Closed Bug 146549 Opened 23 years ago Closed 22 years ago

Leaking mChildren in nsVoidArray

Categories

(Core :: Layout, defect, P2)

Product:
Core
Component:
Layout
Platform:
x86
Linux
Type:
defect

Tracking

()

Status:
RESOLVED FIXED
Milestone:
mozilla1.1beta

People

(Reporter: pj, Assigned: keeda)

References

(
URL
)

Details

(Keywords: memory-leak)

Attachments

(1 file)

patch (get rid of debug code so that someone else doesn't end up spending time on this)
541 bytes, patch
bzbarsky
: review+
dbaron
: superreview+
Details | Diff | Splinter Review
__builtin_new -:- libstdc++-libc6.1-1.so.2 0x407db1e6 nsSmallVoidArray::SwitchToVe <...> nsVoidArray.cpp:1617 libxpcom.so 0x402fc52c nsSmallVoidArray::AppendElem <...> nsVoidArray.cpp:1429 libxpcom.so 0x402fbfea nsReflowPath::EnsureSubtreeF <...> nsReflowPath.cpp:95 libgklayout.so 0x807091fb IncrementalReflow::AddComman <...> nsPresShell.cpp:1005 libgklayout.so 0x806e7970 PresShell::ProcessReflowComm <...> nsPresShell.cpp:6348 libgklayout.so 0x806fa572 ReflowEvent::HandleEvent(void) nsPresShell.cpp:6225 libgklayout.so 0x808c3cc9 HandlePLEvent(ReflowEvent *) nsPresShell.cpp:6241 libgklayout.so 0x806fa149 PL_HandleEvent plevent.c:596 libxpcom.so 0x4033f90b PL_ProcessEventsBeforeID plevent.c:1270 libxpcom.so 0x40340097 There are more stacktraces at the above URL. Line 1617 in nsVoidArray.cpp at the time of the run was: 1617 mChildren = (void*)new nsAutoVoidArray(); They don't seem to be free'd at all according to the URL.
Keywords: mlk
neeti can you look at this?
Assignee: dougt → neeti
Target Milestone: --- → mozilla1.1alpha
Reporter: how do I look at the stack traces at http://www.geodesic.com/monitor ?
Pick "Select program" in the drop down box in upper left corner. Click on a binary and then click on "Leaks & allocations".
I put a MOZ_COUNT_CTOR(nsSmallVoidArray) and MOZ_COUNT_DTOR(nsSmallVoidArray) and from the bloat logs I find all the nsSmallVoidArray being released. Also, the destructor of nsSmallVoidArray is deleting the mChildren. Chris: Could the leak be happening in nsReflowPath.cpp?
Assignee: neeti → waterson
Yes, that would make sense!
Status: NEW → ASSIGNED
Component: XPCOM → Layout
Target Milestone: mozilla1.1alpha → mozilla1.1beta
Priority: -- → P2
I ran into this when investigating bug 181118. Turns out this happens in debug builds only, and makes it a real pain to find real leaks. Refer http://lxr.mozilla.org/seamonkey/source/layout/html/base/src/nsReflowPath.cpp#49 The nsReflowPath dtor attempts to mark its memory in an attempt smoke out heap errors, but doing so at this stage is completely wrong! We have not yet hit the nsSmallVoidArray dtor for the member mChildren. mChildren member variables thus get clobbered before they should, causing the nsSmallVoidArray to leak the nsAutoVoidArray it used to own. Yuck :-(
Might as well take this bug.
Assignee: waterson → keeda
Status: ASSIGNED → NEW
Comment on attachment 108845 [details] [diff] [review] patch (get rid of debug code so that someone else doesn't end up spending time on this) r=bzbarsky. One thought... _if_ it's safe to do (and I would assume it's not), we could do the marking after deleting the reflow path -- the only places that delete reflow paths are IncrementalReflow::~IncrementalReflow and nsReflowPath::~nsReflowPath it looks like...
Attachment #108845 - Flags: superreview?(dbaron)
Attachment #108845 - Flags: review+
Comment on attachment 108845 [details] [diff] [review] patch (get rid of debug code so that someone else doesn't end up spending time on this) sr=dbaron Code like this belongs in an |operator delete| or in an overridden |free| (but at the beginning, there). But it seems fine to just remove this.
Attachment #108845 - Flags: superreview?(dbaron) → superreview+
Do you need someone to check this in?
>Do you need someone to check this in? Yes. Can you take care of it for me please?
Fix checked in to trunk, 2002-12-15 08:13 PDT.
Status: NEW → RESOLVED
Closed: 22 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: