Bug 300372

Summary: Konqueror crashes on browsing the Web with QtWebkit
Product: [Unmaintained] kdelibs Reporter: Christian Weilbach <christian_weilbach>
Component: kdewebkitAssignee: webkit-devel
Status: RESOLVED UPSTREAM    
Severity: crash CC: adawit
Priority: NOR    
Version: unspecified   
Target Milestone: ---   
Platform: Fedora RPMs   
OS: Linux   
Latest Commit: Version Fixed In:
Sentry Crash Report:

Description Christian Weilbach 2012-05-20 22:29:55 UTC 
Application: konqueror (4.8.3 (4.8.3))
KDE Platform Version: 4.8.3 (4.8.3)
Qt Version: 4.8.1
Operating System: Linux 3.3.4-5.fc17.x86_64 x86_64
Distribution: "Fedora release 17 (Beefy Miracle)"

-- Information about the crash:
- What I was doing when the application crashed:
I was browsing some sites with HTML5 videos embedded when the crash happened.

-- Backtrace:
Application: Konqueror (konqueror), signal: Segmentation fault
Using host libthread_db library "/lib64/libthread_db.so.1".
82	T_PSEUDO (SYSCALL_SYMBOL, SYSCALL_NAME, SYSCALL_NARGS)
[Current thread is 1 (Thread 0x7f367e371880 (LWP 24658))]

Thread 7 (Thread 0x7f3670839700 (LWP 24659)):
#0  pthread_cond_wait@@GLIBC_2.3.2 () at ../nptl/sysdeps/unix/sysv/linux/x86_64/pthread_cond_wait.S:166
#1  0x00000033eff7e685 in WTF::TCMalloc_PageHeap::scavengerThread (this=0x33f0952740) at ../../../Source/JavaScriptCore/wtf/FastMalloc.cpp:2495
#2  0x00000033eff7e6e9 in WTF::TCMalloc_PageHeap::runScavengerThread (context=<optimized out>) at ../../../Source/JavaScriptCore/wtf/FastMalloc.cpp:1618
#3  0x0000003aab807d14 in start_thread (arg=0x7f3670839700) at pthread_create.c:309
#4  0x0000003aab0f199d in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:115

Thread 6 (Thread 0x7f366ff38700 (LWP 24660)):
#0  0x0000003aab0e8eef in __GI___poll (fds=<optimized out>, nfds=<optimized out>, timeout=<optimized out>) at ../sysdeps/unix/sysv/linux/poll.c:87
#1  0x0000003aad447984 in g_main_context_poll (n_fds=1, fds=0x7f36680029c0, timeout=9577, context=0x7f36680009a0, priority=<optimized out>) at gmain.c:3417
#2  g_main_context_iterate (context=context@entry=0x7f36680009a0, block=block@entry=1, dispatch=dispatch@entry=1, self=<error reading variable: Unhandled dwarf expression opcode 0xfa>) at gmain.c:3118
#3  0x0000003aad447aa4 in g_main_context_iteration (context=0x7f36680009a0, may_block=1) at gmain.c:3184
#4  0x00000033e51a39e6 in QEventDispatcherGlib::processEvents (this=0x7f36680008c0, flags=...) at kernel/qeventdispatcher_glib.cpp:426
#5  0x00000033e517493f in QEventLoop::processEvents (this=this@entry=0x7f366ff37d20, flags=...) at kernel/qeventloop.cpp:149
#6  0x00000033e5174bc8 in QEventLoop::exec (this=0x7f366ff37d20, flags=...) at kernel/qeventloop.cpp:204
#7  0x00000033e50785a0 in QThread::exec (this=<optimized out>) at thread/qthread.cpp:501
#8  0x00000033e507b53b in QThreadPrivate::start (arg=0x235cd20) at thread/qthread_unix.cpp:298
#9  0x0000003aab807d14 in start_thread (arg=0x7f366ff38700) at pthread_create.c:309
#10 0x0000003aab0f199d in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:115

Thread 5 (Thread 0x7f3627fff700 (LWP 24720)):
#0  0x0000003aab0e8eef in __GI___poll (fds=<optimized out>, nfds=<optimized out>, timeout=<optimized out>) at ../sysdeps/unix/sysv/linux/poll.c:87
#1  0x0000003aad447984 in g_main_context_poll (n_fds=1, fds=0x7f3620002850, timeout=-1, context=0x7f36200009a0, priority=<optimized out>) at gmain.c:3417
#2  g_main_context_iterate (context=context@entry=0x7f36200009a0, block=block@entry=1, dispatch=dispatch@entry=1, self=<error reading variable: Unhandled dwarf expression opcode 0xfa>) at gmain.c:3118
#3  0x0000003aad447aa4 in g_main_context_iteration (context=0x7f36200009a0, may_block=1) at gmain.c:3184
#4  0x00000033e51a39e6 in QEventDispatcherGlib::processEvents (this=0x7f36200008c0, flags=...) at kernel/qeventdispatcher_glib.cpp:426
#5  0x00000033e517493f in QEventLoop::processEvents (this=this@entry=0x7f3627ffecf0, flags=...) at kernel/qeventloop.cpp:149
#6  0x00000033e5174bc8 in QEventLoop::exec (this=0x7f3627ffecf0, flags=...) at kernel/qeventloop.cpp:204
#7  0x00000033e50785a0 in QThread::exec (this=<optimized out>) at thread/qthread.cpp:501
#8  0x00000033ea7a118e in KIO::NameLookUpThread::run (this=0x563f220) at /usr/src/debug/kdelibs-4.8.3/kio/kio/hostinfo.cpp:226
#9  0x00000033e507b53b in QThreadPrivate::start (arg=0x563f220) at thread/qthread_unix.cpp:298
#10 0x0000003aab807d14 in start_thread (arg=0x7f3627fff700) at pthread_create.c:309
#11 0x0000003aab0f199d in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:115

