Opened 5 years ago

Closed 5 years ago

#480 closed defect (fixed)

ffprobe -h segfaults

Reported by: cbsrobot Owned by: stefano
Priority: normal Component: ffprobe
Version: git-master Keywords:
Cc: Blocked By:
Blocking: Reproduced by developer: yes
Analyzed by developer: yes

Description

Starting program: /usr/local/bin/ffprobe
Reading symbols for shared libraries .+++++++++++++++............................................................................................. done
ffprobe version N-32621-g6210103, Copyright (c) 2007-2011 the FFmpeg developers

built on Sep 16 2011 00:33:25 with gcc 4.2.1 (Apple Inc. build 5664)
configuration: --enable-gpl --enable-version2 --enable-version3 --enable-nonfree --enable-postproc --enable-libfaac --enable-libmp3lame --enable-libopencore-amrnb --enable-libopencore-amrwb --enable-libtheora --enable-libvorbis --enable-libx264 --enable-libxvid --enable-libvpx --enable-libfreetype --prefix=/usr/local
libavutil 51. 16. 0 / 51. 16. 0
libavcodec 53. 15. 0 / 53. 15. 0
libavformat 53. 12. 0 / 53. 12. 0
libavdevice 53. 3. 0 / 53. 3. 0
libavfilter 2. 40. 0 / 2. 40. 0
libswscale 2. 1. 0 / 2. 1. 0
libpostproc 51. 2. 0 / 51. 2. 0

Simple multimedia streams analyzer
usage: ffprobe [OPTIONS] [INPUT_FILE]

You have to specify one input file.
Use -h to get full help or, even better, run 'man ffprobe'.

Program exited with code 01.
(gdb) r -h
Starting program: /usr/local/bin/ffprobe -h
Reading symbols for shared libraries . done
ffprobe version N-32621-g6210103, Copyright (c) 2007-2011 the FFmpeg developers

built on Sep 16 2011 00:33:25 with gcc 4.2.1 (Apple Inc. build 5664)
configuration: --enable-gpl --enable-version2 --enable-version3 --enable-nonfree --enable-postproc --enable-libfaac --enable-libmp3lame --enable-libopencore-amrnb --enable-libopencore-amrwb --enable-libtheora --enable-libvorbis --enable-libx264 --enable-libxvid --enable-libvpx --enable-libfreetype --prefix=/usr/local
libavutil 51. 16. 0 / 51. 16. 0
libavcodec 53. 15. 0 / 53. 15. 0
libavformat 53. 12. 0 / 53. 12. 0
libavdevice 53. 3. 0 / 53. 3. 0
libavfilter 2. 40. 0 / 2. 40. 0
libswscale 2. 1. 0 / 2. 1. 0
libpostproc 51. 2. 0 / 51. 2. 0

Simple multimedia streams analyzer
usage: ffprobe [OPTIONS] [INPUT_FILE]

Main options:
-L show license
-h show help
-? show help
-help show help
--help show help
-version show version
-formats show available formats
-codecs show available codecs
-bsfs show available bit stream filters
-protocols show available protocols
-filters show available filters
-pix_fmts show available pixel formats
-sample_fmts show available audio sample formats
-loglevel loglevel set libav* logging level
-f format force format
-unit show unit of the displayed values
-prefix use SI prefixes for the displayed values
-byte_binary_prefix use binary prefixes for byte units
-sexagesimal use sexagesimal format HOURS:MM:SS.MICROSECONDS for time units
-pretty prettify the format of displayed values, make it more human readable

