Created attachment 49229 [details] Backtrace If you close QtLauncher while on QGraphicsView mode you will get a segfault. You don't need to open any page, just run QtLauncher, enable QGraphicsView mode and close it. Backtrace is attached.
Please follow the QtWebKit bug reporting guidelines when reporting bugs. See http://trac.webkit.org/wiki/QtWebKitBugs Specifically: - The 'QtWebKit' component should only be used for bugs/features in the public QtWebKit API layer, not to signify that the bug is specific to the Qt port of WebKit http://trac.webkit.org/wiki/QtWebKitBugs#Component - Add the keyword 'Qt' to signal that it's a Qt-related bug http://trac.webkit.org/wiki/QtWebKitBugs#Keywords
It crashes on Linux too (r55986, qt-oslo-staging-1/4.7 ccf34d2a9f2d3aa2341de7babab5188b359861a1): #0 0x0038edfa in QListData::size (this=0x3ba2164) at ../../include/QtCore/../../src/corelib/tools/qlist.h:94 #1 0x003b05fd in QList<QPair<QHttpNetworkRequest, QHttpNetworkReply*> >::length (this=0x3ba2164) at ../../include/QtCore/../../src/corelib/tools/qlist.h:287 #2 0x003ae5ce in QHttpNetworkConnectionPrivate::removeReply (this=0x87c4f90, reply=0x8741268) at access/qhttpnetworkconnection.cpp:652 #3 0x003a554f in ~QHttpNetworkReply (this=0x8741268, __in_chrg=<value optimized out>) at access/qhttpnetworkreply.cpp:66 #4 0x03a4f990 in QObjectPrivate::deleteChildren (this=0x873edc8) at kernel/qobject.cpp:1981 #5 0x03a4d769 in ~QObject (this=0x872f240, __in_chrg=<value optimized out>) at kernel/qobject.cpp:978 #6 0x003c501f in ~QNetworkAccessBackend (this=0x872f240, __in_chrg=<value optimized out>) at access/qnetworkaccessbackend.cpp:162 #7 0x003ce7b7 in ~QNetworkAccessHttpBackend (this=0x872f240, __in_chrg=<value optimized out>) at access/qnetworkaccesshttpbackend.cpp:311 #8 0x03a53ca6 in qDeleteInEventHandler (o=0x872f240) at kernel/qobject.cpp:4010 #9 0x03a4e6e0 in QObject::event (this=0x872f240, e=0x86c8138) at kernel/qobject.cpp:1226 #10 0x01b53ca8 in QApplicationPrivate::notify_helper (this=0x8106c20, receiver=0x872f240, e=0x86c8138) at kernel/qapplication.cpp:4336 #11 0x01b514fe in QApplication::notify (this=0xbffff0fc, receiver=0x872f240, e=0x86c8138) at kernel/qapplication.cpp:3740 #12 0x03a3572f in QCoreApplication::notifyInternal (this=0xbffff0fc, receiver=0x872f240, event=0x86c8138) at kernel/qcoreapplication.cpp:704 #13 0x01b4390f in QCoreApplication::sendEvent (receiver=0x872f240, event=0x86c8138) at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:215 #14 0x03a367e3 in QCoreApplicationPrivate::sendPostedEvents (receiver=0x0, event_type=52, data=0x8106d18) at kernel/qcoreapplication.cpp:1345 #15 0x03a3649b in QCoreApplication::sendPostedEvents (receiver=0x0, event_type=52) at kernel/qcoreapplication.cpp:1238 #16 0x03a35e88 in QCoreApplication::exec () at kernel/qcoreapplication.cpp:988 #17 0x01b51154 in QApplication::exec () at kernel/qapplication.cpp:3615 #18 0x080675b1 in main ()
Reproduced on Mac and Linux, so this is not Mac specific anymore. Platform changed to "All" and updated bug Summary.
Crashes on S60 too
Created attachment 51658 [details] Patch This patch prevents QGraphicsWebView from accessing QWebPage in its destructor, if QWebPage was previously deleted. The same is already done for QWebView. On some web sites, we would still crash though. The crash is due to r40160 which triggers all timers to fire after everything was deleted.
Comment on attachment 51658 [details] Patch Rejecting patch 51658 from commit-queue. Failed to run "['git', 'svn', 'dcommit']" exit_code: 1 Committing to http://svn.webkit.org/repository/webkit/trunk ... M WebKit/qt/Api/qgraphicswebview.cpp RA layer request failed: CHECKOUT of '/repository/webkit/!svn/ver/56322/trunk/WebKit/qt/Api/qgraphicswebview.h': 500 Internal Server Error (http://svn.webkit.org) at /usr/local/git/libexec/git-core/git-svn line 558 Full output: http://webkit-commit-queue.appspot.com/results/1333005
that's a very strange rejection message.
Comment on attachment 51658 [details] Patch Clearing flags on attachment: 51658 Committed r56581: <http://trac.webkit.org/changeset/56581>
All reviewed patches have been landed. Closing bug.
Revision r56581 cherry-picked into qtwebkit-2.0 with commit bff2a8de464d308f67ae79006a34fad26830933d
Cherry-picked into qtwebkit-4.6 with commit df640d8f4a6353bfe42990322dd80c019c43539a