[FFmpeg-trac] #2428(undetermined:new): ffplay crashes on weird file

FFmpeg trac at avcodec.org
Tue May 21 02:11:43 CEST 2013 

#2428: ffplay crashes on weird file
-------------------------------------+-------------------------------------
             Reporter:  cehoyos      |                    Owner:
                 Type:  defect       |                   Status:  new
             Priority:  important    |                Component:
              Version:  git-master   |  undetermined
             Keywords:  crash        |               Resolution:
  regression                         |               Blocked By:
             Blocking:               |  Reproduced by developer:  0
Analyzed by developer:  0            |
-------------------------------------+-------------------------------------

Comment (by cehoyos):

 Replying to [comment:3 michael]:
 > Also if iam not mistaken noone could reproduce it

 I thought nobody ever tested it.

 New file attached, gdb still claims a crash in libavcodec, valgrind
 suggests an invalid write in SDL_FillRect.
 {{{
 (gdb) r wide.avi
 Starting program: ffplay_g wide.avi
 [Thread debugging using libthread_db enabled]
 Using host libthread_db library "/lib64/libthread_db.so.1".
 ffplay version N-53307-g5a65fea Copyright (c) 2003-2013 the FFmpeg
 developers
   built on May 21 2013 01:59:51 with gcc 4.7 (SUSE Linux)
   configuration: --disable-asm --disable-optimizations
   libavutil      52. 33.100 / 52. 33.100
   libavcodec     55. 10.101 / 55. 10.101
   libavformat    55.  7.100 / 55.  7.100
   libavdevice    55.  1.100 / 55.  1.100
   libavfilter     3. 68.101 /  3. 68.101
   libswscale      2.  3.100 /  2.  3.100
   libswresample   0. 17.102 /  0. 17.102
 [New Thread 0x7ffff5e02700 (LWP 17927)]
 [New Thread 0x7ffff4405700 (LWP 17928)]
 [New Thread 0x7ffff3b03700 (LWP 17929)]
 Input #0, avi, from 'wide.avi':    0KB vq=    0KB sq=    0B f=0/0
   Metadata:
     encoder         : Lavf54.29.104
   Duration: 00:00:02.00, start: 0.000000, bitrate: 5342 kb/s
     Stream #0:0: Video: mpeg4 (Simple Profile) (FMP4 / 0x34504D46),
 yuv420p, 1280x536 [SAR 111:5 DAR 3552:67], SAR 3551:160 DAR 53:1, 23.98
 fps, 23.98 tbr, 23.98 tbn, 24k tbc
 [New Thread 0x7ffff3302700 (LWP 17930)]
 [New Thread 0x7ffff2b01700 (LWP 17931)]
 [New Thread 0x7ffff2300700 (LWP 17932)]
 [New Thread 0x7ffff1aff700 (LWP 17933)]
 [New Thread 0x7ffff12fe700 (LWP 17934)]
 [New Thread 0x7ffff0afd700 (LWP 17935)]
 [New Thread 0x7fffebfff700 (LWP 17936)]
 [New Thread 0x7fffeb7fe700 (LWP 17937)]
 [New Thread 0x7fffeaffd700 (LWP 17938)]
 [New Thread 0x7fffea7fc700 (LWP 17939)]
    0.15 A-V:  0.000 fd=   0 aq=    0KB vq=   86KB sq=    0B f=0/0
 Program received signal SIGSEGV, Segmentation fault.
 [Switching to Thread 0x7fffea7fc700 (LWP 17939)]
 0x00007ffff659d249 in _int_free () from /lib64/libc.so.6
 (gdb) bt
 #0  0x00007ffff659d249 in _int_free () from /lib64/libc.so.6
 #1  0x0000000000cdd148 in av_free (ptr=0x7fffc4020160) at
 libavutil/mem.c:194
 #2  0x0000000000cdd16d in av_freep (arg=0x7fffe4000a90) at
 libavutil/mem.c:201
 #3  0x0000000000ccfe62 in av_buffer_unref (buf=0x7fffe4000a90) at
 libavutil/buffer.c:112
 #4  0x0000000000cd72b7 in av_frame_unref (frame=0x7fffe40008c0) at
 libavutil/frame.c:344
 #5  0x000000000040c488 in video_thread (arg=0x7ffff3b04010) at
 ffplay.c:1961
 #6  0x00007ffff741ae96 in ?? () from /usr/lib64/libSDL-1.2.so.0
 #7  0x00007ffff745dcd9 in ?? () from /usr/lib64/libSDL-1.2.so.0
 #8  0x00007ffff71f4e0e in start_thread () from /lib64/libpthread.so.0
 #9  0x00007ffff66082cd in clone () from /lib64/libc.so.6
 }}}
 With -threads 1, it plays ok, but I get a (different) crash on eof / quit:
 {{{
 (gdb) bt
 #0  0x00007ffff6558d25 in raise () from /lib64/libc.so.6
 #1  0x00007ffff655a1a8 in abort () from /lib64/libc.so.6
 #2  0x00007ffff6596fcb in __libc_message () from /lib64/libc.so.6
 #3  0x00007ffff659cb66 in malloc_printerr () from /lib64/libc.so.6
 #4  0x0000000000cdd148 in av_free (ptr=0x7ffff29a8010) at
 libavutil/mem.c:194
 #5  0x0000000000cdd16d in av_freep (arg=0x7fffec013a60) at
 libavutil/mem.c:201
 #6  0x00000000008f4e47 in free_duplicate_context (s=0x7fffec010fb0)
     at libavcodec/mpegvideo.c:588
 #7  0x00000000008f7d7f in ff_MPV_common_end (s=0x7fffec010fb0) at
 libavcodec/mpegvideo.c:1250
 #8  0x00000000006abb9f in ff_h263_decode_end (avctx=0x7fffec0011f0)
     at libavcodec/h263dec.c:130
 #9  0x0000000000a2e0a2 in avcodec_close (avctx=0x7fffec0011f0) at
 libavcodec/utils.c:2375
 #10 0x000000000040eb69 in stream_component_close (is=0x7ffff3b04010,
 stream_index=0)
     at ffplay.c:2629
 #11 0x000000000040fbf1 in read_thread (arg=0x7ffff3b04010) at
 ffplay.c:2946
 #12 0x00007ffff741ae96 in ?? () from /usr/lib64/libSDL-1.2.so.0
 #13 0x00007ffff745dcd9 in ?? () from /usr/lib64/libSDL-1.2.so.0
 #14 0x00007ffff71f4e0e in start_thread () from /lib64/libpthread.so.0
 #15 0x00007ffff66082cd in clone () from /lib64/libc.so.6
 }}}

-- 
Ticket URL: <https://ffmpeg.org/trac/ffmpeg/ticket/2428#comment:4>
FFmpeg <http://ffmpeg.org>
FFmpeg issue tracker

More information about the FFmpeg-trac mailing list