On Mon, Jan 4, 2016 at 6:13 AM, Andreas Cadhalpun <andreas.cadhal...@googlemail.com> wrote: > Hi Ganesh, > > On 04.01.2016 06:49, Ganesh Ajjanagadde wrote: >> Generally, my strengths are in algorithmic/mathematical/numerical >> improvements. I have a strong interest in security (both its >> "practical" and "theoretical" variants), but with nowhere near the >> same level of knowledge. >> >> Clarifications: by algorithmic improvements, I do not usually count >> asm code, but make exceptions in some cases. In particular, I have >> minimal knowledge of assembly and minimal motivation in learning it. >> However, I may examine at some point cases where I am convinced that a >> compiler can't do the needful. >> By theoretical aspects of security, I refer to defensive programming, >> some forms of undefined behavior (e.g rint64_clip, many ubsan >> failures), and other such things such as those flagged by Coverity. By >> practical aspects of security, I refer to things like fuzzing crashes, >> other ubsan failures, and other things flagged by Coverity or found by >> audit. > > If you're interested in fixing some forms of undefined behavior (which?) > I can send you a couple of samples triggering them.
Please do so. > I have far too many of these to be able to fix them any time soon. > > Best regards, > Andreas > _______________________________________________ > ffmpeg-devel mailing list > ffmpeg-devel@ffmpeg.org > http://ffmpeg.org/mailman/listinfo/ffmpeg-devel _______________________________________________ ffmpeg-devel mailing list ffmpeg-devel@ffmpeg.org http://ffmpeg.org/mailman/listinfo/ffmpeg-devel
