197092 – crash when closing a tab with webkit view (WebCore::Widget::hide, WebCore::RenderWidget::destroy, WebCore::ContainerNode::detach)

Bug 197092 - crash when closing a tab with webkit view (WebCore::Widget::hide, WebCore::RenderWidget::destroy, WebCore::ContainerNode::detach)

Summary: crash when closing a tab with webkit view (WebCore::Widget::hide, WebCore::Re...

Status:	RESOLVED UPSTREAM

Alias:	None

Product:	kwebkitpart
Classification:	Frameworks and Libraries
Component:	general (show other bugs)
Version:	unspecified
Platform:	Unlisted Binaries Linux

Importance:	NOR crash
Target Milestone:	---
Assignee:	webkit-devel

URL:
Keywords:

Duplicates (1):	205979 (view as bug list)
Depends on:
Blocks:

Reported:	2009-06-19 02:10 UTC by Pete Brown
Modified:	2010-01-23 17:24 UTC (History)
CC List:	1 user (show)

See Also:
Latest Commit:
Version Fixed In:

Attachments
Add an attachment

Note You need to log in before you can comment on or make changes to this bug.

Description Pete Brown 2009-06-19 02:10:17 UTC

Application that crashed: konqueror
Version of the application: 4.2.90 (KDE 4.2.90 (KDE 4.3 Beta2))
KDE Version: 4.2.90 (KDE 4.2.90 (KDE 4.3 Beta2))
Qt Version: 4.5.1
Operating System: Linux 2.6.28-13-generic x86_64
Distribution: Ubuntu 9.04

What I was doing when the application crashed:
I have webkit enabled as the default view for html.
I was looking at gmail (which was vaguelly working but not completely but thats another issue).
I closed the tab and konqueror crashed. so i restarted the application via the crash dialog and restored the session and tried closing the tab again but i got the same crash.

Hope this helps.

Let me know if you need more information or testing.
:)

 -- Backtrace:
Application: Konqueror (kdeinit), signal: Segmentation fault
[Current thread is 0 (LWP 17388)]

Thread 2 (Thread 0x7f4dd4d5f950 (LWP 17446)):
#0  pthread_cond_timedwait@@GLIBC_2.3.2 () at ../nptl/sysdeps/unix/sysv/linux/x86_64/pthread_cond_timedwait.S:217
#1  0x00007f4df0938cc7 in QWaitCondition::wait (this=0x1a66f48, mutex=0x1a66f40, time=30000) at thread/qwaitcondition_unix.cpp:85
#2  0x00007f4df092e879 in QThreadPoolThread::run (this=0x2fbcc00) at concurrent/qthreadpool.cpp:140
#3  0x00007f4df0937d02 in QThreadPrivate::start (arg=0x2fbcc00) at thread/qthread_unix.cpp:189
#4  0x00007f4dec8083ba in start_thread (arg=<value optimized out>) at pthread_create.c:297
#5  0x00007f4ded3ecfcd in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:112
#6  0x0000000000000000 in ?? ()

Thread 1 (Thread 0x7f4df0eeb750 (LWP 17388)):
[KCrash Handler]
#5  0x00007f4de73537ee in WebCore::Widget::hide (this=<value optimized out>) at ../../../../include/QtGui/../../src/gui/kernel/qwidget.h:477
#6  0x00007f4de72e0168 in WebCore::RenderWidget::destroy (this=0x3e72dc8) at rendering/RenderWidget.cpp:85
#7  0x00007f4de6fdf405 in WebCore::Node::detach (this=0x6af1b10) at dom/Node.cpp:1060
#8  0x00007f4de6f9c734 in WebCore::ContainerNode::detach (this=0x4037410) at dom/ContainerNode.cpp:593
#9  0x00007f4de6f9c734 in WebCore::ContainerNode::detach (this=0x51bd080) at dom/ContainerNode.cpp:593
#10 0x00007f4de6f9c734 in WebCore::ContainerNode::detach (this=0x3e77640) at dom/ContainerNode.cpp:593
#11 0x00007f4de6fab893 in WebCore::Document::detach (this=0x3e77640) at dom/Document.cpp:1307
#12 0x00007f4de71c0ace in WebCore::Frame::setView (this=0x5167080, view=0x0) at page/Frame.cpp:209
#13 0x00007f4de71ca70a in WebCore::FrameTree::removeChild (this=0x343c5e8, child=0x5167080) at page/FrameTree.cpp:85
#14 0x00007f4de7157bd6 in WebCore::FrameLoader::detachFromParent (this=<value optimized out>) at loader/FrameLoader.cpp:3424
#15 0x00007f4de7157cbc in WebCore::FrameLoader::detachChildren (this=<value optimized out>) at loader/FrameLoader.cpp:3312
#16 0x00007f4de7157b6f in WebCore::FrameLoader::detachFromParent (this=0x343c628) at loader/FrameLoader.cpp:3415
#17 0x00007f4de736a309 in ~QWebPage (this=0x3437a30) at ../WebKit/qt/Api/qwebpage.cpp:1242
#18 0x00007f4dd7cb1657 in ?? () from /usr/lib/libwebkitkde.so.1
#19 0x00007f4df0a2f871 in QObjectPrivate::deleteChildren (this=0x348acb0) at kernel/qobject.cpp:1854
#20 0x00007f4dee0109f2 in ~QWidget (this=0x34587f0) at kernel/qwidget.cpp:1366
#21 0x00007f4df0240fbb in ~Part (this=0x3430ba0, __vtt_parm=0x7f4dd7ebd6f0) at /build/buildd/kde4libs-4.2.90/kparts/part.cpp:208
#22 0x00007f4dd7cb1c77 in WebKitPart::~WebKitPart () from /usr/lib/libwebkitkde.so.1
#23 0x00007f4de47fdf43 in ~KonqView (this=0x340e440) at /build/buildd/kdebase-4.2.90/apps/konqueror/src/konqview.cpp:132
#24 0x00007f4de48044ff in KonqViewManager::removeTab (this=0x1bba430, currentFrame=0x3421cc8, emitAboutToRemoveSignal=<value optimized out>)
    at /build/buildd/kdebase-4.2.90/apps/konqueror/src/konqviewmanager.cpp:402
#25 0x00007f4de48469be in KonqMainWindow::slotRemoveTab (this=0x1bb6570) at /build/buildd/kdebase-4.2.90/apps/konqueror/src/konqmainwindow.cpp:2496
#26 0x00007f4de4856efd in KonqMainWindow::qt_metacall (this=0x1bb6570, _c=QMetaObject::InvokeMetaMethod, _id=<value optimized out>, _a=0x7ffff8f30910)
    at /build/buildd/kdebase-4.2.90/obj-x86_64-linux-gnu/apps/konqueror/src/konqmainwindow.moc:413
#27 0x00007f4df0a368d2 in QMetaObject::activate (sender=0x23fb250, from_signal_index=<value optimized out>, to_signal_index=30, argv=0xb) at kernel/qobject.cpp:3120
#28 0x00007f4dee60eac7 in QAbstractButton::clicked (this=0x5c11420, _t1=false) at .moc/release-shared/moc_qabstractbutton.cpp:200
#29 0x00007f4dee369d7b in QAbstractButtonPrivate::emitClicked (this=0x23fd270) at widgets/qabstractbutton.cpp:543
#30 0x00007f4dee36b9d2 in QAbstractButtonPrivate::click (this=0x23fd270) at widgets/qabstractbutton.cpp:536
#31 0x00007f4dee36bc25 in QAbstractButton::mouseReleaseEvent (this=0x23fb250, e=0x7ffff8f310f0) at widgets/qabstractbutton.cpp:1115
#32 0x00007f4dee43d96a in QToolButton::mouseReleaseEvent (this=0x5c11420, e=0x0) at widgets/qtoolbutton.cpp:709
#33 0x00007f4dee014def in QWidget::event (this=0x23fb250, event=0x7ffff8f310f0) at kernel/qwidget.cpp:7521
#34 0x00007f4dedfc3b9d in QApplicationPrivate::notify_helper (this=0x18c28e0, receiver=0x23fb250, e=0x7ffff8f310f0) at kernel/qapplication.cpp:4057
#35 0x00007f4dedfcc54a in QApplication::notify (this=<value optimized out>, receiver=0x23fb250, e=0x7ffff8f310f0) at kernel/qapplication.cpp:3759
#36 0x00007f4def10006b in KApplication::notify (this=0x7ffff8f33220, receiver=0x23fb250, event=0x7ffff8f310f0) at /build/buildd/kde4libs-4.2.90/kdeui/kernel/kapplication.cpp:302
#37 0x00007f4df0a20dfc in QCoreApplication::notifyInternal (this=0x7ffff8f33220, receiver=0x23fb250, event=0x7ffff8f310f0) at kernel/qcoreapplication.cpp:610
#38 0x00007f4dedfcb798 in QApplicationPrivate::sendMouseEvent (receiver=0x23fb250, event=0x7ffff8f310f0, alienWidget=0x0, nativeWidget=0x23fb250, buttonDown=<value optimized out>, 
    lastMouseReceiver=@0x7f4deea25010) at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:216
#39 0x00007f4dee035789 in QETWidget::translateMouseEvent (this=0x23fb250, event=<value optimized out>) at kernel/qapplication_x11.cpp:4448
#40 0x00007f4dee0347f5 in QApplication::x11ProcessEvent (this=0x7ffff8f33220, event=0x7ffff8f32c70) at kernel/qapplication_x11.cpp:3566
#41 0x00007f4dee05cf84 in x11EventSourceDispatch (s=0x18c6550, callback=0, user_data=0x0) at kernel/qguieventdispatcher_glib.cpp:146
#42 0x00007f4deca5720a in g_main_context_dispatch () from /usr/lib/libglib-2.0.so.0
#43 0x00007f4deca5a8e0 in ?? () from /usr/lib/libglib-2.0.so.0
#44 0x00007f4deca5aa7c in g_main_context_iteration () from /usr/lib/libglib-2.0.so.0
#45 0x00007f4df0a4a52f in QEventDispatcherGlib::processEvents (this=0x18c1bc0, flags=<value optimized out>) at kernel/qeventdispatcher_glib.cpp:324
#46 0x00007f4dee05c70f in QGuiEventDispatcherGlib::processEvents (this=0x5c11420, flags=<value optimized out>) at kernel/qguieventdispatcher_glib.cpp:202
#47 0x00007f4df0a1f6a2 in QEventLoop::processEvents (this=<value optimized out>, flags={i = -118280352}) at kernel/qeventloop.cpp:149
#48 0x00007f4df0a1fa6d in QEventLoop::exec (this=0x7ffff8f32fa0, flags={i = -118280272}) at kernel/qeventloop.cpp:200
#49 0x00007f4df0a21d34 in QCoreApplication::exec () at kernel/qcoreapplication.cpp:888
#50 0x00007f4de4882d82 in kdemain (argc=<value optimized out>, argv=<value optimized out>) at /build/buildd/kdebase-4.2.90/apps/konqueror/src/konqmain.cpp:271
#51 0x000000000040714e in launch (argc=1, _name=0x18755f8 "/usr/bin/konqueror", args=<value optimized out>, cwd=0x0, envc=1, envs=0x187561f "", reset_env=false, tty=0x0, avoid_loops=false, 
    startup_id_str=0x40a308 "0") at /build/buildd/kde4libs-4.2.90/kinit/kinit.cpp:671
#52 0x0000000000407978 in handle_launcher_request (sock=7, who=<value optimized out>) at /build/buildd/kde4libs-4.2.90/kinit/kinit.cpp:1163
#53 0x0000000000407f25 in handle_requests (waitForPid=0) at /build/buildd/kde4libs-4.2.90/kinit/kinit.cpp:1356
#54 0x0000000000408a66 in main (argc=2, argv=0x7ffff8f348f8, envp=0x7ffff8f34910) at /build/buildd/kde4libs-4.2.90/kinit/kinit.cpp:1783

Reported using DrKonqi

Comment 1 Dario Andres 2009-09-02 14:29:34 UTC

*** Bug 205979 has been marked as a duplicate of this bug. ***

Comment 2 Pete Brown 2009-09-22 02:02:52 UTC

Hi guys,
It's been a while since i reported this and i have upgraded kde since then.
I am now running 4.3.1.
I decided to set my default view mode to qtwebkit again and loaded up gmail.
The good news is that it didn't crash my konqueror when i closed the tab.

I will keep using qtwebkit and see if have any other issues and will report them if i do.

Comment 3 Pete Brown 2009-09-22 02:35:28 UTC

Looks like i spoke too soon.
Just after i reported this Konquoror started crashing whenever i closed a tab.
I am reinstalling the debugging symbols and will add the crash report to this bug.

Comment 4 Pete Brown 2009-09-22 03:01:45 UTC

Hi again,
As mentioned in my last comment here is the backtrace for my crash.

Application: Konqueror (kdeinit4), signal: Segmentation fault
[Current thread is 0 (LWP 1910)]

Thread 2 (Thread 0x7f93d73cf950 (LWP 2211)):
#0  pthread_cond_wait@@GLIBC_2.3.2 () at ../nptl/sysdeps/unix/sysv/linux/x86_64/pthread_cond_wait.S:261
#1  0x00007f93fc291d19 in QWaitCondition::wait (this=0x4e152c0, mutex=0x4e152b8, time=18446744073709551615) at thread/qwaitcondition_unix.cpp:87
#2  0x00007f93fb11781c in QHostInfoAgent::run (this=0x4e152a0) at kernel/qhostinfo.cpp:260
#3  0x00007f93fc290d35 in QThreadPrivate::start (arg=0x4e152a0) at thread/qthread_unix.cpp:188
#4  0x00007f93f81853ba in start_thread (arg=<value optimized out>) at pthread_create.c:297
#5  0x00007f93f8d69fcd in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:112
#6  0x0000000000000000 in ?? ()

