Uploaded image for project: 'Qt'
  1. Qt
  2. QTBUG-82999

Crash when closing tabs in Falkon

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • P1: Critical
    • 5.15.0 RC
    • 5.15.0 Beta2
    • WebEngine
    • None
    • Linux x86_64

    Description

      The Falkon web browser crashes when closing tabs on some websites with Qt 5.15 beta 2. Reproducible with www.elpais.com for instance. It worked fine in beta 1.

      (gdb) bt
#0  std::__uniq_ptr_impl<content::RenderFrameHostImpl, std::default_delete<content::RenderFrameHostImpl> >::_M_ptr (this=0x3b2a2f2a2c670129)
    at /usr/include/c++/9.3.0/bits/unique_ptr.h:154
#1  0x00007fffe28cfad2 in std::unique_ptr<content::RenderFrameHostImpl, std::default_delete<content::RenderFrameHostImpl> >::get (
    this=0x3b2a2f2a2c670129) at /usr/include/c++/9.3.0/bits/unique_ptr.h:361
#2  0x00007fffe28cf254 in content::RenderFrameHostManager::current_frame_host (this=0x3b2a2f2a2c670111)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/content/browser/frame_host/render_frame_host_manager.h:201
#3  0x00007fffe28cf284 in content::FrameTreeNode::current_frame_host (this=0x3b2a2f2a2c670101)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/content/browser/frame_host/frame_tree_node.h:255
#4  0x00007fffe28ced63 in QtWebEngineCore::ProxyingURLLoaderFactoryQt::CreateLoaderAndStart (this=0x7fff22021680, loader=..., routing_id=1, 
    request_id=867657, options=2, request=..., client=..., traffic_annotation=...)
    at /build/qt5-webengine/src/qtwebengine-everywhere-src-5.15.0-beta2/src/core/net/proxying_url_loader_factory_qt.cpp:528
#5  0x00007fffe2d53a87 in network::mojom::URLLoaderFactoryStubDispatch::Accept (impl=0x7fff22021680, message=0x7fffa37fa880)
    at ./gen/services/network/public/mojom/url_loader_factory.mojom.cc:220
#6  0x00007fffe28be069 in network::mojom::URLLoaderFactoryStub<mojo::RawPtrImplRefTraits<network::mojom::URLLoaderFactory> >::Accept (
    this=0x7fff2220d6c0, message=0x7fffa37fa880) at gen/services/network/public/mojom/url_loader_factory.mojom.h:132
#7  0x00007fffe89e491b in mojo::InterfaceEndpointClient::HandleValidatedMessage (this=0x7fff2220e760, message=0x7fffa37fa880)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/mojo/public/cpp/bindings/lib/interface_endpoint_client.cc:553
#8  0x00007fffe89e1e83 in mojo::InterfaceEndpointClient::HandleIncomingMessageThunk::Accept (this=0x7fff2220e870, message=0x7fffa37fa880)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/mojo/public/cpp/bindings/lib/interface_endpoint_client.cc:140
#9  0x00007fffe89ed142 in mojo::MessageDispatcher::Accept (this=0x7fff2220e880, message=0x7fffa37fa880)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/mojo/public/cpp/bindings/lib/message_dispatcher.cc:46
#10 0x00007fffe89e3870 in mojo::InterfaceEndpointClient::HandleIncomingMessage (this=0x7fff2220e760, message=0x7fffa37fa880)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/mojo/public/cpp/bindings/lib/interface_endpoint_client.cc:356
#11 0x00007fffe89f0f69 in mojo::internal::MultiplexRouter::ProcessIncomingMessage (this=0x7fff2220d790, message_wrapper=0x7fffa37fab10, 
    client_call_behavior=mojo::internal::MultiplexRouter::ALLOW_DIRECT_CLIENT_CALLS, current_task_runner=0x55555593d7e0)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/mojo/public/cpp/bindings/lib/multiplex_router.cc:877
#12 0x00007fffe89ef78b in mojo::internal::MultiplexRouter::Accept (this=0x7fff2220d790, message=0x7fffa37fb340)
--Type <RET> for more, q to quit, c to continue without paging--
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/mojo/public/cpp/bindings/lib/multiplex_router.cc:598
#13 0x00007fffe89ed0b2 in mojo::MessageDispatcher::Accept (this=0x7fff2220d7c8, message=0x7fffa37fb340)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/mojo/public/cpp/bindings/lib/message_dispatcher.cc:41
#14 0x00007fffe89d74cd in mojo::Connector::DispatchMessage (this=0x7fff2220d7f8, message=...)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/mojo/public/cpp/bindings/lib/connector.cc:605
