System.Drawing.Common-8.0.8 upgrade to 9.0.0 crashes my application #111965
Comments
|
@boennhoff are you able to provide a call stack for your crash or repro steps? Having these is necessary for our investigation. |
|
@lonitra I will try: can you tell me how to get a Stacktrace and a dump, when the .NET runtime crashes? Can this be done within VS? Am I missing a setting, maybe disable "MyCode only"? About repro: Since our application is an extension to another application that needs to run, I first need to tackle down the problem to the exact call that leads to the crash for an idea on how to reproduce the bug without the external application. |
|
@boennhoff please have a try to refer the https://learn.microsoft.com/en-us/visualstudio/debugger/using-dump-files?view=vs-2022#BKMK_Create_a_dump_file & https://www.youtube.com/watch?v=JBRKZyf7Db4 to collect the dump file when VS crashed. |
|
@Zheng-Li01 thanks, but I did not found an obvious way to create a dump on crash during Debug in VS, so I ran it without debugging and attached ProcDump (-ma -t) to create a dump before termination. I tried to extract some information from it, but to no avail. Since it's a full dump I can't disclose it publicly; how can I share it with Microsoft (~83MiB zipped)? What I forgot to mention yet is the exit code/termination cause in the Debug output: |
|
I found the culprit, it was a stack overflow in a recursive method in our code. It was triggered by a change in class It looks like new/changed internal fields have a type we did not check for yet, passing an object of type The fix was applied to this redacted piece of code: private void RecursiveMethod(object obj) {
// collect object info or continue below...
...
// dive into object fields
var fields = obj.GetType().GetFields(BindingFlags.NonPublic | BindingFlags.Instance);
foreach (var field in fields) {
var fieldObject = field.GetValue(obj);
if (fieldObject != null
&& !field.IsStatic
&& field.FieldType != typeof(IntPtr)
&& field.FieldType != typeof(Pointer)
&& field.FieldType != typeof(void*) // <-- this line fixed it!
&& field.FieldType != typeof(void)) {
RecursiveMethod(fieldObject);
}
}
}I also implemented another check for a maximum depth to circumvent such a problem in the future. The method itself feels hacky, and I actually dislike it, but we found no other way around yet. Either way, shouldn't the reaction of VS be different with problems like this? An |
|
It's worth having the *.dmp upload just in case we do need to investigate further. You're right - a dev time |
|
@boennhoff ultimately this isn't something we can really fix, the AV is because you were reflecting into and operating on internals. If there is some scenario where you could benefit from additional public API we can discuss it. |
JeremyKuhne
removed
the
untriaged
|
@merriemcgaw I would upload the *.dmp.zip, but this would need to be done securely not publicly. Does your employer provide any means here to do that? Upload portal anyone? @JeremyKuhne Of course the problem was our fault, but isn't there a better way to handle such a case? Shouldn't VS at least break in the recursive method instead of killing the debug session? Pointing to the root cause of the AV? To the question of a possible public API, I would really like to discuss a cleaner solution: |
|
Generating a hash via recursive reflection and opt-outs (rather than opt-in) is somewhat risky. That said, it seems to me like there might be an underlying issue in reflection- it shouldn't AV. I would presume you can write a standalone repro for this by reflecting on a simple type with a pointer field in it. If you can do that it would be really helpful. I'll find and tag the right person for this on the runtime. |
|
@JeremyKuhne Well, that sounds doable: I'll take the challenge! But give me a few days, won't make it this week for sure... We opted-in in the first place but missed a few unknown types and had good experience and stable hashes with the opt-out way. It outperformed other techniques we tried like different serialization variants in speed and hash stability, namely because of the internal fields. I hope the risky part is prevented now by the recursion depth check I added. |
|
@JeremyKuhne can you transfer this to runtime\reflection and assign it me. Thans. It appears GetValue() is AVing on a native pointer.
|
dotnet-policy-service
bot
added
untriaged
JeremyKuhne
added
area-System.Reflection
and removed
area-System.Drawing
untriaged
I'll keep this issue open to investigate that once it is ready.
That was done here: https://github.com/dotnet/winforms/pull/10628/files#diff-90928a5d955b1fe1be1036c7d4eed3056b0981abc13c512e48f0bf88065249e0R292 - internal IntPtr NativeGraphics { get; private set; }
+ internal GpGraphics* NativeGraphics { get; private set; }which means the FieldType is now Also in the original description here, I'm not sure why the added LOC && field.FieldType != typeof(void*) // <-- this line fixed it!would have prevented the AV unless the code not shown attempted to access the native memory and the pointer is not valid or the reading continued too far for example. |
steveharter
added
the
needs-author-action
|
ping @boennhoff on repro. |
|
Hi again @steveharter @JeremyKuhne, I created a stripped down version of the problem, but I am not able to reproduce the actual VS crash issue with it anymore. VS halts correctly and I get a proper I wonder if it might be related to our interaction with a COM-Interop: The debug session crashes (still, with latest The PoC-repository actually just proofs that we had a bug triggered by a change in your libraries. I am a bit stuck now. But I am still able to share the crash memory dump (*.dmp.zip), just not publicly. But if you could provide me an upload-link to a private space? |
dotnet-policy-service
bot
added
the
needs-further-triage
dotnet-policy-service
bot
removed
needs-author-action
@boennhoff please upload the zip file to your OneDrive, then share the link to that zip file with @JeremyKuhne via email or any other private means of communication. |
|
This should go to @steveharter. One other way to do this securely is to open a VS Feedback ticket, where you can safely share things like this and provide the link to your ticket. https://developercommunity.visualstudio.com/ |
ericstj
added
the
needs-author-action
|
This issue has been marked |
|
This issue has been automatically marked |
.NET version
target: net8.0-windows
installed dotnet sdk: 9.0.100, 8.0.404 & 8.0.206 (for whatever reason I have multiple)
Did it work in .NET Framework?
Yes
Did it work in any of the earlier releases of .NET Core or .NET 5+?
not tested
Issue description
Recently I had warnings about vulnerable package references, so I upgraded all possible Microsoft packages and tested my application thoroughly, when I stumbled over a very strange bug:
Running in a debug session, my application opens one of our forms and as soon as I load data the complete Debug session kills itself without any notice. No break on any exception, no log output, the process is just gone, and VS sits there as if no debug session was started.
Steps to reproduce
After a
git bisectI determined the root cause: when changing acsprojfile fromto
the bug appears. In the same commit I also upgraded many other packages from 8.0.* to 9.0.0, like
System.Configuration.ConfigurationManagerandSystem.Management, but only withSystem.Drawing.Common-9.0.0this bug happens.We are using
System.Drawing.Commonmainly forImagemanipulation (Resize, etc.) andBitmapcreation, the UI itself is 3rd-party (managed through COM interops) notWindows.Forms.I am a bit stuck in finding more information on this, or better describing this issue, I am posting here because the NuGet-package links here. Does anyone have an idea on how to find out more?
My workaround is of course, to not upgrade this package, but this can't be the solution in the long-run...
The text was updated successfully, but these errors were encountered: