Bug 40567

Summary:

[Qt] QtWebKit crashes while initializing flash plugin 10.1.53.64...

Product:

WebKit

Reporter:

Dawit A. <adawit>

Component:

WebKit Qt

Assignee:

Nobody <webkit-unassigned>

Status:

CLOSED FIXED

Severity:

Major

CC:

girish, hausmann, kent.hansen

Priority:

Keywords:

Qt, QtTriaged

Version:

528+ (Nightly build)

Hardware:

OS:

Linux

Attachments:

Description	Flags
bt for arora crash	none
Patch...	hausmann: review+

Dawit A.

Reported 2010-06-14 06:52:58 PDT

With the latest flash plugin viewer from Adobe, v 10.1.53.64, all of the QtWebKit based browsers (including QtTestBrowser) crash when viewing pages that contain flash on my machine. When the SEGFAULT occurs the following critical error message is always printed by the flash plugin on the command line: (process:9153): GLib-GObject-CRITICAL **: gtype.c:2706: You forgot to call g_type_init() (process:9153): GLib-CRITICAL **: g_once_init_leave: assertion `initialization_value != 0' failed (process:9153): GLib-GObject-CRITICAL **: g_object_new: assertion `G_TYPE_IS_OBJECT (object_type)' failed KHTML, the only other non-gtk based engine I know of, works fine. Anyhow, here is the backtrace: Application: Konqueror (konqueror), signal: Segmentation fault [Current thread is 1 (Thread 0xb513e930 (LWP 9153))] Thread 3 (Thread 0xac0f3b70 (LWP 9193)): #0 0xb77be424 in __kernel_vsyscall () #1 0xb67997b4 in pthread_cond_timedwait@@GLIBC_2.3.2 () from /lib/libpthread.so.0 #2 0xb680794f in QWaitCondition::wait(QMutex*, unsigned long) () from /usr/lib/libQtCore.so.4 #3 0xb67fd4c9 in ?? () from /usr/lib/libQtCore.so.4 #4 0xb680732e in ?? () from /usr/lib/libQtCore.so.4 #5 0xb6794e60 in start_thread () from /lib/libpthread.so.0 #6 0xb59ac25e in clone () from /lib/libc.so.6 Thread 2 (Thread 0xab8c8b70 (LWP 9197)): #0 0xb77be424 in __kernel_vsyscall () #1 0xb67997b4 in pthread_cond_timedwait@@GLIBC_2.3.2 () from /lib/libpthread.so.0 #2 0xb680794f in QWaitCondition::wait(QMutex*, unsigned long) () from /usr/lib/libQtCore.so.4 #3 0xb67fd4c9 in ?? () from /usr/lib/libQtCore.so.4 #4 0xb680732e in ?? () from /usr/lib/libQtCore.so.4 #5 0xb6794e60 in start_thread () from /lib/libpthread.so.0 #6 0xb59ac25e in clone () from /lib/libc.so.6 Thread 1 (Thread 0xb513e930 (LWP 9153)): [KCrash Handler] #7 0xad7f59fc in gdk_pixbuf_new_from_data () from /usr/lib/libgdk_pixbuf-2.0.so.0 #8 0xad7fd73f in gdk_pixbuf_from_pixdata () from /usr/lib/libgdk_pixbuf-2.0.so.0 #9 0xad800e53 in gdk_pixbuf_new_from_inline () from /usr/lib/libgdk_pixbuf-2.0.so.0 #10 0xadd3f335 in ?? () from /usr/lib/mozilla/plugins/libflashplayer.so #11 0xadd3dd8e in ?? () from /usr/lib/mozilla/plugins/libflashplayer.so #12 0xadd4228e in NP_Initialize () from /usr/lib/mozilla/plugins/libflashplayer.so #13 0xb0f5908e in WebCore::PluginPackage::load (this=0x99e4cf8) at /usr/local/src/Misc/webkit/WebCore/plugins/qt/PluginPackageQt.cpp:131 #14 0xb0f58a37 in WebCore::PluginPackage::fetchInfo (this=0x99e4cf8) at /usr/local/src/Misc/webkit/WebCore/plugins/qt/PluginPackageQt.cpp:40 #15 0xb0d7e98f in WebCore::PluginPackage::createPackage (path=..., lastModified=@0xbff2fda0) at /usr/local/src/Misc/webkit/WebCore/plugins/PluginPackage.cpp:159 #16 0xb0d7181f in WebCore::PluginDatabase::refresh (this=0x99d0de0) at /usr/local/src/Misc/webkit/WebCore/plugins/PluginDatabase.cpp:118 #17 0xb0d71256 in WebCore::PluginDatabase::installedPlugins (populate=true) at /usr/local/src/Misc/webkit/WebCore/plugins/PluginDatabase.cpp:52 #18 0xb0f220f2 in WebCore::FrameLoaderClientQt::objectContentType(WebCore::KURL const&, WebCore::String const&) () from /usr/lib/libQtWebKit.so.4 #19 0xb0b581f3 in WebCore::HTMLPlugInImageElement::isImageType (this=0x99d0cf0) at /usr/local/src/Misc/webkit/WebCore/html/HTMLPlugInImageElement.cpp:44 #20 0xb0b1a755 in WebCore::HTMLEmbedElement::parseMappedAttribute(WebCore::Attribute*) () from /usr/lib/libQtWebKit.so.4 #21 0xb0a2badd in WebCore::StyledElement::attributeChanged (this=0x99d0cf0, attr=0x99d0bb8, preserveDecls=false) at /usr/local/src/Misc/webkit/WebCore/dom/StyledElement.cpp:183 #22 0xb0b1b19d in WebCore::HTMLEmbedElement::attributeChanged(WebCore::Attribute*, bool) () from /usr/lib/libQtWebKit.so.4 #23 0xb09d2f5f in WebCore::Element::setAttributeMap (this=0x99d0cf0, list=..., scriptingPermission=WebCore::FragmentScriptingAllowed) at /usr/local/src/Misc/webkit/WebCore/dom/Element.cpp:703 #24 0xb0b4d5a4 in WebCore::HTMLParser::parseToken (this=0x988baf8, t=0x9a0206c) at /usr/local/src/Misc/webkit/WebCore/html/HTMLParser.cpp:302 #25 0xb0b719a3 in WebCore::HTMLDocumentParser::processToken() () from /usr/lib/libQtWebKit.so.4 #26 0xb0b6fb1d in WebCore::HTMLDocumentParser::parseTag(WebCore::SegmentedString&, WebCore::HTMLDocumentParser::State) () from /usr/lib/libQtWebKit.so.4 #27 0xb0b7096a in WebCore::HTMLDocumentParser::advance(WebCore::HTMLDocumentParser::State&) () from /usr/lib/libQtWebKit.so.4 #28 0xb0b70efe in WebCore::HTMLDocumentParser::write(WebCore::SegmentedString const&, bool) () from /usr/lib/libQtWebKit.so.4 #29 0xb0b7245d in WebCore::HTMLDocumentParser::executeExternalScriptsIfReady() () from /usr/lib/libQtWebKit.so.4 #30 0xb0b72049 in WebCore::HTMLDocumentParser::notifyFinished(WebCore::CachedResource*) () from /usr/lib/libQtWebKit.so.4 #31 0xb0b72026 in WebCore::HTMLDocumentParser::executeScriptsWaitingForStylesheets() () from /usr/lib/libQtWebKit.so.4 #32 0xb0998912 in WebCore::Document::removePendingSheet() () from /usr/lib/libQtWebKit.so.4 #33 0xb0b43621 in WebCore::HTMLLinkElement::sheetLoaded() () from /usr/lib/libQtWebKit.so.4 #34 0xb096631f in WebCore::CSSStyleSheet::checkLoaded (this=0x954f7e0) at /usr/local/src/Misc/webkit/WebCore/css/CSSStyleSheet.cpp:213 #35 0xb0b4345e in WebCore::HTMLLinkElement::setCSSStyleSheet(WebCore::String const&, WebCore::KURL const&, WebCore::String const&, WebCore::CachedCSSStyleSheet const*) () from /usr/lib/libQtWebKit.so.4 #36 0xb0bfc8f6 in WebCore::CachedCSSStyleSheet::checkNotify (this=0x97c5a40) at /usr/local/src/Misc/webkit/WebCore/loader/CachedCSSStyleSheet.cpp:116 #37 0xb0bfc783 in WebCore::CachedCSSStyleSheet::data (this=0x97c5a40, data=..., allDataReceived=true) at /usr/local/src/Misc/webkit/WebCore/loader/CachedCSSStyleSheet.cpp:104 #38 0xb0c474e7 in WebCore::Loader::Host::didFinishLoading (this=0x94a1c20, loader=0x9845e30) at /usr/local/src/Misc/webkit/WebCore/loader/loader.cpp:406 #39 0xb0c5e82d in WebCore::SubresourceLoader::didFinishLoading() () from /usr/lib/libQtWebKit.so.4 #40 0xb0c5cc48 in WebCore::ResourceLoader::didFinishLoading(WebCore::ResourceHandle*) () from /usr/lib/libQtWebKit.so.4 #41 0xb0ef38c3 in WebCore::QNetworkReplyHandler::finish() () from /usr/lib/libQtWebKit.so.4 #42 0xb0ef5a72 in WebCore::QNetworkReplyHandler::qt_metacall(QMetaObject::Call, int, void**) () from /usr/lib/libQtWebKit.so.4 #43 0xb68feeba in QMetaObject::metacall(QObject*, QMetaObject::Call, int, void**) () from /usr/lib/libQtCore.so.4 #44 0xb690df9b in QMetaObject::activate(QObject*, QMetaObject const*, int, void**) () from /usr/lib/libQtCore.so.4 #45 0xb715ec47 in QNetworkReply::finished() () from /usr/lib/libQtNetwork.so.4 #46 0xb73b57ed in KDEPrivate::AccessManagerReply::jobDone (this=0x97c3558, kJob=0x97c33d0) at /usr/local/src/KDE/trunk/kdelibs/kio/kio/accessmanagerreply_p.cpp:285 #47 0xb73b626f in KDEPrivate::AccessManagerReply::qt_metacall (this=0x97c3558, _c=QMetaObject::InvokeMetaMethod, _id=<value optimized out>, _a=0xbff30c68) at /home/dalemayehu/Projects/build/KDE/trunk/kdelibs/kio/accessmanagerreply_p.moc:83 #48 0xb68feeba in QMetaObject::metacall(QObject*, QMetaObject::Call, int, void**) () from /usr/lib/libQtCore.so.4 #49 0xb690df9b in QMetaObject::activate(QObject*, QMetaObject const*, int, void**) () from /usr/lib/libQtCore.so.4 #50 0xb6b2d363 in KJob::result (this=0x97c33d0, _t1=0x97c33d0) at /home/dalemayehu/Projects/build/KDE/trunk/kdelibs/kdecore/kjob.moc:194 #51 0xb6b2d3b8 in KJob::emitResult (this=0x97c33d0) at /usr/local/src/KDE/trunk/kdelibs/kdecore/jobs/kjob.cpp:312 #52 0xb73f13e5 in KIO::SimpleJob::slotFinished (this=0x97c33d0) at /usr/local/src/KDE/trunk/kdelibs/kio/kio/job.cpp:522 #53 0xb73fb0fa in KIO::TransferJob::slotFinished (this=0x97c33d0) at /usr/local/src/KDE/trunk/kdelibs/kio/kio/job.cpp:1111 #54 0xb73f9693 in KIO::TransferJob::qt_metacall (this=0x97c33d0, _c=QMetaObject::InvokeMetaMethod, _id=<value optimized out>, _a=0xbff30efc) at /home/dalemayehu/Projects/build/KDE/trunk/kdelibs/kio/jobclasses.moc:367 #55 0xb68feeba in QMetaObject::metacall(QObject*, QMetaObject::Call, int, void**) () from /usr/lib/libQtCore.so.4 #56 0xb690df9b in QMetaObject::activate(QObject*, QMetaObject const*, int, void**) () from /usr/lib/libQtCore.so.4 #57 0xb74a4267 in KIO::SlaveInterface::finished (this=0x972fd08) at /home/dalemayehu/Projects/build/KDE/trunk/kdelibs/kio/slaveinterface.moc:171 #58 0xb74a715f in KIO::SlaveInterface::dispatch (this=0x972fd08, _cmd=104, rawdata=...) at /usr/local/src/KDE/trunk/kdelibs/kio/kio/slaveinterface.cpp:175 #59 0xb74a3b13 in KIO::SlaveInterface::dispatch (this=0x972fd08) at /usr/local/src/KDE/trunk/kdelibs/kio/kio/slaveinterface.cpp:91 #60 0xb7496398 in