Bug 171104

Summary: Konqueror crash on opening tabs
Product: [Applications] konqueror Reporter: Morten Bo Johansen <mbj>
Component: khtmlAssignee: Konqueror Developers <konq-bugs>
Status: RESOLVED DUPLICATE    
Severity: crash CC: finex, frank78ac
Priority: NOR    
Version: 4.1.1   
Target Milestone: ---   
Platform: Debian testing   
OS: Linux   
Latest Commit: Version Fixed In:
Attachments: Valgrind log of Konqueror crash

Description Morten Bo Johansen 2008-09-15 13:17:42 UTC 
Version:            (using KDE 4.1.1)
OS:                Linux
Installed from:    Debian testing/unstable Packages

This is hard to reproduce and thus hard to describe more precisely in the short description, but Konqueror crashed upon opening a page in a new tab. I restored the session but I could not reproduce it. Plugins are disabled whereas java and javascript are enabled. Backtrace follows:

Application: Konqueror (konqueror), signal SIGSEGV
[Thread debugging using libthread_db enabled]
[New Thread 0xb5fbc700 (LWP 4251)]
[New Thread 0xb166fb90 (LWP 4620)]
[KCrash handler]
#6  0xb4181344 in khtml::InlineFlowBox::deleteLine (this=0xadadde8, 
    arena=0x9b40588)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_line.cpp:209
#7  0xb4112a8f in khtml::RenderBlock::determineStartPosition (this=0xfef3ce4, 
    fullLayout=true, start=@0xbfa9445c, bidi=@0xbfa943f8)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/bidi.cpp:1733
#8  0xb4113d0f in khtml::RenderBlock::layoutInlineChildren (this=0xfef3ce4, 
    relayoutChildren=true, breakBeforeLine=0)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/bidi.cpp:1467
#9  0xb411f730 in khtml::RenderBlock::layoutBlock (this=0xfef3ce4, 
    relayoutChildren=true)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:782
#10 0xb411fc09 in khtml::RenderBlock::layout (this=0xfef3ce4)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:685
#11 0xb411f0d3 in khtml::RenderBlock::layoutBlockChildren (this=0x125810c4, 
    relayoutChildren=true)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_object.h:455
#12 0xb411f99c in khtml::RenderBlock::layoutBlock (this=0x125810c4, 
    relayoutChildren=true)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:784
#13 0xb411fc09 in khtml::RenderBlock::layout (this=0x125810c4)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:685
#14 0xb411f0d3 in khtml::RenderBlock::layoutBlockChildren (this=0xc6ae004, 
    relayoutChildren=true)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_object.h:455
#15 0xb411f99c in khtml::RenderBlock::layoutBlock (this=0xc6ae004, 
    relayoutChildren=true)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:784
#16 0xb411fc09 in khtml::RenderBlock::layout (this=0xc6ae004)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:685
#17 0xb411f0d3 in khtml::RenderBlock::layoutBlockChildren (this=0xc6adf80, 
    relayoutChildren=true)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_object.h:455
#18 0xb411f99c in khtml::RenderBlock::layoutBlock (this=0xc6adf80, 
    relayoutChildren=true)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:784
#19 0xb411fc09 in khtml::RenderBlock::layout (this=0xc6adf80)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:685
#20 0xb411daaf in khtml::RenderBlock::insertFloatingObject (this=0xc6ade3c, 
    o=0xc6adf80)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_object.h:455
#21 0xb411dbc7 in khtml::RenderBlock::handleFloatingChild (this=0xc6ade3c, 
    child=0xc6adf80, marginInfo=@0xbfa948b4, handled=@0xbfa948cb)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:947
#22 0xb411dc5a in khtml::RenderBlock::handleSpecialChild (this=0xc6ade3c, 
    child=0xc6adf80, marginInfo=@0xbfa948b4, compactInfo=@0xbfa948a8, 
    handled=@0xbfa948cb)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:920
#23 0xb411ef8b in khtml::RenderBlock::layoutBlockChildren (this=0xc6ade3c, 
    relayoutChildren=true)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:1476
#24 0xb411f99c in khtml::RenderBlock::layoutBlock (this=0xc6ade3c, 
    relayoutChildren=true)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:784
#25 0xb411fc09 in khtml::RenderBlock::layout (this=0xc6ade3c)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:685
#26 0xb411f0d3 in khtml::RenderBlock::layoutBlockChildren (this=0xc6addb8, 
    relayoutChildren=true)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_object.h:455
#27 0xb411f99c in khtml::RenderBlock::layoutBlock (this=0xc6addb8, 
    relayoutChildren=true)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:784
#28 0xb411fc09 in khtml::RenderBlock::layout (this=0xc6addb8)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:685
#29 0xb411416e in khtml::RenderBlock::layoutInlineChildren (this=0xc6add34, 
    relayoutChildren=true, breakBeforeLine=0)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_object.h:455
#30 0xb411f730 in khtml::RenderBlock::layoutBlock (this=0xc6add34, 
    relayoutChildren=true)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:782
#31 0xb411fc09 in khtml::RenderBlock::layout (this=0xc6add34)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:685
#32 0xb411f0d3 in khtml::RenderBlock::layoutBlockChildren (this=0xc6ad5b8, 
    relayoutChildren=true)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_object.h:455
#33 0xb411f99c in khtml::RenderBlock::layoutBlock (this=0xc6ad5b8, 
    relayoutChildren=true)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:784
#34 0xb411fc09 in khtml::RenderBlock::layout (this=0xc6ad5b8)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:685
#35 0xb411f0d3 in khtml::RenderBlock::layoutBlockChildren (this=0xfa1624c, 
    relayoutChildren=true)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_object.h:455
#36 0xb411f99c in khtml::RenderBlock::layoutBlock (this=0xfa1624c, 
    relayoutChildren=true)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:784
#37 0xb411fc09 in khtml::RenderBlock::layout (this=0xfa1624c)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:685
#38 0xb411f0d3 in khtml::RenderBlock::layoutBlockChildren (this=0xfa1609c, 
    relayoutChildren=true)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_object.h:455
#39 0xb411f99c in khtml::RenderBlock::layoutBlock (this=0xfa1609c, 
    relayoutChildren=true)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:784
#40 0xb411fc09 in khtml::RenderBlock::layout (this=0xfa1609c)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:685
#41 0xb417da92 in khtml::RenderBody::layout (this=0xfa1609c)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_body.cpp:96
#42 0xb411f0d3 in khtml::RenderBlock::layoutBlockChildren (this=0xfa15fb4, 
    relayoutChildren=false)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_object.h:455
#43 0xb411f99c in khtml::RenderBlock::layoutBlock (this=0xfa15fb4, 
    relayoutChildren=false)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:784
#44 0xb411fc09 in khtml::RenderBlock::layout (this=0xfa15fb4)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:685
#45 0xb411f0d3 in khtml::RenderBlock::layoutBlockChildren (this=0xfa15e78, 
    relayoutChildren=false)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_object.h:455
#46 0xb411f99c in khtml::RenderBlock::layoutBlock (this=0xfa15e78, 
    relayoutChildren=false)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_block.cpp:784
#47 0xb4178318 in khtml::RenderCanvas::layout (this=0xfa15e78)
    at /tmp/buildd/kde4libs-4.1.1/khtml/rendering/render_canvas.cpp:187
#48 0xb3fd9c7c in KHTMLView::layout (this=0xcf37f90)
    at /tmp/buildd/kde4libs-4.1.1/khtml/khtmlview.cpp:971
#49 0xb3fda347 in KHTMLView::timerEvent (this=0xcf37f90, e=0xbfa958dc)
    at /tmp/buildd/kde4libs-4.1.1/khtml/khtmlview.cpp:4029
#50 0xb68eebaf in QObject::event (this=0xcf37f90, e=0xbfa958dc)
    at kernel/qobject.cpp:1105
#51 0xb6bc3b94 in QWidget::event (this=0xcf37f90, event=0xbfa958dc)
    at kernel/qwidget.cpp:7310
#52 0xb6ef1513 in QFrame::event (this=0xcf37f90, e=0xbfa958dc)
    at widgets/qframe.cpp:657
#53 0xb6f880fd in QAbstractScrollArea::event (this=0xcf37f90, e=0xbfa958dc)
