155451 – konqueror segfault in the Acid 3 test

Bug 155451 - konqueror segfault in the Acid 3 test

Summary: konqueror segfault in the Acid 3 test

Status:	RESOLVED FIXED

Alias:	None

Product:	konqueror
Classification:	Applications
Component:	kjs (show other bugs)
Version:	unspecified
Platform:	Debian testing Linux

Importance:	NOR crash
Target Milestone:	---
Assignee:	Konqueror Developers

URL:
Keywords:

Duplicates (2):	155548 158724 (view as bug list)
Depends on:
Blocks:

Reported:	2008-01-11 11:54 UTC by Marcus Better
Modified:	2008-03-03 18:01 UTC (History)
CC List:	2 users (show)

See Also:
Latest Commit:
Version Fixed In:

Attachments
Add an attachment

Note You need to log in before you can comment on or make changes to this bug.

Description Marcus Better 2008-01-11 11:54:28 UTC

Version:            (using KDE KDE 3.5.8)
Installed from:    Debian testing/unstable Packages
OS:                Linux

Konqueror segfaults shortly after loading the Acid 3 test page:

http://hixie.ch/tests/evil/acid/003/NOT_READY_PLEASE_DO_NOT_USE.html

Using host libthread_db library "/lib/i686/cmov/libthread_db.so.1".
[Thread debugging using libthread_db enabled]
[New Thread 0xb67b0b50 (LWP 6770)]
[KCrash handler]
#6  KJS::JSNodeFilter::acceptNode (this=0x83a3100, n=@0xbf90c624)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/object.h:701
#7  0xb5d6abe4 in DOM::NodeFilterImpl::acceptNode (this=0x84ce918, 
    n=@0xbf90c624)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./khtml/xml/dom2_traversalimpl.cpp:277
#8  0xb5f2d7fd in DOM::NodeFilter::acceptNode (this=0x86766c4, n=@0xbf90c624)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./khtml/dom/dom2_traversal.cpp:167
#9  0xb5d6d044 in DOM::NodeIteratorImpl::isAccepted (this=0x86766b8, 
    n=0x84b3e10)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./khtml/xml/dom2_traversalimpl.cpp:253
#10 0xb5d6e6ed in DOM::NodeIteratorImpl::nextNode (this=0x86766b8, 
    exceptioncode=@0xbf90c67c)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./khtml/xml/dom2_traversalimpl.cpp:87
#11 0xb5f39a69 in DOM::NodeIterator::nextNode (this=0xbf90c6c4)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./khtml/dom/dom2_traversal.cpp:92
#12 0xb5ecbcab in KJS::DOMNodeIteratorProtoFunc::tryCall (this=0x846e728, 
    exec=0xbf90cc24, thisObj=@0xbf90c8d0)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./khtml/ecma/kjs_traversal.cpp:92
#13 0xb5ec05a4 in KJS::DOMFunction::call (this=0x846e728, exec=0xbf90cc24, 
    thisObj=@0xbf90c8d0, args=@0xbf90c8c4)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./khtml/ecma/kjs_binding.cpp:136
#14 0xb5bfdda9 in KJS::Object::call (this=0xbf90c8e8, exec=0xbf90cc24, 
    thisObj=@0xbf90c8d0, args=@0xbf90c8c4)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/object.cpp:73
#15 0xb5c09be6 in KJS::FunctionCallNode::evaluate (this=0x84eb2c0, 
    exec=0xbf90cc24) at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/nodes.cpp:870
#16 0xb5bfd17d in KJS::ArgumentListNode::evaluateList (this=0x84eb2d8, 
    exec=0xbf90cc24) at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/nodes.cpp:720
#17 0xb5bfd277 in KJS::ArgumentsNode::evaluateList (this=0x850cc60, 
    exec=0xbf90cc24) at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/nodes.cpp:756
#18 0xb5c098e6 in KJS::FunctionCallNode::evaluate (this=0x850cc78, 
    exec=0xbf90cc24) at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/nodes.cpp:832
#19 0xb5c0846f in KJS::ExprStatementNode::execute (this=0x850cc90, 
    exec=0xbf90cc24)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/nodes.cpp:1980
#20 0xb5c04f75 in KJS::SourceElementsNode::execute (this=0x85021a0, 
    exec=0xbf90cc24)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/nodes.cpp:3114
#21 0xb5bf7839 in KJS::BlockNode::execute (this=0x84aa7a0, exec=0xbf90cc24)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/nodes.cpp:1942
#22 0xb5bf7699 in KJS::DeclaredFunctionImp::execute (this=0x8568000, 
    exec=0xbf90cc24)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/function.cpp:613
#23 0xb5bfa049 in KJS::FunctionImp::call (this=0x8568000, exec=0xbf90d2d4, 
    thisObj=@0xbf90cd00, args=@0xbf90ccf4)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/function.cpp:373
#24 0xb5bfdda9 in KJS::Object::call (this=0xbf90cd18, exec=0xbf90d2d4, 
    thisObj=@0xbf90cd00, args=@0xbf90ccf4)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/object.cpp:73
#25 0xb5c09be6 in KJS::FunctionCallNode::evaluate (this=0x86d6f70, 
    exec=0xbf90d2d4) at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/nodes.cpp:870
#26 0xb5bd00b3 in KJS::AssignExprNode::evaluate (this=0x86d6f88, 
    exec=0xbf90d2d4)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/nodes.cpp:1760
