Bug 160240 - crash on http://80.63.213.182/afrofrans/afrobuilder.html QVector<T>::operator[]: \"index out of range\"
Summary: crash on http://80.63.213.182/afrofrans/afrobuilder.html QVector<T>::operator...
Status: RESOLVED UPSTREAM
Alias: None
Product: konqueror
Classification: Applications
Component: general (show other bugs)
Version: unspecified
Platform: unspecified Linux
: NOR crash
Target Milestone: ---
Assignee: Konqueror Developers
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2008-04-02 04:02 UTC by Oliver Putz
Modified: 2008-11-28 20:44 UTC (History)
1 user (show)

See Also:
Latest Commit:
Version Fixed In:


Attachments
Still crashes with me with a similar ( I think a little more complete ) backtrace as the report. (8.99 KB, text/plain)
2008-06-03 17:46 UTC, Rui G.
Details

Note You need to log in before you can comment on or make changes to this bug.
Description Oliver Putz 2008-04-02 04:02:18 UTC
Version:           4.00.67 (KDE 4.0.67 >= 20080325) (using 4.00.67 (KDE 4.0.67 >= 20080325), Gentoo)
Compiler:          i686-pc-linux-gnu-gcc
OS:                Linux (i686) release 2.6.23-gentoo-r9

Steps to reproduce:

1) go to http://80.63.213.182/afrofrans/afrobuilder.html
2) see konqueror (current SVN build) crash with the backtrace below

This is the same problem I already posted in the comments of bug #120733, but that bug apparently is about another problem, so I opened a new bugreport. As this seems to be a qt bug, I use qt-4.4.0_beta1.

Backtrace:

Application: Konqueror (konqueror), signal SIGABRT
Using host libthread_db library "/lib/libthread_db.so.1".
[Thread debugging using libthread_db enabled]
[New Thread 0xb6213a20 (LWP 20998)]
[KCrash handler]
#6  0xffffe410 in __kernel_vsyscall ()
#7  0xb64641f1 in *__GI_raise (sig=6)
    at ../nptl/sysdeps/unix/sysv/linux/raise.c:64
#8  0xb64659b8 in *__GI_abort () at abort.c:88
#9  0xb7138a45 in qt_message_output (msgType=QtFatalMsg, 
    buf=0xbfff5ddc "ASSERT failure in QVector<T>::operator[]: \"index out of range\", file ../../include/QtCore/../../src/corelib/tools/qvector.h, line 331")
    at global/qglobal.cpp:2047
#10 0xb7138b0a in qFatal (
    msg=0xb7290f9c "ASSERT failure in %s: \"%s\", file %s, line %d")
    at global/qglobal.cpp:2249
#11 0xb7138b5c in qt_assert_x (where=0xb76e9ca0 "QVector<T>::operator[]", 
    what=0xb76e9b0f "index out of range", 
    file=0xb76e9928 "../../include/QtCore/../../src/corelib/tools/qvector.h", 
    line=331) at global/qglobal.cpp:1829
#12 0xb76bf5b6 in constructColor (colorStr=@0xbfff7fc4, opacity=@0xbfff7fc8, 
    color=@0xbfff7f34, handler=0xbfff8318)
    at ../../include/QtCore/../../src/corelib/tools/qvector.h:331
#13 0xb76ca5a9 in parseStyle (node=0x84a12b8, attributes=@0xbfff8064, 
    handler=0xbfff8318) at qsvghandler.cpp:604
#14 0xb76cb0c0 in parseStyle (node=0x84a12b8, attrs=<value optimized out>, 
    handler=0xbfff8318) at qsvghandler.cpp:2153
#15 0xb76cd465 in QSvgHandler::startElement (this=0xbfff8318, 
    localName=@0xbfff8260, attributes=@0xbfff825c) at qsvghandler.cpp:3474
#16 0xb76ce6d7 in QSvgHandler::parse (this=0xbfff8318) at qsvghandler.cpp:3374
#17 0xb76cefa4 in QSvgHandler (this=0xbfff8318, device=0xbfff8364)
    at qsvghandler.cpp:3346
#18 0xb76def5b in QSvgTinyDocument::load (fileName=@0xbfff84b8)
    at qsvgtinydocument.cpp:79
#19 0xb76dfefa in QSvgRenderer::load (this=0x83cadb0, filename=@0xbfff84b8)
    at qsvgrenderer.cpp:292
#20 0xb76e20f9 in QGraphicsSvgItem (this=0x8603ad8, fileName=@0xbfff84b8, 
    parent=0x0) at qgraphicssvgitem.cpp:155
#21 0xb2d43261 in SvgPart::openFile (this=0x86167f0)
    at /var/tmp/portage/kde-base/kdegraphics-9999.4/work/kdegraphics-9999.4/svgpart/svgpart.cpp:56
#22 0xb7e2e11c in KParts::ReadOnlyPartPrivate::_k_slotJobFinished (
    this=0x8402bf8, job=0x86169c8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kparts/part.cpp:631
#23 0xb7e2f0f5 in KParts::ReadOnlyPart::qt_metacall (this=0x86167f0, 
    _c=QMetaObject::InvokeMetaMethod, _id=5, _a=0xbfff864c)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs_build/kparts/part.moc:162
#24 0xb2d42fea in SvgPart::qt_metacall (this=0x86167f0, 
    _c=QMetaObject::InvokeMetaMethod, _id=12, _a=0xbfff864c)
    at /var/tmp/portage/kde-base/kdegraphics-9999.4/work/kdegraphics_build/svgpart/svgpart.moc:65
#25 0xb724e2c8 in QMetaObject::activate (sender=0x86169c8, 
    from_signal_index=<value optimized out>, to_signal_index=7, 
    argv=<value optimized out>) at kernel/qobject.cpp:2995
#26 0xb724ea44 in QMetaObject::activate (sender=0x86169c8, m=0xb7be1308, 
    local_signal_index=3, argv=0xbfff864c) at kernel/qobject.cpp:3065
#27 0xb7addab4 in KJob::result (this=0x86169c8, _t1=0x86169c8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs_build/kdecore/kjob.moc:186
#28 0xb7addff2 in KJob::emitResult (this=0x86169c8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kdecore/jobs/kjob.cpp:290
#29 0xb7c9ebcc in KIO::FileCopyJob::slotResult (this=0x86169c8, job=0x8795af0)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kio/kio/job.cpp:2157
#30 0xb7c9f938 in KIO::FileCopyJob::qt_metacall (this=0x86169c8, 
    _c=QMetaObject::InvokeMetaMethod, _id=32, _a=0xbfff87ec)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs_build/kio/jobclasses.moc:658
#31 0xb724e2c8 in QMetaObject::activate (sender=0x8795af0, 
    from_signal_index=<value optimized out>, to_signal_index=7, 
    argv=<value optimized out>) at kernel/qobject.cpp:2995
#32 0xb724ea44 in QMetaObject::activate (sender=0x8795af0, m=0xb7be1308, 
    local_signal_index=3, argv=0xbfff87ec) at kernel/qobject.cpp:3065
#33 0xb7addab4 in KJob::result (this=0x8795af0, _t1=0x8795af0)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs_build/kdecore/kjob.moc:186
#34 0xb7addff2 in KJob::emitResult (this=0x8795af0)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kdecore/jobs/kjob.cpp:290
#35 0xb7c98e08 in KIO::SimpleJob::slotFinished (this=0x8795af0)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kio/kio/job.cpp:491
#36 0xb7c991ba in KIO::TransferJob::slotFinished (this=0x8795af0)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kio/kio/job.cpp:961
#37 0xb7c9fcf3 in KIO::TransferJob::qt_metacall (this=0x8795af0, 
    _c=QMetaObject::InvokeMetaMethod, _id=47, _a=0xbfff8a58)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs_build/kio/jobclasses.moc:336
#38 0xb724e2c8 in QMetaObject::activate (sender=0x880e0b8, 
    from_signal_index=<value optimized out>, to_signal_index=8, 
