Bug 180899 - Konqueror crashes on Wikimedia Commons when opening a SVG document
Summary: Konqueror crashes on Wikimedia Commons when opening a SVG document
Status: RESOLVED DUPLICATE of bug 185555
Alias: None
Product: konqueror
Classification: Applications
Component: general (show other bugs)
Version: unspecified
Platform: Compiled Sources Unspecified
: NOR crash
Target Milestone: ---
Assignee: Konqueror Developers
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2009-01-15 23:36 UTC by Stefan Majewsky
Modified: 2009-05-18 23:59 UTC (History)
2 users (show)

See Also:
Latest Commit:
Version Fixed In:

Attachments
Add an attachment

Note You need to log in before you can comment on or make changes to this bug.
Description Stefan Majewsky 2009-01-15 23:36:04 UTC 
Version:            (using Devel)
Installed from:    Compiled sources

To reproduce, go to the following site and click on the preview of the SVG document to open it:

http://commons.wikimedia.org/wiki/Image:Wikimedia-servers-2008-11-10.svg

On this 4.1.96 setup, Konqueror crashes immediately with the following backtrace:

Anwendung: Konqueror (konqueror), Signal SIGSEGV
[?1034h[Thread debugging using libthread_db enabled]
[Current thread is 0 (LWP 24971)]

Thread 3 (Thread 0xb004db90 (LWP 25068)):
#0  0xffffe430 in __kernel_vsyscall ()
#1  0xb7353f42 in pthread_cond_timedwait@@GLIBC_2.3.2 () from /lib/libpthread.so.0
#2  0xb73b183c in QWaitCondition::wait (this=0x91cf228, mutex=0x91cf224, time=30000) at thread/qwaitcondition_unix.cpp:80
#3  0xb73a695e in QThreadPoolThread::run (this=0x91dc528) at concurrent/qthreadpool.cpp:135
#4  0xb73b084e in QThreadPrivate::start (arg=0x91dc528) at thread/qthread_unix.cpp:185
#5  0xb7350175 in start_thread () from /lib/libpthread.so.0
#6  0xb674edae in clone () from /lib/libc.so.6

Thread 2 (Thread 0xb084eb90 (LWP 25074)):
#0  0xffffe430 in __kernel_vsyscall ()
#1  0xb7353f42 in pthread_cond_timedwait@@GLIBC_2.3.2 () from /lib/libpthread.so.0
#2  0xb73b183c in QWaitCondition::wait (this=0x91cf228, mutex=0x91cf224, time=30000) at thread/qwaitcondition_unix.cpp:80
#3  0xb73a695e in QThreadPoolThread::run (this=0x91cc4b8) at concurrent/qthreadpool.cpp:135
#4  0xb73b084e in QThreadPrivate::start (arg=0x91cc4b8) at thread/qthread_unix.cpp:185
#5  0xb7350175 in start_thread () from /lib/libpthread.so.0
#6  0xb674edae in clone () from /lib/libc.so.6

Thread 1 (Thread 0xb615d6d0 (LWP 24971)):
[KCrash Handler]
#6  WebCore::SVGUseElement::associateInstancesWithShadowTreeElements (this=0x8626f38, target=0x94734e8, targetInstance=0x856f638) at /usr/src/debug/kdelibs-4.1.96/khtml/xml/dom_nodeimpl.h:101
#7  0xb42864fe in WebCore::SVGUseElement::buildPendingResource (this=0x8626f38) at /usr/src/debug/kdelibs-4.1.96/khtml/svg/SVGUseElement.cpp:345
#8  0xb42848fd in WebCore::SVGUseElement::insertedIntoDocument (this=0x8626f38) at /usr/src/debug/kdelibs-4.1.96/khtml/svg/SVGUseElement.cpp:119
#9  0xb3f9e3e3 in DOM::NodeBaseImpl::addChild (this=0x86bfd18, newChild=0x8626f38) at /usr/src/debug/kdelibs-4.1.96/khtml/xml/dom_nodeimpl.cpp:1708
#10 0xb3fc29fc in khtml::XMLHandler::startElement (this=0x95dc0d4, namespaceURI=@0xbf8f7ee8, qName=@0x951ae04, atts=@0x8756ed4) at /usr/src/debug/kdelibs-4.1.96/khtml/xml/xml_tokenizer.cpp:210
#11 0xb7bce36a in QXmlSimpleReaderPrivate::processElementEmptyTag (this=0x8756e90) at sax/qxml.cpp:3980
#12 0xb7bd5e83 in QXmlSimpleReaderPrivate::parseElement (this=0x8756e90) at sax/qxml.cpp:3948
#13 0xb7bd554b in QXmlSimpleReaderPrivate::parseContent (this=0x8756e90) at sax/qxml.cpp:4401
#14 0xb7bd5e2b in QXmlSimpleReaderPrivate::parseElement (this=0x8756e90) at sax/qxml.cpp:3927
#15 0xb7bd554b in QXmlSimpleReaderPrivate::parseContent (this=0x8756e90) at sax/qxml.cpp:4401
#16 0xb7bd5c94 in QXmlSimpleReaderPrivate::parseElement (this=0x8756e90) at sax/qxml.cpp:3840
#17 0xb7bd4fd5 in QXmlSimpleReaderPrivate::parseContent (this=0x8756e90) at sax/qxml.cpp:4205
#18 0xb7bd5c94 in QXmlSimpleReaderPrivate::parseElement (this=0x8756e90) at sax/qxml.cpp:3840
#19 0xb7bd8810 in QXmlSimpleReaderPrivate::parseBeginOrContinue (this=0x8756e90, state=1, incremental=true) at sax/qxml.cpp:3472
#20 0xb7bd8a6c in QXmlSimpleReader::parseContinue (this=0x95dc114) at sax/qxml.cpp:3449
#21 0xb3fc2d6c in khtml::XMLTokenizer::write (this=0x95dc0b8, str=@0xbf8f84c8, appendData=true) at /usr/src/debug/kdelibs-4.1.96/khtml/xml/xml_tokenizer.cpp:458
#22 0xb3f2ec95 in KHTMLPart::write (this=0x844b648, 
    data=0x86c5b70 "Apaches</text>\n    <g\n       transform=\"translate(80,0)\"\n       id=\"g7758\">\n      <use\n         transform=\"translate(45,210)\"\n         id=\"use7152\"\n         xlink:href=\"#apache\" />\n      <use\n        "..., len=1440) at /usr/src/debug/kdelibs-4.1.96/khtml/khtml_part.cpp:2064
#23 0xb3f30589 in KHTMLPart::slotData (this=0x844b648, kio_job=0x8730ea8, data=@0xbf8f89b4) at /usr/src/debug/kdelibs-4.1.96/khtml/khtml_part.cpp:1749
#24 0xb3f4bee7 in KHTMLPart::qt_metacall (this=0x844b648, _c=QMetaObject::InvokeMetaMethod, _id=19, _a=0xbf8f8738) at /usr/src/debug/kdelibs-4.1.96/build/khtml/khtml_part.moc:264
#25 0xb74b5740 in QMetaObject::activate (sender=0x8730ea8, from_signal_index=40, to_signal_index=40, argv=0xbf8f8738) at kernel/qobject.cpp:3031
#26 0xb74b64c2 in QMetaObject::activate (sender=0x8730ea8, m=0xb7f25390, local_signal_index=0, argv=0xbf8f8738) at kernel/qobject.cpp:3101
#27 0xb7d95679 in KIO::TransferJob::data (this=0x8730ea8, _t1=0x8730ea8, _t2=@0xbf8f89b4) at /usr/src/debug/kdelibs-4.1.96/build/kio/jobclasses.moc:356
#28 0xb7d95fb2 in KIO::TransferJob::slotData (this=0x8730ea8, _data=@0xbf8f89b4) at /usr/src/debug/kdelibs-4.1.96/kio/kio/job.cpp:917
#29 0xb7da0185 in KIO::TransferJob::qt_metacall (this=0x8730ea8, _c=QMetaObject::InvokeMetaMethod, _id=8, _a=0xbf8f885c) at /usr/src/debug/kdelibs-4.1.96/build/kio/jobclasses.moc:337
#30 0xb74b5740 in QMetaObject::activate (sender=0x84a3b50, from_signal_index=4, to_signal_index=4, argv=0xbf8f885c) at kernel/qobject.cpp:3031
#31 0xb74b64c2 in QMetaObject::activate (sender=0x84a3b50, m=0xb7f27e64, local_signal_index=0, argv=0xbf8f885c) at kernel/qobject.cpp:3101
#32 0xb7e4f093 in KIO::SlaveInterface::data (this=0x84a3b50, _t1=@0xbf8f89b4) at /usr/src/debug/kdelibs-4.1.96/build/kio/slaveinterface.moc:138