#15 0x00007fffe89d7aae in mojo::Connector::ReadAllAvailableMessages (this=0x7fff2220d7f8)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/mojo/public/cpp/bindings/lib/connector.cc:680
#16 0x00007fffe89d6855 in mojo::Connector::OnHandleReadyInternal (this=0x7fff2220d7f8, result=0)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/mojo/public/cpp/bindings/lib/connector.cc:513
#17 0x00007fffe89d6562 in mojo::Connector::OnWatcherHandleReady (this=0x7fff2220d7f8, result=0)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/mojo/public/cpp/bindings/lib/connector.cc:474
#18 0x00007fffe89dd025 in base::internal::FunctorTraits<void (mojo::Connector::*)(unsigned int), void>::Invoke<void (mojo::Connector::*)(unsigned int), mojo::Connector*, unsigned int> (method=
    (void (mojo::Connector::*)(mojo::Connector * const, unsigned int)) 0x7fffe89d6542 <mojo::Connector::OnWatcherHandleReady(unsigned int)>, 
    receiver_ptr=@0x7fffa37fb858: 0x7fff2220d7f8) at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/base/bind_internal.h:498
#19 0x00007fffe89dc52b in base::internal::InvokeHelper<false, void>::MakeItSo<void (mojo::Connector::* const&)(unsigned int), mojo::Connector*, unsigned int> (functor=
    @0x7fff221dcc10: (void (mojo::Connector::*)(mojo::Connector * const, unsigned int)) 0x7fffe89d6542 <mojo::Connector::OnWatcherHandleReady(unsigned int)>) at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/base/bind_internal.h:598
#20 0x00007fffe89dba54 in base::internal::Invoker<base::internal::BindState<void (mojo::Connector::*)(unsigned int), base::internal::UnretainedWrapper<mojo::Connector> >, void (unsigned int)>::RunImpl<void (mojo::Connector::* const&)(unsigned int), std::tuple<base::internal::UnretainedWrapper<mojo::Connector> > const&, 0ul>(void (mojo::Connector::* const&)(unsigned int), std::tuple<base::internal::UnretainedWrapper<mojo::Connector> > const&, std::integer_sequence<unsigned long, 0ul>, unsigned int&&) (functor=
    @0x7fff221dcc10: (void (mojo::Connector::*)(mojo::Connector * const, unsigned int)) 0x7fffe89d6542 <mojo::Connector::OnWatcherHandleReady(unsigned int)>, bound=std::tuple containing = {...}, unbound_args#0=@0x7fffa37fb884: 0)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/base/bind_internal.h:672
#21 0x00007fffe89dadc2 in base::internal::Invoker<base::internal::BindState<void (mojo::Connector::*)(unsigned int), base::internal::UnretainedWrapper<moj--Type <RET> for more, q to quit, c to continue without paging--
o::Connector> >, void (unsigned int)>::Run(base::internal::BindStateBase*, unsigned int) (base=0x7fff221dcbf0, unbound_args#0=0)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/base/bind_internal.h:654
#22 0x00007fffe287f482 in base::RepeatingCallback<void (unsigned int)>::Run(unsigned int) const & (this=0x7fff2220c678, args#0=0)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/base/callback.h:132
#23 0x00007fffe47c40dc in mojo::SimpleWatcher::DiscardReadyState(base::RepeatingCallback<void (unsigned int)> const&, unsigned int, mojo::HandleSignalsState const&) (callback=..., result=0, state=...)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/mojo/public/cpp/system/simple_watcher.h:194
#24 0x00007fffe47d0cfe in base::internal::FunctorTraits<void (*)(base::RepeatingCallback<void (unsigned int)> const&, unsigned int, mojo::HandleSignalsState const&), void>::Invoke<void (* const&)(base::RepeatingCallback<void (unsigned int)> const&, unsigned int, mojo::HandleSignalsState const&), base::RepeatingCallback<void (unsigned int)> const&, unsigned int, mojo::HandleSignalsState const&>(void (* const&)(base::RepeatingCallback<void (unsigned int)> const&, unsigned int, mojo::HandleSignalsState const&), base::RepeatingCallback<void (unsigned int)> const&, unsigned int&&, mojo::HandleSignalsState const&)
    (function=
    @0x7fff2220c670: 0x7fffe47c40b8 <mojo::SimpleWatcher::DiscardReadyState(base::RepeatingCallback<void (unsigned int)> const&, unsigned int, mojo::HandleSignalsState const&)>) at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/base/bind_internal.h:398
#25 0x00007fffe47cf1ee in base::internal::InvokeHelper<false, void>::MakeItSo<void (* const&)(base::RepeatingCallback<void (unsigned int)> const&, unsigned int, mojo::HandleSignalsState const&), base::RepeatingCallback<void (unsigned int)> const&, unsigned int, mojo::HandleSignalsState const&>(void (* const&)(base::RepeatingCallback<void (unsigned int)> const&, unsigned int, mojo::HandleSignalsState const&), base::RepeatingCallback<void (unsigned int)> const&, unsigned int&&, mojo::HandleSignalsState const&) (functor=
    @0x7fff2220c670: 0x7fffe47c40b8 <mojo::SimpleWatcher::DiscardReadyState(base::RepeatingCallback<void (unsigned int)> const&, unsigned int, mojo::HandleSignalsState const&)>) at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/base/bind_internal.h:598
#26 0x00007fffe47cc313 in base::internal::Invoker<base::internal::BindState<void (*)(base::RepeatingCallback<void (unsigned int)> const&, unsigned int, mojo::HandleSignalsState const&), base::RepeatingCallback<void (unsigned int)> >, void (unsigned int, mojo::HandleSignalsState const&)>::RunImpl<void (* const&)(base::RepeatingCallback<void (unsigned int)> const&, unsigned int, mojo::HandleSignalsState const&), std::tuple<base::RepeatingCallback<void (unsigned int)> > const&, 0ul>(void (* const&)(base::RepeatingCallback<void (unsigned int)> const&, unsigned int, mojo::HandleSignalsState const&), std::tuple<base::RepeatingCallback<void (unsigned int)> > const&, std::integer_sequence<unsigned long, 0ul>, unsigned int&&, mojo::HandleSignalsState const&) (functor=
    @0x7fff2220c670: 0x7fffe47c40b8 <mojo::SimpleWatcher::DiscardReadyState(base::RepeatingCallback<void (unsigned int)> const&, unsigned int, mojo::HandleSignalsState const&)>, bound=std::tuple containing = {...}, unbound_args#0=@0x7fffa37fba24: 0, unbound_args#1=...)
--Type <RET> for more, q to quit, c to continue without paging--
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/base/bind_internal.h:672
#27 0x00007fffe47c9a49 in base::internal::Invoker<base::internal::BindState<void (*)(base::RepeatingCallback<void (unsigned int)> const&, unsigned int, mojo::HandleSignalsState const&), base::RepeatingCallback<void (unsigned int)> >, void (unsigned int, mojo::HandleSignalsState const&)>::Run(base::internal::BindStateBase*, unsigned int, mojo::HandleSignalsState const&) (base=0x7fff2220c650, unbound_args#0=0, unbound_args#1=...)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/base/bind_internal.h:654
#28 0x00007fffe8a3666a in base::RepeatingCallback<void (unsigned int, mojo::HandleSignalsState const&)>::Run(unsigned int, mojo::HandleSignalsState const&) const & (this=0x7fffa37fbad0, args#0=0, args#1=...) at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/base/callback.h:132
#29 0x00007fffe8a35544 in mojo::SimpleWatcher::OnHandleReady (this=0x7fff2220dce0, watch_id=1, result=0, state=...)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/mojo/public/cpp/system/simple_watcher.cc:292
#30 0x00007fffe8a35ba9 in mojo::SimpleWatcher::Context::Notify (this=0x55555db0e690, result=0, signals_state=..., flags=0)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/mojo/public/cpp/system/simple_watcher.cc:118
#31 0x00007fffe8a3586d in mojo::SimpleWatcher::Context::CallNotify (event=0x7fffa37fbde0)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/mojo/public/cpp/system/simple_watcher.cc:57
#32 0x00007fffe49dd043 in mojo::core::WatcherDispatcher::InvokeWatchCallback (this=0x7fff2220de50, context=93825132455568, result=0, state=..., flags=0)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/mojo/core/watcher_dispatcher.cc:94
#33 0x00007fffe49dc94d in mojo::core::Watch::InvokeCallback (this=0x7fff2220c710, result=0, state=..., flags=0)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/mojo/core/watch.cc:78
#34 0x00007fffe49d2210 in mojo::core::RequestContext::~RequestContext (this=0x7fffa37fc120, __in_chrg=<optimized out>)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/mojo/core/request_context.cc:72
#35 0x00007fffe49b06e7 in mojo::core::NodeChannel::OnChannelMessage (this=0x7fff95f463e0, payload=0x7fff96121370, payload_size=2096, 
    handles=std::vector of length 0, capacity 0)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/mojo/core/node_channel.cc:737
#36 0x00007fffe4989f75 in mojo::core::Channel::TryDispatchMessage (this=0x7fff95d8ab60, buffer=..., size_hint=0x7fffa37fc8f0)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/mojo/core/channel.cc:713
#37 0x00007fffe4989892 in mojo::core::Channel::OnReadComplete (this=0x7fff95d8ab60, bytes_read=1488, next_read_size_hint=0x7fffa37fc8f0)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/mojo/core/channel.cc:611
#38 0x00007fffe49ebaa4 in mojo::core::(anonymous namespace)::ChannelPosix::OnFileCanReadWithoutBlocking (this=0x7fff95d8ab60, fd=440)
--Type <RET> for more, q to quit, c to continue without paging--
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/mojo/core/channel_posix.cc:294
#39 0x00007fffe82564b0 in base::MessagePumpLibevent::FdWatchController::OnFileCanReadWithoutBlocking (this=0x7fff95e27d50, fd=440, pump=0x7fff94001cd0)
    at ./../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/base/message_loop/message_pump_libevent.cc:83
#40 0x00007fffe8257f66 in base::MessagePumpLibevent::OnLibeventNotification (fd=440, flags=2, context=0x7fff95e27d50)
    at ./../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/base/message_loop/message_pump_libevent.cc:325
#41 0x00007fffdd90ee2a in ?? () from /usr/lib/libevent-2.1.so.7
#42 0x00007fffdd90f4cf in event_base_loop () from /usr/lib/libevent-2.1.so.7
#43 0x00007fffe8257491 in base::MessagePumpLibevent::Run (this=0x7fff94001cd0, delegate=0x555555612808)
    at ./../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/base/message_loop/message_pump_libevent.cc:213
#44 0x00007fffe8132f1f in base::sequence_manager::internal::ThreadControllerWithMessagePumpImpl::Run (this=0x555555612800, 
    application_tasks_allowed=true, timeout=...)
    at ./../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/base/task/sequence_manager/thread_controller_with_message_pump_impl.cc:463
#45 0x00007fffe80996c5 in base::RunLoop::Run (this=0x7fffa37fd840)
    at ./../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/base/run_loop.cc:156
#46 0x00007fffe819729d in base::Thread::Run (this=0x55555594b6d0, run_loop=0x7fffa37fd840)
    at ./../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/base/threading/thread.cc:304
#47 0x00007fffecdbc47e in content::BrowserProcessSubThread::IOThreadRun (this=0x55555594b6d0, run_loop=0x7fffa37fd840)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/content/browser/browser_process_sub_thread.cc:158
#48 0x00007fffecdbc0f9 in content::BrowserProcessSubThread::Run (this=0x55555594b6d0, run_loop=0x7fffa37fd840)
    at ../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/content/browser/browser_process_sub_thread.cc:110
#49 0x00007fffe81978b0 in base::Thread::ThreadMain (this=0x55555594b6d0)
    at ./../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/base/threading/thread.cc:375
#50 0x00007fffe8240263 in base::(anonymous namespace)::ThreadFunc (params=0x55555594b9a0)
    at ./../../../../qtwebengine-everywhere-src-5.15.0-beta2/src/3rdparty/chromium/base/threading/platform_thread_posix.cc:81
#51 0x00007fffe057646f in start_thread () from /usr/lib/libpthread.so.0
#52 0x00007ffff6cb53d3 in clone () from /usr/lib/libc.so.6

      Attachments

        Issue Links

          is duplicated by

          Bug - A problem which impairs or prevents the functions of the product. QTBUG-83096 tst_qwebengineurlrequestinterceptor::ipv6HostEncoding test crashes on Windows occasionally

          • P2: Important - Urgent, should be fixed, but will not stop the release.
          • Closed
          No reviews matched the request. Check your Options in the drop-down menu of this sections header.

          Activity

            People

              michal Michal Klocek
              arojas Antonio Rojas
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Gerrit Reviews

                  There are no open Gerrit changes