Bug 153662

Summary: khtml aborts on loading http://de.wikipedia.org/wiki/Personalauswei
Product: [Applications] konqueror Reporter: Christian Weilbach <christian_weilbach>
Component: khtml parsingAssignee: Konqueror Developers <konq-bugs>
Status: RESOLVED DUPLICATE    
Severity: crash    
Priority: NOR    
Version: unspecified   
Target Milestone: ---   
Platform: Compiled Sources   
OS: Linux   
Latest Commit: Version Fixed In:
Sentry Crash Report:

Description Christian Weilbach 2007-12-08 04:23:25 UTC 
Version:            (using KDE Devel)
Installed from:    Compiled sources
OS:                Linux

Using host libthread_db library "/lib/i686/cmov/libthread_db.so.1".
[Thread debugging using libthread_db enabled]
[New Thread 0xb63b46c0 (LWP 6037)]
[KCrash handler]
#6  0xffffe410 in __kernel_vsyscall ()
#7  0xb6761eb5 in raise () from /lib/i686/cmov/libc.so.6
#8  0xb6763831 in abort () from /lib/i686/cmov/libc.so.6
#9  0xb721f5c5 in qt_message_output () from /usr/lib/libQtCore.so.4
#10 0xb721f679 in qFatal () from /usr/lib/libQtCore.so.4
#11 0xb721f805 in qt_assert () from /usr/lib/libQtCore.so.4
#12 0xb38e00ae in QString::operator[] (this=0xbf8c2738, i=62)
    at /usr/include/qt4/QtCore/qstring.h:640
#13 0xb39b3f2b in parseDocTypePart (buffer=@0xbf8c2738, index=62)
    at /home/christian/kde/src/KDE/kdelibs/khtml/html/html_documentimpl.cpp:280
#14 0xb39b44ad in parseDocTypeDeclaration (buffer=@0xbf8c2738, 
    resultFlags=0xbf8c2678, publicID=@0xbf8c267c, systemID=@0xbf8c2680)
    at /home/christian/kde/src/KDE/kdelibs/khtml/html/html_documentimpl.cpp:363
#15 0xb39b5fc1 in DOM::HTMLDocumentImpl::determineParseMode (this=0x86417b0, 
    str=@0xbf8c2738)
    at /home/christian/kde/src/KDE/kdelibs/khtml/html/html_documentimpl.cpp:437
#16 0xb3901db7 in KHTMLPart::onFirstData (this=0x82bef90, 
    firstData=@0xbf8c2738)
    at /home/christian/kde/src/KDE/kdelibs/khtml/khtml_part.cpp:1989
#17 0xb3901faa in KHTMLPart::write (this=0x82bef90, 
    data=0x855b6c0 "<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\"", len=62) at /home/christian/kde/src/KDE/kdelibs/khtml/khtml_part.cpp:1947
#18 0xb390454d in KHTMLPart::slotData (this=0x82bef90, kio_job=0x8699920, 
    data=@0xbf8c3494)
    at /home/christian/kde/src/KDE/kdelibs/khtml/khtml_part.cpp:1636
#19 0xb390e577 in KHTMLPart::qt_metacall (this=0x82bef90, 
    _c=QMetaObject::InvokeMetaMethod, _id=19, _a=0xbf8c2dd8)
    at /home/christian/kde/build/KDE/kdelibs/khtml/khtml_part.moc:257
#20 0xb72edaca in QMetaObject::activate () from /usr/lib/libQtCore.so.4
#21 0xb72ee682 in QMetaObject::activate () from /usr/lib/libQtCore.so.4
#22 0xb7c46d11 in KIO::TransferJob::data (this=0x8699920, _t1=0x8699920, 
    _t2=@0xbf8c3494)
    at /home/christian/kde/build/KDE/kdelibs/kio/jobclasses.moc:355
#23 0xb7c47699 in KIO::TransferJob::slotData (this=0x8699920, 
    _data=@0xbf8c3494)
    at /home/christian/kde/src/KDE/kdelibs/kio/kio/job.cpp:921
#24 0xb7c522e8 in KIO::TransferJob::qt_metacall (this=0x8699920, 
    _c=QMetaObject::InvokeMetaMethod, _id=8, _a=0xbf8c332c)