Program received signal EXC_BAD_ACCESS, Could not access memory.
Reason: KERN_INVALID_ADDRESS at address: 0x0000000000000000
0x00000001005a8865 in av_strlcat ()
(gdb) bt
#0 0x00000001005a8865 in av_strlcat ()
#1 0x0000000100004fd2 in show_help_options ()
(gdb) disass $pc-32,$pc+32
Dump of assembler code for function av_strlcat:
0x00000001005a8830 <av_strlcat+0>: push %r13
0x00000001005a8832 <av_strlcat+2>: push %r12
0x00000001005a8834 <av_strlcat+4>: push %rbp
0x00000001005a8835 <av_strlcat+5>: push %rbx
0x00000001005a8836 <av_strlcat+6>: sub $0x8,%rsp
0x00000001005a883a <av_strlcat+10>: mov %rdi,%r13
0x00000001005a883d <av_strlcat+13>: mov %rsi,%rbx
0x00000001005a8840 <av_strlcat+16>: mov %rdx,%rbp
0x00000001005a8843 <av_strlcat+19>: callq 0x100754b22 <dyld_stub_strlen>
0x00000001005a8848 <av_strlcat+24>: mov %rax,%r12
0x00000001005a884b <av_strlcat+27>: lea 0x1(%rax),%rax
0x00000001005a884f <av_strlcat+31>: cmp %rbp,%rax
0x00000001005a8852 <av_strlcat+34>: jae 0x1005a88b5 <av_strlcat+133>
0x00000001005a8854 <av_strlcat+36>: mov %rbp,%rdx
0x00000001005a8857 <av_strlcat+39>: sub %r12,%rdx
0x00000001005a885a <av_strlcat+42>: lea 0x0(%r13,%r12,1),%rcx
0x00000001005a885f <av_strlcat+47>: cmp $0x1,%rdx
0x00000001005a8863 <av_strlcat+51>: jbe 0x1005a88cb <av_strlcat+155>
0x00000001005a8865 <av_strlcat+53>: movzbl (%rbx),%eax
0x00000001005a8868 <av_strlcat+56>: test %al,%al
0x00000001005a886a <av_strlcat+58>: je 0x1005a88d5 <av_strlcat+165>
0x00000001005a886c <av_strlcat+60>: mov $0x1,%ebp
0x00000001005a8871 <av_strlcat+65>: jmp 0x1005a8887 <av_strlcat+87>
0x00000001005a8873 <av_strlcat+67>: nopw 0x0(%rax,%rax,1)
0x00000001005a8879 <av_strlcat+73>: nopl 0x0(%rax)
0x00000001005a8880 <av_strlcat+80>: movzbl (%rbx),%eax
0x00000001005a8883 <av_strlcat+83>: test %al,%al
0x00000001005a8885 <av_strlcat+85>: je 0x1005a8897 <av_strlcat+103>
0x00000001005a8887 <av_strlcat+87>: mov %al,(%rcx)
0x00000001005a8889 <av_strlcat+89>: inc %rcx
0x00000001005a888c <av_strlcat+92>: inc %rbx
0x00000001005a888f <av_strlcat+95>: inc %rbp
0x00000001005a8892 <av_strlcat+98>: cmp %rdx,%rbp
0x00000001005a8895 <av_strlcat+101>: jne 0x1005a8880 <av_strlcat+80>
0x00000001005a8897 <av_strlcat+103>: movb $0x0,(%rcx)
0x00000001005a889a <av_strlcat+106>: mov %rbx,%rdi
0x00000001005a889d <av_strlcat+109>: callq 0x100754b22 <dyld_stub_strlen>
0x00000001005a88a2 <av_strlcat+114>: lea -0x1(%r12,%rax,1),%rax
0x00000001005a88a7 <av_strlcat+119>: add %rbp,%rax
0x00000001005a88aa <av_strlcat+122>: add $0x8,%rsp
0x00000001005a88ae <av_strlcat+126>: pop %rbx
0x00000001005a88af <av_strlcat+127>: pop %rbp
0x00000001005a88b0 <av_strlcat+128>: pop %r12
0x00000001005a88b2 <av_strlcat+130>: pop %r13
0x00000001005a88b4 <av_strlcat+132>: retq
0x00000001005a88b5 <av_strlcat+133>: mov %rbx,%rdi
0x00000001005a88b8 <av_strlcat+136>: callq 0x100754b22 <dyld_stub_strlen>
0x00000001005a88bd <av_strlcat+141>: add %r12,%rax
0x00000001005a88c0 <av_strlcat+144>: add $0x8,%rsp
0x00000001005a88c4 <av_strlcat+148>: pop %rbx
0x00000001005a88c5 <av_strlcat+149>: pop %rbp
0x00000001005a88c6 <av_strlcat+150>: pop %r12
0x00000001005a88c8 <av_strlcat+152>: pop %r13
0x00000001005a88ca <av_strlcat+154>: retq
0x00000001005a88cb <av_strlcat+155>: mov $0x1,%ebp
0x00000001005a88d0 <av_strlcat+160>: test %rdx,%rdx
0x00000001005a88d3 <av_strlcat+163>: je 0x1005a889a <av_strlcat+106>
0x00000001005a88d5 <av_strlcat+165>: mov $0x1,%ebp
0x00000001005a88da <av_strlcat+170>: jmp 0x1005a8897 <av_strlcat+103>
0x00000001005a88dc <av_strlcat+172>: nopl 0x0(%rax)
End of assembler dump.
(gdb) info all-registers
rax 0xe 14
rbx 0x0 0
rcx 0x7fff5fbff79d 140734799804317
rdx 0x33 51
rsi 0x0 0
rdi 0x0 0
rbp 0x40 0x40
rsp 0x7fff5fbff760 0x7fff5fbff760
r8 0x1000017f0 4294973424
r9 0x0 0
r10 0x0 0
r11 0x246 582
r12 0xd 13
r13 0x7fff5fbff790 140734799804304
r14 0x100754cea 4302654698
r15 0x7fff70dd45c0 140735086937536
rip 0x1005a8865 0x1005a8865 <av_strlcat+53>
eflags 0x10202 66050
cs 0x2b 43
ss 0x0 0
ds 0x0 0
es 0x0 0
fs 0x23 35
gs 0xf 15
st0 <invalid float value> (raw 0xffff0000000000000000)
st1 0 (raw 0x00000000000000000000)
st2 0 (raw 0x00000000000000000000)
st3 0 (raw 0x00000000000000000000)
st4 0 (raw 0x00000000000000000000)
st5 0 (raw 0x00000000000000000000)
st6 0 (raw 0x00000000000000000000)
st7 0 (raw 0x00000000000000000000)
fctrl 0x37f 895
fstat 0x0 0
ftag 0xffff 65535
fiseg 0x0 0
fioff 0x0 0
foseg 0x0 0
fooff 0x0 0
fop 0x0 0
xmm0 {

