Closed Bug 40149 Opened 25 years ago Closed 22 years ago

[FIX]nsParser::SetParserFilter() needs a "XPCOM cleanup".

Categories

(Core :: DOM: HTML Parser, defect, P1)

Product:
Core
Component:
DOM: HTML Parser
Type:
defect

Tracking

()

Status:
RESOLVED FIXED
Milestone:
mozilla1.4beta

People

(Reporter: jst, Assigned: bzbarsky)

References

Details

(Whiteboard: [nsbeta3-])

Attachments

(1 file, 1 obsolete file)

Address comments
40.81 KB, patch
harishd
: review+
jst
: superreview+
Details | Diff | Splinter Review
nsParser::SetParserFilter() is currently defined to return a pointer to the old parser filter, from reading the implementation it looks like it's meant to return a weak reference to the old parser filter, ie no reference held by either the parser nor the caller the gets the old filter. The way it's implemented the parser releses the old filter with NS_RELEASE(old) then it does a return old;. The result of this is that it always returns null, so nothing bad will ever happen as a result of calling nsParser::SetParserFilter() but if a unrefcounted pointer to the old parser filter would actually be returned the pointer could be pointing to a deleted object since the parser doesn't know if calling release on the old filter actually deletes the old filter or just decrements its refcount... wrong (TM). I suggest nsIParser::SetParserFilter() should be changed to return the old filter in an out parameter, and not as the return value. Then there's no question about if the returned filter should be released or not. Clean, simple XPCOM.
There is a related webshell leak to the current nsParser implementation. The problem is that nsParser AddRef's the parser filter, mParserFilter, on nsParser::SetParserFilter(), but doesn't release in the constructor. Currently this results in a parser filter leak, which translate to a webshell leak from nsHTMLDocument.cpp when auto-detection of character sets is turned on. The fix to just to add a NS_IF_RELEASE(mParserFilter); to nsParser::~nsParser(). NOTE: nsHTMLDocument.cpp has some other leaks that will result in noise when trying to test this if the patch at bug #39796 hasn't been checked into the tree yet.
Blocks: 40321
Target Milestone: --- → M18
Status: NEW → ASSIGNED
Target Milestone: M18 → M17
Moving to M17.
Can we go ahead and checkin the quick webshell leak fix talked about a couple of comments up? It's not much of a leak, but it takes out a considerable amount of noise it the bloat logs (which helps reduce my fustration level while searching for root leaks.)
Ya sure.
So can I consider that a r=harishd? I'll bubble it up the approval stack and check it in if it is.
Target Milestone: M17 → Future
I found this too. See bug 41695.
This bug has been marked "future" because the original netscape engineer working on this is over-burdened. If you feel this is an error, that you or another known resource will be working on this bug,or if it blocks your work in some way -- please attach your concern to the bug for reconsideration.
Wo! I think something got lost here. Rusty already filed a fix (note Rusty's first comment) and seems like harishd@netscape.com was affirmative on the review (second comment by harishd: "Ya sure"). We understand Netscape's internal resource constraints, but we've already got the fix in hand. We can go ahead and check this in following the normal review and approval process. Or was Rusty's fix not satisfactory and are we waiting on a better fix?
I checked in the fix to release the mParserFilter, in nsParser.
Not going to complain too much, but in the future, could you guys turn around the review a bit quicker. Just a simple yay or nay would be great. I know that this is all part of working on open source, but it's frustrating for developers to work on things that don't materialize. Also there were dependecies on this bug (40321). Would have been nice to get quicker notification that a fix was checked in so that we could proceed with any dependent bugs. Don't mean to whine too much, but . . .
Oops...Sorry folks.
Target Milestone: Future → M17
I was under the impression that Rusty was going to checkin the fix. I even pointed out this bug to Simon ( thanx for checking the fix in ) when he asked me review an identical snippet. Anyway, I'll take the blame...cause it's my bug...and I should have taken care of it. Am I bad? :-(
Bad harishd! Bad harishd! :-O Yea, with all of this nsbeta/catfood++/... stuff going on I'm probobly being to careful trying to follow the correct protocol to checkin code.
No offense please :-) I's pointing finger standing before a mirror.
Isn't this bug fixed rusty?
There were really two bugs refered to in the report. The initial bug talked about how doing some XPCOM clean in the implementation. This still needs to be done, it's just not all that critical. The second thing that came out of this was a parser leak that resulted from the same code. That has been fixed. (Looking back it might have made more sense to create a new bug for the parser leak, I was just thinking if all the code was overhauled using smart pointers the the like that the parser leak would be fixed in the process.)
Shooting for beta3.
Keywords: nsbeta3
Target Milestone: M17 → M18
Rusty, since I wouldn't (~) be able to get to this bug for beta3, would it be possible for you to own this bug? Thanx. Reassigning to rusty ( per discussion with nisheeth and eKrock ). Btw, feel free to give this bug back to me if you're swamped with other things.
Assignee: harishd → rusty.lynch
Status: ASSIGNED → NEW
Marking nsbeta3-. Rusty, if you have the bandwidth to do the XPCOM cleanup in the beta 3 timeframe you can get your patch code reviewed by brendan or waterson and check it in. Thanks.
Whiteboard: [nsbeta3-]
updated qa contact.
QA Contact: janc → bsharma
Target Milestone: M18 → ---
QA Contact: bsharma → moied
This bug was last changed 2001-03-02, and it has no milestone set. Is this problem still present ? if so please verify otherwise please close this bug.
-> default owner
Assignee: rusty.lynch → harishd
Comment on attachment 119788 [details] [diff] [review] Since none of the callers ever look at any of the return values.... Thoughts?
Attachment #119788 - Flags: superreview?(jst)
Attachment #119788 - Flags: review?(harishd)
.
Assignee: harishd → bzbarsky
Priority: P3 → P1
Summary: nsParser::SetParserFilter() needs a "XPCOM cleanup". → [FIX]nsParser::SetParserFilter() needs a "XPCOM cleanup".
Target Milestone: --- → mozilla1.4beta
+void nsParser::SetContentSink(nsIContentSink* aSink) { + NS_PRECONDITION(aSink,"sink cannot be null!"); It would be nice to standardize the method brace style in this file to the mozilla default (opening brace on a new line, like SetParserFilter() has already). + // XXXbz does anyone actually pass in an non-null observer? Do we + // even need this anymore? nsParser(nsITokenObserver* anObserver=0); Editor used to use token observers, and might again, but I doubt anything needs to pass one to the ctor. + nsITokenObserver* mTokenObserver; Would be nice to allow for > 1 token observer. That's for another patch, I think. The rest looks good to me.
Sure, I can move the brace. There seem to be no ways to set the observer short of passing it to the constructor.... Further, it is not clear what the ownership model of the observer is (we never release it, eg, and never addref it...) I'm pretty much fine with anything here (up to and removing all the observer code until it's actually needed). But yes, the observer cleanup should probably be a separate bug, since it requires some actual knowledge of the parser... ;)
Comment on attachment 119788 [details] [diff] [review] Since none of the callers ever look at any of the return values.... >Index: htmlparser/public/nsIParser.h >=================================================================== >RCS file: /cvsroot/mozilla/htmlparser/public/nsIParser.h,v >- virtual nsIContentSink* SetContentSink(nsIContentSink* aSink)=0; >+ virtual void SetContentSink(nsIContentSink* aSink)=0; Can you replace virtual void with NS_IMETHOD_(void)? Same in other places too. >+void nsParser::SetContentSink(nsIContentSink* aSink) { >+ NS_PRECONDITION(aSink,"sink cannot be null!"); >+ mSink=aSink; Add spaces around '=' and after ','. :) >Index: htmlparser/src/nsParser.h >=================================================================== > */ >+ // XXXbz does anyone actually pass in an non-null observer? Do we >+ // even need this anymore? > nsParser(nsITokenObserver* anObserver=0); It's been a while and it's all hazy for me. AFAICT, there is nobody depending on it. IMO, nsITokenObserver can be yanked.
Attachment #119788 - Flags: review?(harishd) → review+
Attached patch Address commentsSplinter Review
1) Added NS_IMETHOD_() stuff 2) Made Parse() have the same decls in nsParser.h and nsIParser.h (same defaults) 3) Removed unused GetScanner() method 4) Removed mTokenObserver 5) Made BuildModel() public, since it's on the nsIParser interface (!) 6) Fixed some obviously copied incorrect comments Trying hard to avoid making this into the "make all of rickg's code pretty" bug.... ;)
Attachment #119788 - Attachment is obsolete: true
Attachment #119788 - Flags: superreview?(jst)
Comment on attachment 119846 [details] [diff] [review] Address comments What thinkest thou?
Attachment #119846 - Flags: superreview?(jst)
Attachment #119846 - Flags: review?(harishd)
Comment on attachment 119788 [details] [diff] [review] Since none of the callers ever look at any of the return values.... sr=jst
Attachment #119788 - Flags: superreview+
Comment on attachment 119846 [details] [diff] [review] Address comments sr=jst
Attachment #119846 - Flags: superreview?(jst) → superreview+
Comment on attachment 119846 [details] [diff] [review] Address comments Good boy. r=harishd :)
Attachment #119846 - Flags: review?(harishd) → review+
Fixed.
Status: NEW → RESOLVED
Closed: 22 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: