Version: 3.5.1 (using KDE KDE 3.5.1) Installed from: Gentoo Packages Compiler: gcc-3.4.5-vanilla OS: Linux Konqueror crashes after doing the following: 1) start a new konqueror and go to http://bugs.kde.org/show_bug.cgi?id=52665 2) click on the link to http://yansanmo.no-ip.org:8080/test/xhtml/xhtml_script_seul.xhtml a bit more than halfway down atm. Do not just copy this address as it will not work 3) click OK on the pop-up, not the cross 4) click back 5) toggle Enable java globally 6) click forward 7) click OK on the pop-up 8) (no debugging symbols found) Using host libthread_db library "/lib/tls/libthread_db.so.1". (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) [Thread debugging using libthread_db enabled] [New Thread 46912565041728 (LWP 5001)] 0x00002aaaaeac76f5 in nanosleep () from /lib/tls/libc.so.6 #0 0x00002aaaaeac76f5 in nanosleep () from /lib/tls/libc.so.6 #1 0x00002aaaaeac7560 in sleep () from /lib/tls/libc.so.6 #2 0x00002aaaab9f2bca in KCrash::startDrKonqi () from /usr/kde/3.5/lib64/libkdecore.so.4 #3 0x00002aaaaba1508e in KCrash::defaultCrashHandler () from /usr/kde/3.5/lib64/libkdecore.so.4 #4 0x00002aaaaea69890 in killpg () from /lib/tls/libc.so.6 #5 0x0000000000000000 in ?? ()
hmm, actually 5) toggle Enable java globally step is not necessary
Okay, simpler way to duplicate: 1)start a new konqueror and paste http://yansanmo.no-ip.org:8080/test/xhtml/xhtml_script_seul.xhtml in the location bar 2)press <enter> to make pop-up go away 3)click in the location bar 4)press <enter> to reload, simply F5 doesn't work 5)press <enter> to make pop-up go away 6)crash
#5 0x41e9b1a1 in khtml::HTMLTokenizer::write (this=0x88616c0, str=@0xbfecb53c, appendData=true) at htmltokenizer.cpp:1520 #6 0x41e1667a in KHTMLPart::write (this=0x8968330, str=0x89e1dc8 "<?xml version=\"1.0\" encoding=\"iso-8859-1\"?>\n<!DOCTYPE html \n\tPUBLIC \"-//W3C//DTD XHTML 1.0 Strict//EN\" \n\t\"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd\">\n<html xmlns=\"http://www.w3.org/1999/xhtml\""..., len=846) at khtml_part.cpp:1980 #7 0x41e0f5c6 in KHTMLPart::slotData (this=0x8968330, kio_job=0x8821a18, data=@0xbfecbaa8) at khtml_part.cpp:1662 #8 0x41e2ab69 in KHTMLPart::qt_invoke (this=0x8968330, _id=16, _o=0xbfecb7a4) at khtml_part.moc:501 #9 0x40d101f9 in QObject::activate_signal () from /usr/lib/qt3/lib/libqt-mt.so.3
svn r571252 ==4099== Invalid read of size 1 ==4099== at 0x4288CFA: (within /opt/kde354/lib/libkutils.so.1.2.0) ==4099== by 0x69FA327: KHTMLPart::write(char const*, int) (khtml_part.cpp:1989) ==4099== by 0x69FC137: KHTMLPart::slotData(KIO::Job*, QMemArray<char> const&) (khtml_part.cpp:1667) ==4099== by 0x6A03239: KHTMLPart::qt_invoke(int, QUObject*) (khtml_part.moc:500) ==4099== by 0x4EFCB7C: QObject::activate_signal(QConnectionList*, QUObject*) (in /usr/lib/qt3/lib/libqt-mt.so.3.3.5) ==4099== by 0x43FF278: KIO::TransferJob::data(KIO::Job*, QMemArray<char> const&) (jobclasses.moc:993) ==4099== by 0x44020FB: KIO::TransferJob::slotData(QMemArray<char> const&) (job.cpp:906) ==4099== by 0x4406081: KIO::TransferJob::qt_invoke(int, QUObject*) (jobclasses.moc:1072) ==4099== by 0x4EFCB7C: QObject::activate_signal(QConnectionList*, QUObject*) (in /usr/lib/qt3/lib/libqt-mt.so.3.3.5) ==4099== by 0x43EDA49: KIO::SlaveInterface::data(QMemArray<char> const&) (slaveinterface.moc:194) ==4099== by 0x43EEE76: KIO::SlaveInterface::dispatch(int, QMemArray<char> const&) (slaveinterface.cpp:234) ==4099== by 0x43EFBFB: KIO::SlaveInterface::dispatch() (slaveinterface.cpp:173)
The bug cannot be reproduced in konqueror 4 (SVN rev. 793966). The testcase in comment #2 was used.
Testcase submitted by the original reporter doesn't crash konqueror anymore.
Confirmed. Konqueror 4 doesn't crash anymore. :-)
being no negative feedback since our last tests, I close this as worksforme.