enricobuehler
3526517eb1
ci / rust (push) Failing after 45s
apple / swift (push) Successful in 57s
ci / web (push) Successful in 39s
ci / docs-site (push) Successful in 38s
windows-host / package (push) Successful in 3m26s
android / android (push) Successful in 3m40s
windows-msix / package (arm64, C:\Users\Public\ffmpeg-arm64, aarch64-pc-windows-msvc, C:\t-a64) (push) Successful in 1m24s
deb / build-publish (push) Successful in 2m10s
windows-msix / package (x64, C:\Users\Public\ffmpeg, x86_64-pc-windows-msvc, C:\t) (push) Successful in 1m22s
decky / build-publish (push) Successful in 25s
ci / bench (push) Successful in 4m44s
docker / build-push (., web/Dockerfile, punktfunk-web) (push) Successful in 16s
windows / build (aarch64-pc-windows-msvc) (push) Successful in 1m4s
windows / build (x86_64-pc-windows-msvc) (push) Successful in 1m7s
docker / build-push (--build-arg FEDORA_VERSION=44, ci, ci/fedora-rpm.Dockerfile, punktfunk-fedora44-rpm) (push) Successful in 3m5s
docker / build-push (ci, ci/fedora-rpm.Dockerfile, punktfunk-fedora-rpm) (push) Successful in 2m45s
docker / build-push (docs-site, docs-site/Dockerfile, punktfunk-docs) (push) Successful in 30s
docker / build-push (ci, ci/rust-ci.Dockerfile, punktfunk-rust-ci) (push) Successful in 2m37s
flatpak / build-publish (push) Successful in 4m17s
rpm / build-publish (bazzite, punktfunk-fedora-rpm) (push) Successful in 8m30s
docker / deploy-docs (push) Successful in 23s
rpm / build-publish (fedora-44, punktfunk-fedora44-rpm) (push) Successful in 7m53s
Two strands, entangled in punktfunk1.rs, committed together (one builds-green tree). HDR pipeline Step 0 — glass-to-glass colour-metadata transport (docs/hdr-pipeline-plan.md): - Protocol/ABI: ColorInfo on the Welcome + a 0xCE HdrMeta datagram carry the source colour space + HDR10 static mastering metadata (quic.rs, abi.rs connect_ex5 fixing caps=0). - New platform-independent, unit-tested HDR static-metadata helpers (hdr.rs): chromaticities (1/50000), mastering luminance (0.0001 cd/m2), MaxCLL/MaxFALL in HDR10/ST.2086 units. - Capture/encode hooks (capture.rs, encode.rs set_hdr_meta) + Linux client / probe plumbing. Security-audit hardening — top 3 from docs/security-review.md, each adversarially verified: - #1 [HIGH] Secret file permissions. The host key.pem/cert.pem and both trust stores are now written owner-only: 0600 + dir 0700 on Unix (mirrors mgmt_token), best-effort SYSTEM/Administrators/OWNER-only icacls DACL on Windows (%ProgramData% is Users-readable). Closes a local key-disclosure -> host-impersonation gap. New gamestream::{create_private_dir, write_secret_file} + a 0600 regression test. - #2 [HIGH] Native SPAKE2 PIN is single-use. The PIN is consumed the moment the host sends its key-confirmation (which lets the client test its one guess), before reading the proof, so any completed attempt -- right OR wrong -- disarms the window. A wrong PIN isn't observable host-side (the client aborts before sending its proof), so consuming on first attempt is what delivers the documented "one online guess" instead of an unbounded brute-force of the static 4-digit PIN. Test verifies single-use. - #3 [MEDIUM] RTSP packetSize is bounded ([64,2048] in stream_config) and VideoPacketizer::new uses saturating .max(1), killing a PRE-AUTH div-by-zero/underflow panic of the video thread. Tests for {0,15,16,17} + out-of-range rejection. fmt + clippy -D warnings clean; full workspace test suite green (93 host tests). Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
463 lines
18 KiB
Rust
463 lines
18 KiB
Rust
//! Video decode: reassembled HEVC access units → frames for the GTK presenter.
|
|
//!
|
|
//! Two backends, picked at session start (override: `PUNKTFUNK_DECODER=software|vaapi`):
|
|
//!
|
|
//! * **VAAPI** (Intel/AMD): libavcodec hwaccel decodes on the GPU; each frame is mapped
|
|
//! to a DRM-PRIME dmabuf (`av_hwframe_map`, zero copy) and handed to the UI as fds +
|
|
//! plane layout for `GdkDmabufTextureBuilder` — inside `GtkGraphicsOffload` that is the
|
|
//! decoder-to-subsurface path, direct-scanout eligible when fullscreen. NVIDIA boxes
|
|
//! have no usable VAAPI (nvidia-vaapi-driver is broken for this — Moonlight blacklists
|
|
//! it); device creation fails there and the software path takes over. A mid-session
|
|
//! VAAPI error also falls back — the host's IDR/RFI recovery resynchronizes.
|
|
//! * **Software**: libavcodec on the CPU + swscale to RGBA (`GdkMemoryTexture` upload).
|
|
//! Slice threading only — frame threading would add a frame of latency per thread.
|
|
//!
|
|
//! Both run `AV_CODEC_FLAG_LOW_DELAY`; the host encodes zero-reorder streams (no
|
|
//! B-frames, in-band parameter sets on every IDR), so decode is strictly one-in/one-out.
|
|
|
|
use anyhow::{anyhow, bail, Context as _, Result};
|
|
use ffmpeg::format::Pixel;
|
|
use ffmpeg::software::scaling;
|
|
use ffmpeg::util::frame::Video as AvFrame;
|
|
use ffmpeg_next as ffmpeg;
|
|
use std::os::fd::RawFd;
|
|
use std::ptr;
|
|
|
|
pub enum DecodedFrame {
|
|
Cpu(CpuFrame),
|
|
Dmabuf(DmabufFrame),
|
|
}
|
|
|
|
/// RGBA pixels for `GdkMemoryTexture` (which takes a stride).
|
|
pub struct CpuFrame {
|
|
pub width: u32,
|
|
pub height: u32,
|
|
/// RGBA row stride in bytes (≥ width*4 — swscale pads rows for SIMD).
|
|
pub stride: usize,
|
|
pub rgba: Vec<u8>,
|
|
}
|
|
|
|
/// A decoded frame still on the GPU: dmabuf fds + plane layout for
|
|
/// `GdkDmabufTextureBuilder`. The fds belong to `guard`'s mapped DRM frame — they stay
|
|
/// valid until the guard drops (the texture's release func).
|
|
pub struct DmabufFrame {
|
|
pub width: u32,
|
|
pub height: u32,
|
|
/// Combined DRM fourcc of the whole surface (NV12 for 8-bit VAAPI output), derived
|
|
/// from the decoder's software format — NOT the per-plane component formats.
|
|
pub fourcc: u32,
|
|
pub modifier: u64,
|
|
pub planes: Vec<DmabufPlane>,
|
|
pub guard: DrmFrameGuard,
|
|
}
|
|
|
|
pub struct DmabufPlane {
|
|
pub fd: RawFd,
|
|
pub offset: u32,
|
|
pub stride: u32,
|
|
}
|
|
|
|
/// Owns the mapped DRM-PRIME `AVFrame` (which in turn references the VAAPI surface).
|
|
/// Dropping it releases the surface back to the decoder pool and closes the fds.
|
|
pub struct DrmFrameGuard(*mut ffmpeg::ffi::AVFrame);
|
|
// An AVFrame is plain refcounted data; freeing it from the GTK main thread is fine.
|
|
unsafe impl Send for DrmFrameGuard {}
|
|
|
|
impl Drop for DrmFrameGuard {
|
|
fn drop(&mut self) {
|
|
unsafe { ffmpeg::ffi::av_frame_free(&mut self.0) };
|
|
}
|
|
}
|
|
|
|
enum Backend {
|
|
Vaapi(VaapiDecoder),
|
|
Software(SoftwareDecoder),
|
|
}
|
|
|
|
pub struct Decoder {
|
|
backend: Backend,
|
|
}
|
|
|
|
impl Decoder {
|
|
pub fn new() -> Result<Decoder> {
|
|
ffmpeg::init().context("ffmpeg init")?;
|
|
let choice = std::env::var("PUNKTFUNK_DECODER").unwrap_or_default();
|
|
if choice != "software" {
|
|
match VaapiDecoder::new() {
|
|
Ok(v) => {
|
|
tracing::info!("VAAPI hardware decode active (zero-copy dmabuf)");
|
|
return Ok(Decoder {
|
|
backend: Backend::Vaapi(v),
|
|
});
|
|
}
|
|
Err(e) => {
|
|
if choice == "vaapi" {
|
|
return Err(e.context("PUNKTFUNK_DECODER=vaapi but VAAPI failed"));
|
|
}
|
|
tracing::info!(reason = %e, "VAAPI unavailable — software decode");
|
|
}
|
|
}
|
|
}
|
|
Ok(Decoder {
|
|
backend: Backend::Software(SoftwareDecoder::new()?),
|
|
})
|
|
}
|
|
|
|
/// Feed one access unit; returns the decoded frame (the host's streams are
|
|
/// one-in/one-out). A software decode error after packet loss is survivable — log
|
|
/// upstream and keep feeding. A VAAPI error demotes to software for the rest of the
|
|
/// session (broken driver, e.g. nvidia-vaapi-driver) — the next IDR resynchronizes.
|
|
pub fn decode(&mut self, au: &[u8]) -> Result<Option<DecodedFrame>> {
|
|
match &mut self.backend {
|
|
Backend::Vaapi(v) => match v.decode(au) {
|
|
Ok(f) => Ok(f.map(DecodedFrame::Dmabuf)),
|
|
Err(e) => {
|
|
tracing::warn!(error = %e, "VAAPI decode failed — falling back to software");
|
|
self.backend = Backend::Software(SoftwareDecoder::new()?);
|
|
Ok(None)
|
|
}
|
|
},
|
|
Backend::Software(s) => Ok(s.decode(au)?.map(DecodedFrame::Cpu)),
|
|
}
|
|
}
|
|
}
|
|
|
|
// --- software backend ---------------------------------------------------------------
|
|
|
|
struct SoftwareDecoder {
|
|
decoder: ffmpeg::decoder::Video,
|
|
/// Rebuilt whenever the decoded format/size changes (mid-stream `Reconfigure`).
|
|
sws: Option<(scaling::Context, Pixel, u32, u32)>,
|
|
}
|
|
|
|
impl SoftwareDecoder {
|
|
fn new() -> Result<SoftwareDecoder> {
|
|
let codec =
|
|
ffmpeg::decoder::find(ffmpeg::codec::Id::HEVC).ok_or(anyhow!("no HEVC decoder"))?;
|
|
let mut ctx = ffmpeg::codec::Context::new_with_codec(codec);
|
|
unsafe {
|
|
let raw = ctx.as_mut_ptr();
|
|
(*raw).flags |= ffmpeg::ffi::AV_CODEC_FLAG_LOW_DELAY as i32;
|
|
// Slice threading adds no frame delay (frame threading adds thread_count-1).
|
|
(*raw).thread_type = ffmpeg::ffi::FF_THREAD_SLICE;
|
|
(*raw).thread_count = 0; // auto
|
|
}
|
|
let decoder = ctx.decoder().video().context("open HEVC decoder")?;
|
|
Ok(SoftwareDecoder { decoder, sws: None })
|
|
}
|
|
|
|
fn decode(&mut self, au: &[u8]) -> Result<Option<CpuFrame>> {
|
|
let packet = ffmpeg::Packet::copy(au);
|
|
self.decoder
|
|
.send_packet(&packet)
|
|
.map_err(|e| anyhow!("send_packet: {e}"))?;
|
|
let mut frame = AvFrame::empty();
|
|
let mut out = None;
|
|
while self.decoder.receive_frame(&mut frame).is_ok() {
|
|
out = Some(self.convert_rgba(&frame)?);
|
|
}
|
|
Ok(out)
|
|
}
|
|
|
|
fn convert_rgba(&mut self, frame: &AvFrame) -> Result<CpuFrame> {
|
|
let (fmt, w, h) = (frame.format(), frame.width(), frame.height());
|
|
let rebuild =
|
|
!matches!(&self.sws, Some((_, f, sw, sh)) if *f == fmt && *sw == w && *sh == h);
|
|
if rebuild {
|
|
let mut ctx =
|
|
scaling::Context::get(fmt, w, h, Pixel::RGBA, w, h, scaling::Flags::POINT)
|
|
.context("swscale context")?;
|
|
// swscale defaults to BT.601 coefficients, but our SDR HEVC stream is BT.709 limited
|
|
// range (the host signals BT.709 in the VUI). Without this, YUV→RGB decodes with BT.601
|
|
// and SDR colours shift (greens/reds off). Source = limited/studio YUV, destination =
|
|
// full-range RGB. Inverse of the host's RGB→YUV CSC (encode/vaapi.rs).
|
|
const SWS_CS_ITU709: i32 = 1;
|
|
unsafe {
|
|
let cs709 = ffmpeg::ffi::sws_getCoefficients(SWS_CS_ITU709);
|
|
ffmpeg::ffi::sws_setColorspaceDetails(
|
|
ctx.as_mut_ptr(),
|
|
cs709, // inv_table: source (YUV) coefficients — BT.709
|
|
0, // srcRange: 0 = limited/studio (MPEG)
|
|
cs709, // table: destination coefficients (ignored for RGB output)
|
|
1, // dstRange: 1 = full-range RGB
|
|
0,
|
|
1 << 16,
|
|
1 << 16, // brightness, contrast, saturation (defaults)
|
|
);
|
|
}
|
|
self.sws = Some((ctx, fmt, w, h));
|
|
}
|
|
let (sws, ..) = self.sws.as_mut().unwrap();
|
|
let mut rgba = AvFrame::empty();
|
|
sws.run(frame, &mut rgba).map_err(|e| anyhow!("sws: {e}"))?;
|
|
Ok(CpuFrame {
|
|
width: w,
|
|
height: h,
|
|
stride: rgba.stride(0),
|
|
rgba: rgba.data(0).to_vec(),
|
|
})
|
|
}
|
|
}
|
|
|
|
// --- VAAPI backend --------------------------------------------------------------------
|
|
//
|
|
// Raw FFI: ffmpeg-next has no hwaccel wrappers. All pointers are owned here and freed in
|
|
// Drop; decoded surfaces transfer out through DrmFrameGuard.
|
|
|
|
const AVERROR_EAGAIN: i32 = -11; // -EAGAIN; Linux-only crate
|
|
|
|
fn averr(what: &str, code: i32) -> anyhow::Error {
|
|
anyhow!("{what}: {}", ffmpeg::Error::from(code))
|
|
}
|
|
|
|
/// libavcodec offers the formats it can decode into; pick the VAAPI hw surface. Falling
|
|
/// back to the first (software) entry would silently decode on the CPU *and* break our
|
|
/// dmabuf mapping — return NONE instead so the error surfaces and the session demotes
|
|
/// to the software backend explicitly.
|
|
unsafe extern "C" fn pick_vaapi(
|
|
_ctx: *mut ffmpeg::ffi::AVCodecContext,
|
|
mut list: *const ffmpeg::ffi::AVPixelFormat,
|
|
) -> ffmpeg::ffi::AVPixelFormat {
|
|
unsafe {
|
|
while *list != ffmpeg::ffi::AVPixelFormat::AV_PIX_FMT_NONE {
|
|
if *list == ffmpeg::ffi::AVPixelFormat::AV_PIX_FMT_VAAPI {
|
|
return ffmpeg::ffi::AVPixelFormat::AV_PIX_FMT_VAAPI;
|
|
}
|
|
list = list.add(1);
|
|
}
|
|
}
|
|
ffmpeg::ffi::AVPixelFormat::AV_PIX_FMT_NONE
|
|
}
|
|
|
|
struct VaapiDecoder {
|
|
ctx: *mut ffmpeg::ffi::AVCodecContext,
|
|
hw_device: *mut ffmpeg::ffi::AVBufferRef,
|
|
packet: *mut ffmpeg::ffi::AVPacket,
|
|
frame: *mut ffmpeg::ffi::AVFrame,
|
|
}
|
|
|
|
// Single-owner pointers, only touched from the session pump thread.
|
|
unsafe impl Send for VaapiDecoder {}
|
|
|
|
impl VaapiDecoder {
|
|
fn new() -> Result<VaapiDecoder> {
|
|
use ffmpeg::ffi;
|
|
unsafe {
|
|
let mut hw_device: *mut ffi::AVBufferRef = ptr::null_mut();
|
|
let r = ffi::av_hwdevice_ctx_create(
|
|
&mut hw_device,
|
|
ffi::AVHWDeviceType::AV_HWDEVICE_TYPE_VAAPI,
|
|
ptr::null(),
|
|
ptr::null_mut(),
|
|
0,
|
|
);
|
|
if r < 0 {
|
|
bail!("no VAAPI device ({})", ffmpeg::Error::from(r));
|
|
}
|
|
let codec = ffi::avcodec_find_decoder(ffi::AVCodecID::AV_CODEC_ID_HEVC);
|
|
if codec.is_null() {
|
|
ffi::av_buffer_unref(&mut hw_device);
|
|
bail!("no HEVC decoder");
|
|
}
|
|
let ctx = ffi::avcodec_alloc_context3(codec);
|
|
(*ctx).hw_device_ctx = ffi::av_buffer_ref(hw_device);
|
|
(*ctx).get_format = Some(pick_vaapi);
|
|
(*ctx).flags |= ffi::AV_CODEC_FLAG_LOW_DELAY as i32;
|
|
(*ctx).thread_count = 1; // hwaccel: threads only add latency
|
|
let r = ffi::avcodec_open2(ctx, codec, ptr::null_mut());
|
|
if r < 0 {
|
|
let mut ctx = ctx;
|
|
ffi::avcodec_free_context(&mut ctx);
|
|
let mut hw_device = hw_device;
|
|
ffi::av_buffer_unref(&mut hw_device);
|
|
bail!("avcodec_open2: {}", ffmpeg::Error::from(r));
|
|
}
|
|
Ok(VaapiDecoder {
|
|
ctx,
|
|
hw_device,
|
|
packet: ffi::av_packet_alloc(),
|
|
frame: ffi::av_frame_alloc(),
|
|
})
|
|
}
|
|
}
|
|
|
|
fn decode(&mut self, au: &[u8]) -> Result<Option<DmabufFrame>> {
|
|
use ffmpeg::ffi;
|
|
unsafe {
|
|
let r = ffi::av_new_packet(self.packet, au.len() as i32);
|
|
if r < 0 {
|
|
return Err(averr("av_new_packet", r));
|
|
}
|
|
ptr::copy_nonoverlapping(au.as_ptr(), (*self.packet).data, au.len());
|
|
let r = ffi::avcodec_send_packet(self.ctx, self.packet);
|
|
ffi::av_packet_unref(self.packet);
|
|
if r < 0 {
|
|
return Err(averr("send_packet", r));
|
|
}
|
|
let mut out = None;
|
|
loop {
|
|
let r = ffi::avcodec_receive_frame(self.ctx, self.frame);
|
|
if r == AVERROR_EAGAIN {
|
|
break;
|
|
}
|
|
if r < 0 {
|
|
return Err(averr("receive_frame", r));
|
|
}
|
|
out = Some(self.map_dmabuf()?); // newest wins; older guards drop here
|
|
ffi::av_frame_unref(self.frame);
|
|
}
|
|
Ok(out)
|
|
}
|
|
}
|
|
|
|
/// Map the VAAPI surface to DRM PRIME (zero copy) and lift the descriptor into a
|
|
/// `DmabufFrame`. The mapped frame keeps the surface alive via its buffer refs.
|
|
///
|
|
/// FFmpeg's VAAPI export uses `VA_EXPORT_SURFACE_SEPARATE_LAYERS`, so an NV12 surface
|
|
/// comes back as TWO layers (`R8` luma + `GR88` chroma), each one plane — NOT a single
|
|
/// `NV12` layer. The previous code took `layers[0]` only: GTK then saw an `R8`
|
|
/// single-plane texture with the chroma dropped, painting the screen green. The fix:
|
|
/// derive the COMBINED fourcc from the decoder's software pixel format (NV12 →
|
|
/// `DRM_FORMAT_NV12`) and flatten every plane across every layer in order (Y then UV).
|
|
unsafe fn map_dmabuf(&mut self) -> Result<DmabufFrame> {
|
|
use ffmpeg::ffi;
|
|
unsafe {
|
|
if (*self.frame).format != ffi::AVPixelFormat::AV_PIX_FMT_VAAPI as i32 {
|
|
bail!("decoder returned a software frame (no VAAPI surface)");
|
|
}
|
|
// The real pixel layout lives on the hardware frames context, not the
|
|
// DRM-PRIME layer formats (those are the per-plane R8/GR88 component formats).
|
|
let sw_format = {
|
|
let hwfc = (*self.frame).hw_frames_ctx;
|
|
if hwfc.is_null() {
|
|
bail!("VAAPI frame without a hardware frames context");
|
|
}
|
|
(*((*hwfc).data as *const ffi::AVHWFramesContext)).sw_format
|
|
};
|
|
let fourcc = drm_fourcc_for(sw_format)
|
|
.ok_or_else(|| anyhow!("unsupported VAAPI output format {sw_format:?}"))?;
|
|
|
|
let drm = ffi::av_frame_alloc();
|
|
(*drm).format = ffi::AVPixelFormat::AV_PIX_FMT_DRM_PRIME as i32;
|
|
let r = ffi::av_hwframe_map(drm, self.frame, ffi::AV_HWFRAME_MAP_READ as i32);
|
|
if r < 0 {
|
|
let mut drm = drm;
|
|
ffi::av_frame_free(&mut drm);
|
|
return Err(averr("av_hwframe_map", r));
|
|
}
|
|
let desc = (*drm).data[0] as *const ffi::AVDRMFrameDescriptor;
|
|
let guard = DrmFrameGuard(drm);
|
|
let d = &*desc;
|
|
if d.nb_layers < 1 || d.nb_objects < 1 {
|
|
bail!("DRM descriptor without layers/objects");
|
|
}
|
|
|
|
// Flatten planes across ALL layers, in declared order — the combined fourcc's
|
|
// plane order (Y, then UV for NV12) matches the layer order FFmpeg emits.
|
|
let mut planes = Vec::new();
|
|
for layer in &d.layers[..d.nb_layers as usize] {
|
|
for p in &layer.planes[..layer.nb_planes as usize] {
|
|
let obj = &d.objects[p.object_index as usize];
|
|
planes.push(DmabufPlane {
|
|
fd: obj.fd,
|
|
offset: p.offset as u32,
|
|
stride: p.pitch as u32,
|
|
});
|
|
}
|
|
}
|
|
|
|
// The whole surface shares one tiling modifier (one BO on radeonsi); GTK takes
|
|
// a single modifier for the texture.
|
|
let modifier = d.objects[0].format_modifier;
|
|
|
|
log_descriptor_once(d, sw_format, fourcc, modifier);
|
|
|
|
Ok(DmabufFrame {
|
|
width: (*self.frame).width as u32,
|
|
height: (*self.frame).height as u32,
|
|
fourcc,
|
|
modifier,
|
|
planes,
|
|
guard,
|
|
})
|
|
}
|
|
}
|
|
}
|
|
|
|
/// `fourcc(a,b,c,d)` — the DRM FourCC packing (little-endian, `a | b<<8 | c<<16 | d<<24`).
