[libav-bugs] [Bug 826] New: segmentation fault avconv using -c:a aac -strict experimental

bugzilla at aruru.libav.org bugzilla at aruru.libav.org
Tue Mar 3 21:05:47 CET 2015


https://bugzilla.libav.org/show_bug.cgi?id=826

            Bug ID: 826
           Summary: segmentation fault  avconv using -c:a aac -strict
                    experimental
           Product: Libav
           Version: 11
          Hardware: Other
                OS: Linux
            Status: NEW
          Severity: normal
          Priority: ---
         Component: utilities
          Assignee: bugzilla at libav.org
          Reporter: malat at debian.org

I have a reproducible segfault using latest avconv (debian jessie amd64).

Steps:

$ avconv -i "6ter - OSS 117 : Le Caire nid d'espions - 01-03-2015 20h45
2h05m.ts"  -c:a aac -strict experimental lecaire.mp4

gdb output:

Program received signal SIGSEGV, Segmentation fault.
quantize_and_encode_band_cost_template (BT_ESC=0, BT_PAIR=1, BT_UNSIGNED=1,
BT_ZERO=0, bits=0x0, uplim=inf, lambda=0, cb=7, scale_idx=<optimized out>,
size=4, 
    scaled=<optimized out>, in=<optimized out>, pb=0x0, s=<optimized out>) at
/build/libav-nkscdW/libav-11.2/libavcodec/aaccoder.c:153
153    /build/libav-nkscdW/libav-11.2/libavcodec/aaccoder.c: No such file or
directory.
(gdb) bt
#0  quantize_and_encode_band_cost_template (BT_ESC=0, BT_PAIR=1, BT_UNSIGNED=1,
BT_ZERO=0, bits=0x0, uplim=inf, lambda=0, cb=7, scale_idx=<optimized out>,
size=4, 
    scaled=<optimized out>, in=<optimized out>, pb=0x0, s=<optimized out>) at
/build/libav-nkscdW/libav-11.2/libavcodec/aaccoder.c:153
#1  quantize_and_encode_band_cost_UPAIR (s=<optimized out>, pb=0x0,
in=<optimized out>, scaled=<optimized out>, size=4, scale_idx=<optimized out>,
cb=7, lambda=0, uplim=inf, 
    bits=0x0) at /build/libav-nkscdW/libav-11.2/libavcodec/aaccoder.c:227
#2  0x00007ffff67622c0 in quantize_band_cost (bits=<optimized out>,
uplim=<optimized out>, lambda=<optimized out>, cb=<optimized out>,
scale_idx=<optimized out>, 
    size=<optimized out>, scaled=<optimized out>, in=<optimized out>,
s=<optimized out>) at /build/libav-nkscdW/libav-11.2/libavcodec/aaccoder.c:262
#3  codebook_trellis_rate (s=0xc1ada0, sce=0xc198e0, win=12692896,
group_len=6803632, lambda=0) at
/build/libav-nkscdW/libav-11.2/libavcodec/aaccoder.c:473
#4  0x00007ffff67708b9 in encode_band_info (sce=<optimized out>, s=<optimized
out>) at /build/libav-nkscdW/libav-11.2/libavcodec/aacenc.c:371
#5  encode_individual_channel (common_window=<optimized out>, sce=0xc198e0,
s=0x67ce80, avctx=0x67bd20) at
/build/libav-nkscdW/libav-11.2/libavcodec/aacenc.c:450
#6  aac_encode_frame (avctx=<optimized out>, avpkt=<optimized out>,
frame=<optimized out>, got_packet_ptr=<optimized out>)
    at /build/libav-nkscdW/libav-11.2/libavcodec/aacenc.c:637
#7  0x00007ffff6ae15f8 in avcodec_encode_audio2 (avctx=0x67bd20,
avpkt=0x7fffffffe010, frame=0x10b2620, got_packet_ptr=0x7fffffffe00c)
    at /build/libav-nkscdW/libav-11.2/libavcodec/utils.c:1371
#8  0x0000000000415c44 in do_audio_out (frame=0x10b2620, ost=0x67c8c0,
s=0x67a600) at /build/libav-nkscdW/libav-11.2/avconv.c:425
#9  poll_filter (ost=0x67c8c0) at /build/libav-nkscdW/libav-11.2/avconv.c:688
#10 poll_filters () at /build/libav-nkscdW/libav-11.2/avconv.c:747
#11 0x0000000000405ed1 in transcode () at
/build/libav-nkscdW/libav-11.2/avconv.c:2492
#12 main (argc=6768320, argv=0x674800) at
/build/libav-nkscdW/libav-11.2/avconv.c:2646
(gdb) disass $pc-32,$pc+32
