Bug 110036 - [TESTCASE] Konqueror crash when entering www.lotoquebec.com
Summary: [TESTCASE] Konqueror crash when entering www.lotoquebec.com
Status: RESOLVED FIXED
Alias: None
Product: konqueror
Classification: Applications
Component: khtml (show other bugs)
Version: unspecified
Platform: Slackware Linux
: NOR crash
Target Milestone: ---
Assignee: Maksim Orlovich
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2005-08-02 17:03 UTC by Jean-Christophe Fargette
Modified: 2005-11-30 22:24 UTC (History)
0 users

See Also:
Latest Commit:
Version Fixed In:


Attachments
patch (494 bytes, patch)
2005-11-13 23:19 UTC, Maksim Orlovich
Details

Note You need to log in before you can comment on or make changes to this bug.
Description Jean-Christophe Fargette 2005-08-02 17:03:27 UTC
Version:            (using KDE KDE 3.4.2)
Installed from:    Slackware Packages
Compiler:          gcc-3.3.4 
OS:                Linux

Well that's easy. Just open konqueror and go to the website www.lotoquebec.com

The first time it loads the site and crash. If you try again it crashs rigth away.

Not sure it is was ok on konqueror-3.4.1 but for sure there were no crash in 3.4.0

Jean-Christophe
Comment 1 Tommi Tervo 2005-08-02 19:58:53 UTC
Backtrace?
Comment 2 Jean-Christophe Fargette 2005-08-02 20:09:51 UTC
This is my backtrace. 



(no debugging symbols found)
Using host libthread_db library "/lib/libthread_db.so.1".
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
[Thread debugging using libthread_db enabled]
[New Thread 16384 (LWP 14444)]
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
[KCrash handler]
#5  0x40ef8da2 in QString::operator= () from /usr/lib/qt/lib/libqt-mt.so.3
#6  0x41c0b2f9 in QValueListPrivate<khtml::RenderObject*>::~QValueListPrivate
    () from /opt/kde/lib/libkhtml.so.4
#7  0x41c0c3c2 in QValueListPrivate<khtml::RenderObject*>::~QValueListPrivate
    () from /opt/kde/lib/libkhtml.so.4
#8  0x41b6d9a3 in KStaticDeleter<QPtrList<DOM::DocumentImpl> 
>::~KStaticDeleter

    () from /opt/kde/lib/libkhtml.so.4
#9  0x41b6d972 in KStaticDeleter<QPtrList<DOM::DocumentImpl> 
>::~KStaticDeleter

    () from /opt/kde/lib/libkhtml.so.4
#10 0x41b73ebf in KStaticDeleter<QPtrList<DOM::DocumentImpl> 
>::~KStaticDeleter

