Originally posted by uid313
View Post
Announcement
Collapse
No announcement yet.
FFmpeg 6.0 Will Be Big With AV1 Hardware Decoding, Many Other Features
Collapse
X
-
- Likes 1
-
Originally posted by schmidtbag View PostIf you're really that concerned about the safety of your media transcoding, I think you need to reevaluate where you're getting it from.
Like: <video src="evil.mp4" height="0" width="0" autoplay muted />
Even a trusted website can be hacked and changed into do this. Especially with all these third-party JavaScript dependencies, libraries and CDNs.Last edited by uid313; 08 February 2023, 05:09 PM.
Leave a comment:
-
Originally posted by Gusar View PostFirefox uses ffmpeg for encumbered formats (h264, mp3, aac, ...). It has built-in decoders for royalty free formats (vp9, av1, opus, ...), so youtube will work even if your linux installation does not have ffmpeg installed, but twitch for example will not. And if ffmpeg is installed, Firefox uses a runtime loader instead of linking, that's why there's no hard dependency.
And as for uid313's constant rust shilling, FFmpeg is constantly being fuzzed by google (they want to be sure nothing crazy happens with the many many uploads to youtube), so even though it's written in C, it's basically the safest library there is.
But even so, it's really hard to justify the initial investment. Not for ffmpeg, but for any C (or C++) project that has a relatively clean code base.
- Likes 1
Leave a comment:
-
Firefox uses ffmpeg for encumbered formats (h264, mp3, aac, ...). It has built-in decoders for royalty free formats (vp9, av1, opus, ...), so youtube will work even if your linux installation does not have ffmpeg installed, but twitch for example will not. And if ffmpeg is installed, Firefox uses a runtime loader instead of linking, that's why there's no hard dependency.
And as for uid313's constant rust shilling, FFmpeg is constantly being fuzzed by google (they want to be sure nothing crazy happens with the many many uploads to youtube), so even though it's written in C, it's basically the safest library there is.
- Likes 7
Leave a comment:
-
Originally posted by uid313 View PostFFmpeg is 91.5% C and 6.6% assembly. No Rust.
I wish it was written in Rust so it would be safer.
Canonical packages Firefox and Chrome as Snap packages which is great.
I wish VLC media player, mpv, MPlayer, MPlayer2, SMPlayer and other media players could also be sandboxed to improve their security in case there is a vulnerability in the FFmpeg decoder.
I'm pretty sure Rust would have eased much of the pain of implementing multithreading for CLI in this case, but you always have to watch out for ROI.
- Likes 1
Leave a comment:
-
Originally posted by Danny3 View PostOn Debian the firefox package doesn't depends on it, it just recommends it with the libavcodec59 or libavcodec-extra59 packages:
AFAIK recommended packages are never installed by default, just the dependencies.
Leave a comment:
-
Originally posted by topolinik View PostWait, wait, wait!
H.274 ???
Leave a comment:
-
Originally posted by uid313 View PostFFmpeg is 91.5% C and 6.6% assembly. No Rust.
I wish it was written in Rust so it would be safer.
- Likes 1
Leave a comment:
-
API breaks for deprecations, numerous YUV pix_fmt changes, AVFrame,
opacification, channel layouts, H.274
H.274 ???
- Likes 4
Leave a comment:
-
Originally posted by Espionage724Gotcha, let's rebuild ffmpeg in pure Java! Write once, run everywhere
- Likes 2
Leave a comment:
Leave a comment: