Bug 223723

Summary: konqueror crashes while running a video embedded by facebook
Product: [Applications] konqueror Reporter: Pol <xtekhne>
Component: generalAssignee: Konqueror Developers <konq-bugs>
Status: RESOLVED FIXED    
Severity: crash    
Priority: NOR    
Version: unspecified   
Target Milestone: ---   
Platform: Ubuntu   
OS: Linux   
Latest Commit: Version Fixed In:
Sentry Crash Report:

Description Pol 2010-01-21 23:43:21 UTC 
Application: konqueror (4.3.90 (KDE 4.3.90 (KDE 4.4 RC1)))
KDE Platform Version: 4.3.90 (KDE 4.3.90 (KDE 4.4 RC1))
Qt Version: 4.6.0
Operating System: Linux 2.6.31-17-generic i686
Distribution: Ubuntu 9.10

-- Information about the crash:
konqueror crashes while running a video embedded by facebook

 -- Backtrace:
Application: Konqueror (konqueror), signal: Aborted
[Current thread is 1 (Thread 0xb777c700 (LWP 7008))]

Thread 2 (Thread 0xb6260b70 (LWP 7013)):
#0  0x0049b422 in __kernel_vsyscall ()
#1  0x00680bd3 in __lll_lock_wait_private () at ../nptl/sysdeps/unix/sysv/linux/i386/i686/../i486/lowlevellock.S:95
#2  0x00617f57 in _L_lock_9510 () from /lib/tls/i686/cmov/libc.so.6
#3  0x006167c6 in *__GI___libc_free (mem=0x9fd24a8) at malloc.c:3714
#4  0x0569a196 in g_free () from /lib/libglib-2.0.so.0
#5  0x05691871 in ?? () from /lib/libglib-2.0.so.0
#6  0x06a676fa in ~QEventDispatcherGlib (this=0x9fd6158, __in_chrg=<value optimized out>) at kernel/qeventdispatcher_glib.cpp:361
#7  0x06938f1a in QThreadPrivate::finish (arg=0x6b508b0) at thread/qthread_unix.cpp:280
#8  0x069393b6 in ~__pthread_cleanup_class (arg=0x6b508b0) at /usr/include/pthread.h:535
#9  QThreadPrivate::start (arg=0x6b508b0) at thread/qthread_unix.cpp:249
#10 0x0045680e in start_thread (arg=0xb6260b70) at pthread_create.c:300
#11 0x006738de in clone () at ../sysdeps/unix/sysv/linux/i386/clone.S:130

Thread 1 (Thread 0xb777c700 (LWP 7008)):
[KCrash Handler]
#6  0x0049b422 in __kernel_vsyscall ()
#7  0x005d14d1 in *__GI_raise (sig=6) at ../nptl/sysdeps/unix/sysv/linux/raise.c:64
#8  0x005d4932 in *__GI_abort () at abort.c:92
#9  0x00607ee5 in __libc_message (do_abort=2, fmt=0x6cb578 "*** glibc detected *** %s: %s: 0x%s ***\n") at ../sysdeps/unix/sysv/linux/libc_fatal.c:189
#10 0x00611ff1 in malloc_printerr (action=<value optimized out>, str=0x6 <Address 0x6 out of bounds>, ptr=0xb43a0300) at malloc.c:6217
#11 0x006136f2 in _int_free (av=<value optimized out>, p=<value optimized out>) at malloc.c:4750
#12 0x006167cd in *__GI___libc_free (mem=0xb43a0300) at malloc.c:3716
#13 0x00a8a6f1 in operator delete(void*) () from /usr/lib/libstdc++.so.6
#14 0x01f3e15c in ~XMLHttpRequest (this=0xb43a0300, __in_chrg=<value optimized out>) at ../../khtml/ecma/xmlhttprequest.cpp:338
#15 0x01d12e65 in khtml::TreeShared<DOM::EventTargetImpl>::removedLastRef (this=0x0) at ../../khtml/misc/shared.h:59
#16 0x01d42967 in khtml::TreeShared<DOM::EventTargetImpl>::deref (this=0xcd81be8, __in_chrg=<value optimized out>) at ../../khtml/misc/shared.h:65
#17 ~EventImpl (this=0xcd81be8, __in_chrg=<value optimized out>) at ../../khtml/xml/dom2_eventsimpl.cpp:75
#18 0x01f2fb5c in khtml::Shared<DOM::EventImpl>::deref (this=0xb39b1de0, __in_chrg=<value optimized out>) at ../../khtml/misc/shared.h:41
#19 ~SharedPtr (this=0xb39b1de0, __in_chrg=<value optimized out>) at ../../kjs/wtf/SharedPtr.h:35
#20 ~DOMEvent (this=0xb39b1de0, __in_chrg=<value optimized out>) at ../../khtml/ecma/kjs_events.cpp:273
#21 0x0416fc67 in KJS::Collector::collect () at ../../kjs/collector.cpp:720
#22 0x0416fdeb in KJS::Collector::allocate (s=32) at ../../kjs/collector.cpp:330
#23 0x041a154d in KJS::JSCell::operator new (size=32) at ../../kjs/value.cpp:41
#24 0x0418c94b in KJS::StringImp::toObject (this=0xb263a160, exec=0xbfd03320) at ../../kjs/internal.cpp:99
#25 0x041b9522 in KJS::JSValue::toObject (exec=0xbfd03320, codeBlock=..., parentExec=0xbfd037a0) at ../../kjs/value.h:495
#26 KJS::Machine::runBlock (exec=0xbfd03320, codeBlock=..., parentExec=0xbfd037a0) at codes.def:669
#27 0x0419f7cb in KJS::FunctionImp::callAsFunction (this=0xb4393080, exec=0xbfd037a0, thisObj=0xb4391c00, args=...) at ../../kjs/function.cpp:144
#28 0x041a33fd in KJS::JSObject::call (this=0x1b60, exec=0xbfd037a0, thisObj=0xb4391c00, args=...) at ../../kjs/object.cpp:69
#29 0x041c165a in KJS::Machine::runBlock (exec=0xbfd037a0, codeBlock=..., parentExec=0xbfd03c20) at codes.def:1192
#30 0x0419f7cb in KJS::FunctionImp::callAsFunction (this=0xb4392fc0, exec=0xbfd03c20, thisObj=0xb4391c00, args=...) at ../../kjs/function.cpp:144
#31 0x041a33fd in KJS::JSObject::call (this=0x1b60, exec=0xbfd03c20, thisObj=0xb4391c00, args=...) at ../../kjs/object.cpp:69
#32 0x041c165a in KJS::Machine::runBlock (exec=0xbfd03c20, codeBlock=..., parentExec=0xbfd04140) at codes.def:1192
#33 0x0419f7cb in KJS::FunctionImp::callAsFunction (this=0xb3a0a980, exec=0xbfd04140, thisObj=0xb1d80900, args=...) at ../../kjs/function.cpp:144
#34 0x041a33fd in KJS::JSObject::call (this=0x1b60, exec=0xbfd04140, thisObj=0xb1d80900, args=...) at ../../kjs/object.cpp:69
#35 0x041828c6 in KJS::FunctionProtoFunc::callAsFunction (this=0xb4390060, exec=0xbfd04140, thisObj=0xb3a0a980, args=...) at ../../kjs/function_object.cpp:139
#36 0x041a33fd in KJS::JSObject::call (this=0x1b60, exec=0xbfd04140, thisObj=0xb3a0a980, args=...) at ../../kjs/object.cpp:69
#37 0x041c165a in KJS::Machine::runBlock (exec=0xbfd04140, codeBlock=..., parentExec=0xbfd045c0) at codes.def:1192
#38 0x0419f7cb in KJS::FunctionImp::callAsFunction (this=0xb3b33a40, exec=0xbfd045c0, thisObj=0xb261baa0, args=...) at ../../kjs/function.cpp:144
#39 0x041a33fd in KJS::JSObject::call (this=0x1b60, exec=0xbfd045c0, thisObj=0xb261baa0, args=...) at ../../kjs/object.cpp:69
#40 0x041c165a in KJS::Machine::runBlock (exec=0xbfd045c0, codeBlock=..., parentExec=0xb0614d0) at codes.def:1192
#41 0x0419f7cb in KJS::FunctionImp::callAsFunction (this=0xb3b338c0, exec=0xb0614d0, thisObj=0xb1d80900, args=...) at ../../kjs/function.cpp:144