Thread 4 (Thread 0x7f36277fe700 (LWP 24954)):
#0  pthread_cond_wait@@GLIBC_2.3.2 () at ../nptl/sysdeps/unix/sysv/linux/x86_64/pthread_cond_wait.S:166
#1  0x00007f36245a5603 in queue_processor(void*) () from /usr/lib64/IcedTeaPlugin.so
#2  0x0000003aab807d14 in start_thread (arg=0x7f36277fe700) at pthread_create.c:309
#3  0x0000003aab0f199d in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:115

Thread 3 (Thread 0x7f361f929700 (LWP 24955)):
#0  pthread_cond_wait@@GLIBC_2.3.2 () at ../nptl/sysdeps/unix/sysv/linux/x86_64/pthread_cond_wait.S:166
#1  0x00007f36245a5603 in queue_processor(void*) () from /usr/lib64/IcedTeaPlugin.so
#2  0x0000003aab807d14 in start_thread (arg=0x7f361f929700) at pthread_create.c:309
#3  0x0000003aab0f199d in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:115

Thread 2 (Thread 0x7f361f128700 (LWP 24956)):
#0  pthread_cond_wait@@GLIBC_2.3.2 () at ../nptl/sysdeps/unix/sysv/linux/x86_64/pthread_cond_wait.S:166
#1  0x00007f36245a5603 in queue_processor(void*) () from /usr/lib64/IcedTeaPlugin.so
#2  0x0000003aab807d14 in start_thread (arg=0x7f361f128700) at pthread_create.c:309
#3  0x0000003aab0f199d in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:115

Thread 1 (Thread 0x7f367e371880 (LWP 24658)):
[KCrash Handler]
#6  testAndSet (n=0, this=0x18) at ../../../Source/JavaScriptCore/wtf/Bitmap.h:85
#7  testAndSetMarked (p=0x0, this=0x0) at ../../../Source/JavaScriptCore/heap/MarkedBlock.h:204
#8  testAndSetMarked (cell=0x0) at ../../../Source/JavaScriptCore/heap/MarkedSpace.h:133
#9  testAndSetMarked (cell=0x0) at ../../../Source/JavaScriptCore/heap/Heap.h:153
#10 internalAppend (cell=0x0, this=0x7f366ff5dbc8) at ../../../Source/JavaScriptCore/runtime/Structure.h:300
#11 JSC::MarkStack::append (this=0x7f366ff5dbc8, conservativeRoots=...) at ../../../Source/JavaScriptCore/heap/MarkStack.cpp:54
#12 0x00000033effa0efa in JSC::Heap::markRoots (this=this@entry=0x7f366ff5d868) at ../../../Source/JavaScriptCore/heap/Heap.cpp:224
#13 0x00000033effa11c2 in reset (sweepToggle=JSC::Heap::DoNotSweep, this=0x7f366ff5d868) at ../../../Source/JavaScriptCore/heap/Heap.cpp:397
#14 JSC::Heap::allocateSlowCase (this=0x7f366ff5d868, bytes=64) at ../../../Source/JavaScriptCore/heap/Heap.cpp:122
#15 0x00000033f0005289 in allocate (bytes=64, this=0x7f366ff5d868) at ../../../Source/JavaScriptCore/runtime/JSCell.h:393
#16 operator new (globalData=0x7f366ff5c000, size=64) at ../../../Source/JavaScriptCore/runtime/JSCell.h:398
#17 jsOwnedString (s=..., globalData=0x7f366ff5c000) at ../../../Source/JavaScriptCore/runtime/JSString.h:531
#18 jsOwnedString (s=..., exec=0x7f366d4444c0) at ../../../Source/JavaScriptCore/runtime/JSString.h:540
#19 JSPropertyNameIterator (numCacheableSlots=<optimized out>, propertyNameArrayData=0x7f36106da900, exec=0x7f366d4444c0, this=0x7f36138695f0) at ../../../Source/JavaScriptCore/runtime/JSPropertyNameIterator.cpp:48
#20 JSC::JSPropertyNameIterator::create (exec=0x7f366d4444c0, o=0x7f36160d6810) at ../../../Source/JavaScriptCore/runtime/JSPropertyNameIterator.cpp:65
#21 0x00007f3628a5a93c in ?? ()
#22 0x0000000000000000 in ?? ()

Reported using DrKonqi
Comment 1 Dawit Alemayehu 2012-05-26 14:16:16 UTC 
This is an upstream issue and needs to be reported there. See http://trac.webkit.org/wiki/QtWebKitBugs