New submission from Steven Zakulec <[email protected]>:
The file http://samples.mplayerhq.hu/real/spear.rm crashes on playback with
ffplay. It just fails when trying to transcode- gdb says it returns code 01.
MPlayer plays it just fine.
Starting program: /home/steve/ffmpeg/ffplay_g -stats spear.rm
[Thread debugging using libthread_db enabled]
FFplay version SVN-r17197, Copyright (c) 2003-2009 Fabrice Bellard, et al.
configuration: --enable-gpl --enable-pthreads
libavutil 49.14. 0 / 49.14. 0
libavcodec 52.15. 0 / 52.15. 0
libavformat 52.27. 0 / 52.27. 0
libavdevice 52. 1. 0 / 52. 1. 0
built on Feb 12 2009 21:51:50, gcc: 4.3.2
[New Thread 0xb7c6b6b0 (LWP 20193)]
[New Thread 0xb791bb90 (LWP 20196)]
[New Thread 0xb704cb90 (LWP 20201)]
[NULL @ 0xa0bbbd0]Unsupported video codec
[NULL @ 0xa0bbf60]Unsupported video codec
[NULL @ 0xa0c7950]Unsupported video codec
Input #0, rm, from 'spear.rm': 0KB vq= 0KB sq= 0B
Duration: 00:00:11.14, start: 0.000000, bitrate: 916 kb/s
Stream #0.0: Data: 0x0000, 32 kb/s
Stream #0.1: Data: 0x0000, 317 kb/s
Stream #0.2: Data: 0x0000
Stream #0.3: Audio: cook, 22050 Hz, mono, s16, 32 kb/s
Stream #0.4: Video: rv30, 320x240, 317 kb/s, 12.00 tb(r)
Stream #0.5: Video: rv30, 320x240, 230 kb/s, 12.00 tb(r)
Stream #0.6: Video: rv30, 320x240, 68 kb/s, 12.00 tb(r)
Stream #0.7: Audio: cook, 22050 Hz, mono, s16, 32 kb/s
Stream #0.8: Audio: cook, 22050 Hz, mono, s16, 32 kb/s
Stream #0.9: Video: rv30, yuv420p, 320x240, 317 kb/s, 12.00 tb(r)
Stream #0.10: Video: rv30, 320x240, 317 kb/s, 12.00 tb(r)
Stream #0.11: Video: rv30, 320x240, 317 kb/s, 12.00 tb(r)
Stream #0.12: Video: rv30, 320x240, 68 kb/s, 12.00 tb(r)
Title: Spear
Copyright: �2000
[New Thread 0xb684bb90 (LWP 20202)]
[New Thread 0xb604ab90 (LWP 20203)]
[rv30 @ 0xa0ca6c0]First slice header is incorrect
[rv30 @ 0xa0ca6c0]First slice header is incorrect
[rv30 @ 0xa0ca6c0]First slice header is incorrect
[rv30 @ 0xa0ca6c0]First slice header is incorrect
[rv30 @ 0xa0ca6c0]First slice header is incorrect
[rv30 @ 0xa0ca6c0]warning: first frame is no keyframe
[rv30 @ 0xa0ca6c0]Slice indicates MB offset 153, got 0
[rv30 @ 0xa0ca6c0]dquant needed
[rv30 @ 0xa0ca6c0]dquant needed
[rv30 @ 0xa0ca6c0]concealing 165 DC, 165 AC, 165 MV errors
Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 0xb704cb90 (LWP 20201)]
0x080de237 in ff_rm_parse_packet (s=0xa0c69c0, pb=0xa0bb8f0,
st=0xa0ca510, ast=0xa0be7d0, len=3590, pkt=0xb704c280, seq=0xb704c19c,
flags=0xb704c1a0, timestamp=0xb704c190)
at libavformat/rmdec.c:538
538 AV_WL32(vst->pkt.data - 7 + 8*vst->cur_slice, 1);
bt
#0 0x080de237 in ff_rm_parse_packet (s=0xa0c69c0, pb=0xa0bb8f0,
st=0xa0ca510, ast=0xa0be7d0, len=3590, pkt=0xb704c280, seq=0xb704c19c,
flags=0xb704c1a0, timestamp=0xb704c190)
at libavformat/rmdec.c:538
#1 0x080df7ba in rm_read_packet (s=0xa0c69c0, pkt=0xb704c280) at
libavformat/rmdec.c:752
#2 0x08071874 in av_read_packet (s=0xa0c69c0, pkt=0xb704c280) at
libavformat/utils.c:591
#3 0x08072d8d in av_read_frame_internal (s=0xa0c69c0, pkt=0xb704c304) at
libavformat/utils.c:972
#4 0x08063ad7 in decode_thread (arg=0xb704d020) at ffplay.c:2091
#5 0xb7e846fb in ?? () from /usr/lib/libSDL-1.2.so.0
#6 0xb7ed25cd in ?? () from /usr/lib/libSDL-1.2.so.0
#7 0xb7e6350f in start_thread () from /lib/tls/i686/cmov/libpthread.so.0
#8 0xb7de0a0e in clone () from /lib/tls/i686/cmov/libc.so.6
disass $pc-32 $pc+32
Dump of assembler code from 0x80de217 to 0x80de257:
0x080de217 <ff_rm_parse_packet+1383>: add (%edi),%cl
0x080de219 <ff_rm_parse_packet+1385>: test %cl,(%esi)
0x080de21b <ff_rm_parse_packet+1387>: add (%eax),%al
0x080de21d <ff_rm_parse_packet+1389>: add %cl,-0x74a3dba4(%ebx)
0x080de223 <ff_rm_parse_packet+1395>: inc %ebx
0x080de224 <ff_rm_parse_packet+1396>: dec %eax
0x080de225 <ff_rm_parse_packet+1397>: add $0x1,%eax
0x080de228 <ff_rm_parse_packet+1400>: cmp 0x4c(%ebx),%eax
0x080de22b <ff_rm_parse_packet+1403>: mov %eax,0x48(%ebx)
0x080de22e <ff_rm_parse_packet+1406>: jg 0x80dde1a
<ff_rm_parse_packet+362>
0x080de234 <ff_rm_parse_packet+1412>: mov 0x10(%ebx),%edx
0x080de237 <ff_rm_parse_packet+1415>: movl $0x1,-0x7(%edx,%eax,8)
0x080de23f <ff_rm_parse_packet+1423>: mov 0x4c(%ebx),%eax
0x080de242 <ff_rm_parse_packet+1426>: mov 0x48(%ebx),%ecx
0x080de245 <ff_rm_parse_packet+1429>: shl $0x3,%eax
0x080de248 <ff_rm_parse_packet+1432>: not %eax
0x080de24a <ff_rm_parse_packet+1434>: add 0x40(%ebx),%eax
0x080de24d <ff_rm_parse_packet+1437>: mov %eax,-0x3(%edx,%ecx,8)
0x080de251 <ff_rm_parse_packet+1441>: mov 0x40(%ebx),%edx
0x080de254 <ff_rm_parse_packet+1444>: lea (%esi,%edx,1),%eax
End of assembler dump.
info all-registers
eax 0x2 2
ecx 0xa0c6990 168585616
edx 0x0 0
ebx 0xa0be7d0 168552400
esp 0xb704c100 0xb704c100
ebp 0x6b 0x6b
esi 0xdfb 3579
edi 0xe00 3584
eip 0x80de237 0x80de237 <ff_rm_parse_packet+1415>
eflags 0x210293 [ CF AF SF IF RF ID ]
cs 0x73 115
ss 0x7b 123
ds 0x7b 123
es 0x7b 123
fs 0x0 0
gs 0x33 51
st0 0 (raw 0x00000000000000000000)
st1 0 (raw 0x00000000000000000000)
st2 0 (raw 0x00000000000000000000)
st3 2047 (raw 0x4009ffe0000000000000)
st4 0.28999999999999998001598555674718227 (raw
0x3ffd947ae147ae147800)
st5 2048 (raw 0x400a8000000000000000)
st6 1 (raw 0x3fff8000000000000000)
st7 1234502173.8791829999536275863647461 (raw
0x401d932a043bc2244630)
fctrl 0x37f 895
fstat 0x4220 16928
ftag 0xffff 65535
fiseg 0x73 115
fioff 0x8061283 134615683
foseg 0x7b 123
fooff 0xb7119bd4 -1223582764
fop 0x59b 1435
xmm0 {v4_float = {0x0, 0x0, 0x0, 0x0}, v2_double = {0x0, 0x0},
v16_int8
= {0x0 <repeats 16 times>}, v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0,
0x0}, v4_int32 = {
0x0, 0x0, 0x0, 0x0}, v2_int64 = {0x0, 0x0}, uint128 =
0x00000000000000000000000000000000}
xmm1 {v4_float = {0x0, 0x0, 0x0, 0x0}, v2_double = {0x0, 0x0},
v16_int8
= {0x0 <repeats 16 times>}, v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0,
0x0}, v4_int32 = {
0x0, 0x0, 0x0, 0x0}, v2_int64 = {0x0, 0x0}, uint128 =
0x00000000000000000000000000000000}
xmm2 {v4_float = {0x0, 0x0, 0x0, 0x0}, v2_double = {0x0, 0x0},
v16_int8
= {0x0 <repeats 16 times>}, v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0,
0x0}, v4_int32 = {
0x0, 0x0, 0x0, 0x0}, v2_int64 = {0x0, 0x0}, uint128 =
0x00000000000000000000000000000000}
xmm3 {v4_float = {0x0, 0x0, 0x0, 0x0}, v2_double = {0x0, 0x0},
v16_int8
= {0x0 <repeats 16 times>}, v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0,
0x0}, v4_int32 = {
---Type <return> to continue, or q <return> to quit---
0x0, 0x0, 0x0, 0x0}, v2_int64 = {0x0, 0x0}, uint128 =
0x00000000000000000000000000000000}
xmm4 {v4_float = {0x0, 0x0, 0x0, 0x0}, v2_double = {0x0, 0x0},
v16_int8
= {0x0 <repeats 16 times>}, v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0,
0x0}, v4_int32 = {
0x0, 0x0, 0x0, 0x0}, v2_int64 = {0x0, 0x0}, uint128 =
0x00000000000000000000000000000000}
xmm5 {v4_float = {0x0, 0x0, 0x0, 0x0}, v2_double = {0x0, 0x0},
v16_int8
= {0x0 <repeats 16 times>}, v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0,
0x0}, v4_int32 = {
0x0, 0x0, 0x0, 0x0}, v2_int64 = {0x0, 0x0}, uint128 =
0x00000000000000000000000000000000}
xmm6 {v4_float = {0x0, 0x0, 0x0, 0x0}, v2_double = {0x0, 0x0},
v16_int8
= {0x0 <repeats 16 times>}, v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0,
0x0}, v4_int32 = {
0x0, 0x0, 0x0, 0x0}, v2_int64 = {0x0, 0x0}, uint128 =
0x00000000000000000000000000000000}
xmm7 {v4_float = {0x0, 0x0, 0x0, 0x0}, v2_double = {0x0, 0x0},
v16_int8
= {0x0 <repeats 16 times>}, v8_int16 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0,
0x0}, v4_int32 = {
0x0, 0x0, 0x0, 0x0}, v2_int64 = {0x0, 0x0}, uint128 =
0x00000000000000000000000000000000}
mxcsr 0x1f80 [ IM DM ZM OM UM PM ]
mm0 {uint64 = 0x0, v2_int32 = {0x0, 0x0}, v4_int16 = {0x0, 0x0, 0x0,
0x0}, v8_int8 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}
mm1 {uint64 = 0x0, v2_int32 = {0x0, 0x0}, v4_int16 = {0x0, 0x0, 0x0,
0x0}, v8_int8 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}
mm2 {uint64 = 0x0, v2_int32 = {0x0, 0x0}, v4_int16 = {0x0, 0x0, 0x0,
0x0}, v8_int8 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}
mm3 {uint64 = 0xffe0000000000000, v2_int32 = {0x0, 0xffe00000},
v4_int16 = {0x0, 0x0, 0x0, 0xffe0}, v8_int8 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0,
0xe0, 0xff}}
mm4 {uint64 = 0x947ae147ae147800, v2_int32 = {0xae147800,
0x947ae147}, v4_int16 = {0x7800, 0xae14, 0xe147, 0x947a}, v8_int8 = {0x0,
0x78, 0x14, 0xae, 0x47, 0xe1, 0x7a,
0x94}}
mm5 {uint64 = 0x8000000000000000, v2_int32 = {0x0, 0x80000000},
v4_int16 = {0x0, 0x0, 0x0, 0x8000}, v8_int8 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0,
0x0, 0x80}}
mm6 {uint64 = 0x8000000000000000, v2_int32 = {0x0, 0x80000000},
v4_int16 = {0x0, 0x0, 0x0, 0x8000}, v8_int8 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0,
0x0, 0x80}}
mm7 {uint64 = 0x932a043bc2244630, v2_int32 = {0xc2244630,
0x932a043b}, v4_int16 = {0x4630, 0xc224, 0x43b, 0x932a}, v8_int8 = {0x30,
0x46, 0x24, 0xc2, 0x3b, 0x4, 0x2a,
0x93}}
----------
messages: 4250
priority: normal
status: new
substatus: new
title: spear.rm segfaults on playback
type: bug
____________________________________________________
FFmpeg issue tracker <[email protected]>
<https://roundup.ffmpeg.org/roundup/ffmpeg/issue846>
____________________________________________________
