[FFmpeg-trac] #3277(undetermined:new): Segfault with sample.
FFmpeg
trac at avcodec.org
Tue Jan 7 01:20:10 CET 2014
#3277: Segfault with sample.
-------------------------------------+-------------------------------------
Reporter: | Owner:
SevereOverfl0w | Status: new
Type: defect | Component:
Priority: normal | undetermined
Version: unspecified | Resolution:
Keywords: | Blocked By:
Blocking: | Reproduced by developer: 0
Analyzed by developer: 0 |
-------------------------------------+-------------------------------------
Comment (by cehoyos):
Crashes here sometimes with vlc 2.1.2 and libavcodec 2.1.1
{{{
Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 0x7fffd08c3700 (LWP 13936)]
ff_emu_edge_vfix3_mmx.body_loop () at libavcodec/x86/videodsp.asm:333
333 libavcodec/x86/videodsp.asm: No such file or directory.
(gdb) bt
#0 ff_emu_edge_vfix3_mmx.body_loop () at libavcodec/x86/videodsp.asm:333
#1 0x00007fffd2b8e66c in emulated_edge_mc (h_extend_var=<optimized out>,
hfix_tbl=
0x7fffd2fa4380 <hfixtbl_sse2>, v_extend_var=<optimized out>, vfix_tbl=
0x7fffd2fa42c0 <vfixtbl_sse>, h=128, w=3, src_y=<optimized out>,
src_x=<optimized out>,
block_h=9, block_w=<optimized out>, src_stride=<optimized out>,
src=<optimized out>,
dst_stride=304, dst=<optimized out>) at
libavcodec/x86/videodsp_init.c:175
#2 emulated_edge_mc_sse2 (buf=0x7fffc4071d70 "~~~~~~~~~", buf_stride=304,
src=<optimized out>, src_stride=<optimized out>, block_w=<optimized
out>, block_h=9,
src_x=301, src_y=120, w=304, h=128) at
libavcodec/x86/videodsp_init.c:232
#3 0x00007fffd2955663 in mpeg_motion_internal (mb_y=15, is_mpeg12=0,
h=16, motion_y=2,
motion_x=21, pix_op=0x7fffc8d1ad68, ref_picture=<optimized out>,
field_select=0,
bottom_field=0, field_based=0, dest_cr=
0x7fffc4083ae0 "\177\177\177\177\177\177\177\177", dest_cb=
0x7fffc40814e0 "\215\215\215\215\215\215\215\215", dest_y=
0x7fffc407eee0 "========<<<<<<<<", s=0x7fffc8d186e0) at
libavcodec/mpegvideo_motion.c:333
#4 mpeg_motion (s=0x7fffc8d186e0, dest_y=0x7fffc407eee0
"========<<<<<<<<", dest_cb=
0x7fffc40814e0 "\215\215\215\215\215\215\215\215", dest_cr=
0x7fffc4083ae0 "\177\177\177\177\177\177\177\177", field_select=0,
ref_picture=<optimized out>, pix_op=0x7fffc8d1ad68, motion_x=21,
motion_y=2, h=16, mb_y=
15) at libavcodec/mpegvideo_motion.c:384
#5 0x00007fffd2956147 in MPV_motion_internal (is_mpeg12=<optimized out>,
qpix_op=<optimized out>, pix_op=<optimized out>,
ref_picture=<optimized out>,
dir=<optimized out>, dest_cr=<optimized out>, dest_cb=<optimized out>,
dest_y=<optimized out>, s=<optimized out>) at
libavcodec/mpegvideo_motion.c:958
#6 ff_MPV_motion (s=s at entry=0x7fffc8d186e0, dest_y=dest_y at entry=
0x7fffc407eee0 "========<<<<<<<<", dest_cb=dest_cb at entry=
0x7fffc40814e0 "\215\215\215\215\215\215\215\215",
dest_cr=dest_cr at entry=
0x7fffc4083ae0 "\177\177\177\177\177\177\177\177", dir=dir at entry=1,
ref_picture=ref_picture at entry=0x7fffc8d190f8, pix_op=0x7fffc8d1ad68,
qpix_op=
0x7fffc8d1a8f8) at libavcodec/mpegvideo_motion.c:992