|
|
const fn fourcc(a: u8, b: u8, c: u8, d: u8) -> u32 {
|
|
(a as u32) | ((b as u32) << 8) | ((c as u32) << 16) | ((d as u32) << 24)
|
|
}
|
|
|
|
/// The combined DRM FourCC for a decoder software pixel format. The host streams 8-bit
|
|
/// 4:2:0 (NV12); P010 is here for the eventual 10-bit/HDR path.
|
|
fn drm_fourcc_for(sw: ffmpeg_next::ffi::AVPixelFormat) -> Option<u32> {
|
|
use ffmpeg_next::ffi::AVPixelFormat::*;
|
|
Some(match sw {
|
|
AV_PIX_FMT_NV12 => fourcc(b'N', b'V', b'1', b'2'),
|
|
AV_PIX_FMT_P010LE => fourcc(b'P', b'0', b'1', b'0'),
|
|
_ => return None,
|
|
})
|
|
}
|
|
|
|
/// One-time dump of the DRM descriptor layout (objects, layers, planes, modifier) — so a
|
|
/// new client/driver combination's real layout is visible in the logs without a debugger.
|
|
fn log_descriptor_once(
|
|
d: &ffmpeg_next::ffi::AVDRMFrameDescriptor,
|
|
sw: ffmpeg_next::ffi::AVPixelFormat,
|
|
fourcc: u32,
|
|
modifier: u64,
|
|
) {
|
|
use std::sync::atomic::{AtomicBool, Ordering};
|
|
static ONCE: AtomicBool = AtomicBool::new(true);
|
|
if !ONCE.swap(false, Ordering::Relaxed) {
|
|
return;
|
|
}
|
|
let layers: Vec<(u32, i32)> = d.layers[..d.nb_layers.max(0) as usize]
|
|
.iter()
|
|
.map(|l| (l.format, l.nb_planes))
|
|
.collect();
|
|
tracing::info!(
|
|
sw_format = ?sw,
|
|
chosen_fourcc = format_args!("{:#010x}", fourcc),
|
|
nb_objects = d.nb_objects,
|
|
nb_layers = d.nb_layers,
|
|
?layers,
|
|
modifier = format_args!("{:#018x}", modifier),
|
|
"VAAPI dmabuf descriptor layout (first frame)"
|
|
);
|
|
}
|
|
|
|
impl Drop for VaapiDecoder {
|
|
fn drop(&mut self) {
|
|
use ffmpeg::ffi;
|
|
unsafe {
|
|
ffi::av_packet_free(&mut self.packet);
|
|
ffi::av_frame_free(&mut self.frame);
|
|
ffi::avcodec_free_context(&mut self.ctx);
|
|
ffi::av_buffer_unref(&mut self.hw_device);
|
|
}
|
|
}
|
|
}
|
|
|
|
#[cfg(test)]
|
|
mod tests {
|
|
use super::*;
|
|
|
|
/// Lock the DRM FourCC magic numbers against typos — these are the exact values
|
|
/// `<drm_fourcc.h>` defines, and a wrong one is what painted the Steam Deck green.
|
|
#[test]
|
|
fn drm_fourcc_constants() {
|
|
assert_eq!(fourcc(b'N', b'V', b'1', b'2'), 0x3231_564e);
|
|
assert_eq!(fourcc(b'P', b'0', b'1', b'0'), 0x3031_3050);
|
|
assert_eq!(
|
|
drm_fourcc_for(ffmpeg::ffi::AVPixelFormat::AV_PIX_FMT_NV12),
|
|
Some(0x3231_564e)
|
|
);
|
|
assert_eq!(
|
|
drm_fourcc_for(ffmpeg::ffi::AVPixelFormat::AV_PIX_FMT_RGBA),
|
|
None
|
|
);
|
|
}
|
|
}
|