summaryrefslogtreecommitdiffstats
path: root/libavcodec
Commit message (Collapse)AuthorAgeFilesLines
* avcodec/vp56: Factorize vp56_render_mb() outMichael Niedermayer2017-02-281-54/+23
| | | | Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
* avcodec/dca: Fix multiple runtime error: signed integer overflowMichael Niedermayer2017-02-282-3/+3
| | | | | | | | Fixes: 680/clusterfuzz-testcase-5416627266912256 Fixes: 681/clusterfuzz-testcase-5013323462475776 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
* avcodec/pictordec: Check plane value before doing value/mask computationsMichael Niedermayer2017-02-281-2/+2
| | | | | | | | Fixes integer overflow Fixes: 675/clusterfuzz-testcase-6722971232108544 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
* avcodec/mpeg4videodec: Fix runtime error: left shift of negative value -2650Michael Niedermayer2017-02-281-2/+2
| | | | | | | Fixes: 674/clusterfuzz-testcase-6713275880308736 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
* avcodec/h264idct_template: Fix multiple runtime error: signed integer overflowMichael Niedermayer2017-02-281-13/+13
| | | | | | | | Fixes: 677/clusterfuzz-testcase-6635120628858880 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Reviewed-by: Steven Liu <lingjiujianke@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
* avcodec/qdrw: check bytes per scanline for 2bpp imagesPaul B Mahol2017-02-271-1/+4
| | | | | | | One byte less is read in case of small width. Closes #6194. Signed-off-by: Paul B Mahol <onemda@gmail.com>
* avcodec/scpr: check if total_freq is 0 in decode0Paul B Mahol2017-02-271-6/+19
| | | | | | Fixes SIGFPE, closes #6196. Signed-off-by: Paul B Mahol <onemda@gmail.com>
* avcodec/h264: enable sse2 chroma deblock/loop filter functionsJames Darnley2017-02-272-0/+11
| | | | | Between 1.00 and 1.16 times faster on Intel Yorkfield Core 2 Quad. Between 1.11 and 1.39 times faster on Intel Kaby Lake Pentium.
* avcodec/h264: add avx 8-bit 4:2:2 chroma h intra deblock/loop filterJames Darnley2017-02-272-0/+19
| | | | ~1.37x faster (147 vs. 108 cycles) compared to mmxext function
* avcodec/h264: add avx 8-bit 4:2:0 chroma h intra deblock/loop filterJames Darnley2017-02-272-0/+10
| | | | ~1.10x faster (69 vs. 63 cycles) compared to mmxext function
* avcodec/h264: add avx 8-bit chroma v intra deblock/loop filterJames Darnley2017-02-272-0/+34
| | | | ~1.14x faster (90 vs 78 cycles) compared with mmxext
* avcodec/h264: add avx 8-bit 4:2:2 chroma h deblock/loop filterJames Darnley2017-02-272-0/+29
| | | | ~1.21x faster (68 vs. 56 cycles) compared with mmxext function
* avcodec/h264: add avx 8-bit 4:2:0 chroma h deblock/loop filterJames Darnley2017-02-272-0/+73
| | | | ~1.14x faster (93 vs. 81 cycles) compared with mmxext function
* avcodec/h264: add avx 8-bit chroma v deblock/loop filterJames Darnley2017-02-272-0/+40
| | | | ~1.24x faster (101 vs. 81 cycles) compared with mmxext function
* lavc/svq3: Remove an unused function.Carl Eugen Hoyos2017-02-271-5/+0
|
* avcodec/qdrw: consume bytes when end is reached for 8bpp casePaul B Mahol2017-02-271-1/+2
| | | | | | This should really be part of previous commit. Signed-off-by: Paul B Mahol <onemda@gmail.com>
* avcodec/qdrw: fix decoding of odd sized images for 8bppPaul B Mahol2017-02-271-8/+6
| | | | Signed-off-by: Paul B Mahol <onemda@gmail.com>
* avcodec/qdrw: fix decoding odd size images for 2bpp and 4bppPaul B Mahol2017-02-271-36/+24
| | | | Signed-off-by: Paul B Mahol <onemda@gmail.com>
* avcodec/qdrw: fix decoding odd size images for 16bit casePaul B Mahol2017-02-271-14/+6
| | | | Signed-off-by: Paul B Mahol <onemda@gmail.com>
* avcodec/scpr: add support for older versionPaul B Mahol2017-02-261-5/+46
| | | | Signed-off-by: Paul B Mahol <onemda@gmail.com>
* avcodec/flacdsp: Fix: runtime error: signed integer overflow: -1027555328 + ↵Michael Niedermayer2017-02-261-1/+1
| | | | | | | | | | -1226681270 cannot be represented in type 'int' Fixes: 673/clusterfuzz-testcase-5948736536576000 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Reviewed-by: Paul B Mahol <onemda@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
* avcodec/eac3dec: Fix runtime error: left shift of negative value -3Michael Niedermayer2017-02-261-1/+1
| | | | | | | | Fixes: 672/clusterfuzz-testcase-5595018867769344 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Reviewed-by: Paul B Mahol <onemda@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
* avcodec/mpeg12dec: Fix runtime error: left shift of negative value -2Michael Niedermayer2017-02-261-2/+2
| | | | | | | | 671/clusterfuzz-testcase-4990381827555328 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Reviewed-by: Paul B Mahol <onemda@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
* avcodec/ituh263dec: Check for the bitstream end in ff_h263_decode_mb()Michael Niedermayer2017-02-261-0/+3
| | | | | | | | | | Fixes invalid shift Fixes: 670/clusterfuzz-testcase-4852021066727424 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Reviewed-by: Paul B Mahol <onemda@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
* avcodec/wavpack: Fix 280:22: runtime error: left shift of negative value -1Michael Niedermayer2017-02-251-1/+1
| | | | | | Fixes: 653/clusterfuzz-testcase-5773837415219200 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
* avcodec/wavpack: Check post_shiftMichael Niedermayer2017-02-251-0/+3
| | | | | | | | Fixes: runtime error: shift exponent 34 is too large for 32-bit type 'int' Fixes: 653/clusterfuzz-testcase-5773837415219200 Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
* avcodec/vp56: Implement very basic error concealmentMichael Niedermayer2017-02-251-3/+78
| | | | | | | This should fix the fate failure due to a truncated last frame. Alternatively the frame could be dropped. Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
* avcodec/amrwbdec: Fix 2 runtime errors: left shift of negative value -1Michael Niedermayer2017-02-251-2/+2
| | | | | | | Fixes: 669/clusterfuzz-testcase-4847965409640448 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
* avcodec/pngdec: Fix runtime error: left shift of 152 by 24 places cannot be ↵Michael Niedermayer2017-02-251-1/+1
| | | | | | | | | represented in type 'int' Fixes: 666/clusterfuzz-testcase-6581447227867136 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
* avcodec/vp56: Fix sign typoMichael Niedermayer2017-02-242-2/+2
| | | | | | | | | Fixes: 664/clusterfuzz-testcase-4917047475568640 The change to fate is due to a truncated last frames which is now detected as damaged. Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
* avcodec/mpegaudiodec_template: Correct return code on id3 tag discardingMichael Niedermayer2017-02-241-1/+1
| | | | | | | Fixes: 665/clusterfuzz-testcase-4863789881098240 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
* opus_pvq: prevent division by 0Rostislav Pehlivanov2017-02-241-1/+1
| | | | | | | res was 0 and divided K which made it infinity which caused K to overflow. Signed-off-by: Rostislav Pehlivanov <atomnuker@gmail.com>
* avcodec/scpr: remove 4 dead storePaul B Mahol2017-02-241-4/+0
| | | | Signed-off-by: Paul B Mahol <onemda@gmail.com>
* avcodec/fmvc: initialize opcode to 0Paul B Mahol2017-02-241-2/+2
| | | | | | It shouldn't really matter but it doesn't hurt. Signed-off-by: Paul B Mahol <onemda@gmail.com>
* avcodec/scpr: improve motion vectors checking for out of buffer writePaul B Mahol2017-02-241-2/+2
| | | | Signed-off-by: Paul B Mahol <onemda@gmail.com>
