New submission from Daniel Verkamp <dan...@drv.nu>:
Decoding the audio of this file crashes ffmpeg: http://drv.nu/temp/fit-roll.wmv
(~5 MB)
Input audio is wmav2. The file was created by the Xbox360 game Forza 3.
This is the first problem encountered: if (v >= s->nb_block_sizes) is triggered:
Starting program: /home/daniel/src/ffmpeg/ffmpeg-git/ffmpeg_g -y -i
~/temp/fit-roll.wmv ~/temp/fit-roll.avi
[Thread debugging using libthread_db enabled]
FFmpeg version git-svn-r20416, Copyright (c) 2000-2009 Fabrice Bellard, et al.
built on Oct 29 2009 23:19:13 with gcc 4.4.1
configuration: --disable-optimizations --enable-debug
libavutil 50. 3. 0 / 50. 3. 0
libavcodec 52.37. 1 / 52.37. 1
libavformat 52.39. 2 / 52.39. 2
libavdevice 52. 2. 0 / 52. 2. 0
libswscale 0. 7. 1 / 0. 7. 1
Seems stream 1 codec frame rate differs from container frame rate: 1000.00
(1000/1) -> 30.00 (30/1)
Input #0, asf, from '/home/daniel/temp/fit-roll.wmv':
Duration: 00:00:10.02, start: 3.000000, bitrate: 4068 kb/s
Stream #0.0(eng): Audio: wmav2, 48000 Hz, 2 channels, s16, 128 kb/s
Stream #0.1(eng): Video: vc1, yuv420p, 640x360, 4194 kb/s, PAR 1:1 DAR 16:9,
30 tbr, 1k tbn, 1k tbc
Metadata
title : Honda Fit on Full Circuit
author : I KiZ I
copyright :
comment : Forza Motorsport 3 Video
SubTitle : driven by I KiZ I
Category : Forza;Forza Motorsport 3;I KiZ I;Maple Valley Raceway;Full
Circuit;I KiZ I;Honda;Honda Fit
PromotionURL : http://forzamotorsport.net
Forza/EnvironmentId: 9
Forza/TrackId : 67
Forza/TrackConfig: 0
Forza/FocusCarMakeId: 16
Forza/FocusCarModelId: 1,037
MediaFoundationVersion: 1.112
Output #0, avi, to '/home/daniel/temp/fit-roll.avi':
Stream #0.0(eng): Video: mpeg4, yuv420p, 640x360 [PAR 1:1 DAR 16:9], q=2-31,
200 kb/s, 30 tbn, 30 tbc
Stream #0.1(eng): Audio: mp2, 48000 Hz, 2 channels, s16, 64 kb/s
Stream mapping:
Stream #0.1 -> #0.0
Stream #0.0 -> #0.1
Press [q] to stop encoding
[New Thread 0x7f8d4cf1a6f0 (LWP 23849)]
[Switching to Thread 0x7f8d4cf1a6f0 (LWP 23849)]
Breakpoint 1, wma_decode_block (s=0x1dd89e0) at libavcodec/wmadec.c:444
444 return -1;
(gdb) p v
$1 = 7
(gdb) p s->nb_block_sizes
$2 = 5
If execution is allowed to continue, it crashes later:
(gdb) bt
#0 0x0000000000000000 in ?? ()
#1 0x00000000006e6064 in ff_imdct_calc (s=0x11ec3a0, output=0x11e7ed0,
input=0x11e3ed0) at libavcodec/dsputil.h:820
#2 0x00000000006e8194 in wma_decode_block (s=0x11db9e0) at
libavcodec/wmadec.c:721
#3 0x00000000006e8313 in wma_decode_frame (s=0x11db9e0, samples=0x7f237e0d7010)
at libavcodec/wmadec.c:754
#4 0x00000000006e8899 in wma_decode_superframe (avctx=0x107ec30,
data=0x7f237e0d7010, data_size=0x7fff9e647ebc,
avpkt=0x7fff9e647d10) at libavcodec/wmadec.c:878
#5 0x00000000004bd23b in avcodec_decode_audio3 (avctx=0x107ec30,
samples=0x7f237e0d7010, frame_size_ptr=0x7fff9e647ebc,
avpkt=0x7fff9e647d10) at libavcodec/utils.c:644
#6 0x0000000000408376 in output_packet (ist=0x108a530, ist_index=0,
ost_table=0x108a5d0, nb_ostreams=2, pkt=0x7fff9e647ff0)
at ffmpeg.c:1302
#7 0x000000000040c073 in av_encode (output_files=0xb6c160, nb_output_files=1,
input_files=0xb6a700, nb_input_files=1,
stream_maps=0xb6cea0, nb_stream_maps=0) at ffmpeg.c:2284
#8 0x00000000004106cb in main (argc=5, argv=0x7fff9e648ab8) at ffmpeg.c:3988
----------
messages: 7644
nosy: DrV
priority: normal
status: new
substatus: new
title: Crash decoding wmav2
topic: avcodec
type: bug
_____________________________________________________
FFmpeg issue tracker <iss...@roundup.ffmpeg.org>
<https://roundup.ffmpeg.org/roundup/ffmpeg/issue1503>
_____________________________________________________