#27 0xb5bfb031 in KJS::VarDeclNode::evaluate (this=0x86d6fa0, exec=0xbf90d2d4)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/nodes.cpp:1791
#28 0xb5bfaf3c in KJS::VarDeclListNode::evaluate (this=0x86d6fc0, 
    exec=0xbf90d2d4)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/nodes.cpp:1863
#29 0xb5c0866c in KJS::VarStatementNode::execute (this=0x86d6fd8, 
    exec=0xbf90d2d4)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/nodes.cpp:1896
#30 0xb5c04ed2 in KJS::SourceElementsNode::execute (this=0x86d7008, 
    exec=0xbf90d2d4)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/nodes.cpp:3108
#31 0xb5bf7839 in KJS::BlockNode::execute (this=0x86d7740, exec=0xbf90d2d4)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/nodes.cpp:1942
#32 0xb5bfa3d3 in KJS::TryNode::execute (this=0x86d7c50, exec=0xbf90d2d4)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/nodes.cpp:2871
#33 0xb5c04ed2 in KJS::SourceElementsNode::execute (this=0x86d7c88, 
    exec=0xbf90d2d4)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/nodes.cpp:3108
#34 0xb5bf7839 in KJS::BlockNode::execute (this=0x86d8088, exec=0xbf90d2d4)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/nodes.cpp:1942
#35 0xb5c082fb in KJS::IfNode::execute (this=0x86d8728, exec=0xbf90d2d4)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/nodes.cpp:2021
#36 0xb5c04f75 in KJS::SourceElementsNode::execute (this=0x86d6ad0, 
    exec=0xbf90d2d4)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/nodes.cpp:3114
#37 0xb5bf7839 in KJS::BlockNode::execute (this=0x86d8798, exec=0xbf90d2d4)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/nodes.cpp:1942
#38 0xb5bf7699 in KJS::DeclaredFunctionImp::execute (this=0x8567dd8, 
    exec=0xbf90d2d4)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/function.cpp:613
#39 0xb5bfa049 in KJS::FunctionImp::call (this=0x8567dd8, exec=0x834f320, 
    thisObj=@0xbf90d358, args=@0x86152bc)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kjs/function.cpp:373
#40 0xb5e8b4a5 in KJS::ScheduledAction::execute (this=0x86152b8, 
    window=0x84691f8)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./khtml/ecma/kjs_window.cpp:2135
#41 0xb5eaccbe in KJS::WindowQObject::timerEvent (this=0x8469318)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./khtml/ecma/kjs_window.cpp:2280
#42 0xb71b8974 in QObject::event (this=0x8469318, e=0xbf90d6c8)
    at kernel/qobject.cpp:741
#43 0xb714f36a in QApplication::internalNotify (this=0xbf90d9cc, 
    receiver=0x8469318, e=0xbf90d6c8) at kernel/qapplication.cpp:2635
#44 0xb7151193 in QApplication::notify (this=0xbf90d9cc, receiver=0x8469318, 
    e=0xbf90d6c8) at kernel/qapplication.cpp:2358
#45 0xb785f622 in MainBarIconSet (name=@0x8469318, force_size=-1081026872, 
    instance=0x0)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kdecore/kiconloader.cpp:1357
#46 0xb70e06c9 in QApplication::sendEvent (receiver=0x8469318, 
    event=0xbf90d6c8) at ../include/qapplication.h:520
#47 0xb71421b1 in QEventLoop::activateTimers (this=0x809f518)
    at kernel/qeventloop_unix.cpp:556
#48 0xb70f519a in QEventLoop::processEvents (this=0x809f518, flags=4)
    at kernel/qeventloop_x11.cpp:389
#49 0xb716a6e4 in QEventLoop::enterLoop (this=0x809f518)
    at kernel/qeventloop.cpp:198
#50 0xb716a3e2 in QEventLoop::exec (this=0x809f518)
    at kernel/qeventloop.cpp:145
#51 0xb7150f13 in QApplication::exec (this=0xbf90d9cc)
    at kernel/qapplication.cpp:2758
#52 0xb658ed04 in kdemain () from /usr/lib/libkdeinit_konqueror.so
#53 0xb7eec454 in kdeinitmain () from /usr/lib/kde3/konqueror.so
#54 0x0804ed50 in launch (argc=2, _name=0x80745ec "konqueror", 
    args=0x807463a "", cwd=0x807463b "/home/marcus", envc=30, 
    envs=0x8074a5a "", reset_env=true, tty=0x0, avoid_loops=false, 
    startup_id_str=0x8074a5f "0")
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kinit/kinit.cpp:670
#55 0x0804f471 in handle_launcher_request (sock=5)
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kinit/kinit.cpp:1247
#56 0x0804fb0c in ?? ()
    at /build/buildd/kdelibs-3.5.8.dfsg.1/./kinit/kinit.cpp:1434
#57 0x00000007 in ?? ()
#58 0xbf90e1b6 in ?? ()
#59 0xbf90e294 in ?? ()
#60 0xbf90e034 in ?? ()
#61 0x00000000 in ?? ()

This is a Debian i386 system.

Comment 1 Marcus Better 2008-01-11 11:55:11 UTC

Debian bug report:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=460196

Comment 2 Pino Toscano 2008-01-12 18:32:57 UTC

*** Bug 155548 has been marked as a duplicate of this bug. ***

Comment 3 Maksim Orlovich 2008-01-14 17:45:31 UTC

SVN commit 761357 by orlovich:

Don't crash on acid3
BUG:155451


 M  +1 -1      kjs_traversal.cpp  


WebSVN link: http://websvn.kde.org/?view=rev&revision=761357

Comment 4 Pino Toscano 2008-03-03 18:01:23 UTC

*** Bug 158724 has been marked as a duplicate of this bug. ***