We have a problem with the destruction of SfxModule With reference to: core/include/sfx2/module.hxx, core/sfx2/source/appl/module.cxx (SfxModule) core/include/sfx2/msgpool.hxx, core/sfx2/source/control/msgpool.cxx (SfxSlotPool) core/include/sfx2/objface.hxx, core/sfx2/source/control/objface.cxx (SfxInterface) Lets call the current pointer to SfxModule "this_SfxModule" A) this_SfxModule->~SfxModule() calls "delete pImpl" (SfxModule_Impl) B) pImpl->~SfxModule_Impl() calls "delete pSlotPool" (SfxSlotPool) C) pSlotPool->~SfxSlotPool() calls "delete on all _pInterfaces" (SfxInterface) D) _pInterfaces[x]->~SfxInterface() calls "pMod->GetSlotPool()->ReleaseInterface(*this);" Now "pMod == this_SfxModule" (demonstrated using the debugger) So with (D), this is called: this_SfxModule->pImpl->pSlotPool->ReleaseInterface(*this); Issue #1) Notice that "pImpl" destruction has started in 'A' Issue #2) Notice that "pSlotPool" destruction has started in 'B' E) ReleaseInterface() calls erase on _pInterfaces" Notice that "_pInterfaces" struct is being deleted in 'C'. However, in this instance it probably is harmless call (and not required) These issues was discovered when attempting to turn "pImpl" into a smart pointer, that causes undefined behaviour (reading pImpl during it's destruction), and crashes depending on which compiler is used. This might be the reason for various random exit crashes, reported in Bugzilla?
I'm not an expert but your analysis seems right. I think it could interesting you discuss this on dev mailing list, see http://nabble.documentfoundation.org/Dev-f1639786.html so every dev may give his opinion.
I put a link here: http://nabble.documentfoundation.org/About-tdf-100270-SfxModule-destructor-SfxInterface-deletion-references-invalid-objects-td4185670.html
Michael: any thoughts about this one or do you know who may help here?
Wow - aptitude; you've done a lot of work here chasing this =) It would be great to see your patch pushed as a gerrit draft (?). Clearly moving to a smart-pointer scheme for these very involved reference counting solutions involves quite a degree of risk - since inevitably everyone holds a smart pointer to everyone else ;-) Are you introducing a 'dispose' pattern at the same time to ensure all cyclical references are released ?
Michael: I would also avoid using the smart pointer scheme for the same reasons as you give. Yes, we could probably fix it using the dispose method; however at this stage I am unsure that it is the best solution. I have not yet studied the code to make an accurate judgement.
** Please read this message in its entirety before responding ** To make sure we're focusing on the bugs that affect our users today, LibreOffice QA is asking bug reporters and confirmers to retest open, confirmed bugs which have not been touched for over a year. There have been thousands of bug fixes and commits since anyone checked on this bug report. During that time, it's possible that the bug has been fixed, or the details of the problem have changed. We'd really appreciate your help in getting confirmation that the bug is still present. If you have time, please do the following: Test to see if the bug is still present on a currently supported version of LibreOffice (5.4.1 or 5.3.6 https://www.libreoffice.org/download/ If the bug is present, please leave a comment that includes the version of LibreOffice and your operating system, and any changes you see in the bug behavior If the bug is NOT present, please set the bug's Status field to RESOLVED-WORKSFORME and leave a short comment that includes your version of LibreOffice and Operating System Please DO NOT Update the version field Reply via email (please reply directly on the bug tracker) Set the bug's Status field to RESOLVED - FIXED (this status has a particular meaning that is not appropriate in this case) If you want to do more to help you can test to see if your issue is a REGRESSION. To do so: 1. Download and install oldest version of LibreOffice (usually 3.3 unless your bug pertains to a feature added after 3.3) http://downloadarchive.documentfoundation.org/libreoffice/old/ 2. Test your bug 3. Leave a comment with your results. 4a. If the bug was present with 3.3 - set version to "inherited from OOo"; 4b. If the bug was not present in 3.3 - add "regression" to keyword Feel free to come ask questions or to say hello in our QA chat: http://webchat.freenode.net/?channels=libreoffice-qa Thank you for helping us make LibreOffice even better for everyone! Warm Regards, QA Team MassPing-UntouchedBug-20170901
@aptitude, @mmeeks, might it be related to https://bugs.documentfoundation.org/show_bug.cgi?id=113755 and http://crashreport.libreoffice.org/stats/signature/SfxSlotPool::GetSlotPool(SfxViewFrame%20*) ??
** Please read this message in its entirety before responding ** To make sure we're focusing on the bugs that affect our users today, LibreOffice QA is asking bug reporters and confirmers to retest open, confirmed bugs which have not been touched for over a year. There have been thousands of bug fixes and commits since anyone checked on this bug report. During that time, it's possible that the bug has been fixed, or the details of the problem have changed. We'd really appreciate your help in getting confirmation that the bug is still present. If you have time, please do the following: Test to see if the bug is still present with the latest version of LibreOffice from https://www.libreoffice.org/download/ If the bug is present, please leave a comment that includes the information from Help - About LibreOffice. If the bug is NOT present, please set the bug's Status field to RESOLVED-WORKSFORME and leave a comment that includes the information from Help - About LibreOffice. Please DO NOT Update the version field Reply via email (please reply directly on the bug tracker) Set the bug's Status field to RESOLVED - FIXED (this status has a particular meaning that is not appropriate in this case) If you want to do more to help you can test to see if your issue is a REGRESSION. To do so: 1. Download and install oldest version of LibreOffice (usually 3.3 unless your bug pertains to a feature added after 3.3) from http://downloadarchive.documentfoundation.org/libreoffice/old/ 2. Test your bug 3. Leave a comment with your results. 4a. If the bug was present with 3.3 - set version to 'inherited from OOo'; 4b. If the bug was not present in 3.3 - add 'regression' to keyword Feel free to come ask questions or to say hello in our QA chat: https://kiwiirc.com/nextclient/irc.freenode.net/#libreoffice-qa Thank you for helping us make LibreOffice even better for everyone! Warm Regards, QA Team MassPing-UntouchedBug
Dear aptitude, To make sure we're focusing on the bugs that affect our users today, LibreOffice QA is asking bug reporters and confirmers to retest open, confirmed bugs which have not been touched for over a year. There have been thousands of bug fixes and commits since anyone checked on this bug report. During that time, it's possible that the bug has been fixed, or the details of the problem have changed. We'd really appreciate your help in getting confirmation that the bug is still present. If you have time, please do the following: Test to see if the bug is still present with the latest version of LibreOffice from https://www.libreoffice.org/download/ If the bug is present, please leave a comment that includes the information from Help - About LibreOffice. If the bug is NOT present, please set the bug's Status field to RESOLVED-WORKSFORME and leave a comment that includes the information from Help - About LibreOffice. Please DO NOT Update the version field Reply via email (please reply directly on the bug tracker) Set the bug's Status field to RESOLVED - FIXED (this status has a particular meaning that is not appropriate in this case) If you want to do more to help you can test to see if your issue is a REGRESSION. To do so: 1. Download and install oldest version of LibreOffice (usually 3.3 unless your bug pertains to a feature added after 3.3) from https://downloadarchive.documentfoundation.org/libreoffice/old/ 2. Test your bug 3. Leave a comment with your results. 4a. If the bug was present with 3.3 - set version to 'inherited from OOo'; 4b. If the bug was not present in 3.3 - add 'regression' to keyword Feel free to come ask questions or to say hello in our QA chat: https://kiwiirc.com/nextclient/irc.freenode.net/#libreoffice-qa Thank you for helping us make LibreOffice even better for everyone! Warm Regards, QA Team MassPing-UntouchedBug
Dear aptitude, To make sure we're focusing on the bugs that affect our users today, LibreOffice QA is asking bug reporters and confirmers to retest open, confirmed bugs which have not been touched for over a year. There have been thousands of bug fixes and commits since anyone checked on this bug report. During that time, it's possible that the bug has been fixed, or the details of the problem have changed. We'd really appreciate your help in getting confirmation that the bug is still present. If you have time, please do the following: Test to see if the bug is still present with the latest version of LibreOffice from https://www.libreoffice.org/download/ If the bug is present, please leave a comment that includes the information from Help - About LibreOffice. If the bug is NOT present, please set the bug's Status field to RESOLVED-WORKSFORME and leave a comment that includes the information from Help - About LibreOffice. Please DO NOT Update the version field Reply via email (please reply directly on the bug tracker) Set the bug's Status field to RESOLVED - FIXED (this status has a particular meaning that is not appropriate in this case) If you want to do more to help you can test to see if your issue is a REGRESSION. To do so: 1. Download and install oldest version of LibreOffice (usually 3.3 unless your bug pertains to a feature added after 3.3) from https://downloadarchive.documentfoundation.org/libreoffice/old/ 2. Test your bug 3. Leave a comment with your results. 4a. If the bug was present with 3.3 - set version to 'inherited from OOo'; 4b. If the bug was not present in 3.3 - add 'regression' to keyword Feel free to come ask questions or to say hello in our QA chat: https://web.libera.chat/?settings=#libreoffice-qa Thank you for helping us make LibreOffice even better for everyone! Warm Regards, QA Team MassPing-UntouchedBug