Bug 283967

Summary: Konqueror/Webkit and Rekonq crash trying to upload an image to g+
Product: [Unmaintained] kio Reporter: Andreas Krohn <Hamburger1984>
Component: generalAssignee: Andrea Diamantini <adjam7>
Status: RESOLVED UPSTREAM    
Severity: crash CC: adawit, adjam7, anavarrog, babysick, robert.sevcik, roger.luedecke
Priority: NOR    
Version First Reported In: 4.7   
Target Milestone: ---   
Platform: Fedora RPMs   
OS: Linux   
Latest Commit: Version Fixed/Implemented In:
Sentry Crash Report:
Attachments: New crash information added by DrKonqi
New crash information added by DrKonqi

Description Andreas Krohn 2011-10-14 08:27:21 UTC 
Application: rekonq (0.7.92)
KDE Platform Version: 4.7.2 (4.7.2)
Qt Version: 4.8.0
Operating System: Linux 3.1.0-0.rc9.git0.0.fc16.x86_64 x86_64
Distribution (Platform): Fedora RPMs

-- Information about the crash:
- What I was doing when the application crashed:

1) open G+
2) try to upload an image (to profile or an album)
3) crash!

The crash can be reproduced every time.

-- Backtrace:
Application: rekonq (rekonq), signal: Segmentation fault
Using host libthread_db library "/lib64/libthread_db.so.1".
82	T_PSEUDO (SYSCALL_SYMBOL, SYSCALL_NAME, SYSCALL_NARGS)
[Current thread is 1 (Thread 0x7f8325d8a880 (LWP 20906))]

Thread 7 (Thread 0x7f831b2f5700 (LWP 20907)):
#0  pthread_cond_wait@@GLIBC_2.3.2 () at ../nptl/sysdeps/unix/sysv/linux/x86_64/pthread_cond_wait.S:165
#1  0x00000039edf973cc in WTF::TCMalloc_PageHeap::scavengerThread (this=0x39ee990f80) at ../../../Source/JavaScriptCore/wtf/FastMalloc.cpp:2495
#2  0x00000039edf974f9 in WTF::TCMalloc_PageHeap::runScavengerThread (context=<optimized out>) at ../../../Source/JavaScriptCore/wtf/FastMalloc.cpp:1618
#3  0x00000039cda07d31 in start_thread (arg=0x7f831b2f5700) at pthread_create.c:305
#4  0x00000039ccef04ad in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:115

Thread 6 (Thread 0x7f831a9dc700 (LWP 20908)):
#0  0x00000039cee454d4 in g_main_context_iteration () from /lib64/libglib-2.0.so.0
#1  0x00000039d3ba6be6 in QEventDispatcherGlib::processEvents (this=0x7f83140008c0, flags=<optimized out>) at kernel/qeventdispatcher_glib.cpp:426
#2  0x00000039d3b76d22 in QEventLoop::processEvents (this=<optimized out>, flags=...) at kernel/qeventloop.cpp:149
#3  0x00000039d3b76f77 in QEventLoop::exec (this=0x7f831a9dbd00, flags=...) at kernel/qeventloop.cpp:204
#4  0x00000039d3a78b77 in QThread::exec (this=<optimized out>) at thread/qthread.cpp:501
#5  0x00000039d3a7bbbb in QThreadPrivate::start (arg=0xf1b230) at thread/qthread_unix.cpp:298
#6  0x00000039cda07d31 in start_thread (arg=0x7f831a9dc700) at pthread_create.c:305
#7  0x00000039ccef04ad in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:115

Thread 5 (Thread 0x7f8319959700 (LWP 20909)):
#0  pthread_cond_wait@@GLIBC_2.3.2 () at ../nptl/sysdeps/unix/sysv/linux/x86_64/pthread_cond_wait.S:165
#1  0x00000039e7584e52 in QTWTF::TCMalloc_PageHeap::scavengerThread (this=0x39e787e200) at ../3rdparty/javascriptcore/JavaScriptCore/wtf/FastMalloc.cpp:2359
#2  0x00000039e7584e89 in QTWTF::TCMalloc_PageHeap::runScavengerThread (context=<optimized out>) at ../3rdparty/javascriptcore/JavaScriptCore/wtf/FastMalloc.cpp:1464
#3  0x00000039cda07d31 in start_thread (arg=0x7f8319959700) at pthread_create.c:305
#4  0x00000039ccef04ad in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:115

Thread 4 (Thread 0x7f8313fff700 (LWP 20910)):
#0  pthread_cond_wait@@GLIBC_2.3.2 () at ../nptl/sysdeps/unix/sysv/linux/x86_64/pthread_cond_wait.S:165
#1  0x00000039d3a7c0cb in wait (time=18446744073709551615, this=0x7f40d0) at thread/qwaitcondition_unix.cpp:86
#2  QWaitCondition::wait (this=<optimized out>, mutex=0x818c00, time=18446744073709551615) at thread/qwaitcondition_unix.cpp:158
#3  0x00000039e7a0aa8b in ThreadWeaver::WeaverImpl::blockThreadUntilJobsAreBeingAssigned (this=0x88f590, th=0xfe6370) at /usr/src/debug/kdelibs-4.7.2/threadweaver/Weaver/WeaverImpl.cpp:365
#4  0x00000039e7a0d37b in ThreadWeaver::WorkingHardState::applyForWork (this=0x7fc970, th=0xfe6370) at /usr/src/debug/kdelibs-4.7.2/threadweaver/Weaver/WorkingHardState.cpp:71
#5  0x00000039e7a0c1ef in ThreadWeaver::ThreadRunHelper::run (this=0x7f8313ffed20, parent=0x88f590, th=0xfe6370) at /usr/src/debug/kdelibs-4.7.2/threadweaver/Weaver/Thread.cpp:87
#6  0x00000039e7a0c27b in ThreadWeaver::Thread::run (this=0xfe6370) at /usr/src/debug/kdelibs-4.7.2/threadweaver/Weaver/Thread.cpp:142
#7  0x00000039d3a7bbbb in QThreadPrivate::start (arg=0xfe6370) at thread/qthread_unix.cpp:298
#8  0x00000039cda07d31 in start_thread (arg=0x7f8313fff700) at pthread_create.c:305
#9  0x00000039ccef04ad in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:115

Thread 3 (Thread 0x7f83127b7700 (LWP 20914)):
#0  pthread_cond_wait@@GLIBC_2.3.2 () at ../nptl/sysdeps/unix/sysv/linux/x86_64/pthread_cond_wait.S:165
#1  0x00000039d3a7c0cb in wait (time=18446744073709551615, this=0x7f40d0) at thread/qwaitcondition_unix.cpp:86
#2  QWaitCondition::wait (this=<optimized out>, mutex=0x818c00, time=18446744073709551615) at thread/qwaitcondition_unix.cpp:158
#3  0x00000039e7a0aa8b in ThreadWeaver::WeaverImpl::blockThreadUntilJobsAreBeingAssigned (this=0x88f590, th=0x1466460) at /usr/src/debug/kdelibs-4.7.2/threadweaver/Weaver/WeaverImpl.cpp:365
#4  0x00000039e7a0d37b in ThreadWeaver::WorkingHardState::applyForWork (this=0x7fc970, th=0x1466460) at /usr/src/debug/kdelibs-4.7.2/threadweaver/Weaver/WorkingHardState.cpp:71
#5  0x00000039e7a0c1ef in ThreadWeaver::ThreadRunHelper::run (this=0x7f83127b6d20, parent=0x88f590, th=0x1466460) at /usr/src/debug/kdelibs-4.7.2/threadweaver/Weaver/Thread.cpp:87
#6  0x00000039e7a0c27b in ThreadWeaver::Thread::run (this=0x1466460) at /usr/src/debug/kdelibs-4.7.2/threadweaver/Weaver/Thread.cpp:142
#7  0x00000039d3a7bbbb in QThreadPrivate::start (arg=0x1466460) at thread/qthread_unix.cpp:298
#8  0x00000039cda07d31 in start_thread (arg=0x7f83127b7700) at pthread_create.c:305
#9  0x00000039ccef04ad in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:115

