[libav-bugs] [Bug 311] New: Crashes when encoding to mpeg4 and dimensions not multiple of 16.

bugzilla-daemon at aruru.libav.org bugzilla-daemon at aruru.libav.org
Mon Jun 11 16:54:19 CEST 2012


http://bugzilla.libav.org/show_bug.cgi?id=311

           Summary: Crashes when encoding to mpeg4 and dimensions not
                    multiple of 16.
           Product: Libav
           Version: git HEAD
          Platform: All
        OS/Version: Linux
            Status: NEW
          Severity: enhancement
          Priority: Normal
         Component: libavcodec
        AssignedTo: bugzilla at libav.org
        ReportedBy: siretart at tauware.de


Occurs with current git HEAD.

References: http://bugs.debian.org/677035

Backtrace kindly provided by Johan 'spaam' Andersson:

Starting program: /home/johan/dev/libav/avconv -i
../../big_buck_bunny_1080p_h264.mov -an -c:v mpeg4 -vcodec mpeg4 -g 250 -bf 2
-qmin 1 -b 800k -s 626x360 -y abc.avi
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1".
    Stream #0.1(eng): Data: tmcd / 0x64636D74
    Metadata:
      creation_time   : 2008-05-27 18:40:35
    Stream #0.2(eng): Audio: aac, 48000 Hz, 5.1, s16, 437 kb/s
    Metadata:
      creation_time   : 2008-05-27 18:40:35
[buffer @ 0x1391180] w:1920 h:1080 pixfmt:yuv420p
[scale @ 0x1391740] w:1920 h:1080 fmt:yuv420p -> w:626 h:360 fmt:yuv420p
flags:0x4
[New Thread 0x7ffff6a90700 (LWP 11237)]
[New Thread 0x7ffff5af0700 (LWP 11238)]
[New Thread 0x7ffff52ef700 (LWP 11239)]
[New Thread 0x7ffff4aee700 (LWP 11240)]
[New Thread 0x7ffff42ed700 (LWP 11241)]
[New Thread 0x7ffff3aec700 (LWP 11242)]
[New Thread 0x7ffff32eb700 (LWP 11243)]
[New Thread 0x7ffff2aea700 (LWP 11244)]
[New Thread 0x7ffff22e9700 (LWP 11245)]
[New Thread 0x7ffff1ae8700 (LWP 11246)]
[New Thread 0x7ffff12e7700 (LWP 11247)]
[New Thread 0x7ffff0ae6700 (LWP 11248)]
[New Thread 0x7ffff02e5700 (LWP 11249)]
[New Thread 0x7fffefae4700 (LWP 11250)]
[New Thread 0x7fffef2e3700 (LWP 11251)]
[New Thread 0x7fffeeae2700 (LWP 11252)]
[New Thread 0x7fffee2e1700 (LWP 11253)]
[New Thread 0x7fffedae0700 (LWP 11254)]
Output #0, avi, to 'abc.avi':
  Metadata:
    major_brand     : qt  
    minor_version   : 537199360
    compatible_brands: qt  
    creation_time   : 2008-05-27 18:40:35
    ISFT            : Lavf54.3.1
    Stream #0.0(eng): Video: mpeg4, yuv420p, 626x360, q=1-31, 800 kb/s, 2400
tbn, 2400 tbc
    Metadata:
      creation_time   : 2008-05-27 18:40:35
Stream mapping:
  Stream #0:0 -> #0:0 (h264 -> mpeg4)
Press ctrl-c to stop encoding
frame=   54 fps=  0 q=38.8 size=     110kB time=2.08 bitrate= 433.5kbits/s    
Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 0x7ffff5af0700 (LWP 11238)]
0x0000000000913089 in sad16_sse2 (v=0x0, 
    blk2=0x3b5b862

<incomplete sequence \315>..., 
    blk1=0x3d9a422

<incomplete sequence \314>..., stride=672, h=16) at
libavcodec/x86/motion_est_mmx.c:96
96          __asm__ volatile(



(gdb) bt
#0  0x0000000000913089 in sad16_sse2 (v=0x0, 
    blk2=0x3b5b862

<incomplete sequence \315>..., 
    blk1=0x3d9a422

<incomplete sequence \314>..., stride=672, h=16) at
libavcodec/x86/motion_est_mmx.c:96
#1  0x00000000007813e4 in ff_mpeg4_encode_mb (s=0x1432160, block=0x19296e0,
motion_x=0, motion_y=0) at libavcodec/mpeg4videoenc.c:648
#2  0x00000000007bab2e in encode_mb_internal (mb_block_count=<optimized out>,
mb_block_height=<optimized out>, motion_y=<optimized out>, motion_x=<optimized
out>, s=<optimized out>)
    at libavcodec/mpegvideo_enc.c:2048
#3  encode_mb (motion_y=0, motion_x=0, s=0x1432160) at
libavcodec/mpegvideo_enc.c:2084
#4  encode_thread (c=<optimized out>, arg=<optimized out>) at
libavcodec/mpegvideo_enc.c:2950
#5  0x00000000007d92d0 in worker (v=0x13b8ba0) at libavcodec/pthread.c:219
#6  0x00007ffff722ab50 in start_thread (arg=<optimized out>) at
pthread_create.c:304
#7  0x00007ffff6f756dd in clone () at
../sysdeps/unix/sysv/linux/x86_64/clone.S:112
#8  0x0000000000000000 in ?? ()