    at widgets/qabstractscrollarea.cpp:897
#54 0xb6f8d19d in QScrollArea::event (this=0xcf37f90, e=0xbfa958dc)
    at widgets/qscrollarea.cpp:297
#55 0xb3fd3b85 in KHTMLView::event (this=0xcf37f90, e=0xbfa958dc)
    at /tmp/buildd/kde4libs-4.1.1/khtml/khtmlview.cpp:526
#56 0xb6b6c66c in QApplicationPrivate::notify_helper (this=0x8ffa140, 
    receiver=0xcf37f90, e=0xbfa958dc) at kernel/qapplication.cpp:3772
#57 0xb6b7450a in QApplication::notify (this=0xbfa95d24, receiver=0xcf37f90, 
    e=0xbfa958dc) at kernel/qapplication.cpp:3739
#58 0xb78c497d in KApplication::notify (this=0xbfa95d24, receiver=0xcf37f90, 
    event=0xbfa958dc)
    at /tmp/buildd/kde4libs-4.1.1/kdeui/kernel/kapplication.cpp:311
#59 0xb68df571 in QCoreApplication::notifyInternal (this=0xbfa95d24, 
    receiver=0xcf37f90, event=0xbfa958dc) at kernel/qcoreapplication.cpp:587
#60 0xb690d5e1 in QTimerInfoList::activateTimers (this=0x8ffd36c)
    at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:215
#61 0xb6909c20 in timerSourceDispatch (source=0x8ffd338)
    at kernel/qeventdispatcher_glib.cpp:166
#62 0xb63072e1 in IA__g_main_context_dispatch (context=0x8ffc880)
    at /tmp/buildd/glib2.0-2.16.5/glib/gmain.c:2012
#63 0xb630a973 in g_main_context_iterate (context=0x8ffc880, block=1, 
    dispatch=1, self=0x8ffa090)
    at /tmp/buildd/glib2.0-2.16.5/glib/gmain.c:2645
#64 0xb630ab31 in IA__g_main_context_iteration (context=0x8ffc880, 
    may_block=1) at /tmp/buildd/glib2.0-2.16.5/glib/gmain.c:2708
#65 0xb6909b78 in QEventDispatcherGlib::processEvents (this=0x8ffa5f8, flags=
      {i = -1079420328}) at kernel/qeventdispatcher_glib.cpp:325
#66 0xb6c05415 in QGuiEventDispatcherGlib::processEvents (this=0x8ffa5f8, 
    flags={i = -1079420280}) at kernel/qguieventdispatcher_glib.cpp:204
#67 0xb68ddc5a in QEventLoop::processEvents (this=0xbfa95b00, flags=
      {i = -1079420216}) at kernel/qeventloop.cpp:149
#68 0xb68dde1a in QEventLoop::exec (this=0xbfa95b00, flags={i = -1079420152})
    at kernel/qeventloop.cpp:200
#69 0xb68e04c5 in QCoreApplication::exec () at kernel/qcoreapplication.cpp:845
#70 0xb6b6c4e7 in QApplication::exec () at kernel/qapplication.cpp:3304
#71 0xb7f635dd in kdemain (argc=2, argv=0xbfa96044)
    at /tmp/buildd/kdebase-4.1.1/apps/konqueror/src/konqmain.cpp:227
#72 0x08048592 in main (argc=182115504, argv=0xfef3ce4)
    at /tmp/buildd/kdebase-4.1.1/obj-i486-linux-gnu/apps/konqueror/src/konqueror_dummy.cpp:3
#0  0xffffe424 in __kernel_vsyscall ()
Comment 1 Morten Bo Johansen 2008-09-15 13:18:49 UTC 
KDE 4:4.1 packages are from Debian's experimental repository
Comment 2 Frank Reininghaus 2008-09-15 21:37:30 UTC 
Thanks for the bug report. If you manage to reproduce this crash and are able to provide step-by-step instructions to crash Konqueror (e.g., go to some URL, click a link, ...), please add them to this report. Judging by the backtrace, this looks like a duplicate of bug 162564, but maybe some other test site is easier to analyse.
Comment 3 Morten Bo Johansen 2008-09-23 14:05:26 UTC 
Here is a page that will reproduce the crash, please try to open this page:

http://derstandard.at/?url=/?id=1220458830719

and the crash occurs. It has nothing to do with tabs btw.

You may want to do this quickly as it is a news article that may be obsoleted soon.
Comment 4 Morten Bo Johansen 2008-09-24 20:27:56 UTC 
Created attachment 27554 [details]
Valgrind log of Konqueror crash

Here is an additional log from valgrind. Hopefully useful.
Comment 5 Frank Reininghaus 2008-09-30 00:17:38 UTC 
Thanks for the update. A few days ago I got a crash with the test URL, but now neither 4.1.1 nor today's trunk crash for me. I had tried to download the page to be able to analyse it, but these derstandard.at pages are hard to get hold of :-(

Crashes on derstadard.at have been reported a few times, see bug 165601. I'm not sure though if those reports are somehow related to this one, the backtraces look different.
Comment 6 FiNeX 2009-01-12 14:00:09 UTC 

*** This bug has been marked as a duplicate of bug 162564 ***