* avcodec/vp3dsp: Fix multiple signed integer overflow: 46341 * 47523 cannot ↵Michael Niedermayer2017-02-241-1/+1
| | | | | | | | | be represented in type 'int' Fixes: 664/clusterfuzz-testcase-4917047475568640 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
* avcodec/rv34: Simplify and factor get_slice_offset() codeMichael Niedermayer2017-02-241-23/+19
| | | | | | | | | This also fixes several integer overflows by checking each value before use. Fixes: 662/clusterfuzz-testcase-4898131432964096 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
* avcodec/scpr: make sure that component value is <= 0x1F for 16 bpcPaul B Mahol2017-02-241-1/+3
| | | | Signed-off-by: Paul B Mahol <onemda@gmail.com>
* avcodec/aic: unbreak decoding of files with slice_width != 16Paul B Mahol2017-02-241-1/+1
| | | | Signed-off-by: Paul B Mahol <onemda@gmail.com>
* lavc/utils: Make second parameter to apply_param_change() const.Carl Eugen Hoyos2017-02-241-1/+1
| | | | | Fixes a compilation warning: passing argument 2 of ‘apply_param_change’ discards ‘const’ qualifier from pointer target type
* opus_pvq: remove unneeded assertRostislav Pehlivanov2017-02-241-1/+0
| | | | | | | | | | Since the PVQ search has been well fuzzed and is guaranteed to never break SUM(abs(y[])) == K, the assert is no longer needed. Also the assert only prevented coding the wrong vector index but didn't prevent crashes during searching for it, which made the assert rather informational than practical. Signed-off-by: Rostislav Pehlivanov <atomnuker@gmail.com>
* opus_pvq: improve PVQ search for low KsRostislav Pehlivanov2017-02-241-2/+5
| | | | | | | | | Since the probelm mentioned only happened when the phase was negative (e.g. the sum had to be decreased), only discarding dimensions with a zero pulse in that case restored the search's previously low distortion at low Ks when the phase is never negative. Signed-off-by: Rostislav Pehlivanov <atomnuker@gmail.com>
* avcodec/ituh263dec: Fix runtime error: left shift of 1342177279 by 1 places ↵Michael Niedermayer2017-02-241-0/+4
| | | | | | | | | | | cannot be represented in type 'int' Fixes: 659/clusterfuzz-testcase-5866673603084288 Huge DMV could be created by an encoder ignoring the spec Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
* avcodec/jpeglsdec: check shift for values that cause overflow laterMichael Niedermayer2017-02-241-0/+5
| | | | | | Fixes: 657/clusterfuzz-testcase-6674741433729024 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
* avcodec/mpeg4videodec: Check the other 3 sprite points for intermediate ↵Michael Niedermayer2017-02-241-0/+7
| | | | | | | | | | | | | overflows This is not necessarily specific to fuzzed files Fixes: Multiple integer overflows Fixes: 656/clusterfuzz-testcase-6463814516080640 Fixes: 658/clusterfuzz-testcase-6691260146384896 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
* avcodec/shorten: support decoding AIFF-C variantPaul B Mahol2017-02-231-1/+15
| | | | Signed-off-by: Paul B Mahol <onemda@gmail.com>
* avcodec/scpr: improve check for out of range motion vectorsPaul B Mahol2017-02-231-1/+2
| | | | Signed-off-by: Paul B Mahol <onemda@gmail.com>
* avcodec/scpr: check that current row is in valid rangePaul B Mahol2017-02-231-0/+16
| | | | | | Stops writing out of dst array. Signed-off-by: Paul B Mahol <onemda@gmail.com>
* avcodec/scpr: do not allow out of array access for 16bit casePaul B Mahol2017-02-231-2/+2
| | | | Signed-off-by: Paul B Mahol <onemda@gmail.com>
* avcodec/qdrw: do better w/h parsing for direct bit packingPaul B Mahol2017-02-231-10/+11
| | | | | | | Apparently using 0x0001 opcode solely is not correct. Try this instead. Signed-off-by: Paul B Mahol <onemda@gmail.com>
OpenPOWER on IntegriCloud