(gdb) disass $pc-32,$pc+32
Dump of assembler code from 0x913069 to 0x9130a9:
   0x0000000000913069 <ff_mlp_init_x86+9>:      xchg   %eax,%ecx
   0x000000000091306a <ff_mlp_init_x86+10>:     add    %al,%bl
   0x000000000091306c:  nop
   0x000000000091306d:  nop
   0x000000000091306e:  nop
   0x000000000091306f:  nop
   0x0000000000913070 <sad16_sse2+0>:   movslq %ecx,%rax
   0x0000000000913073 <sad16_sse2+3>:   pxor   %xmm2,%xmm2
   0x0000000000913077 <sad16_sse2+7>:   nopw   0x0(%rax,%rax,1)
   0x0000000000913080 <sad16_sse2+16>:  movdqu (%rdx),%xmm0
   0x0000000000913084 <sad16_sse2+20>:  movdqu (%rdx,%rax,1),%xmm1
=> 0x0000000000913089 <sad16_sse2+25>:  psadbw (%rsi),%xmm0
   0x000000000091308d <sad16_sse2+29>:  psadbw (%rsi,%rax,1),%xmm1
   0x0000000000913092 <sad16_sse2+34>:  paddw  %xmm0,%xmm2
   0x0000000000913096 <sad16_sse2+38>:  paddw  %xmm1,%xmm2
   0x000000000091309a <sad16_sse2+42>:  lea    (%rdx,%rax,2),%rdx
   0x000000000091309e <sad16_sse2+46>:  lea    (%rsi,%rax,2),%rsi
   0x00000000009130a2 <sad16_sse2+50>:  sub    $0x2,%r8d
   0x00000000009130a6 <sad16_sse2+54>:  jg     0x913080 <sad16_sse2+16>
   0x00000000009130a8 <sad16_sse2+56>:  movhlps %xmm2,%xmm0
End of assembler dump.




rax            0x2a0    672
rbx            0x1432160        21176672
rcx            0x2a0    672
rdx            0x3d9a422        64594978
rsi            0x3b5b862        62240866
rdi            0x0      0
rbp            0x8062   0x8062
rsp            0x7ffff5ae3618   0x7ffff5ae3618
r8             0x10     16
r9             0xffffffff       4294967295
r10            0xffffffff       4294967295
r11            0xffffffff       4294967295
r12            0x3b5b862        62240866
r13            0x19296e0        26384096
r14            0x0      0
r15            0x10     16
rip            0x913089 0x913089 <sad16_sse2+25>
eflags         0x10246  [ PF ZF IF RF ]
cs             0x33     51
ss             0x2b     43
ds             0x0      0
es             0x0      0
fs             0x0      0
gs             0x0      0
st0            -inf     (raw 0xffff0000000000000000)
st1            -inf     (raw 0xffff0000000000000000)
st2            -nan(0x81008100810081)   (raw 0xffff0081008100810081)
st3            -nan(0x81008100810081)   (raw 0xffff0081008100810081)
st4            -nan(0x8686868686868686) (raw 0xffff8686868686868686)
st5            -nan(0x86008600860086)   (raw 0xffff0086008600860086)
st6            -inf     (raw 0xffff0000000000000000)
st7            -inf     (raw 0xffff0000000000000000)
fctrl          0x37f    895
fstat          0x20     32
ftag           0xaaaa   43690
fiseg          0x7fff   32767
fioff          0xf788cb87       -142029945
foseg          0x7fff   32767
fooff          0xffffd998       -9832
fop            0x0      0
mxcsr          0x1fa0   [ PE IM DM ZM OM UM PM ]
ymm0           {v8_float = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x8000000000000000, 0x8000000000000000, 0x0, 0x0}, v32_int8 = {0xe8 <repeats
16 times>, 
    0x0 <repeats 16 times>}, v16_int16 = {0xe8e8, 0xe8e8, 0xe8e8, 0xe8e8,
0xe8e8, 0xe8e8, 0xe8e8, 0xe8e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0},
v8_int32 = {0xe8e8e8e8, 0xe8e8e8e8, 
    0xe8e8e8e8, 0xe8e8e8e8, 0x0, 0x0, 0x0, 0x0}, v4_int64 =
{0xe8e8e8e8e8e8e8e8, 0xe8e8e8e8e8e8e8e8, 0x0, 0x0}, v2_int128 =
{0xe8e8e8e8e8e8e8e8e8e8e8e8e8e8e8e8, 
    0x00000000000000000000000000000000}}
ymm1           {v8_float = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x8000000000000000, 0x8000000000000000, 0x0, 0x0}, v32_int8 = {0xe8 <repeats
16 times>, 
    0x0 <repeats 16 times>}, v16_int16 = {0xe8e8, 0xe8e8, 0xe8e8, 0xe8e8,
0xe8e8, 0xe8e8, 0xe8e8, 0xe8e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0},
v8_int32 = {0xe8e8e8e8, 0xe8e8e8e8, 
    0xe8e8e8e8, 0xe8e8e8e8, 0x0, 0x0, 0x0, 0x0}, v4_int64 =
{0xe8e8e8e8e8e8e8e8, 0xe8e8e8e8e8e8e8e8, 0x0, 0x0}, v2_int128 =
{0xe8e8e8e8e8e8e8e8e8e8e8e8e8e8e8e8, 
    0x00000000000000000000000000000000}}
ymm2           {v8_float = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x0, 0x0, 0x0, 0x0}, v32_int8 = {0x0 <repeats 32 times>}, v16_int16 = {0x0
<repeats 16 times>}, 
  v8_int32 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_int64 = {0x0, 0x0,
0x0, 0x0}, v2_int128 = {0x00000000000000000000000000000000,
0x00000000000000000000000000000000}}
ymm3           {v8_float = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x8000000000000000, 0x8000000000000000, 0x0, 0x0}, v32_int8 = {0xea <repeats
16 times>, 
    0x0 <repeats 16 times>}, v16_int16 = {0xeaea, 0xeaea, 0xeaea, 0xeaea,
0xeaea, 0xeaea, 0xeaea, 0xeaea, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0},
v8_int32 = {0xeaeaeaea, 0xeaeaeaea, 
    0xeaeaeaea, 0xeaeaeaea, 0x0, 0x0, 0x0, 0x0}, v4_int64 =
{0xeaeaeaeaeaeaeaea, 0xeaeaeaeaeaeaeaea, 0x0, 0x0}, v2_int128 =
{0xeaeaeaeaeaeaeaeaeaeaeaeaeaeaeaea, 
ymm4           {v8_float = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x0, 0x0, 0x0, 0x0}, v32_int8 = {0x0 <repeats 32 times>}, v16_int16 = {0x0
<repeats 16 times>}, 
  v8_int32 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_int64 = {0x0, 0x0,
0x0, 0x0}, v2_int128 = {0x00000000000000000000000000000000,
0x00000000000000000000000000000000}}
ymm5           {v8_float = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x0, 0x0, 0x0, 0x0}, v32_int8 = {0xcc, 0x0, 0xcc, 0x0, 0xcc, 0x0, 0xcc, 0x0,
0xcc, 0x0, 0xcc, 0x0, 0xcc, 
    0x0, 0xcc, 0x0 <repeats 17 times>}, v16_int16 = {0xcc, 0xcc, 0xcc, 0xcc,
0xcc, 0xcc, 0xcc, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v8_int32 =
{0xcc00cc, 0xcc00cc, 0xcc00cc, 
    0xcc00cc, 0x0, 0x0, 0x0, 0x0}, v4_int64 = {0xcc00cc00cc00cc,
0xcc00cc00cc00cc, 0x0, 0x0}, v2_int128 = {0x00cc00cc00cc00cc00cc00cc00cc00cc,
0x00000000000000000000000000000000}}
