Crash in timeout handler when calling phantom.exit() #11996

Closed
mfn opened this Issue Feb 20, 2014 · 6 comments

Projects

None yet

4 participants

@mfn

phantomjs: 1.9.7, downloaded official binary

Actually I've two dumps. They were produced by running phantomjs using netsniff.js on web page; second dump is below.

Operating system: Linux
                  0.0.0 Linux 2.6.26-2-vserver-amd64 #1 SMP Sun Mar 4 23:39:41 UTC 2012 x86_64
CPU: amd64
     family 6 model 26 stepping 5
     4 CPUs

Crash reason:  SIGSEGV
Crash address: 0xe0

Thread 0 (crashed)
 0  phantomjs!NetworkAccessManager::handleTimeout [networkaccessmanager.cpp : 283 + 0x8]
    rbx = 0x00007fff8f88a9c0   r12 = 0x000000000460f1b0
    r13 = 0x00007fff8f88a9b0   r14 = 0x00007fff8f88a9e0
    r15 = 0x0000000004414ca0   rip = 0x000000000042c2ef
    rsp = 0x00007fff8f88a940   rbp = 0x000000000460f1d8
    Found by: given as instruction pointer in context
 1  phantomjs!QMetaObject::activate [qobject.cpp : 3539 + 0x1e]
    rbx = 0x000000000000000e   r12 = 0x00007fff8f88b201
    r13 = 0x000000000046c540   r14 = 0x0000000000000009
    r15 = 0x000000000460cf50   rip = 0x0000000001cf6ef8
    rsp = 0x00007fff8f88aa50   rbp = 0x0000000004414ca0
    Found by: call frame info
 2  phantomjs!QObject::event [qobject.cpp : 1156 + 0x8]
    rbx = 0x000000000460f1b0   r12 = 0x00007fff8f88b270
    r13 = 0x00000000041f5ab0   r14 = 0x000000000006c3bc
    r15 = 0x00007fff8f88b270   rip = 0x0000000001cefbc4
    rsp = 0x00007fff8f88ab70   rbp = 0x000000000460f1b0
    Found by: call frame info
 3  phantomjs!QApplicationPrivate::notify_helper [qapplication.cpp : 4562 + 0xc]
    rbx = 0x00007fff8f88b4f0   r12 = 0x00007fff8f88b270
    r13 = 0x00000000041f5ab0   r14 = 0x000000000006c3bc
    r15 = 0x00007fff8f88b270   rip = 0x00000000015decaf
    rsp = 0x00007fff8f88ad10   rbp = 0x000000000460f1b0
    Found by: call frame info
 4  phantomjs!QApplication::notify [qapplication.cpp : 4423 + 0x17]
    rbx = 0x00007fff8f88b4f0   r12 = 0x00007fff8f88b270
    r13 = 0x00007fff8f88b4f0   r14 = 0x000000000006c3bc
    r15 = 0x00007fff8f88b270   rip = 0x00000000015e793b
    rsp = 0x00007fff8f88ad40   rbp = 0x000000000460f1b0
    Found by: call frame info
 5  phantomjs!QCoreApplication::notifyInternal [qcoreapplication.cpp : 946 + 0x2]
    rbx = 0x00000000041f31c0   r12 = 0x00007fff8f88b270
    r13 = 0x00007fff8f88b4f0   r14 = 0x000000000006c3bc
    r15 = 0x00007fff8f88b270   rip = 0x0000000001cde3d4
    rsp = 0x00007fff8f88b210   rbp = 0x000000000460f1b0
    Found by: call frame info
 6  phantomjs!QTimerInfoList::activateTimers [qcoreapplication.h : 231 + 0x14]
    rbx = 0x00000000041f7898   r12 = 0x0000000000000000
    r13 = 0x0000000000000001   r14 = 0x000000000006c3bc
    r15 = 0x00007fff8f88b270   rip = 0x0000000001d07ecd
    rsp = 0x00007fff8f88b260   rbp = 0x00000000005d207b
    Found by: call frame info
 7  phantomjs!QEventDispatcherUNIX::processEvents [qeventdispatcher_unix.cpp : 941 + 0x7]
    rbx = 0x0000000000000000   r12 = 0x00007fff8f88b340
    r13 = 0x00000000041f2560   r14 = 0x0000000000000001
    r15 = 0x00000000041f32d8   rip = 0x0000000001d080e0
    rsp = 0x00007fff8f88b2f0   rbp = 0x00000000041f7030
    Found by: call frame info
 8  phantomjs!QEventDispatcherQPA::processEvents [qeventdispatcher_qpa.cpp : 246 + 0x4]
    rbx = 0x0000000004419b90   r12 = 0x0000000000000000
    r13 = 0x00000000041f2560   r14 = 0x00007fff8f88b380
    r15 = 0x00000000041f32d8   rip = 0x000000000163a6a4
    rsp = 0x00007fff8f88b340   rbp = 0x00000000041f7030
    Found by: call frame info
 9  phantomjs!QEventLoop::processEvents [qeventloop.cpp : 149 + 0x1]
    rbx = 0x0000000004419b90   r12 = 0x00007fff8f88b410
    r13 = 0x00007fff8f88b420   r14 = 0x00000000041f3230
    r15 = 0x00000000041f32d8   rip = 0x0000000001cdd4b5
    rsp = 0x00007fff8f88b380   rbp = 0x00007fff8f88b3c0
    Found by: call frame info
10  phantomjs!QEventLoop::exec [qeventloop.cpp : 200 + 0x4]
    rbx = 0x0000000004419b90   r12 = 0x00007fff8f88b410
    r13 = 0x00007fff8f88b420   r14 = 0x00000000041f3230
    r15 = 0x00000000041f32d8   rip = 0x0000000001cdd918
    rsp = 0x00007fff8f88b3b0   rbp = 0x00007fff8f88b4f0
    Found by: call frame info
11  phantomjs!QCoreApplication::exec [qcoreapplication.cpp : 1218 + 0x4]
    rbx = 0x00000000041f31c0   r12 = 0x00007fff8f88b4f0
    r13 = 0x00007fff8f88b6a8   r14 = 0x00007fff8f88b460
    r15 = 0x0000000000000000   rip = 0x0000000001cdf7cb
    rsp = 0x00007fff8f88b410   rbp = 0x00000000041f31c0
    Found by: call frame info
12  phantomjs!main [main.cpp : 121 + 0x4]
    rbx = 0x0000000004242c20   r12 = 0x00007fff8f88b4f0
    r13 = 0x00007fff8f88b6a8   r14 = 0x00007fff8f88b460
    r15 = 0x0000000000000000   rip = 0x0000000000427cb2
    rsp = 0x00007fff8f88b450   rbp = 0x00007fff8f88b688
    Found by: call frame info
13  libc-2.11.3.so + 0x1ec8c
    rbx = 0x0000000000000000   r12 = 0x0000000000407cc0
    r13 = 0x00007fff8f88b680   r14 = 0x0000000000000000
    r15 = 0x0000000000000000   rip = 0x00007f1630a7cc8d
    rsp = 0x00007fff8f88b5b0   rbp = 0x0000000000000000
    Found by: call frame info
14  phantomjs + 0x27a5f
    rip = 0x0000000000427a60   rsp = 0x00007fff8f88b5d0
    Found by: stack scanning

Thread 1
 0  libc-2.11.3.so + 0xa0c5d
    rbx = 0x00007f162fc66d80   r12 = 0x00000000ffffffff
    r13 = 0x0000000000000000   r14 = 0x00007f163226f040
    r15 = 0x0000000000000003   rip = 0x00007f1630afec5d
    rsp = 0x00007f162fc66c50   rbp = 0x00007f162fc66d00
    Found by: given as instruction pointer in context
 1  libc-2.11.3.so + 0xa0acf
    rip = 0x00007f1630afead0   rsp = 0x00007f162fc66c60
    rbp = 0x00007f162fc66d00
    Found by: stack scanning
 2  phantomjs + 0x18b5c6f
    rip = 0x0000000001cb5c70   rsp = 0x00007f162fc66c68
    rbp = 0x00007f162fc66d00
    Found by: stack scanning
 3  ld-2.11.3.so + 0x9009
    rip = 0x00007f163205a00a   rsp = 0x00007f162fc66ca0
    rbp = 0x00007f162fc66d00
    Found by: stack scanning
 4  ld-2.11.3.so + 0x982b
    rip = 0x00007f163205a82c   rsp = 0x00007f162fc66ce0
    rbp = 0x00007f162fc66d00
    Found by: stack scanning
 5  libpthread-2.11.3.so + 0xefef
    rip = 0x00007f163157aff0   rsp = 0x00007f162fc66cf8
    rbp = 0x00007f162fc66d00
    Found by: stack scanning
 6  ld-2.11.3.so + 0x9af1
    rip = 0x00007f163205aaf2   rsp = 0x00007f162fc66d00
    rbp = 0x00007f162fc66d00
    Found by: stack scanning
 7  libc-2.11.3.so + 0xe217
    rip = 0x00007f1630a6c218   rsp = 0x00007f162fc66d48
    Found by: stack scanning
 8  libpthread-2.11.3.so + 0xb295
    rip = 0x00007f1631577296   rsp = 0x00007f162fc66e18
    Found by: stack scanning
 9  phantomjs!WTF::TCMalloc_PageHeap::scavengerThread [FastMalloc.cpp : 2499 + 0x4]
    rip = 0x00000000004dda2e   rsp = 0x00007f162fc66e40
    Found by: stack scanning
10  phantomjs!WTF::TCMalloc_PageHeap::runScavengerThread [FastMalloc.cpp : 1618 + 0x4]
    rbx = 0x0000000000000000   r12 = 0x00007f163157cfc0
    r13 = 0x0000000000000000   r14 = 0x00007f163226f040
    r15 = 0x0000000000000003   rip = 0x00000000004ddc99
    rsp = 0x00007f162fc66ec0   rbp = 0x0000000000000000
    Found by: call frame info
11  libpthread-2.11.3.so + 0x68c9
    rbx = 0x0000000000000000   r12 = 0x00007f163157cfc0
    r13 = 0x0000000000000000   r14 = 0x00007f163226f040
    r15 = 0x0000000000000003   rip = 0x00007f16315728ca
    rsp = 0x00007f162fc66ed0   rbp = 0x0000000000000000
    Found by: call frame info
12  libpthread-2.11.3.so + 0x10fbf
    rip = 0x00007f163157cfc0   rsp = 0x00007f162fc66f78
    Found by: stack scanning
13  libc-2.11.3.so + 0xcfb6c
    rip = 0x00007f1630b2db6d   rsp = 0x00007f162fc66fe0
    Found by: stack scanning

