Commits · 38d37584448731f90977132b838d50ff1a28811b · Linshizhi / ffmpeg.wasm-core

02 Feb, 2020 11 commits

avcodec/wmavoice: Fix rounding and integer anomalies in calc_input_response() · 38d37584

Michael Niedermayer authored Dec 14, 2019

Fixes: out of array access
Fixes: inf is outside the range of representable values of type 'int'
Fixes: signed integer overflow: -9223372036854775808 - 1 cannot be represented in type 'long'
Fixes: 19316/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_WMAVOICE_fuzzer-5677369365102592

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpegSigned-off-by: Michael Niedermayer <michael@niedermayer.cc>

38d37584

avcodec/wmavoice: sanity check block_align · 6847e22c

Michael Niedermayer authored Dec 21, 2019

This limit is roughly based on the bitreader limit, its likely a much tighter limit
could be used

Fixes: left shift of 1965039647 by 1 places cannot be represented in type 'int'
Fixes: 19545/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_WMAVOICE_fuzzer-5695391899320320

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpegSigned-off-by: Michael Niedermayer <michael@niedermayer.cc>

6847e22c

avcodec/pcm: Fix invalid shift in pcm_decode_frame for LXF · 985d3666

Michael Niedermayer authored Dec 17, 2019

Fixes: left shift of 32 by 28 places cannot be represented in type 'int'
Fixes: 19472/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_PCM_LXF_fuzzer-5704364320096256

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpegSigned-off-by: Michael Niedermayer <michael@niedermayer.cc>

985d3666

avcodec/snappy: Sanity check bytestream2_get_levarint() · be54da21

Michael Niedermayer authored Jan 19, 2020

Fixes: left shift of 79 by 28 places cannot be represented in type 'int'
Fixes: 20202/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_HAP_fuzzer-5719004081815552
Fixes: 20219/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_HAP_fuzzer-5641738677125120
Fixes: 20389/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_HAP_fuzzer-5680721517871104

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpegSigned-off-by: Michael Niedermayer <michael@niedermayer.cc>

be54da21

avformat/udp: cancel pending IO on win32 manually · 53aa7668

Marton Balint authored Jan 26, 2020

recvfrom() is not a cancellation point in pthreads-win32, see
https://sourceware.org/pthreads-win32/manual/pthread_cancel.html

In order to be able to cancel the reader thread on Win32 properly we first
shutdown the socket then call CancelIoEx to abort pending IO. Subsequent
recvfrom() calls will fail with WSAESHUTDOWN causing the thread to exit.

Fixes ticket #5717.
Signed-off-by: Marton Balint <cus@passwd.hu>

53aa7668

avformat/udp: remove setting cancel state from the TX thread · c2b6493b
Marton Balint authored Jan 26, 2020
```
Write mode does not use cancellation.
Signed-off-by: Marton Balint <cus@passwd.hu>
```
c2b6493b

avcodec/mlpdsp: Fix a invalid shift in ff_mlp_rematrix_channel() · fcc9f137

Michael Niedermayer authored Feb 01, 2020

Fixes: left shift of negative value -2
Fixes: 20305/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_TRUEHD_fuzzer-5677196618498048

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpegReviewed-by: Jai Luthra <me@jailuthra.in>
Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>

fcc9f137

avcodec/adpcm_argo: simplify and move duplicated logic into a function · b49404ea
Zane van Iperen authored Feb 01, 2020
```
Signed-off-by: Zane van Iperen <zane@zanevaniperen.com>
Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
```
b49404ea
avfilter: add xfade opencl filter · cd823dad
Paul B Mahol authored Jan 23, 2020

cd823dad
doc/filters: fix tonemap_vaapi filter name in documentation · 84286789
Paul B Mahol authored Feb 02, 2020

84286789
doc/filters: make filters order more consistent · 69477e10
Paul B Mahol authored Feb 02, 2020

69477e10

01 Feb, 2020 10 commits
- avcodec/v4l2_m2m: Cosmetics · d85c84eb
  Andriy Gelman authored Jan 13, 2020
```
Change pointer symbol position.
Signed-off-by: Andriy Gelman <andriy.gelman@gmail.com>
```
  d85c84eb
- avcodec/v4l2_m2m: Use consistent logging context · 73e23b40
  Andriy Gelman authored Jan 13, 2020
```
Before this commit v4l2_m2m used two different logging contexts (from
V4L2m2mPriv and AVCodecContext). For consistency always use AVCodecContext.
Signed-off-by: Andriy Gelman <andriy.gelman@gmail.com>
```
  73e23b40
- avcodec/v4l2_m2m: Simplify capture buffer init check · 4c1a3e91
  Andriy Gelman authored Jan 13, 2020
```
Before this commit s->avctx == NULL was used to infer that an encoder is
being initialzed. Code readability has been improved by directly using
!av_codec_is_decoder() instead.
Signed-off-by: Andriy Gelman <andriy.gelman@gmail.com>
```
  4c1a3e91
- avcodec:v4l2_context: Remove NULL initialization · 3905ecbc
  Andriy Gelman authored Jan 13, 2020
```
Signed-off-by: Andriy Gelman <andriy.gelman@gmail.com>
```
  3905ecbc
- avfilter/vf_xfade: remove unused header · e5e7289e
  Paul B Mahol authored Feb 01, 2020
  
  e5e7289e
- avfilter/vf_psnr: fix logic failure when comparing time bases · 5c9a4ff8
  Paul B Mahol authored Feb 01, 2020
  
  5c9a4ff8
- avfilter/vf_ssim: fix logic failure when comparing time bases · 89eee097
  Paul B Mahol authored Feb 01, 2020
  
  89eee097
- avcodec/utils: remove extra brackets · 81d25e5b
  leozhang authored Feb 01, 2020
```
Signed-off-by: leozhang <leozhang@qiyi.com>
Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
```
  81d25e5b
- libavcodec/amfenc_hevc.c: Fix constant QP settings for I, P · 843c24a4
  OvchinnikovDmitrii authored Jan 28, 2020
  
  843c24a4
- lavc/h265_profile_level: Fix the default profile in ff_h265_guess_level · f0287e12
  Linjie Fu authored Jan 15, 2020
```
Default to using multiplication factors for Main profile.

Introduced since cd3578a8.
Signed-off-by: Linjie Fu <linjie.fu@intel.com>
```
  f0287e12
31 Jan, 2020 7 commits

avformat/hlsenc: fix hls_ts_options with mpegts · 73aab08d
Marton Balint authored Dec 23, 2019
```
Was broken since cdbf8847.
Signed-off-by: Marton Balint <cus@passwd.hu>
```
73aab08d

avfilter/vf_geq: use per-thread AVExpr for expression evaluation · c044ac20

Marton Balint authored Dec 28, 2019

There was no consensus about separating AVExprState from AVExpr so here is a
minimal patch using the existing AVExpr to fix ticket #7528.
Signed-off-by: Marton Balint <cus@passwd.hu>

c044ac20

avcodec/avdct: Clear IDCTDSPContext context · b82825eb

Michael Niedermayer authored Jan 27, 2020

Fixes use of uninitialized variable and segfault
Reviewed-by: Paul B Mahol <onemda@gmail.com>
Reviewed-by: James Almer <jamrial@gmail.com>
Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>

b82825eb

MAINTAINERS: Add patchwork maintainer · c2d47629
Michael Niedermayer authored Jan 27, 2020
```
Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
```
c2d47629

dashenc: check pts to prevent division by zero error · d550a285

Alfred E. Heggestad authored Jan 30, 2020

this usecase will cause a division by zero trap:

1. dashenc has received one frame
2. os->max_pts and os->start_pts have same value
3. delta between max_pts and start_pts is 0
4. av_rescale_q(0, x, y) returns 0
5. this value is used as denominator in division
6. Bang! -> segfault

this fix checks that max_pts > start_pts.
the fix has been tested and works.
Signed-off-by: Alfred E. Heggestad <alfred.heggestad@gmail.com>
Reviewed-by: Jeyapal, Karthick <kjeyapal@akamai.com>
Signed-off-by: James Almer <jamrial@gmail.com>

d550a285

avfilter/vf_xfade: add smooth transitions · 53b4128e
Paul B Mahol authored Jan 31, 2020

53b4128e
doc/filters: improve xfade description and add one example · 113bae59
Paul B Mahol authored Jan 31, 2020

113bae59

30 Jan, 2020 12 commits

avfilter/vf_drawtext: do not overread text if the last UTF8 sequence is invalid · 62d92a87
Marton Balint authored Jan 29, 2020
```
Signed-off-by: Marton Balint <cus@passwd.hu>
```
62d92a87

avfilter/vf_drawtext: use replacement chars for invalid UTF8 sequences · 5ac8389c

Marton Balint authored Jan 29, 2020

continue is explicitly disallowed for GET_UTF8, so let's fix that as well.
Fixes crash with invalid UTF8 sequences.
Signed-off-by: Marton Balint <cus@passwd.hu>

5ac8389c

avutil/common: warn about possible move of the data pointer after the last 0 byte in GET_UTF8 · 60263840
Marton Balint authored Jan 29, 2020
```
Signed-off-by: Marton Balint <cus@passwd.hu>
```
60263840
avutil/common: put ERROR statements into separate code blocks in GET_UTF8/16 · d9f5fe4e
Marton Balint authored Jan 29, 2020
```
To be able to safely use more than one statement in ERROR.
Signed-off-by: Marton Balint <cus@passwd.hu>
```
d9f5fe4e
avutil/common: add parenthesis around GET_16BIT in GET_UTF16 · 1466bb0b
Marton Balint authored Jan 29, 2020
```
Signed-off-by: Marton Balint <cus@passwd.hu>
```
1466bb0b

avutil/common: use unsigned int in GET_UTF8 · 5df1c1ad

Marton Balint authored Jan 29, 2020

Right shift of signed value is implementation defined.
Signed-off-by: Marton Balint <cus@passwd.hu>

5df1c1ad

avcodec/x86/diracdsp: Fix high bits on Windows x86_64 · 24af459d
Michael Niedermayer authored Jan 30, 2020
```
Found-by: james
```
24af459d

tests/fate/lavf-video.mak: fix fate-lavf-gif dependencies · 24a5e873

Michael Niedermayer authored Jan 06, 2020

The gif test should depend on gif not fits
Regression since: ac4b5d86Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>

24a5e873

avcodec/ralf: Fix overflows of biased values · a71794e8

Michael Niedermayer authored Dec 26, 2019

Fixes: signed integer overflow: 2003010644 * 2 cannot be represented in type 'int'
Fixes: 19593/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_RALF_fuzzer-5660628006207488

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpegSigned-off-by: Michael Niedermayer <michael@niedermayer.cc>

a71794e8

tools/target_dec_fuzzer: limit per frame samples for APE · 32522b53

Michael Niedermayer authored Jan 10, 2020

APE in its highest compression mode is really slow so even one frame
of millions of samples takes a long time

Fixes: Timeout (too long -> 3sec)
Fixes: 19937/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_APE_fuzzer-5751668818051072
Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>

32522b53

avformat/mov: Check STCO location · 1cd41840

Michael Niedermayer authored Jan 11, 2020

Fixes: bypassing of checks and assertion failure
Fixes: asan_1003879.mp4

Found-by: Clusterfuzz + asan
Reported-by: Thomas Guilbert <tguilbert@google.com>
Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>

1cd41840

avcodec/wmalosslessdec: Fix multiple integer overflows · 42220251

Michael Niedermayer authored Jan 09, 2020

Fixes: left shift of 3329 by 20 places cannot be represented in type 'int'
Fixes: signed integer overflow: -199378355 + -1948950833 cannot be represented in type 'int'
Fixes: 19837/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_WMALOSSLESS_fuzzer-5752565837070336
Fixes: 19839/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_WMALOSSLESS_fuzzer-5767483265122304

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpegSigned-off-by: Michael Niedermayer <michael@niedermayer.cc>

42220251