Bug 187938 - khtml crashes while visiting http://www.organissimo.org/forum/index.php?showtopic=3849&st=71505&start=71505
Summary: khtml crashes while visiting http://www.organissimo.org/forum/index.php?showt...
Status: RESOLVED FIXED
Alias: None
Product: konqueror
Classification: Applications
Component: khtml (show other bugs)
Version: unspecified
Platform: Compiled Sources Linux
: NOR crash
Target Milestone: ---
Assignee: Konqueror Developers
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2009-03-23 19:23 UTC by Michael Seiwert
Modified: 2009-06-20 17:36 UTC (History)
3 users (show)

See Also:
Latest Commit:
Version Fixed In:


Attachments
Tar.bz2 full saved page (156.39 KB, application/octet-stream)
2009-03-25 15:33 UTC, Dario Andres
Details

Note You need to log in before you can comment on or make changes to this bug.
Description Michael Seiwert 2009-03-23 19:23:17 UTC
Version:            (using Devel)
Compiler:          gcc version 4.3.2 [gcc-4_3-branch revision 141291] (SUSE Linux) 
OS:                Linux
Installed from:    Compiled sources

khtml (4.2 BRANCH) crashes while visiting  http://www.organissimo.org/forum/index.php?showtopic=3849&st=71505&start=71505​

Please see bt and valgrind output for details.
Comment 1 Michael Seiwert 2009-03-23 19:24:26 UTC
Application: Konqueror (konqueror), signal SIGSEGV
[?1034h[Thread debugging using libthread_db enabled]
[Current thread is 1 (Thread 0xb5fe8700 (LWP 28930))]

Thread 2 (Thread 0xb25c0b90 (LWP 28935)):
#0  0xffffe430 in __kernel_vsyscall ()
#1  0xb7248f62 in pthread_cond_timedwait@@GLIBC_2.3.2 () from /lib/libpthread.so.0
#2  0xb72d6fba in QWaitConditionPrivate::wait (this=0x839db58, time=30000) at thread/qwaitcondition_unix.cpp:80
#3  0xb72d6ad3 in QWaitCondition::wait (this=0x839da70, mutex=0x839da6c, time=30000) at thread/qwaitcondition_unix.cpp:154
#4  0xb72ca3bc in QThreadPoolThread::run (this=0x838b878) at concurrent/qthreadpool.cpp:135
#5  0xb72d66b1 in QThreadPrivate::start (arg=0x838b878) at thread/qthread_unix.cpp:185
#6  0xb72451b5 in start_thread () from /lib/libpthread.so.0
#7  0xb66943be in clone () from /lib/libc.so.6

Thread 1 (Thread 0xb5fe8700 (LWP 28930)):
[KCrash Handler]
#6  0x088aa865 in ?? ()
#7  0xb3ebcb53 in khtml::RenderObject::remove() () from /home/mseiwert/kde/lib/libkhtml.so.5
#8  0xb3eb0172 in khtml::RenderObject::detach() () from /home/mseiwert/kde/lib/libkhtml.so.5
#9  0xb3ecc001 in khtml::RenderBox::detach() () from /home/mseiwert/kde/lib/libkhtml.so.5
#10 0xb3eceed6 in khtml::RenderFlow::detach() () from /home/mseiwert/kde/lib/libkhtml.so.5
#11 0xb3ec252f in khtml::RenderBox::detachRemainingChildren() () from /home/mseiwert/kde/lib/libkhtml.so.5
#12 0xb3eced6e in khtml::RenderFlow::detach() () from /home/mseiwert/kde/lib/libkhtml.so.5
#13 0xb3eced63 in khtml::RenderFlow::detach() () from /home/mseiwert/kde/lib/libkhtml.so.5
#14 0xb3dcd5f4 in DOM::NodeImpl::detach() () from /home/mseiwert/kde/lib/libkhtml.so.5
#15 0xb3dcd66a in DOM::NodeBaseImpl::detach() () from /home/mseiwert/kde/lib/libkhtml.so.5
#16 0xb3ddd3ac in DOM::ElementImpl::detach() () from /home/mseiwert/kde/lib/libkhtml.so.5
#17 0xb3ddcf7d in DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) () from /home/mseiwert/kde/lib/libkhtml.so.5
#18 0xb3e3794c in DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) () from /home/mseiwert/kde/lib/libkhtml.so.5
#19 0xb3ddd0bd in DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) () from /home/mseiwert/kde/lib/libkhtml.so.5
#20 0xb3e3794c in DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) () from /home/mseiwert/kde/lib/libkhtml.so.5
#21 0xb3ddd0bd in DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) () from /home/mseiwert/kde/lib/libkhtml.so.5
#22 0xb3e3794c in DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) () from /home/mseiwert/kde/lib/libkhtml.so.5
#23 0xb3ddd0bd in DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) () from /home/mseiwert/kde/lib/libkhtml.so.5
#24 0xb3e3794c in DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) () from /home/mseiwert/kde/lib/libkhtml.so.5
#25 0xb3ddd0bd in DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) () from /home/mseiwert/kde/lib/libkhtml.so.5
#26 0xb3e3794c in DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) () from /home/mseiwert/kde/lib/libkhtml.so.5
#27 0xb3ddd0bd in DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) () from /home/mseiwert/kde/lib/libkhtml.so.5
#28 0xb3e3794c in DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) () from /home/mseiwert/kde/lib/libkhtml.so.5
#29 0xb3ddd0bd in DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) () from /home/mseiwert/kde/lib/libkhtml.so.5
#30 0xb3e3794c in DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) () from /home/mseiwert/kde/lib/libkhtml.so.5
#31 0xb3ddd0bd in DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) () from /home/mseiwert/kde/lib/libkhtml.so.5
#32 0xb3e3794c in DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) () from /home/mseiwert/kde/lib/libkhtml.so.5
#33 0xb3ddd0bd in DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) () from /home/mseiwert/kde/lib/libkhtml.so.5
#34 0xb3e3794c in DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) () from /home/mseiwert/kde/lib/libkhtml.so.5
#35 0xb3ddd0bd in DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) () from /home/mseiwert/kde/lib/libkhtml.so.5
#36 0xb3e3794c in DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) () from /home/mseiwert/kde/lib/libkhtml.so.5
#37 0xb3db6d20 in DOM::DocumentImpl::recalcStyle(DOM::NodeImpl::StyleChange) () from /home/mseiwert/kde/lib/libkhtml.so.5
#38 0xb3daf21f in DOM::DocumentImpl::updateRendering() () from /home/mseiwert/kde/lib/libkhtml.so.5
#39 0xb3db6840 in DOM::DocumentImpl::updateDocumentsRendering() () from /home/mseiwert/kde/lib/libkhtml.so.5
#40 0xb402e5fd in KJS::Window::afterScriptExecution() () from /home/mseiwert/kde/lib/libkhtml.so.5
#41 0xb404728c in KJS::KJSProxyImpl::evaluate(QString, int, QString const&, DOM::Node const&, KJS::Completion*) () from /home/mseiwert/kde/lib/libkhtml.so.5
#42 0xb3d5c780 in KHTMLPart::executeScript(QString const&, int, DOM::Node const&, QString const&) () from /home/mseiwert/kde/lib/libkhtml.so.5
#43 0xb3e1eb0e in khtml::HTMLTokenizer::scriptExecution(QString const&, QString const&, int) () from /home/mseiwert/kde/lib/libkhtml.so.5
#44 0xb3e1f5a4 in khtml::HTMLTokenizer::scriptHandler() () from /home/mseiwert/kde/lib/libkhtml.so.5
#45 0xb3e2032a in khtml::HTMLTokenizer::parseSpecial(khtml::TokenizerString&) () from /home/mseiwert/kde/lib/libkhtml.so.5
#46 0xb3e23d12 in khtml::HTMLTokenizer::parseTag(khtml::TokenizerString&) () from /home/mseiwert/kde/lib/libkhtml.so.5
#47 0xb3e24520 in khtml::HTMLTokenizer::write(khtml::TokenizerString const&, bool) () from /home/mseiwert/kde/lib/libkhtml.so.5
#48 0xb3d4d656 in KHTMLPart::write(char const*, int) () from /home/mseiwert/kde/lib/libkhtml.so.5
#49 0xb3d51463 in KHTMLPart::slotData(KIO::Job*, QByteArray const&) () from /home/mseiwert/kde/lib/libkhtml.so.5
#50 0xb3d5a7e5 in KHTMLPart::qt_metacall(QMetaObject::Call, int, void**) () from /home/mseiwert/kde/lib/libkhtml.so.5
#51 0xb73da126 in QMetaObject::activate (sender=0x85a0898, from_signal_index=40, to_signal_index=40, argv=0xbf8c53a8) at kernel/qobject.cpp:3028
#52 0xb73da5b3 in QMetaObject::activate (sender=0x85a0898, m=0xb7df9330, local_signal_index=0, argv=0xbf8c53a8) at kernel/qobject.cpp:3101
#53 0xb7c686bb in KIO::TransferJob::data(KIO::Job*, QByteArray const&) () from /home/mseiwert/kde/lib/libkio.so.5
#54 0xb7c6905b in KIO::TransferJob::slotData(QByteArray const&) () from /home/mseiwert/kde/lib/libkio.so.5
#55 0xb7c73d7c in KIO::TransferJob::qt_metacall(QMetaObject::Call, int, void**) () from /home/mseiwert/kde/lib/libkio.so.5
#56 0xb73da126 in QMetaObject::activate (sender=0x831de00, from_signal_index=4, to_signal_index=4, argv=0xbf8c54fc) at kernel/qobject.cpp:3028
#57 0xb73da5b3 in QMetaObject::activate (sender=0x831de00, m=0xb7dfbe04, local_signal_index=0, argv=0xbf8c54fc) at kernel/qobject.cpp:3101
#58 0xb7d1e678 in KIO::SlaveInterface::data(QByteArray const&) () from /home/mseiwert/kde/lib/libkio.so.5
#59 0xb7d202f5 in KIO::SlaveInterface::dispatch(int, QByteArray const&) () from /home/mseiwert/kde/lib/libkio.so.5
#60 0xb7d20236 in KIO::SlaveInterface::dispatch() () from /home/mseiwert/kde/lib/libkio.so.5
#61 0xb7d129e4 in KIO::Slave::gotInput() () from /home/mseiwert/kde/lib/libkio.so.5
#62 0xb7d13e54 in KIO::Slave::qt_metacall(QMetaObject::Call, int, void**) () from /home/mseiwert/kde/lib/libkio.so.5
#63 0xb73da126 in QMetaObject::activate (sender=0x830ff00, from_signal_index=4, to_signal_index=4, argv=0x0) at kernel/qobject.cpp:3028
#64 0xb73da5b3 in QMetaObject::activate (sender=0x830ff00, m=0xb7df88e0, local_signal_index=0, argv=0x0) at kernel/qobject.cpp:3101
#65 0xb7c3b02b in KIO::Connection::readyRead() () from /home/mseiwert/kde/lib/libkio.so.5
#66 0xb7c3bf67 in KIO::ConnectionPrivate::dequeue() () from /home/mseiwert/kde/lib/libkio.so.5
#67 0xb7c3cea1 in KIO::Connection::qt_metacall(QMetaObject::Call, int, void**) () from /home/mseiwert/kde/lib/libkio.so.5
#68 0xb73d41f2 in QMetaCallEvent::placeMetaCall (this=0x8969538, object=0x830ff00) at kernel/qobject.cpp:529
#69 0xb73d84d0 in QObject::event (this=0x830ff00, e=0x8969538) at kernel/qobject.cpp:1152
#70 0xb6b3a519 in QApplicationPrivate::notify_helper (this=0x805b578, receiver=0x830ff00, e=0x8969538) at kernel/qapplication.cpp:3803
#71 0xb6b3a82e in QApplication::notify (this=0xbf8c6130, receiver=0x830ff00, e=0x8969538) at kernel/qapplication.cpp:3393
#72 0xb78eef6f in KApplication::notify(QObject*, QEvent*) () from /home/mseiwert/kde/lib/libkdeui.so.5
#73 0xb73c5a77 in QCoreApplication::notifyInternal (this=0xbf8c6130, receiver=0x830ff00, event=0x8969538) at kernel/qcoreapplication.cpp:583
#74 0xb73c95f9 in QCoreApplication::sendEvent (receiver=0x830ff00, event=0x8969538) at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:209
#75 0xb73c5f97 in QCoreApplicationPrivate::sendPostedEvents (receiver=0x0, event_type=0, data=0x804f578) at kernel/qcoreapplication.cpp:1195
#76 0xb73c6153 in QCoreApplication::sendPostedEvents (receiver=0x0, event_type=0) at kernel/qcoreapplication.cpp:1091
#77 0xb73f50c6 in QCoreApplication::sendPostedEvents () at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:214
#78 0xb73f42d8 in postEventSourceDispatch (s=0x805d910) at kernel/qeventdispatcher_glib.cpp:205
#79 0xb632f9a8 in g_main_context_dispatch () from /usr/lib/libglib-2.0.so.0
#80 0xb6333063 in ?? () from /usr/lib/libglib-2.0.so.0
#81 0xb6333221 in g_main_context_iteration () from /usr/lib/libglib-2.0.so.0
#82 0xb73f36f2 in QEventDispatcherGlib::processEvents (this=0x805b6f0, flags={i = -1081319592}) at kernel/qeventdispatcher_glib.cpp:319
#83 0xb6bdf304 in QGuiEventDispatcherGlib::processEvents (this=0x805b6f0, flags={i = -1081319544}) at kernel/qguieventdispatcher_glib.cpp:198
#84 0xb73c2a98 in QEventLoop::processEvents (this=0xbf8c6000, flags={i = -1081319484}) at kernel/qeventloop.cpp:143
#85 0xb73c2cd5 in QEventLoop::exec (this=0xbf8c6000, flags={i = -1081319416}) at kernel/qeventloop.cpp:190
#86 0xb73c6273 in QCoreApplication::exec () at kernel/qcoreapplication.cpp:845
#87 0xb6b3a232 in QApplication::exec () at kernel/qapplication.cpp:3331
#88 0xb7f8f25b in kdemain () from /home/mseiwert/kde/lib/libkdeinit4_konqueror.so
#89 0x080487b6 in main ()
Comment 2 Michael Seiwert 2009-03-23 19:28:55 UTC
valgrinds famous last words:

konqueror(28948)/khtml (part) KHTMLPart::openUrl: KHTMLPart(0x69d3840) opening KUrl("http://www.organissimo.org/forum/index.php?showtopic=3849&st=71505")                                                                       
konqueror(28948)/kio (Scheduler) KIO::SchedulerPrivate::findIdleSlave: Resume metadata is ""                    
konqueror(28948)/kio (Scheduler) KIO::SchedulerPrivate::findIdleSlave: HOLD: Reusing held slave for KUrl("http://www.organissimo.org/forum/index.php?showtopic=3849&st=71505")                                                  
konqueror(28948)/khtml (html) DOM::HTMLDocumentImpl::changeModes:  using compatibility parseMode                
konqueror(28948)/khtml (html) DOM::HTMLDocumentImpl::changeModes:  using transitional parseMode                 
konqueror(28948) KonqMainWindow::slotIconsChanged:                                                              
konqueror(28948)/khtml (tokenizer) khtml::HTMLTokenizer::notifyFinished: Finished loading an external script    
konqueror(28948)/khtml (tokenizer) khtml::HTMLTokenizer::notifyFinished: Finished loading an external script    
konqueror(28948)/khtml (tokenizer) khtml::HTMLTokenizer::notifyFinished: Finished loading an external script    
konqueror(28948)/khtml (tokenizer) khtml::HTMLTokenizer::notifyFinished: Finished loading an external script    
konqueror(28948)/khtml (tokenizer) khtml::HTMLTokenizer::notifyFinished: Finished loading an external script    
konqueror(28948)/khtml (tokenizer) khtml::HTMLTokenizer::notifyFinished: Finished loading an external script    
konqueror(28948)/khtml (tokenizer) khtml::HTMLTokenizer::notifyFinished: Finished loading an external script    
QPainter::begin: Widget painting can only begin as a result of a paintEvent                                     
QPainter::setWorldTransform: Painter not active                                                                 
QPainter::setFont: Painter not active                                                                           
QPainter::setFont: Painter not active                                                                           
QPainter::setFont: Painter not active                                                                           
QPainter::setFont: Painter not active
QPainter::setFont: Painter not active
==28948==
==28948== Invalid read of size 1
==28948==    at 0x99534DB: ???
==28948==    by 0xA2EFB52: khtml::RenderObject::remove() (in /home/mseiwert/kde/lib/libkhtml.so.5.2.0)
==28948==    by 0xA2E3171: khtml::RenderObject::detach() (in /home/mseiwert/kde/lib/libkhtml.so.5.2.0)
==28948==    by 0xA2FF000: khtml::RenderBox::detach() (in /home/mseiwert/kde/lib/libkhtml.so.5.2.0)
==28948==    by 0xA301ED5: khtml::RenderFlow::detach() (in /home/mseiwert/kde/lib/libkhtml.so.5.2.0)
==28948==    by 0xA2F552E: khtml::RenderBox::detachRemainingChildren() (in /home/mseiwert/kde/lib/libkhtml.so.5.2.0)
==28948==    by 0xA301D6D: khtml::RenderFlow::detach() (in /home/mseiwert/kde/lib/libkhtml.so.5.2.0)
==28948==    by 0xA301D62: khtml::RenderFlow::detach() (in /home/mseiwert/kde/lib/libkhtml.so.5.2.0)
==28948==    by 0xA2005F3: DOM::NodeImpl::detach() (in /home/mseiwert/kde/lib/libkhtml.so.5.2.0)
==28948==    by 0xA200669: DOM::NodeBaseImpl::detach() (in /home/mseiwert/kde/lib/libkhtml.so.5.2.0)
==28948==    by 0xA2103AB: DOM::ElementImpl::detach() (in /home/mseiwert/kde/lib/libkhtml.so.5.2.0)
==28948==    by 0xA20FF7C: DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (in /home/mseiwert/kde/lib/libkhtml.so.5.2.0)
==28948==  Address 0xc8f2c7a5 is not stack'd, malloc'd or (recently) free'd
KCrash: crashing... crashRecursionCounter = 2
KCrash: Application Name = konqueror path = <unknown> pid = 28948
sock_file=/home/mseiwert/.kde4-devel/socket-kukuksei/kdeinit4__0
==28948==
==28948== ERROR SUMMARY: 5149 errors from 7 contexts (suppressed: 411 from 7)
==28948== malloc/free: in use at exit: 9,961,285 bytes in 107,838 blocks.
==28948== malloc/free: 2,776,232 allocs, 2,668,394 frees, 246,509,354 bytes allocated.
==28948== For counts of detected errors, rerun with: -v
==28948== searching for pointers to 107,838 not-freed blocks.
==28948== checked 57,788,744 bytes.
==28948==
==28948== LEAK SUMMARY:
==28948==    definitely lost: 51,477 bytes in 2,291 blocks.
==28948==      possibly lost: 87,773 bytes in 2,846 blocks.
==28948==    still reachable: 9,822,035 bytes in 102,701 blocks.
==28948==         suppressed: 0 bytes in 0 blocks.
==28948== Rerun with --leak-check=full to see details of leaked memory.
Comment 3 Dario Andres 2009-03-25 15:32:21 UTC
Here using:

Qt: 4.5.0 + qt-copy-patches-936035
KDE: 4.2.67 (KDE 4.2.67 (KDE 4.3 >= 20090318))
kdelibs svn rev. 944348 / kdebase svn rev. 944348
on ArchLinux i686 - Kernel 2.6.28.7

I can reproduce the crash with the following backtrace:

Application: Konqueror (konqueror), signal SIGSEGV
[Current thread is 0 (LWP 24241)]

Thread 2 (Thread 0xb240eb90 (LWP 24248)):
#0  0xb7f29424 in __kernel_vsyscall ()
#1  0xb7182f82 in pthread_cond_timedwait@@GLIBC_2.3.2 () from /lib/libpthread.so.0
#2  0xb71e171c in QWaitCondition::wait (this=0x90ebd60, mutex=0x90ebd5c, time=30000) at thread/qwaitcondition_unix.cpp:85
#3  0xb71d6da6 in QThreadPoolThread::run (this=0x92128b0) at concurrent/qthreadpool.cpp:140
#4  0xb71e0b60 in QThreadPrivate::start (arg=0x92128b0) at thread/qthread_unix.cpp:189
#5  0xb717f155 in start_thread () from /lib/libpthread.so.0
#6  0xb65bfa5e in clone () from /lib/libc.so.6

Thread 1 (Thread 0xb5e40700 (LWP 24241)):
[KCrash Handler]
#6  0x08cffa6e in ?? ()
#7  0xb3ed6f81 in khtml::RenderBlock::removeChild (this=0x93ac3d4, oldChild=0x93c0f50) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/rendering/render_block.cpp:617
#8  0xb3ee7f85 in khtml::RenderObject::detach (this=0x93c0f50) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/rendering/render_object.h:847
#9  0xb3ef450b in khtml::RenderBox::detach (this=0x93c0f50) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/rendering/render_box.cpp:224
#10 0xb3efca80 in khtml::RenderFlow::detach (this=0x93c0f50) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/rendering/render_flow.cpp:361
#11 0xb3ef2512 in khtml::RenderBox::detachRemainingChildren (this=0x93ac3d4) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/rendering/render_box.cpp:242
#12 0xb3efca1e in khtml::RenderFlow::detach (this=0x93ac3d4) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/rendering/render_flow.cpp:326
#13 0xb3efca16 in khtml::RenderFlow::detach (this=0x93ac30c) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/rendering/render_flow.cpp:322
#14 0xb3e2c78c in DOM::NodeImpl::detach (this=0x93c0818) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_nodeimpl.cpp:972
#15 0xb3e3986b in DOM::ElementImpl::detach (this=0x93c0818) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_elementimpl.cpp:856
#16 0xb3e3a56d in DOM::ElementImpl::recalcStyle (this=0x93c0818, change=DOM::NodeImpl::Force) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_elementimpl.cpp:930
#17 0xb3e865e9 in DOM::HTMLElementImpl::recalcStyle (this=0x93c0818, ch=DOM::NodeImpl::Force) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/html/html_elementimpl.cpp:269
#18 0xb3e3a45f in DOM::ElementImpl::recalcStyle (this=0x93c0370, change=DOM::NodeImpl::Force) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_elementimpl.cpp:961
#19 0xb3e865e9 in DOM::HTMLElementImpl::recalcStyle (this=0x93c0370, ch=DOM::NodeImpl::Force) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/html/html_elementimpl.cpp:269
#20 0xb3e3a45f in DOM::ElementImpl::recalcStyle (this=0x93bfdc8, change=DOM::NodeImpl::Force) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_elementimpl.cpp:961
#21 0xb3e865e9 in DOM::HTMLElementImpl::recalcStyle (this=0x93bfdc8, ch=DOM::NodeImpl::NoChange) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/html/html_elementimpl.cpp:269
#22 0xb3e3a45f in DOM::ElementImpl::recalcStyle (this=0x93bb338, change=DOM::NodeImpl::NoChange) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_elementimpl.cpp:961
#23 0xb3e865e9 in DOM::HTMLElementImpl::recalcStyle (this=0x93bb338, ch=DOM::NodeImpl::NoChange) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/html/html_elementimpl.cpp:269
#24 0xb3e3a45f in DOM::ElementImpl::recalcStyle (this=0x93a84a8, change=DOM::NodeImpl::NoChange) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_elementimpl.cpp:961
#25 0xb3e865e9 in DOM::HTMLElementImpl::recalcStyle (this=0x93a84a8, ch=DOM::NodeImpl::NoChange) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/html/html_elementimpl.cpp:269
#26 0xb3e3a45f in DOM::ElementImpl::recalcStyle (this=0x93af6c0, change=DOM::NodeImpl::NoChange) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_elementimpl.cpp:961
#27 0xb3e865e9 in DOM::HTMLElementImpl::recalcStyle (this=0x93af6c0, ch=DOM::NodeImpl::NoChange) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/html/html_elementimpl.cpp:269
#28 0xb3e3a45f in DOM::ElementImpl::recalcStyle (this=0x92929c0, change=DOM::NodeImpl::NoChange) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_elementimpl.cpp:961
#29 0xb3e865e9 in DOM::HTMLElementImpl::recalcStyle (this=0x92929c0, ch=DOM::NodeImpl::NoChange) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/html/html_elementimpl.cpp:269
#30 0xb3e3a45f in DOM::ElementImpl::recalcStyle (this=0x921af58, change=DOM::NodeImpl::NoChange) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_elementimpl.cpp:961
#31 0xb3e865e9 in DOM::HTMLElementImpl::recalcStyle (this=0x921af58, ch=DOM::NodeImpl::NoChange) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/html/html_elementimpl.cpp:269
#32 0xb3e3a45f in DOM::ElementImpl::recalcStyle (this=0x8d7c9e0, change=DOM::NodeImpl::NoChange) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_elementimpl.cpp:961
#33 0xb3e865e9 in DOM::HTMLElementImpl::recalcStyle (this=0x8d7c9e0, ch=DOM::NodeImpl::NoChange) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/html/html_elementimpl.cpp:269
#34 0xb3e3a45f in DOM::ElementImpl::recalcStyle (this=0x90a66b8, change=DOM::NodeImpl::NoChange) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_elementimpl.cpp:961
#35 0xb3e865e9 in DOM::HTMLElementImpl::recalcStyle (this=0x90a66b8, ch=DOM::NodeImpl::NoChange) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/html/html_elementimpl.cpp:269
#36 0xb3e1fc0a in DOM::DocumentImpl::recalcStyle (this=0x8cffa60, change=DOM::NodeImpl::NoChange) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_docimpl.cpp:1445
#37 0xb3e14738 in DOM::DocumentImpl::updateRendering (this=0x93ac370) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_docimpl.cpp:1474
#38 0xb3e20680 in DOM::DocumentImpl::updateDocumentsRendering () at /home/kde-devel/kde/src/KDE/kdelibs/khtml/xml/dom_docimpl.cpp:1487
#39 0xb40169ec in KJS::Window::afterScriptExecution (this=0xb2760000) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/ecma/kjs_window.cpp:1265
#40 0xb402d64d in KJS::KJSProxyImpl::evaluate (this=0x8bc0908, filename=
      {static null = {<No data fields>}, static shared_null = {ref = {_q_value = 12965}, alloc = 0, size = 0, data = 0xb7383b5a, clean = 0, simpletext = 0, righttoleft = 0, asciiCache = 0, capacity = 0, reserved = 0, array = {0}}, static shared_empty = {ref = {_q_value = 185}, alloc = 0, size = 0, data = 0xb7383b6e, clean = 0, simpletext = 0, righttoleft = 0, asciiCache = 0, capacity = 0, reserved = 0, array = {0}}, d = 0xbff451f8, static codecForCStrings = 0x0}, baseLine=3296, str=@0xbff45428, n=@0xbff4525c, completion=0xbff451d0)
    at /home/kde-devel/kde/src/KDE/kdelibs/khtml/ecma/kjs_proxy.cpp:170
#41 0xb3dd67de in KHTMLPart::executeScript (this=0x8b89e90, filename=@0xbff45278, baseLine=3296, n=@0xbff4525c, script=@0xbff45428) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/khtml_part.cpp:1320
#42 0xb3e6eb29 in khtml::HTMLTokenizer::scriptExecution (this=0x909cae0, str=@0xbff45428, scriptURL=@0xbff45424, baseLine=3296) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/html/htmltokenizer.cpp:501
#43 0xb3e73f54 in khtml::HTMLTokenizer::scriptHandler (this=0x909cae0) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/html/htmltokenizer.cpp:454
#44 0xb3e755dd in khtml::HTMLTokenizer::parseSpecial (this=0x909cae0, src=@0x909cfe0) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/html/htmltokenizer.cpp:369
#45 0xb3e774ed in khtml::HTMLTokenizer::parseTag (this=0x909cae0, src=@0x909cfe0) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/html/htmltokenizer.cpp:1551
#46 0xb3e78ace in khtml::HTMLTokenizer::write (this=0x909cae0, str=@0xbff4573c, appendData=true) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/html/htmltokenizer.cpp:1811
#47 0xb3e6e989 in khtml::HTMLTokenizer::timerEvent (this=0x909cae0, e=0xbff45b9c) at /home/kde-devel/kde/src/KDE/kdelibs/khtml/html/htmltokenizer.cpp:1914
#48 0xb72e0eff in QObject::event (this=0x909cae0, e=0xbff45b9c) at kernel/qobject.cpp:1082
#49 0xb69fd00c in QApplicationPrivate::notify_helper (this=0x89f69a0, receiver=0x909cae0, e=0xbff45b9c) at kernel/qapplication.cpp:4084
#50 0xb6a05bbf in QApplication::notify (this=0xbff46838, receiver=0x909cae0, e=0xbff45b9c) at kernel/qapplication.cpp:3631
#51 0xb7826acd in KApplication::notify (this=0xbff46838, receiver=0x909cae0, event=0xbff45b9c) at /home/kde-devel/kde/src/KDE/kdelibs/kdeui/kernel/kapplication.cpp:307
#52 0xb72d011b in QCoreApplication::notifyInternal (this=0xbff46838, receiver=0x909cae0, event=0xbff45b9c) at kernel/qcoreapplication.cpp:598
#53 0xb72fe177 in QTimerInfoList::activateTimers (this=0x89f98dc) at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:213
#54 0xb72fab00 in timerSourceDispatch (source=0x89f98a8) at kernel/qeventdispatcher_glib.cpp:164
#55 0xb617a311 in g_main_context_dispatch () from /usr/lib/libglib-2.0.so.0
#56 0xb617d9a3 in g_main_context_iterate () from /usr/lib/libglib-2.0.so.0
#57 0xb617db61 in g_main_context_iteration () from /usr/lib/libglib-2.0.so.0
#58 0xb72faa58 in QEventDispatcherGlib::processEvents (this=0x89f6980, flags={i = -1074504424}) at kernel/qeventdispatcher_glib.cpp:323
#59 0xb6a95535 in QGuiEventDispatcherGlib::processEvents (this=0x89f6980, flags={i = -1074504376}) at kernel/qguieventdispatcher_glib.cpp:202
#60 0xb72ceb5a in QEventLoop::processEvents (this=0xbff45dc4, flags={i = -1074504312}) at kernel/qeventloop.cpp:149
#61 0xb72ced1a in QEventLoop::exec (this=0xbff45dc4, flags={i = -1074504244}) at kernel/qeventloop.cpp:196
#62 0xb7c74e0b in KIO::NetAccess::enter_loop (this=0xbff45e30) at /home/kde-devel/kde/src/KDE/kdelibs/kio/kio/netaccess.cpp:502
#63 0xb7c754cf in KIO::NetAccess::synchronousRunInternal (this=0xbff45e30, job=0x92262f8, window=0x0, data=0x0, finalURL=0x0, metaData=0x0)
    at /home/kde-devel/kde/src/KDE/kdelibs/kio/kio/netaccess.cpp:487
#64 0xb7c75b81 in KIO::NetAccess::synchronousRun (job=0x92262f8, window=0x0, data=0x0, finalURL=0x0, metaData=0x0) at /home/kde-devel/kde/src/KDE/kdelibs/kio/kio/netaccess.cpp:277
#65 0xb7efc00d in KonqSessionManager::deleteOwnedSessions (this=0x8a61678) at /home/kde-devel/kde/src/KDE/kdebase/apps/konqueror/src/konqsessionmanager.cpp:136
#66 0xb7efc092 in KonqSessionManager::autoSaveSession (this=0x8a61678) at /home/kde-devel/kde/src/KDE/kdebase/apps/konqueror/src/konqsessionmanager.cpp:161
#67 0xb7efd663 in KonqSessionManager::qt_metacall (this=0x8a61678, _c=QMetaObject::InvokeMetaMethod, _id=2, _a=0xbff45f58)
    at /home/kde-devel/kde/build/KDE/kdebase/apps/konqueror/src/konqsessionmanager.moc:83
#68 0xb72e64c1 in QMetaObject::activate (sender=0x8a61680, from_signal_index=<value optimized out>, to_signal_index=4, argv=0x0) at kernel/qobject.cpp:3066
#69 0xb72e6ad2 in QMetaObject::activate (sender=0x8a61680, m=0xb7383024, local_signal_index=0, argv=0x0) at kernel/qobject.cpp:3143
#70 0xb73200f7 in QTimer::timeout (this=0x8a61680) at .moc/debug-shared/moc_qtimer.cpp:128
#71 0xb72ec5ce in QTimer::timerEvent (this=0x8a61680, e=0xbff463fc) at kernel/qtimer.cpp:261
#72 0xb72e0eff in QObject::event (this=0x8a61680, e=0xbff463fc) at kernel/qobject.cpp:1082
#73 0xb69fd00c in QApplicationPrivate::notify_helper (this=0x89f69a0, receiver=0x8a61680, e=0xbff463fc) at kernel/qapplication.cpp:4084
#74 0xb6a05bbf in QApplication::notify (this=0xbff46838, receiver=0x8a61680, e=0xbff463fc) at kernel/qapplication.cpp:3631
#75 0xb7826acd in KApplication::notify (this=0xbff46838, receiver=0x8a61680, event=0xbff463fc) at /home/kde-devel/kde/src/KDE/kdelibs/kdeui/kernel/kapplication.cpp:307
#76 0xb72d011b in QCoreApplication::notifyInternal (this=0xbff46838, receiver=0x8a61680, event=0xbff463fc) at kernel/qcoreapplication.cpp:598
#77 0xb72fe177 in QTimerInfoList::activateTimers (this=0x89f98dc) at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:213
#78 0xb72fab00 in timerSourceDispatch (source=0x89f98a8) at kernel/qeventdispatcher_glib.cpp:164
#79 0xb617a311 in g_main_context_dispatch () from /usr/lib/libglib-2.0.so.0
#80 0xb617d9a3 in g_main_context_iterate () from /usr/lib/libglib-2.0.so.0
#81 0xb617db61 in g_main_context_iteration () from /usr/lib/libglib-2.0.so.0
#82 0xb72faa58 in QEventDispatcherGlib::processEvents (this=0x89f6980, flags={i = -1074502280}) at kernel/qeventdispatcher_glib.cpp:323
#83 0xb6a95535 in QGuiEventDispatcherGlib::processEvents (this=0x89f6980, flags={i = -1074502232}) at kernel/qguieventdispatcher_glib.cpp:202
#84 0xb72ceb5a in QEventLoop::processEvents (this=0xbff46610, flags={i = -1074502168}) at kernel/qeventloop.cpp:149
#85 0xb72ced1a in QEventLoop::exec (this=0xbff46610, flags={i = -1074502120}) at kernel/qeventloop.cpp:196
#86 0xb72d3da1 in QCoreApplication::exec () at kernel/qcoreapplication.cpp:880
#87 0xb69fcd37 in QApplication::exec () at kernel/qapplication.cpp:3553
#88 0xb7f1051f in kdemain (argc=2, argv=0xbff46bb4) at /home/kde-devel/kde/src/KDE/kdebase/apps/konqueror/src/konqmain.cpp:257
#89 0x08048732 in main (argc=-1272243096, argv=0x93c0d80) at /home/kde-devel/kde/build/KDE/kdebase/apps/konqueror/src/konqueror_dummy.cpp:3
Comment 4 Dario Andres 2009-03-25 15:33:59 UTC
Created attachment 32387 [details]
Tar.bz2 full saved page
Comment 5 Maksim Orlovich 2009-03-25 20:31:20 UTC
w/o arena allocator:

==12914== Invalid read of size 4                                                                                                               
==12914==    at 0xA365770: khtml::RenderBlock::removeChild(khtml::RenderObject*) (render_block.cpp:617)                                        
==12914==    by 0xA37A9C0: khtml::RenderObject::detach() (render_object.h:847)                                                                 
==12914==    by 0xA3881DA: khtml::RenderBox::detach() (render_box.cpp:224)                                                                     
==12914==    by 0xA39088F: khtml::RenderFlow::detach() (render_flow.cpp:361)                                                                   
==12914==    by 0xA3860F1: khtml::RenderBox::detachRemainingChildren() (render_box.cpp:242)                                                    
==12914==    by 0xA39082D: khtml::RenderFlow::detach() (render_flow.cpp:326)                                                                   
==12914==    by 0xA390825: khtml::RenderFlow::detach() (render_flow.cpp:322)                                                                   
==12914==    by 0xA2B1ACB: DOM::NodeImpl::detach() (dom_nodeimpl.cpp:971)                                                                      
==12914==    by 0xA2B228B: DOM::NodeBaseImpl::detach() (dom_nodeimpl.cpp:1735)                                                                 
==12914==    by 0xA2C0B3A: DOM::ElementImpl::detach() (dom_elementimpl.cpp:856)                                                                
==12914==    by 0xA2C0AAC: DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (dom_elementimpl.cpp:930)                                 
==12914==    by 0xA30D9D8: DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (html_elementimpl.cpp:269)                            
==12914==    by 0xA2C099E: DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (dom_elementimpl.cpp:961)                                 
==12914==    by 0xA30D9D8: DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (html_elementimpl.cpp:269)                            
==12914==    by 0xA2C099E: DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (dom_elementimpl.cpp:961)                                 
==12914==    by 0xA30D9D8: DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (html_elementimpl.cpp:269)                            
==12914==    by 0xA2C099E: DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (dom_elementimpl.cpp:961)                                 
==12914==    by 0xA30D9D8: DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (html_elementimpl.cpp:269)                            
==12914==    by 0xA2C099E: DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (dom_elementimpl.cpp:961)                                 
==12914==    by 0xA30D9D8: DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (html_elementimpl.cpp:269)                            
==12914==    by 0xA2C099E: DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (dom_elementimpl.cpp:961)                                 
==12914==    by 0xA30D9D8: DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (html_elementimpl.cpp:269)                            
==12914==    by 0xA2C099E: DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (dom_elementimpl.cpp:961)                                 
==12914==    by 0xA30D9D8: DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (html_elementimpl.cpp:269)                            
==12914==    by 0xA2C099E: DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (dom_elementimpl.cpp:961)                                 
==12914==    by 0xA30D9D8: DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (html_elementimpl.cpp:269)                            
==12914==    by 0xA2C099E: DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (dom_elementimpl.cpp:961)                                 
==12914==    by 0xA30D9D8: DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (html_elementimpl.cpp:269)                            
==12914==    by 0xA2C099E: DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (dom_elementimpl.cpp:961)                                 
==12914==    by 0xA30D9D8: DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (html_elementimpl.cpp:269)                            
==12914==    by 0xA2A2759: DOM::DocumentImpl::recalcStyle(DOM::NodeImpl::StyleChange) (dom_docimpl.cpp:1445)                                   
==12914==    by 0xA298247: DOM::DocumentImpl::updateRendering() (dom_docimpl.cpp:1474)                                                         
==12914==    by 0xA2A33A7: DOM::DocumentImpl::updateDocumentsRendering() (dom_docimpl.cpp:1487)                                                
==12914==    by 0xA4CBB5B: KJS::Window::afterScriptExecution() (kjs_window.cpp:1288)                                                           
==12914==    by 0xA4E2CBC: KJS::KJSProxyImpl::evaluate(QString, int, QString const&, DOM::Node const&, KJS::Completion*) (kjs_proxy.cpp:170)   
==12914==    by 0xA25ADDC: KHTMLPart::executeScript(QString const&, int, DOM::Node const&, QString const&) (khtml_part.cpp:1319)               
==12914==    by 0xA2F5618: khtml::HTMLTokenizer::scriptExecution(QString const&, QString const&, int) (htmltokenizer.cpp:501)                  
==12914==    by 0xA2F8EE5: khtml::HTMLTokenizer::scriptHandler() (htmltokenizer.cpp:454)                                                       
==12914==    by 0xA2FC2CC: khtml::HTMLTokenizer::parseSpecial(khtml::TokenizerString&) (htmltokenizer.cpp:369)                                 
==12914==    by 0xA2FE24C: khtml::HTMLTokenizer::parseTag(khtml::TokenizerString&) (htmltokenizer.cpp:1551)                                    
==12914==    by 0xA2FF89D: khtml::HTMLTokenizer::write(khtml::TokenizerString const&, bool) (htmltokenizer.cpp:1811)                           
==12914==    by 0xA2F5478: khtml::HTMLTokenizer::timerEvent(QTimerEvent*) (htmltokenizer.cpp:1914)                                             
==12914==    by 0x4FA361E: QObject::event(QEvent*) (qobject.cpp:1082)                                                                          
==12914==    by 0x526777B: QApplicationPrivate::notify_helper(QObject*, QEvent*) (qapplication.cpp:4084)                                       
==12914==    by 0x527038E: QApplication::notify(QObject*, QEvent*) (qapplication.cpp:3631)                                                     
==12914==    by 0x48FEFF0: KApplication::notify(QObject*, QEvent*) (kapplication.cpp:307)                                                      
==12914==    by 0x4F9276A: QCoreApplication::notifyInternal(QObject*, QEvent*) (qcoreapplication.cpp:598)                                      
==12914==    by 0x4FC0AE6: QTimerInfoList::activateTimers() (qcoreapplication.h:213)                                                           
==12914==  Address 0x9e1e728 is 8 bytes inside a block of size 108 free'd                                                                      
==12914==    at 0x4023B2A: free (vg_replace_malloc.c:323)                                                                                      
==12914==    by 0xA396A66: khtml::RenderArena::free(unsigned int, void*) (render_arena.cpp:122)                                                
==12914==    by 0xA3765C2: khtml::RenderObject::arenaDelete(khtml::RenderArena*, void*) (render_object.cpp:2380)                               
==12914==    by 0xA37A9E4: khtml::RenderObject::detach() (render_object.cpp:2365)                                                              
==12914==    by 0xA3881DA: khtml::RenderBox::detach() (render_box.cpp:224)                                                                     
==12914==    by 0xA39088F: khtml::RenderFlow::detach() (render_flow.cpp:361)                                                                   
==12914==    by 0xA390825: khtml::RenderFlow::detach() (render_flow.cpp:322)                                                                   
==12914==    by 0xA390825: khtml::RenderFlow::detach() (render_flow.cpp:322)                                                                   
==12914==    by 0xA2B1ACB: DOM::NodeImpl::detach() (dom_nodeimpl.cpp:971)                                                                      
==12914==    by 0xA2B228B: DOM::NodeBaseImpl::detach() (dom_nodeimpl.cpp:1735)                                                                 
==12914==    by 0xA2C0B3A: DOM::ElementImpl::detach() (dom_elementimpl.cpp:856)                                                                
==12914==    by 0xA2C0AAC: DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (dom_elementimpl.cpp:930)                                 
==12914==    by 0xA30D9D8: DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (html_elementimpl.cpp:269)                            
==12914==    by 0xA2C099E: DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (dom_elementimpl.cpp:961)                                 
==12914==    by 0xA30D9D8: DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (html_elementimpl.cpp:269)                            
==12914==    by 0xA2C099E: DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (dom_elementimpl.cpp:961)                                 
==12914==    by 0xA30D9D8: DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (html_elementimpl.cpp:269)                            
==12914==    by 0xA2C099E: DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (dom_elementimpl.cpp:961)                                 
==12914==    by 0xA30D9D8: DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (html_elementimpl.cpp:269)                            
==12914==    by 0xA2C099E: DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (dom_elementimpl.cpp:961)                                 
==12914==    by 0xA30D9D8: DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (html_elementimpl.cpp:269)                            
==12914==    by 0xA2C099E: DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (dom_elementimpl.cpp:961)                                 
==12914==    by 0xA30D9D8: DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (html_elementimpl.cpp:269)                            
==12914==    by 0xA2C099E: DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (dom_elementimpl.cpp:961)                                 
==12914==    by 0xA30D9D8: DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (html_elementimpl.cpp:269)                            
==12914==    by 0xA2C099E: DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (dom_elementimpl.cpp:961)                                 
==12914==    by 0xA30D9D8: DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (html_elementimpl.cpp:269)                            
==12914==    by 0xA2C099E: DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (dom_elementimpl.cpp:961)                                 
==12914==    by 0xA30D9D8: DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (html_elementimpl.cpp:269)                            
==12914==    by 0xA2C099E: DOM::ElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (dom_elementimpl.cpp:961)                                 
==12914==    by 0xA30D9D8: DOM::HTMLElementImpl::recalcStyle(DOM::NodeImpl::StyleChange) (html_elementimpl.cpp:269)                            
==12914==    by 0xA2A2759: DOM::DocumentImpl::recalcStyle(DOM::NodeImpl::StyleChange) (dom_docimpl.cpp:1445)                                   
==12914==    by 0xA298247: DOM::DocumentImpl::updateRendering() (dom_docimpl.cpp:1474)                                                         
==12914==    by 0xA2A33A7: DOM::DocumentImpl::updateDocumentsRendering() (dom_docimpl.cpp:1487)                                                
==12914==    by 0xA4CBB5B: KJS::Window::afterScriptExecution() (kjs_window.cpp:1288)                                                           
==12914==    by 0xA4E2CBC: KJS::KJSProxyImpl::evaluate(QString, int, QString const&, DOM::Node const&, KJS::Completion*) (kjs_proxy.cpp:170)   
==12914==    by 0xA25ADDC: KHTMLPart::executeScript(QString const&, int, DOM::Node const&, QString const&) (khtml_part.cpp:1319)               
==12914==    by 0xA2F5618: khtml::HTMLTokenizer::scriptExecution(QString const&, QString const&, int) (htmltokenizer.cpp:501)                  
==12914==    by 0xA2F8EE5: khtml::HTMLTokenizer::scriptHandler() (htmltokenizer.cpp:454)                                                       
==12914==    by 0xA2FC2CC: khtml::HTMLTokenizer::parseSpecial(khtml::TokenizerString&) (htmltokenizer.cpp:369)                                 
==12914==    by 0xA2FE24C: khtml::HTMLTokenizer::parseTag(khtml::TokenizerString&) (htmltokenizer.cpp:1551)                                    
==12914==    by 0xA2FF89D: khtml::HTMLTokenizer::write(khtml::TokenizerString const&, bool) (htmltokenizer.cpp:1811)                           
==12914==    by 0xA2F5478: khtml::HTMLTokenizer::timerEvent(QTimerEvent*) (htmltokenizer.cpp:1914)                                             
==12914==    by 0x4FA361E: QObject::event(QEvent*) (qobject.cpp:1082)                                                                          
==12914==    by 0x526777B: QApplicationPrivate::notify_helper(QObject*, QEvent*) (qapplication.cpp:4084)                                       
==12914==    by 0x527038E: QApplication::notify(QObject*, QEvent*) (qapplication.cpp:3631)                                                     
==12914==    by 0x48FEFF0: KApplication::notify(QObject*, QEvent*) (kapplication.cpp:307)                                                      
==12914==    by 0x4F9276A: QCoreApplication::notifyInternal(QObject*, QEvent*) (qcoreapplication.cpp:598)
Comment 6 Viacheslav Tokarev 2009-04-05 10:12:46 UTC
Here is the reduced test case:

<!DOCTYPE HTML PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html>
    <body>
        <table style="display: inline;" id="table">
            <tr>
                <td>
                    <div><a></a></div>
                </td>
            </tr>
        </table>
        <script type="text/javascript">
            document.getElementById('table').style.display = 'inline-block';
        </script>
    </body>
</html>
Comment 7 Viacheslav Tokarev 2009-04-05 13:03:49 UTC
SVN commit 949425 by vtokarev:

Set continuation to 0 when we actually removed it
BUG: 187938

 M  +2 -1      render_flow.cpp  


WebSVN link: http://websvn.kde.org/?view=rev&revision=949425
Comment 8 Andreas Marschke 2009-06-20 17:36:51 UTC
qt 4.5 
KDE 4.2.91 
FIXED works fine