GitLab

Deriving uvtx for chroma-from-luma is the same for lossless.
The availability of CfL is constrained to when they match.

Removes the splat of pixels that are then overwritten.
Rename cfl_pred_1 to cfl_pred now that there is only one.

Fixes emmory leak with asan seen with 'dav1d --tilethreads 2 ...'

Makes the tile parsing code simpler. Fixes a heap buffer overflow with
clusterfuzz-testcase-minimized-dav1d_fuzzer-5726018392817664. Credit to
oss-fuzz.

When breaking out of the decoding either through an error or reaching
the limit of decoded frames the input buffer might not be fully consumed
by the previous dav1d_decode() call. Fixes a memory leak discovered
while testing with frame and tile threads with --limit.

Fixes a heap buffer overflow in
clusterfuzz-testcase-minimized-dav1d_fuzzer-5677513716531200. Credits to
oss-fuzz.

On ARM, the readtime implementations are instructions that might
not always be allowed at runtime (depending on whether the kernel
has allowed user mode code to access the cycle counter registers).
In order to allow building checkasm with the option for benchmarking,
while still running on devices where benchmarking isn't possible,
don't use readtime anywhere unless --bench has been specified.

Use GetTickCount for the seed on windows, and gettimeofday on unix.

Fixes segfaults with
david-fuzzing-data:artifacts/crash-b9015ad03b63131c25016592c3535da1268a08ad.

Fixes an input validation error due to not cleared reference frame refs
in Dav1dFrameContext with
dav1d-fuzzing-data:artifacts/crash-b9015ad03b63131c25016592c3535da1268a08ad.

Fixess heap overflow with
clusterfuzz-testcase-minimized-dav1d_fuzzer-5720347626700800
Credit to OSS-Fuzz

Fixes a null pointer dereference with
clusterfuzz-testcase-minimized-dav1d_fuzzer-5670100066107392.
Credit to OSS-Fuzz

Seen with clusterfuzz-testcase-minimized-dav1d_fuzzer-5749222154960896,
Credit to OSS-Fuzz.

This resolves a mismatch for libaom test vectors:
av1-1-b8-01-size-$SIZE.ivf
Where SIZE is in:
 18x64  196x196 196x198 196x200 196x202 196x210 196x224 196x226 202x196
202x198 202x200 202x208 202x210 202x224 202x226 210x196 210x198 210x200
210x202 210x208 210x210 210x224 210x226 226x196 226x198 226x200 226x202
226x210 226x224 226x226  66x18   66x32
Helped-by: Ronald S. Bultje <rsbultje@gmail.com>

Loop inside SIMD (instead of in the caller) so that we can handle
multiple 4px blocks per iteration, allowing for more efficient
SIMD. To make this easier, also transpose the masks for the hor
filter.

- remove edge condition in maxifzero(), since it's always true;
- make subsampled level array packed;
- handle a SB worth of 4px blocks per DSP function call, so that
  SIMD will be more efficient.

Fixes #48.

Should fix hang in #23.

Should fix CDF-related warnings in #41.

Otherwise a pathological condition can start the next frame while some
related variables are still being read. Fixes #43.

Fixes #42.

Input coefficients for transforms of sizes 16x32/32x16 and above were
larger than they should be, which in rare cases could cause tests to
incorrectly fail.

Fixes a overlapping memcpy for
dav1d-fuzzing-data:artifacts/crash-9550bf1d4b851a3a930394df4e2970d4eb50f47e.

Fixes heap overflow with
david-fuzzing-data:artifacts/crash-5c3b00780bb24ac2e123c3f172b1e4829bc98aa5.

Fixes crash with david-fuzzing-data:artifacts/crash-dcd73345cdbeabf76d8f59aa0c2b6362bfa006c1
and an out_cdf reference leak with
leak-fc8c16a84995320881aba1eb5aff19b3acf31fca (sample lost).

Fixes a picture reference leak with leak-fc8c16a84995320881aba1eb5aff19b3acf31fca.

Avoids a triggered assert with
david-fuzzing-data:artifacts/crash-f448caf378e250b7eea4fa2d1c3cd7ef4a3211ce.

Signed-off-by: James Almer <jamrial@gmail.com>