Closed Bug 309337 Opened 19 years ago Closed 19 years ago

Embedding inside Java may result in stack < 512k

Categories

(Core :: DOM: Core & HTML, defect)

Product:
Core
Component:
DOM: Core & HTML
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED FIXED

People

(Reporter: jhpedemonte, Unassigned)

Details

(Keywords: fixed1.8)

Attachments

(1 file)

prevent wrapping of unsigned value
1.37 KB, patch
brendan
: review+
jst
: superreview+
brendan
: approval1.8rc1+
Details | Diff | Splinter Review 
http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=4689767
http://bugs.sun.com/bugdatabase/view_bug.do;jsessionid=5fdf676125dd7b3cc88af53331625:YfiG?bug_id=6316197

|GetThreadStackLimit()| in 'mozilla/dom/src/base/nsJSEnvironment.cpp' makes the
assumption that there is at least 512k left on the stack, and makes calculations
accordingly.  But when embedding Mozilla from Java, this is not necessarily the
case, as you can read about in the first link above.  Specifically on Win32, the
main Java thread will have a stack of only 256k (or 320k in later versions).

The specific problem is that |sThreadStackLimit| is only several hunder K above
0, such that subtracting 512k 'wraps' the |sThreadStackLimit| to a very large
value, and all JS calls immediately result in "too much recursion" errors.

The easy immediate fix is to put back the checks that were deleted by bug 192414
attachment 132216 [details] [diff] [review].  I'm not sure if we would want to add any Win32 calls to
check for the real end of the stack.

So as mentioned in the two links above, only Win32 is affected (and OS/2 I
guess).  A workaround would be for the Java embedder to spawn a thread that
actually did the embedding, since the thread stack size can be controlled by the
"-Xss" parameter to java.exe.  But I don't think we want require that.  What do
you guys think?
At the very least, this patch prevents the wrapping that I'm seeing of
|sThreadStackLimit|.  However, I put printfs in the js code for the places that
call |JS_CHECK_STACK_SIZE| while running jst's recursions testcase at
attachment 143988 [details], but I never see the stack get any where near the stackLimit.
 Instead, it hits the other recursion check |if (inlineCallCount ==
MAX_INLINE_CALL_COUNT)| in jsinterp.c.	Is there a testcase that would actually
test out |JS_CHECK_STACK_SIZE| without hitting the other recursion checks
first?
Attachment #197050 - Flags: review?(brendan)
Attachment #197050 - Flags: superreview?(jst)
It would be great to get this into the next XULrunner/libXUL release on beta5,
since there's a group that wants to use this with Javaconnect, and this patch
makes it useable on win32.
Flags: blocking1.8b5?
we're not going to block the release on this. we'd condsider a fully reviewed,
near-zero risk patch.
Flags: blocking1.8b5? → blocking1.8b5-
Comment on attachment 197050 [details] [diff] [review]
prevent wrapping of unsigned value

sr=jst
Attachment #197050 - Flags: superreview?(jst) → superreview+
Comment on attachment 197050 [details] [diff] [review]
prevent wrapping of unsigned value

This should go in for rc1, sorry for the delay.

/be
Attachment #197050 - Flags: review?(brendan)
Attachment #197050 - Flags: review+
Attachment #197050 - Flags: approval1.8rc1+
This is safe, anyone getting near the null page is going to die on sane OSes. 
Java can't be changed, so we need to cope.

Javier, can you check into trunk and 1.8 branch?  Thanks,

/be
Flags: blocking1.8rc1+
Blocks: 307451
Checked into trunk and branch. -> FIXED
No longer blocks: 307451
Status: NEW → RESOLVED
Closed: 19 years ago
Keywords: fixed1.8
Resolution: --- → FIXED
Component: DOM: Core → DOM: Core & HTML
QA Contact: ian → general
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: