Closed Bug 3769 Opened 25 years ago Closed 25 years ago

Crash selecting menu items in File menu

Categories

(Core Graveyard :: Viewer App, defect, P1)

PowerPC
Mac System 8.5
defect

Tracking

(Not tracked)

VERIFIED FIXED

People

(Reporter: glynn, Assigned: pierre)

Details

March 15 optimized Mac bits, problem in viewer only - apprunner works properly

1.  Launch viewer app
2.  Select New window (cmd-N) from file menu

•Crash into macsbug.  Selecting Open file, print will also crash.  Print crash
may be different bug.  Since we still need to use viewer for testing this should
be addressed.

PowerPC unmapped memory exception at 0CAEEF6C GetSelectionMgr+04280

  15-Mar-1999 2:38:03 PM (since boot = 1 minute)
  Current application is Òviewer.appÓ
  Machine = 312 (PowerBookG3Series), System $0851, sysu = $01008000
  ROM version $077D, $41F5, $0002 (ROMBase $FFC00000)
  VM is on; paging is currently safe
  NIL^ = $FFC10000
  Stack space used = +86100562
 Address 0CAEEF6C is in VM file-mapped logical memory space
 It is in the CFM fragment ÒWIDGET_DLLÓ at 0CAD3000
 It is 0001BF6C bytes from the start of the fragment
  and 000199EC bytes into a non-writeable code section at 0CAD5580
 PowerPC 740/750 Registers
                         CR0  CR1  CR2  CR3  CR4  CR5  CR6  CR7
  PC  = 0CAEEF6C     CR  0010 0010 0000 0000 0000 0010 0010 1000
  LR  = 0CAE4CF4         <>=O XEVO
  CTR = 0CAD5EA4
  MSR = 00000000         SOC Compare Count
  Int = 0            XER 000   00     00                     MQ  = 22000228

  R0  = 0CAD5EA4     R8  = 0000003C      R16 = 00000000      R24 = 05192244
  SP  = 04E2C4C0     R9  = 00000000      R17 = 00000000      R25 = 001E196C
  TOC = 04499640     R10 = 00000020      R18 = 00000000      R26 = 00000001
  R3  = 00000000     R11 = 00273E68      R19 = 00000000      R27 = 00000001
  R4  = 0450CBE0     R12 = 22300400      R20 = 00000000      R28 = 0454C9E4
  R5  = AB000010     R13 = 00000000      R21 = 00000000      R29 = 04E2C6F0
  R6  = 68FFF740     R14 = 00000000      R22 = 00000000      R30 = 0454C7EC
  R7  = 00208330     R15 = 00000000      R23 = 00000000      R31 = 0450CBE0
 Disassembling PowerPC code from 0CAEEF44
  GetSelectionMgr
     +04258 0CAEEF44   lwz        r0,0x0000(r12)                          |
800C0000
     +0425C 0CAEEF48   lwz        RTOC,0x0004(r12)                        |
804C0004
     +04260 0CAEEF4C   mtctr      r0                         ; CTR = 0x0009 |
7C0903A6
     +04264 0CAEEF50   bctr                                               |
4E800420
     +04268 0CAEEF54   lwz        r12,0x0048(RTOC)                        |
81820048
     +0426C 0CAEEF58   stw        RTOC,0x0014(SP)                         |
90410014
     +04270 0CAEEF5C   lwz        r0,0x0000(r12)                          |
800C0000
     +04274 0CAEEF60   lwz        RTOC,0x0004(r12)                        |
804C0004
     +04278 0CAEEF64   mtctr      r0                         ; CTR = 0x0009 |
7C0903A6
     +0427C 0CAEEF68   bctr                                               |
4E800420
     +04280 0CAEEF6C  *lwz        r0,0x0000(r12)                          |
800C0000
     +04284 0CAEEF70   stw        RTOC,0x0014(SP)                         |
90410014
     +04288 0CAEEF74   mtctr      r0                         ; CTR = 0x0009 |
7C0903A6
     +0428C 0CAEEF78   lwz        RTOC,0x0004(r12)                        |
804C0004
     +04290 0CAEEF7C   bctr                                               |
4E800420
     +04294 0CAEEF80   bdz+       $+0x696C                   ; 0x0CAF58EC |
4368696C
     +04298 0CAEEF84   oris       r23,RTOC,0x696E                         |
6457696E
     +0429C 0CAEEF88   oris       r15,r3,0x7700                           |
646F7700
     +042A0 0CAEEF8C   xoris      r19,r19,0x5769                          |
6E735769
     +042A4 0CAEEF90   xoris      r4,r19,0x6F77                           |
6E646F77
 Heap zones
  #1  Mod       10287K  00002800 to 00A0E76F  SysZone^
  #2  Mod           7K    0000C650 to 0000E51F  ROM read-only zone
  #3  Mod         256K    0082BD00 to 0086BCFF
  #4  Mod       73268K  00A0E770 to 0519BA9F  Process Manager zone
  #5  Mod        9993K    0444E340 to 04E10A3F  Òviewer.appÓ  ApplZone^  TheZone^
TargetZone
  #6  Mod          18K    04E7CBD0 to 04E8148F
  #7  Mod         793K    04E819A0 to 04F4809F  ÒSpeed Doublerª 8Ó
  #8  Mod         942K    04F728E0 to 0505E3DF  ÒFinderÓ
  #9  Mod          83K    05072C70 to 05087B6F  ÒTime SynchronizerÓ
  #10 Mod         361K    05096400 to 050F0AFF  ÒFolder ActionsÓ
  #11 Mod          89K    051416B0 to 05157DAF  ÒControl Strip ExtensionÓ
  #12 Mod        4095K  05500000 to 058FFFCF
  #13 Mod         216K    05561370 to 0559736F
  #14 Mod          27K    055FB450 to 0560217F
Checking all heaps
 The System heap at 00002800 is ok
 The ROM read-only heap at 0000C650 is ok
 The heap at 0082BD00 is ok
 The Process Manager heap at 00A0E770 is ok
 The Òviewer.appÓ heap at 0444E340 is ok
 The heap at 04E7CBD0 is ok
 The ÒSpeed Doublerª 8Ó heap at 04E819A0 is ok
 The ÒFinderÓ heap at 04F728E0 is ok
 The ÒTime SynchronizerÓ heap at 05072C70 is ok
 The ÒFolder ActionsÓ heap at 05096400 is ok
 The ÒControl Strip ExtensionÓ heap at 051416B0 is ok
 Totaling the Òviewer.appÓ heap at 0444E340
                                 Total Blocks    Total of Block Sizes
  Free                           0011      #17   00314E00     #3231232
  Nonrelocatable                 0087     #135   0063E92C     #6547756
  Relocatable                    00DA     #218   0006EF90      #454544
    Locked                       0006       #6   0006B5B0      #439728
    Purgeable and not locked     0000       #0   00000000           #0
  Heap size                      0172     #370   009C26BC    #10233532
 The target heap is the System heap at 00002800
 Totaling the System heap at 00002800
                                 Total Blocks    Total of Block Sizes
  Free                           001A      #26   00016350       #90960
  Nonrelocatable                 0B8F    #2959   004D147C     #5051516
  Relocatable                    0A29    #2601   00524760     #5392224
    Locked                       01FE     #510   003F7AE0     #4160224
    Purgeable and not locked     0069     #105   00049A60      #301664
  Heap size                      15D2    #5586   00A0BF2C    #10534700
 The target heap is the Òviewer.appÓ heap at 0444E340

