61619 2011-05-27 01:51:38 -0700 [Qt] Webcore crashes consistently on setUpIterator while parsing plaintext presented as html 2011-05-27 02:09:12 -0700 1 1 1 Unclassified WebKit WebCore Misc. 528+ (Nightly build) PC Windows 7 RESOLVED DUPLICATE 55139 P2 Major --- 0 qt webkit-unassigned abecsi ademar kling laszlo.gombos luiz qt oldest_to_newest 411276 0 qt 2011-05-27 01:51:38 -0700 +++ This bug was initially created as a clone of Bug #61514 +++ (Found while trying to repro 61514 on other pages, don't know if it's related) Consistent crash with access violation while parsing simple text presented as html. > Unhandled exception at 0x5940c8ec (msvcr100d.dll) in browser.exe: 0xC0000005: Access violation reading location 0x02aa0054. Repro: 1) Open Qt browser demo (qt-everywhere-opensource-src-4.8.0-tp\demos\browser\debug) 2) In the URL bar, paste "http://coffeetocode.net/qt/qt_crash.html" 3) Hit enter 4) Crash should happen within a second Reduced the repro to the above, but didn't get consistent crashes reducing it further; it seems that there may be a minimum size of the page necessary to trigger the issue while parsing. Crashes with: - Qt 4.8 Tech Preview (http://get.qt.nokia.com/qt/source/qt-everywhere-opensource-src-4.8.0-tp.zip compiled with MSVC2010 on Win7) - Qt 4.7.2 (qt-everywhere-opensource-src-4.7.2.zip compiled with MSVC2010 on Win7) Will attach stack trace momentarily. 411281 1 95146 qt 2011-05-27 01:56:56 -0700 Created attachment 95146 Backtrace for AV crash Same crash location across repeated repros. 411289 2 kling 2011-05-27 02:09:12 -0700 *** This bug has been marked as a duplicate of bug 55139 *** 95146 2011-05-27 01:56:56 -0700 2011-05-27 01:56:56 -0700 Backtrace for AV crash stack.txt text/plain 4074 qt U29ycnkgZm9yIG5vIGxpbmUgbnVtYmVycyAtLSBnb29mZWQgc29tZXRoaW5nIHVwIGluIG15IHN5 bWJvbHM7IEhvcGVmdWxseSAgc3RpbGwgdXNlZnVsIHdpdGhvdXQuIA0KDQogCW1zdmNyMTAwZC5k bGwhY21wRFdPUkQoY29uc3Qgdm9pZCAqIGxocywgY29uc3Qgdm9pZCAqIHJocykgICsgMHgxYyBi eXRlcwlDDQogCW1zdmNyMTAwZC5kbGwhdW5hbGlnbmVkX21lbWNtcChjb25zdCB1bnNpZ25lZCBj aGFyICogYkxIUywgY29uc3QgdW5zaWduZWQgY2hhciAqIGJSSFMsIHVuc2lnbmVkIGludCBzaXop ICArIDB4MWYgYnl0ZXMJQw0KIAltc3ZjcjEwMGQuZGxsIW1lbWNtcChjb25zdCB2b2lkICogbGhz LCBjb25zdCB2b2lkICogcmhzLCB1bnNpZ25lZCBpbnQgc2l6KSAgKyAweDE5YyBieXRlcwlDDQog CVF0V2ViS2l0ZDQuZGxsIVdlYkNvcmU6OnNldFVwSXRlcmF0b3IoKSAgKyAweDc1IGJ5dGVzCUMr Kw0KIAlRdFdlYktpdGQ0LmRsbCFXZWJDb3JlOjpjaGFyYWN0ZXJCcmVha0l0ZXJhdG9yKCkgICsg MHg3NCBieXRlcwlDKysNCiAJUXRXZWJLaXRkNC5kbGwhV2ViQ29yZTo6VGV4dDo6Y3JlYXRlV2l0 aExlbmd0aExpbWl0KCkgICsgMHhlNSBieXRlcwlDKysNCiAJUXRXZWJLaXRkNC5kbGwhV2ViQ29y ZTo6SFRNTFBhcnNlcjo6cGFyc2VUb2tlbigpICArIDB4MjY1IGJ5dGVzCUMrKw0KIAlRdFdlYktp dGQ0LmRsbCFXZWJDb3JlOjpIVE1MVG9rZW5pemVyOjpwcm9jZXNzVG9rZW4oKSAgKyAweDIxOSBi eXRlcwlDKysNCiAJUXRXZWJLaXRkNC5kbGwhV2ViQ29yZTo6SFRNTFRva2VuaXplcjo6ZW5kKCkg ICsgMHg0NSBieXRlcwlDKysNCiAJUXRXZWJLaXRkNC5kbGwhV2ViQ29yZTo6SFRNTFRva2VuaXpl cjo6ZmluaXNoKCkgICsgMHgzNGIgYnl0ZXMJQysrDQogCVF0V2ViS2l0ZDQuZGxsIVdlYkNvcmU6 OkRvY3VtZW50OjpmaW5pc2hQYXJzaW5nKCkgICsgMHgzYSBieXRlcwlDKysNCiAJUXRXZWJLaXRk NC5kbGwhV2ViQ29yZTo6RnJhbWVMb2FkZXI6OmVuZElmTm90TG9hZGluZ01haW5SZXNvdXJjZSgp ICArIDB4ODggYnl0ZXMJQysrDQogCVF0V2ViS2l0ZDQuZGxsIVdlYkNvcmU6OkZyYW1lTG9hZGVy OjplbmQoKSAgKyAweDE5IGJ5dGVzCUMrKw0KIAlRdFdlYktpdGQ0LmRsbCFXZWJDb3JlOjpEb2N1 bWVudExvYWRlcjo6ZmluaXNoZWRMb2FkaW5nKCkgICsgMHg0MCBieXRlcwlDKysNCiAJUXRXZWJL aXRkNC5kbGwhV2ViQ29yZTo6RnJhbWVMb2FkZXI6OmZpbmlzaGVkTG9hZGluZygpICArIDB4NjEg Ynl0ZXMJQysrDQogCVF0V2ViS2l0ZDQuZGxsIVdlYkNvcmU6Ok1haW5SZXNvdXJjZUxvYWRlcjo6 ZGlkRmluaXNoTG9hZGluZygpICArIDB4NWYgYnl0ZXMJQysrDQogCVF0V2ViS2l0ZDQuZGxsIVdl YkNvcmU6OlJlc291cmNlTG9hZGVyOjpkaWRGaW5pc2hMb2FkaW5nKCkgICsgMHgxNCBieXRlcwlD KysNCiAJUXRXZWJLaXRkNC5kbGwhV2ViQ29yZTo6UU5ldHdvcmtSZXBseUhhbmRsZXI6OmZpbmlz aCgpICArIDB4MTMwIGJ5dGVzCUMrKw0KIAlRdFdlYktpdGQ0LmRsbCFXZWJDb3JlOjpRTmV0d29y a1JlcGx5SGFuZGxlcjo6cXRfc3RhdGljX21ldGFjYWxsKCkgICsgMHg3YiBieXRlcwlDKysNCj4J UXRDb3JlZDQuZGxsIVFNZXRhT2JqZWN0OjphY3RpdmF0ZShRT2JqZWN0ICogc2VuZGVyLCBjb25z dCBRTWV0YU9iamVjdCAqIG0sIGludCBsb2NhbF9zaWduYWxfaW5kZXgsIHZvaWQgKiAqIGFyZ3Yp ICBMaW5lIDM1NzQgKyAweDJlIGJ5dGVzCUMrKw0KIAlRdE5ldHdvcmtkNC5kbGwhUU5ldHdvcmtS ZXBseTo6ZmluaXNoZWQoKSAgTGluZSAxNjMgKyAweDEzIGJ5dGVzCUMrKw0KIAlRdE5ldHdvcmtk NC5kbGwhUU5ldHdvcmtSZXBseUltcGxQcml2YXRlOjpmaW5pc2hlZCgpICBMaW5lIDc3NglDKysN CiAJUXROZXR3b3JrZDQuZGxsIVFOZXR3b3JrQWNjZXNzQmFja2VuZDo6ZmluaXNoZWQoKSAgTGlu ZSAzMDgJQysrDQogCVF0TmV0d29ya2Q0LmRsbCFRTmV0d29ya0FjY2Vzc0h0dHBCYWNrZW5kOjpj b3B5RmluaXNoZWQoUUlPRGV2aWNlICogZGV2KSAgTGluZSA5ODIJQysrDQogCVF0TmV0d29ya2Q0 LmRsbCFRTmV0d29ya1JlcGx5SW1wbFByaXZhdGU6OmhhbmRsZU5vdGlmaWNhdGlvbnMoKSAgTGlu ZSA0MjQJQysrDQogCVF0TmV0d29ya2Q0LmRsbCFRTmV0d29ya1JlcGx5SW1wbDo6ZXZlbnQoUUV2 ZW50ICogZSkgIExpbmUgMTAwNglDKysNCiAJUXRHdWlkNC5kbGwhUUFwcGxpY2F0aW9uUHJpdmF0 ZTo6bm90aWZ5X2hlbHBlcihRT2JqZWN0ICogcmVjZWl2ZXIsIFFFdmVudCAqIGUpICBMaW5lIDQ0 OTUgKyAweDExIGJ5dGVzCUMrKw0KIAlRdEd1aWQ0LmRsbCFRQXBwbGljYXRpb246Om5vdGlmeShR T2JqZWN0ICogcmVjZWl2ZXIsIFFFdmVudCAqIGUpICBMaW5lIDM4NzcgKyAweDEwIGJ5dGVzCUMr Kw0KIAlRdENvcmVkNC5kbGwhUUNvcmVBcHBsaWNhdGlvbjo6bm90aWZ5SW50ZXJuYWwoUU9iamVj dCAqIHJlY2VpdmVyLCBRRXZlbnQgKiBldmVudCkgIExpbmUgODMzICsgMHgxNSBieXRlcwlDKysN CiAJUXRDb3JlZDQuZGxsIVFDb3JlQXBwbGljYXRpb246OnNlbmRFdmVudChRT2JqZWN0ICogcmVj ZWl2ZXIsIFFFdmVudCAqIGV2ZW50KSAgTGluZSAyMzEgKyAweDM5IGJ5dGVzCUMrKw0KIAlRdENv cmVkNC5kbGwhUUNvcmVBcHBsaWNhdGlvblByaXZhdGU6OnNlbmRQb3N0ZWRFdmVudHMoUU9iamVj dCAqIHJlY2VpdmVyLCBpbnQgZXZlbnRfdHlwZSwgUVRocmVhZERhdGEgKiBkYXRhKSAgTGluZSAx NDcwICsgMHhkIGJ5dGVzCUMrKw0KIAlRdENvcmVkNC5kbGwhcXRfaW50ZXJuYWxfcHJvYyhIV05E X18gKiBod25kLCB1bnNpZ25lZCBpbnQgbWVzc2FnZSwgdW5zaWduZWQgaW50IHdwLCBsb25nIGxw KSAgTGluZSA0OTkgKyAweDEwIGJ5dGVzCUMrKw0KIAl1c2VyMzIuZGxsITc2Yjk4NmVmKCkgCQ0K IAlbRnJhbWVzIGJlbG93IG1heSBiZSBpbmNvcnJlY3QgYW5kL29yIG1pc3NpbmcsIG5vIHN5bWJv bHMgbG9hZGVkIGZvciB1c2VyMzIuZGxsXQkNCiAJdXNlcjMyLmRsbCE3NmI5ODg3NigpIAkNCiAJ dXNlcjMyLmRsbCE3NmI5ODgxZigpIAkNCiAJdXNlcjMyLmRsbCE3NmI5ODliNSgpIAkNCiAJdXNl cjMyLmRsbCE3NmI5OGU5YygpIAkNCiAJUXRDb3JlZDQuZGxsIVFFdmVudERpc3BhdGNoZXJXaW4z Mjo6cHJvY2Vzc0V2ZW50cyhRRmxhZ3M8ZW51bSBRRXZlbnRMb29wOjpQcm9jZXNzRXZlbnRzRmxh Zz4gZmxhZ3MpICBMaW5lIDgxMglDKysNCiAJUXRHdWlkNC5kbGwhUUd1aUV2ZW50RGlzcGF0Y2hl cldpbjMyOjpwcm9jZXNzRXZlbnRzKFFGbGFnczxlbnVtIFFFdmVudExvb3A6OlByb2Nlc3NFdmVu dHNGbGFnPiBmbGFncykgIExpbmUgMTIxOSArIDB4MTUgYnl0ZXMJQysrDQogCVF0Q29yZWQ0LmRs bCFRRXZlbnRMb29wOjpwcm9jZXNzRXZlbnRzKFFGbGFnczxlbnVtIFFFdmVudExvb3A6OlByb2Nl c3NFdmVudHNGbGFnPiBmbGFncykgIExpbmUgMTUwCUMrKw0KIAlRdENvcmVkNC5kbGwhUUV2ZW50 TG9vcDo6ZXhlYyhRRmxhZ3M8ZW51bSBRRXZlbnRMb29wOjpQcm9jZXNzRXZlbnRzRmxhZz4gZmxh Z3MpICBMaW5lIDIwNCArIDB4MmQgYnl0ZXMJQysrDQogCVF0Q29yZWQ0LmRsbCFRQ29yZUFwcGxp Y2F0aW9uOjpleGVjKCkgIExpbmUgMTEwNSArIDB4MTUgYnl0ZXMJQysrDQogCVF0R3VpZDQuZGxs IVFBcHBsaWNhdGlvbjo6ZXhlYygpICBMaW5lIDM3NTcJQysrDQogCWJyb3dzZXIuZXhlIW1haW4o aW50IGFyZ2MsIGNoYXIgKiAqIGFyZ3YpICBMaW5lIDUxICsgMHg2IGJ5dGVzCUMrKw0KIAlicm93 c2VyLmV4ZSFXaW5NYWluKEhJTlNUQU5DRV9fICogaW5zdGFuY2UsIEhJTlNUQU5DRV9fICogcHJl dkluc3RhbmNlLCBjaGFyICogX19mb3JtYWwsIGludCBjbWRTaG93KSAgTGluZSAxMzEgKyAweDEy IGJ5dGVzCUMrKw0KIAlicm93c2VyLmV4ZSFfX3RtYWluQ1JUU3RhcnR1cCgpICBMaW5lIDU0NyAr IDB4MmMgYnl0ZXMJQw0KIAlicm93c2VyLmV4ZSFXaW5NYWluQ1JUU3RhcnR1cCgpICBMaW5lIDM3 MQlDDQogCWtlcm5lbDMyLmRsbCE3NzI0MTE5NCgpIAkNCiAJbnRkbGwuZGxsITc3OWZiNDI5KCkg CQ0KIAludGRsbC5kbGwhNzc5ZmIzZmMoKSAJ