Closed Bug 55587 Opened 24 years ago Closed 24 years ago

nsAReadableString::FindChar() should return index + offset

Categories

(Core :: XPCOM, defect, P1)

Product:
Core
Component:
XPCOM
Type:
defect

Tracking

()

Status:
VERIFIED FIXED

People

(Reporter: jst, Assigned: jst)

References

Details

(Keywords: crash, Whiteboard: [rtm++] fix in hand reviewed and approved) 

nsAReadableString::FindChar() is incorrectly returning the index of the
character it finds from the offset in stead of the index from the beginning of
the string. This patch fixes the problem:

Index: nsAReadableString.h
===================================================================
RCS file: /cvsroot/mozilla/xpcom/ds/nsAReadableString.h,v
retrieving revision 1.82
retrieving revision 1.82.12.1
diff -u -r1.82 -r1.82.12.1
--- nsAReadableString.h 2000/09/13 02:56:13     1.82
+++ nsAReadableString.h 2000/10/06 23:15:29     1.82.12.1
@@ -731,7 +731,7 @@
         PRInt32 fragmentLength = iter.size_forward();
         const CharT* charFoundAt = nsCharTraits<CharT>::find(iter.get(),
fragmentLength, aChar);
         if ( charFoundAt )
-          return lengthSearched + (charFoundAt-iter.get());
+          return lengthSearched + (charFoundAt-iter.get()) + aOffset;

         lengthSearched += fragmentLength;
         iter.advance(fragmentLength);
This bug causes infinite loops and incorrect construction of really long strings
that causes crashes and all kinds of nasty things. Nominating for rtm, this is a
blocker for bug 50742.
Blocks: 50742
Severity: normal → critical
Keywords: correctness, crash, rtm
Priority: P3 → P1
sr=scc

r=kin@netscape.com

Note for PDT:

This bug will create *HUGE* strings, when saving HTML that contains a Text node 
with leading whitespace. So huge I ran out of memory on my 512Mb 
PC. I urge you to make this rtm++. :-)

This bug is present on the Trunk and Netscape_20000922_BRANCH.
Assignee: scc → jst
PDT: As the module owner for strings, I have marked this bug [rtm+] for your
consideration.
Whiteboard: [rtm+] fix in hand reviewed and approved
rtm++
Whiteboard: [rtm+] fix in hand reviewed and approved → [rtm++] fix in hand reviewed and approved
Fixed on the trunk and branch.
Status: NEW → RESOLVED
Closed: 24 years ago
Resolution: --- → FIXED
kin - can you help to see if this bug is now gone on the branch?  Thanks.
I just verified on Win32 that the bug no longer happens on the 
Netscape_20000922_BRANCH.
Status: RESOLVED → VERIFIED
You need to log in before you can comment on or make changes to this bug.