[Bug 772200] New: gst_audio_buffer_clip() gsize underrun

GStreamer (GNOME Bugzilla) bugzilla at gnome.org
Thu Sep 29 19:32:12 UTC 2016 

https://bugzilla.gnome.org/show_bug.cgi?id=772200

            Bug ID: 772200
           Summary: gst_audio_buffer_clip() gsize underrun
    Classification: Platform
           Product: GStreamer
           Version: git master
                OS: Linux
            Status: NEW
          Severity: blocker
          Priority: Normal
         Component: gst-plugins-base
          Assignee: gstreamer-bugs at lists.freedesktop.org
          Reporter: ensonic at sonicpulse.de
        QA Contact: gstreamer-bugs at lists.freedesktop.org
     GNOME version: ---

Program received signal SIGTRAP, Trace/breakpoint trap.
[Switching to Thread 0x7fffbf7fe700 (LWP 21227)]
g_logv (log_domain=0x7ffff6af4fc5 <g_log_domain_gstreamer> "GStreamer",
log_level=G_LOG_LEVEL_CRITICAL, format=<optimized out>,
args=args at entry=0x7fffbf7fd688) at
/build/buildd/glib2.0-2.40.2/./glib/gmessages.c:1038
1038    /build/buildd/glib2.0-2.40.2/./glib/gmessages.c: No such file or
directory.
(gdb) bt
#0  g_logv (log_domain=0x7ffff6af4fc5 <g_log_domain_gstreamer> "GStreamer",
log_level=G_LOG_LEVEL_CRITICAL, format=<optimized out>,
args=args at entry=0x7fffbf7fd688) at
/build/buildd/glib2.0-2.40.2/./glib/gmessages.c:1038
#1  0x00007ffff4c8fd72 in g_log (log_domain=<optimized out>,
log_level=log_level at entry=G_LOG_LEVEL_CRITICAL,
format=format at entry=0x7ffff4cd774a "%s: assertion '%s' failed") at
/build/buildd/glib2.0-2.40.2/./glib/gmessages.c:1071
#2  0x00007ffff4c8fd99 in g_return_if_fail_warning (log_domain=<optimized out>,
pretty_function=pretty_function at entry=0x7ffff6af8d40 <__func__.19364>
"gst_buffer_copy_into", expression=expression at entry=0x7ffff6af800a "bufsize >=
offset + size")
    at /build/buildd/glib2.0-2.40.2/./glib/gmessages.c:1080
#3  0x00007ffff6a63532 in gst_buffer_copy_into (dest=0x2e3cbb0,
src=src at entry=0x7fffa4011aa0, flags=flags at entry=(GST_BUFFER_COPY_FLAGS |
GST_BUFFER_COPY_TIMESTAMPS | GST_BUFFER_COPY_META | GST_BUFFER_COPY_MEMORY),
offset=offset at entry=0, 
    size=size at entry=18446744073709550294) at gstbuffer.c:510
#4  0x00007ffff6a64b79 in gst_buffer_copy_region
(buffer=buffer at entry=0x7fffa4011aa0, flags=flags at entry=(GST_BUFFER_COPY_FLAGS |
GST_BUFFER_COPY_TIMESTAMPS | GST_BUFFER_COPY_META | GST_BUFFER_COPY_MEMORY),
offset=0, size=size at entry=18446744073709550294)
    at gstbuffer.c:2040
#5  0x00007ffff72c830d in gst_audio_buffer_clip
(buffer=buffer at entry=0x7fffa4011aa0, segment=segment at entry=0x2dcf9f0,
rate=<optimized out>, bpf=2) at audio.c:223
#6  0x00007ffff72fc1db in gst_audio_filter_submit_input_buffer
(btrans=0x2dcf8d0, is_discont=0, input=0x7fffa4011aa0) at gstaudiofilter.c:177
#7  0x00007ffff708fed4 in gst_base_transform_chain (pad=pad at entry=0x27bf230,
parent=parent at entry=0x2dcf8d0, buffer=buffer at entry=0x7fffa4011aa0) at
gstbasetransform.c:2326
#8  0x00007ffff6a98f57 in gst_pad_chain_data_unchecked (data=0x7fffa4011aa0,
type=<optimized out>, pad=0x27bf230) at gstpad.c:4205
#9  gst_pad_push_data (pad=pad at entry=0x27beff0, type=type at entry=4112,
data=<optimized out>, data at entry=0x7fffa4011aa0) at gstpad.c:4457
#10 0x00007ffff6aa117e in gst_pad_push (pad=pad at entry=0x27beff0,
buffer=0x7fffa4011aa0) at gstpad.c:4576
#11 0x00007ffff7089a05 in gst_base_src_loop (pad=0x27beff0) at
gstbasesrc.c:2854
#12 0x00007ffff6accd01 in gst_task_func (task=0x267cef0) at gsttask.c:334
#13 0x00007ffff4cae88c in g_thread_pool_thread_proxy (data=<optimized out>) at
/build/buildd/glib2.0-2.40.2/./glib/gthreadpool.c:307
#14 0x00007ffff4cadf05 in g_thread_proxy (data=0x2d23c50) at
/build/buildd/glib2.0-2.40.2/./glib/gthread.c:764
#15 0x00007ffff7528184 in start_thread (arg=0x7fffbf7fe700) at
pthread_create.c:312
#16 0x00007ffff497537d in clone () at
../sysdeps/unix/sysv/linux/x86_64/clone.S:111

(gdb) call g_type_name(((GTypeClass*)(((GTypeInstance*)
(btrans))->g_class))->g_type)
$1 = (const gchar *) 0x7fffc83dc2a8 "GstVolume"


tail -n20 /tmp/debug.log | grep 'audio'
0:00:25.007546763 23712      0x3106c50 DEBUG                  audio
audio.c:108:gst_audio_buffer_clip: timestamp 0:00:07.625000000
0:00:25.007661049 23712      0x3106c50 LOG                    audio
audio.c:142:gst_audio_buffer_clip: orig:  7625000000..7750000000 clipped
7625000000..7680000000
0:00:25.007699559 23712      0x3106c50 LOG                    audio
audio.c:169:gst_audio_buffer_clip: clip stop:  6174 size 18446744073709550294
0:00:25.007744722 23712      0x3106c50 DEBUG                  audio
audio.c:229:gst_audio_buffer_clip: trim 0 size 18446744073709550294 osize 4852

size was 4852 and becomes 18446744073709550294

trying to fix and ideally come up with a test

-- 
You are receiving this mail because:
You are the QA Contact for the bug.
You are the assignee for the bug.

More information about the gstreamer-bugs mailing list