Commits · bae8844e35147f92e612a9e0b44e939a293e5bc9 · Linshizhi / ffmpeg.wasm-core

25 Sep, 2019 23 commits
- avformat/utils: unref packet on AVInputFormat.read_packet() failure · bae8844e
  James Almer authored Sep 20, 2019
```
Demuxers may have allocated a packet before encountering an error and aborting.

Fixes ticket #8150
Signed-off-by: James Almer <jamrial@gmail.com>
```
  bae8844e
- avformat/utils: Fix memleaks · 66d5e43b
  Andreas Rheinhardt authored Sep 24, 2019
```
ff_read_packet had potential memleaks:
1. If av_packet_make_refcounted fails, it means that the packet is not
refcounted, but it could nevertheless carry side data and therefore
needs to be unreferenced.
2. If putting a packet on a packet list fails, it wasn't unreferenced.

Furthermore, read_frame_internal leaked a packet's (side) data if a
context update was required and failed.
Signed-off-by: Andreas Rheinhardt <andreas.rheinhardt@gmail.com>
Signed-off-by: James Almer <jamrial@gmail.com>
```
  66d5e43b
- avformat/utils: Assert that stream_index is valid · e045be92
  Andreas Rheinhardt authored Sep 24, 2019
```
There is currently an ordinary check for this (which would lead to a
memleak), but given that no demuxer should ever return a packet with an
invalid stream_index it is more appropriate for this to be an assert.

FATE passes with this change.
Signed-off-by: Andreas Rheinhardt <andreas.rheinhardt@gmail.com>
Signed-off-by: James Almer <jamrial@gmail.com>
```
  e045be92
- lavf/mov: Fix timestamp rescale on sidx atom · c23797bc
  Jun Li authored May 09, 2019
```
Fix #5090
Fix the timestamp rescale issue, from sidx timebase to
stream's timebase.
```
  c23797bc
- Revert "lavc/tiff: correct the default value of YCbCrSubsampling to 2x2" · dbd3dbb4
  Carl Eugen Hoyos authored Sep 25, 2019
```
This reverts commit eb5d0f18.

Together with 89f464e9, it breaks decoding of tiff files like fate-suite/exif/image_small.tiff
```
  dbd3dbb4
- avcodec/dnxhdenc: return error if av_malloc failed · 3def984a
  Limin Wang authored Sep 23, 2019
```
Signed-off-by: Limin Wang <lance.lmwang@gmail.com>
Signed-off-by: James Almer <jamrial@gmail.com>
```
  3def984a
- avfilter/vf_zoompan: fix leaks · ced3b8c6
  Paul B Mahol authored Sep 25, 2019
  
  ced3b8c6
- avfilter/vf_zoompan: forward status back from output to input · 20242bc7
  Paul B Mahol authored Sep 25, 2019
  
  20242bc7
- avfilter/vf_stack: add slice threading · 631f7acc
  Paul B Mahol authored Sep 25, 2019
  
  631f7acc
- avfilter/vf_stack: simplify main processing path · 44095564
  Paul B Mahol authored Sep 25, 2019
  
  44095564
- avformat/sdsdec: fix undefined behaviour · 1a17a66b
  Paul B Mahol authored Sep 25, 2019
```
Fixes #8163, #8164, #8165.
```
  1a17a66b
- avformat/aiffdec: fix signed integer overflow · d58752bc
  Paul B Mahol authored Sep 25, 2019
```
Fixes #8151
```
  d58752bc
- avcodec/decode: Check max_samples in get_buffer_internal() · 121bf1b3
  Michael Niedermayer authored Sep 25, 2019
```
This checks max_samples at the same level as max_pixels
Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
```
  121bf1b3
- tools/target_dec_fuzzer: Set max_samples · 68c80dc3
  Michael Niedermayer authored Sep 02, 2019
```
Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
```
  68c80dc3
- avcodec: add max_samples · f8406ab4
  Michael Niedermayer authored Sep 02, 2019
```
Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
```
  f8406ab4
- avfilter/Makefile: fix case for sierpinski · 402dbd46
  Paul B Mahol authored Sep 25, 2019
  
