x/dav1d
1
0
Fork 0
mirror of https://code.videolan.org/videolan/dav1d synced 2026-06-11 12:13:03 +00:00
Code Issues Packages Projects Releases Wiki Activity

frame-mt: output only fully decoded frames

Browse Source 
Fixes use of uninitialized vaue in apply_to_row_y() with
clusterfuzz-testcase-minimized-dav1d_fuzzer_mt-5753369222709248. Credits
to oss-fuzz.
This commit is contained in:
Janne Grunau
2018-12-03 20:15:40 +01:00
parent 8cf300206d
commit 4903d87b73
1 changed files with 7 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
src/decode.c
+7 -2
View File
@@ -2987,7 +2987,9 @@ int dav1d_submit_frame(Dav1dContext *const c) {
&f->frame_thread.td.lock);
out_delayed = &c->frame_thread.out_delayed[next];
if (out_delayed->p.data[0]) {
if (out_delayed->visible)
const unsigned progress = atomic_load_explicit(&out_delayed->progress[1],
memory_order_relaxed);
if (out_delayed->visible && progress != FRAME_ERROR)
dav1d_picture_ref(&c->out, &out_delayed->p);
dav1d_thread_picture_unref(out_delayed);
}
@@ -3308,7 +3310,10 @@ error:
dav1d_thread_picture_unref(&f->refp[i]);
dav1d_ref_dec(&f->ref_mvs_ref[i]);
}
dav1d_picture_unref(&c->out);
if (c->n_fc == 1)
dav1d_picture_unref(&c->out);
else
dav1d_thread_picture_unref(out_delayed);
dav1d_picture_unref(&f->cur);
dav1d_thread_picture_unref(&f->sr_cur);
dav1d_ref_dec(&f->mvs_ref);