#7 0x00007fffd293e0f3 in MPV_decode_mb_internal (is_mpeg12=0,
lowres_flag=0,
block=<optimized out>, s=0x7fffc8d186e0) at
libavcodec/mpegvideo.c:2796
#8 ff_MPV_decode_mb (s=s at entry=0x7fffc8d186e0, block=<optimized out>)
at libavcodec/mpegvideo.c:2928
#9 0x00007fffd26cf037 in decode_slice (s=s at entry=0x7fffc8d186e0) at
libavcodec/h263dec.c:243
#10 0x00007fffd26cfda3 in ff_h263_decode_frame (avctx=0x7fffc8d18040,
data=0x7fffc8d17980,
got_frame=0x7fffd08c2cdc, avpkt=<optimized out>) at
libavcodec/h263dec.c:701
#11 0x00007fffd2a42022 in avcodec_decode_video2 (avctx=0x7fffc8d18040,
picture=
0x7fffc8d17980, got_picture_ptr=0x7fffd08c2cdc, avpkt=0x7fffd08c2ce0)
at libavcodec/utils.c:2062
#12 0x00007fffd35b8219 in ?? () from
/usr/lib64/vlc/plugins/codec/libavcodec_plugin.so
#13 0x00007ffff714a620 in ?? () from /usr/lib64/libvlccore.so.7
#14 0x00007ffff714ba40 in ?? () from /usr/lib64/libvlccore.so.7
#15 0x00007ffff79aae0e in start_thread () from /lib64/libpthread.so.0
#16 0x00007ffff74de2cd in clone () from /lib64/libc.so.6
(gdb) disass $pc-23,$pc+22
Dump of assembler code from 0x7fffd2b8dc60 to 0x7fffd2b8dc8d:
0x00007fffd2b8dc60 <.. at 1408.branch_instr+0>: movd (%rdx),%mm0
0x00007fffd2b8dc63 <ff_emu_edge_vfix3_mmx.top_loop+0>: movd
%mm0,%eax
0x00007fffd2b8dc66 <ff_emu_edge_vfix3_mmx.top_loop+3>: mov
%ax,(%rdi)
0x00007fffd2b8dc69 <ff_emu_edge_vfix3_mmx.top_loop+6>: shr
$0x10,%eax
0x00007fffd2b8dc6c <ff_emu_edge_vfix3_mmx.top_loop+9>: mov
%al,0x2(%rdi)
0x00007fffd2b8dc6f <ff_emu_edge_vfix3_mmx.top_loop+12>: add
%rsi,%rdi
0x00007fffd2b8dc72 <ff_emu_edge_vfix3_mmx.top_loop+15>: dec %r8
0x00007fffd2b8dc75 <ff_emu_edge_vfix3_mmx.top_loop+18>: jne
0x7fffd2b8dc63 <ff_emu_edge_vfix3_mmx.top_loop>
=> 0x00007fffd2b8dc77 <ff_emu_edge_vfix3_mmx.body_loop+0>: mov
(%rdx),%eax
0x00007fffd2b8dc79 <ff_emu_edge_vfix3_mmx.body_loop+2>: mov
%ax,(%rdi)
0x00007fffd2b8dc7c <ff_emu_edge_vfix3_mmx.body_loop+5>: shr
$0x10,%eax
0x00007fffd2b8dc7f <ff_emu_edge_vfix3_mmx.body_loop+8>: mov
%al,0x2(%rdi)
0x00007fffd2b8dc82 <ff_emu_edge_vfix3_mmx.body_loop+11>: add
%rsi,%rdi
0x00007fffd2b8dc85 <ff_emu_edge_vfix3_mmx.body_loop+14>: add
%rcx,%rdx
0x00007fffd2b8dc88 <ff_emu_edge_vfix3_mmx.body_loop+17>: dec %r9
0x00007fffd2b8dc8b <ff_emu_edge_vfix3_mmx.body_loop+20>: jne
0x7fffd2b8dc77 <ff_emu_edge_vfix3_mmx.body_loop>
End of assembler dump.
(gdb) info register
rax 0x7f7e 32638
rbx 0x0 0
rcx 0x130 304
rdx 0x7fffb76f2ffd 140736270905341
rsi 0x130 304
rdi 0x7fffc40725c0 140736482190784
rbp 0x9 0x9
rsp 0x7fffd08c2758 0x7fffd08c2758
r8 0x0 0
r9 0x1 1
r10 0x1 1
r11 0x7fffb76f27ad 140736270903213
r12 0x9 9
r13 0x3 3
r14 0x130 304
r15 0x7fffc4071d70 140736482188656
rip 0x7fffd2b8dc77 0x7fffd2b8dc77
<ff_emu_edge_vfix3_mmx.body_loop>
eflags 0x10202 [ IF RF ]
cs 0x33 51
ss 0x2b 43
ds 0x0 0
es 0x0 0
fs 0x0 0
gs 0x0 0
}}}
--
Ticket URL: <https://trac.ffmpeg.org/ticket/3277#comment:3>
FFmpeg <http://ffmpeg.org>
FFmpeg issue tracker
More information about the FFmpeg-trac
mailing list