  402dbd46
- avfilter: add sierpinski video source · 9c3e1c19
  Paul B Mahol authored Aug 12, 2019
  
  9c3e1c19
- avfilter/vf_premultiply: forward status back from output to all input links · 55b32584
  Paul B Mahol authored Sep 25, 2019
  
  55b32584
- avfilter/vf_fieldmatch: forward status back from output to all input links · da9890f6
  Paul B Mahol authored Sep 25, 2019
```
Fixes #8199.
```
  da9890f6
- avfilter/vf_fieldmatch: fix more leaks · 2962101e
  Paul B Mahol authored Sep 25, 2019
  
  2962101e
- avfilter/vf_v360: add sinusoidal format · 0d05aa05
  Paul B Mahol authored Sep 25, 2019
  
  0d05aa05
- lavc/tiff: correct the default value of YCbCrSubsampling to 2x2 · eb5d0f18
  Pavel Skakov authored Sep 25, 2019
  
  eb5d0f18
- lavf/4xm: fix memory leak in error handing path · 5f138598
  Jun Zhao authored Sep 23, 2019
```
need to free the header in error path.
Reviewed-by: Michael Niedermayer <michael@niedermayer.cc>
Signed-off-by: Jun Zhao <barryjzhao@tencent.com>
```
  5f138598
24 Sep, 2019 17 commits

libavcodec/libx265: add a flag to output ROI warnings only once. · 85e338ab
Guo, Yejun authored Sep 23, 2019
```
Signed-off-by: Guo, Yejun <yejun.guo@intel.com>
```
85e338ab
libavcodec/libx264: add a flag to output ROI warnings only once. · 104d4413
Guo, Yejun authored Sep 23, 2019
```
Signed-off-by: Guo, Yejun <yejun.guo@intel.com>
```
104d4413

avcodec/utils: Optimize ff_color_frame() using memcpy() · 95e53969

Michael Niedermayer authored Dec 24, 2018

4650975 -> 4493240 dezicycles

This optimizes lines 2 and later. Line 1 still uses av_memcpy_backptr()
This change originally fixed ossfuzz 10790 but this is now fixed by other
optimizations already
Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>

95e53969

avcodec/aacdec: Check if we run out of input in read_stream_mux_config() · 3dce4d03

Michael Niedermayer authored Sep 08, 2019

Fixes: Infinite loop
Fixes: 16920/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_AAC_LATM_fuzzer-5653421289373696

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpegSigned-off-by: Michael Niedermayer <michael@niedermayer.cc>

3dce4d03

avcodec/h264_slice: clear frame only on gaps when it is not otherwise initilaized · 1e984a69

Michael Niedermayer authored Sep 08, 2019

Fixes: Timeout (53sec -> 31sec)
Fixes: 16908/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_H264_fuzzer-5711207859748864

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpegSigned-off-by: Michael Niedermayer <michael@niedermayer.cc>

1e984a69

avcodec/utils: Use av_memcpy_backptr() in ff_color_frame() · 340ab135

Michael Niedermayer authored Sep 08, 2019

Fixes: Timeout (191sec -> 53sec)
Fixes: 16908/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_H264_fuzzer-5711207859748864
Fixes: 10709/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_H264_fuzzer-5630617975259136

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpegSigned-off-by: Michael Niedermayer <michael@niedermayer.cc>

340ab135

avcodec/smacker: Fix integer overflow in signed int multiply in SMK_BLK_FILL · 033d2c48

Michael Niedermayer authored Sep 06, 2019

Fixes: signed integer overflow: 238 * 16843009 cannot be represented in type 'int'
Fixes: 16958/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_SMACKER_fuzzer-5193905355620352