Dump of assembler code from 0x7ffff6764b50 to 0x7ffff6764b90:
   0x00007ffff6764b50 <quantize_and_encode_band_cost_UPAIR+400>:    pop    %rsp
   0x00007ffff6764b51 <quantize_and_encode_band_cost_UPAIR+401>:    and   
$0x8,%al
   0x00007ffff6764b53 <quantize_and_encode_band_cost_UPAIR+403>:    mov   
%rdi,%rcx
   0x00007ffff6764b56 <quantize_and_encode_band_cost_UPAIR+406>:    mov   
(%rdi),%eax
   0x00007ffff6764b58 <quantize_and_encode_band_cost_UPAIR+408>:    movaps
%xmm10,%xmm3
   0x00007ffff6764b5c <quantize_and_encode_band_cost_UPAIR+412>:    movss 
(%rdx),%xmm2
   0x00007ffff6764b60 <quantize_and_encode_band_cost_UPAIR+416>:    andps 
%xmm9,%xmm2
   0x00007ffff6764b64 <quantize_and_encode_band_cost_UPAIR+420>:    imul  
%r8d,%eax
   0x00007ffff6764b68 <quantize_and_encode_band_cost_UPAIR+424>:    add   
0x4(%rcx),%eax
   0x00007ffff6764b6b <quantize_and_encode_band_cost_UPAIR+427>:    movslq
%eax,%r11
   0x00007ffff6764b6e <quantize_and_encode_band_cost_UPAIR+430>:    add   
%eax,%eax
=> 0x00007ffff6764b70 <quantize_and_encode_band_cost_UPAIR+432>:    movzbl
(%rbx,%r11,1),%r9d
   0x00007ffff6764b75 <quantize_and_encode_band_cost_UPAIR+437>:    lea   
0x8b3004(%rip),%rbx        # 0x7ffff7017b80 <ff_aac_codebook_vectors>
   0x00007ffff6764b7c <quantize_and_encode_band_cost_UPAIR+444>:    movslq
%eax,%r14
   0x00007ffff6764b7f <quantize_and_encode_band_cost_UPAIR+447>:    mov   
(%rbx,%r13,8),%rbx
   0x00007ffff6764b83 <quantize_and_encode_band_cost_UPAIR+451>:    lea   
(%rbx,%r14,4),%r10
   0x00007ffff6764b87 <quantize_and_encode_band_cost_UPAIR+455>:    movss 
(%r10),%xmm5
   0x00007ffff6764b8c <quantize_and_encode_band_cost_UPAIR+460>:    mulss 
%xmm5,%xmm3
End of assembler dump.
(gdb) info all-registers
rax            0x0    0
rbx            0x7ffff6c10500    140737333232896
rcx            0x67d0b0    6803632
rdx            0xc1ada0    12692896
rsi            0x0    0
rdi            0x67d0b0    6803632
rbp            0x10    0x10
rsp            0x7fffffff91a0    0x7fffffff91a0
r8             0x8    8
r9             0x4    4
r10            0x7    7
r11            0xffffffff80000000    -2147483648
r12            0x0    0
r13            0x6    6
r14            0x7ffff67649c0    140737328335296
r15            0x0    0
rip            0x7ffff6764b70    0x7ffff6764b70
<quantize_and_encode_band_cost_UPAIR+432>
eflags         0x10a47    [ CF PF ZF IF OF RF ]
cs             0x33    51
ss             0x2b    43
ds             0x0    0
es             0x0    0
fs             0x0    0
gs             0x0    0
st0            -nan(0x5454555554545556)    (raw 0xffff5454555554545556)
st1            -nan(0x5151515151525253)    (raw 0xffff5151515151525253)
st2            -nan(0x4b4b4b4b4b4a4a4a)    (raw 0xffff4b4b4b4b4b4a4a4a)
st3            -nan(0x4d4c4c4c4c4c4c4b)    (raw 0xffff4d4c4c4c4c4c4c4b)
st4            -nan(0x4f4f4f4f4f4e4d4d)    (raw 0xffff4f4f4f4f4f4e4d4d)
st5            -nan(0x5352525151515050)    (raw 0xffff5352525151515050)
st6            -nan(0x5554545454545353)    (raw 0xffff5554545454545353)
st7            -nan(0x5656565656565655)    (raw 0xffff5656565656565655)
fctrl          0x37f    895
fstat          0x0    0
ftag           0xffff    65535
fiseg          0x0    0
fioff          0x0    0
foseg          0x0    0
fooff          0x0    0
fop            0x0    0
mxcsr          0x1fbf    [ IE DE ZE OE UE PE IM DM ZM OM UM PM ]
ymm0           {v8_float = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x0, 0x0, 0x0, 0x0}, v32_int8 = {0x0 <repeats 32 times>}, v16_int16 = {
---Type <return> to continue, or q <return> to quit---
    0x0 <repeats 16 times>}, v8_int32 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0,
0x0}, v4_int64 = {0x0, 0x0, 0x0, 0x0}, v2_int128 =
{0x00000000000000000000000000000000, 
    0x00000000000000000000000000000000}}
ymm1           {v8_float = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x0, 0x0, 0x0, 0x0}, v32_int8 = {0x0, 0x0, 0x80, 0x7f, 0x0 <repeats 28
times>}, v16_int16 = {
    0x0, 0x7f80, 0x0 <repeats 14 times>}, v8_int32 = {0x7f800000, 0x0, 0x0,
0x0, 0x0, 0x0, 0x0, 0x0}, v4_int64 = {0x7f800000, 0x0, 0x0, 0x0}, v2_int128 = {
    0x0000000000000000000000007f800000, 0x00000000000000000000000000000000}}
ymm2           {v8_float = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x0, 0x0, 0x0, 0x0}, v32_int8 = {0x0, 0x0, 0xc0, 0x7f, 0x0 <repeats 28
times>}, v16_int16 = {
    0x0, 0x7fc0, 0x0 <repeats 14 times>}, v8_int32 = {0x7fc00000, 0x0, 0x0,
0x0, 0x0, 0x0, 0x0, 0x0}, v4_int64 = {0x7fc00000, 0x0, 0x0, 0x0}, v2_int128 = {
    0x0000000000000000000000007fc00000, 0x00000000000000000000000000000000}}
ymm3           {v8_float = {0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x0, 0x0, 0x0, 0x0}, v32_int8 = {0xfd, 0x44, 0x57, 0x42, 0x0 <repeats 28
times>}, 
  v16_int16 = {0x44fd, 0x4257, 0x0 <repeats 14 times>}, v8_int32 = {0x425744fd,
0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_int64 = {0x425744fd, 0x0, 0x0, 0x0},
v2_int128 = {
    0x000000000000000000000000425744fd, 0x00000000000000000000000000000000}}
ymm4           {v8_float = {0x4000000, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0},
v4_double = {0x0, 0x0, 0x0, 0x0}, v32_int8 = {0xfc, 0x18, 0x73, 0xd7, 0x12,
0xf2, 0xd9, 0x3f, 
    0x0 <repeats 24 times>}, v16_int16 = {0x18fc, 0xd773, 0xf212, 0x3fd9, 0x0
<repeats 12 times>}, v8_int32 = {0xd77318fc, 0x3fd9f212, 0x0, 0x0, 0x0, 0x0,
0x0, 0x0}, 
  v4_int64 = {0x3fd9f212d77318fc, 0x0, 0x0, 0x0}, v2_int128 =
{0x00000000000000003fd9f212d77318fc, 0x00000000000000000000000000000000}}
ymm5           {v8_float = {0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x7, 0x0, 0x0, 0x0}, v32_int8 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c, 0x40, 
    0x0 <repeats 24 times>}, v16_int16 = {0x0, 0x0, 0x0, 0x401c, 0x0 <repeats
12 times>}, v8_int32 = {0x0, 0x401c0000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0},
v4_int64 = {
    0x401c000000000000, 0x0, 0x0, 0x0}, v2_int128 =
{0x0000000000000000401c000000000000, 0x00000000000000000000000000000000}}
ymm6           {v8_float = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x0, 0x0, 0x0, 0x0}, v32_int8 = {0x0 <repeats 32 times>}, v16_int16 = {
    0x0 <repeats 16 times>}, v8_int32 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0,
0x0}, v4_int64 = {0x0, 0x0, 0x0, 0x0}, v2_int128 =
{0x00000000000000000000000000000000, 
    0x00000000000000000000000000000000}}
ymm7           {v8_float = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x0, 0x0, 0x0, 0x0}, v32_int8 = {0x0 <repeats 32 times>}, v16_int16 = {
    0x0 <repeats 16 times>}, v8_int32 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0,
0x0}, v4_int64 = {0x0, 0x0, 0x0, 0x0}, v2_int128 =
{0x00000000000000000000000000000000, 
    0x00000000000000000000000000000000}}
ymm8           {v8_float = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x0, 0x0, 0x0, 0x0}, v32_int8 = {0x0 <repeats 32 times>}, v16_int16 = {
    0x0 <repeats 16 times>}, v8_int32 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0,
0x0}, v4_int64 = {0x0, 0x0, 0x0, 0x0}, v2_int128 =
{0x00000000000000000000000000000000, 
    0x00000000000000000000000000000000}}
ymm9           {v8_float = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x0, 0x0, 0x0, 0x0}, v32_int8 = {0xff, 0xff, 0xff, 0x7f, 0x0 <repeats 28
times>}, 
  v16_int16 = {0xffff, 0x7fff, 0x0 <repeats 14 times>}, v8_int32 = {0x7fffffff,
0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_int64 = {0x7fffffff, 0x0, 0x0, 0x0},
v2_int128 = {
    0x0000000000000000000000007fffffff, 0x00000000000000000000000000000000}}
ymm10          {v8_float = {0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x0, 0x0, 0x0, 0x0}, v32_int8 = {0xfd, 0x44, 0x57, 0x42, 0x0 <repeats 28
times>}, 
  v16_int16 = {0x44fd, 0x4257, 0x0 <repeats 14 times>}, v8_int32 = {0x425744fd,
0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_int64 = {0x425744fd, 0x0, 0x0, 0x0},
v2_int128 = {
    0x000000000000000000000000425744fd, 0x00000000000000000000000000000000}}
ymm11          {v8_float = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x0, 0x0, 0x0, 0x0}, v32_int8 = {0x0 <repeats 32 times>}, v16_int16 = {
    0x0 <repeats 16 times>}, v8_int32 = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0,
0x0}, v4_int64 = {0x0, 0x0, 0x0, 0x0}, v2_int128 =
{0x00000000000000000000000000000000, 
    0x00000000000000000000000000000000}}
ymm12          {v8_float = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x0, 0x0, 0x0, 0x0}, v32_int8 = {0x3f, 0xe4, 0x47, 0xbd, 0x0 <repeats 28
times>}, 
  v16_int16 = {0xe43f, 0xbd47, 0x0 <repeats 14 times>}, v8_int32 = {0xbd47e43f,
0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_int64 = {0xbd47e43f, 0x0, 0x0, 0x0},
v2_int128 = {
    0x000000000000000000000000bd47e43f, 0x00000000000000000000000000000000}}
ymm13          {v8_float = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x0, 0x0, 0x0, 0x0}, v32_int8 = {0xa5, 0xd3, 0x89, 0xbd, 0x0 <repeats 28
times>}, 
  v16_int16 = {0xd3a5, 0xbd89, 0x0 <repeats 14 times>}, v8_int32 = {0xbd89d3a5,
0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_int64 = {0xbd89d3a5, 0x0, 0x0, 0x0},
v2_int128 = {
    0x000000000000000000000000bd89d3a5, 0x00000000000000000000000000000000}}
ymm14          {v8_float = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x0, 0x0, 0x0, 0x0}, v32_int8 = {0xb4, 0x88, 0xa0, 0xbd, 0x0 <repeats 28
times>}, 
---Type <return> to continue, or q <return> to quit---
  v16_int16 = {0x88b4, 0xbda0, 0x0 <repeats 14 times>}, v8_int32 = {0xbda088b4,
0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_int64 = {0xbda088b4, 0x0, 0x0, 0x0},
v2_int128 = {
    0x000000000000000000000000bda088b4, 0x00000000000000000000000000000000}}
ymm15          {v8_float = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_double
= {0x0, 0x0, 0x0, 0x0}, v32_int8 = {0x19, 0x18, 0x49, 0xbd, 0x0 <repeats 28
times>}, 
  v16_int16 = {0x1819, 0xbd49, 0x0 <repeats 14 times>}, v8_int32 = {0xbd491819,
0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, v4_int64 = {0xbd491819, 0x0, 0x0, 0x0},
v2_int128 = {
    0x000000000000000000000000bd491819, 0x00000000000000000000000000000000}}
(gdb)

-- 
You are receiving this mail because:
You are watching all bug changes.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.libav.org/pipermail/libav-bugs/attachments/20150303/374b7125/attachment-0001.html>


More information about the libav-bugs mailing list