    at /home/christian/kde/build/KDE/kdelibs/kio/jobclasses.moc:336
#25 0xb72edaca in QMetaObject::activate () from /usr/lib/libQtCore.so.4
#26 0xb72ee682 in QMetaObject::activate () from /usr/lib/libQtCore.so.4
#27 0xb7cf4b2a in KIO::SlaveInterface::data (this=0x8572368, _t1=@0xbf8c3494)
    at /home/christian/kde/build/KDE/kdelibs/kio/slaveinterface.moc:137
#28 0xb7cf683f in KIO::SlaveInterface::dispatch (this=0x8572368, _cmd=100, 
    rawdata=@0xbf8c3494)
    at /home/christian/kde/src/KDE/kdelibs/kio/kio/slaveinterface.cpp:161
#29 0xb7cf677d in KIO::SlaveInterface::dispatch (this=0x8572368)
    at /home/christian/kde/src/KDE/kdelibs/kio/kio/slaveinterface.cpp:88
#30 0xb7ce9920 in KIO::Slave::gotInput (this=0x8572368)
    at /home/christian/kde/src/KDE/kdelibs/kio/kio/slave.cpp:318
#31 0xb7cead68 in KIO::Slave::qt_metacall (this=0x8572368, 
    _c=QMetaObject::InvokeMetaMethod, _id=2, _a=0xbf8c39b8)
    at /home/christian/kde/build/KDE/kdelibs/kio/slave.moc:74
#32 0xb72edaca in QMetaObject::activate () from /usr/lib/libQtCore.so.4
#33 0xb72ee682 in QMetaObject::activate () from /usr/lib/libQtCore.so.4
#34 0xb7c216f3 in KIO::Connection::readyRead (this=0x856d628)
    at /home/christian/kde/build/KDE/kdelibs/kio/connection.moc:83
#35 0xb7c2261f in KIO::ConnectionPrivate::dequeue (this=0x8560eb8)
    at /home/christian/kde/src/KDE/kdelibs/kio/kio/connection.cpp:82
#36 0xb7c23559 in KIO::Connection::qt_metacall (this=0x856d628, 
    _c=QMetaObject::InvokeMetaMethod, _id=1, _a=0x877b4f0)
    at /home/christian/kde/build/KDE/kdelibs/kio/connection.moc:71
#37 0xb72e76ab in QMetaCallEvent::placeMetaCall () from /usr/lib/libQtCore.so.4
#38 0xb72ec7b3 in QObject::event () from /usr/lib/libQtCore.so.4
#39 0xb6b3561d in QApplicationPrivate::notify_helper ()
   from /usr/lib/libQtGui.so.4
#40 0xb6b39057 in QApplication::notify () from /usr/lib/libQtGui.so.4
#41 0xb785ca0f in KApplication::notify (this=0xbf8c4218, receiver=0x856d628, 
    event=0x84b8d78)
    at /home/christian/kde/src/KDE/kdelibs/kdeui/kernel/kapplication.cpp:319
#42 0xb72dac5b in QCoreApplication::notifyInternal ()
   from /usr/lib/libQtCore.so.4
#43 0xb72dc43e in QCoreApplicationPrivate::sendPostedEvents ()
   from /usr/lib/libQtCore.so.4
#44 0xb72dc72d in QCoreApplication::sendPostedEvents ()
   from /usr/lib/libQtCore.so.4
#45 0xb72fea2b in ?? () from /usr/lib/libQtCore.so.4
#46 0x00000000 in ?? ()
#0  0xffffe410 in __kernel_vsyscall ()

Revision: 745359
Comment 1 Maksim Orlovich 2007-12-08 20:37:51 UTC 
Yikes, the dtd parsing can just walk outside the string willy-nilly.
Doesn't really trigger on that URL any more, though.
Comment 2 Christian Weilbach 2007-12-09 20:25:03 UTC 
This bug is reproducable (Revision: 745287 (kdelibs/khtml)):
First open http://en.wikipedia.org/wiki/Personalausweis
then click on "Deutsch" to open http://de.wikipedia.org/wiki/Personalausweis
Comment 3 Christian Weilbach 2007-12-09 22:57:10 UTC 
Still the same at: Rev: 746664
Comment 4 Maksim Orlovich 2007-12-11 09:03:25 UTC 

*** This bug has been marked as a duplicate of 153827 ***