Thread 2 (Thread 0x7f8311fb6700 (LWP 20915)):
#0  __libc_enable_asynccancel () at ../nptl/sysdeps/unix/sysv/linux/x86_64/cancellation.S:58
#1  0x00000039ccee79d8 in __GI___poll (fds=<optimized out>, nfds=<optimized out>, timeout=<optimized out>) at ../sysdeps/unix/sysv/linux/poll.c:85
#2  0x00000039cee44fe8 in ?? () from /lib64/libglib-2.0.so.0
#3  0x00000039cee454ac in g_main_context_iteration () from /lib64/libglib-2.0.so.0
#4  0x00000039d3ba6be6 in QEventDispatcherGlib::processEvents (this=0x7f82c40008c0, flags=<optimized out>) at kernel/qeventdispatcher_glib.cpp:426
#5  0x00000039d3b76d22 in QEventLoop::processEvents (this=<optimized out>, flags=...) at kernel/qeventloop.cpp:149
#6  0x00000039d3b76f77 in QEventLoop::exec (this=0x7f8311fb5cd0, flags=...) at kernel/qeventloop.cpp:204
#7  0x00000039d3a78b77 in QThread::exec (this=<optimized out>) at thread/qthread.cpp:501
#8  0x00000039dddb036e in KIO::NameLookUpThread::run (this=0x7f830c018e40) at /usr/src/debug/kdelibs-4.7.2/kio/kio/hostinfo.cpp:226
#9  0x00000039d3a7bbbb in QThreadPrivate::start (arg=0x7f830c018e40) at thread/qthread_unix.cpp:298
#10 0x00000039cda07d31 in start_thread (arg=0x7f8311fb6700) at pthread_create.c:305
#11 0x00000039ccef04ad in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:115

Thread 1 (Thread 0x7f8325d8a880 (LWP 20906)):
[KCrash Handler]
#6  data (this=0x7fff70527978) at ../../src/corelib/tools/qscopedpointer.h:135
#7  qGetPtrHelper<QScopedPointer<QObjectData> > (p=...) at ../../src/corelib/global/qglobal.h:2428
#8  d_func (this=0x7fff70527970) at ../../src/corelib/io/qiodevice.h:168
#9  QIODevice::read (this=0x0, data=0x23bd878 "", maxSize=65536) at io/qiodevice.cpp:762
#10 0x00000039d3b0a70b in QIODevice::read (this=0x0, maxSize=<optimized out>) at io/qiodevice.cpp:966
#11 0x00000039edc31ef4 in WebCore::FormDataIODevice::readData (this=0x22c0b30, destination=0x23ad848 "    4a_1a_", size=65536) at ../../../Source/WebCore/platform/network/qt/QNetworkReplyHandler.cpp:130
#12 0x00000039d3b09f70 in QIODevice::read (this=0x22c0b30, data=0x23ad848 "    4a_1a_", maxSize=65536) at io/qiodevice.cpp:860
#13 0x00000039d3b0a70b in QIODevice::read (this=0x22c0b30, maxSize=<optimized out>) at io/qiodevice.cpp:966
#14 0x00000039ddcfc171 in KIO::TransferJobPrivate::slotDataReqFromDevice (this=0x2254f50) at /usr/src/debug/kdelibs-4.7.2/kio/kio/job.cpp:1301
#15 0x00000039d3b8ba51 in QMetaObject::activate (sender=0x14db130, m=<optimized out>, local_signal_index=<optimized out>, argv=0x0) at kernel/qobject.cpp:3546
#16 0x00000039ddda542d in KIO::SlaveInterface::dispatch (this=<optimized out>, _cmd=101, rawdata=...) at /usr/src/debug/kdelibs-4.7.2/kio/kio/slaveinterface.cpp:163
#17 0x00000039ddda2255 in KIO::SlaveInterface::dispatch (this=0x14db130) at /usr/src/debug/kdelibs-4.7.2/kio/kio/slaveinterface.cpp:88
#18 0x00000039ddd9545e in KIO::Slave::gotInput (this=0x14db130) at /usr/src/debug/kdelibs-4.7.2/kio/kio/slave.cpp:344
#19 0x00000039d3b8ba51 in QMetaObject::activate (sender=0x14ec090, m=<optimized out>, local_signal_index=<optimized out>, argv=0x0) at kernel/qobject.cpp:3546
#20 0x00000039ddccb967 in dequeue (this=<optimized out>) at /usr/src/debug/kdelibs-4.7.2/kio/kio/connection.cpp:82
#21 KIO::ConnectionPrivate::dequeue (this=0x14e10e0) at /usr/src/debug/kdelibs-4.7.2/kio/kio/connection.cpp:71
#22 0x00000039d3b90c66 in QObject::event (this=0x14ec090, e=<optimized out>) at kernel/qobject.cpp:1194
#23 0x00000039d51c9704 in notify_helper (e=0x1f4ce60, receiver=0x14ec090, this=0x7335c0) at kernel/qapplication.cpp:4518
#24 QApplicationPrivate::notify_helper (this=0x7335c0, receiver=0x14ec090, e=0x1f4ce60) at kernel/qapplication.cpp:4490
#25 0x00000039d51ce583 in QApplication::notify (this=0x7fff705289d0, receiver=0x14ec090, e=0x1f4ce60) at kernel/qapplication.cpp:4379
#26 0x00000039dc650416 in KApplication::notify (this=0x7fff705289d0, receiver=0x14ec090, event=0x1f4ce60) at /usr/src/debug/kdelibs-4.7.2/kdeui/kernel/kapplication.cpp:311
#27 0x00000039d3b77bec in QCoreApplication::notifyInternal (this=0x7fff705289d0, receiver=0x14ec090, event=0x1f4ce60) at kernel/qcoreapplication.cpp:876
#28 0x00000039d3b7b6ea in sendEvent (event=0x1f4ce60, receiver=0x14ec090) at kernel/qcoreapplication.h:231
#29 QCoreApplicationPrivate::sendPostedEvents (receiver=0x0, event_type=0, data=0x70b4d0) at kernel/qcoreapplication.cpp:1500
#30 0x00000039d3ba6753 in sendPostedEvents () at kernel/qcoreapplication.h:236
#31 postEventSourceDispatch (s=0x747170) at kernel/qeventdispatcher_glib.cpp:279
#32 0x00000039cee44add in g_main_context_dispatch () from /lib64/libglib-2.0.so.0
#33 0x00000039cee452d8 in ?? () from /lib64/libglib-2.0.so.0
#34 0x00000039cee454ac in g_main_context_iteration () from /lib64/libglib-2.0.so.0
#35 0x00000039d3ba6b7f in QEventDispatcherGlib::processEvents (this=0x70c990, flags=<optimized out>) at kernel/qeventdispatcher_glib.cpp:424
#36 0x00000039d526c1ce in QGuiEventDispatcherGlib::processEvents (this=<optimized out>, flags=<optimized out>) at kernel/qguieventdispatcher_glib.cpp:207
#37 0x00000039d3b76d22 in QEventLoop::processEvents (this=<optimized out>, flags=...) at kernel/qeventloop.cpp:149
#38 0x00000039d3b76f77 in QEventLoop::exec (this=0x7fff70528960, flags=...) at kernel/qeventloop.cpp:204
#39 0x00000039d3b7b9e5 in QCoreApplication::exec () at kernel/qcoreapplication.cpp:1148
#40 0x00000039e0af7ef7 in kdemain (argc=1, argv=<optimized out>) at /home/andreas/Projects/rekonq/src/main.cpp:215
#41 0x00000039cce2167d in __libc_start_main (main=0x4007a0 <main(int, char**)>, argc=1, ubp_av=0x7fff70529368, init=<optimized out>, fini=<optimized out>, rtld_fini=<optimized out>, stack_end=0x7fff70529358) at libc-start.c:226
#42 0x00000000004007d1 in _start ()

Possible duplicates by query: bug 241148.

Reported using DrKonqi
Comment 1 Antonio 2011-10-31 12:55:45 UTC 
Created attachment 65070 [details]
New crash information added by DrKonqi

rekonq (0.7.90) on KDE Platform 4.7.2 (4.7.2) using Qt 4.7.4

- What I was doing when the application crashed:
I was uploading a photo to google+, a popup was launched and rekonq chrased.

