From kde-bugs-dist Tue Jun 29 07:52:48 2004 From: Jean-Michel Fayard Date: Tue, 29 Jun 2004 07:52:48 +0000 To: kde-bugs-dist Subject: [Bug 84202] New: DOM: TreeWalker make Konqueror 3.2.x crash Message-Id: <20040629075248.3260.qmail () ktown ! kde ! org> X-MARC-Message: https://marc.info/?l=kde-bugs-dist&m=108849557711806 ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is. http://bugs.kde.org/show_bug.cgi?id=84202 Summary: DOM: TreeWalker make Konqueror 3.2.x crash Product: konqueror Version: unspecified Platform: Mandrake RPMs OS/Version: Linux Status: UNCONFIRMED Severity: crash Priority: NOR Component: kjs AssignedTo: konq-bugs kde org ReportedBy: jmfayard gmail com Version: (using KDE KDE 3.2.1) Installed from: Mandrake RPMs OS: Linux Description : TreeWalker is an optional part of the DOM version 2.0. It's described at the W3C website here http://www.w3.org/TR/DOM-Level-2-Traversal-Range/traversal.html Live demo : http://mat.virgule.info/temp/crash.html It crashs reliably for various version from Konqueror 3.2.x (at least 3.2.0, 3.2.1 and 3.2.2) from various linux distributions It has been reported not to crash for older versions (KDE 3.0.5 Slackware 8.1, Konqueror 3.1.4 mandrake 9.1+texstar) Source of the javascript : function crashkonqueror() { var treeWalker = document.createTreeWalker(document.documentElement, NodeFilter.SHOW_ELEMENT, null, true); if (treeWalker) treeWalker.nextNode(); } Backtrace : Using host libthread_db library "/lib/libthread_db.so.1". [Thread debugging using libthread_db enabled] [New Thread 16384 (LWP 26730)] 0x413fab79 in __wait4 () from /lib/libc.so.6 #0 0x413fab79 in __wait4 () from /lib/libc.so.6 #1 0x413fab08 in __libc_waitpid (pid=-512, stat_loc=0x0, options=-512) at ../sysdeps/unix/sysv/linux/waitpid.c:26 #2 0x411facd3 in waitpid (pid=-512, stat_loc=0xfffffe00, options=-512) at wrapsyscall.c:181 #3 0x407849e0 in KCrash::defaultCrashHandler () from /usr/local/kde/lib/libkdecore.so.4 #4 #5 0x41bc1dad in DOM::TreeWalkerImpl::getNextSibling () from /usr/local/kde/lib/libkhtml.so.4 #6 0x41bc1a8f in DOM::TreeWalkerImpl::nextNode () from /usr/local/kde/lib/libkhtml.so.4 #7 0x41d2c08b in DOM::TreeWalker::nextNode () from /usr/local/kde/lib/libkhtml.so.4 #8 0x41cd6777 in KJS::DOMTreeWalkerProtoFunc::tryCall () from /usr/local/kde/lib/libkhtml.so.4 #9 0x41c7fe03 in KJS::DOMFunction::call () from /usr/local/kde/lib/libkhtml.so.4 #10 0x41df4ce0 in KJS::Object::call () from /usr/local/kde/lib/libkjs.so.1 #11 0x41dc7609 in KJS::FunctionCallNode::evaluate () from /usr/local/kde/lib/libkjs.so.1 #12 0x41dcbb8a in KJS::ExprStatementNode::execute () from /usr/local/kde/lib/libkjs.so.1 #13 0x41dcbf2e in KJS::IfNode::execute () from /usr/local/kde/lib/libkjs.so.1 #14 0x41dd23cc in KJS::SourceElementsNode::execute () from /usr/local/kde/lib/libkjs.so.1 #15 0x41dcb99f in KJS::BlockNode::execute () from /usr/local/kde/lib/libkjs.so.1 #16 0x41dd18e3 in KJS::FunctionBodyNode::execute () from /usr/local/kde/lib/libkjs.so.1 #17 0x41df017c in KJS::DeclaredFunctionImp::execute () from /usr/local/kde/lib/libkjs.so.1 #18 0x41def593 in KJS::FunctionImp::call () from /usr/local/kde/lib/libkjs.so.1 #19 0x41df4ce0 in KJS::Object::call () from /usr/local/kde/lib/libkjs.so.1 #20 0x41dc7609 in KJS::FunctionCallNode::evaluate () from /usr/local/kde/lib/libkjs.so.1 #21 0x41dcbb8a in KJS::ExprStatementNode::execute () from /usr/local/kde/lib/libkjs.so.1 #22 0x41dd2353 in KJS::SourceElementsNode::execute () from /usr/local/kde/lib/libkjs.so.1 #23 0x41dcb99f in KJS::BlockNode::execute () from /usr/local/kde/lib/libkjs.so.1 #24 0x41dd18e3 in KJS::FunctionBodyNode::execute () from /usr/local/kde/lib/libkjs.so.1 #25 0x41df017c in KJS::DeclaredFunctionImp::execute () from /usr/local/kde/lib/libkjs.so.1 #26 0x41def593 in KJS::FunctionImp::call () from /usr/local/kde/lib/libkjs.so.1 #27 0x41df4ce0 in KJS::Object::call () from /usr/local/kde/lib/libkjs.so.1 #28 0x41cd749e in KJS::JSEventListener::handleEvent () from /usr/local/kde/lib/libkhtml.so.4 #29 0x41bb2223 in DOM::DocumentImpl::defaultEventHandler () from /usr/local/kde/lib/libkhtml.so.4 #30 0x41bb4f23 in DOM::NodeImpl::dispatchWindowEvent () from /usr/local/kde/lib/libkhtml.so.4 #31 0x41bdd9c1 in DOM::HTMLDocumentImpl::close () from /usr/local/kde/lib/libkhtml.so.4 #32 0x41b793cc in KHTMLPart::checkEmitLoadEvent () from /usr/local/kde/lib/libkhtml.so.4 #33 0x41b7825f in KHTMLPart::slotFinishedParsing () from /usr/local/kde/lib/libkhtml.so.4 #34 0x41b92a0b in KHTMLPart::qt_invoke () from /usr/local/kde/lib/libkhtml.so.4 #35 0x40b5da00 in QObject::activate_signal () from /usr/local/kde/lib/libqt-mt.so.3 #36 0x40b5d834 in QObject::activate_signal () from /usr/local/kde/lib/libqt-mt.so.3 #37 0x41bb2efb in DOM::DocumentImpl::finishedParsing () from /usr/local/kde/lib/libkhtml.so.4 #38 0x41bb2fa8 in DOM::DocumentImpl::qt_emit () from /usr/local/kde/lib/libkhtml.so.4 #39 0x41bde89d in DOM::HTMLDocumentImpl::qt_emit () from /usr/local/kde/lib/libkhtml.so.4 #40 0x40b5da35 in QObject::activate_signal () from /usr/local/kde/lib/libqt-mt.so.3 #41 0x40b5d834 in QObject::activate_signal () from /usr/local/kde/lib/libqt-mt.so.3 #42 0x41bc4cbb in khtml::Tokenizer::finishedParsing () from /usr/local/kde/lib/libkhtml.so.4 #43 0x41bd4860 in khtml::HTMLTokenizer::end () from /usr/local/kde/lib/libkhtml.so.4 #44 0x41bd4163 in khtml::HTMLTokenizer::write () from /usr/local/kde/lib/libkhtml.so.4 #45 0x41bd554d in khtml::HTMLTokenizer::notifyFinished () from /usr/local/kde/lib/libkhtml.so.4 #46 0x41c75613 in khtml::CachedScript::checkNotify () from /usr/local/kde/lib/libkhtml.so.4 #47 0x41c7555f in khtml::CachedScript::data () from /usr/local/kde/lib/libkhtml.so.4 #48 0x41c79340 in khtml::Loader::slotFinished () from /usr/local/kde/lib/libkhtml.so.4 #49 0x41c7b8a8 in khtml::Loader::qt_invoke () from /usr/local/kde/lib/libkhtml.so.4 #50 0x40b5da00 in QObject::activate_signal () from /usr/local/kde/lib/libqt-mt.so.3 #51 0x40198132 in KIO::Job::result () from /usr/local/kde/lib/libkio.so.4 #52 0x4017f8ba in KIO::Job::emitResult () from /usr/local/kde/lib/libkio.so.4 #53 0x401812fe in KIO::SimpleJob::slotFinished () from /usr/local/kde/lib/libkio.so.4 #54 0x4018461e in KIO::TransferJob::slotFinished () from /usr/local/kde/lib/libkio.so.4 #55 0x4019993d in KIO::TransferJob::qt_invoke () from /usr/local/kde/lib/libkio.so.4 #56 0x40b5da00 in QObject::activate_signal () from /usr/local/kde/lib/libqt-mt.so.3 #57 0x40b5d834 in QObject::activate_signal () from /usr/local/kde/lib/libqt-mt.so.3 #58 0x40174d2e in KIO::SlaveInterface::finished () from /usr/local/kde/lib/libkio.so.4 #59 0x401721c4 in KIO::SlaveInterface::dispatch () from /usr/local/kde/lib/libkio.so.4 #60 0x40171490 in KIO::SlaveInterface::dispatch () from /usr/local/kde/lib/libkio.so.4 #61 0x4016e3d5 in KIO::Slave::gotInput () from /usr/local/kde/lib/libkio.so.4 #62 0x40170bb0 in KIO::Slave::qt_invoke () from /usr/local/kde/lib/libkio.so.4 #63 0x40b5da00 in QObject::activate_signal () from /usr/local/kde/lib/libqt-mt.so.3 #64 0x40b5db60 in QObject::activate_signal () from /usr/local/kde/lib/libqt-mt.so.3 #65 0x40e77692 in QSocketNotifier::activated () from /usr/local/kde/lib/libqt-mt.so.3 #66 0x40b79e20 in QSocketNotifier::event () from /usr/local/kde/lib/libqt-mt.so.3 #67 0x40b028c5 in QApplication::internalNotify () from /usr/local/kde/lib/libqt-mt.so.3 #68 0x40b01f7b in QApplication::notify () from /usr/local/kde/lib/libqt-mt.so.3 #69 0x406f315c in KApplication::notify () from /usr/local/kde/lib/libkdecore.so.4 #70 0x40af2518 in QEventLoop::activateSocketNotifiers () from /usr/local/kde/lib/libqt-mt.so.3 #71 0x40aadf7c in QEventLoop::processEvents () from /usr/local/kde/lib/libqt-mt.so.3 #72 0x40b15b86 in QEventLoop::enterLoop () from /usr/local/kde/lib/libqt-mt.so.3 #73 0x40b15a28 in QEventLoop::exec () from /usr/local/kde/lib/libqt-mt.so.3 #74 0x40b02b11 in QApplication::exec () from /usr/local/kde/lib/libqt-mt.so.3 #75 0x415bb4f6 in kdemain () from /usr/local/kde/lib/libkdeinit_konqueror.so #76 0x4125c8d6 in kdeinitmain () from /usr/local/kde/lib/kde3/konqueror.so #77 0x0804d013 in launch () #78 0x0804e0d1 in handle_launcher_request () #79 0x0804e63a in handle_requests ()