Closed Bug 82486 Opened 24 years ago Closed 21 years ago

potential buffer overruns handling user input in print dialog

Categories

(Core :: XUL, defect)

Product:
Core
Component:
XUL
Type:
defect
Priority:
Not set
Severity:
critical

Tracking

()

Status:
RESOLVED FIXED
Milestone:
mozilla1.3alpha

People

(Reporter: dbaron, Assigned: roland.mainz)

Details

(Keywords: crash)

DESCRIPTION: There are a bunch of potential buffer overruns (that have been copied across multiple gfx ports) in handling user input from the print dialog. STEPS TO REPRODUCE: * File | Print * choose "File" * type a few hundred characters (just bang on your keyboard for a bit) ACTUAL RESULTS: * crash EXPECTED RESULTS: * no crash, maybe even an error message about the filename being too long, or at least printing to the file with the name truncated. ADDITIONAL INFORMATION: The buffer overruns are discussed a bit in my review comments on bug 71587, dated 2001-04-24 06:35. They appear in various forms in at least the following files: gfx/src/beos/nsDeviceContextSpecB.cpp gfx/src/gtk/nsDeviceContextSpecG.cpp gfx/src/qt/nsDeviceContextSpecQT.cpp gfx/src/xlib/nsDeviceContextSpecXlib.cpp I didn't actually check that the cause of the crash was the buffer overruns I mentioned. Maybe it's others somewhere else.
This is a great one for future.
Severity: normal → minor
Status: NEW → ASSIGNED
Target Milestone: --- → Future
Is this a dialog issue.. not a printing issue
In theory we do not need to fix this as we need _urgendly_ a new print dialog. Many people are not very amazed about it (ranging from "it s*cks" to "BTW -- I find Mozilla's printing interface rather inadequate, compared to old Netscape, which works fine with my Postscript NeXT_Printer" and so on...). We need a better one for unix/linux (to match the needs of PostScript/Xprint and other platforms)... I'll fire-up a new bug for this in one or two days...
Keywords: correctness
Seems this is a problem with the XUL dialog.. not printing. Assigning to the XUL guys who control this.
Assignee: dcone → trudelle
Status: ASSIGNED → NEW
Component: Printing → XP Toolkit/Widgets: XUL
QA Contact: sujay → jrgm
Ummm... the problems are at specific places in the code in the gfx directory that I just pointed out above (and see the other bug I mention). I wouldn't call that a XUL bug.
You said that you type a few hundred characters into the print dialog, from looking at the code, this is all handled by the XUL code, the user input is not handled at all by the code you pointed to. Unless its after you typed in the few hundred lines of code and that string is returned back to the printing code but I assumed that did not happen since the enter key, or ok key was not hit. From what I was told.. (I did not write the the printer dialogs for these platforms or GTK where this code was probably copied from) XUL handles this.. can you clarify (for someone like me who has no XUL experience) why this is not a XUL problem.
I forgot to say that I had to hit enter. However, it should have been obvious from where I said the code with the buffer overrun was.
Taking back the bug.
Assignee: trudelle → dcone
Taking bug...
Assignee: dcone → Roland.Mainz
Status: NEW → ASSIGNED
Target Milestone: Future → mozilla1.3alpha
By the definitions on <http://bugzilla.mozilla.org/bug_status.html#severity> and <http://bugzilla.mozilla.org/enter_bug.cgi?format=guided>, crashing and dataloss bugs are of critical or possibly higher severity. Only changing open bugs to minimize unnecessary spam. Keywords to trigger this would be crash, topcrash, topcrash+, zt4newcrash, dataloss.
Severity: minor → critical
This has been fixed now since a very long time. Marking bug as FIXED.
Status: ASSIGNED → RESOLVED
Closed: 21 years ago
Resolution: --- → FIXED
Component: XP Toolkit/Widgets: XUL → XUL
QA Contact: jrgmorrison → xptoolkit.widgets
You need to log in before you can comment on or make changes to this bug.