-- Backtrace (Reduced):
#6  data (this=0x7fff09657dd8) at ../../include/QtCore/../../src/corelib/tools/qscopedpointer.h:135
[...]
#9  QIODevice::read (this=0x0, data=0x64d5e58 "0^M\006", maxSize=65536) at io/qiodevice.cpp:760
#10 0x00007f1ba088874b in QIODevice::read (this=0x0, maxSize=<optimized out>) at io/qiodevice.cpp:964
#11 0x00007f1ba4808cf4 in WebCore::FormDataIODevice::readData (this=0x5a1e410, destination=0x6865748 " W\206\006", size=65536) at platform/network/qt/QNetworkReplyHandler.cpp:130
#12 0x00007f1ba0887fd0 in QIODevice::read (this=0x5a1e410, data=0x6865748 " W\206\006", maxSize=65536) at io/qiodevice.cpp:858
Comment 2 Ševčík Robert (Robajz) 2011-11-01 15:54:03 UTC 
Created attachment 65122 [details]
New crash information added by DrKonqi

rekonq (0.8.0) on KDE Platform 4.7.2 (4.7.2) using Qt 4.7.4

- What I was doing when the application crashed:
Uploading picture to picasaweb or google+

- Custom settings of the application:
I was in private browsing

-- Backtrace (Reduced):
#7  data (this=0x4) at ../../include/QtCore/../../src/corelib/tools/qscopedpointer.h:135
[...]
#10 QIODevice::read (this=0x0, data=0xcbd45e0 "\314\314\314\377\377\377\377\377\377\377\377\377\314\314\314\377\314\314\314\377\377\377\377\377\377\377\377\377\314\314\314\377\314\314\314\377\377\377\377\377\377\377\377\377\314\314\314\377\314\314\314\377\377\377\377\377\377\377\377\377\314\314\314\377\314\314\314\377\377\377\377\377\377\377\377\377\314\314\314\377\314\314\314\377\377\377\377\377\377\377\377\377\314\314\314\377\314\314\314\377\377\377\377\377\377\377\377\377\314\314\314\377\314\314\314\377\377\377\377\377\377\377\377\377\314\314\314\377\314\314\314\377\377\377\377\377\377\377\377\377\314\314\314\377\314\314\314\377\377\377\377\377\377\377\377\377\314\314\314\377\314\314\314\377\377\377\377\377\377\377\377\377\314\314\314\377\314\314\314\377\377\377\377\377\377\377\377\377\314\314\314\377\314\314\314\377\377\377\377\377"..., maxSize=65536) at io/qiodevice.cpp:760
#11 0x063b448a in QIODevice::read (this=0x0, maxSize=<optimized out>) at io/qiodevice.cpp:964
#12 0x018a5677 in WebCore::FormDataIODevice::readData (this=0xca5ddf0, destination=0xcbabf20 "    42_1a_", size=65536) at platform/network/qt/QNetworkReplyHandler.cpp:130
#13 0x063b3bf0 in QIODevice::read (this=0xca5ddf0, data=0xcbabf20 "    42_1a_", maxSize=65536) at io/qiodevice.cpp:858
Comment 3 Andrea Diamantini 2011-11-02 16:43:55 UTC 
The same happens with konqueror/webkit with the following backtrace:

#0  0xb6da32ca in QIODevice::read(char*, long long) () from /SW/TRUNK/INSTALL/lib/libQtCore.so.4
#1  0xb6da3caa in QIODevice::read(long long) () from /SW/TRUNK/INSTALL/lib/libQtCore.so.4
#2  0xacc23c87 in WebCore::FormDataIODevice::readData(char*, long long) ()
   from /SW/TRUNK/INSTALL/lib/libQtWebKit.so.4
#3  0xb6da33f9 in QIODevice::read(char*, long long) () from /SW/TRUNK/INSTALL/lib/libQtCore.so.4
#4  0xb6da3caa in QIODevice::read(long long) () from /SW/TRUNK/INSTALL/lib/libQtCore.so.4
#5  0xb78423e5 in KIO::TransferJobPrivate::slotDataReqFromDevice (this=0x9657528)
    at /SW/SRC/kdelibs/kio/kio/job.cpp:1301
#6  0xb78490aa in KIO::TransferJob::qt_static_metacall (_o=0x9a57068, _c=QMetaObject::InvokeMetaMethod, _id=17, 
    _a=0xbfffe620) at /SW/TRUNK/BUILD/kdelibs/kio/jobclasses.moc:398
#7  0xb6e33141 in QMetaObject::activate(QObject*, QMetaObject const*, int, void**) ()
   from /SW/TRUNK/INSTALL/lib/libQtCore.so.4
#8  0xb78ef3ff in KIO::SlaveInterface::dataReq (this=0x8b795b8) at /SW/TRUNK/BUILD/kdelibs/kio/slaveinterface.moc:166
#9  0xb78ec9f5 in KIO::SlaveInterface::dispatch (this=0x8b795b8, _cmd=101, rawdata=...)
    at /SW/SRC/kdelibs/kio/kio/slaveinterface.cpp:163
#10 0xb78ec6c2 in KIO::SlaveInterface::dispatch (this=0x8b795b8) at /SW/SRC/kdelibs/kio/kio/slaveinterface.cpp:88
#11 0xb78e23be in KIO::Slave::gotInput (this=0x8b795b8) at /SW/SRC/kdelibs/kio/kio/slave.cpp:344
#12 0xb78e34ba in KIO::Slave::qt_static_metacall (_o=0x8b795b8, _c=QMetaObject::InvokeMetaMethod, _id=2, 
    _a=0xbfffe900) at /SW/TRUNK/BUILD/kdelibs/kio/slave.moc:57
#13 0xb6e33141 in QMetaObject::activate(QObject*, QMetaObject const*, int, void**) ()
   from /SW/TRUNK/INSTALL/lib/libQtCore.so.4
#14 0xb781055d in KIO::Connection::readyRead (this=0x8b2fce8) at /SW/TRUNK/BUILD/kdelibs/kio/connection.moc:106
#15 0xb780d228 in KIO::ConnectionPrivate::dequeue (this=0x8b2fc20) at /SW/SRC/kdelibs/kio/kio/connection.cpp:82
#16 0xb78103dc in KIO::Connection::qt_static_metacall (_o=0x8b2fce8, _c=QMetaObject::InvokeMetaMethod, _id=1, 
    _a=0x9243900) at /SW/TRUNK/BUILD/kdelibs/kio/connection.moc:56
#17 0xb6e2e551 in QMetaCallEvent::placeMetaCall(QObject*) () from /SW/TRUNK/INSTALL/lib/libQtCore.so.4
#18 0xb6e377cb in QObject::event(QEvent*) () from /SW/TRUNK/INSTALL/lib/libQtCore.so.4
#19 0xb627c4b4 in QApplicationPrivate::notify_helper(QObject*, QEvent*) () from /SW/TRUNK/INSTALL/lib/libQtGui.so.4
#20 0xb62819d3 in QApplication::notify(QObject*, QEvent*) () from /SW/TRUNK/INSTALL/lib/libQtGui.so.4
#21 0xb747481a in KApplication::notify (this=0xbffff210, receiver=0x8b2fce8, event=0x91fbbc0)
    at /SW/SRC/kdelibs/kdeui/kernel/kapplication.cpp:311
#22 0xb6e1c59e in QCoreApplication::notifyInternal(QObject*, QEvent*) () from /SW/TRUNK/INSTALL/lib/libQtCore.so.4
#23 0xb6e202c0 in QCoreApplicationPrivate::sendPostedEvents(QObject*, int, QThreadData*) ()
   from /SW/TRUNK/INSTALL/lib/libQtCore.so.4
#24 0xb6e205fc in QCoreApplication::sendPostedEvents(QObject*, int) () from /SW/TRUNK/INSTALL/lib/libQtCore.so.4
#25 0xb6e4f1e4 in ?? () from /SW/TRUNK/INSTALL/lib/libQtCore.so.4
---Type <return> to continue, or q <return> to quit---
#26 0xb58e7faf in g_main_context_dispatch () from /usr/lib/libglib-2.0.so.0
#27 0xb58e86e0 in ?? () from /usr/lib/libglib-2.0.so.0
#28 0xb58e897a in g_main_context_iteration () from /usr/lib/libglib-2.0.so.0
#29 0xb6e4f5d7 in QEventDispatcherGlib::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) ()
   from /SW/TRUNK/INSTALL/lib/libQtCore.so.4
#30 0xb63308fa in ?? () from /SW/TRUNK/INSTALL/lib/libQtGui.so.4
#31 0xb6e1b10d in QEventLoop::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) ()
   from /SW/TRUNK/INSTALL/lib/libQtCore.so.4
#32 0xb6e1b3a9 in QEventLoop::exec(QFlags<QEventLoop::ProcessEventsFlag>) ()
   from /SW/TRUNK/INSTALL/lib/libQtCore.so.4
#33 0xb6e206aa in QCoreApplication::exec() () from /SW/TRUNK/INSTALL/lib/libQtCore.so.4
#34 0xb627a3c4 in QApplication::exec() () from /SW/TRUNK/INSTALL/lib/libQtGui.so.4
#35 0xb7f94172 in kdemain (argc=1, argv=0xbffff494) at /SW/SRC/kde-baseapps/konqueror/src/konqmain.cpp:227
#36 0x080485b9 in main (argc=1, argv=0xbffff494) at /SW/TRUNK/BUILD/kde-baseapps/konqueror/src/konqueror_dummy.cpp:3

While it doesn't with QtTestBrowser (also if it does not really upload the image).
Comment 4 Dawit Alemayehu 2011-11-15 00:34:08 UTC 
*** Bug 286554 has been marked as a duplicate of this bug. ***
Comment 5 Dawit Alemayehu 2011-11-15 00:42:36 UTC 
Git commit 8ea1d57508ca9a377dd8c98c003a16c37bd69f0f by Dawit Alemayehu.
Committed on 15/11/2011 at 01:39.
Pushed by adawit into branch 'KDE/4.7'.

Do not crash when QNetworkRequest::ContentLength is either 0 or not specified
for a PostOperation.

CCBUG: 283967

M  +5    -3    kio/kio/accessmanager.cpp

http://commits.kde.org/kdelibs/8ea1d57508ca9a377dd8c98c003a16c37bd69f0f
Comment 6 Dawit Alemayehu 2011-11-15 00:51:27 UTC 
Crash is fixed by the commit shown in comment #5.

The fact that uploading the image does not work is an upstream issue and as such reported there. See https://bugs.webkit.org/show_bug.cgi?id=72329.
Comment 7 Dawit Alemayehu 2011-11-17 16:15:08 UTC 
Git commit e30905e3ab51652bbfabdb3b7d9eece4b62f39be by Dawit Alemayehu.
Committed on 17/11/2011 at 17:11.
Pushed by adawit into branch 'KDE/4.7'.

In sendBody if the specified content-length is 0, then simply return without
any attempt to obtain data to send to the server.

Prevents potential crashes in the screwed up client code. See bug # below.

CCBUG: 283967

M  +4    -0    kioslave/http/http.cpp

http://commits.kde.org/kdelibs/e30905e3ab51652bbfabdb3b7d9eece4b62f39be
Comment 8 Dawit Alemayehu 2011-11-19 01:08:03 UTC 
Git commit f715a2b85347db55ca2d159eb10b9d9cd10f7fac by Dawit Alemayehu.
Committed on 18/11/2011 at 23:42.
Pushed by adawit into branch 'KDE/4.7'.

Revert commit 8ea1d575 because it causes regression.

The mitgation for the crash reported in bug# 283967 is now
handled at the ioslave level, kio_http to be precise.

CCMAIL:dfaure@kde.org
CCBUG: 283967

M  +1    -6    kio/kio/accessmanager.cpp
M  +3    -3    kioslave/http/http.cpp

http://commits.kde.org/kdelibs/f715a2b85347db55ca2d159eb10b9d9cd10f7fac
Comment 9 Dawit Alemayehu 2011-12-01 16:14:36 UTC 
*** Bug 287694 has been marked as a duplicate of this bug. ***