Closed
Bug 846710
Opened 11 years ago
Closed 11 years ago
nsISVGPoint / DOMSVGTranslatePoint refcounting and cycle collection handling seems to be broken
Categories
(Core :: SVG, defect)
Tracking
()
RESOLVED
FIXED
mozilla22
People
(Reporter: smaug, Assigned: dzbarsky)
References
Details
Attachments
(1 file)
|
2.42 KB,
patch
|
smaug
:
review+
lsblakk
:
approval-mozilla-aurora+
lsblakk
:
approval-mozilla-beta-
|
Details | Diff | Splinter Review |
both classes have Addref/Release and refcnt and participate cycle collection, yet DOMSVGTranslatePoint inherit nsISVGPoint. Unless proved not to cause problems, I think this should be fixed also in FF21.
|
Reporter | |
Updated•11 years ago
|
tracking-firefox21:
--- → ?
tracking-firefox22:
--- → ?
|
||
Comment 2•11 years ago
|
||
It would be nice if we could somehow warn if people are shadowing mRefCnt.
|
||
Comment 3•11 years ago
|
||
Sending over to David since this was a regression from bug 821955. smaug - can you please provide more info about the theoretical user impact here (since this hasn't yet been demonstrated in the wild)? It's not clear why this should track yet.
Assignee: nobody → dzbarsky
Flags: needinfo?(bugs)
|
Assignee | |
Comment 4•11 years ago
|
||
Attachment #720230 -
Flags: review?(bugs)
|
|
Reporter | |
Comment 5•11 years ago
|
||
(In reply to Alex Keybl [:akeybl] from comment #3) > smaug - can you please provide more info about the theoretical user impact > here (since this hasn't yet been demonstrated in the wild)? It's not clear > why this should track yet. Leaks, and especially such leaks which tend to cause higher cycle collections times and high CC times bad for user experience. But I'm not familiar with this SVG code, so perhaps someone can prove that the problem doesn't actually cause leaks.
Flags: needinfo?(bugs)
|
|
Reporter | |
Comment 6•11 years ago
|
||
Comment on attachment 720230 [details] [diff] [review] Patch You should unlink mElement
Attachment #720230 -
Flags: review?(bugs) → review+
|
|
||
Comment 7•11 years ago
|
||
Comment on attachment 720230 [details] [diff] [review] Patch Review of attachment 720230 [details] [diff] [review]: ----------------------------------------------------------------- ::: content/svg/content/src/SVGSVGElement.cpp @@ +61,5 @@ > + nsISVGPoint) > +NS_IMPL_CYCLE_COLLECTION_TRAVERSE(mElement) > +NS_IMPL_CYCLE_COLLECTION_TRAVERSE_END > + > +NS_IMPL_ADDREF_INHERITED(DOMSVGTranslatePoint, nsISVGPoint) Olli, should this need to use NS_IMPL_CYCLE_COLLECTING_ADDREF and NS_IMPL_CYCLE_COLLECTING_RELEASE, because you are defining a new participant? With this, you end up using the Upcast of the parent, but maybe that doesn't matter.
|
|
Reporter | |
Comment 8•11 years ago
|
||
Why would it need NS_IMPL_CYCLE_COLLECTING_ADDREF/RELEASE? We use NS_IMPL_ADDREF/RELEASE_INHERITED elsewhere which ends up then calling mRefCnt.decr(base_nsISupports);
|
|
Assignee | |
Comment 9•11 years ago
|
||
https://hg.mozilla.org/integration/mozilla-inbound/rev/383fecb8fa17
|
||
Comment 10•11 years ago
|
||
https://hg.mozilla.org/mozilla-central/rev/383fecb8fa17
Status: NEW → RESOLVED
Closed: 11 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla22
|
||
Comment 11•11 years ago
|
||
Given there's a patch up and no one is claiming this does *not* cause terrible leaks, let's go ahead with tracking & uplift if low risk enough patch. Getting this in before tomorrow would give us more time on Beta to evaluate so please nominate if this looks good on central.
|
||
Updated•11 years ago
|
|
|
Assignee | |
Comment 12•11 years ago
|
||
Comment on attachment 720230 [details] [diff] [review] Patch [Approval Request Comment] Bug caused by (feature/regressing bug #): 821955 User impact if declined: May cause leaks Testing completed (on m-c, etc.): m-c Risk to taking this patch (and alternatives if risky): Low risk String or UUID changes made by this patch: None
Attachment #720230 -
Flags: approval-mozilla-beta?
Attachment #720230 -
Flags: approval-mozilla-aurora?
|
|
Assignee | |
Comment 13•11 years ago
|
||
(In reply to David Zbarsky (:dzbarsky) from comment #12) > Comment on attachment 720230 [details] [diff] [review] > User impact if declined: May cause leaks Leaks, and especially such leaks which tend to cause higher cycle collections times and high CC times bad for user experience.
|
|
||
Comment 14•11 years ago
|
||
(In reply to David Zbarsky (:dzbarsky) from comment #13) > (In reply to David Zbarsky (:dzbarsky) from comment #12) > > Comment on attachment 720230 [details] [diff] [review] > > > User impact if declined: May cause leaks > > Leaks, and especially such leaks which tend to cause higher cycle > collections times and high CC > times bad for user experience. David - do you think we'd catch these potential leaks with QA testing prior to shipping this release? Is there any behaviour QA can do to try and catch this early? Or test this patch out on nightly?
|
|
Assignee | |
Comment 15•11 years ago
|
||
These leaks only occur when specific SVG features are used, so it would depend how extensive the testing is. Unfortunately, I'm not sure how to construct a testcase that would leak. Smaug might know.
Flags: needinfo?(bugs)
|
|
Reporter | |
Comment 16•11 years ago
|
||
To find the cases when there might be some leaks require code inspection, I expect.
Flags: needinfo?(bugs)
|
|
||
Comment 17•11 years ago
|
||
Comment on attachment 720230 [details] [diff] [review] Patch Given the late timeframe and that the regressing issue has been present for a couple of months now we'll let this go for FF20 and try to get more testing/code review around this over the remaining course of FF21
Attachment #720230 -
Flags: approval-mozilla-beta?
Attachment #720230 -
Flags: approval-mozilla-beta-
Attachment #720230 -
Flags: approval-mozilla-aurora?
Attachment #720230 -
Flags: approval-mozilla-aurora+
|
|
Assignee | |
Comment 18•11 years ago
|
||
https://hg.mozilla.org/releases/mozilla-aurora/rev/99f0362b3591
|
|
||
Updated•11 years ago
|
You need to log in
before you can comment on or make changes to this bug.
Description
•