#42 0x041a33fd in KJS::JSObject::call (this=0x1b60, exec=0xb0614d0, thisObj=0xb1d80900, args=...) at ../../kjs/object.cpp:69
#43 0x01f33ad7 in KJS::JSEventListener::handleEvent (this=0xbcfb3b8, evt=...) at ../../khtml/ecma/kjs_events.cpp:106
#44 0x01d195b7 in DOM::NodeImpl::handleLocalEvents (this=0xaf83b70, evt=0xd460118, useCapture=false) at ../../khtml/xml/dom_nodeimpl.cpp:718
#45 0x01d1986f in DOM::NodeImpl::dispatchGenericEvent (this=0xc7d00a0, evt=0xd460118) at ../../khtml/xml/dom_nodeimpl.cpp:513
#46 0x01d19af4 in DOM::NodeImpl::dispatchEvent (this=0xc7d00a0, evt=0xd460118, exceptioncode=@0xbfd0492c, tempEvent=true) at ../../khtml/xml/dom_nodeimpl.cpp:453
#47 0x01c7a3db in KHTMLView::dispatchMouseEvent (this=0xb424208, eventId=7, targetNode=0xc7d00a0, targetNodeNonShared=0xccbc420, cancelable=false, detail=0, _mouse=0xbfd05250, setUnder=true, 
    mouseEventType=4, orient=0) at ../../khtml/khtmlview.cpp:3671
#48 0x01c8a85a in KHTMLView::mouseMoveEvent (this=0xb424208, _mouse=0xbfd05250) at ../../khtml/khtmlview.cpp:1353
#49 0x073b0fd6 in QWidget::event (this=0xb424208, event=0xbfd05250) at kernel/qwidget.cpp:7959
#50 0x077aa433 in QFrame::event (this=0xb424208, e=0xbfd05250) at widgets/qframe.cpp:557
#51 0x01c867ac in KHTMLView::widgetEvent (this=0xb424208, e=0x0) at ../../khtml/khtmlview.cpp:2338
#52 0x01c86a95 in KHTMLView::eventFilter (this=0xb424208, o=0xb0ae3f0, e=0xbfd05250) at ../../khtml/khtmlview.cpp:2191
#53 0x06a3a14a in QCoreApplicationPrivate::sendThroughObjectEventFilters (this=0x9eb7ea0, receiver=0xb0ae3f0, event=0xbfd05250) at kernel/qcoreapplication.cpp:819
#54 0x07354179 in QApplicationPrivate::notify_helper (this=0x9eb7ea0, receiver=0xb0ae3f0, e=0xbfd05250) at kernel/qapplication.cpp:4238
#55 0x0735b76b in QApplication::notify (this=0xbfd05c84, receiver=0xb0ae3f0, e=0xbfd05250) at kernel/qapplication.cpp:3822
#56 0x00f4b67a in KApplication::notify (this=0xbfd05c84, receiver=0xb0ae3f0, event=0xbfd05250) at ../../kdeui/kernel/kapplication.cpp:302
#57 0x06a3aeab in QCoreApplication::notifyInternal (this=0xbfd05c84, receiver=0xb0ae3f0, event=0xbfd05250) at kernel/qcoreapplication.cpp:704
#58 0x0735a71f in QCoreApplication::sendEvent (receiver=0xb0ae3f0, event=0xbfd05250, alienWidget=0x0, nativeWidget=0xb0ae3f0, buttonDown=0x7c8f060, lastMouseReceiver=..., spontaneous=true)
    at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:215
#59 QApplicationPrivate::sendMouseEvent (receiver=0xb0ae3f0, event=0xbfd05250, alienWidget=0x0, nativeWidget=0xb0ae3f0, buttonDown=0x7c8f060, lastMouseReceiver=..., spontaneous=true)
    at kernel/qapplication.cpp:2956
#60 0x073e3d18 in QETWidget::translateMouseEvent (this=0xb0ae3f0, event=0xbfd0576c) at kernel/qapplication_x11.cpp:4368
#61 0x073e2d14 in QApplication::x11ProcessEvent (this=0xbfd05c84, event=0xbfd0576c) at kernel/qapplication_x11.cpp:3501
#62 0x0741204a in x11EventSourceDispatch (s=0x9ebb000, callback=0, user_data=0x0) at kernel/qguieventdispatcher_glib.cpp:146
#63 0x05691e88 in g_main_context_dispatch () from /lib/libglib-2.0.so.0
#64 0x05695730 in ?? () from /lib/libglib-2.0.so.0
#65 0x05695863 in g_main_context_iteration () from /lib/libglib-2.0.so.0
#66 0x06a66bd5 in QEventDispatcherGlib::processEvents (this=0x9ea0498, flags=...) at kernel/qeventdispatcher_glib.cpp:407
#67 0x07411b75 in QGuiEventDispatcherGlib::processEvents (this=0x9ea0498, flags=...) at kernel/qguieventdispatcher_glib.cpp:202
#68 0x06a394c9 in QEventLoop::processEvents (this=0xbfd05a64, flags=) at kernel/qeventloop.cpp:149
#69 0x06a3991a in QEventLoop::exec (this=0xbfd05a64, flags=...) at kernel/qeventloop.cpp:201
#70 0x06a3db0f in QCoreApplication::exec () at kernel/qcoreapplication.cpp:981
#71 0x07354237 in QApplication::exec () at kernel/qapplication.cpp:3570
#72 0x002f088e in kdemain (argc=3, argv=0xbfd05fb4) at ../../../../apps/konqueror/src/konqmain.cpp:271
#73 0x080485cb in main (argc=3, argv=0xbfd05fb4) at konqueror_dummy.cpp:3

Possible duplicates by query: bug 220452, bug 205967.

Reported using DrKonqi
Comment 1 Maksim Orlovich 2010-01-21 23:49:43 UTC 
Fixed this a bit back...