Please report new issues athttps://github.com/DOCGroup
We (Automated Trading Desk) have seen a pure virtual called when an ORB IIOP connection closes before the connection completes. I believe the problem lies in TAO_Transport::~TAO_Transport() in this code, particularly the call to purge_entry: if (!this->is_connected_) { // When we have a not connected transport we could have buffered // messages on this transport which we have to cleanup now. this->cleanup_queue_i(); // Cleanup our cache entry this->purge_entry(); } TAO_Transport::purge_entry() calls Transport_Cache_Manager::purge_entry() which unbinds the cached item which is kept in a Cache_IntId. ~Cache_IntId() calls remove_reference on the transport. But, recall that the transport, TAO_IIOP_Transport in this case, has already been partially destructed and is now a TAO_Transport. TAO_Transport::remove_reference() implements this code: return this->event_handler_i ()->remove_reference (); and TAO_Transport::event_handler_i() is a pure virtual function. I do not have a reproducible example but we have seen this in production more than once.
Added depends on bug 2935. As part of the fix for bug 2935 the purge_entry was removed. From the changelog I got the entry below. The fix for 2935 did break other stuff, so was removed from the repo again. When the fix for 2935 is available probably this one will also be handled. Reassing to Dale. Thu Aug 9 14:31:02 UTC 2007 Dale Wilson <wilsond@ociweb.com> * tao/Transport.cpp: Fix indenting. In post_open set cache entry state to ENTRY_IDLE_BUT_NOT_PURGABLE directly rather than trying to re-register. Remove the call to purge_entry in the destructor. If this transport is still in the cache at the time it gets destroyed, we're already in deep trouble.
updated version
The offending code (purge_entry()) is no longer in the TAO_Transport destructor. This was changed in Tue May 20 18:05:08 UTC 2008 Chad Elliott <elliott_c@ociweb.com> Closing this bug.