From: Nil Fons Miret via ffmpeg-devel <ffmpeg-devel@ffmpeg.org>
To: FFmpeg development discussions and patches <ffmpeg-devel@ffmpeg.org>
Cc: Nil Fons Miret <nilf@netflix.com>
Subject: Re: [FFmpeg-devel] [PATCH] libavfilter: guard against ff_draw_init/ff_draw_init2 failures
Date: Mon, 3 Mar 2025 17:05:58 -0800
Message-ID: <CAPf3GFkbbkxwi2fCnLj1Xtf71Vy+sR_0N0n4VhvgWSPrNyzBjQ@mail.gmail.com> (raw)
In-Reply-To: <20250303235632.GH4991@pb2>
From what I can see, that one time it is called with constants in
qrencode.c will never fail. I can remove that check, but I am a bit
worried it will make it brittle if the internals of ff_draw_init*
change later on, e.g. to introduce more failure modes. In fact, I ran
across this issue while upgrading an old ffmpeg that did not have some
of these checks, so it was one of the new checks that caused the
segfault. Let me know what you think, I am open to changing it.
Thank you,
Nil
On Mon, Mar 3, 2025 at 3:56 PM Michael Niedermayer
<michael@niedermayer.cc> wrote:
>
> On Thu, Feb 20, 2025 at 10:31:57PM -0500, Nil Fons Miret via ffmpeg-devel wrote:
> > The return value of ff_draw_init and ff_draw_init2 are not checked in
> > most usages. However, if they return an error, they don't get to the
> > point where they set the attributes of the FFDrawContext. These
> > functions are typically used in conjunction with ff_draw_color, which
> > checks draw->desc->flags, causing a null pointer dereference.
> >
> > Attaching patch with a fix to guard against this.
>
> Is every of these ff_draw_init* calls able to fail ?
> i see one is called with constants for example
>
> thx
>
> [...]
>
> --
> Michael GnuPG fingerprint: 9FF2128B147EF6730BADF133611EC787040B0FAB
>
> Into a blind darkness they enter who follow after the Ignorance,
> they as if into a greater darkness enter who devote themselves
> to the Knowledge alone. -- Isha Upanishad
> _______________________________________________
> ffmpeg-devel mailing list
> ffmpeg-devel@ffmpeg.org
> https://ffmpeg.org/mailman/listinfo/ffmpeg-devel
>
> To unsubscribe, visit link above, or email
> ffmpeg-devel-request@ffmpeg.org with subject "unsubscribe".
_______________________________________________
ffmpeg-devel mailing list
ffmpeg-devel@ffmpeg.org
https://ffmpeg.org/mailman/listinfo/ffmpeg-devel
To unsubscribe, visit link above, or email
ffmpeg-devel-request@ffmpeg.org with subject "unsubscribe".
next prev parent reply other threads:[~2025-03-04 1:06 UTC|newest]
Thread overview: 5+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-02-21 3:31 Nil Fons Miret via ffmpeg-devel
2025-03-03 17:07 ` Nil Fons Miret via ffmpeg-devel
2025-03-03 23:56 ` Michael Niedermayer
2025-03-04 1:05 ` Nil Fons Miret via ffmpeg-devel [this message]
2025-03-04 1:09 ` Michael Niedermayer
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=CAPf3GFkbbkxwi2fCnLj1Xtf71Vy+sR_0N0n4VhvgWSPrNyzBjQ@mail.gmail.com \
--to=ffmpeg-devel@ffmpeg.org \
--cc=nilf@netflix.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Git Inbox Mirror of the ffmpeg-devel mailing list - see https://ffmpeg.org/mailman/listinfo/ffmpeg-devel
This inbox may be cloned and mirrored by anyone:
git clone --mirror https://master.gitmailbox.com/ffmpegdev/0 ffmpegdev/git/0.git
# If you have public-inbox 1.1+ installed, you may
# initialize and index your mirror using the following commands:
public-inbox-init -V2 ffmpegdev ffmpegdev/ https://master.gitmailbox.com/ffmpegdev \
ffmpegdev@gitmailbox.com
public-inbox-index ffmpegdev
Example config snippet for mirrors.
AGPL code for this site: git clone https://public-inbox.org/public-inbox.git