902710 – [abrt] tvtime-1.0.2-22.fc18: mirror_packed422_inplace_scanline_c: Process /usr/bin/tvtime was killed by signal 11 (SIGSEGV)

Bug 902710 - [abrt] tvtime-1.0.2-22.fc18: mirror_packed422_inplace_scanline_c: Process /usr/bin/tvtime was killed by signal 11 (SIGSEGV)

Summary: [abrt] tvtime-1.0.2-22.fc18: mirror_packed422_inplace_scanline_c: Process /us...

Keywords:
Status:	CLOSED WONTFIX
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	tvtime
Sub Component:
Version:	18
Hardware:	x86_64
OS:	Unspecified
Priority:	unspecified
Severity:	unspecified
Target Milestone:	---
Assignee:	Tomas Smetana
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:	abrt_hash:40dd2496ed41eb9fef515ac3f07...
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2013-01-22 10:19 UTC by Adam Porich
Modified:	2014-02-05 22:59 UTC (History)
CC List:	3 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:	2014-02-05 22:59:11 UTC
Type:	---
Embargoed:
Dependent Products:

Attachments	(Terms of Use)
File: backtrace (12.83 KB, text/plain) 2013-01-22 10:19 UTC, Adam Porich	no flags	Details
File: cgroup (129 bytes, text/plain) 2013-01-22 10:19 UTC, Adam Porich	no flags	Details
File: core_backtrace (645 bytes, text/plain) 2013-01-22 10:19 UTC, Adam Porich	no flags	Details
File: dso_list (4.50 KB, text/plain) 2013-01-22 10:19 UTC, Adam Porich	no flags	Details
File: environ (1.40 KB, text/plain) 2013-01-22 10:19 UTC, Adam Porich	no flags	Details
File: limits (1.29 KB, text/plain) 2013-01-22 10:19 UTC, Adam Porich	no flags	Details
File: maps (21.34 KB, text/plain) 2013-01-22 10:19 UTC, Adam Porich	no flags	Details
File: open_fds (305 bytes, text/plain) 2013-01-22 10:19 UTC, Adam Porich	no flags	Details
File: proc_pid_status (921 bytes, text/plain) 2013-01-22 10:19 UTC, Adam Porich	no flags	Details
File: var_log_messages (391 bytes, text/plain) 2013-01-22 10:19 UTC, Adam Porich	no flags	Details
Maybe a patch (1.44 KB, patch) 2013-09-04 12:47 UTC, Tomas Smetana	no flags	Details \| Diff
View All

Description Adam Porich 2013-01-22 10:19:03 UTC

Description of problem:
tried firing up tvtime with my winfast 2000 gold dongle

Version-Release number of selected component:
tvtime-1.0.2-22.fc18

Additional info:
backtrace_rating: 4
cmdline:        tvtime
crash_function: mirror_packed422_inplace_scanline_c
executable:     /usr/bin/tvtime
kernel:         3.7.2-201.fc18.x86_64
remote_result:  616169
uid:            1000

Truncated backtrace:
Thread no. 1 (4 frames)
 #0 mirror_packed422_inplace_scanline_c at speedy.c:543
 #1 videofilter_packed422_scanline at videofilter.c:95
 #2 tvtime_build_deinterlaced_frame at tvtime.c:479
 #3 tvtime_main at tvtime.c:2291

Comment 1 Adam Porich 2013-01-22 10:19:07 UTC

Created attachment 685000 [details]
File: backtrace

Comment 2 Adam Porich 2013-01-22 10:19:11 UTC

Created attachment 685001 [details]
File: cgroup

Comment 3 Adam Porich 2013-01-22 10:19:14 UTC

Created attachment 685002 [details]
File: core_backtrace

Comment 4 Adam Porich 2013-01-22 10:19:17 UTC

Created attachment 685003 [details]
File: dso_list

Comment 5 Adam Porich 2013-01-22 10:19:19 UTC

Created attachment 685004 [details]
File: environ

Comment 6 Adam Porich 2013-01-22 10:19:22 UTC

Created attachment 685005 [details]
File: limits

Comment 7 Adam Porich 2013-01-22 10:19:25 UTC

Created attachment 685006 [details]
File: maps

Comment 8 Adam Porich 2013-01-22 10:19:28 UTC

Created attachment 685007 [details]
File: open_fds

Comment 9 Adam Porich 2013-01-22 10:19:31 UTC

Created attachment 685008 [details]
File: proc_pid_status

Comment 10 Adam Porich 2013-01-22 10:19:33 UTC

Created attachment 685009 [details]
File: var_log_messages

Comment 11 Tomas Smetana 2013-09-04 11:26:12 UTC

I think tvtime is filtering too many scanlines... I may have a patch to fix this.

Comment 12 triniton 2013-09-04 12:34:54 UTC

Wonderfull.

Can you give me this patch to test them with tvtime? Thanks
Regards

Comment 13 Tomas Smetana 2013-09-04 12:47:51 UTC

Created attachment 793656 [details]
Maybe a patch

Here you are. I'm not quite sure about it's correctness: It seems the crash happens at the beginning of the last scanline so I simply skipped the last ones to see what happens.  There are no artifacts in the picture and tvtime is not crashing any more in my environment.

Comment 14 POJAR GEORGE 2013-09-04 13:24:19 UTC

Possible cause:

In C parameters are essentially local variables which are initialized with values passed in as arguments. This means they exist only for as long as the function is being executed. Your saveframe variable ceases to exist once the function exists and with it the value you assigned.

static void save_last_frame( uint8_t *saveframe, uint8_t *curframe,
                             int width, int height, int savestride, int curstride )
{
    height /= 2;
    height--;
    while( height-- ) {
        blit_packed422_scanline( saveframe, curframe, width );
        saveframe += savestride;
        interpolate_packed422_scanline( saveframe, curframe, curframe + (curstride*2), width );
        saveframe += savestride;
        curframe += (curstride*2);
    }
    blit_packed422_scanline( saveframe, curframe, width );
    saveframe += savestride;
    blit_packed422_scanline( saveframe, curframe, width );
    saveframe += savestride;    /* <-- Assignment of function parameter has no effect outside the function

and

        if( !bottom_field ) {
            /* Double the bottom scanline. */
            blit_packed422_scanline( output, curframe, width );

            if( tvtime->outputfilter ) {
                outputfilter_composite_packed422_scanline( tvtime->outputfilter, output, width, 0, scanline );
            }

            output += outstride;    /* <-- Assignment of function parameter has no effect outside the function
            scanline++;
        }
    }

    tvtime->filtered_curframe = 1;
}

Comment 15 Tomas Smetana 2013-09-04 13:45:32 UTC

It's true that those two lines have no effect which looks suspicious. Let's try to fix it so the assignments really move the pointers.

Comment 16 Fedora End Of Life 2013-12-21 15:19:20 UTC

This message is a reminder that Fedora 18 is nearing its end of life.
Approximately 4 (four) weeks from now Fedora will stop maintaining
and issuing updates for Fedora 18. It is Fedora's policy to close all
bug reports from releases that are no longer maintained. At that time
this bug will be closed as WONTFIX if it remains open with a Fedora 
'version' of '18'.

Package Maintainer: If you wish for this bug to remain open because you
plan to fix it in a currently maintained version, simply change the 'version' 
to a later Fedora version prior to Fedora 18's end of life.

Thank you for reporting this issue and we are sorry that we may not be 
able to fix it before Fedora 18 is end of life. If you would still like 
to see this bug fixed and are able to reproduce it against a later version 
of Fedora, you are encouraged  change the 'version' to a later Fedora 
version prior to Fedora 18's end of life.

Although we aim to fix as many bugs as possible during every release's 
lifetime, sometimes those efforts are overtaken by events. Often a 
more recent Fedora release includes newer upstream software that fixes 
bugs or makes them obsolete.

Comment 17 Fedora End Of Life 2014-02-05 22:59:11 UTC

Fedora 18 changed to end-of-life (EOL) status on 2014-01-14. Fedora 18 is
no longer maintained, which means that it will not receive any further
security or bug fix updates. As a result we are closing this bug.

If you can reproduce this bug against a currently maintained version of
Fedora please feel free to reopen this bug against that version. If you
are unable to reopen this bug, please file a new report against the
current release. If you experience problems, please add a comment to this
bug.

Thank you for reporting this bug and we are sorry it could not be fixed.

Note You need to log in before you can comment on or make changes to this bug.