KIO::Slave::gotInput (this=0x972fd08) at /usr/local/src/KDE/trunk/kdelibs/kio/kio/slave.cpp:344 #61 0xb7496ae3 in KIO::Slave::qt_metacall (this=0x972fd08, _c=QMetaObject::InvokeMetaMethod, _id=<value optimized out>, _a=0xbff311fc) at /home/dalemayehu/Projects/build/KDE/trunk/kdelibs/kio/slave.moc:82 #62 0xb68feeba in QMetaObject::metacall(QObject*, QMetaObject::Call, int, void**) () from /usr/lib/libQtCore.so.4 #63 0xb690df9b in QMetaObject::activate(QObject*, QMetaObject const*, int, void**) () from /usr/lib/libQtCore.so.4 #64 0xb73be277 in KIO::Connection::readyRead (this=0x942de20) at /home/dalemayehu/Projects/build/KDE/trunk/kdelibs/kio/connection.moc:92 #65 0xb73bea9e in KIO::ConnectionPrivate::dequeue (this=0x9a37a18) at /usr/local/src/KDE/trunk/kdelibs/kio/kio/connection.cpp:82 #66 0xb73beb56 in KIO::Connection::qt_metacall (this=0x942de20, _c=QMetaObject::InvokeMetaMethod, _id=<value optimized out>, _a=0x92b5750) at /home/dalemayehu/Projects/build/KDE/trunk/kdelibs/kio/connection.moc:79 #67 0xb68feeba in QMetaObject::metacall(QObject*, QMetaObject::Call, int, void**) () from /usr/lib/libQtCore.so.4 #68 0xb6908846 in QMetaCallEvent::placeMetaCall(QObject*) () from /usr/lib/libQtCore.so.4 #69 0xb690b7fe in QObject::event(QEvent*) () from /usr/lib/libQtCore.so.4 #70 0xb5df0f14 in QApplicationPrivate::notify_helper(QObject*, QEvent*) () from /usr/lib/libQtGui.so.4 #71 0xb5df50fe in QApplication::notify(QObject*, QEvent*) () from /usr/lib/libQtGui.so.4 #72 0xb6ea7b5a in KApplication::notify (this=0xbff31c6c, receiver=0x942de20, event=0x98955d0) at /usr/local/src/KDE/trunk/kdelibs/kdeui/kernel/kapplication.cpp:302 #73 0xb68f8ecb in QCoreApplication::notifyInternal(QObject*, QEvent*) () from /usr/lib/libQtCore.so.4 #74 0xb68fc9c1 in QCoreApplicationPrivate::sendPostedEvents(QObject*, int, QThreadData*) () from /usr/lib/libQtCore.so.4 #75 0xb68fcbad in QCoreApplication::sendPostedEvents(QObject*, int) () from /usr/lib/libQtCore.so.4 #76 0xb692398f in ?? () from /usr/lib/libQtCore.so.4 #77 0xb543df72 in g_main_context_dispatch () from /usr/lib/libglib-2.0.so.0 #78 0xb543e750 in g_main_context_iterate () from /usr/lib/libglib-2.0.so.0 #79 0xb543ea04 in g_main_context_iteration () from /usr/lib/libglib-2.0.so.0 #80 0xb6923e7c in QEventDispatcherGlib::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) () from /usr/lib/libQtCore.so.4 #81 0xb5e9d1b5 in ?? () from /usr/lib/libQtGui.so.4 #82 0xb68f8119 in QEventLoop::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) () from /usr/lib/libQtCore.so.4 #83 0xb68f838a in QEventLoop::exec(QFlags<QEventLoop::ProcessEventsFlag>) () from /usr/lib/libQtCore.so.4 #84 0xb68fcc6f in QCoreApplication::exec() () from /usr/lib/libQtCore.so.4 #85 0xb5dee637 in QApplication::exec() () from /usr/lib/libQtGui.so.4 #86 0xb77809c5 in kdemain (argc=1, argv=0xbff31f44) at /usr/local/src/KDE/trunk/kdebase/apps/konqueror/src/konqmain.cpp:228 #87 0x0804875b in main (argc=1, argv=0xbff31f44) at /home/dalemayehu/Projects/build/KDE/trunk/kdebase/apps/konqueror/src/konqueror_dummy.cpp:3

Attachments
bt for arora crash (15.17 KB, text/plain) 2010-06-14 11:55 PDT, nucleo	no flags	Details
Patch... (2.46 KB, patch) 2010-06-16 21:49 PDT, Dawit A.	hausmann: review+	Details Formatted Diff Diff
View All Add attachment proposed patch, testcase, etc.

Dawit A.

Comment 1 2010-06-14 06:59:01 PDT

And here is the same crash and backtrace using QtTestBrowser and visiting http://labs.trolltech.com/blogs: [dalemayehu@xxxxxxx]$ gdb ./QtTestBrowser GNU gdb (GDB) 7.1 Copyright (C) 2010 Free Software Foundation, Inc. License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html> This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. Type "show copying" and "show warranty" for details. This GDB was configured as "i686-pc-linux-gnu". For bug reporting instructions, please see: <http://www.gnu.org/software/gdb/bugs/>... Reading symbols from /usr/local/build/Misc/webkit/Debug/bin/QtTestBrowser...done. (gdb) run Starting program: /usr/local/build/Misc/webkit/Debug/bin/QtTestBrowser [Thread debugging using libthread_db enabled] [New Thread 0xb23e3b70 (LWP 9368)] QtTestBrowser(9365)/ KSharedDataCache::Private::mapSharedMemory: Opening cache "/var/tmp/kdecache-dalemayehu/icon-cache.kcache" page size is 4096 QtTestBrowser(9365)/ KSharedDataCache::Private::mapSharedMemory: Attached to cache, determining if it must be initialized QtTestBrowser(9365)/ KSharedDataCache::Private::mapSharedMemory: Cache fully initialized -- attached to memory mapping QtTestBrowser(9365)/ KSharedDataCache::Private::mapSharedMemory: 4808704 bytes available out of 10485760 [New Thread 0xafa46b70 (LWP 9369)] (process:9365): GLib-GObject-CRITICAL **: gtype.c:2706: You forgot to call g_type_init() (process:9365): GLib-CRITICAL **: g_once_init_leave: assertion `initialization_value != 0' failed (process:9365): GLib-GObject-CRITICAL **: g_object_new: assertion `G_TYPE_IS_OBJECT (object_type)' failed Program received signal SIGSEGV, Segmentation fault. 0xadcec9fc in gdk_pixbuf_new_from_data () from /usr/lib/libgdk_pixbuf-2.0.so.0 (gdb) bt #0 0xadcec9fc in gdk_pixbuf_new_from_data () from /usr/lib/libgdk_pixbuf-2.0.so.0 #1 0xadcf473f in gdk_pixbuf_from_pixdata () from /usr/lib/libgdk_pixbuf-2.0.so.0 #2 0xadcf7e53 in gdk_pixbuf_new_from_inline () from /usr/lib/libgdk_pixbuf-2.0.so.0 #3 0xae240335 in ?? () from /usr/lib/mozilla/plugins/libflashplayer.so #4 0xae23ed8e in ?? () from /usr/lib/mozilla/plugins/libflashplayer.so #5 0xae24328e in NP_Initialize () from /usr/lib/mozilla/plugins/libflashplayer.so #6 0xb6eeb08e in WebCore::PluginPackage::load (this=0x85e8560) at /usr/local/src/Misc/webkit/WebCore/plugins/qt/PluginPackageQt.cpp:131 #7 0xb6eeaa37 in WebCore::PluginPackage::fetchInfo (this=0x85e8560) at /usr/local/src/Misc/webkit/WebCore/plugins/qt/PluginPackageQt.cpp:40 #8 0xb6d1098f in WebCore::PluginPackage::createPackage (path=..., lastModified=@0xbfffe050) at /usr/local/src/Misc/webkit/WebCore/plugins/PluginPackage.cpp:159 #9 0xb6d0381f in WebCore::PluginDatabase::refresh (this=0x85e4b98) at /usr/local/src/Misc/webkit/WebCore/plugins/PluginDatabase.cpp:118 #10 0xb6d03256 in WebCore::PluginDatabase::installedPlugins (populate=true) at /usr/local/src/Misc/webkit/WebCore/plugins/PluginDatabase.cpp:52 #11 0xb6eb40f2 in WebCore::FrameLoaderClientQt::objectContentType(WebCore::KURL const&, WebCore::String const&) () from /usr/local/build/Misc/webkit/Debug/bin/../lib/libQtWebKit.so.4 #12 0xb6aea1f3 in WebCore::HTMLPlugInImageElement::isImageType (this=0x85e4aa8) at /usr/local/src/Misc/webkit/WebCore/html/HTMLPlugInImageElement.cpp:44 #13 0xb6aac755 in WebCore::HTMLEmbedElement::parseMappedAttribute(WebCore::Attribute*) () from /usr/local/build/Misc/webkit/Debug/bin/../lib/libQtWebKit.so.4 #14 0xb69bdadd in WebCore::StyledElement::attributeChanged (this=0x85e4aa8, attr=0x85e4970, preserveDecls=false) at /usr/local/src/Misc/webkit/WebCore/dom/StyledElement.cpp:183 #15 0xb6aad19d in WebCore::HTMLEmbedElement::attributeChanged(WebCore::Attribute*, bool) () from /usr/local/build/Misc/webkit/Debug/bin/../lib/libQtWebKit.so.4 #16 0xb6964f5f in WebCore::Element::setAttributeMap (this=0x85e4aa8, list=..., scriptingPermission=WebCore::FragmentScriptingAllowed) at /usr/local/src/Misc/webkit/WebCore/dom/Element.cpp:703 #17 0xb6adf5a4 in WebCore::HTMLParser::parseToken (this=0x8202250, t=0x8204454) at /usr/local/src/Misc/webkit/WebCore/html/HTMLParser.cpp:302 #18 0xb6b039a3 in WebCore::HTMLDocumentParser::processToken() () from /usr/local/build/Misc/webkit/Debug/bin/../lib/libQtWebKit.so.4 #19 0xb6b01b1d in WebCore::HTMLDocumentParser::parseTag(WebCore::SegmentedString&, WebCore::HTMLDocumentParser::State) () from /usr/local/build/Misc/webkit/Debug/bin/../lib/libQtWebKit.so.4 #20 0xb6b0296a in WebCore::HTMLDocumentParser::advance(WebCore::HTMLDocumentParser::State&) () from /usr/local/build/Misc/webkit/Debug/bin/../lib/libQtWebKit.so.4 #21 0xb6b02efe in WebCore::HTMLDocumentParser::write(WebCore::SegmentedString const&, bool) () from /usr/local/build/Misc/webkit/Debug/bin/../lib/libQtWebKit.so.4 #22 0xb6b0445d in WebCore::HTMLDocumentParser::executeExternalScriptsIfReady() () from /usr/local/build/Misc/webkit/Debug/bin/../lib/libQtWebKit.so.4 #23 0xb6b04049 in WebCore::HTMLDocumentParser::notifyFinished(WebCore::CachedResource*) () from /usr/local/build/Misc/webkit/Debug/bin/../lib/libQtWebKit.so.4 #24 0xb6b04026 in WebCore::HTMLDocumentParser::executeScriptsWaitingForStylesheets() () from /usr/local/build/Misc/webkit/Debug/bin/../lib/libQtWebKit.so.4 #25 0xb692a912 in WebCore::Document::removePendingSheet() () from /usr/local/build/Misc/webkit/Debug/bin/../lib/libQtWebKit.so.4 #26 0xb6ad5621 in WebCore::HTMLLinkElement::sheetLoaded() () from /usr/local/build/Misc/webkit/Debug/bin/../lib/libQtWebKit.so.4 #27 0xb68f831f in WebCore::CSSStyleSheet::checkLoaded (this=0x8452680) at /usr/local/src/Misc/webkit/WebCore/css/CSSStyleSheet.cpp:213 #28 0xb6ad545e in