[MPEG2 Encode] Fix Coverity CID 4398024: INTEGER_OVERFLOW in VAAPIEncoder::SetFrames

stellawuintel · gfxVPLsdm · commit 0613d11fbb1a · 2026-04-07T20:07:33.000-07:00
In SetFrames, when m_RecFrameMemID is null, ind was set to 0xff (255).
This value is then assigned into CurrReconstructedPic.Index7Bits and
CurrOriginalPic.Index7Bits, both typed as UCHAR:7 (max 127), causing
Coverity to flag INTEGER_OVERFLOW (CWE-190).

Fix: use 0x7f as the invalid frame sentinel, which is the correct
maximum value for the 7-bit field and explicitly safe-by-construction.
No functional regression: hardware already truncated 0xff to 0x7f.
diff --git a/_studio/mfx_lib/ext/mpeg2/src/mfx_mpeg2_encode_vaapi.cpp b/_studio/mfx_lib/ext/mpeg2/src/mfx_mpeg2_encode_vaapi.cpp
@@ -1406,7 +1406,7 @@ mfxStatus VAAPIEncoder::SetFrames (ExecuteBuffers* pExecuteBuffers)
     }
     else
     {
-        ind = 0xff;
+        ind = 0x7f; // max value for 7-bit Index7Bits field (invalid frame sentinel)
     }
 
     pExecuteBuffers->m_pps.CurrReconstructedPic.Index7Bits     =  mfxU8(ind < 0 ? 0 : ind);

Original file line number	Diff line number	Diff line change
`@@ -1406,7 +1406,7 @@ mfxStatus VAAPIEncoder::SetFrames (ExecuteBuffers* pExecuteBuffers)`
`1406`	`1406`	`}`
`1407`	`1407`	`else`
`1408`	`1408`	`{`
`1409`		`- ind = 0xff;`
	`1409`	`+ ind = 0x7f; // max value for 7-bit Index7Bits field (invalid frame sentinel)`
`1410`	`1410`	`}`
`1411`	`1411`
`1412`	`1412`	`pExecuteBuffers->m_pps.CurrReconstructedPic.Index7Bits = mfxU8(ind < 0 ? 0 : ind);`