Bug 295781

Summary: Konqueror crashes when pasting "http://bazaar-vcs.org/Documentation" into the location bar.
Product: [Unmaintained] kdelibs Reporter: nn.dm55
Component: kdewebkitAssignee: webkit-devel
Status: RESOLVED WORKSFORME    
Severity: crash CC: adawit
Priority: NOR    
Version: 4.7   
Target Milestone: ---   
Platform: openSUSE   
OS: Linux   
Latest Commit: Version Fixed In:
Sentry Crash Report:
Attachments: This is the terminal output when Konqueror crashes.
This is the terminal output when Konqueror doesn't crash

Description nn.dm55 2012-03-11 18:32:51 UTC 
Application: konqueror (4.7.4 (4.7.4))
KDE Platform Version: 4.7.4 (4.7.4)
Qt Version: 4.7.4
Operating System: Linux 3.1.9-1.4-desktop x86_64
Distribution: "openSUSE 12.1 (x86_64)"

-- Information about the crash:
- What I was doing when the application crashed:
I was attempting to do the steps listed in bug 186731, but Konqueror crashed when it was trying to load the page. Konqueror crashes about 50% of the time when I follow the steps detailed below.
If you see a blue banner along the top of the website, then Konqueror has already passed the point where it might have crashed following these steps.
The steps I followed are:
1. Go to https://bugs.kde.org/show_bug.cgi?id=186731 in Firefox
2. Start Konqueror
3. Copy "http://bazaar-vcs.org/Documentation" from the page opened in step #1
4. Paste it into Konqueror with a click of the mouse wheel.

The crash can be reproduced some of the time.

-- Backtrace:
Application: Konqueror (konqueror), signal: Segmentation fault
82	T_PSEUDO (SYSCALL_SYMBOL, SYSCALL_NAME, SYSCALL_NARGS)
[Current thread is 1 (Thread 0x7f35d3d87760 (LWP 29107))]

Thread 7 (Thread 0x7f35bd009700 (LWP 29113)):
#0  0x00007f35d1118957 in timerSourceCheckHelper (src=0x7f35b8002070) at kernel/qeventdispatcher_glib.cpp:145
#1  0x00007f35cbc0f264 in g_main_context_check (context=0x7f35b80009b0, max_priority=2147483647, fds=<optimized out>, n_fds=<optimized out>) at gmain.c:2943
#2  0x00007f35cbc0fab2 in g_main_context_iterate (context=0x7f35b80009b0, block=<optimized out>, dispatch=1, self=<optimized out>) at gmain.c:3070
#3  0x00007f35cbc0ff59 in g_main_context_iteration (context=0x7f35b80009b0, may_block=1) at gmain.c:3136
#4  0x00007f35d1118586 in QEventDispatcherGlib::processEvents (this=0x7f35b80008c0, flags=<optimized out>) at kernel/qeventdispatcher_glib.cpp:424
#5  0x00007f35d10eca32 in QEventLoop::processEvents (this=<optimized out>, flags=...) at kernel/qeventloop.cpp:149
#6  0x00007f35d10ecc2f in QEventLoop::exec (this=0x7f35bd008df0, flags=...) at kernel/qeventloop.cpp:201
#7  0x00007f35d10045df in QThread::exec (this=<optimized out>) at thread/qthread.cpp:498
#8  0x00007f35d2364efe in KIO::NameLookUpThread::run (this=0x845fb0) at /usr/src/debug/kdelibs-4.7.4/kio/kio/hostinfo.cpp:226
#9  0x00007f35d1007025 in QThreadPrivate::start (arg=0x845fb0) at thread/qthread_unix.cpp:331
#10 0x00007f35cda78f05 in start_thread (arg=0x7f35bd009700) at pthread_create.c:301
#11 0x00007f35d362363d in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:115

Thread 6 (Thread 0x7f35affff700 (LWP 29117)):
#0  pthread_cond_wait@@GLIBC_2.3.2 () at ../nptl/sysdeps/unix/sysv/linux/x86_64/pthread_cond_wait.S:162
#1  0x00007f35b69499dc in WTF::TCMalloc_PageHeap::scavengerThread (this=0x7f35b7300200) at ../../../Source/JavaScriptCore/wtf/FastMalloc.cpp:2495
#2  0x00007f35b6949b09 in WTF::TCMalloc_PageHeap::runScavengerThread (context=<optimized out>) at ../../../Source/JavaScriptCore/wtf/FastMalloc.cpp:1618
#3  0x00007f35cda78f05 in start_thread (arg=0x7f35affff700) at pthread_create.c:301
#4  0x00007f35d362363d in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:115

Thread 5 (Thread 0x7f35af7fe700 (LWP 29118)):
#0  0x00007f35cda7c11f in __pthread_mutex_unlock_usercnt (mutex=0x7f35a80009b8, decr=0) at pthread_mutex_unlock.c:52
#1  0x00007f35cbc0fb43 in g_main_context_iterate (context=0x7f35a80009b0, block=1, dispatch=1, self=<optimized out>) at gmain.c:3051
#2  0x00007f35cbc0ff59 in g_main_context_iteration (context=0x7f35a80009b0, may_block=1) at gmain.c:3136
#3  0x00007f35d1118586 in QEventDispatcherGlib::processEvents (this=0x7f35a80008c0, flags=<optimized out>) at kernel/qeventdispatcher_glib.cpp:424
#4  0x00007f35d10eca32 in QEventLoop::processEvents (this=<optimized out>, flags=...) at kernel/qeventloop.cpp:149
#5  0x00007f35d10ecc2f in QEventLoop::exec (this=0x7f35af7fde20, flags=...) at kernel/qeventloop.cpp:201
#6  0x00007f35d10045df in QThread::exec (this=<optimized out>) at thread/qthread.cpp:498
#7  0x00007f35d1007025 in QThreadPrivate::start (arg=0xdde4b0) at thread/qthread_unix.cpp:331
#8  0x00007f35cda78f05 in start_thread (arg=0x7f35af7fe700) at pthread_create.c:301
#9  0x00007f35d362363d in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:115

Thread 4 (Thread 0x7f3562910700 (LWP 29171)):
#0  pthread_cond_wait@@GLIBC_2.3.2 () at ../nptl/sysdeps/unix/sysv/linux/x86_64/pthread_cond_wait.S:162
#1  0x00007f3562935c01 in queue_processor (data=0x9fd790) at /usr/src/debug/icedtea-web-1.1.3/plugin/icedteanp/IcedTeaPluginRequestProcessor.cc:782
#2  0x00007f35cda78f05 in start_thread (arg=0x7f3562910700) at pthread_create.c:301
#3  0x00007f35d362363d in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:115

Thread 3 (Thread 0x7f356210f700 (LWP 29172)):
#0  pthread_cond_wait@@GLIBC_2.3.2 () at ../nptl/sysdeps/unix/sysv/linux/x86_64/pthread_cond_wait.S:162
#1  0x00007f3562935c01 in queue_processor (data=0x9fd790) at /usr/src/debug/icedtea-web-1.1.3/plugin/icedteanp/IcedTeaPluginRequestProcessor.cc:782
#2  0x00007f35cda78f05 in start_thread (arg=0x7f356210f700) at pthread_create.c:301
#3  0x00007f35d362363d in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:115

Thread 2 (Thread 0x7f356190e700 (LWP 29173)):
#0  pthread_cond_wait@@GLIBC_2.3.2 () at ../nptl/sysdeps/unix/sysv/linux/x86_64/pthread_cond_wait.S:162
#1  0x00007f3562935c01 in queue_processor (data=0x9fd790) at /usr/src/debug/icedtea-web-1.1.3/plugin/icedteanp/IcedTeaPluginRequestProcessor.cc:782
#2  0x00007f35cda78f05 in start_thread (arg=0x7f356190e700) at pthread_create.c:301
#3  0x00007f35d362363d in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:115

