Git Inbox Mirror of the ffmpeg-devel mailing list - see https://ffmpeg.org/mailman/listinfo/ffmpeg-devel
 help / color / mirror / Atom feed
* Re: [FFmpeg-devel] [PATCH] avcodec/nvenc: fix NULL pointer dereference
  2023-02-28 18:43 [FFmpeg-devel] [PATCH] avcodec/nvenc: fix NULL pointer dereference Zhao Zhili
@ 2023-02-28 12:08 ` Steven Liu
  2023-02-28 14:37 ` Timo Rothenpieler
  1 sibling, 0 replies; 5+ messages in thread
From: Steven Liu @ 2023-02-28 12:08 UTC (permalink / raw)
  To: FFmpeg development discussions and patches; +Cc: Zhao Zhili

Zhao Zhili <quinkblack@foxmail.com> 于2023年2月28日周二 18:44写道:
>
> From: Zhao Zhili <zhilizhao@tencent.com>
>
> This can happen if encoder init failed before setup the queue, then
> reorder_queue_flush() is called by close().
>
> Fix ticket #10221
>
> Signed-off-by: Zhao Zhili <zhilizhao@tencent.com>
> ---
>  libavcodec/nvenc.c | 2 ++
>  1 file changed, 2 insertions(+)
>
> diff --git a/libavcodec/nvenc.c b/libavcodec/nvenc.c
> index 8a28454042..dda2dc3ba1 100644
> --- a/libavcodec/nvenc.c
> +++ b/libavcodec/nvenc.c
> @@ -178,6 +178,8 @@ static void reorder_queue_flush(AVFifo *queue)
>  {
>      FrameData fd;
>
> +    if (!queue)
> +        return;
>      while (av_fifo_read(queue, &fd, 1) >= 0)
>          av_buffer_unref(&fd.frame_opaque_ref);
>  }
> --
> 2.25.1
>
> _______________________________________________
> ffmpeg-devel mailing list
> ffmpeg-devel@ffmpeg.org
> https://ffmpeg.org/mailman/listinfo/ffmpeg-devel
>
> To unsubscribe, visit link above, or email
> ffmpeg-devel-request@ffmpeg.org with subject "unsubscribe".


lgtm

Thanks
Steven
_______________________________________________
ffmpeg-devel mailing list
ffmpeg-devel@ffmpeg.org
https://ffmpeg.org/mailman/listinfo/ffmpeg-devel

To unsubscribe, visit link above, or email
ffmpeg-devel-request@ffmpeg.org with subject "unsubscribe".

^ permalink raw reply	[flat|nested] 5+ messages in thread
* Re: [FFmpeg-devel] [PATCH] avcodec/nvenc: fix NULL pointer dereference
  2023-02-28 18:43 [FFmpeg-devel] [PATCH] avcodec/nvenc: fix NULL pointer dereference Zhao Zhili
  2023-02-28 12:08 ` Steven Liu
@ 2023-02-28 14:37 ` Timo Rothenpieler
  2023-02-28 15:03   ` Zhao Zhili
  1 sibling, 1 reply; 5+ messages in thread
From: Timo Rothenpieler @ 2023-02-28 14:37 UTC (permalink / raw)
  To: ffmpeg-devel

On 28.02.2023 19:43, Zhao Zhili wrote:
> From: Zhao Zhili <zhilizhao@tencent.com>
> 
> This can happen if encoder init failed before setup the queue, then
> reorder_queue_flush() is called by close().
> 
> Fix ticket #10221
> 
> Signed-off-by: Zhao Zhili <zhilizhao@tencent.com>
> ---
>   libavcodec/nvenc.c | 2 ++
>   1 file changed, 2 insertions(+)
> 
> diff --git a/libavcodec/nvenc.c b/libavcodec/nvenc.c
> index 8a28454042..dda2dc3ba1 100644
> --- a/libavcodec/nvenc.c
> +++ b/libavcodec/nvenc.c
> @@ -178,6 +178,8 @@ static void reorder_queue_flush(AVFifo *queue)
>   {
>       FrameData fd;
>   
> +    if (!queue)
> +        return;
>       while (av_fifo_read(queue, &fd, 1) >= 0)
>           av_buffer_unref(&fd.frame_opaque_ref);
>   }

This should probably be an assert0, and the function should not be 
called to begin with if the queue is NULL.
_______________________________________________
ffmpeg-devel mailing list
ffmpeg-devel@ffmpeg.org
https://ffmpeg.org/mailman/listinfo/ffmpeg-devel

To unsubscribe, visit link above, or email
ffmpeg-devel-request@ffmpeg.org with subject "unsubscribe".

^ permalink raw reply	[flat|nested] 5+ messages in thread
* Re: [FFmpeg-devel] [PATCH] avcodec/nvenc: fix NULL pointer dereference
  2023-02-28 14:37 ` Timo Rothenpieler
@ 2023-02-28 15:03   ` Zhao Zhili
  2023-02-28 16:05     ` Timo Rothenpieler
  0 siblings, 1 reply; 5+ messages in thread
From: Zhao Zhili @ 2023-02-28 15:03 UTC (permalink / raw)
  To: 'FFmpeg development discussions and patches'


> From: ffmpeg-devel <ffmpeg-devel-bounces@ffmpeg.org> On Behalf Of Timo Rothenpieler
> Sent: 2023年2月28日 22:37
> To: ffmpeg-devel@ffmpeg.org
> Subject: Re: [FFmpeg-devel] [PATCH] avcodec/nvenc: fix NULL pointer dereference
> 
> On 28.02.2023 19:43, Zhao Zhili wrote:
> > From: Zhao Zhili <zhilizhao@tencent.com>
> >
> > This can happen if encoder init failed before setup the queue, then
> > reorder_queue_flush() is called by close().
> >
> > Fix ticket #10221
> >
> > Signed-off-by: Zhao Zhili <zhilizhao@tencent.com>
> > ---
> >   libavcodec/nvenc.c | 2 ++
> >   1 file changed, 2 insertions(+)
> >
> > diff --git a/libavcodec/nvenc.c b/libavcodec/nvenc.c
> > index 8a28454042..dda2dc3ba1 100644
> > --- a/libavcodec/nvenc.c
> > +++ b/libavcodec/nvenc.c
> > @@ -178,6 +178,8 @@ static void reorder_queue_flush(AVFifo *queue)
> >   {
> >       FrameData fd;
> >
> > +    if (!queue)
> > +        return;
> >       while (av_fifo_read(queue, &fd, 1) >= 0)
> >           av_buffer_unref(&fd.frame_opaque_ref);
> >   }
> 
> This should probably be an assert0, and the function should not be
> called to begin with if the queue is NULL.

I can move the check from here to close(). assert is helpful if it can catch
bugs during development. It doesn't help much here since this is a rare case 
which doesn't triggered during development.

> _______________________________________________
> ffmpeg-devel mailing list
> ffmpeg-devel@ffmpeg.org
> https://ffmpeg.org/mailman/listinfo/ffmpeg-devel
> 
> To unsubscribe, visit link above, or email
> ffmpeg-devel-request@ffmpeg.org with subject "unsubscribe".

_______________________________________________
ffmpeg-devel mailing list
ffmpeg-devel@ffmpeg.org
https://ffmpeg.org/mailman/listinfo/ffmpeg-devel

To unsubscribe, visit link above, or email
ffmpeg-devel-request@ffmpeg.org with subject "unsubscribe".

