From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from ffbox0-bg.ffmpeg.org (ffbox0-bg.ffmpeg.org [79.124.17.100]) by master.gitmailbox.com (Postfix) with ESMTPS id C21B94C1C5 for ; Wed, 30 Jul 2025 19:53:01 +0000 (UTC) Received: from [127.0.1.1] (localhost [127.0.0.1]) by ffbox0-bg.ffmpeg.org (Postfix) with ESMTP id 9A7FC68C760; Wed, 30 Jul 2025 22:52:56 +0300 (EEST) Received: from relay9-d.mail.gandi.net (relay9-d.mail.gandi.net [217.70.183.199]) by ffbox0-bg.ffmpeg.org (Postfix) with ESMTPS id 1659B687C24 for ; Wed, 30 Jul 2025 22:52:50 +0300 (EEST) Received: by mail.gandi.net (Postfix) with ESMTPSA id 3E81741C7C for ; Wed, 30 Jul 2025 19:52:49 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=niedermayer.cc; s=gm1; t=1753905169; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references; bh=XYUZTWzQyPjPqGW8Qr3oW3hsIO/emPf5vwBUGeYX9/Y=; b=kDKN30oOVFopVOeKzPBLVmBn4CNXLGUUa4udkxJ/uBIHgITnT+bpMbG3cXccgXuVaw71mw JwEw3in3kwkGjTAZ4N1qZuHb7E1pKxbC5CsDNp7MpcrY475Z06imNvEr/WAFc2MT1DxW0g lO7qDn1CrNukORxaUlIRS2ggXexkUQ4cUPc6ZpjEhsAbtJMiIhTJKjwKmH7N+ULebNOunL J8iAetw2Y7RwGB9nMA/HjOOpkePoJba/1A558taVrMQ/h0Zy/xOmIBuDugvmzZDKcUaK4+ ytXmNl6hmVgaj9W1xck/1GCeoVo0Trc508HTsEmhXtBiqaI0RdSpeJmCvnDG2Q== Date: Wed, 30 Jul 2025 21:52:48 +0200 From: Michael Niedermayer To: FFmpeg development discussions and patches Message-ID: <20250730195248.GQ29660@pb2> References: <20250730100138.GP29660@pb2> MIME-Version: 1.0 In-Reply-To: X-GND-State: clean X-GND-Score: -41 X-GND-Cause: gggruggvucftvghtrhhoucdtuddrgeeffedrtdefgdelkeekudcutefuodetggdotefrodftvfcurfhrohhfihhlvgemucfitefpfffkpdcuggftfghnshhusghstghrihgsvgenuceurghilhhouhhtmecufedtudenucesvcftvggtihhpihgvnhhtshculddquddttddmnegoufhushhpvggtthffohhmrghinhculdegledmnegfrhhlucfvnfffucdluddtmdenucfjughrpeffhffvuffkfhggtggujgesghdtreertddtjeenucfhrhhomhepofhitghhrggvlhcupfhivgguvghrmhgrhigvrhcuoehmihgthhgrvghlsehnihgvuggvrhhmrgihvghrrdgttgeqnecuggftrfgrthhtvghrnhepvdduuedvueekfeehffffleeuhfffteettdeuuedvhedtgeegteekieeggefhueeinecuffhomhgrihhnpegtrhgsuhhgrdgtohhmpdhgihhthhhusgdrtghomhenucfkphepgedurdeiiedrieehrddujeeinecuvehluhhsthgvrhfuihiivgeptdenucfrrghrrghmpehinhgvthepgedurdeiiedrieehrddujeeipdhhvghloheplhhotggrlhhhohhsthdpmhgrihhlfhhrohhmpehmihgthhgrvghlsehnihgvuggvrhhmrgihvghrrdgttgdpnhgspghrtghpthhtohepuddprhgtphhtthhopehffhhmphgvghdquggvvhgvlhesfhhfmhhpvghgrdhorhhg X-GND-Sasl: michael@niedermayer.cc Subject: Re: [FFmpeg-devel] [flac] Fix integer-overflow in flac_lpc_33_c X-BeenThere: ffmpeg-devel@ffmpeg.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: FFmpeg development discussions and patches List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: FFmpeg development discussions and patches Content-Type: multipart/mixed; boundary="===============5879103891788182493==" Errors-To: ffmpeg-devel-bounces@ffmpeg.org Sender: "ffmpeg-devel" Archived-At: List-Archive: List-Post: --===============5879103891788182493== Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="77hUDJ3p5mxUplge" Content-Disposition: inline --77hUDJ3p5mxUplge Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Hi Dale On Wed, Jul 30, 2025 at 09:36:51AM -0700, Dale Curtis wrote: > On