Bug 29567

Summary: [Qt] Crash when destroying QWebView with custom QWebPage when plugin content has been loaded
Product: WebKit Reporter: Tor Arne Vestbø <vestbo>
Component: Plug-insAssignee: Nobody <webkit-unassigned>
Status: RESOLVED WORKSFORME    
Severity: Critical CC: kent.hansen, tonikitoo
Priority: P2 Keywords: Qt
Version: 528+ (Nightly build)   
Hardware: Other   
OS: OS X 10.5   

Description Tor Arne Vestbø 2009-09-21 08:26:48 PDT 
This bug report originated from Nokia internal issue QT-1737


--- Comments ---

Product
Qt

Function
webkit

Version
4.5.2

Platform
Mac OS X

Platform details
Mac OS X 10.5.7 on a 2.66 GHz quad-core Mac Pro.

Compilers
GCC

Compiler details
i686-apple-darwin9-gcc-4.0.1 (GCC) 4.0.1 (Apple Inc. build 5490)

Subject
Crash when destroying QWebView with custom QWebPage when plugin content has been loaded

Steps to reproduce / test case
Build and run the attached project.
Using the address bar, navigate to http://www.youtube.com/watch?v=oHg5SJYRHA0
Once the plugin has loaded, quit the application using Command-Q.
Observe a crash with the following stack trace:

Exception Type:  EXC_BAD_ACCESS (SIGSEGV)
Exception Codes: KERN_INVALID_ADDRESS at 0x00000000c706cff3
Crashed Thread:  0

Thread 0 Crashed:
0   QtGui                          0x029e4409 QWidget::window() const + 9
1   QtWebKit                       0x01ace1d6 WebCore::PluginView::globalMousePosForPlugin() const + 54
2   QtWebKit                       0x01ace2e7 WebCore::PluginView::nullEventTimerFired(WebCore::Timer&lt;WebCore::PluginView&gt;*) + 39
3   QtWebKit                       0x0197aae2 WebCore::Timer&lt;WebCore::PluginView&gt;::fired() + 82
4   QtWebKit                       0x01966079 WebCore::TimerBase::fireTimers(double, WTF::Vector&lt;WebCore::TimerBase*, 0ul&gt; const&amp;) + 137
5   QtWebKit                       0x01966142 WebCore::TimerBase::sharedTimerFired() + 162
6   QtWebKit                       0x01a9d6c3 WebCore::SharedTimerQt::~SharedTimerQt() + 131
7   QtCore                         0x003f23af QObjectPrivate::deleteChildren() + 127
8   QtCore                         0x003f74a3 QObject::~QObject() + 899
9   QtGui                          0x029a6f8f QApplication::~QApplication() + 1423
Comment 1 Kent Hansen 2010-03-16 05:26:53 PDT 
I'm not able to reproduce this crash with r55986, Qt 4.7.