ymm6           {v8_float = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x0, 0x0, 0x0, 0x0}, v32_int8 = {0x0 <repeats 32 times>}, v16_int16 = {0x0
<repeats 16 times>}, 
  v8_int32 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_int64 = {0x0, 0x0,
0x0, 0x0}, v2_int128 = {0x00000000000000000000000000000000,
0x00000000000000000000000000000000}}
ymm7           {v8_float = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x0, 0x0, 0x0, 0x0}, v32_int8 = {0x0 <repeats 32 times>}, v16_int16 = {0x0
<repeats 16 times>}, 
  v8_int32 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_int64 = {0x0, 0x0,
0x0, 0x0}, v2_int128 = {0x00000000000000000000000000000000,
0x00000000000000000000000000000000}}
ymm8           {v8_float = {0x0, 0xd0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x4380663abb8000, 0x0, 0x0, 0x0}, v32_int8 = {0x0, 0xe0, 0xae, 0x8e, 0x19,
0xe0, 0x50, 0x43, 
    0x0 <repeats 24 times>}, v16_int16 = {0xe000, 0x8eae, 0xe019, 0x4350, 0x0
<repeats 12 times>}, v8_int32 = {0x8eaee000, 0x4350e019, 0x0, 0x0, 0x0, 0x0,
0x0, 0x0}, v4_int64 = {
    0x4350e0198eaee000, 0x0, 0x0, 0x0}, v2_int128 =
{0x00000000000000004350e0198eaee000, 0x00000000000000000000000000000000}}
ymm9           {v8_float = {0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0xa, 0x0, 0x0, 0x0}, v32_int8 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, 0x40,
0x0 <repeats 24 times>}, 
  v16_int16 = {0x0, 0x0, 0x0, 0x4024, 0x0 <repeats 12 times>}, v8_int32 = {0x0,
0x40240000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_int64 = {0x4024000000000000, 0x0,
0x0, 0x0}, v2_int128 = {
    0x00000000000000004024000000000000, 0x00000000000000000000000000000000}}
ymm10          {v8_float = {0x0, 0x4b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x5ffffffffff, 0x0, 0x0, 0x0}, v32_int8 = {0x2c, 0xfd, 0xff, 0xff, 0xff,
0xff, 0x97, 0x42, 
    0x0 <repeats 24 times>}, v16_int16 = {0xfd2c, 0xffff, 0xffff, 0x4297, 0x0
<repeats 12 times>}, v8_int32 = {0xfffffd2c, 0x4297ffff, 0x0, 0x0, 0x0, 0x0,
0x0, 0x0}, v4_int64 = {
    0x4297fffffffffd2c, 0x0, 0x0, 0x0}, v2_int128 =
{0x00000000000000004297fffffffffd2c, 0x00000000000000000000000000000000}}
ymm11          {v8_float = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x0, 0x0, 0x0, 0x0}, v32_int8 = {0xc1, 0x2f, 0x11, 0x81, 0xfe, 0x3f, 0x76,
0x3e, 0x0 <repeats 24 times>}, 
  v16_int16 = {0x2fc1, 0x8111, 0x3ffe, 0x3e76, 0x0 <repeats 12 times>},
v8_int32 = {0x81112fc1, 0x3e763ffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_int64 =
{0x3e763ffe81112fc1, 0x0, 0x0, 0x0}, 
  v2_int128 = {0x00000000000000003e763ffe81112fc1,
0x00000000000000000000000000000000}}
ymm12          {v8_float = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x0, 0x0, 0x0, 0x0}, v32_int8 = {0x29, 0xf2, 0x88, 0x6c, 0xa6, 0x49, 0xde,
0x3e, 0x0 <repeats 24 times>}, 
  v16_int16 = {0xf229, 0x6c88, 0x49a6, 0x3ede, 0x0 <repeats 12 times>},
v8_int32 = {0x6c88f229, 0x3ede49a6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_int64 =
{0x3ede49a66c88f229, 0x0, 0x0, 0x0}, 
  v2_int128 = {0x00000000000000003ede49a66c88f229,
0x00000000000000000000000000000000}}
ymm13          {v8_float = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x0, 0x0, 0x0, 0x0}, v32_int8 = {0xb3, 0x12, 0x58, 0x17, 0x64, 0x46, 0xe6,
0x3b, 0x0 <repeats 24 times>}, 
  v16_int16 = {0x12b3, 0x1758, 0x4664, 0x3be6, 0x0 <repeats 12 times>},
v8_int32 = {0x175812b3, 0x3be64664, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_int64 =
{0x3be64664175812b3, 0x0, 0x0, 0x0}, 
  v2_int128 = {0x00000000000000003be64664175812b3,
0x00000000000000000000000000000000}}
ymm14          {v8_float = {0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x2d, 0x0, 0x0, 0x0}, v32_int8 = {0xc0, 0x9, 0xf2, 0x16, 0xb5, 0xdf, 0x46,
0x40, 0x0 <repeats 24 times>}, 
  v16_int16 = {0x9c0, 0x16f2, 0xdfb5, 0x4046, 0x0 <repeats 12 times>}, v8_int32
= {0x16f209c0, 0x4046dfb5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_int64 =
{0x4046dfb516f209c0, 0x0, 0x0, 0x0}, 
  v2_int128 = {0x00000000000000004046dfb516f209c0,
0x00000000000000000000000000000000}}
ymm15          {v8_float = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x0, 0x0, 0x0, 0x0}, v32_int8 = {0x0 <repeats 32 times>}, v16_int16 = {0x0
<repeats 16 times>}, 
  v8_int32 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_int64 = {0x0, 0x0,
0x0, 0x0}, v2_int128 = {0x00000000000000000000000000000000,
0x00000000000000000000000000000000}}

-- 
Configure bugmail: http://bugzilla.libav.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.


More information about the libav-bugs mailing list