109597 – Crash on closing konqueror with http://www.sonyclassics.com/savingface/ loaded

Bug 109597 - Crash on closing konqueror with http://www.sonyclassics.com/savingface/ loaded

Summary: Crash on closing konqueror with http://www.sonyclassics.com/savingface/ loaded

Status:	RESOLVED DUPLICATE of bug 86671

Alias:	None

Product:	konqueror
Classification:	Applications
Component:	general (show other bugs)
Version:	3.4.1
Platform:	unspecified Linux

Importance:	NOR crash
Target Milestone:	---
Assignee:	Konqueror Developers

URL:
Keywords:

Depends on:
Blocks:

Reported:	2005-07-25 16:09 UTC by Henk Poley
Modified:	2005-07-26 08:44 UTC (History)
CC List:	0 users

See Also:
Latest Commit:
Version Fixed In:

Attachments
Valgrind log of konqueror / kaffeine crash (25.83 KB, application/x-bzip2) 2005-07-25 19:07 UTC, Henk Poley	Details
Valgrind trace with --num-callers=50 (27.30 KB, application/x-bzip2) 2005-07-25 21:04 UTC, Henk Poley	Details
Show Obsolete (1) View All Add an attachment

Note You need to log in before you can comment on or make changes to this bug.

Description Henk Poley 2005-07-25 16:09:01 UTC

Version:           3.4.1 (using KDE 3.4.1, Gentoo)
Compiler:          gcc version 3.3.5-20050130 (Gentoo Linux 3.3.5.20050130-r1, ssp-3.3.5.20050130-1, pie-8.7.7.1)
OS:                Linux (i686) release 2.6.11-gentoo-r11

Steps to reproduce:
1. Go to http://www.sonyclassics.com/savingface/
2. Open the 'View Trailer' link
3. Close both windows, in any order.
4. Crash

This might be related to the Kaffeine, as that is the mediaplayer I use. I'll also supply a less usefull backtrace (almost no debug symbols) from KDE 3.3.2 on Debian in a moment.

Window closing order does not seem to affect the backtrace (other than the LWP numbers being different, as expected).

The backtrace:

Using host libthread_db library "/lib/libthread_db.so.1".
`system-supplied DSO at 0xffffe000' has disappeared; keeping its symbols.
[Thread debugging using libthread_db enabled]
[New Thread 16384 (LWP 19424)]
[New Thread 32769 (LWP 19502)]
[KCrash handler]
#6  *__GI___pthread_mutex_lock (mutex=0x3a) at mutex.c:102
#7  0xb6cf2134 in _XLockMutex (lip=0x8078b6c) at locking.c:95
#8  0xb6ce2e55 in XrmDestroyDatabase (db=0x8078b60) at Xrm.c:2648
#9  0xb6cd13ff in _XFreeDisplayStructure (dpy=0x80548c0) at OpenDis.c:772
#10 0xb6cc2b5b in XCloseDisplay (dpy=0x80548c0) at ClDisplay.c:71
#11 0xb70da645 in qt_cleanup () from /usr/qt/3/lib/libqt-mt.so.3
#12 0xb7145713 in QApplication::~QApplication ()
   from /usr/qt/3/lib/libqt-mt.so.3
#13 0xb779fd61 in ~KApplication (this=0xbffff21c) at qstring.h:848
#14 0xb7f7c3dc in kdemain (argc=1, argv=0xbffff344) at konq_main.cc:57
#15 0xb6a4056d in __libc_start_main (main=0x8048744 <main>, argc=134712172, 
    ubp_av=0xbffff344, init=0x8048780 <__libc_csu_init>, 
    fini=0xb8000c80 <_rtld_local_ro>, rtld_fini=0x80548c0, 
    stack_end=0xbffff33c) at libc-start.c:240
#16 0x080486a1 in _start () at start.S:119

Comment 1 Henk Poley 2005-07-25 16:31:26 UTC

KDE Version
3.3.2 (KDE 3.3.2, (testing/unstable))

Application
Web Browser/File Manager

Operating System
Linux (i686) release 2.6.12.3

Compiler
gcc version 3.3.6 (Debian 1:3.3.6-7)


The backtrace:

(no debugging symbols found)
Using host libthread_db library "/lib/tls/libthread_db.so.1".
(no debugging symbols found)
`system-supplied DSO at 0xffffe000' has disappeared; keeping its symbols.
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
[Thread debugging using libthread_db enabled]
[New Thread -1231001568 (LWP 18650)]
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
[KCrash handler]
#3  0xb6a2e7f1 in pthread_mutex_lock () from /lib/tls/libpthread.so.0
#4  0xb7d6b1af in pthread_mutex_lock () from /lib/tls/libc.so.6
#5  0xb6fce59e in _XUnregisterFilter () from /usr/X11R6/lib/libX11.so.6
#6  0xb6fbaf61 in XrmDestroyDatabase () from /usr/X11R6/lib/libX11.so.6
#7  0xb6fa2fa2 in _XFreeDisplayStructure () from /usr/X11R6/lib/libX11.so.6
#8  0xb6f90647 in XCloseDisplay () from /usr/X11R6/lib/libX11.so.6
#9  0xb71f14ab in qt_cleanup () from /usr/lib/libqt-mt.so.3
#10 0xb725cc98 in QApplication::~QApplication () from /usr/lib/libqt-mt.so.3
#11 0xb77e2579 in KApplication::~KApplication () from /usr/lib/libkdecore.so.4
#12 0xb690cede in kdemain () from /usr/lib/libkdeinit_konqueror.so
#13 0xb7eef896 in kdeinitmain () from /usr/lib/kde3/konqueror.so
#14 0x0804cc10 in ?? ()
#15 0x00000002 in ?? ()
#16 0x08072378 in ?? ()
#17 0x00000001 in ?? ()
#18 0x00000000 in ?? ()
#19 0x00000000 in ?? ()
#20 0x0000007b in ?? ()
#21 0x00001f80 in ?? ()
#22 0x00000000 in ?? ()
#23 0x00000000 in ?? ()
#24 0x00000000 in ?? ()
#25 0x01000000 in ?? ()
#26 0x00000000 in ?? ()
#27 0x00000000 in ?? ()
#28 0x00000000 in ?? ()
#29 0x00000000 in ?? ()
#30 0x00000000 in ?? ()
#31 0x00000000 in ?? ()
#32 0x00000000 in ?? ()
#33 0x00000000 in ?? ()
#34 0x00000000 in ?? ()
#35 0x00000000 in ?? ()
#36 0x00000000 in ?? ()
#37 0x00000000 in ?? ()
#38 0x00000000 in ?? ()
#39 0x08072be0 in ?? ()
#40 0x00000000 in ?? ()
#41 0x00000000 in ?? ()
#42 0x00000000 in ?? ()
#43 0x00000000 in ?? ()
#44 0x00000000 in ?? ()
#45 0x00000000 in ?? ()
#46 0x00000000 in ?? ()
#47 0xb7704c40 in vtable for QGArray () from /usr/lib/libqt-mt.so.3
#48 0x00000000 in ?? ()
#49 0x00000000 in ?? ()
#50 0x00000000 in ?? ()
#51 0xb7cf9844 in mallopt () from /lib/tls/libc.so.6
#52 0x0804e11b in ?? ()
#53 0x00000002 in ?? ()
#54 0x080720d4 in ?? ()
#55 0x080720e7 in ?? ()
#56 0x00000000 in ?? ()
#57 0x00000001 in ?? ()
#58 0x080720f8 in ?? ()
#59 0x00000000 in ?? ()
#60 0x00000000 in ?? ()
#61 0x00000000 in ?? ()
#62 0x080720fc in ?? ()
#63 0x00000000 in ?? ()
#64 0x00000000 in ?? ()
#65 0x00000000 in ?? ()
#66 0x080720fc in ?? ()
#67 0x00000000 in ?? ()
#68 0x00000000 in ?? ()
#69 0x080720eb in ?? ()
#70 0x00000001 in ?? ()
#71 0x00000000 in ?? ()
#72 0x080720de in ?? ()
#73 0x080720d4 in ?? ()
#74 0x00000002 in ?? ()
#75 0x080720d0 in ?? ()
#76 0x000048d9 in ?? ()
#77 0x00000004 in ?? ()
#78 0x00000004 in ?? ()
#79 0x0000000a in ?? ()
#80 0x0000005c in ?? ()
#81 0x080513d8 in vtable for QCString ()
#82 0x0805a3d8 in ?? ()
#83 0x00000000 in ?? ()
#84 0x00000000 in ?? ()
#85 0x080513d8 in vtable for QCString ()
#86 0x0805a3b8 in ?? ()
#87 0x00000000 in ?? ()
#88 0x00000000 in ?? ()
#89 0x00000000 in ?? ()
#90 0x0077b858 in ?? ()
#91 0x80cd0000 in ?? ()
#92 0x00000001 in ?? ()
#93 0xbfd0a170 in ?? ()
#94 0x00001400 in ?? ()
#95 0xbfd0a288 in ?? ()
#96 0x0804e63e in ?? ()
#97 0x00000008 in ?? ()
#98 0xbfd0a1f0 in ?? ()
#99 0xbfd0a170 in ?? ()
#100 0xbfd0a0f0 in ?? ()
#101 0x00000000 in ?? ()
#102 0xbfd0a090 in ?? ()
#103 0xbfd09ff8 in ?? ()
#104 0xb7e79b73 in operator delete () from /usr/lib/libstdc++.so.5

Comment 2 Henk Poley 2005-07-25 19:07:15 UTC

Created attachment 11921 [details]
Valgrind log of konqueror / kaffeine crash

After some further searches I found that this error has been reported several
times already, and is supposedly a Kaffeine bug.

Comment 1 in Bug 99586 seems to suggest that this might be a problem with
Konqueror making pointer errors. So I put it through valgrind (log is
attached).

The endless repeating output from thread 7719 is probably the Xine thread
writing to the screen. When that appeared I hit the X button. Konqueror ran
until the first frames of the video appeared on the screen, and then exited. My
system is still recompiling itself with -ggdb3, so the interesting part within
Xine/Kaffeine might be the part that says "by 0x1DECF6BF: ???"..

I had to kill valgrind at the end, it didn't exit by itself (waited a long
time) :-/

Output from the commandline follows.:

henk@MFL ~ $ valgrind --error-limit=no --log-file=KonquerorKaffeinePlugin.log
konqueror http://www.sonyclassics.com/savingface/trailer300k.html
External func OLEAUT32.dll:8
DMO dll supports VO Optimizations 0 1
DMO dll might use previous sample when requested
GetOutput r=0x0   size:230400  align:1
StreamCount r=0x0  1  1
Decoder supports the following YUV formats: YV12 YUY2 UYVY YVYU   ▒
Decoder is capable of YUV output (flags 0x1b)
Total Unfree 60 bytes cnt 1 [(nil),0]
Killed

Comment 3 Henk Poley 2005-07-25 21:04:41 UTC

Created attachment 11923 [details]
Valgrind trace with  --num-callers=50

A suggestion from dfaur at #khtml on irc.debian.org. Now I should go and push
the kaffeine devs to look the relevant backtraces littered over this bugzilla.

Command line output:

henk@MFL ~ $ valgrind --error-limit=no --num-callers=50
--log-file=KonquerorKaffeinePlugin.log konqueror
http://www.sonyclassics.com/savingface/trailer300k.html
External func OLEAUT32.dll:8
DMO dll supports VO Optimizations 0 1
DMO dll might use previous sample when requested
GetOutput r=0x0   size:230400  align:1
StreamCount r=0x0  1  1
Decoder supports the following YUV formats: YV12 YUY2 UYVY YVYU   ▒
Decoder is capable of YUV output (flags 0x1b)
Killed

Comment 4 Tommi Tervo 2005-07-26 08:44:43 UTC


*** This bug has been marked as a duplicate of 86671 ***