Wed, Jul 30, 2025 at 3:01=E2=80=AFAM Michael Niedermayer > wrote: >=20 > > Hi Dale > > > > On Tue, Jul 29, 2025 at 03:07:38PM -0700, Dale Curtis wrote: > > > This fix copies a couple of casts from surrounding functions. > > > See https://crbug.com/432528781 for stack trace details. > > > > > > Signed-off-by: Dale Curtis > > > > > flacdsp.c | 2 +- > > > 1 file changed, 1 insertion(+), 1 deletion(-) > > > 187b2fdeaecb08d3683b90875f4d7c0e74a38da1 flac_fix_v1.patch > > > From 0bf245bf8a031d12aec77e68dbc627247255eeb0 Mon Sep 17 00:00:00 2001 > > > From: Dale Curtis > > > Date: Tue, 29 Jul 2025 22:05:19 +0000 > > > Subject: [PATCH] [flac] Fix integer-overflow in flac_lpc_33_c > > > > > > This fix copies a couple of casts from surrounding functions. > > > > > See https://crbug.com/432528781 for stack trace details. > > > > You (email=3Dmichael@niedermayer.cc) are not authorized to access this = page! > > >=20 > The bug is public and I can open it in an incognito window, so I'm not su= re > what's going on here. Are you referring to the Clusterfuzz page itself? I > can add more info to the bug if it's helpful, but can't control ClusterFu= zz > access unfortunately. you wrote "for stack trace details.", but the stack trace details are on the Clusterfuzz page so either the "for stack trace details." should be removed or some stack trace details could be added to teh public page >=20 >=20 > > > > > > [...] > > > > > - decoded[j] =3D residual[i] + (sum >> qlevel); > > > + decoded[j] =3D (uint64_t)residual[i] + (unsigned)(sum >> qle= vel); > > > > This does not give the same result for cases that do not overflow > > > > I would guess more in the direction of: > > > > decoded[j] =3D (int64_t)residual[i] + (uint64_t)(sum >> qlevel); > > >=20 > Happy to make that change, but are one of the following casts also > incorrect then? > https://github.com/FFmpeg/FFmpeg/blob/master/libavcodec/flacdsp.c#L111 Iam not sure the int64_t vs uint64_t affects any audio output, it does affect a checkasm. So iam not sure about "correct" > https://github.com/FFmpeg/FFmpeg/blob/master/libavcodec/flacdsp.c#L69 sum is a int, so -> unsigned should be fine in the case of the patch sum is a int64_t so casting to unsigned truncates = it thx [...] --=20 Michael GnuPG fingerprint: 9FF2128B147EF6730BADF133611EC787040B0FAB If you fake or manipulate statistics in a paper in physics you will never get a job again. If you fake or manipulate statistics in a paper in medicin you will get a job for life at the pharma industry. --77hUDJ3p5mxUplge Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iF0EABEKAB0WIQSf8hKLFH72cwut8TNhHseHBAsPqwUCaIp4CQAKCRBhHseHBAsP qzPlAKCWwGTGbm8gNhlMy76CPRzGLKfaTQCgh5c3JgU7YtmAMsDIy1cO8EGmUWM= =q+3c -----END PGP SIGNATURE----- --77hUDJ3p5mxUplge-- --===============5879103891788182493== Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline _______________________________________________ ffmpeg-devel mailing list ffmpeg-devel@ffmpeg.org https://ffmpeg.org/mailman/listinfo/ffmpeg-devel To unsubscribe, visit link above, or email ffmpeg-devel-request@ffmpeg.org with subject "unsubscribe". --===============5879103891788182493==--