Bug 141844 - Konqueror crashed in DOM::Node::nodeType (Debug backtrace)
Summary: Konqueror crashed in DOM::Node::nodeType (Debug backtrace)
Status: RESOLVED REMIND
Alias: None
Product: konqueror
Classification: Applications
Component: khtml (show other bugs)
Version: 3.5
Platform: Ubuntu Linux
: NOR crash
Target Milestone: ---
Assignee: Konqueror Developers
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2007-02-18 00:54 UTC by Daniel Hahler
Modified: 2009-09-12 14:22 UTC (History)
1 user (show)

See Also:
Latest Commit:
Version Fixed In:

Attachments
Add an attachment

Note You need to log in before you can comment on or make changes to this bug.
Description Daniel Hahler 2007-02-18 00:54:34 UTC 
Version:            (using KDE KDE 3.5.6)
Installed from:    Ubuntu Packages

Konqueror just crashed (reproducable) on the bwin.de Site (in the login section), when I move the mouse over some specific area on the "Einzahlung per Paypal" page (https://www.bwin.de/account.aspx?view=PayIn&PaymentMethod=63).

I could not reproduce this after I switched the focus to the address bar to copy the URL (Alt-O).

Using host libthread_db library "/lib/libthread_db.so.1".
[Thread debugging using libthread_db enabled]
[New Thread -1232709936 (LWP 13684)]
[KCrash handler]
#5  0x00000121 in ?? ()
#6  0xb5f2f7a4 in DOM::Node::nodeType (this=0xbfacf340)
    at /build/buildd/kdelibs-3.5.6/./khtml/dom/dom_node.cpp:202
#7  0xb5ec4ea7 in KJS::getDOMNode (exec=0xbfacf914, n=@0xbfacf340)
    at /build/buildd/kdelibs-3.5.6/./khtml/ecma/kjs_dom.cpp:1538
#8  0xb5ed41f0 in KJS::HTMLCollection::getNamedItems (this=0xbfacf3e8, 
    exec=0xbfacf914, propertyName=@0xbfacf588)
    at /build/buildd/kdelibs-3.5.6/./khtml/ecma/kjs_html.cpp:3590
#9  0xb5f0c048 in KJS::HTMLElement::tryGet (this=0x8e55fb0, exec=0xbfacf914, 
    propertyName=@0xbfacf588)
    at /build/buildd/kdelibs-3.5.6/./khtml/ecma/kjs_html.cpp:1148
#10 0xb5ebd9d3 in KJS::DOMObject::get (this=0x8e55fb0, exec=0xbfacf914, 
    p=@0xbfacf588)
    at /build/buildd/kdelibs-3.5.6/./khtml/ecma/kjs_binding.cpp:50
#11 0xb5be5a4a in KJS::Reference::getValue (this=0xbfacf578, exec=0xbfacf914)
    at /build/buildd/kdelibs-3.5.6/./kjs/reference.cpp:143
#12 0xb5be5f89 in KJS::Node::evaluate (this=0x8c830d0, exec=0xbfacf914)
    at /build/buildd/kdelibs-3.5.6/./kjs/nodes.cpp:130
#13 0xb5bfb4ec in KJS::AssignNode::evaluate (this=0x8c830e8, exec=0xbfacf914)
    at /build/buildd/kdelibs-3.5.6/./kjs/nodes.cpp:1562
#14 0xb5bfac7e in KJS::ExprStatementNode::execute (this=0x8c83108, 
    exec=0xbfacf914) at /build/buildd/kdelibs-3.5.6/./kjs/nodes.cpp:1980
#15 0xb5bf9932 in KJS::ForNode::execute (this=0x8c83138, exec=0xbfacf914)
    at /build/buildd/kdelibs-3.5.6/./kjs/nodes.cpp:2199
#16 0xb5bf7188 in KJS::SourceElementsNode::execute (this=0x9358cc8, 
    exec=0xbfacf914) at /build/buildd/kdelibs-3.5.6/./kjs/nodes.cpp:3097
#17 0xb5bcbf19 in KJS::BlockNode::execute (this=0x8d2db80, exec=0xbfacf914)
    at /build/buildd/kdelibs-3.5.6/./kjs/nodes.cpp:1942
#18 0xb5be4776 in KJS::DeclaredFunctionImp::execute (this=0x92a98a0, 
    exec=0xbfacf914) at /build/buildd/kdelibs-3.5.6/./kjs/function.cpp:588
#19 0xb5be62f1 in KJS::FunctionImp::call (this=0x92a98a0, exec=0xbfacff44, 
    thisObj=@0xbfacf9f0, args=@0xbfacf9e4)
    at /build/buildd/kdelibs-3.5.6/./kjs/function.cpp:363
#20 0xb5be7139 in KJS::Object::call (this=0xbfacf9f8, exec=0xbfacff44, 
    thisObj=@0xbfacf9f0, args=@0xbfacf9e4)
    at /build/buildd/kdelibs-3.5.6/./kjs/object.cpp:73
#21 0xb5bfdb71 in KJS::FunctionCallNode::evaluate (this=0x8c61a00, 
    exec=0xbfacff44) at /build/buildd/kdelibs-3.5.6/./kjs/nodes.cpp:870
#22 0xb5bfd6a9 in KJS::ArgumentListNode::evaluateList (this=0x8c61a18, 
    exec=0xbfacff44) at /build/buildd/kdelibs-3.5.6/./kjs/nodes.cpp:720
#23 0xb5bfd797 in KJS::ArgumentsNode::evaluateList (this=0x8c61a30, 
    exec=0xbfacff44) at /build/buildd/kdelibs-3.5.6/./kjs/nodes.cpp:756
#24 0xb5bfd83a in KJS::FunctionCallNode::evaluate (this=0x8c61a48, 
    exec=0xbfacff44) at /build/buildd/kdelibs-3.5.6/./kjs/nodes.cpp:832
#25 0xb5bfc82c in KJS::AddNode::evaluate (this=0x8c61bd0, exec=0xbfacff44)
    at /build/buildd/kdelibs-3.5.6/./kjs/nodes.cpp:1238
#26 0xb5bfb4ec in KJS::AssignNode::evaluate (this=0x8c61bf0, exec=0xbfacff44)
    at /build/buildd/kdelibs-3.5.6/./kjs/nodes.cpp:1562
#27 0xb5bfac7e in KJS::ExprStatementNode::execute (this=0x90166e0, 
    exec=0xbfacff44) at /build/buildd/kdelibs-3.5.6/./kjs/nodes.cpp:1980
#28 0xb5bf70e8 in KJS::SourceElementsNode::execute (this=0x9016710, 
    exec=0xbfacff44) at /build/buildd/kdelibs-3.5.6/./kjs/nodes.cpp:3091
#29 0xb5bcbf19 in KJS::BlockNode::execute (this=0x9016b08, exec=0xbfacff44)
    at /build/buildd/kdelibs-3.5.6/./kjs/nodes.cpp:1942
#30 0xb5bfab0b in KJS::IfNode::execute (this=0x9016d38, exec=0xbfacff44)
    at /build/buildd/kdelibs-3.5.6/./kjs/nodes.cpp:2021
#31 0xb5bf7188 in KJS::SourceElementsNode::execute (this=0x8c61710, 
    exec=0xbfacff44) at /build/buildd/kdelibs-3.5.6/./kjs/nodes.cpp:3097
#32 0xb5bcbf19 in KJS::BlockNode::execute (this=0x949a5e0, exec=0xbfacff44)
    at /build/buildd/kdelibs-3.5.6/./kjs/nodes.cpp:1942
#33 0xb5be4776 in KJS::DeclaredFunctionImp::execute (this=0x93a5518, 
    exec=0xbfacff44) at /build/buildd/kdelibs-3.5.6/./kjs/function.cpp:588
#34 0xb5be62f1 in KJS::FunctionImp::call (this=0x93a5518, exec=0x8b2eb68, 
    thisObj=@0xbfad0030, args=@0xbfad0010)
    at /build/buildd/kdelibs-3.5.6/./kjs/function.cpp:363
#35 0xb5be7139 in KJS::Object::call (this=0x91a1a04, exec=0x8b2eb68, 
    thisObj=@0xbfad0030, args=@0xbfad0010)
    at /build/buildd/kdelibs-3.5.6/./kjs/object.cpp:73
#36 0xb5edbdac in KJS::JSEventListener::handleEvent (this=0x91a19f8, 
    evt=@0xbfad0070)
    at /build/buildd/kdelibs-3.5.6/./khtml/ecma/kjs_events.cpp:96
#37 0xb5d6c76a in DOM::NodeImpl::handleLocalEvents (this=0x930e3a0, 
    evt=0x8d1c398, useCapture=false)
    at /build/buildd/kdelibs-3.5.6/./khtml/xml/dom_nodeimpl.cpp:602
#38 0xb5d711cb in DOM::NodeImpl::dispatchGenericEvent (this=0x9048ee0, 
    evt=0x8d1c398)
    at /build/buildd/kdelibs-3.5.6/./khtml/xml/dom_nodeimpl.cpp:390
#39 0xb5d7135f in DOM::NodeImpl::dispatchEvent (this=0x9048ee0, 
    evt=0x8d1c398, exceptioncode=@0xbfad0228, tempEvent=true)
    at /build/buildd/kdelibs-3.5.6/./khtml/xml/dom_nodeimpl.cpp:342
#40 0xb5d103d5 in KHTMLView::dispatchMouseEvent (this=0x8d7be30, eventId=8, 
    targetNode=0x9048ee0, targetNodeNonShared=0x9048ee0, cancelable=false, 
    detail=0, _mouse=0xbfad09c0, setUnder=true, mouseEventType=4)
    at /build/buildd/kdelibs-3.5.6/./khtml/khtmlview.cpp:3172
#41 0xb5d3c387 in KHTMLView::viewportMouseMoveEvent (this=0x8d7be30, 
    _mouse=0xbfad09c0)
    at /build/buildd/kdelibs-3.5.6/./khtml/khtmlview.cpp:1144
#42 0xb7375412 in QScrollView::eventFilter () from /usr/lib/libqt-mt.so.3
#43 0xb5d19f09 in KHTMLView::eventFilter (this=0x8d7be30, o=0x8120c50, 
    e=0xbfad09c0) at /build/buildd/kdelibs-3.5.6/./khtml/khtmlview.cpp:1954
#44 0xb723dd34 in QObject::activate_filters () from /usr/lib/libqt-mt.so.3
#45 0xb723ddb2 in QObject::event () from /usr/lib/libqt-mt.so.3
#46 0xb727548b in QWidget::event () from /usr/lib/libqt-mt.so.3
#47 0xb71d59a8 in QApplication::internalNotify () from /usr/lib/libqt-mt.so.3
#48 0xb71d7b66 in QApplication::notify () from /usr/lib/libqt-mt.so.3
#49 0xb78ddbf2 in KApplication::notify (this=0xbfad12e8, receiver=0x8120c50, 
    event=0xbfad09c0)
    at /build/buildd/kdelibs-3.5.6/./kdecore/kapplication.cpp:550
#50 0xb716821d in QApplication::sendSpontaneousEvent ()
   from /usr/lib/libqt-mt.so.3
#51 0xb7166e82 in QETWidget::translateMouseEvent ()
   from /usr/lib/libqt-mt.so.3
#52 0xb7164f6c in QApplication::x11ProcessEvent () from /usr/lib/libqt-mt.so.3
#53 0xb717c140 in QEventLoop::processEvents () from /usr/lib/libqt-mt.so.3
#54 0xb71f007e in QEventLoop::enterLoop () from /usr/lib/libqt-mt.so.3
#55 0xb71efe8e in QEventLoop::exec () from /usr/lib/libqt-mt.so.3
#56 0xb71d7551 in QApplication::exec () from /usr/lib/libqt-mt.so.3
#57 0xb66abca4 in kdemain (argc=4, argv=0x80974a0)
    at /build/buildd/kdebase-3.5.6/./konqueror/konq_main.cc:206
#58 0xb7f4b464 in kdeinitmain (argc=4, argv=0x80974a0) at konqueror_dummy.cc:3
#59 0x0804e6bf in launch (argc=4, _name=0x808e45c "konqueror", 
    args=0x808e4cb "", cwd=0x808e4cc "/home/daniel", envc=30, 
    envs=0x808e8fe "", reset_env=true, tty=0x0, avoid_loops=false, 
    startup_id_str=0x808e903 "base;1171755308;396746;7361_TIME3524202818")
    at /build/buildd/kdelibs-3.5.6/./kinit/kinit.cpp:673
#60 0x0804ef42 in handle_launcher_request (sock=5)
    at /build/buildd/kdelibs-3.5.6/./kinit/kinit.cpp:1240
#61 0x0804f4b1 in handle_requests (waitForPid=0)
    at /build/buildd/kdelibs-3.5.6/./kinit/kinit.cpp:1433
#62 0x080505ac in main (argc=5, argv=0xbfad1a74, envp=0xbfad1a8c)
    at /build/buildd/kdelibs-3.5.6/./kinit/kinit.cpp:1909
#63 0xb7cc7ebc in __libc_start_main () from /lib/libc.so.6
#64 0x0804bb51 in _start ()
Comment 1 Michael Leupold 2008-04-20 20:04:24 UTC 
Do you have to be logged in to experience this? I can't seem to reproduce this bug. If you can, please try to extract the internal page so we can try to create a testcase reproducing the bug.
Comment 2 Daniel Hahler 2008-04-20 23:22:20 UTC 
Yes, you have to be logged in.
The crash is reproducible, by going to this URL: https://www.bwin.de/account.aspx?view=PayIn&PaymentMethod=63 and then moving the mouse around.
It does not happen always, but then I could reproduce it by going to the address bar, pressing enter to load the page again and then hovering over the horizontal center of the page.

I will look into extracting the relevant parts later, but it might be difficult. So, it's maybe easier, if you create an account yourself (which should be free, as far as I know)
Comment 3 FiNeX 2009-08-29 16:43:07 UTC 
@Daniel: on comment #2 you've reproduced the bug. Did you using KDE 3? Would you like to test it using KDE 4.3?

Many thanks!
Comment 4 Daniel Hahler 2009-09-11 21:41:59 UTC 
I cannot verify this, since I do not have an account with them anymore.
Feel free to close it, if nobody is able to check this.