    argv=<value optimized out>) at kernel/qobject.cpp:2995
#39 0xb724ea44 in QMetaObject::activate (sender=0x880e0b8, m=0xb7e0d024, 
    local_signal_index=4, argv=0x0) at kernel/qobject.cpp:3065
#40 0xb7d429e6 in KIO::SlaveInterface::finished (this=0x880e0b8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs_build/kio/slaveinterface.moc:161
#41 0xb7d44575 in KIO::SlaveInterface::dispatch (this=0x880e0b8, _cmd=104, 
    rawdata=@0xbfff8bf4)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kio/kio/slaveinterface.cpp:175
#42 0xb7d45076 in KIO::SlaveInterface::dispatch (this=0x880e0b8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kio/kio/slaveinterface.cpp:90
#43 0xb7d379d7 in KIO::Slave::gotInput (this=0x880e0b8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kio/kio/slave.cpp:319
#44 0xb7d38e6d in KIO::Slave::qt_metacall (this=0x880e0b8, 
    _c=QMetaObject::InvokeMetaMethod, _id=2, _a=0xbfff8cf8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs_build/kio/slave.moc:75
#45 0xb724e2c8 in QMetaObject::activate (sender=0x86030e8, 
    from_signal_index=<value optimized out>, to_signal_index=4, 
    argv=<value optimized out>) at kernel/qobject.cpp:2995
#46 0xb724ea44 in QMetaObject::activate (sender=0x86030e8, m=0xb7e09ea0, 
    local_signal_index=0, argv=0x0) at kernel/qobject.cpp:3065
#47 0xb7c716a3 in KIO::Connection::readyRead (this=0x86030e8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs_build/kio/connection.moc:84
#48 0xb7c72526 in KIO::ConnectionPrivate::dequeue (this=0x8602ff0)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kio/kio/connection.cpp:82
#49 0xb7c732c5 in KIO::Connection::qt_metacall (this=0x86030e8, 
    _c=QMetaObject::InvokeMetaMethod, _id=1, _a=0x87a43b0)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs_build/kio/connection.moc:72
#50 0xb7247b79 in QMetaCallEvent::placeMetaCall (this=0x8099ba8, 
    object=0x86030e8) at kernel/qobject.cpp:535
#51 0xb7249ede in QObject::event (this=0x86030e8, e=0x8099ba8)
    at kernel/qobject.cpp:1131
#52 0xb67f971f in QApplicationPrivate::notify_helper (this=0x80587c8, 
    receiver=0x86030e8, e=0x8099ba8) at kernel/qapplication.cpp:3735
#53 0xb67fb2fa in QApplication::notify (this=0xbfff96d8, receiver=0x86030e8, 
    e=0x8099ba8) at kernel/qapplication.cpp:3329
#54 0xb78a2ac3 in KApplication::notify (this=0xbfff96d8, receiver=0x86030e8, 
    event=0x8099ba8)
    at /var/tmp/portage/kde-base/kdelibs-9999.4/work/kdelibs-9999.4/kdeui/kernel/kapplication.cpp:311
#55 0xb7237cf7 in QCoreApplication::notifyInternal (this=0xbfff96d8, 
    receiver=0x86030e8, event=0x8099ba8) at kernel/qcoreapplication.cpp:586
#56 0xb7239059 in QCoreApplicationPrivate::sendPostedEvents (receiver=0x0, 
    event_type=0, data=0x804cb68)
    at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:215
#57 0xb72393bd in QCoreApplication::sendPostedEvents (receiver=0x0, 
    event_type=0) at kernel/qcoreapplication.cpp:1084
#58 0xb6891b1e in QEventDispatcherX11::processEvents (this=0x8057f58, 
    flags=@0xbfff93e4)
    at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:220
#59 0xb7236e61 in QEventLoop::processEvents (this=0xbfff9450, 
    flags=@0xbfff9418) at kernel/qeventloop.cpp:146
#60 0xb7236f8f in QEventLoop::exec (this=0xbfff9450, flags=@0xbfff9458)
    at kernel/qeventloop.cpp:197
#61 0xb7239476 in QCoreApplication::exec () at kernel/qcoreapplication.cpp:838
#62 0xb67f8e37 in QApplication::exec () at kernel/qapplication.cpp:3267
#63 0xb7f51c17 in kdemain (argc=1, argv=0xbfff9a54)
    at /var/tmp/portage/kde-base/kdebase-9999.4/work/kdebase-9999.4/apps/konqueror/src/konqmain.cpp:218
#64 0x080487e2 in main (argc=)
    at /var/tmp/portage/kde-base/kdebase-9999.4/work/kdebase_build/apps/konqueror/src/konqueror_dummy.cpp:3
#65 0xb6450fdc in __libc_start_main (main=0x80487c0 <main>, argc=1, 
    ubp_av=0xbfff9a54, init=0x8048810 <__libc_csu_init>, 
    fini=0x8048800 <__libc_csu_fini>, rtld_fini=0xb7f76100 <_dl_fini>, 
    stack_end=0xbfff9a4c) at libc-start.c:229
#66 0x08048731 in _start ()
#0  0xffffe410 in __kernel_vsyscall ()
Comment 1 David Palacio 2008-06-01 03:10:29 UTC
works fine for me, kde 4.0.80 beta1
Comment 2 Rui G. 2008-06-03 17:46:08 UTC
Created attachment 25089 [details]
Still crashes with me with a similar ( I think a little more complete ) backtrace as the report. 

Tested with trunk r816161.
Comment 3 David Palacio 2008-11-27 23:04:22 UTC
Cannot reproduce this on svn rev. 889815
Comment 4 Oliver Putz 2008-11-28 13:20:32 UTC
It at least still crashes on KDE-4.1.80 (don't know what the exact revision that was labeled as Beta1 was) But I'll check again once something newer than beta1 gets released
Comment 5 Maksim Orlovich 2008-11-28 20:44:26 UTC
The crash is inside QtSVG code, so it really should be reported to qt-bugs --- just send them that SVG file. (Except I don't see what it has to do with right-clicks?)  The crash should not be an issue in trunk since it does not use QtSVG code.