Thread 1 (Thread 0x7f35d3d87760 (LWP 29107)):
[KCrash Handler]
#6  addCharactersToHash (b=) at ../../../Source/JavaScriptCore/wtf/StringHasher.h:163
#7  addCharacters (b=) at ../../../Source/JavaScriptCore/wtf/StringHasher.h:46
#8  computeHash<unsigned short, WTF::StringHasher::defaultCoverter> (length=<optimized out>, data=0x0) at ../../../Source/JavaScriptCore/wtf/StringHasher.h:98
#9  computeHash<unsigned short> (length=16, data=0x0) at ../../../Source/JavaScriptCore/wtf/StringHasher.h:130
#10 hash (this=0x7f35bf497280) at ../../../Source/JavaScriptCore/wtf/text/StringImpl.h:238
#11 hash (key=...) at ../../../Source/JavaScriptCore/wtf/text/StringHash.h:89
#12 hash (key=...) at ../../../Source/JavaScriptCore/wtf/HashTable.h:281
#13 add<WTF::String, WTF::String, WTF::IdentityHashTranslator<WTF::String, WTF::String, WTF::StringHash> > (extra=..., key=..., this=<optimized out>) at ../../../Source/JavaScriptCore/wtf/HashTable.h:646
#14 add (value=..., this=<optimized out>) at ../../../Source/JavaScriptCore/wtf/HashTable.h:319
#15 add (value=..., this=0x7f35bf48bd38) at ../../../Source/JavaScriptCore/wtf/HashSet.h:180
#16 WebCore::PluginDatabase::refresh (this=0x7f35bf48bd20) at ../../../Source/WebCore/plugins/PluginDatabase.cpp:165
#17 0x00007f35b65042bd in WebCore::PluginDatabase::installedPlugins (populate=<optimized out>) at ../../../Source/WebCore/plugins/PluginDatabase.cpp:71
#18 0x00007f35b60c61cf in WebPlatformStrategies::getPluginInfo (this=<optimized out>, page=<optimized out>, outPlugins=...) at ../../../../Source/WebKit/qt/WebCoreSupport/WebPlatformStrategies.cpp:117
#19 0x00007f35b6498f4d in WebCore::PluginData::PluginData (this=<optimized out>, page=<optimized out>) at ../../../Source/WebCore/plugins/PluginData.cpp:36
#20 0x00007f35b64841ea in create (page=0xdddf00) at ../../../Source/WebCore/plugins/PluginData.h:53
#21 WebCore::Page::pluginData (this=0xdddf00) at ../../../Source/WebCore/page/Page.cpp:444
#22 0x00007f35b6499239 in WebCore::DOMPluginArray::length (this=<optimized out>) at ../../../Source/WebCore/plugins/DOMPluginArray.cpp:42
#23 0x00007f35b5e7f4fd in WebCore::jsDOMPluginArrayLength (exec=<optimized out>, slotBase=<optimized out>) at ../../WebCore/generated/JSDOMPluginArray.cpp:212
#24 0x00007f35b6986f42 in getValue (propertyName=..., exec=0x7f35bf64c1f8, this=0x7fff3e719560) at ../../../Source/JavaScriptCore/runtime/PropertySlot.h:75
#25 JSC::cti_op_get_by_val (args=0x7fff3e7196c0) at ../../../Source/JavaScriptCore/jit/JITStubs.cpp:2354
#26 0x00007f356807a7a1 in ?? ()
#27 0x0000000000de34a0 in ?? ()
#28 0x00007f35bf61e370 in ?? ()
#29 0x00007f35bf633750 in ?? ()
#30 0x00007f35bf3b1950 in ?? ()
#31 0x00007f3568042703 in ?? ()
#32 0x0000000000000010 in ?? ()
#33 0x0000000000000000 in ?? ()

Reported using DrKonqi
Comment 1 nn.dm55 2012-03-11 18:44:16 UTC 
Created attachment 69508 [details]
This is the terminal output when Konqueror crashes.
Comment 2 nn.dm55 2012-03-11 18:47:21 UTC 
Created attachment 69509 [details]
This is the terminal output when Konqueror doesn't crash
Comment 3 Dawit Alemayehu 2012-03-12 01:37:58 UTC 
Cannot reproduce this crash. The backtrace essentially shows the issue to be an upstream QtWebKit bug. However, since you are using Qt 4.7.4 which comes with a very old and outdated version of QtWebKit, it is pointless to report it upstream. You need to update your Qt to 4.8 to get a recent version of QtWebKit (2.2 or higher) and see if you can reproduce the bug. If you can, feel free to report it upstream. See http://trac.webkit.org/wiki/QtWebKitBugs