[FFmpeg-devel] [PATCH] vvcdec: Mark as experimental
Andreas Rheinhardt
andreas.rheinhardt at outlook.com
Fri Mar 15 17:04:46 EET 2024
Frank Plowman:
> On 15/03/2024 10:22, Kieran Kunhya wrote:
>> On Thu, 14 Mar 2024, 22:54 Michael Niedermayer, <michael at niedermayer.cc>
>> wrote:
>>
>>> On Wed, Feb 07, 2024 at 10:55:18PM +0000, Kieran Kunhya wrote:
>>>> On Wed, 7 Feb 2024 at 22:06, Paul B Mahol <onemda at gmail.com> wrote:
>>>>
>>>>> On Wed, Feb 7, 2024 at 10:13 PM Kieran Kunhya <kierank at obe.tv> wrote:
>>>>>
>>>>>> $subj
>>>>>>
>>>>>> As discussed at FOSDEM.
>>>>>>
>>>>>
>>>>> Author of this patch above is forced to FUZZ this decoder until
>>>>> experimental flag is removed.
>>>>>
>>>>
>>>> Sure, I will set some fuzzers up over the weekend.
>>>
>>> over a month later ...
>>> has this been done ?
>>>
>>>
>>> thx
>>>
>>> [...]
>>>
>>
>> Frank said there was no need as he was doing it himself.
>>
>> I do not appreciate your passive aggressive tone.
>>
>> Kieran
>>
>
> I have been fuzzing since the end of January. Various patches have made
> the decoder much more robust than it was then. Still getting a crash on
> occasion, but most are now false positives due to assertion failures
> rather than segmentation faults or other potential security issues.
> That being said, the hardware I am using is extremely modest compared to
> oss-fuzz's.
An assertion failure is not a false positive. Even if it is an av_assert2.
- Andreas
More information about the ffmpeg-devel
mailing list