in wma_decode_frame (s=0x15c46d0,
 samples=0x13fd530) at libavcodec/wmadec.c:788
 #4  0x00000000008708bd in wma_decode_superframe (avctx=0x138e070,
 data=0x13fd530,
     data_size=0x7fffffffce2c, avpkt=0x7fffffffce30) at
 libavcodec/wmadec.c:908
 #5  0x000000000080fb26 in avcodec_decode_audio3 (avctx=0x138e070,
 samples=0x13fd530,
     frame_size_ptr=0x7fffffffce2c, avpkt=0x7fffffffce30) at
 libavcodec/utils.c:796
 #6  0x0000000000409b5c in output_packet (ist=0x159bd30, ist_index=22,
 ost_table=0x17d4fc0, nb_ostreams=1,
     pkt=0x7fffffffd190) at ffmpeg.c:1584
 #7  0x000000000040e9f4 in transcode (output_files=0xdf3c80,
 nb_output_files=1, input_files=0x16aae90,
     nb_input_files=1, stream_maps=0x197a120, nb_stream_maps=1) at
 ffmpeg.c:2773
 #8  0x00000000004134ad in main (argc=11, argv=0x7fffffffdda8) at
 ffmpeg.c:4571
 (gdb) disass $pc-32 $pc+32
 Dump of assembler code from 0x5c2808 to 0x5c2848:
 0x00000000005c2808 <vector_fmul_add_c+46>:      mov    -0x4(%rbp),%edx
 0x00000000005c280b <vector_fmul_add_c+49>:      movslq %edx,%rdx
 0x00000000005c280e <vector_fmul_add_c+52>:      shl    $0x2,%rdx
 0x00000000005c2812 <vector_fmul_add_c+56>:      add    -0x20(%rbp),%rdx
 0x00000000005c2816 <vector_fmul_add_c+60>:      movss  (%rdx),%xmm1
 0x00000000005c281a <vector_fmul_add_c+64>:      mov    -0x4(%rbp),%edx
 0x00000000005c281d <vector_fmul_add_c+67>:      movslq %edx,%rdx
 0x00000000005c2820 <vector_fmul_add_c+70>:      shl    $0x2,%rdx
 0x00000000005c2824 <vector_fmul_add_c+74>:      add    -0x28(%rbp),%rdx
 0x00000000005c2828 <vector_fmul_add_c+78>:      movss  (%rdx),%xmm0
 0x00000000005c282c <vector_fmul_add_c+82>:      mulss  %xmm1,%xmm0
 0x00000000005c2830 <vector_fmul_add_c+86>:      mov    -0x4(%rbp),%edx
 0x00000000005c2833 <vector_fmul_add_c+89>:      movslq %edx,%rdx
 0x00000000005c2836 <vector_fmul_add_c+92>:      shl    $0x2,%rdx
 0x00000000005c283a <vector_fmul_add_c+96>:      add    -0x30(%rbp),%rdx
 0x00000000005c283e <vector_fmul_add_c+100>:     movss  (%rdx),%xmm1
 0x00000000005c2842 <vector_fmul_add_c+104>:     addss  %xmm1,%xmm0
 0x00000000005c2846 <vector_fmul_add_c+108>:     movss  %xmm0,(%rax)
 End of assembler dump.
 (gdb) info registers
 rax            0x15d4e10        22892048
 rbx            0x15d0bd0        22875088
 rcx            0x15d4e10        22892048
 rdx            0x0      0
 rsi            0x15d0bd0        22875088
 rdi            0x15d4e10        22892048
 rbp            0x7fffffffc900   0x7fffffffc900
 rsp            0x7fffffffc900   0x7fffffffc900
 r8             0x800    2048
 r9             0x5c27da 6039514
 r10            0x0      0
 r11            0x7ffff6ae32c3   140737331999427
 r12            0x405290 4215440
 r13            0x7fffffffdda0   140737488346528
 r14            0x0      0
 r15            0x0      0
 rip            0x5c2828 0x5c2828 <vector_fmul_add_c+78>
 eflags         0x10246  [ PF ZF IF RF ]
 cs             0x33     51
 ss             0x2b     43
 ds             0x0      0
 es             0x0      0
 fs             0x0      0
 gs             0x0      0
 fctrl          0x37f    895
 fstat          0x0      0
 ftag           0xffff   65535
 fiseg          0x0      0
 fioff          0x0      0
 foseg          0x0      0
 fooff          0x0      0
 fop            0x0      0
 mxcsr          0x1fa0   [ PE IM DM ZM OM UM PM ]
 }}}

-- 
Ticket URL: <https://avcodec.org/trac/ffmpeg/ticket/240#comment:3>
FFmpeg <http://ffmpeg.org>
FFmpeg issue tracker


More information about the FFmpeg-trac mailing list