v4_float = {9.14767638e-41, 0, 0, 0},
v2_double = {1.3852388523421298e-309, 0},
v16_int8 = {0, 0, -1, 0 <repeats 13 times>},
v8_int16 = {0, -256, 0, 0, 0, 0, 0, 0},
v4_int32 = {65280, 0, 0, 0},
v2_int64 = {280375465082880, 0},
uint128 = 0x0000ff00000000000000000000000000

} (raw 0x00000000000000000000000000ff0000)
xmm1 {

v4_float = {0, 0, 3.57331108e-43, 0},
v2_double = {0, 5.4110892669614444e-312},
v16_int8 = {0 <repeats 11 times>, -1, 0, 0, 0, 0},
v8_int16 = {0, 0, 0, 0, 0, 255, 0, 0},
v4_int32 = {0, 0, 255, 0},
v2_int64 = {0, 1095216660480},
uint128 = 4278190080

} (raw 0x00000000ff0000000000000000000000)
xmm2 {

v4_float = {-nan(0x7fffff), -nan(0x7fffff), -nan(0x7fffff), -nan(0x7fffff)},
v2_double = {-nan(0xfffffffffffff), -nan(0xfffffffffffff)},
v16_int8 = {-1 <repeats 16 times>},
v8_int16 = {-1, -1, -1, -1, -1, -1, -1, -1},
v4_int32 = {-1, -1, -1, -1},
v2_int64 = {-1, -1},
uint128 = 0xffffffffffffffffffffffffffffffff

} (raw 0xffffffffffffffffffffffffffffffff)
xmm3 {

v4_float = {0, 0, 7.94189453, 0},
v2_double = {0, 123456},
v16_int8 = {0, 0, 0, 0, 0, 0, 0, 0, 64, -2, 36, 0, 0, 0, 0, 0},
v8_int16 = {0, 0, 0, 0, 16638, 9216, 0, 0},
v4_int32 = {0, 0, 1090397184, 0},
v2_int64 = {0, 4683220244930494464},
uint128 = 2424384

} (raw 0x000000000024fe400000000000000000)
xmm4 {

v4_float = {1.40129846e-45, 8.16039317e-19, 1.40129846e-45, 8.16037663e-19},
v2_double = {2.399188365075679e-314, 2.3991883492655783e-314},
v16_int8 = {0, 0, 0, 1, 33, 112, -38, 48, 0, 0, 0, 1, 33, 112, -38, 16},
v8_int16 = {0, 1, 8560, -9680, 0, 1, 8560, -9712},
v4_int32 = {1, 561044016, 1, 561043984},
v2_int64 = {4856011312, 4856011280},
uint128 = 0x000000012170da30000000012170da10

} (raw 0x10da70210100000030da702101000000)
xmm5 {

v4_float = {1.78622936e+31, 4.23297973e+21, 1.0764717e+21, 7.14333715e+31},
v2_double = {6.1017953904737366e+247, 1.171190597465054e+166},
v16_int8 = {115, 97, 116, 47, 99, 101, 120, 101, 98, 105, 108, 47, 116, 97, 103, 107},
v8_int16 = {29537, 29743, 25445, 30821, 25193, 27695, 29793, 26475},
v4_int32 = {1935766575, 1667594341, 1651076143, 1952540523},
v2_int64 = {8314054133982525541, 7091318039343359851},
uint128 = 0x7361742f6365786562696c2f7461676b