  No drivers are busy.
 Displaying resource information:
  >   Map $0444E4C8, flags $0000, file $2342 = viewer.app
   +  Map $000031DC, flags $801A, file $0003 = ¥ROM resources that override
System¥
    S Map $000032E8, flags $200D, file $0002 = System
      Map $000D4E30, flags $001C, file $17E0 = WorldScript II Resources
      Map $00003124, flags $0014, file $01D8 = System Resources
      [Skipped $0039 maps belonging to font files]
 Calling chain using A6/R1 links
  Back chain  ISA  Caller
  00000000    PPC  0CCD4C50
  04E2C880    PPC  0CCCB898
  04E2C830    PPC  0CCCB044
  04E2C7F0    PPC  0CAE8BB8  nsMacMessageSink::IsRaptorWindow(GrafPort*)+00E84
  04E2C710    PPC  0CAE9108  nsMacMessageSink::IsRaptorWindow(GrafPort*)+013D4
  04E2C6B0    PPC  0CAE9724  nsMacMessageSink::IsRaptorWindow(GrafPort*)+019F0
  04E2C660    PPC  0CAE97B8  nsMacMessageSink::IsRaptorWindow(GrafPort*)+01A84
  04E2C610    PPC  0CAE7274  nsMacMessageSink::DispatchOSEvent(EventRecord&,
GrafPort*)+00038
  04E2C5D0    PPC  0CAE44A4  NS_GetWidgetNativeData(nsISupports*, void**)+084E4
  04E2C570    PPC  0CAE4670  NS_GetWidgetNativeData(nsISupports*, void**)+086B0
 Return addresses on the stack
  Stack Addr  Frame Addr   ISA   Caller
   04E2C888                PPC   0CCD4C50
   04E2C864                PPC   00272D10 NewRoutineDescriptor+000A0
   04E2C838    04E2C830    PPC   0CCCB898
   04E2C7F8                68K   0CCCB046
   04E2C7C4                68K   001E196A 'scod BFAF 0002'+05A0A
   04E2C7B8    04E2C7B0    PPC   0CCCB998
   04E2C7A8    04E2C7A0    PPC   0CBBC94C NS_InitINetService+00058
   04E2C798    04E2C790    PPC   0CC295A0
nsComponentManager::CreateInstance(const nsID&, nsI
Supports*, const nsID&, void**)+00054
   04E2C768    04E2C760    PPC   0CCB3E64 operator new(unsigned long)+00010
   04E2C758    04E2C750    PPC   0CBCF630 NS_InitializeHttpURLFactory+0024C
   04E2C748    04E2C740    PPC   0CC33710 nsRegistry_GetFactory+019C0
   04E2C718    04E2C710    PPC   0CAE8BB8
nsMacMessageSink::IsRaptorWindow(GrafPort*)+00E84
   04E2C6D8    04E2C6D0    PPC   0CCB3E64 operator new(unsigned long)+00010
   04E2C6BC                68K   0453A1AA
   04E2C6B8    04E2C6B0    PPC   0CAE9108
nsMacMessageSink::IsRaptorWindow(GrafPort*)+013D4
   04E2C6A8                68K   0450CDFA
   04E2C678    04E2C670    PPC   FFD6D1D0 SetRectRgn+00038
   04E2C668    04E2C660    PPC   0CAE9724
nsMacMessageSink::IsRaptorWindow(GrafPort*)+019F0
   04E2C638    04E2C630    PPC   0CAD7AF8 GetMacPLEventQueue+00478
   04E2C628    04E2C620    PPC   FFD75964 HiliteWindow+00020
   04E2C618    04E2C610    PPC   0CAE97B8
nsMacMessageSink::IsRaptorWindow(GrafPort*)+01A84
   04E2C600                68K   001E196A 'scod BFAF 0002'+05A0A
   04E2C5D8    04E2C5D0    PPC   0CAE7274
nsMacMessageSink::DispatchOSEvent(EventRecord&, Gra
fPort*)+00038
   04E2C5C0                68K   001E196A 'scod BFAF 0002'+05A0A
   04E2C598    04E2C590    PPC   0CC5C80C PL_GetEvent+000A0
   04E2C580    04E2C57C    68K   0450CDFA
   04E2C578                68K   0CAE44A6 NS_GetWidgetNativeData(nsISupports*,
void**)+084E6
   04E2C550                68K   001DDD66 'scod BFAF 0002'+01E06
   04E2C538                68K   0CAE4672 NS_GetWidgetNativeData(nsISupports*,
void**)+086B2
   04E2C4F0    04E2C4EC    68K   0067160A
   04E2C4C8    04E2C4C0    PPC   0CAE4CC0 NS_GetWidgetNativeData(nsISupports*,
void**)+08D00
   04E2C4C4    04E2C4C0    68K   00671718 UpdateReno+00042
 Displaying memory from 0
  00000000  FFC1 0000 FFC1 0000  001D BFB6 001D BFB8  ÿÁ¥¥ÿÁ¥¥¥¥¿¶¥¥¿¸
  00000010  001D BFBA 001D BFBC  FFC0 3378 FFC0 337A  ¥¥¿º¥¥¿*ÿÀ3xÿÀ3z
 Closing log
added sdagley to cc
Assignee: rickg → pierre
Pierre -- please take a look. Probably an easy kill for you.
Priority: P3 → P1
QA Contact: 3853 → 4082
Target Milestone: M3
Putting on M3 list.
Status: NEW → ASSIGNED
I can reproduce the bug, although the stack trace is not the same at all for
File|New and File|Open. I'm working on it.
The problem with File|Open was fixed today by <mcmullen> in nsFileSpec.cpp as
part of bug #3779. Note: I discovered another problem with File|Open and I
reported it in bug #3890, assigned to <gagan>.

File|Print and File|PrintSetup still crash, both apparently for different
reasons. I'm working on it.
File|Print was fixed today by Kipp in nsScrollFrame.cpp v1.101.

File|PrintSetup was introduced in recent checkins in nsMacEventHandler.cpp. I
have a fix, waiting for approval from sar & chofmann for checkin.
Status: ASSIGNED → RESOLVED
Closed: 25 years ago
Resolution: --- → FIXED
Fixed checked in for File | PrintSetup.

Summary:
- crash in opening any file: fixed today by mcmullen
- crash when opening a local copy of some html pages like home.netscape.com: this
is a new bug (#3890), assigned to gagan.
- crash on Print: fixed today by kipp
- crash on Print Setup: now fixed
Status: RESOLVED → VERIFIED
Verified fixed in march 17 latest builds.
Product: Core → Core Graveyard
You need to log in before you can comment on or make changes to this bug.