#33 0xb7e51c74 in KIO::SlaveInterface::dispatch (this=0x84a3b50, _cmd=100, rawdata=@0xbf8f89b4) at /usr/src/debug/kdelibs-4.1.96/kio/kio/slaveinterface.cpp:163
#34 0xb7e4f587 in KIO::SlaveInterface::dispatch (this=0x84a3b50) at /usr/src/debug/kdelibs-4.1.96/kio/kio/slaveinterface.cpp:91
#35 0xb7e41e90 in KIO::Slave::gotInput (this=0x84a3b50) at /usr/src/debug/kdelibs-4.1.96/kio/kio/slave.cpp:322
#36 0xb7e42203 in KIO::Slave::qt_metacall (this=0x84a3b50, _c=QMetaObject::InvokeMetaMethod, _id=2, _a=0xbf8f8aa8) at /usr/src/debug/kdelibs-4.1.96/build/kio/slave.moc:75
#37 0xb74b5740 in QMetaObject::activate (sender=0x84a4f00, from_signal_index=4, to_signal_index=4, argv=0x0) at kernel/qobject.cpp:3031
#38 0xb74b64c2 in QMetaObject::activate (sender=0x84a4f00, m=0xb7f24940, local_signal_index=0, argv=0x0) at kernel/qobject.cpp:3101
#39 0xb7d6b087 in KIO::Connection::readyRead (this=0x84a4f00) at /usr/src/debug/kdelibs-4.1.96/build/kio/connection.moc:84
#40 0xb7d6cab3 in KIO::ConnectionPrivate::dequeue (this=0x84a4f80) at /usr/src/debug/kdelibs-4.1.96/kio/kio/connection.cpp:82
#41 0xb7d6d106 in KIO::Connection::qt_metacall (this=0x84a4f00, _c=QMetaObject::InvokeMetaMethod, _id=1, _a=0x8850080) at /usr/src/debug/kdelibs-4.1.96/build/kio/connection.moc:72
#42 0xb74ae88b in QMetaCallEvent::placeMetaCall (this=0x84c7b20, object=0x84a4f00) at kernel/qobject.cpp:529
#43 0xb74b0449 in QObject::event (this=0x84a4f00, e=0x84c7b20) at kernel/qobject.cpp:1155
#44 0xb6b8782c in QApplicationPrivate::notify_helper (this=0x805c098, receiver=0x84a4f00, e=0x84c7b20) at kernel/qapplication.cpp:3803
#45 0xb6b8f6ce in QApplication::notify (this=0xbf8f93f0, receiver=0x84a4f00, e=0x84c7b20) at kernel/qapplication.cpp:3393
#46 0xb7a0566d in KApplication::notify (this=0xbf8f93f0, receiver=0x84a4f00, event=0x84c7b20) at /usr/src/debug/kdelibs-4.1.96/kdeui/kernel/kapplication.cpp:307
#47 0xb74a0a71 in QCoreApplication::notifyInternal (this=0xbf8f93f0, receiver=0x84a4f00, event=0x84c7b20) at kernel/qcoreapplication.cpp:587
#48 0xb74a16e5 in QCoreApplicationPrivate::sendPostedEvents (receiver=0x0, event_type=0, data=0x804c0e0) at kernel/qcoreapplication.h:209
#49 0xb74a18dd in QCoreApplication::sendPostedEvents (receiver=0x0, event_type=0) at kernel/qcoreapplication.cpp:1091
#50 0xb74cb5bf in postEventSourceDispatch (s=0x805e920) at kernel/qcoreapplication.h:214
#51 0xb64aa2d9 in g_main_context_dispatch () from /usr/lib/libglib-2.0.so.0
#52 0xb64ad85b in ?? () from /usr/lib/libglib-2.0.so.0
#53 0xb64ad9d8 in g_main_context_iteration () from /usr/lib/libglib-2.0.so.0
#54 0xb74cb208 in QEventDispatcherGlib::processEvents (this=0x805c5b0, flags={i = -1081110184}) at kernel/qeventdispatcher_glib.cpp:319
#55 0xb6c208b5 in QGuiEventDispatcherGlib::processEvents (this=0x805c5b0, flags={i = -1081110136}) at kernel/qguieventdispatcher_glib.cpp:198
#56 0xb749f14a in QEventLoop::processEvents (this=0xbf8f9200, flags={i = -1081110072}) at kernel/qeventloop.cpp:143
#57 0xb749f30a in QEventLoop::exec (this=0xbf8f9200, flags={i = -1081110008}) at kernel/qeventloop.cpp:194
#58 0xb74a19a5 in QCoreApplication::exec () at kernel/qcoreapplication.cpp:845
#59 0xb6b876a7 in QApplication::exec () at kernel/qapplication.cpp:3331
#60 0xb809fa8f in kdemain (argc=2, argv=0xbf8f9744) at /usr/src/debug/kdebase-4.1.96/apps/konqueror/src/konqmain.cpp:257
#61 0x08048722 in main (argc=) at /usr/src/debug/kdebase-4.1.96/build/apps/konqueror/src/konqueror_dummy.cpp:3
Comment 1 Oliver Putz 2009-01-16 23:04:50 UTC 
Confirming with KDE-Four-Live CD (KDE4.2 RC1)
Comment 2 Oliver Putz 2009-01-16 23:18:45 UTC 
Remark: Looks very much like bug #177309. However, I cannot reproduce that bug while being able to reproduce this one, so I am not going to mark them duplicates...
Comment 3 Maksim Orlovich 2009-03-27 16:42:58 UTC 

*** This bug has been marked as a duplicate of bug 185555 ***
Comment 4 Dario Andres 2009-05-18 23:59:43 UTC 
Bug 193130 seems to be related to this too. Thanks