Closed Bug 141162 Opened 22 years ago Closed 22 years ago

Bringing up mail window hangs in nsStrPrivate::GrowCapacity () of the latest build of mozilla 2002043009

Categories

(SeaMonkey :: MailNews: Message Display, defect)

Product:
SeaMonkey
Component:
MailNews: Message Display
Type:
defect
Priority:
Not set
Severity:
blocker

Tracking

(Not tracked)

Status:
VERIFIED FIXED

People

(Reporter: Mitch, Assigned: sspitzer)

References

Details

(Keywords: hang, smoketest)

Attachments

(4 files, 1 obsolete file)

Process stack (mangled) from the hang
9.59 KB, text/plain
Details
Stacktrace from gdb of a hung mozilla mail process
3.99 KB, text/plain
Details
make sure newCapacity != 0
660 bytes, patch
Details | Diff | Splinter Review
proposed fix
1.02 KB, patch
bnesse
: review+
alecf
: superreview+
Details | Diff | Splinter Review 
Bringing up the mail window either using "mozilla -mail" commandline
or clicking on the mail icon in the bottom left corner of the main browser
window or using "Window->Mail & Window" menu option makes the whole mozilla
process hang (no multithreadness either).

I have attached both a "pstack" and a "backtrace" from gdb on the hanging
process which shows it's hanging in (short backtrace included here)

(gdb) bt
#0  0xff130a5c in nsStrPrivate::GrowCapacity ()
#1  0xff133b04 in nsCString::SetCapacity ()
#2  0xff133a98 in nsCString::SetLength ()


Doesn't happen with yesterday's build !! Seems to be a regression somewhere.

    
    

    
  
Mail startup hangs on linux too (current cvs). With a new profile, the mail
config wizard runs, and hang happens on clicking 'Finish'. Gilles on
#mozillazine says 2002-04-29-22 cvs build hangs. Linux nightly 2002-04-29-10
works ok.
Severity: major → critical
Status: UNCONFIRMED → NEW
Ever confirmed: true
OS: SunOS → All
Hardware: Sun → All

    
    

    
  
on my xp pro i get a 

"the procedure entry point ?Mid@nsAString@@QBEIAAVI@II@Z could not be located in
the dynamic link library xpcom.dll"


URL: N/A
Severity: critical → blocker
Keywords: smoketest

    
    

    
  
Possibly bug 139633, but that was reported a while ago, and yesterday's build 
from the 29th works fine. It would be easy to verify since the problem is
100% reproduceable and if the patch is integrated tomorrow in the CVS tree,
then we'll find out soon enough.

    
    

    
  
bug 141165 and bug 141182 are likely dups

    
    

    
  
*** Bug 141182 has been marked as a duplicate of this bug. ***

    
    

    
  
Dave: what Tuuka probably meant is that the fix for bug 139633, which was
checked into cvs at 04/29/2002 13:29, might have caused this bug.

    
    

    
  
was this on a depend build? I've noticed some wierdness on my depend build with
some of these, but a clobber helped.

I'm looking into this anyway..

    
    

    
  
also, it would be interesting to see if this could be fixed with Substring()


    
    

    
  
Assuming a "depend" build is a build without a make clobber,
then no, the cvs build we do on a daily basis is from a make clobber(ed)
build.



    
    

    
  
*** Bug 141196 has been marked as a duplicate of this bug. ***

    
    

    
  
happens on macos as well.

    
    

    
  
WinXP Pro, clean installations of installer-sea.exe:
2002042908 is fine. 2002043003 feels slow and will freeze when attempting to
start mailnews.

    
    

    
  
can we get a few other backtraces? I'm still waiting on my build and I'm pretty
sure we'll be stuck in a few other functions as well (I don't think GrowCapacity
is the actual culprit)


    
    

    
  

      
      
      
      

        Attached patch
          
          
        switch to Substring() (obsolete)
        — Splinter Review
      

    


  
no idea if this will work, but someone want to give this a try?

    
    

    
  
The only while loop I see in GrowCapacity is the 
      while ( newCapacity < aNewLength )
        newCapacity <<= 1;
loop

can someone tell me if newCapacity is 0? That might help me figure this out.

    
    

    
  
By the way, a simple fix would be to just back out the changes to string from
bug 139633. I'm still investigating (my builds are almost done) but that can be
the backout plan if we don't find a fix in the next 30 minutes or so


    
    

    
  


  
how about this? someone want to give this a try?

        Attachment #81680 -
        Attachment is obsolete: true

    
    

    
  
Alec: I could get some more backtraces, but they're all the
same and happen immediately once i bring up the mail so i
dunno if that will help much...

I'm trying a build now with the attached patch. Will update
bug as soon as i try it.

    
    

    
  
yeah, with pinkerton's help, we found that the while loop was due to capacity
being 0... that is particularily strange though.


    
    

    
  
Same problem and stack with fix #81680 below.
                                             
#0  0xff130a58 in nsStrPrivate::GrowCapacity ()
#1  0xff133b04 in nsCString::SetCapacity ()    
#2  0xff133a98 in nsCString::SetLength ()  
#3  0xff12797c in nsACString::do_AssignFromReadable ()
#4  0xff127758 in nsACString::AssignFromReadable ()   
#5  0xff187608 in nsACString::Assign () at ./cp/tinfo2.cc:300
#6  0xff192594 in nsCAutoString::operator= () at ./cp/tinfo2.cc:300
#7  0xfb45c838 in NS_MsgCreatePathStringFromFolderURI ()           
#8  0xfb435fac in nsMsgFolder::parseURI ()              
#9  0xfb435458 in nsMsgFolder::GetServer ()

etc....

    
    

    
  
ah! the problem is that the value being passed in is > 2^31, which means no
matter what newCapacity starts out as, it will eventually overflow and become 0.

I'm trying to figure out how the length would be set to something so high. it
kind of looks like the length is -1, which means its being cast to an unsigned
integer and set to 0xFFFFFFFF

    
  
Keywords: hang

    
    

    
  
With patch #81681 applied (along with 81680), my new rebuild hangs with
the same stack...                                                      
                 
Can i get any more infor for you guys ?



    
    

    
  
that uri parsing code is very suspect - it's passing in -1 or -2 at times.

    
    

    
  
*** Bug 141213 has been marked as a duplicate of this bug. ***

    
    

    
  

      
      
      
      

        Attached patch
          
          
        proposed fixSplinter Review
      

    


  
this fixes the hang for me.

    
    

    
  
Comment on attachment 81689 [details] [diff] [review]
proposed fix

ah! I figured it out!


oh. I see bienvenu did too..

this is EXACTLY my fix too. the problem was that oldPath.FindChar(...) was
returning '-1', and then we were substracting 1 from that, which made
endSlashPos -2.. when cast to a PRUint32, it became a very large number.
sr=alecf

        Attachment #81689 -
        Flags: superreview+

    
    

    
  
Comment on attachment 81689 [details] [diff] [review]
proposed fix

r=bnesse.

        Attachment #81689 -
        Flags: review+

    
    

    
  
I've checked in my patch, which should fix the hang. I think we should
understand the problem better, however.
Status: NEW → RESOLVED
Closed: 22 years ago
Resolution: --- → FIXED

    
    

    
  
*** Bug 141154 has been marked as a duplicate of this bug. ***

    
    

    
  
respins look good. Mail is testable/usable.

linux 2002-04-30-10-trunk
mac os9 2002-04-30-10-trunk
Status: RESOLVED → VERIFIED

    
    

    
  
xp pro, 2002-04-30-10-trunk works as well

    
    

    
  
Why did this code work fine for over a year and has it started acting up
yesterday?

    
    

    
  
*** Bug 141165 has been marked as a duplicate of this bug. ***

    
    

    
  
I wondered that myself. I assumed that something else besides "/" was getting
past in before, maybe an empty string instead? I fully expected this to only fix
the symptom and the real question was why "/" was getting passed in. 
Product: Browser → Seamonkey

          You need to log in
          before you can comment on or make changes to this bug.
        






  

    
  







  

    

      
Attachment

      

      
      
      
      
    

    

      

        

          

            
General

            

              Creator: 



            

            
Created: 

            
Updated: 

            
Size: