Closed Bug 55587 Opened 25 years ago Closed 25 years ago

nsAReadableString::FindChar() should return index + offset

Categories

(Core :: XPCOM, defect, P1)

Product:
Core
Component:
XPCOM
Type:
defect

Tracking

()

Status:
VERIFIED FIXED

People

(Reporter: jst, Assigned: jst)

References

Details

(Keywords: crash, Whiteboard: [rtm++] fix in hand reviewed and approved)

nsAReadableString::FindChar() is incorrectly returning the index of the character it finds from the offset in stead of the index from the beginning of the string. This patch fixes the problem: Index: nsAReadableString.h =================================================================== RCS file: /cvsroot/mozilla/xpcom/ds/nsAReadableString.h,v retrieving revision 1.82 retrieving revision 1.82.12.1 diff -u -r1.82 -r1.82.12.1 --- nsAReadableString.h 2000/09/13 02:56:13 1.82 +++ nsAReadableString.h 2000/10/06 23:15:29 1.82.12.1 @@ -731,7 +731,7 @@ PRInt32 fragmentLength = iter.size_forward(); const CharT* charFoundAt = nsCharTraits<CharT>::find(iter.get(), fragmentLength, aChar); if ( charFoundAt ) - return lengthSearched + (charFoundAt-iter.get()); + return lengthSearched + (charFoundAt-iter.get()) + aOffset; lengthSearched += fragmentLength; iter.advance(fragmentLength);
This bug causes infinite loops and incorrect construction of really long strings that causes crashes and all kinds of nasty things. Nominating for rtm, this is a blocker for bug 50742.
Blocks: 50742
Severity: normal → critical
Keywords: correctness, crash, rtm
Priority: P3 → P1
sr=scc
r=kin@netscape.com Note for PDT: This bug will create *HUGE* strings, when saving HTML that contains a Text node with leading whitespace. So huge I ran out of memory on my 512Mb PC. I urge you to make this rtm++. :-) This bug is present on the Trunk and Netscape_20000922_BRANCH.
Assignee: scc → jst
PDT: As the module owner for strings, I have marked this bug [rtm+] for your consideration.
Whiteboard: [rtm+] fix in hand reviewed and approved
rtm++
Whiteboard: [rtm+] fix in hand reviewed and approved → [rtm++] fix in hand reviewed and approved
Fixed on the trunk and branch.
Status: NEW → RESOLVED
Closed: 25 years ago
Resolution: --- → FIXED
kin - can you help to see if this bug is now gone on the branch? Thanks.
I just verified on Win32 that the bug no longer happens on the Netscape_20000922_BRANCH.
Status: RESOLVED → VERIFIED
You need to log in before you can comment on or make changes to this bug.