    () from /opt/kde/lib/libkhtml.so.4
#11 0x41ce986b in DOM::Node::appendChild () from /opt/kde/lib/libkhtml.so.4
#12 0x41c5bcb0 in DOM::EventException::~EventException ()
   from /opt/kde/lib/libkhtml.so.4
#13 0x41c562be in 
QValueListPrivate<khtml::TokenizerSubstring>::QValueListPrivate () 
from /opt/kde/lib/libkhtml.so.4
#14 0x41decf40 in KJS::Object::call () from /opt/kde/lib/libkjs.so.1
#15 0x41db6c13 in KJS::DateObjectFuncImp::~DateObjectFuncImp ()
   from /opt/kde/lib/libkjs.so.1
#16 0x41dbb26a in KJS::DateObjectFuncImp::~DateObjectFuncImp ()
   from /opt/kde/lib/libkjs.so.1
#17 0x41dc1cdc in KJS::DateObjectFuncImp::~DateObjectFuncImp ()
   from /opt/kde/lib/libkjs.so.1
#18 0x41dbb07f in KJS::DateObjectFuncImp::~DateObjectFuncImp ()
   from /opt/kde/lib/libkjs.so.1
#19 0x41dbb60e in KJS::DateObjectFuncImp::~DateObjectFuncImp ()
   from /opt/kde/lib/libkjs.so.1
#20 0x41dc1c66 in KJS::DateObjectFuncImp::~DateObjectFuncImp ()
   from /opt/kde/lib/libkjs.so.1
#21 0x41dbb07f in KJS::DateObjectFuncImp::~DateObjectFuncImp ()
   from /opt/kde/lib/libkjs.so.1
#22 0x41dbb60e in KJS::DateObjectFuncImp::~DateObjectFuncImp ()
   from /opt/kde/lib/libkjs.so.1
#23 0x41dc1cdc in KJS::DateObjectFuncImp::~DateObjectFuncImp ()
   from /opt/kde/lib/libkjs.so.1
#24 0x41dbb07f in KJS::DateObjectFuncImp::~DateObjectFuncImp ()
   from /opt/kde/lib/libkjs.so.1
#25 0x41dc1183 in KJS::DateObjectFuncImp::~DateObjectFuncImp ()
   from /opt/kde/lib/libkjs.so.1
#26 0x41de7efc in KJS::DeclaredFunctionImp::execute ()
   from /opt/kde/lib/libkjs.so.1
#27 0x41de72b0 in KJS::FunctionImp::call () from /opt/kde/lib/libkjs.so.1
#28 0x41decf40 in KJS::Object::call () from /opt/kde/lib/libkjs.so.1
#29 0x41db6c13 in KJS::DateObjectFuncImp::~DateObjectFuncImp ()
   from /opt/kde/lib/libkjs.so.1
#30 0x41dbb26a in KJS::DateObjectFuncImp::~DateObjectFuncImp ()
   from /opt/kde/lib/libkjs.so.1
#31 0x41dc1cdc in KJS::DateObjectFuncImp::~DateObjectFuncImp ()
   from /opt/kde/lib/libkjs.so.1
#32 0x41dbb07f in KJS::DateObjectFuncImp::~DateObjectFuncImp ()
   from /opt/kde/lib/libkjs.so.1
#33 0x41dbb60e in KJS::DateObjectFuncImp::~DateObjectFuncImp ()
   from /opt/kde/lib/libkjs.so.1
#34 0x41dc1c66 in KJS::DateObjectFuncImp::~DateObjectFuncImp ()
   from /opt/kde/lib/libkjs.so.1
#35 0x41dbb07f in KJS::DateObjectFuncImp::~DateObjectFuncImp ()
   from /opt/kde/lib/libkjs.so.1
#36 0x41dc1183 in KJS::DateObjectFuncImp::~DateObjectFuncImp ()
   from /opt/kde/lib/libkjs.so.1
#37 0x41de7efc in KJS::DeclaredFunctionImp::execute ()
   from /opt/kde/lib/libkjs.so.1
#38 0x41de72b0 in KJS::FunctionImp::call () from /opt/kde/lib/libkjs.so.1
#39 0x41decf40 in KJS::Object::call () from /opt/kde/lib/libkjs.so.1
#40 0x41cc0f54 in TestFunctionImp::implementsCall ()
   from /opt/kde/lib/libkhtml.so.4
#41 0x41cc1852 in TestFunctionImp::implementsCall ()
   from /opt/kde/lib/libkhtml.so.4
#42 0x41b68a23 in KHTMLInfoDlg::metaObject () from /opt/kde/lib/libkhtml.so.4
#43 0x41b6ccf7 in KStaticDeleter<QPtrList<DOM::DocumentImpl> 
>::~KStaticDeleter

    () from /opt/kde/lib/libkhtml.so.4
#44 0x41b99db5 in findDoctypeEntry () from /opt/kde/lib/libkhtml.so.4
#45 0x41b1dedf in KHTMLPart::checkEmitLoadEvent ()
   from /opt/kde/lib/libkhtml.so.4
#46 0x41b1d9d6 in KHTMLPart::checkCompleted () from /opt/kde/lib/libkhtml.so.4
#47 0x41b1d268 in KHTMLPart::slotLoaderRequestDone ()
   from /opt/kde/lib/libkhtml.so.4
#48 0x41b38da4 in KHTMLPart::qt_invoke () from /opt/kde/lib/libkhtml.so.4
#49 0x40c2418c in QObject::activate_signal ()
   from /usr/lib/qt/lib/libqt-mt.so.3
#50 0x41c51225 in DOM::CSSSelector::~CSSSelector ()
   from /opt/kde/lib/libkhtml.so.4
#51 0x41c4fe9e in DOM::CSSSelector::~CSSSelector ()
   from /opt/kde/lib/libkhtml.so.4
#52 0x41c513bd in DOM::CSSSelector::~CSSSelector ()
   from /opt/kde/lib/libkhtml.so.4
#53 0x40c2418c in QObject::activate_signal ()
   from /usr/lib/qt/lib/libqt-mt.so.3
#54 0x401a065a in KIO::Job::result () from /opt/kde/lib/libkio.so.4
#55 0x401888ec in KIO::Job::emitResult () from /opt/kde/lib/libkio.so.4
#56 0x40189e0c in KIO::SimpleJob::slotFinished () 
from /opt/kde/lib/libkio.so.4
#57 0x4018d28e in KIO::TransferJob::slotFinished ()
   from /opt/kde/lib/libkio.so.4
#58 0x401a263d in KIO::TransferJob::qt_invoke () from /opt/kde/lib/libkio.so.4
#59 0x40c2418c in QObject::activate_signal ()
   from /usr/lib/qt/lib/libqt-mt.so.3
#60 0x40c23fb4 in QObject::activate_signal ()
   from /usr/lib/qt/lib/libqt-mt.so.3
#61 0x4017c99e in KIO::SlaveInterface::finished ()
   from /opt/kde/lib/libkio.so.4
#62 0x4017b501 in KIO::SlaveInterface::dispatch ()
   from /opt/kde/lib/libkio.so.4
#63 0x4017aa09 in KIO::SlaveInterface::dispatch ()
   from /opt/kde/lib/libkio.so.4
#64 0x4017825b in KIO::Slave::gotInput () from /opt/kde/lib/libkio.so.4
#65 0x40179f78 in KIO::Slave::qt_invoke () from /opt/kde/lib/libkio.so.4
#66 0x40c2418c in QObject::activate_signal ()
   from /usr/lib/qt/lib/libqt-mt.so.3
#67 0x40c242ed in QObject::activate_signal ()
   from /usr/lib/qt/lib/libqt-mt.so.3
#68 0x40f469f2 in QSocketNotifier::activated ()
   from /usr/lib/qt/lib/libqt-mt.so.3
#69 0x40c40950 in QSocketNotifier::event () from /usr/lib/qt/lib/libqt-mt.so.3
#70 0x40bc784f in QApplication::internalNotify ()
   from /usr/lib/qt/lib/libqt-mt.so.3
#71 0x40bc6e4e in QApplication::notify () from /usr/lib/qt/lib/libqt-mt.so.3
#72 0x4074b585 in KApplication::notify () from /opt/kde/lib/libkdecore.so.4
#73 0x40bb725a in QEventLoop::activateSocketNotifiers ()
   from /usr/lib/qt/lib/libqt-mt.so.3
#74 0x40b71933 in QEventLoop::processEvents ()
   from /usr/lib/qt/lib/libqt-mt.so.3
#75 0x40bd9ba8 in QEventLoop::enterLoop () from /usr/lib/qt/lib/libqt-mt.so.3
#76 0x40bd9a58 in QEventLoop::exec () from /usr/lib/qt/lib/libqt-mt.so.3
#77 0x40bc7aa1 in QApplication::exec () from /usr/lib/qt/lib/libqt-mt.so.3
#78 0x41761e9c in kdemain () from /opt/kde/lib/libkdeinit_konqueror.so
#79 0x409207b6 in kdeinitmain () from /opt/kde/lib/kde3/konqueror.so
#80 0x0804ce12 in ?? ()
#81 0x00000002 in ?? ()
#82 0x0807a1a0 in ?? ()
#83 0x00000001 in ?? ()
#84 0x00000000 in ?? ()
#85 0x00000000 in ?? ()
#86 0x0000002b in ?? ()
#87 0x00001f80 in ?? ()
#88 0x0000ffff in ?? ()
#89 0x00000000 in ?? ()
#90 0x00000000 in ?? ()
#91 0x01000000 in ?? ()
#92 0x00000000 in ?? ()
#93 0x00000000 in ?? ()
#94 0x00000000 in ?? ()
#95 0x00000000 in ?? ()
#96 0x00000000 in ?? ()
#97 0x00000000 in ?? ()
#98 0x00000000 in ?? ()
#99 0x00000000 in ?? ()
#100 0x00000000 in ?? ()
#101 0x00000000 in ?? ()
#102 0x00000000 in ?? ()
#103 0x00000000 in ?? ()
#104 0x00000000 in ?? ()
#105 0x0807a430 in ?? ()
#106 0x00000000 in ?? ()
#107 0x00000000 in ?? ()
#108 0x00000000 in ?? ()
#109 0x00000000 in ?? ()
#110 0x00000000 in ?? ()
#111 0x00000000 in ?? ()
#112 0x00000000 in ?? ()
#113 0x4104b2c0 in vtable for QGArray () from /usr/lib/qt/lib/libqt-mt.so.3
#114 0x00000000 in ?? ()
#115 0x00000000 in ?? ()
#116 0x00000000 in ?? ()
#117 0x00000000 in ?? ()
#118 0x80000000 in ?? ()
#119 0x00003fff in ?? ()
#120 0x41392ff4 in ?? () from /lib/libpthread.so.0
#121 0x415ec9c0 in __libc_tsd_MALLOC_data () from /lib/libc.so.6
#122 0x0805ae08 in ?? ()
#123 0xbffff228 in ?? ()
#124 0x4138ac6a in pthread_mutex_unlock () from /lib/libpthread.so.0
#125 0x0804e33b in ?? ()
#126 0x00000002 in ?? ()
#127 0x0807a5e4 in ?? ()
#128 0x0807a5f7 in ?? ()
#129 0x00000000 in ?? ()
#130 0x00000001 in ?? ()
#131 0x0807a608 in ?? ()
#132 0x00000000 in ?? ()
#133 0x00000000 in ?? ()
#134 0x00000000 in ?? ()
#135 0x0807a60c in ?? ()
#136 0x00000000 in ?? ()
#137 0x00000000 in ?? ()
#138 0x00000000 in ?? ()
#139 0x0807a60c in ?? ()
#140 0x00000000 in ?? ()
#141 0x00000000 in ?? ()
#142 0x0807a5fb in ?? ()
#143 0x00000001 in ?? ()
#144 0x00000000 in ?? ()
#145 0x0807a5ee in ?? ()
#146 0x0807a5e4 in ?? ()
#147 0x00000002 in ?? ()
#148 0x0807a5e0 in ?? ()
#149 0x0000386b in ?? ()
#150 0x00000004 in ?? ()
#151 0x00000004 in ?? ()
#152 0x0000000a in ?? ()
#153 0x00000054 in ?? ()
#154 0x08052658 in vtable for QCString ()
#155 0x0805ae08 in ?? ()
#156 0x00000000 in ?? ()
#157 0x00000000 in ?? ()
#158 0x08052658 in vtable for QCString ()
#159 0x0805adf8 in ?? ()
#160 0x00000000 in ?? ()
#161 0x4138d51b in thread_self () from /lib/libpthread.so.0
#162 0x0804e85e in ?? ()
#163 0x00000008 in ?? ()
#164 0xbffff5a0 in ?? ()
#165 0xbffff520 in ?? ()
#166 0xbffff4a0 in ?? ()
#167 0x00000000 in ?? ()
#168 0xbffff460 in ?? ()
#169 0xffffffff in ?? ()
#170 0x4147c74d in operator delete () from /usr/lib/./libstdc++.so.5
#171 0x0804f8cd in ?? ()
#172 0x00000000 in ?? ()
#173 0xbffff69e in ?? ()
#174 0x00000001 in ?? ()
#175 0x00000000 in ?? ()
#176 0x00000000 in ?? ()
#177 0x00000000 in ?? ()
#178 0x00000000 in ?? ()
#179 0x00000000 in ?? ()
#180 0x00000000 in ?? ()
#181 0x080506b7 in _IO_stdin_used ()
#182 0xbffff744 in ?? ()
#183 0xbffff678 in ?? ()
#184 0x414fd624 in __cxa_atexit_internal () from /lib/libc.so.6
#185 0x414e7469 in __libc_start_main () from /lib/libc.so.6
#186 0x0804b771 in ?? ()




On August 2, 2005 01:58 pm, Tommi Tervo wrote:
[bugs.kde.org quoted mail]
Comment 3 lexual 2005-08-09 07:59:57 UTC
no crash here. kubuntu 3.4.1 package
Comment 4 Maksim Orlovich 2005-11-13 22:04:38 UTC
confirmed... gonna do preliminary analysis
Comment 5 Maksim Orlovich 2005-11-13 22:10:58 UTC
#0  0xb72b20bd in QString::operator= () from /opt/kde3.4/lib/libqt-mt.so.3
#1  0xb625b7f5 in khtml::RenderPartObject::updateWidget (this=0x86961c0)
    at /home/maksim/kde3/kdelibs/khtml/rendering/render_frames.cpp:678
#2  0xb6259cd5 in khtml::RenderPartObject::close (this=0x86961c0)
    at /home/maksim/kde3/kdelibs/khtml/rendering/render_frames.cpp:731
#3  0xb61af68e in DOM::NodeImpl::closeRenderer (this=0x855fbe8) at /home/maksim/kde3/kdelibs/khtml/xml/dom_nodeimpl.cpp:856
#4  0xb61af6dd in DOM::NodeImpl::close (this=0x855fbe8) at /home/maksim/kde3/kdelibs/khtml/xml/dom_nodeimpl.cpp:843
#5  0xb61b6f8e in DOM::ElementImpl::close (this=0x855fbe8) at /home/maksim/kde3/kdelibs/khtml/xml/dom_elementimpl.cpp:502
#6  0xb632372f in DOM::Node::appendChild (this=0xbfb59154, newChild=@0xbfb59194)
    at /home/maksim/kde3/kdelibs/khtml/dom/dom_node.cpp:297
#7  0xb62a9686 in KJS::DOMNodeProtoFunc::tryCall (this=0x1e, exec=0xbfb59954, thisObj=@0xbfb59524, args=@0xbfb59518)
    at /home/maksim/kde3/kdelibs/khtml/ecma/kjs_dom.cpp:512
#8  0xb629fe01 in KJS::DOMFunction::call (this=0x1e, exec=0xbfb59954, thisObj=@0xbfb59524, args=@0xbfb59518)
    at /home/maksim/kde3/kdelibs/khtml/ecma/kjs_binding.cpp:114
#9  0xb5fb1d5e in KJS::Object::call (this=0x1e, exec=0xbfb59954, thisObj=@0xbfb59524, args=@0xbfb59518)
    at /home/maksim/kde3/kdelibs/kjs/object.cpp:70
#10 0xb5f7cd4f in KJS::FunctionCallNode::evaluate (this=0x85551d0, exec=0xbfb59954)
    at /home/maksim/kde3/kdelibs/kjs/nodes.cpp:870
#11 0xb5f816da in KJS::ExprStatementNode::execute (this=0x85551e8, exec=0xbfb59954)
    at /home/maksim/kde3/kdelibs/kjs/nodes.cpp:1980
#12 0xb5f86b28 in KJS::SourceElementsNode::execute (this=0x81e7e20, exec=0xbfb59954)
    at /home/maksim/kde3/kdelibs/kjs/nodes.cpp:3097
#13 0xb5f814ff in KJS::BlockNode::execute (this=0x85547b8, exec=0xbfb59954) at /home/maksim/kde3/kdelibs/kjs/nodes.cpp:1942
#14 0xb5f819fd in KJS::IfNode::execute (this=0x85387b8, exec=0xbfb59954) at /home/maksim/kde3/kdelibs/kjs/nodes.cpp:2021
#15 0xb5f869c3 in KJS::SourceElementsNode::execute (this=0x85387f0, exec=0xbfb59954)
    at /home/maksim/kde3/kdelibs/kjs/nodes.cpp:3091
#16 0xb5f814ff in KJS::BlockNode::execute (this=0x8538828, exec=0xbfb59954) at /home/maksim/kde3/kdelibs/kjs/nodes.cpp:1942
#17 0xb5f819fd in KJS::IfNode::execute (this=0x856e008, exec=0xbfb59954) at /home/maksim/kde3/kdelibs/kjs/nodes.cpp:2021
#18 0xb5f86b28 in KJS::SourceElementsNode::execute (this=0x858e820, exec=0xbfb59954)
    at /home/maksim/kde3/kdelibs/kjs/nodes.cpp:3097
#19 0xb5f814ff in KJS::BlockNode::execute (this=0x856e078, exec=0xbfb59954) at /home/maksim/kde3/kdelibs/kjs/nodes.cpp:1942
#20 0xb5fabd7f in KJS::DeclaredFunctionImp::execute (this=0x1e, exec=0xbfb59954)
    at /home/maksim/kde3/kdelibs/kjs/function.cpp:579
#21 0xb5fab276 in KJS::FunctionImp::call (this=0x8550598, exec=0xbfb59d64, thisObj=@0xbfb59a44, args=@0xbfb59a38)
    at /home/maksim/kde3/kdelibs/kjs/function.cpp:354
---Type <return> to continue, or q <return> to quit---
#22 0xb5fb1d5e in KJS::Object::call (this=0x1e, exec=0xbfb59d64, thisObj=@0xbfb59a44, args=@0xbfb59a38)
    at /home/maksim/kde3/kdelibs/kjs/object.cpp:70
#23 0xb5f7cd4f in KJS::FunctionCallNode::evaluate (this=0x85bfbb0, exec=0xbfb59d64)
    at /home/maksim/kde3/kdelibs/kjs/nodes.cpp:870
#24 0xb5f816da in KJS::ExprStatementNode::execute (this=0x8542b20, exec=0xbfb59d64)
    at /home/maksim/kde3/kdelibs/kjs/nodes.cpp:1980
#25 0xb5f86b28 in KJS::SourceElementsNode::execute (this=0x832a718, exec=0xbfb59d64)
    at /home/maksim/kde3/kdelibs/kjs/nodes.cpp:3097

#26 0xb5f814ff in KJS::BlockNode::execute (this=0x86f9880, exec=0xbfb59d64) at /home/maksim/kde3/kdelibs/kjs/nodes.cpp:1942
#27 0xb5f819fd in KJS::IfNode::execute (this=0x855e4a8, exec=0xbfb59d64) at /home/maksim/kde3/kdelibs/kjs/nodes.cpp:2021
#28 0xb5f869c3 in KJS::SourceElementsNode::execute (this=0x86f9778, exec=0xbfb59d64)
    at /home/maksim/kde3/kdelibs/kjs/nodes.cpp:3091
#29 0xb5f814ff in KJS::BlockNode::execute (this=0x835fa30, exec=0xbfb59d64) at /home/maksim/kde3/kdelibs/kjs/nodes.cpp:1942
#30 0xb5fabd7f in KJS::DeclaredFunctionImp::execute (this=0x1e, exec=0xbfb59d64)
    at /home/maksim/kde3/kdelibs/kjs/function.cpp:579
#31 0xb5fab276 in KJS::FunctionImp::call (this=0x82b8c38, exec=0x83114a8, thisObj=@0xbfb59e74, args=@0xbfb59e54)
    at /home/maksim/kde3/kdelibs/kjs/function.cpp:354
#32 0xb5fb1d5e in KJS::Object::call (this=0x1e, exec=0x83114a8, thisObj=@0xbfb59e74, args=@0xbfb59e54)
    at /home/maksim/kde3/kdelibs/kjs/object.cpp:70
#33 0xb6302c3c in KJS::JSEventListener::handleEvent (this=0x8551800, evt=@0xbfb59ed0)
    at /home/maksim/kde3/kdelibs/khtml/ecma/kjs_events.cpp:95
#34 0xb6302dcb in KJS::JSLazyEventListener::handleEvent (this=0x8551800, evt=@0xbfb59ed0)
    at /home/maksim/kde3/kdelibs/khtml/ecma/kjs_events.cpp:151
#35 0xb61a5086 in DOM::DocumentImpl::defaultEventHandler (this=0x82e01c0, evt=0x853f4e8)
    at /home/maksim/kde3/kdelibs/khtml/xml/dom_docimpl.cpp:2391
#36 0xb61b2855 in DOM::NodeImpl::dispatchWindowEvent (this=0x82e01ec, _id=17, canBubbleArg=false, cancelableArg=false)
    at /home/maksim/kde3/kdelibs/khtml/xml/dom_nodeimpl.cpp:509
#37 0xb61dc205 in DOM::HTMLDocumentImpl::close (this=0x82e01c0)
    at /home/maksim/kde3/kdelibs/khtml/html/html_documentimpl.cpp:276
#38 0xb6167e58 in KHTMLPart::checkEmitLoadEvent (this=0x84c5178) at /home/maksim/kde3/kdelibs/khtml/khtml_part.cpp:2325
#39 0xb616810a in KHTMLPart::checkCompleted (this=0x84c5178) at /home/maksim/kde3/kdelibs/khtml/khtml_part.cpp:2247
#40 0xb61691f9 in KHTMLPart::slotLoaderRequestDone (this=0x84c5178, dl=0x8507be8, obj=0x864cac8)
    at /home/maksim/kde3/kdelibs/khtml/khtml_part.cpp:2100
#41 0xb6176e5c in KHTMLPart::qt_invoke (this=0x84c5178, _id=63, _o=0xbfb5a164) at ../khtml/khtml_part.moc:548
#42 0xb7083c5f in QObject::activate_signal () from /opt/kde3.4/lib/libqt-mt.so.3
---Type <return> to continue, or q <return> to quit---
#43 0xb6295500 in khtml::Loader::requestDone (this=0x82c8b90, t0=0x8507be8, t1=0x864cac8) at ../khtml/misc/loader.moc:240
#44 0xb6297572 in khtml::Loader::slotFinished (this=0x82c8b90, job=0x8558f88)
    at /home/maksim/kde3/kdelibs/khtml/misc/loader.cpp:1134
#45 0xb62976f2 in khtml::Loader::qt_invoke (this=0x82c8b90, _id=2, _o=0xbfb5a288) at ../khtml/misc/loader.moc:260
#46 0xb7083c5f in QObject::activate_signal () from /opt/kde3.4/lib/libqt-mt.so.3
#47 0xb7b332d2 in KIO::Job::result (this=0x8558f88, t0=0x8558f88) at ./kio/kio/jobclasses.moc:162
#48 0xb7b38179 in KIO::Job::emitResult (this=0x8558f88) at /home/maksim/kde3/kdelibs/kio/kio/job.cpp:222
#49 0xb7b3bb1b in KIO::SimpleJob::slotFinished (this=0x8558f88) at /home/maksim/kde3/kdelibs/kio/kio/job.cpp:570
#50 0xb7b3cda0 in KIO::TransferJob::slotFinished (this=0x8558f88) at /home/maksim/kde3/kdelibs/kio/kio/job.cpp:938
#51 0xb7b44c68 in KIO::TransferJob::qt_invoke (this=0x8558f88, _id=17, _o=0xbfb5a5d4) at ./kio/kio/jobclasses.moc:1071
#52 0xb7083c5f in QObject::activate_signal () from /opt/kde3.4/lib/libqt-mt.so.3
#53 0xb7084204 in QObject::activate_signal () from /opt/kde3.4/lib/libqt-mt.so.3
#54 0xb7b22128 in KIO::SlaveInterface::finished (this=0x8543fb8) at ./kio/kio/slaveinterface.moc:226
#55 0xb7b25ff8 in KIO::SlaveInterface::dispatch (this=0x8543fb8, _cmd=104, rawdata=@0xbfb5a83c)
    at /home/maksim/kde3/kdelibs/kio/kio/slaveinterface.cpp:243
#56 0xb7b230e1 in KIO::SlaveInterface::dispatch (this=0x8543fb8)
    at /home/maksim/kde3/kdelibs/kio/kio/slaveinterface.cpp:173
#57 0xb7b200bb in KIO::Slave::gotInput (this=0x8543fb8) at /home/maksim/kde3/kdelibs/kio/kio/slave.cpp:300
#58 0xb7b203b9 in KIO::Slave::qt_invoke (this=0x8543fb8, _id=4, _o=0xbfb5a980) at ./kio/kio/slave.moc:113
#59 0xb7083c5f in QObject::activate_signal () from /opt/kde3.4/lib/libqt-mt.so.3
#60 0xb7084146 in QObject::activate_signal () from /opt/kde3.4/lib/libqt-mt.so.3
#61 0xb73039ae in QSocketNotifier::activated () from /opt/kde3.4/lib/libqt-mt.so.3
#62 0xb709a3fd in QSocketNotifier::event () from /opt/kde3.4/lib/libqt-mt.so.3
#63 0xb7043b18 in QApplication::internalNotify () from /opt/kde3.4/lib/libqt-mt.so.3
#64 0xb7044060 in QApplication::notify () from /opt/kde3.4/lib/libqt-mt.so.3
#65 0xb757428b in KApplication::notify (this=0xbfb5ae88, receiver=0x854dfe8, event=0xbfb5abc8)
    at /home/maksim/kde3/kdelibs/kdecore/kapplication.cpp:550
#66 0xb7037434 in QEventLoop::activateSocketNotifiers () from /opt/kde3.4/lib/libqt-mt.so.3
#67 0xb7007fc6 in QEventLoop::processEvents () from /opt/kde3.4/lib/libqt-mt.so.3
#68 0xb7050bec in QEventLoop::enterLoop () from /opt/kde3.4/lib/libqt-mt.so.3
#69 0xb7050b51 in QEventLoop::exec () from /opt/kde3.4/lib/libqt-mt.so.3
#70 0xb703f940 in QApplication::exec () from /opt/kde3.4/lib/libqt-mt.so.3
#71 0xb7ebc74c in kdemain () from /opt/kde3.4/lib/libkdeinit_konqueror.so
#72 0xb697ee40 in __libc_start_main () from /lib/tls/libc.so.6
#73 0x080485e1 in _start () at ../sysdeps/i386/elf/start.S:119
Comment 6 Maksim Orlovich 2005-11-13 22:22:16 UTC
very odd. Looks like null pointer yet like not one:
embed is:0x1eb43218
==5000==
==5000== Invalid read of size 4
==5000==    at 0x1C8A40BD: QString::operator=(QString const&) (in /opt/kde3.4/lib/libqt-mt.so.3.3.4)
==5000==    by 0x1DEF5809: khtml::RenderPartObject::updateWidget() (render_frames.cpp:679)
==5000==    by 0x1DEF3CD4: khtml::RenderPartObject::close() (render_frames.cpp:732)
==5000==    by 0x1DE4968D: DOM::NodeImpl::closeRenderer() (dom_nodeimpl.cpp:856)
==5000==    by 0x1DE496DC: DOM::NodeImpl::close() (dom_nodeimpl.cpp:843)
==5000==    by 0x1DE50F8D: DOM::ElementImpl::close() (dom_elementimpl.cpp:502)
==5000==    by 0x1DFBD72E: DOM::Node::appendChild(DOM::Node const&) (dom_node.cpp:297)
==5000==    by 0x1DF43685: KJS::DOMNodeProtoFunc::tryCall(KJS::ExecState*, KJS::Object&, KJS::List const&) (kjs_dom.cpp:512)
==5000==    by 0x1DF39E00: KJS::DOMFunction::call(KJS::ExecState*, KJS::Object&, KJS::List const&) (kjs_binding.cpp:114)
==5000==    by 0x1E0E6D5D: KJS::Object::call(KJS::ExecState*, KJS::Object&, KJS::List const&) (object.cpp:70)
==5000==    by 0x1E0B1D4E: KJS::FunctionCallNode::evaluate(KJS::ExecState*) const (nodes.cpp:870)
==5000==    by 0x1E0B66D9: KJS::ExprStatementNode::execute(KJS::ExecState*) (nodes.cpp:1980)
==5000==    by 0x1E0BBB27: KJS::SourceElementsNode::execute(KJS::ExecState*) (nodes.cpp:3097)
==5000==    by 0x1E0B64FE: KJS::BlockNode::execute(KJS::ExecState*) (nodes.cpp:1942)
==5000==    by 0x1E0B69FC: KJS::IfNode::execute(KJS::ExecState*) (nodes.cpp:2021)
==5000==    by 0x1E0BB9C2: KJS::SourceElementsNode::execute(KJS::ExecState*) (nodes.cpp:3091)
==5000==    by 0x1E0B64FE: KJS::BlockNode::execute(KJS::ExecState*) (nodes.cpp:1942)
==5000==    by 0x1E0B69FC: KJS::IfNode::execute(KJS::ExecState*) (nodes.cpp:2021)
==5000==    by 0x1E0BBB27: KJS::SourceElementsNode::execute(KJS::ExecState*) (nodes.cpp:3097)
==5000==    by 0x1E0B64FE: KJS::BlockNode::execute(KJS::ExecState*) (nodes.cpp:1942)
==5000==    by 0x1E0E0D7E: KJS::DeclaredFunctionImp::execute(KJS::ExecState*) (function.cpp:579)
==5000==    by 0x1E0E0275: KJS::FunctionImp::call(KJS::ExecState*, KJS::Object&, KJS::List const&) (function.cpp:354)
==5000==    by 0x1E0E6D5D: KJS::Object::call(KJS::ExecState*, KJS::Object&, KJS::List const&) (object.cpp:70)
==5000==    by 0x1E0B1D4E: KJS::FunctionCallNode::evaluate(KJS::ExecState*) const (nodes.cpp:870)
==5000==    by 0x1E0B66D9: KJS::ExprStatementNode::execute(KJS::ExecState*) (nodes.cpp:1980)
==5000==    by 0x1E0BBB27: KJS::SourceElementsNode::execute(KJS::ExecState*) (nodes.cpp:3097)
==5000==    by 0x1E0B64FE: KJS::BlockNode::execute(KJS::ExecState*) (nodes.cpp:1942)
==5000==    by 0x1E0B69FC: KJS::IfNode::execute(KJS::ExecState*) (nodes.cpp:2021)
==5000==    by 0x1E0BB9C2: KJS::SourceElementsNode::execute(KJS::ExecState*) (nodes.cpp:3091)
==5000==    by 0x1E0B64FE: KJS::BlockNode::execute(KJS::ExecState*) (nodes.cpp:1942)
==5000==    by 0x1E0E0D7E: KJS::DeclaredFunctionImp::execute(KJS::ExecState*) (function.cpp:579)
==5000==    by 0x1E0E0275: KJS::FunctionImp::call(KJS::ExecState*, KJS::Object&, KJS::List const&) (function.cpp:354)
==5000==  Address 0x1E is not stack'd, malloc'd or (recently) free'd
Comment 7 Maksim Orlovich 2005-11-13 23:07:46 UTC
The problem is that we get an XMLElementImpl with ID_EMBED, and not an HTMLEmbedElementImpl! Will debug further

Testcase:
<script type="text/javascript">
function doIt() {
    var place = document.getElementById("spot");
    flashObj = document.createElement("object");
    paramObj = document.createElement("embed");
    flashObj.appendChild(paramObj);
    place.appendChild(flashObj);
}
</script>


<body onload="doIt()">

<div id="spot">
</div>
Comment 8 Maksim Orlovich 2005-11-13 23:19:41 UTC
Created attachment 13425 [details]
patch

--- xml/dom_docimpl.cpp (revision 479977)
+++ xml/dom_docimpl.cpp (working copy)
@@ -846,6 +846,9 @@ ElementImpl *DocumentImpl::createHTMLEle
     case ID_OBJECT:
	 n = new HTMLObjectElementImpl(docPtr());
	 break;
+    case ID_EMBED:
+	 n = new HTMLEmbedElementImpl(docPtr());
+	 break;
     case ID_PARAM:
	 n = new HTMLParamElementImpl(docPtr());
	 break;
Comment 9 Maksim Orlovich 2005-11-30 22:23:55 UTC
SVN commit 484459 by orlovich:

Fix createElement("embed") to fix crash on lotoquebec.com (#110036)
BUG:110036


 M  +3 -0      dom_docimpl.cpp  


--- branches/KDE/3.5/kdelibs/khtml/xml/dom_docimpl.cpp #484458:484459
@@ -846,6 +846,9 @@
     case ID_OBJECT:
         n = new HTMLObjectElementImpl(docPtr());
         break;
+    case ID_EMBED:
+        n = new HTMLEmbedElementImpl(docPtr());
+        break;
     case ID_PARAM:
         n = new HTMLParamElementImpl(docPtr());
         break;
Comment 10 Maksim Orlovich 2005-11-30 22:24:42 UTC
SVN commit 484461 by orlovich:

Regression test for #110036
CCBUG:110036


 A             baseline/unsorted/110036.html-dom  
 A             baseline/unsorted/110036.html-render  
 A             tests/unsorted/110036.html