WebCore::HTMLLinkElement::setCSSStyleSheet(WebCore::String const&, WebCore::KURL const&, WebCore::String const&, WebCore::CachedCSSStyleSheet const*) () from /usr/local/build/Misc/webkit/Debug/bin/../lib/libQtWebKit.so.4 #29 0xb6b8e8f6 in WebCore::CachedCSSStyleSheet::checkNotify (this=0x84b9f60) at /usr/local/src/Misc/webkit/WebCore/loader/CachedCSSStyleSheet.cpp:116 #30 0xb6b8e783 in WebCore::CachedCSSStyleSheet::data (this=0x84b9f60, data=..., allDataReceived=true) at /usr/local/src/Misc/webkit/WebCore/loader/CachedCSSStyleSheet.cpp:104 #31 0xb6bd94e7 in WebCore::Loader::Host::didFinishLoading (this=0x822ed58, loader=0x849eee0) at /usr/local/src/Misc/webkit/WebCore/loader/loader.cpp:406 #32 0xb6bf082d in WebCore::SubresourceLoader::didFinishLoading() () from /usr/local/build/Misc/webkit/Debug/bin/../lib/libQtWebKit.so.4 #33 0xb6beec48 in WebCore::ResourceLoader::didFinishLoading(WebCore::ResourceHandle*) () from /usr/local/build/Misc/webkit/Debug/bin/../lib/libQtWebKit.so.4 #34 0xb6e858c3 in WebCore::QNetworkReplyHandler::finish() () from /usr/local/build/Misc/webkit/Debug/bin/../lib/libQtWebKit.so.4 #35 0xb6e87a72 in WebCore::QNetworkReplyHandler::qt_metacall(QMetaObject::Call, int, void**) () from /usr/local/build/Misc/webkit/Debug/bin/../lib/libQtWebKit.so.4 #36 0xb45b4eba in QMetaObject::metacall(QObject*, QMetaObject::Call, int, void**) () from /usr/lib/libQtCore.so.4 #37 0xb45c3f9b in QMetaObject::activate(QObject*, QMetaObject const*, int, void**) () from /usr/lib/libQtCore.so.4 #38 0xb4789c47 in QNetworkReply::finished() () from /usr/lib/libQtNetwork.so.4 #39 0xb4733703 in ?? () from /usr/lib/libQtNetwork.so.4 #40 0xb471d1e0 in ?? () from /usr/lib/libQtNetwork.so.4 #41 0xb4723551 in ?? () from /usr/lib/libQtNetwork.so.4 #42 0xb4723998 in ?? () from /usr/lib/libQtNetwork.so.4 #43 0xb47345a6 in ?? () from /usr/lib/libQtNetwork.so.4 #44 0xb4734603 in ?? () from /usr/lib/libQtNetwork.so.4 #45 0xb4907f14 in QApplicationPrivate::notify_helper(QObject*, QEvent*) () from /usr/lib/libQtGui.so.4 #46 0xb490c0fe in QApplication::notify(QObject*, QEvent*) () from /usr/lib/libQtGui.so.4 #47 0xb45aeecb in QCoreApplication::notifyInternal(QObject*, QEvent*) () from /usr/lib/libQtCore.so.4 #48 0xb45b29c1 in QCoreApplicationPrivate::sendPostedEvents(QObject*, int, QThreadData*) () from /usr/lib/libQtCore.so.4 #49 0xb45b2bad in QCoreApplication::sendPostedEvents(QObject*, int) () from /usr/lib/libQtCore.so.4 #50 0xb45d998f in ?? () from /usr/lib/libQtCore.so.4 #51 0xb3a7df72 in g_main_context_dispatch () from /usr/lib/libglib-2.0.so.0 #52 0xb3a7e750 in g_main_context_iterate () from /usr/lib/libglib-2.0.so.0 #53 0xb3a7ea04 in g_main_context_iteration () from /usr/lib/libglib-2.0.so.0 #54 0xb45d9e7c in QEventDispatcherGlib::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) () from /usr/lib/libQtCore.so.4 #55 0xb49b41b5 in ?? () from /usr/lib/libQtGui.so.4 ---Type <return> to continue, or q <return> to quit---