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpegSigned-off-by: Michael Niedermayer <michael@niedermayer.cc>

033d2c48

avcodec/alac: Fix invalid shifts in 20/24 bps · b30c07cc

Michael Niedermayer authored Sep 06, 2019

Fixes: left shift of negative value -256
Fixes: 16892/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_ALAC_fuzzer-4880802642395136

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpegSigned-off-by: Michael Niedermayer <michael@niedermayer.cc>

b30c07cc

avcodec/alac: fix undefined behavior with INT_MIN in lpc_prediction() · 0831cbfe

Michael Niedermayer authored Sep 06, 2019

Fixes: signed integer overflow: -2147483648 * -1 cannot be represented in type 'int'
Fixes: 16786/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_ALAC_fuzzer-5632818851348480

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpegSigned-off-by: Michael Niedermayer <michael@niedermayer.cc>

0831cbfe

avformat/utils: Do not assume duration is non negative in compute_pkt_fields() · 72db18e9

Michael Niedermayer authored Sep 05, 2019

Several subtitle demuxers set negative durations

Fixes: signed integer overflow: 9223372036854775807 - -1 cannot be represented in type 'long'
Fixes: 16925/clusterfuzz-testcase-minimized-ffmpeg_DEMUXER_fuzzer-5766519790764032

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpegSigned-off-by: Michael Niedermayer <michael@niedermayer.cc>

72db18e9

avcodec/ffwavesynth: Fix integer overflow in timestamps · c7ccbf40

Michael Niedermayer authored Sep 05, 2019

Fixes: signed integer overflow: 9223371075321077760 * 2 cannot be represented in type 'long'
Fixes: 16447/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_FFWAVESYNTH_fuzzer-5698937431785472

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpegSigned-off-by: Michael Niedermayer <michael@niedermayer.cc>

c7ccbf40

avformat/vividas: Test size and packet numbers a bit more · 27a2f659
Michael Niedermayer authored Sep 04, 2019
```
Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
```
27a2f659

avformat/vividas: Check n_sb_blocks against input space · 8e51f35f

Michael Niedermayer authored Sep 04, 2019

Fixes: OOM
Fixes: 16726/clusterfuzz-testcase-minimized-ffmpeg_DEMUXER_fuzzer-5719320750981120

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpegSigned-off-by: Michael Niedermayer <michael@niedermayer.cc>

8e51f35f

avcodec/aacdec_fixed: Add FF_CODEC_CAP_INIT_CLEANUP · cede3850

Michael Niedermayer authored Sep 04, 2019

Fixes: memleaks
Fixes: 16788/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_AAC_FIXED_fuzzer-5649873898045440

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpegSigned-off-by: Michael Niedermayer <michael@niedermayer.cc>

cede3850

tools/target_dec_fuzzer: consider potential padding/edge in pixel threshold · 59163731

Michael Niedermayer authored Sep 04, 2019

Fixes: Timeout (73sec ->30ms)
Fixes: 16921/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_DIRAC_fuzzer-5689384594046976

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpegSigned-off-by: Michael Niedermayer <michael@niedermayer.cc>

59163731

libavcodec/mpeg12dec: Check input for minimal frame size · d217691e

Michael Niedermayer authored Sep 04, 2019

Fixes: Timeout (35sec -> 6sec)
Fixes: 16901/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_MPEGVIDEO_fuzzer-5729024726269952
Fixes: 16901/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_MPEGVIDEO_fuzzer-5642388592132096

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpegSigned-off-by: Michael Niedermayer <michael@niedermayer.cc>

d217691e

tools/target_dec_fuzzer: Adjust threshold for MSS2 · 5fe6a9db

Michael Niedermayer authored Sep 01, 2019

The decoder is slow

Fixes: Timeout (94sec -> 7sec)
Fixes: 16417/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_MSS2_fuzzer-5711668050395136

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpegSigned-off-by: Michael Niedermayer <michael@niedermayer.cc>

5fe6a9db