Bug 325557

Summary: Konqueror dies when clicking on link
Product: [Applications] konqueror Reporter: Craig Lillie <cslillie>
Component: khtmlAssignee: Konqueror Bugs <konqueror-bugs-null>
Status: RESOLVED DUPLICATE    
Severity: crash CC: aiacovitti, awilfox, jlp, kde
Priority: NOR Keywords: drkonqi
Version First Reported In: 4.10.5   
Target Milestone: ---   
Platform: Ubuntu   
OS: Linux   
Latest Commit: Version Fixed/Implemented In:
Sentry Crash Report:
Attachments: New crash information added by DrKonqi

Description Craig Lillie 2013-10-02 17:50:57 UTC 
Application: konqueror (4.10.5)
KDE Platform Version: 4.10.5
Qt Version: 4.8.4
Operating System: Linux 3.8.0-32-generic i686
Distribution: Ubuntu 13.04

-- Information about the crash:
- What I was doing when the application crashed:

Clicked on this link: http://www.news-leader.com/section/Comics

The crash can be reproduced every time.

-- Backtrace:
Application: Konqueror (konqueror), signal: Segmentation fault
Using host libthread_db library "/lib/i386-linux-gnu/libthread_db.so.1".
[Current thread is 1 (Thread 0xb4b4a740 (LWP 2726))]

Thread 3 (Thread 0xae3b1b40 (LWP 2863)):
#0  0xb5236e2f in __GI___pthread_mutex_lock (mutex=0xada02348) at pthread_mutex_lock.c:116
#1  0xb7529f84 in pthread_mutex_lock (mutex=0xada02348) at forward.c:192
#2  0xb519fd30 in g_mutex_lock () from /lib/i386-linux-gnu/libglib-2.0.so.0
#3  0xb515b8a2 in g_main_context_release () from /lib/i386-linux-gnu/libglib-2.0.so.0
#4  0xb515c678 in ?? () from /lib/i386-linux-gnu/libglib-2.0.so.0
#5  0xb515c831 in g_main_context_iteration () from /lib/i386-linux-gnu/libglib-2.0.so.0
#6  0xb5b6dc3f in QEventDispatcherGlib::processEvents (this=0xada026f8, flags=...) at kernel/qeventdispatcher_glib.cpp:426
#7  0xb5b3a3ec in QEventLoop::processEvents (this=this@entry=0xae3b1238, flags=...) at kernel/qeventloop.cpp:149
#8  0xb5b3a6e1 in QEventLoop::exec (this=this@entry=0xae3b1238, flags=...) at kernel/qeventloop.cpp:204
#9  0xb5a25fec in QThread::exec (this=this@entry=0xba9dd10) at thread/qthread.cpp:542
#10 0xb70380ef in KIO::NameLookUpThread::run (this=0xba9dd10) at ../../kio/kio/hostinfo.cpp:226
#11 0xb5a28b18 in QThreadPrivate::start (arg=0xba9dd10) at thread/qthread_unix.cpp:338
#12 0xb5234d78 in start_thread (arg=0xae3b1b40) at pthread_create.c:311
#13 0xb751c3de in clone () at ../sysdeps/unix/sysv/linux/i386/clone.S:131

Thread 2 (Thread 0xac521b40 (LWP 3262)):
#0  0xb76e7424 in __kernel_vsyscall ()
#1  0xb752f8e2 in clock_gettime (clock_id=1, tp=0xac520f68) at ../sysdeps/unix/clock_gettime.c:115
#2  0xb5a870d5 in do_gettime (frac=0xac520f60, sec=0xac520f58) at tools/qelapsedtimer_unix.cpp:123
#3  qt_gettime () at tools/qelapsedtimer_unix.cpp:140
#4  0xb5b6e80e in QTimerInfoList::updateCurrentTime (this=this@entry=0xb1f8874) at kernel/qeventdispatcher_unix.cpp:354
#5  0xb5b6eb9a in QTimerInfoList::timerWait (this=0xb1f8874, tm=...) at kernel/qeventdispatcher_unix.cpp:461
#6  0xb5b6d373 in timerSourcePrepareHelper (src=<optimized out>, timeout=0xac52108c) at kernel/qeventdispatcher_glib.cpp:136
#7  0xb5b6d40d in timerSourcePrepare (source=0xb1f8840, timeout=0xac52108c) at kernel/qeventdispatcher_glib.cpp:169
#8  0xb515bd21 in g_main_context_prepare () from /lib/i386-linux-gnu/libglib-2.0.so.0
#9  0xb515c5cf in ?? () from /lib/i386-linux-gnu/libglib-2.0.so.0
#10 0xb515c831 in g_main_context_iteration () from /lib/i386-linux-gnu/libglib-2.0.so.0
#11 0xb5b6dc3f in QEventDispatcherGlib::processEvents (this=0xa8b4138, flags=...) at kernel/qeventdispatcher_glib.cpp:426
#12 0xb5b3a3ec in QEventLoop::processEvents (this=this@entry=0xac521228, flags=...) at kernel/qeventloop.cpp:149
#13 0xb5b3a6e1 in QEventLoop::exec (this=this@entry=0xac521228, flags=...) at kernel/qeventloop.cpp:204
#14 0xb5a25fec in QThread::exec (this=this@entry=0xb1bb4a0) at thread/qthread.cpp:542
#15 0xb5b19f2d in QInotifyFileSystemWatcherEngine::run (this=0xb1bb4a0) at io/qfilesystemwatcher_inotify.cpp:256
#16 0xb5a28b18 in QThreadPrivate::start (arg=0xb1bb4a0) at thread/qthread_unix.cpp:338
#17 0xb5234d78 in start_thread (arg=0xac521b40) at pthread_create.c:311
#18 0xb751c3de in clone () at ../sysdeps/unix/sysv/linux/i386/clone.S:131

Thread 1 (Thread 0xb4b4a740 (LWP 2726)):
[KCrash Handler]
#7  khtml::HTMLTokenizer::scriptHandler (this=0xdaa2e58) at ../../khtml/html/htmltokenizer.cpp:485
#8  0xb1146a95 in khtml::HTMLTokenizer::parseRawContent (this=0xdaa2e58, src=...) at ../../khtml/html/htmltokenizer.cpp:379
#9  0xb11494ca in khtml::HTMLTokenizer::parseTag (this=0xdaa2e58, src=...) at ../../khtml/html/htmltokenizer.cpp:1528
#10 0xb114a47b in khtml::HTMLTokenizer::write (this=0xdaa2e58, str=..., appendData=false) at ../../khtml/html/htmltokenizer.cpp:1795
#11 0xb10ea692 in DOM::DocumentImpl::write (this=0xe443c80, text=...) at ../../khtml/xml/dom_docimpl.cpp:1687
#12 0xb12cb6df in KJS::HTMLDocFunction::callAsFunction (this=0xaf999e60, exec=0xbfdf4fbc, thisObj=0x1, args=...) at ../../khtml/ecma/kjs_html.cpp:135
#13 0xb0e69cad in call (args=..., thisObj=<optimized out>, exec=<optimized out>, this=<optimized out>) at ../../kjs/object.h:614
#14 KJS::Machine::runBlock (exec=0xbfdf4fbc, codeBlock=..., parentExec=0xbfdf524c) at codes.def:1223
#15 0xb0e4c9c4 in KJS::FunctionImp::callAsFunction (this=0xaf999ee0, exec=0xbfdf524c, thisObj=0xb1af0000, args=...) at ../../kjs/function.cpp:171
#16 0xb0e69cad in call (args=..., thisObj=<optimized out>, exec=<optimized out>, this=<optimized out>) at ../../kjs/object.h:614
#17 KJS::Machine::runBlock (exec=0xbfdf524c, codeBlock=..., parentExec=0xbfdf54dc) at codes.def:1223
#18 0xb0e4c9c4 in KJS::FunctionImp::callAsFunction (this=0xafc01ca0, exec=0xbfdf54dc, thisObj=0xb1af0000, args=...) at ../../kjs/function.cpp:171
#19 0xb0e69cad in call (args=..., thisObj=<optimized out>, exec=<optimized out>, this=<optimized out>) at ../../kjs/object.h:614
#20 KJS::Machine::runBlock (exec=0xbfdf54dc, codeBlock=..., parentExec=0xbfdf576c) at codes.def:1223
#21 0xb0e4c9c4 in KJS::FunctionImp::callAsFunction (this=0xafc01d80, exec=0xbfdf576c, thisObj=0xb1af0000, args=...) at ../../kjs/function.cpp:171
#22 0xb0e69cad in call (args=..., thisObj=<optimized out>, exec=<optimized out>, this=<optimized out>) at ../../kjs/object.h:614
#23 KJS::Machine::runBlock (exec=0xbfdf576c, codeBlock=..., parentExec=0xbfdf5a7c) at codes.def:1223
#24 0xb0e4c9c4 in KJS::FunctionImp::callAsFunction (this=0xafc01dc0, exec=0xbfdf5a7c, thisObj=0xafc02660, args=...) at ../../kjs/function.cpp:171
#25 0xb0e69cad in call (args=..., thisObj=<optimized out>, exec=<optimized out>, this=<optimized out>) at ../../kjs/object.h:614
#26 KJS::Machine::runBlock (exec=0xbfdf5a7c, codeBlock=..., parentExec=0x0) at codes.def:1223
#27 0xb0e24eb7 in KJS::FunctionBodyNode::execute (this=this@entry=0xa9ebb70, exec=exec@entry=0xbfdf5a7c) at ../../kjs/nodes.cpp:927
#28 0xb0e549f4 in KJS::Interpreter::evaluate (this=this@entry=0xa02fb38, sourceURL=..., startingLineNumber=startingLineNumber@entry=0, code=0xd117e98, codeLength=6142, thisV=thisV@entry=0xb1af0000) at ../../kjs/interpreter.cpp:567
#29 0xb0e54c2b in KJS::Interpreter::evaluate (this=0xa02fb38, sourceURL=..., startingLineNumber=startingLineNumber@entry=0, code=..., thisV=thisV@entry=0xb1af0000) at ../../kjs/interpreter.cpp:507
#30 0xb12f612e in KJSProxy::evaluate (this=0x9e42db8, filename=..., baseLine=0, str=..., n=..., completion=0xbfdf5c48) at ../../khtml/ecma/kjs_proxy.cpp:126
#31 0xb1074421 in KHTMLPart::executeScript (this=0x9e92c18, filename=..., baseLine=-1, n=..., script=...) at ../../khtml/khtml_part.cpp:1288
#32 0xb114409b in khtml::HTMLTokenizer::scriptExecution (this=0xaf5ec98, str=..., scriptURL=..., baseLine=0) at ../../khtml/html/htmltokenizer.cpp:517
#33 0xb1144414 in khtml::HTMLTokenizer::notifyFinished (this=0xaf5ec98, finishedObj=0xa7af450) at ../../khtml/html/htmltokenizer.cpp:2114
#34 0xb126d99f in khtml::CachedScript::checkNotify (this=0xa7af450) at ../../khtml/misc/loader.cpp:397
#35 0xb126f204 in khtml::CachedScript::data (this=0xa7af450, buffer=..., eof=true) at ../../khtml/misc/loader.cpp:389
#36 0xb1273b33 in khtml::Loader::slotFinished (this=0x9ea9180, job=0xdb77940) at ../../khtml/misc/loader.cpp:1273
#37 0xb5b51b56 in QMetaObject::activate (sender=sender@entry=0xdb77940, m=m@entry=0xb5f6d46c <KJob::staticMetaObject>, local_signal_index=local_signal_index@entry=3, argv=argv@entry=0xbfdf6008) at kernel/qobject.cpp:3539
#38 0xb5db5985 in KJob::result (this=this@entry=0xdb77940, _t1=_t1@entry=0xdb77940) at ./kjob.moc:208
#39 0xb5db59d8 in KJob::emitResult (this=this@entry=0xdb77940) at ../../kdecore/jobs/kjob.cpp:318
#40 0xb6f7ffcd in KIO::SimpleJob::slotFinished (this=this@entry=0xdb77940) at ../../kio/kio/job.cpp:494
#41 0xb6f8051d in KIO::TransferJob::slotFinished (this=0xdb77940) at ../../kio/kio/job.cpp:1081
#42 0xb6f7e828 in qt_static_metacall (_a=0xbfdf622c, _id=7, _o=0xdb77940, _c=<optimized out>) at ./jobclasses.moc:388
#43 KIO::TransferJob::qt_static_metacall (_o=0xdb77940, _c=QMetaObject::InvokeMetaMethod, _id=7, _a=0xbfdf622c) at ./jobclasses.moc:375
#44 0xb5b51b56 in QMetaObject::activate (sender=sender@entry=0xba900e8, m=m@entry=0xb7152480 <KIO::SlaveInterface::staticMetaObject>, local_signal_index=local_signal_index@entry=4, argv=argv@entry=0x0) at kernel/qobject.cpp:3539
#45 0xb7029f15 in KIO::SlaveInterface::finished (this=this@entry=0xba900e8) at ./slaveinterface.moc:185
#46 0xb702d413 in KIO::SlaveInterface::dispatch (this=0xba900e8, _cmd=104, rawdata=...) at ../../kio/kio/slaveinterface.cpp:172
#47 0xb7029c4a in KIO::SlaveInterface::dispatch (this=0xba900e8) at ../../kio/kio/slaveinterface.cpp:88
#48 0xb701cb18 in KIO::Slave::gotInput (this=this@entry=0xba900e8) at ../../kio/kio/slave.cpp:344
#49 0xb701d174 in KIO::Slave::qt_static_metacall (_o=0xba900e8, _c=QMetaObject::InvokeMetaMethod, _id=2, _a=0xbfdf64dc) at ./slave.moc:57
#50 0xb5b51b56 in QMetaObject::activate (sender=sender@entry=0xba84768, m=m@entry=0xb714f110 <KIO::Connection::staticMetaObject>, local_signal_index=local_signal_index@entry=0, argv=argv@entry=0x0) at kernel/qobject.cpp:3539
#51 0xb6f43c65 in KIO::Connection::readyRead (this=0xba84768) at ./connection.moc:106
#52 0xb6f44248 in dequeue (this=<optimized out>) at ../../kio/kio/connection.cpp:82
#53 KIO::ConnectionPrivate::dequeue (this=0x9e36048) at ../../kio/kio/connection.cpp:71
#54 0xb5b4db4a in QMetaCallEvent::placeMetaCall (this=0xa71ca20, object=0xba84768) at kernel/qobject.cpp:524
#55 0xb5b5748b in QObject::event (this=0xba84768, e=0xa71ca20) at kernel/qobject.cpp:1194
#56 0xb60afc7c in QApplicationPrivate::notify_helper (this=0x9c8ea88, receiver=0xba84768, e=0xa71ca20) at kernel/qapplication.cpp:4567
#57 0xb60b2b94 in QApplication::notify (this=0xa71ca20, receiver=0xba84768, e=0xa71ca20) at kernel/qapplication.cpp:3949
#58 0xb6c29491 in KApplication::notify (this=0xbfdf6de8, receiver=0xba84768, event=0xa71ca20) at ../../kdeui/kernel/kapplication.cpp:311
#59 0xb5b3b90e in QCoreApplication::notifyInternal (this=0xbfdf6de8, receiver=0xba84768, event=0xa71ca20) at kernel/qcoreapplication.cpp:946
#60 0xb5b3f721 in sendEvent (event=<optimized out>, receiver=<optimized out>) at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:231
#61 QCoreApplicationPrivate::sendPostedEvents (receiver=0x0, event_type=0, data=0x9c61370) at kernel/qcoreapplication.cpp:1570
#62 0xb5b3fa8c in QCoreApplication::sendPostedEvents (receiver=receiver@entry=0x0, event_type=event_type@entry=0) at kernel/qcoreapplication.cpp:1463
#63 0xb5b6daa4 in sendPostedEvents () at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:236
#64 postEventSourceDispatch (s=0x9c8a928) at kernel/qeventdispatcher_glib.cpp:279
#65 0xb515c3b3 in g_main_context_dispatch () from /lib/i386-linux-gnu/libglib-2.0.so.0
#66 0xb515c750 in ?? () from /lib/i386-linux-gnu/libglib-2.0.so.0
#67 0xb515c831 in g_main_context_iteration () from /lib/i386-linux-gnu/libglib-2.0.so.0
#68 0xb5b6dc21 in QEventDispatcherGlib::processEvents (this=this@entry=0x9c61ef8, flags=...) at kernel/qeventdispatcher_glib.cpp:424
#69 0xb6166a0a in QGuiEventDispatcherGlib::processEvents (this=0x9c61ef8, flags=...) at kernel/qguieventdispatcher_glib.cpp:204
#70 0xb5b3a3ec in QEventLoop::processEvents (this=this@entry=0xbfdf6cb8, flags=...) at kernel/qeventloop.cpp:149
#71 0xb5b3a6e1 in QEventLoop::exec (this=this@entry=0xbfdf6cb8, flags=...) at kernel/qeventloop.cpp:204
#72 0xb5b403fa in QCoreApplication::exec () at kernel/qcoreapplication.cpp:1218
#73 0xb60adfc4 in QApplication::exec () at kernel/qapplication.cpp:3828
#74 0xb76b1f8c in kdemain (argc=2, argv=0xbfdf6ff4) at ../../../konqueror/src/konqmain.cpp:242
#75 0x0804855b in main (argc=2, argv=0xbfdf6ff4) at konqueror_dummy.cpp:3

Possible duplicates by query: bug 322430, bug 314895, bug 308365.

Reported using DrKonqi
Comment 1 Jekyll Wu 2013-10-03 01:14:09 UTC 
Strange, can't reproduce with the given link
Comment 2 Rolf Eike Beer 2014-03-05 17:35:40 UTC 
Created attachment 85427 [details]
New crash information added by DrKonqi

kontact (4.12.2) on KDE Platform 4.12.2 using Qt 4.8.5

Happened to me when opening a new tab in akregator.

-- Backtrace (Reduced):
#7  0x00007f8a16a0f264 in khtml::HTMLTokenizer::scriptHandler (this=this@entry=0x1a025620) at /usr/src/debug/kdelibs-4.12.2/khtml/html/htmltokenizer.cpp:486
#8  0x00007f8a16a10891 in khtml::HTMLTokenizer::parseRawContent (this=this@entry=0x1a025620, src=...) at /usr/src/debug/kdelibs-4.12.2/khtml/html/htmltokenizer.cpp:379
#9  0x00007f8a16a13611 in khtml::HTMLTokenizer::parseTag (this=this@entry=0x1a025620, src=...) at /usr/src/debug/kdelibs-4.12.2/khtml/html/htmltokenizer.cpp:1528
#10 0x00007f8a16a14067 in khtml::HTMLTokenizer::write (this=0x1a025620, str=..., appendData=<optimized out>) at /usr/src/debug/kdelibs-4.12.2/khtml/html/htmltokenizer.cpp:1795
#11 0x00007f8a169bb21f in DOM::DocumentImpl::write (this=this@entry=0x2185d830, text=...) at /usr/src/debug/kdelibs-4.12.2/khtml/xml/dom_docimpl.cpp:1687
Comment 4 Andrea Iacovitti 2014-06-27 09:53:28 UTC 
*** Bug 336534 has been marked as a duplicate of this bug. ***
Comment 5 Andrea Iacovitti 2014-06-27 10:01:09 UTC 

*** This bug has been marked as a duplicate of bug 209107 ***