Thread 1 (Thread 0x7f93fc844750 (LWP 1910)):
[KCrash Handler]
#5  0x00007f93f2cc1a4e in WebCore::Widget::hide (this=<value optimized out>) at ../../../../include/QtGui/../../src/gui/kernel/qwidget.h:477
#6  0x00007f93f2c4c238 in WebCore::RenderWidget::destroy (this=0x5431d08) at rendering/RenderWidget.cpp:85
#7  0x00007f93f294aef5 in WebCore::Node::detach (this=0x5433200) at dom/Node.cpp:1060
#8  0x00007f93f29081c4 in WebCore::ContainerNode::detach (this=0x54329d0) at dom/ContainerNode.cpp:593
#9  0x00007f93f29081c4 in WebCore::ContainerNode::detach (this=0x551c830) at dom/ContainerNode.cpp:593
#10 0x00007f93f29081c4 in WebCore::ContainerNode::detach (this=0x5519a80) at dom/ContainerNode.cpp:593
#11 0x00007f93f29081c4 in WebCore::ContainerNode::detach (this=0x5500830) at dom/ContainerNode.cpp:593
#12 0x00007f93f29081c4 in WebCore::ContainerNode::detach (this=0x5500ab0) at dom/ContainerNode.cpp:593
#13 0x00007f93f29081c4 in WebCore::ContainerNode::detach (this=0x31f9220) at dom/ContainerNode.cpp:593
#14 0x00007f93f29081c4 in WebCore::ContainerNode::detach (this=0x555cec0) at dom/ContainerNode.cpp:593
#15 0x00007f93f29081c4 in WebCore::ContainerNode::detach (this=0x5b29030) at dom/ContainerNode.cpp:593
#16 0x00007f93f29081c4 in WebCore::ContainerNode::detach (this=0x565f0f0) at dom/ContainerNode.cpp:593
#17 0x00007f93f29081c4 in WebCore::ContainerNode::detach (this=0x565fce0) at dom/ContainerNode.cpp:593
#18 0x00007f93f29081c4 in WebCore::ContainerNode::detach (this=0x2d3ff50) at dom/ContainerNode.cpp:593
#19 0x00007f93f29081c4 in WebCore::ContainerNode::detach (this=0x2de17a0) at dom/ContainerNode.cpp:593
#20 0x00007f93f2917383 in WebCore::Document::detach (this=0x2de17a0) at dom/Document.cpp:1310
#21 0x00007f93f2b2ca0e in WebCore::Frame::setView (this=0x2db2fc0, view=0x0) at page/Frame.cpp:209
#22 0x00007f93f2ac218a in WebCore::FrameLoader::detachFromParent (this=0x2db5008) at loader/FrameLoader.cpp:3434
#23 0x00007f93f2cd8599 in ~QWebPage (this=0x2db42a0) at ../WebKit/qt/Api/qwebpage.cpp:1242
#24 0x00007f93e638d657 in ?? () from /usr/lib/libwebkitkde.so.1
#25 0x00007f93fc388ec1 in QObjectPrivate::deleteChildren (this=0x2db2830) at kernel/qobject.cpp:1847
#26 0x00007f93f998d1a2 in ~QWidget (this=0x2db2e80) at kernel/qwidget.cpp:1367
#27 0x00007f93fbb9609b in ~Part (this=0x2d3ecf0, __vtt_parm=0x7f93e65996f0) at /build/buildd/kde4libs-4.3.1/kparts/part.cpp:208
#28 0x00007f93e638dc77 in WebKitPart::~WebKitPart () from /usr/lib/libwebkitkde.so.1
#29 0x00007f93f0167193 in ~KonqView (this=0x2db7ea0) at /build/buildd/kdebase-4.3.1/apps/konqueror/src/konqview.cpp:132
#30 0x00007f93f016d74f in KonqViewManager::removeTab (this=0x140f970, currentFrame=0x2d3a418, emitAboutToRemoveSignal=<value optimized out>)
    at /build/buildd/kdebase-4.3.1/apps/konqueror/src/konqviewmanager.cpp:402
#31 0x00007f93f01b016e in KonqMainWindow::slotRemoveTab (this=0x142a9e0) at /build/buildd/kdebase-4.3.1/apps/konqueror/src/konqmainwindow.cpp:2531
#32 0x00007f93f01c21a5 in KonqMainWindow::qt_metacall (this=0x142a9e0, _c=QMetaObject::InvokeMetaMethod, _id=<value optimized out>, _a=0x7fff048891a0)
    at /build/buildd/kdebase-4.3.1/obj-x86_64-linux-gnu/apps/konqueror/src/konqmainwindow.moc:415
#33 0x00007f93fc38fea2 in QMetaObject::activate (sender=0x266c540, from_signal_index=<value optimized out>, to_signal_index=30, argv=0x3a) at kernel/qobject.cpp:3113
#34 0x00007f93f9f62e27 in QAbstractButton::clicked (this=0x6820630, _t1=false) at .moc/release-shared/moc_qabstractbutton.cpp:200
#35 0x00007f93f9cbcc6b in QAbstractButtonPrivate::emitClicked (this=0x266e610) at widgets/qabstractbutton.cpp:543
#36 0x00007f93f9cbe8c2 in QAbstractButtonPrivate::click (this=0x266e610) at widgets/qabstractbutton.cpp:536
#37 0x00007f93f9cbeb15 in QAbstractButton::mouseReleaseEvent (this=0x266c540, e=0x7fff04889980) at widgets/qabstractbutton.cpp:1115
#38 0x00007f93f9d9051a in QToolButton::mouseReleaseEvent (this=0x6820630, e=0x0) at widgets/qtoolbutton.cpp:709
#39 0x00007f93f99920bf in QWidget::event (this=0x266c540, event=0x7fff04889980) at kernel/qwidget.cpp:7549
#40 0x00007f93f9940f4d in QApplicationPrivate::notify_helper (this=0x12b5000, receiver=0x266c540, e=0x7fff04889980) at kernel/qapplication.cpp:4056
#41 0x00007f93f99498ea in QApplication::notify (this=<value optimized out>, receiver=0x266c540, e=0x7fff04889980) at kernel/qapplication.cpp:3758
#42 0x00007f93faa53deb in KApplication::notify (this=0x7fff0488bab0, receiver=0x266c540, event=0x7fff04889980) at /build/buildd/kde4libs-4.3.1/kdeui/kernel/kapplication.cpp:302
#43 0x00007f93fc37a6ac in QCoreApplication::notifyInternal (this=0x7fff0488bab0, receiver=0x266c540, event=0x7fff04889980) at kernel/qcoreapplication.cpp:610
#44 0x00007f93f9948b38 in QApplicationPrivate::sendMouseEvent (receiver=0x266c540, event=0x7fff04889980, alienWidget=0x266c540, nativeWidget=0x142a9e0, buttonDown=<value optimized out>, 
    lastMouseReceiver=@0x7f93fa378010) at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:216
#45 0x00007f93f99b2b19 in QETWidget::translateMouseEvent (this=0x142a9e0, event=<value optimized out>) at kernel/qapplication_x11.cpp:4409
#46 0x00007f93f99b1b53 in QApplication::x11ProcessEvent (this=0x7fff0488bab0, event=0x7fff0488b500) at kernel/qapplication_x11.cpp:3550
#47 0x00007f93f99da454 in x11EventSourceDispatch (s=0x12b8c40, callback=0, user_data=0x0) at kernel/qguieventdispatcher_glib.cpp:146
#48 0x00007f93f83d420a in g_main_context_dispatch () from /usr/lib/libglib-2.0.so.0
#49 0x00007f93f83d78e0 in ?? () from /usr/lib/libglib-2.0.so.0
#50 0x00007f93f83d7a7c in g_main_context_iteration () from /usr/lib/libglib-2.0.so.0
#51 0x00007f93fc3a3a8f in QEventDispatcherGlib::processEvents (this=0x1217e70, flags=<value optimized out>) at kernel/qeventdispatcher_glib.cpp:327
#52 0x00007f93f99d9bdf in QGuiEventDispatcherGlib::processEvents (this=0x6820630, flags=<value optimized out>) at kernel/qguieventdispatcher_glib.cpp:202
#53 0x00007f93fc378f42 in QEventLoop::processEvents (this=<value optimized out>, flags={i = 76068848}) at kernel/qeventloop.cpp:149
#54 0x00007f93fc379314 in QEventLoop::exec (this=0x7fff0488b830, flags={i = 76068928}) at kernel/qeventloop.cpp:201
#55 0x00007f93fc37b5e4 in QCoreApplication::exec () at kernel/qcoreapplication.cpp:888
#56 0x00007f93f01ed4e2 in kdemain (argc=<value optimized out>, argv=<value optimized out>) at /build/buildd/kdebase-4.3.1/apps/konqueror/src/konqmain.cpp:271
#57 0x0000000000407215 in launch (argc=3, _name=0x1269df8 "konqueror", args=<value optimized out>, cwd=0x0, envc=1, envs=0x1269e32 "", reset_env=false, tty=0x0, avoid_loops=false, 
    startup_id_str=0x40a3a1 "0") at /build/buildd/kde4libs-4.3.1/kinit/kinit.cpp:677
#58 0x0000000000407a38 in handle_launcher_request (sock=7, who=<value optimized out>) at /build/buildd/kde4libs-4.3.1/kinit/kinit.cpp:1169
#59 0x0000000000407fe5 in handle_requests (waitForPid=0) at /build/buildd/kde4libs-4.3.1/kinit/kinit.cpp:1362
#60 0x0000000000408b26 in main (argc=1, argv=0x7fff0488d198, envp=0x7fff0488d1a8) at /build/buildd/kde4libs-4.3.1/kinit/kinit.cpp:1793

Comment 5 Urs Wolfer 2010-01-23 17:24:45 UTC

Looks like a crash in (Qt)WebKit. Please report this bug to bugs.webkit.org.