Closed Bug 120047 Opened 23 years ago Closed 23 years ago

crash while loading http://www.lupa.cz/anketa.phtml [@ ReadCMAPTableFormat4]

Categories

(Core :: Internationalization, defect)

x86
Windows NT
defect
Not set
critical

Tracking

()

VERIFIED FIXED

People

(Reporter: aha, Assigned: shanjian)

References

()

Details

(Keywords: crash, topcrash, Whiteboard: [driver:dbaron])

Crash Data

Attachments

(3 files)

Mozilla/5.0 (Windows; U; WinNT4.0; en-US; rv:0.9.7+) Gecko/20020114

Crashing while loading http://www.lupa.cz/anketa.phtml
TB1669681X, TB1669672W, TB1669668M
Keywords: crash
wfm using build 2002011103 on Win2k.
Stephen, can you retreive Talkback data please ?
20020111/WinNT4 is also crashing, M097/WinNT4 is okay.
Wfm with 2002011403/ Win98SE.
WFM Linux 2002011421
WFM 2002011503/WinNT4
ReadCMAPTableFormat4
[d:\builds\seamonkey\mozilla\gfx\src\windows\nsFontMetricsWin.cpp, line 1379]
nsFontMetricsWin::GetFontCCMAP
[d:\builds\seamonkey\mozilla\gfx\src\windows\nsFontMetricsWin.cpp, line 1486]
nsFontMetricsWin::GetCCMAP
[d:\builds\seamonkey\mozilla\gfx\src\windows\nsFontMetricsWin.cpp, line 1589]
nsFontMetricsWin::FindGlobalFont
[d:\builds\seamonkey\mozilla\gfx\src\windows\nsFontMetricsWin.cpp, line 2284]
nsFontMetricsWin::FindFont
[d:\builds\seamonkey\mozilla\gfx\src\windows\nsFontMetricsWin.cpp, line 3090]
nsFontMetricsWin::LocateFont
[d:\builds\seamonkey\mozilla\gfx\src\windows\nsFontMetricsWin.cpp, line 3433]
marking NEW and ->Internationalization
CC : rbs@maths.uq.edu.au who added many code in file
Assignee: asa → yokoyama
Status: UNCONFIRMED → NEW
Component: Browser-General → Internationalization
Ever confirmed: true
QA Contact: doronr → ruixu
Reporter:
1. Which version/language's Service Pack are you using on your WinNT4?
2. Have you installed with "Recommended" mode?
1) I have WinNT's SP6a, but I don't know about any language service packs
installed. With MSIE I installed Pan-European and Japanese Language Supports. If
this is not requested information, tell me how to get it.
2) Installation of what? WinNT? MSIE with language packs? Something else? Always
in custom mode...  
line 1379 where the crash is happening is:

            PRUint16 glyph = idDelta[i] + *g;
>>>crash    if (aIsSpace[glyph]) {
              if (SHOULD_BE_SPACE_CHAR(c)) {
                ADD_GLYPH(aMap, c);
              } 
            }
            else {
              ADD_GLYPH(aMap, c);
            }

This is a little regression from shanjian's attachment 63907 [details] [diff] [review] on bug 118606.
The old code that was moved into the newly added function ReadCMAPTableFormat4()
was testing against maxGlyph first:

-            PRUint16 glyph = idDelta[i] + *g;
-            if (glyph < maxGlyph) {
-              if (isSpace[glyph]) {
-                if (SHOULD_BE_SPACE_CHAR(c)) {
-                  ADD_GLYPH(map, c);
-                }
-              }
-              else {
-                ADD_GLYPH(map, c);
-              }
-            }

So the fix is simply to pass maxGlyph [computed by GetSpaces()] back to the new 
function so as to re-instate the test that used to be there.

Re-assigning to shanjian, and giving r=rbs in anticipation so that the simple 
fix to the regression can go in m0.9.8 without undue procrastination.

[The bug may be hard to reproduce since it depends on the font that happens to 
be used -- I am not hitting bug myself.]
Assignee: yokoyama → shanjian
Blocks: 115520
Keywords: topcrash
Summary: crash while loading http://www.lupa.cz/anketa.phtml → crash while loading http://www.lupa.cz/anketa.phtml [@ ReadCMAPTableFormat4]
Attached file Windows Trunk info
In comment #11 rbs says "The bug may be hard to reproduce since it depends on
the font that happens to be used." 

Attaching info from today's Trunk reports with a Windows stack and URLs,
including crashing sites to test when we get a fix.
Attached patch proposed fixSplinter Review
I could not reproduce the problem on my box, but I believe that is the problem. 
Could somebody who experience the crash help to verify this patch? thanks. 
Status: NEW → ASSIGNED
Attachment #65271 - Flags: review+
Marc, Chris,
Could one of you give sr? 
Comment on attachment 65271 [details] [diff] [review]
proposed fix

sr=waterson
Attachment #65271 - Flags: superreview+
I tried on JA WinNT4.0 pro + JA SP6a, couldn't repro it.

Reporter: What is your machine's environment? Are you using an EN WinNT4.0 Pro + EN SP6a with Pan-European and Japanese Language Supports? Is it supporting for font only? or for both font and IME? 
fix checked in. 
Status: ASSIGNED → RESOLVED
Closed: 23 years ago
Resolution: --- → FIXED
Yep, I'm using EN WinNT4.0 Workstation + EN SP6a with Pan-European and Japanese
Language Supports, Czech language is setted as default locale. Japanese IME I
uninstalled long before this problem. I have also installed Adobe Type Manager
with many fonts, but on reported page are used only common fonts.
There were 9 reports of crashes with this stack in the 1-17 builds.
So the problem is not really fixed. We need to reopen this bug. 
Does anybody has a solid reproducible steps?
Status: RESOLVED → REOPENED
Resolution: FIXED → ---
My bad. I only added the assurance judgement in one path not the other. 
This patch should make it complete. seek r/sr/a 
Status: REOPENED → ASSIGNED
r/sr/a -- I would assume you got all already, no?
Whiteboard: [driver:dbaron]
fix checked in. 
close this bug as fixed.
Status: ASSIGNED → RESOLVED
Closed: 23 years ago23 years ago
Resolution: --- → FIXED
*** Bug 120908 has been marked as a duplicate of this bug. ***
I have tried on EN WinNT4.0 Workstation + EN SP6a with Pan-European and Japanese
Language Supports, and selected Czech language as default locale, but still 
cannot repro this bug.

Reporter: could you please try with the latest build, and see if you can still 
repro this bug? Thank you!
Rui Xu: WFM 2002012103/WinNT4
*** Bug 119497 has been marked as a duplicate of this bug. ***
Adam: Thanks a lot for the updates.
Verified.
Status: RESOLVED → VERIFIED
Crash Signature: [@ ReadCMAPTableFormat4]
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: