Carl Eugen Hoyos <[EMAIL PROTECTED]> added the comment:
Sample uploaded to issue729.
Does not crash with ffmpeg.
(gdb) r crash_ffplay.dv
Starting program: ffplay_g crash_ffplay.dv
[Thread debugging using libthread_db enabled]
[New Thread 0xb73e08e0 (LWP 19811)]
FFplay version SVN-r15903, Copyright (c) 2003-2008 Fabrice Bellard, et al.
configuration: --enable-libamr-nb --enable-nonfree --enable-libamr-wb --enable
-gpl --enable-libfaad
--enable-libfaac --enable-libgsm --enable-libmp3lame --ena
ble-libtheora --enable-libvorbis --enable-libx264
--enable-libxvid --enable-libd
c1394 --extra-cflags=-I/usr/include/gsm --enable-postproc --enable-libschroeding
er --enable-libdirac
--enable-swscale --enable-libspeex --disable-decoder=cook -
-cc=/opt/intel/Compiler/11.0/069/bin/ia32/icc
--cpu=pentium3
libavutil 49.12. 0 / 49.12. 0
libavcodec 52. 3. 0 / 52. 3. 0
libavformat 52.23. 1 / 52.23. 1
libavdevice 52. 1. 0 / 52. 1. 0
libswscale 0. 6. 1 / 0. 6. 1
libpostproc 51. 2. 0 / 51. 2. 0
built on Nov 22 2008 00:58:11, gcc: Intel(R) C++ gcc 4.2 mode
[New Thread 0xb724db90 (LWP 19814)]
[New Thread 0xb688db90 (LWP 19815)]
[New Thread 0xb5fa3b90 (LWP 19816)]
[New Thread 0xb57a2b90 (LWP 19817)]
Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 0xb688db90 (LWP 19815)]
0x080bb061 in dv_read_packet (s=0x88a36e0, pkt=0x88a45a8)
at libavformat/dv.c:433
433 size = c->dv_demux->sys->frame_size;
(gdb) bt
#0 0x080bb061 in dv_read_packet (s=0x88a36e0, pkt=0x88a45a8)
at libavformat/dv.c:433
#1 0x080a0808 in av_read_packet. () at libavformat/utils.c:625
#2 0x080a2c77 in av_read_frame_internal (s=0x88a4680, pkt=0x0)
at libavformat/utils.c:1004
#3 0x080a427a in av_read_frame (s=0x88a36e0, pkt=0xb688d2ec)
at libavformat/utils.c:1123
#4 0x0806b9d9 in decode_thread (arg=0xb688e020) at ffplay.c:2071
#5 0xb790d3db in ?? () from /usr/lib/libSDL-1.2.so.0
#6 0xb688e020 in ?? ()
#7 0x0806b1d0 in opt_input_file (
filename=0xb688db90 "\220�\210���\207\b\220�\210�\001") at ffplay.c:2533
#8 0x0889abf8 in ?? ()
#9 0xb7965ff4 in ?? () from /usr/lib/libSDL-1.2.so.0
#10 0x00000000 in ?? ()
(gdb) disass $pc-32 $pc+32
Dump of assembler code from 0x80bb041 to 0x80bb081:
0x080bb041 <dv_read_packet+33>: mov 0xc(%edx,%ebp,4),%ebx
0x080bb045 <dv_read_packet+37>: test %ebx,%ebx
0x080bb047 <dv_read_packet+39>: je 0x80bb051 <dv_read_packet+49>
0x080bb049 <dv_read_packet+41>: mov 0x30(%eax,%edx,1),%ebx
0x080bb04d <dv_read_packet+45>: test %ebx,%ebx
0x080bb04f <dv_read_packet+47>: jne 0x80bb094 <dv_read_packet+116>
0x080bb051 <dv_read_packet+49>: add $0x3c,%eax
0x080bb054 <dv_read_packet+52>: inc %ebp
0x080bb055 <dv_read_packet+53>: cmp %esi,%ebp
0x080bb057 <dv_read_packet+55>: jl 0x80bb041 <dv_read_packet+33>
0x080bb059 <dv_read_packet+57>: mov 0x10(%esp),%ebx
0x080bb05d <dv_read_packet+61>: mov (%edi),%eax
0x080bb05f <dv_read_packet+63>: mov (%eax),%edx
0x080bb061 <dv_read_packet+65>: mov 0x8(%edx),%ebp
0x080bb064 <dv_read_packet+68>: push %ebp
0x080bb065 <dv_read_packet+69>: lea 0x4(%edi),%esi
0x080bb068 <dv_read_packet+72>: push %esi
0x080bb069 <dv_read_packet+73>: pushl 0x10(%ecx)
0x080bb06c <dv_read_packet+76>: call 0x80a9f70 <get_buffer>
0x080bb071 <dv_read_packet+81>: add $0xc,%esp
0x080bb074 <dv_read_packet+84>: test %eax,%eax
0x080bb076 <dv_read_packet+86>: jle 0x80bb11d <dv_read_packet+253>
0x080bb07c <dv_read_packet+92>: mov 0x28(%esp),%edx
0x080bb080 <dv_read_packet+96>: mov (%edi),%eax
End of assembler dump.
(gdb) info all-registers
eax 0x88a4680 143279744
ecx 0x88a36e0 143275744
edx 0x0 0
ebx 0x88a36e0 143275744
esp 0xb688d1c8 0xb688d1c8
ebp 0x2 0x2
esi 0x2 2
edi 0xb6000020 -1241513952
eip 0x80bb061 0x80bb061 <dv_read_packet+65>
eflags 0x210246 [ PF ZF IF RF ID ]
cs 0x73 115
ss 0x7b 123
ds 0x7b 123
es 0x7b 123
fs 0x0 0
gs 0x33 51
st0 -nan(0x3f373e333b363a32) (raw 0xffff3f373e333b363a32)
st1 0.16666672281043992746548190742039708 (raw
0x3ffcaaaaae6f3597c034)
st2 2.8071889027265092238656786080769952e-07 (raw
0x3fe996b5b5e3416b0cb0)
st3 0.50043288447627694558736757834971343 (raw
0x3ffe801c5e98ab267531)
st4 0.7922691325657069683074951171875 (raw
0x3ffecad2265e00000000)
st5 6.0697239533173742673921129092669998e-11 (raw
0x3fdd857982174c5713da)
st6 0.79432578518682728230260181589983404 (raw
0x3ffecb58ef45bf37c000)
st7 1227312200.4211630000500008463859558 (raw
0x401d924e9890d7a2ad3f)
fctrl 0x37f 895
fstat 0x224 548
ftag 0xffff 65535
fiseg 0x0 0
fioff 0x0 0
foseg 0x0 0
fooff 0x0 0
fop 0x0 0
xmm0 {v4_float = {0x0, 0x0, 0x0, 0x0}, v2_double = {0x0, 0x0},
v16_int8 = {0x0 <repeats 16 times>}, v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0,
0x0, 0x0, 0x0}, v4_int32 = {0x0, 0x0, 0x0, 0x0}, v2_int64 = {0x0, 0x0},
uint128 = 0x00000000000000000000000000000000}
xmm1 {v4_float = {0x0, 0x0, 0x0, 0x0}, v2_double = {0x0, 0x0},
v16_int8 = {0x0 <repeats 16 times>}, v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0,
0x0, 0x0, 0x0}, v4_int32 = {0x0, 0x0, 0x0, 0x0}, v2_int64 = {0x0, 0x0},
uint128 = 0x00000000000000000000000000000000}
xmm2 {v4_float = {0x0, 0x0, 0x0, 0x0}, v2_double = {0x0, 0x0},
v16_int8 = {0x0 <repeats 16 times>}, v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0,
0x0, 0x0, 0x0}, v4_int32 = {0x0, 0x0, 0x0, 0x0}, v2_int64 = {0x0, 0x0},
uint128 = 0x00000000000000000000000000000000}
xmm3 {v4_float = {0x0, 0x0, 0x0, 0x0}, v2_double = {0x0, 0x0},
v16_int8 = {0x0 <repeats 16 times>}, v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0,
0x0, 0x0, 0x0}, v4_int32 = {0x0, 0x0, 0x0, 0x0}, v2_int64 = {0x0, 0x0},
uint128 = 0x00000000000000000000000000000000}
xmm4 {v4_float = {0x0, 0x0, 0x0, 0x0}, v2_double = {0x0, 0x0},
v16_int8 = {0x0 <repeats 16 times>}, v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0,
0x0, 0x0, 0x0}, v4_int32 = {0x0, 0x0, 0x0, 0x0}, v2_int64 = {0x0, 0x0},
uint128 = 0x00000000000000000000000000000000}
xmm5 {v4_float = {0x0, 0x0, 0x0, 0x0}, v2_double = {0x0, 0x0},
v16_int8 = {0x0 <repeats 16 times>}, v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0,
0x0, 0x0, 0x0}, v4_int32 = {0x0, 0x0, 0x0, 0x0}, v2_int64 = {0x0, 0x0},
uint128 = 0x00000000000000000000000000000000}
xmm6 {v4_float = {0x0, 0x0, 0x0, 0x0}, v2_double = {0x0, 0x0},
v16_int8 = {0x0 <repeats 16 times>}, v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0,
0x0, 0x0, 0x0}, v4_int32 = {0x0, 0x0, 0x0, 0x0}, v2_int64 = {0x0, 0x0},
uint128 = 0x00000000000000000000000000000000}
xmm7 {v4_float = {0x0, 0x0, 0x0, 0x0}, v2_double = {0x0, 0x0},
v16_int8 = {0x0 <repeats 16 times>}, v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0,
0x0, 0x0, 0x0}, v4_int32 = {0x0, 0x0, 0x0, 0x0}, v2_int64 = {0x0, 0x0},
uint128 = 0x00000000000000000000000000000000}
mxcsr 0x9f80 [ IM DM ZM OM UM PM FZ ]
mm0 {uint64 = 0x3f373e333b363a32, v2_int32 = {0x3b363a32,
0x3f373e33}, v4_int16 = {0x3a32, 0x3b36, 0x3e33, 0x3f37}, v8_int8 = {0x32,
0x3a, 0x36, 0x3b, 0x33, 0x3e, 0x37, 0x3f}}
mm1 {uint64 = 0xaaaaae6f3597c034, v2_int32 = {0x3597c034,
0xaaaaae6f}, v4_int16 = {0xc034, 0x3597, 0xae6f, 0xaaaa}, v8_int8 = {0x34,
0xc0, 0x97, 0x35, 0x6f, 0xae, 0xaa, 0xaa}}
mm2 {uint64 = 0x96b5b5e3416b0cb0, v2_int32 = {0x416b0cb0,
0x96b5b5e3}, v4_int16 = {0xcb0, 0x416b, 0xb5e3, 0x96b5}, v8_int8 = {0xb0,
0xc, 0x6b, 0x41, 0xe3, 0xb5, 0xb5, 0x96}}
mm3 {uint64 = 0x801c5e98ab267531, v2_int32 = {0xab267531,
0x801c5e98}, v4_int16 = {0x7531, 0xab26, 0x5e98, 0x801c}, v8_int8 = {0x31,
0x75, 0x26, 0xab, 0x98, 0x5e, 0x1c, 0x80}}
mm4 {uint64 = 0xcad2265e00000000, v2_int32 = {0x0, 0xcad2265e},
v4_int16 = {0x0, 0x0, 0x265e, 0xcad2}, v8_int8 = {0x0, 0x0, 0x0, 0x0, 0x5e,
0x26, 0xd2, 0xca}}
mm5 {uint64 = 0x857982174c5713da, v2_int32 = {0x4c5713da,
0x85798217}, v4_int16 = {0x13da, 0x4c57, 0x8217, 0x8579}, v8_int8 = {0xda,
0x13, 0x57, 0x4c, 0x17, 0x82, 0x79, 0x85}}
mm6 {uint64 = 0xcb58ef45bf37c000, v2_int32 = {0xbf37c000,
0xcb58ef45}, v4_int16 = {0xc000, 0xbf37, 0xef45, 0xcb58}, v8_int8 = {0x0,
0xc0, 0x37, 0xbf, 0x45, 0xef, 0x58, 0xcb}}
mm7 {uint64 = 0x924e9890d7a2ad3f, v2_int32 = {0xd7a2ad3f,
0x924e9890}, v4_int16 = {0xad3f, 0xd7a2, 0x9890, 0x924e}, v8_int8 = {0x3f,
0xad, 0xa2, 0xd7, 0x90, 0x98, 0x4e, 0x92}}
----------
status: new -> open
substatus: new -> reproduced
topic: +ffplay
______________________________________________________
FFmpeg issue tracker <[EMAIL PROTECTED]>
<https://roundup.mplayerhq.hu/roundup/ffmpeg/issue729>
______________________________________________________
