Bug 191460 - Reproducable crash in khtml::RenderObject::detach when closing tab
Summary: Reproducable crash in khtml::RenderObject::detach when closing tab
Status: RESOLVED WORKSFORME
Alias: None
Product: konqueror
Classification: Applications
Component: khtml (other bugs)
Version First Reported In: unspecified
Platform: unspecified Linux
: NOR crash
Target Milestone: ---
Assignee: Konqueror Bugs
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2009-05-03 13:09 UTC by Malte S. Stretz
Modified: 2021-01-02 04:34 UTC (History)
1 user (show)

See Also:
Latest Commit:
Version Fixed/Implemented In:
Sentry Crash Report:

Attachments
Add an attachment

Note You need to log in before you can comment on or make changes to this bug.
Description Malte S. Stretz 2009-05-03 13:09:27 UTC 
Version:           4.2.2 (KDE 4.2.2) (using 4.2.2 (KDE 4.2.2), Kubuntu packages)
Compiler:          cc
OS:                Linux (x86_64) release 2.6.28-11-generic

If I have the following page opened in a tab and close the tab (using Ctrl+W), Konqueror crashes with the backtrace below.
http://blog.jrock.us/articles/Ernst,%20Angerwhale,%20the%20Future%20of%20Perl%20 Web%20Frameworks,%20and%20Deleted%20Email.pod

Application: Konqueror (konqueror), signal SIGSEGV
0x00007f45f32cfd21 in nanosleep () from /lib/libc.so.6
Current language:  auto; currently c
[Current thread is 0 (LWP 9163)]

Thread 3 (Thread 0x7f45eaf7d950 (LWP 9194)):
#0  pthread_cond_timedwait@@GLIBC_2.3.2 () at ../nptl/sysdeps/unix/sysv/linux/x86_64/pthread_cond_timedwait.S:217
#1  0x00007f45f5949917 in QWaitCondition::wait (this=0x27e3d18, mutex=0x27e3d10, time=30000) at thread/qwaitcondition_unix.cpp:85
#2  0x00007f45f593f409 in QThreadPoolThread::run (this=0x27e6980) at concurrent/qthreadpool.cpp:140
#3  0x00007f45f5948952 in QThreadPrivate::start (arg=0x27e6980) at thread/qthread_unix.cpp:189
#4  0x00007f45f20af3ba in start_thread (arg=<value optimized out>) at pthread_create.c:297
#5  0x00007f45f330dfcd in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:112
#6  0x0000000000000000 in ?? ()

Thread 2 (Thread 0x7f45ebd93950 (LWP 9195)):
#0  pthread_cond_timedwait@@GLIBC_2.3.2 () at ../nptl/sysdeps/unix/sysv/linux/x86_64/pthread_cond_timedwait.S:217
#1  0x00007f45f5949917 in QWaitCondition::wait (this=0x27e3d18, mutex=0x27e3d10, time=30000) at thread/qwaitcondition_unix.cpp:85
#2  0x00007f45f593f409 in QThreadPoolThread::run (this=0x35c6a40) at concurrent/qthreadpool.cpp:140
#3  0x00007f45f5948952 in QThreadPrivate::start (arg=0x35c6a40) at thread/qthread_unix.cpp:189
#4  0x00007f45f20af3ba in start_thread (arg=<value optimized out>) at pthread_create.c:297
#5  0x00007f45f330dfcd in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:112
#6  0x0000000000000000 in ?? ()
Current language:  auto; currently asm

Thread 1 (Thread 0x7f45f8430750 (LWP 9163)):
[KCrash Handler]
#5  0x00000000031bb310 in ?? ()
#6  0x00007f45e231c90e in khtml::RenderObject::detach (this=0x31bb860) at /build/buildd/kde4libs-4.2.2/khtml/rendering/render_object.h:847
#7  0x00007f45e2267ae6 in DOM::NodeImpl::detach (this=0x388b8f0) at /build/buildd/kde4libs-4.2.2/khtml/xml/dom_nodeimpl.cpp:971
#8  0x00007f45e22682e8 in DOM::NodeBaseImpl::detach (this=0x388a650) at /build/buildd/kde4libs-4.2.2/khtml/xml/dom_nodeimpl.cpp:1733
#9  0x00007f45e22682e8 in DOM::NodeBaseImpl::detach (this=0x388a2c0) at /build/buildd/kde4libs-4.2.2/khtml/xml/dom_nodeimpl.cpp:1733
#10 0x00007f45e22682e8 in DOM::NodeBaseImpl::detach (this=0x34dbfa0) at /build/buildd/kde4libs-4.2.2/khtml/xml/dom_nodeimpl.cpp:1733
#11 0x00007f45e22682e8 in DOM::NodeBaseImpl::detach (this=0x34dd2a0) at /build/buildd/kde4libs-4.2.2/khtml/xml/dom_nodeimpl.cpp:1733
#12 0x00007f45e22682e8 in DOM::NodeBaseImpl::detach (this=0x3a148a0) at /build/buildd/kde4libs-4.2.2/khtml/xml/dom_nodeimpl.cpp:1733
#13 0x00007f45e22682e8 in DOM::NodeBaseImpl::detach (this=0x341bd50) at /build/buildd/kde4libs-4.2.2/khtml/xml/dom_nodeimpl.cpp:1733
#14 0x00007f45e22682e8 in DOM::NodeBaseImpl::detach (this=0x3533368) at /build/buildd/kde4libs-4.2.2/khtml/xml/dom_nodeimpl.cpp:1733
#15 0x00007f45e22544e3 in DOM::DocumentImpl::detach (this=0x3533350) at /build/buildd/kde4libs-4.2.2/khtml/xml/dom_docimpl.cpp:1550
#16 0x00007f45e21f8655 in KHTMLPart::clear (this=0x3ea7e70) at /build/buildd/kde4libs-4.2.2/khtml/khtml_part.cpp:1548
#17 0x00007f45e22110b1 in ~KHTMLPart (this=0x3ea7e70) at /build/buildd/kde4libs-4.2.2/khtml/khtml_part.cpp:601
#18 0x00007f45e21f83e2 in KHTMLPart::clear (this=0x2f8d9f0) at /build/buildd/kde4libs-4.2.2/khtml/khtml_part.cpp:1604
#19 0x00007f45e22110b1 in ~KHTMLPart (this=0x2f8d9f0) at /build/buildd/kde4libs-4.2.2/khtml/khtml_part.cpp:601
#20 0x00007f45f7f9fe93 in ~KonqView (this=0x2cf4e20) at /build/buildd/kdebase-4.2.2/apps/konqueror/src/konqview.cpp:132
#21 0x00007f45f7fa62df in KonqViewManager::removeTab (this=0x289ad70, currentFrame=0x2cf2168, emitAboutToRemoveSignal=<value optimized out>)
    at /build/buildd/kdebase-4.2.2/apps/konqueror/src/konqviewmanager.cpp:389
#22 0x00007f45f7fe83ee in KonqMainWindow::slotRemoveTab (this=0x2b35f80) at /build/buildd/kdebase-4.2.2/apps/konqueror/src/konqmainwindow.cpp:2509
#23 0x00007f45f7ffa04d in KonqMainWindow::qt_metacall (this=0x2b35f80, _c=QMetaObject::InvokeMetaMethod, _id=<value optimized out>, _a=0x403a4a0)
    at /build/buildd/kdebase-4.2.2/obj-x86_64-linux-gnu/apps/konqueror/src/konqmainwindow.moc:413
#24 0x00007f45f5a41848 in QObject::event (this=0x2b35f80, e=0x2d98980) at kernel/qobject.cpp:1118
#25 0x00007f45f4ec51ad in QWidget::event (this=0x2b35f80, event=0x2d98980) at kernel/qwidget.cpp:7913
#26 0x00007f45f527a07b in QMainWindow::event (this=0x2b35f80, event=0x2d98980) at widgets/qmainwindow.cpp:1396
#27 0x00007f45f6970838 in KXmlGuiWindow::event (this=0x31bb7c8, ev=0x31bb860) at /build/buildd/kde4libs-4.2.2/kdeui/xmlgui/kxmlguiwindow.cpp:131
#28 0x00007f45f7ff222f in KonqMainWindow::event (this=0x2b35f80, e=0x2d98980) at /build/buildd/kdebase-4.2.2/apps/konqueror/src/konqmainwindow.cpp:5687
#29 0x00007f45f4e7483d in QApplicationPrivate::notify_helper (this=0x2029dd0, receiver=0x2b35f80, e=0x2d98980) at kernel/qapplication.cpp:4084
#30 0x00007f45f4e7ca2a in QApplication::notify (this=0x7fff00467230, receiver=0x2b35f80, e=0x2d98980) at kernel/qapplication.cpp:4049
#31 0x00007f45f686526b in KApplication::notify (this=0x7fff00467230, receiver=0x2b35f80, event=0x2d98980) at /build/buildd/kde4libs-4.2.2/kdeui/kernel/kapplication.cpp:307
#32 0x00007f45f5a3175c in QCoreApplication::notifyInternal (this=0x7fff00467230, receiver=0x2b35f80, event=0x2d98980) at kernel/qcoreapplication.cpp:602
#33 0x00007f45f5a323ca in QCoreApplicationPrivate::sendPostedEvents (receiver=0x0, event_type=0, data=0x200d2f0) at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:213
#34 0x00007f45f5a5b1e3 in postEventSourceDispatch (s=<value optimized out>) at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:218
#35 0x00007f45f0fd120a in g_main_context_dispatch () from /usr/lib/libglib-2.0.so.0
#36 0x00007f45f0fd48e0 in ?? () from /usr/lib/libglib-2.0.so.0
#37 0x00007f45f0fd4a7c in g_main_context_iteration () from /usr/lib/libglib-2.0.so.0
#38 0x00007f45f5a5ae6f in QEventDispatcherGlib::processEvents (this=0x2015bd0, flags=<value optimized out>) at kernel/qeventdispatcher_glib.cpp:323
#39 0x00007f45f4f0cc9f in QGuiEventDispatcherGlib::processEvents (this=0x31bb7c8, flags=<value optimized out>) at kernel/qguieventdispatcher_glib.cpp:202
#40 0x00007f45f5a30002 in QEventLoop::processEvents (this=<value optimized out>, flags={i = 4616064}) at kernel/qeventloop.cpp:149
#41 0x00007f45f5a303cd in QEventLoop::exec (this=0x7fff00466fc0, flags={i = 4616144}) at kernel/qeventloop.cpp:200
#42 0x00007f45f5a32694 in QCoreApplication::exec () at kernel/qcoreapplication.cpp:880
#43 0x00007f45f801e5c9 in kdemain (argc=<value optimized out>, argv=<value optimized out>) at /build/buildd/kdebase-4.2.2/apps/konqueror/src/konqmain.cpp:257
#44 0x00007f45f32465a6 in __libc_start_main (main=0x400870 <main>, argc=2, ubp_av=0x7fff00467ca8, init=0x4008a0 <__libc_csu_init>, fini=<value optimized out>, rtld_fini=<value optimized out>, 
    stack_end=0x7fff00467c98) at libc-start.c:220
#45 0x00000000004007a9 in _start () at ../sysdeps/x86_64/elf/start.S:113
#0  0x00007f45f32cfd21 in nanosleep () from /lib/libc.so.6
Current language:  auto; currently c
Comment 1 Malte S. Stretz 2009-05-03 13:12:16 UTC 
I get the same crash when I click on any article link at http://blog.jrock.us/articles/
Comment 2 Justin Zobel 2020-12-03 22:38:29 UTC 
Thank you for the report, Malte.

As it has been a while since this was reported, can you please test and confirm if this issue is still occurring or if this bug report can be marked as resolved.

I have set the bug status to "needsinfo" pending your response, please change back to "reported" or "resolved/worksforme" when you respond, thank you.
Comment 3 Bug Janitor Service 2020-12-18 04:34:48 UTC 
Dear Bug Submitter,

This bug has been in NEEDSINFO status with no change for at least
15 days. Please provide the requested information as soon as
possible and set the bug status as REPORTED. Due to regular bug
tracker maintenance, if the bug is still in NEEDSINFO status with
no change in 30 days the bug will be closed as RESOLVED > WORKSFORME
due to lack of needed information.

For more information about our bug triaging procedures please read the
wiki located here:
https://community.kde.org/Guidelines_and_HOWTOs/Bug_triaging

If you have already provided the requested information, please
mark the bug as REPORTED so that the KDE team knows that the bug is
ready to be confirmed.

Thank you for helping us make KDE software even better for everyone!
Comment 4 Bug Janitor Service 2021-01-02 04:34:22 UTC 
This bug has been in NEEDSINFO status with no change for at least
30 days. The bug is now closed as RESOLVED > WORKSFORME
due to lack of needed information.

For more information about our bug triaging procedures please read the
wiki located here:
https://community.kde.org/Guidelines_and_HOWTOs/Bug_triaging

Thank you for helping us make KDE software even better for everyone!