[FFmpeg-trac] #1824(undetermined:new): ffv1 segfault

FFmpeg trac at avcodec.org
Wed Oct 17 10:16:58 CEST 2012

#1824: ffv1 segfault
               Reporter:  jamal      |                  Owner:
                   Type:  defect     |                 Status:  new
               Priority:  normal     |              Component:
                Version:  git-       |  undetermined
  master                             |               Keywords:  ffv1
             Blocked By:             |  segfault
Reproduced by developer:  0          |               Blocking:
                                     |  Analyzed by developer:  0
 $ gdb ffmpeg_g
 GNU gdb (GDB) 7.5
 Copyright (C) 2012 Free Software Foundation, Inc.
 License GPLv3+: GNU GPL version 3 or later
 This is free software: you are free to change and redistribute it.
 There is NO WARRANTY, to the extent permitted by law.  Type "show copying"
 and "show warranty" for details.
 This GDB was configured as "i686-pc-mingw32".
 For bug reporting instructions, please see:
 Reading symbols from D:\msys\1.0\ffmpeg\build\ffmpeg_g.exe...done.
 (gdb) r -vcodec ffv1 -i Addicted-SweetBox.3gp -an -f null -
 Starting program: D:\msys\1.0\ffmpeg\build\ffmpeg_g.exe -vcodec ffv1 -i
 Addicted-SweetBox.3gp -an -f null -
 [New Thread 4108.0x12e4]
 ffmpeg version N-45613-g711ffb8 Copyright (c) 2000-2012 the FFmpeg
   built on Oct 17 2012 05:00:59 with gcc 4.7.2 (GCC)
   configuration: --enable-gpl --enable-memory-poisoning --enable-cross-
 compile --cross-prefix=i686-w64-mingw32- --target-os=mingw32 --arch=x86
 --cpu=i686 --prefix=/mingw32
   libavutil      51. 76.100 / 51. 76.100
   libavcodec     54. 66.100 / 54. 66.100
   libavformat    54. 32.101 / 54. 32.101
   libavdevice    54.  3.100 / 54.  3.100
   libavfilter     3. 19.103 /  3. 19.103
   libswscale      2.  1.101 /  2.  1.101
   libswresample   0. 16.100 /  0. 16.100
   libpostproc    52.  1.100 / 52.  1.100

 Program received signal SIGSEGV, Segmentation fault.
 0x00a0e61e in ff_init_range_encoder (buf_size=1723, buf=0x4f8f1c0 "",
 c=0x8) at D:/msys/1.0/ffmpeg/src/libavcodec/rangecoder.c:45
 45          c->bytestream_end    = buf + buf_size;
 (gdb) bt
 #0  0x00a0e61e in ff_init_range_encoder (buf_size=1723, buf=0x4f8f1c0 "",
 c=0x8) at D:/msys/1.0/ffmpeg/src/libavcodec/rangecoder.c:45
 #1  ff_init_range_decoder (c=c at entry=0x8, buf=buf at entry=0x4f8f1c0 "",
 buf_size=buf_size at entry=1723) at
 #2  0x0072f87f in decode_frame (avctx=0x4ab0b40, data=0x4f8f8e0,
 data_size=0x28f46c, avpkt=0x28f3d8) at
 #3  0x00581a16 in avcodec_decode_video2 (avctx=0x4ab0b40,
 picture=0x4f8f8e0, got_picture_ptr=got_picture_ptr at entry=0x28f46c,
 avpkt=avpkt at entry=0x28f498) at
 #4  0x00489e58 in try_decode_frame (st=st at entry=0x4ab0940,
 avpkt=avpkt at entry=0x4aa8860, options=0x4ac7220) at
 #5  0x00491f9a in avformat_find_stream_info (ic=0x4f8b400,
 options=0x4ac7220) at D:/msys/1.0/ffmpeg/src/libavformat/utils.c:2744
 #6  0x004059c2 in opt_input_file (optctx=0x28fd30, opt=0x4f814e2 "i",
 filename=<optimized out>) at D:/msys/1.0/ffmpeg/src/ffmpeg_opt.c:786
 #7  0x00414966 in parse_option (optctx=optctx at entry=0x28fd30,
 opt=0x4f814e2 "i", arg=0x4f814e4 "Addicted-SweetBox.3gp",
 options=options at entry=0xc4cb20) at D:/msys/1.0/ffmpeg/src/cmdutils.c:320
 #8  0x00414e7b in parse_options (optctx=optctx at entry=0x28fd30,
 argc=argc at entry=9, argv=<optimized out>, options=0xc4cb20,
 parse_arg_function=0x406760 <opt_output_file>) at
 #9  0x00bd9210 in main (argc=9, argv=<optimized out>) at
 (gdb) disass $pc-32,$pc+32
 Dump of assembler code from 0xa0e5fe to 0xa0e63e:
    0x00a0e5fe <ff_init_range_encoder+46>:       sbb    %al,(%edx)
    0x00a0e600 <ff_init_range_encoder+48>:       add    %al,(%eax)
    0x00a0e602 <ff_init_range_encoder+50>:       movl
    0x00a0e609 <ff_init_range_encoder+57>:       ret
    0x00a0e60a <ff_init_range_encoder+58>:       lea    0x0(%esi),%esi
    0x00a0e610 <ff_init_range_decoder+0>:        mov    0x8(%esp),%edx
    0x00a0e614 <ff_init_range_decoder+4>:        mov    0xc(%esp),%ecx
    0x00a0e618 <ff_init_range_decoder+8>:        mov    0x4(%esp),%eax
    0x00a0e61c <ff_init_range_decoder+12>:       add    %edx,%ecx
 => 0x00a0e61e <ff_init_range_decoder+14>:       mov    %ecx,0x218(%eax)
    0x00a0e624 <ff_init_range_decoder+20>:       lea    0x2(%edx),%ecx
    0x00a0e627 <ff_init_range_decoder+23>:       movl   $0x0,(%eax)
    0x00a0e62d <ff_init_range_decoder+29>:       mov    %edx,0x210(%eax)
    0x00a0e633 <ff_init_range_decoder+35>:       movl   $0xff00,0x4(%eax)
    0x00a0e63a <ff_init_range_decoder+42>:       movl   $0x0,0x8(%eax)
 End of assembler dump.

Ticket URL: <https://ffmpeg.org/trac/ffmpeg/ticket/1824>
FFmpeg <http://ffmpeg.org>
FFmpeg issue tracker

More information about the FFmpeg-trac mailing list