[PATCH] reference PPS from slice by shared_ptr to prevent usage after deallocation

author Dirk Farin <farin@struktur.de>

Fri, 4 May 2018 14:30:37 +0000 (16:30 +0200)

committer Tobias Frost <tobi@debian.org>

Tue, 24 Jan 2023 21:39:16 +0000 (21:39 +0000)
author Dirk Farin <farin@struktur.de>
Fri, 4 May 2018 14:30:37 +0000 (16:30 +0200)
committer Tobias Frost <tobi@debian.org>
Tue, 24 Jan 2023 21:39:16 +0000 (21:39 +0000)
diff --git a/libde265/decctx.h b/libde265/decctx.h

index 5e074c31db0fee9ea2934843086f3c229451baf5..aa9812b06606cd9e4a05f2a182140beda13d5283 100644 (file)
--- a/libde265/decctx.h
+++ b/libde265/decctx.h
@@ -306,6 +306,8 @@ class decoder_context : public base_context {
    /* */ pic_parameter_set* get_pps(int id)       { return pps[id].get(); }
    const pic_parameter_set* get_pps(int id) const { return pps[id].get(); }
  
+  std::shared_ptr<const pic_parameter_set> get_shared_pps(int id) { return pps[id]; }
+
    /*
    const slice_segment_header* get_SliceHeader_atCtb(int ctb) {
      return img->slices[img->get_SliceHeaderIndex_atIndex(ctb)];
diff --git a/libde265/encoder/encoder-context.cc b/libde265/encoder/encoder-context.cc

index 87f03e83103cfece0ba1ed21b53ec498593844d6..bb045d632bc723d5bb94322037a1897b74fc2f28 100644 (file)
--- a/libde265/encoder/encoder-context.cc
+++ b/libde265/encoder/encoder-context.cc
@@ -267,7 +267,7 @@ de265_error encoder_context::encode_picture_from_input_buffer()
    imgdata->shdr.slice_loop_filter_across_slices_enabled_flag = false;
    imgdata->shdr.compute_derived_values(pps.get());
  
-  imgdata->shdr.pps = &get_pps();
+  imgdata->shdr.pps = pps;
  
    //shdr.slice_pic_order_cnt_lsb = poc & 0xFF;
  
diff --git a/libde265/motion.cc b/libde265/motion.cc

index 67a36a4aa89d103b837e5f9ab3ec92e4a5681fe5..9b22d75ef1af02e4dc6b2ecf1b9990a3757896db 100644 (file)
--- a/libde265/motion.cc
+++ b/libde265/motion.cc
@@ -290,7 +290,7 @@ void generate_inter_prediction_samples(base_context* ctx,
    void*  pixels[3];
    int    stride[3];
  
-  const pic_parameter_set* pps = shdr->pps;
+  const pic_parameter_set* pps = shdr->pps.get();
    const seq_parameter_set* sps = &img->get_sps();
  
    const int SubWidthC  = sps->SubWidthC;
diff --git a/libde265/slice.cc b/libde265/slice.cc

index 1b01dbd08ef65e9a853323773ffddae451f017e2..37da4e3d8316b737e9903ab6e264d9d418c4a8f6 100644 (file)
--- a/libde265/slice.cc
+++ b/libde265/slice.cc
@@ -384,7 +384,7 @@ de265_error slice_segment_header::read(bitreader* br, decoder_context* ctx,
      return DE265_OK;
    }
  
-  pps = ctx->get_pps(slice_pic_parameter_set_id);
+  pps = ctx->get_shared_pps(slice_pic_parameter_set_id);
  
    const seq_parameter_set* sps = pps->sps;
    if (!sps->sps_read) {
@@ -872,7 +872,7 @@ de265_error slice_segment_header::read(bitreader* br, decoder_context* ctx,
    }
  
  
-  compute_derived_values(pps);
+  compute_derived_values(pps.get());
  
    *continueDecoding = true;
    return DE265_OK;
diff --git a/libde265/slice.h b/libde265/slice.h

index 0232d0a085f7e8857e9073c34c5c251569cc8a44..0f476f293ea2b8aa9120529f2ef56d3b4b09a7ac 100644 (file)
--- a/libde265/slice.h
+++ b/libde265/slice.h
@@ -33,6 +33,7 @@
  
  #include <vector>
  #include <string.h>
+#include <memory>
  
  #define MAX_NUM_REF_PICS    16
  
@@ -145,7 +146,7 @@ public:
  
  
    int  slice_index; // index through all slices in a picture  (internal only)
-  const pic_parameter_set* pps;
+  std::shared_ptr<const pic_parameter_set> pps;
  
  
    char first_slice_segment_in_pic_flag;
author	Dirk Farin <farin@struktur.de>
	Fri, 4 May 2018 14:30:37 +0000 (16:30 +0200)
committer	Tobias Frost <tobi@debian.org>
	Tue, 24 Jan 2023 21:39:16 +0000 (21:39 +0000)
libde265/decctx.h		patch \| blob \| history
libde265/encoder/encoder-context.cc		patch \| blob \| history
libde265/motion.cc		patch \| blob \| history
libde265/slice.cc		patch \| blob \| history
libde265/slice.h		patch \| blob \| history