nucleo

Comment 2 2010-06-14 11:55:17 PDT

Created attachment 58678 [details] bt for arora crash I can confirm that konqueror with kwebkitpart and arora crashes after updating to flash-plugin-10.1.53.64-release.i386.

Kent Hansen

Comment 3 2010-06-15 08:18:25 PDT

Reproduced with 4.7 and trunk (r61119). Here's a more useful backtrace of the GTK part: #0 0x0632a705 in IA__gdk_pixbuf_new_from_data (data=0x5c12964 "\377\377\377", colorspace=GDK_COLORSPACE_RGB, has_alpha=1, bits_per_sample=8, width=64, height=64, rowstride=256, destroy_fn=0, destroy_fn_data=0x5c12964) at /build/buildd/gtk+2.0-2.20.1/gdk-pixbuf/gdk-pixbuf-data.c:76 #1 0x0633200f in IA__gdk_pixbuf_from_pixdata (pixdata=0xbfffd434, copy_pixels=0, error=0x0) at /build/buildd/gtk+2.0-2.20.1/gdk-pixbuf/gdk-pixdata.c:497 #2 0x063322d3 in IA__gdk_pixbuf_new_from_inline (data_length=-1, data=0x5c1294c "GdkP", copy_pixels=0, error=0x0) at /build/buildd/gtk+2.0-2.20.1/gdk-pixbuf/gdk-pixdata.c:899 #3 0x05306335 in ?? () from /usr/lib/adobe-flashplugin/libflashplayer.so #4 0x05304d8e in ?? () from /usr/lib/adobe-flashplugin/libflashplayer.so #5 0x0530928e in NP_Initialize () from /usr/lib/adobe-flashplugin/libflashplayer.so Looks like g_object_new is failing. Girish, feel like having a look? :-)

Dawit A.

Comment 4 2010-06-16 21:07:25 PDT

(In reply to comment #3) > Reproduced with 4.7 and trunk (r61119). > Here's a more useful backtrace of the GTK part: > > #0 0x0632a705 in IA__gdk_pixbuf_new_from_data (data=0x5c12964 "\377\377\377", colorspace=GDK_COLORSPACE_RGB, has_alpha=1, bits_per_sample=8, width=64, height=64, rowstride=256, destroy_fn=0, > destroy_fn_data=0x5c12964) at /build/buildd/gtk+2.0-2.20.1/gdk-pixbuf/gdk-pixbuf-data.c:76 > #1 0x0633200f in IA__gdk_pixbuf_from_pixdata (pixdata=0xbfffd434, copy_pixels=0, error=0x0) at /build/buildd/gtk+2.0-2.20.1/gdk-pixbuf/gdk-pixdata.c:497 > #2 0x063322d3 in IA__gdk_pixbuf_new_from_inline (data_length=-1, data=0x5c1294c "GdkP", copy_pixels=0, error=0x0) at /build/buildd/gtk+2.0-2.20.1/gdk-pixbuf/gdk-pixdata.c:899 > #3 0x05306335 in ?? () from /usr/lib/adobe-flashplugin/libflashplayer.so > #4 0x05304d8e in ?? () from /usr/lib/adobe-flashplugin/libflashplayer.so > #5 0x0530928e in NP_Initialize () from /usr/lib/adobe-flashplugin/libflashplayer.so > > Looks like g_object_new is failing. > Girish, feel like having a look? :-) Actually the cause of that problem is readliy apparent from debug statements printed out on the command line. One should not call any other Gtk system API without first calling g_type_init and apparently the Adobe engineers or developers have decided to assume that the hosting application for their plugin is a Gtk based one (read: chrome/firefox). Hence, there is do not need to initialize the toolkit themselves for this new release. Either they never heard the pharse "assumption is a mother of all f***ups" or they could care less. Regardless, they create needless problem for developers that use toolkits other than Gtk! But then again that is nothing new for this company. I hope the lightspark project fares better than the other attempts to create a free flash player. Anyhow I have a fix for this issue based on what KDE's nsplugin viewer does to combat the issue of uninitialized use of Gtk. I will post the patch for review soon...

Dawit A.

Comment 5 2010-06-16 21:49:28 PDT

Created attachment 58960 [details] Patch... Workaround the cause of this crash by doing the same thing KDE's nsplugin viewer does...

Simon Hausmann

Comment 6 2010-06-16 22:35:28 PDT

Comment on attachment 58960 [details] Patch... r=me This looks indeed like the correct fix. Older flash versions used to spit out a message on the commandline that they're calling gtk_init(), but if flash 10 doesn't do that anymore then this is a good workaround :) The ChangeLog needs a title and the "No new tests" removed before landing. I'll take care of that. Thanks Dawit!

Simon Hausmann

Comment 7 2010-06-16 22:40:37 PDT

Committed r61307: <http://trac.webkit.org/changeset/61307>

Simon Hausmann

Comment 8 2010-06-17 01:19:07 PDT

Revision r61307 cherry-picked into qtwebkit-2.0 with commit b95e66cf963d6e817474369b5518d8deebc3ff99

Note You need to log in before you can comment on or make changes to this bug.