Bug 243739

Summary: Consistently dies on a specific website
Product: [Applications] konqueror Reporter: Arne Babenhauserheide <arne_bab>
Component: khtmlAssignee: Konqueror Developers <konq-bugs>
Status: RESOLVED DUPLICATE    
Severity: crash CC: aiacovitti, johannesobermayr, kde, kollix, martin+kde, rossi.f
Priority: NOR    
Version: 4.6.1   
Target Milestone: ---   
Platform: Compiled Sources   
OS: Linux   
Latest Commit: Version Fixed In:
Sentry Crash Report:
Attachments: New crash information added by DrKonqi
New crash information added by DrKonqi
Bt for #243739
New crash information added by DrKonqi

Description Arne Babenhauserheide 2010-07-06 10:43:00 UTC 
Application: konqueror (4.4.90 (KDE 4.4.90 (KDE 4.5 RC1)))
KDE Platform Version: 4.4.90 (KDE 4.4.90 (KDE 4.5 RC1)) (Compiled from sources)
Qt Version: 4.6.3
Operating System: Linux 2.6.31-gentoo-r6 x86_64
Distribution (Platform): Gentoo Packages

-- Information about the crash:
Even when it reloaded the site after the crash, it died again (when I wesn’t quick enough with hitting escape). 

http://www.webreference.com/programming/css_style2/2.html

Best wishes, 
Arne

-- Backtrace:
Application: Konqueror (konqueror), signal: Segmentation fault
[KCrash Handler]
#6  0x00007fec24271eba in KHTMLPart::loadObjectElement(DOM::HTMLPartContainerElementImpl*, QString const&, QString const&, QStringList const&) () from /usr/lib/libkhtml.so.5
#7  0x00007fec243634ed in DOM::HTMLObjectBaseElementImpl::computeContent() () from /usr/lib/libkhtml.so.5
#8  0x00007fec242e4a48 in DOM::NodeBaseImpl::appendChild(DOM::NodeImpl*, int&) () from /usr/lib/libkhtml.so.5
#9  0x00007fec244875ec in DOMNodeProtoFunc::callAsFunction(KJS::ExecState*, KJS::JSObject*, KJS::List const&) () from /usr/lib/libkhtml.so.5
#10 0x00007fec23e0c6df in KJS::Machine::runBlock(KJS::ExecState*, WTF::Vector<unsigned char, 0ul> const&, KJS::ExecState*) () from /usr/lib/libkjs.so.4
#11 0x00007fec23dee817 in KJS::FunctionImp::callAsFunction(KJS::ExecState*, KJS::JSObject*, KJS::List const&) () from /usr/lib/libkjs.so.4
#12 0x00007fec23e0c6df in KJS::Machine::runBlock(KJS::ExecState*, WTF::Vector<unsigned char, 0ul> const&, KJS::ExecState*) () from /usr/lib/libkjs.so.4
#13 0x00007fec23dee817 in KJS::FunctionImp::callAsFunction(KJS::ExecState*, KJS::JSObject*, KJS::List const&) () from /usr/lib/libkjs.so.4
#14 0x00007fec23e0c6df in KJS::Machine::runBlock(KJS::ExecState*, WTF::Vector<unsigned char, 0ul> const&, KJS::ExecState*) () from /usr/lib/libkjs.so.4
#15 0x00007fec23dee817 in KJS::FunctionImp::callAsFunction(KJS::ExecState*, KJS::JSObject*, KJS::List const&) () from /usr/lib/libkjs.so.4
#16 0x00007fec244e36b1 in KJS::JSEventListener::handleEvent(DOM::Event&) () from /usr/lib/libkhtml.so.5
#17 0x00007fec2430d607 in DOM::EventTargetImpl::handleLocalEvents(DOM::EventImpl*, bool) () from /usr/lib/libkhtml.so.5
#18 0x00007fec242e34cb in DOM::NodeImpl::dispatchGenericEvent(DOM::EventImpl*, int&) () from /usr/lib/libkhtml.so.5
#19 0x00007fec242e355e in DOM::NodeImpl::dispatchEvent(DOM::EventImpl*, int&, bool) () from /usr/lib/libkhtml.so.5
#20 0x00007fec242e3f77 in DOM::NodeImpl::dispatchHTMLEvent(int, bool, bool) () from /usr/lib/libkhtml.so.5
#21 0x00007fec2426e18b in KHTMLPart::slotFinishedParsing() () from /usr/lib/libkhtml.so.5
#22 0x00007fec24283212 in KHTMLPart::qt_metacall(QMetaObject::Call, int, void**) () from /usr/lib/libkhtml.so.5
#23 0x00007fec32cd6830 in QMetaObject::activate(QObject*, QMetaObject const*, int, void**) () from /usr/lib64/qt4/libQtCore.so.4
#24 0x00007fec242cb965 in DOM::DocumentImpl::qt_metacall(QMetaObject::Call, int, void**) () from /usr/lib/libkhtml.so.5
#25 0x00007fec2433ef48 in DOM::HTMLDocumentImpl::qt_metacall(QMetaObject::Call, int, void**) () from /usr/lib/libkhtml.so.5
#26 0x00007fec32cd6830 in QMetaObject::activate(QObject*, QMetaObject const*, int, void**) () from /usr/lib64/qt4/libQtCore.so.4
#27 0x00007fec2432e13d in khtml::HTMLTokenizer::write(khtml::TokenizerString const&, bool) () from /usr/lib/libkhtml.so.5
#28 0x00007fec2432a693 in khtml::HTMLTokenizer::notifyFinished(khtml::CachedObject*) () from /usr/lib/libkhtml.so.5
#29 0x00007fec2444665f in khtml::CachedScript::checkNotify() () from /usr/lib/libkhtml.so.5
#30 0x00007fec2444a2b4 in khtml::CachedScript::data(QBuffer&, bool) () from /usr/lib/libkhtml.so.5
#31 0x00007fec24449e25 in khtml::Loader::slotFinished(KJob*) () from /usr/lib/libkhtml.so.5
#32 0x00007fec2444a11f in khtml::Loader::qt_metacall(QMetaObject::Call, int, void**) () from /usr/lib/libkhtml.so.5
#33 0x00007fec32cd6830 in QMetaObject::activate(QObject*, QMetaObject const*, int, void**) () from /usr/lib64/qt4/libQtCore.so.4
#34 0x00007fec3310bac2 in KJob::result(KJob*) () from /usr/lib/libkdecore.so.5
#35 0x00007fec3310bd60 in KJob::emitResult() () from /usr/lib/libkdecore.so.5
#36 0x00007fec343cfa58 in KIO::SimpleJob::slotFinished() () from /usr/lib/libkio.so.5
#37 0x00007fec343cff10 in KIO::TransferJob::slotFinished() () from /usr/lib/libkio.so.5
#38 0x00007fec343cd1b5 in KIO::TransferJob::qt_metacall(QMetaObject::Call, int, void**) () from /usr/lib/libkio.so.5
#39 0x00007fec32cd6830 in QMetaObject::activate(QObject*, QMetaObject const*, int, void**) () from /usr/lib64/qt4/libQtCore.so.4
#40 0x00007fec344783c1 in KIO::SlaveInterface::dispatch(int, QByteArray const&) () from /usr/lib/libkio.so.5
#41 0x00007fec344756c1 in KIO::SlaveInterface::dispatch() () from /usr/lib/libkio.so.5
#42 0x00007fec34469a77 in KIO::Slave::gotInput() () from /usr/lib/libkio.so.5
#43 0x00007fec34469c40 in KIO::Slave::qt_metacall(QMetaObject::Call, int, void**) () from /usr/lib/libkio.so.5
#44 0x00007fec32cd6830 in QMetaObject::activate(QObject*, QMetaObject const*, int, void**) () from /usr/lib64/qt4/libQtCore.so.4
#45 0x00007fec3439b29f in KIO::ConnectionPrivate::dequeue() () from /usr/lib/libkio.so.5
#46 0x00007fec3439b6f2 in KIO::Connection::qt_metacall(QMetaObject::Call, int, void**) () from /usr/lib/libkio.so.5
#47 0x00007fec32cd32f8 in QObject::event(QEvent*) () from /usr/lib64/qt4/libQtCore.so.4
#48 0x00007fec31c1285d in QApplicationPrivate::notify_helper(QObject*, QEvent*) () from /usr/lib64/qt4/libQtGui.so.4
#49 0x00007fec31c19ae4 in QApplication::notify(QObject*, QEvent*) () from /usr/lib64/qt4/libQtGui.so.4
#50 0x00007fec339444db in KApplication::notify(QObject*, QEvent*) () from /usr/lib/libkdeui.so.5
#51 0x00007fec32cc33f3 in QCoreApplication::notifyInternal(QObject*, QEvent*) () from /usr/lib64/qt4/libQtCore.so.4
#52 0x00007fec32cc5af8 in QCoreApplicationPrivate::sendPostedEvents(QObject*, int, QThreadData*) () from /usr/lib64/qt4/libQtCore.so.4
#53 0x00007fec32ceca03 in postEventSourceDispatch(_GSource*, int (*)(void*), void*) () from /usr/lib64/qt4/libQtCore.so.4
#54 0x00007fec2e1da6f1 in g_main_context_dispatch () from /usr/lib/libglib-2.0.so.0
#55 0x00007fec2e1dde88 in g_main_context_iterate () from /usr/lib/libglib-2.0.so.0
#56 0x00007fec2e1de03c in g_main_context_iteration () from /usr/lib/libglib-2.0.so.0
#57 0x00007fec32cec55c in QEventDispatcherGlib::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) () from /usr/lib64/qt4/libQtCore.so.4
#58 0x00007fec31cc1a4f in QGuiEventDispatcherGlib::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) () from /usr/lib64/qt4/libQtGui.so.4
#59 0x00007fec32cc1d62 in QEventLoop::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) () from /usr/lib64/qt4/libQtCore.so.4
#60 0x00007fec32cc2134 in QEventLoop::exec(QFlags<QEventLoop::ProcessEventsFlag>) () from /usr/lib64/qt4/libQtCore.so.4
#61 0x00007fec32cc5d86 in QCoreApplication::exec() () from /usr/lib64/qt4/libQtCore.so.4
#62 0x00007fec353f1fa8 in kdemain () from /usr/lib/libkdeinit4_konqueror.so
#63 0x00007fec2fdd5ba6 in __libc_start_main () from /lib/libc.so.6
#64 0x0000000000400909 in _start ()

Reported using DrKonqi
Comment 1 Maksim Orlovich 2010-07-06 15:39:36 UTC 
Thanks for the report... Can't confirm, but it may be dependent on the ad rotation or such.
Comment 2 Johannes Obermayr 2010-07-24 22:54:09 UTC 
Created attachment 49465 [details]
New crash information added by DrKonqi

konqueror (4.4.95 (KDE 4.4.95 (KDE 4.5 >= 20100723))) on KDE Platform 4.4.95 (KDE 4.4.95 (KDE 4.5 >= 20100723)) using Qt 4.6.3

For me konqueror crashes all time on phoronix.com.

But it does not crash on my other system with 4.5.60 (trunk).

Activated filters:
- Corset
- EasyList Germany+Easylist
- Liste FR
- ROList
- EasyPrivacy

-- Backtrace (Reduced):
#6  KHTMLPart::loadObjectElement (this=<value optimized out>, frame=0x27377c0, url=..., serviceType=..., params=<value optimized out>) at /usr/src/debug/kdelibs-4.4.95/khtml/khtml_part.cpp:4190
#7  0x00007f5df642f0f3 in DOM::HTMLObjectBaseElementImpl::computeContent (this=0x27377c0) at /usr/src/debug/kdelibs-4.4.95/khtml/html/html_objectimpl.cpp:534
#8  0x00007f5df63b0b7b in DOM::NodeBaseImpl::appendChild (this=0x1ab7e60, newChild=0x27377d0, exceptioncode=@0x7fff82aa1ce8) at /usr/src/debug/kdelibs-4.4.95/khtml/xml/dom_nodeimpl.cpp:1788
#9  0x00007f5df654d173 in DOMNodeProtoFunc::callAsFunction (this=<value optimized out>, exec=0x7fff82aa2530, thisObj=<value optimized out>, args=...)
    at /usr/src/debug/kdelibs-4.4.95/khtml/ecma/kjs_dom.cpp:644
#10 0x00007f5df5c95fdc in call (exec=0x7fff82aa2530, codeBlock=..., parentExec=0x7fff82aa2da0) at /usr/src/debug/kdelibs-4.4.95/kjs/object.h:616
Comment 3 Neil Skrypuch 2010-11-27 05:56:57 UTC 
Created attachment 53781 [details]
New crash information added by DrKonqi

konqueror (4.5.3 (KDE 4.5.3)) on KDE Platform 4.5.3 (KDE 4.5.3) using Qt 4.6.3

I also ran into what appears to be the same crash at http://phoronix.com, it doesn't happen every time I hit the page, but probably 80-90% of the time. No interaction with the page is necessary, just load the page and it'll crash within a few seconds.

I've also provided a backtrace with line numbers.

-- Backtrace (Reduced):
#6  0x00007f52eeea213d in KHTMLPart::loadObjectElement (this=<value optimized out>, frame=<value optimized out>, url=<value optimized out>, serviceType=<value optimized out>, 
    params=<value optimized out>) at /var/tmp/portage/kde-base/kdelibs-4.5.3/work/kdelibs-4.5.3/khtml/khtml_part.cpp:4190
#7  0x00007f52eef956c0 in DOM::HTMLObjectBaseElementImpl::computeContent (this=<value optimized out>) at /var/tmp/portage/kde-base/kdelibs-4.5.3/work/kdelibs-4.5.3/khtml/html/html_objectimpl.cpp:532
#8  0x00007f52eef15d71 in DOM::NodeBaseImpl::appendChild (this=0x29eb6a0, newChild=0x40c0930, exceptioncode=@0x7fff6a5787c8)
    at /var/tmp/portage/kde-base/kdelibs-4.5.3/work/kdelibs-4.5.3/khtml/xml/dom_nodeimpl.cpp:1788
#9  0x00007f52ef0b9485 in DOMNodeProtoFunc::callAsFunction (this=0x7f52ebe02e00, exec=0x7fff6a578ff0, thisObj=<value optimized out>, args=...)
    at /var/tmp/portage/kde-base/kdelibs-4.5.3/work/kdelibs-4.5.3/khtml/ecma/kjs_dom.cpp:644
#10 0x00007f52ee7fa438 in KJS::JSObject::call (exec=0x7fff6a578ff0, codeBlock=..., parentExec=0x7fff6a579850) at /var/tmp/portage/kde-base/kdelibs-4.5.3/work/kdelibs-4.5.3/kjs/object.h:626
Comment 4 Christophe Marin 2011-02-06 15:30:58 UTC 
Created attachment 56922 [details]
Bt for #243739

Looks like I found a site where I can make konq crash every time.

Despite "load plugins on demand only" being enabled, I just see a few dialogs pop up then konq crashes.

The adblocker is also enabled (only List FR+Easylist is checked)

Complete backtrace is attached.

(gdb) bt
#0  isNull (this=<value optimized out>, frame=<value optimized out>, url="", serviceType="application/x-shockwave-flash", params=QStringList<QString> = {...})
    at /usr/include/QtCore/qsharedpointer_impl.h:550
#1  operator! (this=<value optimized out>, frame=<value optimized out>, url="", serviceType="application/x-shockwave-flash", params=QStringList<QString> = {...})
    at /usr/include/QtCore/qsharedpointer_impl.h:556
#2  KHTMLPart::loadObjectElement (this=<value optimized out>, frame=<value optimized out>, url="", serviceType="application/x-shockwave-flash", params=QStringList<QString> = {...})
    at /usr/src/debug/kdelibs-4.6.41_20110205/khtml/khtml_part.cpp:4198
#3  0x00007f2f2ef7e8a4 in DOM::HTMLObjectBaseElementImpl::computeContent (this=0x1f13eb0) at /usr/src/debug/kdelibs-4.6.41_20110205/khtml/html/html_objectimpl.cpp:538
#4  0x00007f2f2eeff377 in DOM::NodeBaseImpl::appendChild (this=0x1f10e20, newChild=0x1f13ec0, exceptioncode=@0x7fffbfe70df8)
    at /usr/src/debug/kdelibs-4.6.41_20110205/khtml/xml/dom_nodeimpl.cpp:1795
#5  0x00007f2f2f09e92a in DOMNodeProtoFunc::callAsFunction (this=<value optimized out>, exec=0x7fffbfe71850, thisObj=<value optimized out>, args=...)
    at /usr/src/debug/kdelibs-4.6.41_20110205/khtml/ecma/kjs_dom.cpp:642
#6  0x00007f2f2e5759e9 in call (exec=0x7fffbfe71850, codeBlock=..., parentExec=0x7fffbfe722e0) at /usr/src/debug/kdelibs-4.6.41_20110205/kjs/object.h:626
#7  KJS::Machine::runBlock (exec=0x7fffbfe71850, codeBlock=..., parentExec=0x7fffbfe722e0) at codes.def:1223
#8  0x00007f2f2e55643e in KJS::FunctionImp::callAsFunction (this=0x7f2f29667c80, exec=0x7fffbfe722e0, thisObj=<value optimized out>, args=...)
    at /usr/src/debug/kdelibs-4.6.41_20110205/kjs/function.cpp:172
#9  0x00007f2f2e5759e9 in call (exec=0x7fffbfe722e0, codeBlock=..., parentExec=0x7fffbfe72d70) at /usr/src/debug/kdelibs-4.6.41_20110205/kjs/object.h:626
#10 KJS::Machine::runBlock (exec=0x7fffbfe722e0, codeBlock=..., parentExec=0x7fffbfe72d70) at codes.def:1223

etc..
Comment 5 Martin Bednar 2011-02-21 01:53:01 UTC 
Created attachment 57411 [details]
New crash information added by DrKonqi

konqueror (4.6.00 (4.6.0)) on KDE Platform 4.6.00 (4.6.0) using Qt 4.7.1

- What I was doing when the application crashed: Visit www.phoronix.com crashes konqueror

- Custom settings of the application:

adblock enabled, but no selected filters

-- Backtrace (Reduced):
#6  isNull (this=<value optimized out>, frame=<value optimized out>, url=<value optimized out>, serviceType=<value optimized out>, params=<value optimized out>) at /usr/include/qt4/QtCore/qsharedpointer_impl.h:550
#7  operator! (this=<value optimized out>, frame=<value optimized out>, url=<value optimized out>, serviceType=<value optimized out>, params=<value optimized out>) at /usr/include/qt4/QtCore/qsharedpointer_impl.h:556
#8  KHTMLPart::loadObjectElement (this=<value optimized out>, frame=<value optimized out>, url=<value optimized out>, serviceType=<value optimized out>, params=<value optimized out>) at /var/tmp/portage/kde-base/kdelibs-4.6.0-r1/work/kdelibs-4.6.0/khtml/khtml_part.cpp:4198
#9  0x00007fc60a974364 in DOM::HTMLObjectBaseElementImpl::computeContent (this=<value optimized out>) at /var/tmp/portage/kde-base/kdelibs-4.6.0-r1/work/kdelibs-4.6.0/khtml/html/html_objectimpl.cpp:538
#10 0x00007fc60a8f3811 in DOM::NodeBaseImpl::appendChild (this=0x14b9bd0, newChild=0x27c1250, exceptioncode=@0x7fff39993138) at /var/tmp/portage/kde-base/kdelibs-4.6.0-r1/work/kdelibs-4.6.0/khtml/xml/dom_nodeimpl.cpp:1795
Comment 6 Maksim Orlovich 2011-02-21 16:13:51 UTC 
Still can't reproduce :(
Comment 7 Fabio Rossi 2011-03-06 17:37:29 UTC 
I can reproduce every time using this link:

http://www.phoronix.com/scan.php?page=news_item&px=OTE3OA

Qt: 4.7.1
KDE Development Platform: 4.6.1 (4.6.1)
Konqueror: 4.6.1 (4.6.1)
Comment 8 Martin Koller 2011-08-04 15:50:22 UTC 
can't reproduce either (KDE 4.6.5).
Can it have to do with the flash plugin, which both mentioned pages use ?
Can they who can reproduce the crash try with disabled / uninstalled flashplayer ?
Or what happens with the latest flashplayer used (I have 10.3 on openSuse 11.3, 32bit)
Comment 9 Neil Skrypuch 2011-08-04 23:12:06 UTC 
FWIW, I intentionally do not have Flash installed. It may indeed have something to do with (lack of) plugins.
Comment 10 Andrea Iacovitti 2013-11-15 23:24:24 UTC 

*** This bug has been marked as a duplicate of bug 268341 ***