^ permalink raw reply	[flat|nested] 5+ messages in thread
* Re: [FFmpeg-devel] [PATCH] avcodec/nvenc: fix NULL pointer dereference
  2023-02-28 15:03   ` Zhao Zhili
@ 2023-02-28 16:05     ` Timo Rothenpieler
  0 siblings, 0 replies; 5+ messages in thread
From: Timo Rothenpieler @ 2023-02-28 16:05 UTC (permalink / raw)
  To: ffmpeg-devel

On 28.02.2023 16:03, Zhao Zhili wrote:
> I can move the check from here to close(). assert is helpful if it can catch
> bugs during development. It doesn't help much here since this is a rare case
> which doesn't triggered during development.

Crashing with an assertion is still much better than dereferencing a 
NULL pointer.

I'll have a look at the calling function in a bit, to see if it can be 
refactored to never run into the chance of calling this function when 
not needed.
_______________________________________________
ffmpeg-devel mailing list
ffmpeg-devel@ffmpeg.org
https://ffmpeg.org/mailman/listinfo/ffmpeg-devel

To unsubscribe, visit link above, or email
ffmpeg-devel-request@ffmpeg.org with subject "unsubscribe".

^ permalink raw reply	[flat|nested] 5+ messages in thread
* [FFmpeg-devel] [PATCH] avcodec/nvenc: fix NULL pointer dereference
@ 2023-02-28 18:43 Zhao Zhili
  2023-02-28 12:08 ` Steven Liu
  2023-02-28 14:37 ` Timo Rothenpieler
  0 siblings, 2 replies; 5+ messages in thread
From: Zhao Zhili @ 2023-02-28 18:43 UTC (permalink / raw)
  To: ffmpeg-devel; +Cc: Zhao Zhili

From: Zhao Zhili <zhilizhao@tencent.com>

This can happen if encoder init failed before setup the queue, then
reorder_queue_flush() is called by close().

Fix ticket #10221

Signed-off-by: Zhao Zhili <zhilizhao@tencent.com>
---
 libavcodec/nvenc.c | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/libavcodec/nvenc.c b/libavcodec/nvenc.c
index 8a28454042..dda2dc3ba1 100644
--- a/libavcodec/nvenc.c
+++ b/libavcodec/nvenc.c
@@ -178,6 +178,8 @@ static void reorder_queue_flush(AVFifo *queue)
 {
     FrameData fd;
 
+    if (!queue)
+        return;
     while (av_fifo_read(queue, &fd, 1) >= 0)
         av_buffer_unref(&fd.frame_opaque_ref);
 }
-- 
2.25.1

_______________________________________________
ffmpeg-devel mailing list
ffmpeg-devel@ffmpeg.org
https://ffmpeg.org/mailman/listinfo/ffmpeg-devel

To unsubscribe, visit link above, or email
ffmpeg-devel-request@ffmpeg.org with subject "unsubscribe".

^ permalink raw reply	[flat|nested] 5+ messages in thread
end of thread, other threads:[~2023-02-28 16:05 UTC | newest]

Thread overview: 5+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2023-02-28 18:43 [FFmpeg-devel] [PATCH] avcodec/nvenc: fix NULL pointer dereference Zhao Zhili
2023-02-28 12:08 ` Steven Liu
2023-02-28 14:37 ` Timo Rothenpieler
2023-02-28 15:03   ` Zhao Zhili
2023-02-28 16:05     ` Timo Rothenpieler

Git Inbox Mirror of the ffmpeg-devel mailing list - see https://ffmpeg.org/mailman/listinfo/ffmpeg-devel

This inbox may be cloned and mirrored by anyone:

	git clone --mirror https://master.gitmailbox.com/ffmpegdev/0 ffmpegdev/git/0.git

	# If you have public-inbox 1.1+ installed, you may
	# initialize and index your mirror using the following commands:
	public-inbox-init -V2 ffmpegdev ffmpegdev/ https://master.gitmailbox.com/ffmpegdev \
		ffmpegdev@gitmailbox.com
	public-inbox-index ffmpegdev

Example config snippet for mirrors.


AGPL code for this site: git clone https://public-inbox.org/public-inbox.git