Bug 318001

Summary: TilldlyWiki javascript causes crash.
Product: [Frameworks and Libraries] kwebkitpart Reporter: Anton Aylward <anton.aylward>
Component: generalAssignee: webkit-devel
Status: RESOLVED WORKSFORME    
Severity: crash CC: adawit
Priority: NOR Keywords: triaged
Version: unspecified   
Target Milestone: ---   
Platform: openSUSE   
OS: Linux   
Latest Commit: Version Fixed In:
Sentry Crash Report:

Description Anton Aylward 2013-04-08 00:21:53 UTC
Application: konqueror (4.10.2 "release 553")
KDE Platform Version: 4.10.2 "release 553"
Qt Version: 4.8.4
Operating System: Linux 3.4.33-2.24-default i686
Distribution: "openSUSE 12.2 (i586)"

-- Information about the crash:
I've opened this Tiddlywiki file in Firefox with no problems.
With Konqueror ther is a long, long delay (about 3 minutes) then crash.

-- Backtrace:
Application: Konqueror (kdeinit4), signal: Segmentation fault
Using host libthread_db library "/lib/libthread_db.so.1".
[Current thread is 1 (Thread 0xb5430740 (LWP 4549))]

Thread 8 (Thread 0xae309b40 (LWP 4899)):
#0  0xb6b96adf in read () from /lib/libpthread.so.0
#1  0xb5928c7e in ?? () from /usr/lib/libglib-2.0.so.0
#2  0xb58e9622 in g_main_context_check () from /usr/lib/libglib-2.0.so.0
#3  0xb58e9a82 in ?? () from /usr/lib/libglib-2.0.so.0
#4  0xb58e9c51 in g_main_context_iteration () from /usr/lib/libglib-2.0.so.0
#5  0xb6d5766f in QEventDispatcherGlib::processEvents (this=0xada00468, flags=...) at kernel/qeventdispatcher_glib.cpp:426
#6  0xb6d2414c in QEventLoop::processEvents (this=this@entry=0xae309228, flags=...) at kernel/qeventloop.cpp:149
#7  0xb6d24441 in QEventLoop::exec (this=0xae309228, flags=...) at kernel/qeventloop.cpp:204
#8  0xb6c0fb5c in QThread::exec (this=0x9a07668) at thread/qthread.cpp:542
#9  0xb6d0269d in QInotifyFileSystemWatcherEngine::run (this=0x9a07668) at io/qfilesystemwatcher_inotify.cpp:256
#10 0xb6c12f68 in QThreadPrivate::start (arg=0x9a07668) at thread/qthread_unix.cpp:338
#11 0xb6b8fe32 in start_thread () from /lib/libpthread.so.0
#12 0xb5efe7ee in clone () from /lib/libc.so.6

Thread 7 (Thread 0xad6e9b40 (LWP 7425)):
#0  0xb770a430 in __kernel_vsyscall ()
#1  0xb6b93a4c in pthread_cond_wait@@GLIBC_2.3.2 () from /lib/libpthread.so.0
#2  0xb3eb930d in WTF::TCMalloc_PageHeap::scavengerThread (this=this@entry=0xb464fda0 <WTF::pageheap_memory>) at ../../../Source/JavaScriptCore/wtf/FastMalloc.cpp:2495
#3  0xb3eb933f in WTF::TCMalloc_PageHeap::runScavengerThread (context=0xb464fda0 <WTF::pageheap_memory>) at ../../../Source/JavaScriptCore/wtf/FastMalloc.cpp:1618
#4  0xb6b8fe32 in start_thread () from /lib/libpthread.so.0
#5  0xb5efe7ee in clone () from /lib/libc.so.6

Thread 6 (Thread 0xac4c4b40 (LWP 7426)):
#0  0xb599fe3d in clock_gettime () from /lib/librt.so.1
#1  0xb6c71965 in do_gettime (frac=0xac4c3fb0, sec=0xac4c3fa8) at tools/qelapsedtimer_unix.cpp:123
#2  qt_gettime () at tools/qelapsedtimer_unix.cpp:140
#3  0xb6d5814e in QTimerInfoList::updateCurrentTime (this=0x970ddec) at kernel/qeventdispatcher_unix.cpp:354
#4  0x0970df70 in ?? ()
Backtrace stopped: previous frame inner to this frame (corrupt stack?)

Thread 5 (Thread 0xaa986b40 (LWP 21618)):
#0  0xb770a430 in __kernel_vsyscall ()
#1  0xb6b93a4c in pthread_cond_wait@@GLIBC_2.3.2 () from /lib/libpthread.so.0
#2  0xae389b18 in queue_processor (data=0x94bfd78) at /usr/src/debug/icedtea-web-1.3.1/plugin/icedteanp/IcedTeaPluginRequestProcessor.cc:727
#3  0xb6b8fe32 in start_thread () from /lib/libpthread.so.0
#4  0xb5efe7ee in clone () from /lib/libc.so.6

Thread 4 (Thread 0xaa185b40 (LWP 21619)):
#0  0xb770a430 in __kernel_vsyscall ()
#1  0xb6b93a4c in pthread_cond_wait@@GLIBC_2.3.2 () from /lib/libpthread.so.0
#2  0xae389b18 in queue_processor (data=0x94bfd78) at /usr/src/debug/icedtea-web-1.3.1/plugin/icedteanp/IcedTeaPluginRequestProcessor.cc:727
#3  0xb6b8fe32 in start_thread () from /lib/libpthread.so.0
#4  0xb5efe7ee in clone () from /lib/libc.so.6

Thread 3 (Thread 0xa9984b40 (LWP 21620)):
#0  0xb770a430 in __kernel_vsyscall ()
#1  0xb6b93a4c in pthread_cond_wait@@GLIBC_2.3.2 () from /lib/libpthread.so.0
#2  0xae389b18 in queue_processor (data=0x94bfd78) at /usr/src/debug/icedtea-web-1.3.1/plugin/icedteanp/IcedTeaPluginRequestProcessor.cc:727
#3  0xb6b8fe32 in start_thread () from /lib/libpthread.so.0
#4  0xb5efe7ee in clone () from /lib/libc.so.6

Thread 2 (Thread 0xa7701b40 (LWP 21634)):
#0  0xb6b965c0 in __pthread_disable_asynccancel () from /lib/libpthread.so.0
#1  0xb6b96ae4 in read () from /lib/libpthread.so.0
#2  0xb5928c7e in ?? () from /usr/lib/libglib-2.0.so.0
#3  0xb58e9622 in g_main_context_check () from /usr/lib/libglib-2.0.so.0
#4  0xb58e9a82 in ?? () from /usr/lib/libglib-2.0.so.0
#5  0xb58e9c51 in g_main_context_iteration () from /usr/lib/libglib-2.0.so.0
#6  0xb58e9cbe in ?? () from /usr/lib/libglib-2.0.so.0
#7  0xb590e0a3 in ?? () from /usr/lib/libglib-2.0.so.0
#8  0xb6b8fe32 in start_thread () from /lib/libpthread.so.0
#9  0xb5efe7ee in clone () from /lib/libc.so.6

Thread 1 (Thread 0xb5430740 (LWP 4549)):
[KCrash Handler]
#7  get (this=0x3ff00004) at ../../../Source/JavaScriptCore/wtf/RefPtr.h:60
#8  focusedFrame (this=0x3ff00000) at ../../../Source/WebCore/page/FocusController.h:49
#9  WebCore::FocusController::focusedOrMainFrame (this=0x3ff00000) at ../../../Source/WebCore/page/FocusController.cpp:123
#10 0xb352518e in QWebPagePrivate::handleClipboard (this=this@entry=0xa43e7b8, ev=ev@entry=0xbfa4c394, button=Qt::LeftButton) at ../../../../Source/WebKit/qt/Api/qwebpage.cpp:766
#11 0xb3525367 in QWebPagePrivate::mouseReleaseEvent<QMouseEvent> (this=0xa43e7b8, ev=ev@entry=0xbfa4c394) at ../../../../Source/WebKit/qt/Api/qwebpage.cpp:798
#12 0xb352b64c in QWebPage::event (this=0xa43e738, ev=0xbfa4c394) at ../../../../Source/WebKit/qt/Api/qwebpage.cpp:3061
#13 0xb352e58a in QWebView::mouseReleaseEvent (this=0xa299350, ev=0xbfa4c394) at ../../../../Source/WebKit/qt/Api/qwebview.cpp:1028
#14 0xb2775a7c in KWebView::mouseReleaseEvent (this=0xa299350, event=0xbfa4c394) at /usr/src/debug/kdelibs-4.10.2/kdewebkit/kwebview.cpp:80
#15 0xace46695 in WebView::mouseReleaseEvent (this=0xa299350, e=0xbfa4c394) at /usr/src/debug/kwebkitpart-1.3.2/src/webview.cpp:349
#16 0xb624d8c4 in QWidget::event (this=0xa299350, event=0xbfa4c394) at kernel/qwidget.cpp:8375
#17 0xb352eb2f in QWebView::event (this=0xa299350, e=0xbfa4c394) at ../../../../Source/WebKit/qt/Api/qwebview.cpp:865
#18 0xb61f3b9c in QApplicationPrivate::notify_helper (this=0x90ecc40, receiver=0xa299350, e=0xbfa4c394) at kernel/qapplication.cpp:4562
#19 0xb61f9089 in QApplication::notify (this=0x90ecc40, receiver=0xa299350, e=0xbfa4c394) at kernel/qapplication.cpp:4105
#20 0xb74980f1 in KApplication::notify (this=0xbfa4fc44, receiver=0xa299350, event=0xbfa4c394) at /usr/src/debug/kdelibs-4.10.2/kdeui/kernel/kapplication.cpp:311
#21 0xb6d2567e in QCoreApplication::notifyInternal (this=0xbfa4fc44, receiver=0xa299350, event=0xbfa4c394) at kernel/qcoreapplication.cpp:946
#22 0xb61f49ff in sendEvent (event=<optimized out>, receiver=<optimized out>) at ../../src/corelib/kernel/qcoreapplication.h:231
#23 QApplicationPrivate::sendMouseEvent (receiver=0xa299350, event=0xbfa4c394, alienWidget=0x0, nativeWidget=0xa299350, buttonDown=0xb6b85cb4 <qt_button_down>, lastMouseReceiver=..., spontaneous=true) at kernel/qapplication.cpp:3173
#24 0xb627d145 in QETWidget::translateMouseEvent (this=0xa299350, event=0xbfa4c7bc) at kernel/qapplication_x11.cpp:4527
#25 0xb627bc09 in QApplication::x11ProcessEvent (this=0xbfa4fc44, event=0xbfa4c7bc) at kernel/qapplication_x11.cpp:3650
#26 0xb62a58a4 in x11EventSourceDispatch (s=0x90ef0a8, callback=0x0, user_data=0x0) at kernel/qguieventdispatcher_glib.cpp:146
#27 0xb58e97d3 in g_main_context_dispatch () from /usr/lib/libglib-2.0.so.0
#28 0xb58e9b70 in ?? () from /usr/lib/libglib-2.0.so.0
#29 0xb58e9c51 in g_main_context_iteration () from /usr/lib/libglib-2.0.so.0
#30 0xae37ddd6 in JavaRequestProcessor::postAndWaitForResponse (this=this@entry=0xbfa4ca7c, message=...) at /usr/src/debug/icedtea-web-1.3.1/plugin/icedteanp/IcedTeaJavaRequestProcessor.cc:273
#31 0xae3818b4 in JavaRequestProcessor::getAppletObjectInstance (this=0xbfa4ca7c, instanceID=...) at /usr/src/debug/icedtea-web-1.3.1/plugin/icedteanp/IcedTeaJavaRequestProcessor.cc:1413
#32 0xae377376 in get_scriptable_object (instance=instance@entry=0xab51fa7c) at /usr/src/debug/icedtea-web-1.3.1/plugin/icedteanp/IcedTeaNPPlugin.cc:2539
#33 0xae377824 in ITNP_GetValue (instance=0xab51fa7c, variable=NPPVpluginScriptableNPObject, value=0xbfa4cb14) at /usr/src/debug/icedtea-web-1.3.1/plugin/icedteanp/IcedTeaNPPlugin.cc:680
#34 0xb3a0e01d in WebCore::PluginView::npObject (this=this@entry=0xab51f900) at ../../../Source/WebCore/plugins/PluginView.cpp:754
#35 0xb3a0e26a in WebCore::PluginView::bindingInstance (this=0xab51f900) at ../../../Source/WebCore/plugins/PluginView.cpp:770
#36 0xb3d3a03c in WebCore::ScriptController::createScriptInstanceForWidget (this=0xacd20ad8, widget=0xab51f900) at ../../../Source/WebCore/bindings/js/ScriptControllerQt.cpp:53
#37 0xacd20ad8 in ?? ()
Backtrace stopped: previous frame inner to this frame (corrupt stack?)

Reported using DrKonqi
Comment 1 Dawit Alemayehu 2013-04-24 00:03:44 UTC
Did you forget to include a link to TiddlyWiki file you were opening ?

"I've opened this Tiddlywiki file in Firefox with no problems."
Comment 2 Andrew Crouthamel 2018-09-24 01:56:50 UTC
Dear Bug Submitter,

This bug has been in NEEDSINFO status with no change for at least 15 days. Please provide the requested information as soon as possible and set the bug status as REPORTED. Due to regular bug tracker maintenance, if the bug is still in NEEDSINFO status with no change in 30 days, the bug will be closed as RESOLVED > WORKSFORME due to lack of needed information.

For more information about our bug triaging procedures please read the wiki located here: https://community.kde.org/Guidelines_and_HOWTOs/Bug_triaging

If you have already provided the requested information, please set the bug status as REPORTED so that the KDE team knows that the bug is ready to be confirmed.

Thank you for helping us make KDE software even better for everyone!
Comment 3 Anton Aylward 2018-09-24 02:14:40 UTC
The original file contained proprietary information.

I'll see if I can get a reduced/final example.
Comment 4 Andrew Crouthamel 2018-10-27 04:03:54 UTC
Dear Bug Submitter,

This bug has been in NEEDSINFO status with no change for at least 30 days. The bug is now closed as RESOLVED > WORKSFORME due to lack of needed information.

For more information about our bug triaging procedures please read the wiki located here: https://community.kde.org/Guidelines_and_HOWTOs/Bug_triaging

Thank you for helping us make KDE software even better for everyone!