} (raw 0x6b6761742f6c6962657865632f746173)
xmm6 {

v4_float = {0, 0, 0, 0},
v2_double = {0, 0},
v16_int8 = {0 <repeats 16 times>},
v8_int16 = {0, 0, 0, 0, 0, 0, 0, 0},
v4_int32 = {0, 0, 0, 0},
v2_int64 = {0, 0},
uint128 = 0

} (raw 0x00000000000000000000000000000000)
xmm7 {

v4_float = {0, 0, 0, 0},
v2_double = {0, 0},
v16_int8 = {0 <repeats 16 times>},
v8_int16 = {0, 0, 0, 0, 0, 0, 0, 0},
v4_int32 = {0, 0, 0, 0},
v2_int64 = {0, 0},
uint128 = 0

} (raw 0x00000000000000000000000000000000)
xmm8 {

v4_float = {0, 0, 0, 0},
v2_double = {0, 0},
v16_int8 = {0 <repeats 16 times>},
v8_int16 = {0, 0, 0, 0, 0, 0, 0, 0},
v4_int32 = {0, 0, 0, 0},
v2_int64 = {0, 0},
uint128 = 0

} (raw 0x00000000000000000000000000000000)
xmm9 {

v4_float = {0, 0, 0, 0},
v2_double = {0, 0},
v16_int8 = {0 <repeats 16 times>},
v8_int16 = {0, 0, 0, 0, 0, 0, 0, 0},
v4_int32 = {0, 0, 0, 0},
v2_int64 = {0, 0},
uint128 = 0

} (raw 0x00000000000000000000000000000000)
xmm10 {

v4_float = {0, 0, 0, 0},
v2_double = {0, 0},
v16_int8 = {0 <repeats 16 times>},
v8_int16 = {0, 0, 0, 0, 0, 0, 0, 0},
v4_int32 = {0, 0, 0, 0},
v2_int64 = {0, 0},
uint128 = 0

} (raw 0x00000000000000000000000000000000)
xmm11 {

v4_float = {0, 0, 0, 0},
v2_double = {0, 0},
v16_int8 = {0 <repeats 16 times>},
v8_int16 = {0, 0, 0, 0, 0, 0, 0, 0},
v4_int32 = {0, 0, 0, 0},
v2_int64 = {0, 0},
uint128 = 0

} (raw 0x00000000000000000000000000000000)
xmm12 {

v4_float = {0, 0, 0, 0},
v2_double = {0, 0},
v16_int8 = {0 <repeats 16 times>},
v8_int16 = {0, 0, 0, 0, 0, 0, 0, 0},
v4_int32 = {0, 0, 0, 0},
v2_int64 = {0, 0},
uint128 = 0

} (raw 0x00000000000000000000000000000000)
xmm13 {

v4_float = {0, 0, 0, 0},
v2_double = {0, 0},
v16_int8 = {0 <repeats 16 times>},
v8_int16 = {0, 0, 0, 0, 0, 0, 0, 0},
v4_int32 = {0, 0, 0, 0},
v2_int64 = {0, 0},
uint128 = 0

} (raw 0x00000000000000000000000000000000)
xmm14 {

v4_float = {0, 0, 0, 0},
v2_double = {0, 0},
v16_int8 = {0 <repeats 16 times>},
v8_int16 = {0, 0, 0, 0, 0, 0, 0, 0},
v4_int32 = {0, 0, 0, 0},
v2_int64 = {0, 0},
uint128 = 0

} (raw 0x00000000000000000000000000000000)
xmm15 {

v4_float = {0, 0, 0, 0},
v2_double = {0, 0},
v16_int8 = {0 <repeats 16 times>},
v8_int16 = {0, 0, 0, 0, 0, 0, 0, 0},
v4_int32 = {0, 0, 0, 0},
v2_int64 = {0, 0},
uint128 = 0

} (raw 0x00000000000000000000000000000000)
mxcsr 0x1fa0 8096
(gdb)

Change History (2)

comment:1 follow-up: Changed 5 years ago by ubitux

Fixed in 8af64e1a67725d29410219aaa8a5e8f2aaea7acf.

PS: I don't have enough permissions to close the ticket, so if anyone can… :)

comment:2 in reply to: ↑ 1 Changed 5 years ago by saste

  • Analyzed by developer set
  • Reproduced by developer set
  • Resolution set to fixed
  • Status changed from new to closed

Replying to ubitux:

Fixed in 8af64e1a67725d29410219aaa8a5e8f2aaea7acf.

PS: I don't have enough permissions to close the ticket, so if anyone can… :)

I confirm it is fixed -> closed, thanks for the report (and for the fix).

Note: See TracTickets for help on using tickets.