[MPlayer-advusers] [bug] crash using -demuxer lavf -lavfdopts format=image2

Compn tempn at twmi.rr.com
Tue May 15 23:24:26 CEST 2007 

crash when trying to use image2 lavf demuxer
not sure if this is important...

-compn

D:\mplayer-testclips\image-samples>gdb mplayd
GNU gdb 5.2.1
Copyright 2002 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you are
welcome to change it and/or distribute copies of it under certain conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB.  Type "show warranty" for details.
This GDB was configured as "i686-pc-mingw32"...
(gdb) run -demuxer lavf -lavfdopts format=image2 appligent.jpg
Starting program: d:\cdrive/mplayd.exe -demuxer lavf -lavfdopts format=image2 appligent.jpg

MPlayer dev-SVN-r23320-3.4.5 (C) 2000-2007 MPlayer Team
CPU: AMD Athlon(tm) processor (Family: 6, Model: 4, Stepping: 2)
CPUflags:  MMX: 1 MMX2: 1 3DNow: 1 3DNow2: 1 SSE: 0 SSE2: 0
Compiled with runtime CPU detection.
113 audio & 235 video codecs
c:\winnt\fonts\comic.ttf doesn't look like a bitmap font description, ignoring.
Cannot load bitmap font: c:\winnt\fonts\comic.ttf

Playing appligent.jpg.
Forced lavf image2 sequence demuxer
libavformat file format detected.


MPlayer interrupted by signal 11 in module: demux_open
- MPlayer crashed by bad usage of CPU/FPU/RAM.
  Recompile MPlayer with --enable-debug and make a 'gdb' backtrace and
  disassembly. Details in DOCS/HTML/en/bugreports_what.html#bugreports_crash.
- MPlayer crashed. This shouldn't happen.
  It can be a bug in the MPlayer code _or_ in your drivers _or_ in your
  gcc version. If you think it's MPlayer's fault, please read
  DOCS/HTML/en/bugreports.html and follow the instructions there. We can't and
  won't help unless you provide this information when reporting a possible bug.

Program received signal SIGSEGV, Segmentation fault.
0x004ce378 in mp_seek (h=0x31b0ce0, pos=-1, whence=2) at demux_lavf.c:142
warning: Source file is more recent than executable.

142             pos += stream->end_pos;
(gdb) bt
#0  0x004ce378 in mp_seek (h=0x31b0ce0, pos=-1, whence=2) at demux_lavf.c:142
#1  0x005704fd in url_fsize (s=0x22dfe0) at aviobuf.c:177
#2  0x005729c6 in img_read_packet (s1=0x318ad70, pkt=0x318bc88) at img2.c:255
#3  0x0056a6e6 in av_read_frame_internal (s=0xffffffff, pkt=0x22eb70)
    at utils.c:753
#4  0x0056c272 in av_find_stream_info (ic=0x318ad70) at utils.c:1776
#5  0x004ce832 in demux_open_lavf (demuxer=0x3188f50) at demux_lavf.c:285
#6  0x004ba7c9 in demux_open_stream (stream=0x31885a8, file_format=35,
    force=0, audio_id=-1, video_id=-1, dvdsub_id=-2,
    filename=0x31761f8 "appligent.jpg") at demuxer.c:701
#7  0x004baaa9 in demux_open (vs=0x31885a8, file_format=0, audio_id=-1,
    video_id=-1, dvdsub_id=-2, filename=0x31761f8 "appligent.jpg")
    at demuxer.c:867
#8  0x00404e34 in main (argc=6, argv=0x20e3ad8) at mplayer.c:2945
(gdb) disass $pc-32 $pc+32
Dump of assembler code from 0x4ce358 to 0x4ce398:
0x4ce358 <mp_seek+296>: (bad)
0x4ce359 <mp_seek+297>: (bad)
0x4ce35a <mp_seek+298>: pushl  0xffffffad(%ebp)
0x4ce35d <mp_seek+301>: jmp    0x4ce319 <mp_seek+233>
0x4ce35f <mp_seek+303>: nop
0x4ce360 <mp_seek+304>: mov    0xfffffff0(%ebp),%edx
0x4ce363 <mp_seek+307>: mov    0x24(%edx),%eax
0x4ce366 <mp_seek+310>: mov    0x2c(%edx),%ebx
0x4ce369 <mp_seek+313>: mov    0x28(%edx),%ecx
0x4ce36c <mp_seek+316>: add    %ebx,%eax
0x4ce36e <mp_seek+318>: sub    %ecx,%eax
0x4ce370 <mp_seek+320>: jmp    0x4ce29f <mp_seek+111>
0x4ce375 <mp_seek+325>: mov    0xfffffff0(%ebp),%edx
0x4ce378 <mp_seek+328>: mov    0x34(%edx),%ecx
0x4ce37b <mp_seek+331>: mov    %ecx,%eax
0x4ce37d <mp_seek+333>: cltd
0x4ce37e <mp_seek+334>: add    %ecx,%esi
0x4ce380 <mp_seek+336>: adc    %edx,%edi
0x4ce382 <mp_seek+338>: jmp    0x4ce2aa <mp_seek+122>
0x4ce387 <mp_seek+343>: mov    %esi,%esi
0x4ce389 <mp_seek+345>: lea    0x0(%edi,1),%edi
0x4ce390 <mp_close>:    push   %ebp
---Type <return> to continue, or q <return> to quit---
0x4ce391 <mp_close+1>:  xor    %eax,%eax
0x4ce393 <mp_close+3>:  mov    %esp,%ebp
0x4ce395 <mp_close+5>:  pop    %ebp
0x4ce396 <mp_close+6>:  ret
0x4ce397 <mp_close+7>:  mov    %esi,%esi
End of assembler dump.
(gdb) info all-registers
eax            0x0      0
ecx            0x5      5
edx            0xbaadf00d       -1163005939
ebx            0x2      2
esp            0x22df50 0x22df50
ebp            0x22df78 0x22df78
esi            0xffffffff       -1
edi            0xffffffff       -1
eip            0x4ce378 0x4ce378
eflags         0x210246 2163270
cs             0x1b     27
ss             0x23     35
ds             0x23     35
es             0x23     35
fs             0x38     56
gs             0x0      0
st0            0        (raw 0x00000000000000000000)
st1            0        (raw 0x00000000000000000000)
st2            0        (raw 0x00000000000000000000)
st3            0        (raw 0x00000000000000000000)
st4            0        (raw 0x00000000000000000000)
st5            1        (raw 0x3fff8000000000000000)
st6            1        (raw 0x3fff8000000000000000)
---Type <return> to continue, or q <return> to quit---
st7            1        (raw 0x3fff8000000000000000)
fctrl          0xffff037f       -64641
fstat          0xffff4020       -49120
ftag           0xffffffff       -1
fiseg          0x0      0
fioff          0x0      0
foseg          0xffff0000       -65536
fooff          0x0      0
fop            0x0      0
(gdb) quit
The program is running.  Exit anyway? (y or n) y

More information about the MPlayer-advusers mailing list