Thread 2
 0  libc-2.11.3.so + 0xc93e3
    rbx = 0x0000000000000000   r12 = 0x00007f162f465da0
    r13 = 0x0000000000000009   r14 = 0x00000000043bf2f8
    r15 = 0x00000000043bf590   rip = 0x00007f1630b273e3
    rsp = 0x00007f162f465b70   rbp = 0x00000000043bf140
    Found by: given as instruction pointer in context
 1  phantomjs!qt_safe_select [qcore_unix.cpp : 83 + 0x15]
    rip = 0x0000000001d06327   rsp = 0x00007f162f465b80
    Found by: stack scanning
 2  phantomjs!QEventDispatcherUNIXPrivate::doSelect [qeventdispatcher_unix.cpp : 223 + 0xd]
    rbx = 0x0000000004236b80   r12 = 0x00007f162f465da0
    r13 = 0x00000000043bf140   r14 = 0x0000000000000000
    r15 = 0x00000000043bf590   rip = 0x0000000001d075e7
    rsp = 0x00007f162f465c10   rbp = 0x00000000043bf140
    Found by: call frame info
 3  phantomjs!QEventDispatcherUNIX::processEvents [qeventdispatcher_unix.cpp : 937 + 0x4]
    rbx = 0x0000000004236b80   r12 = 0x00007f162f465da0
    r13 = 0x0000000004242570   r14 = 0x0000000000000001
    r15 = 0x0000000004232fa8   rip = 0x0000000001d08092
    rsp = 0x00007f162f465d50   rbp = 0x00000000043bf140
    Found by: call frame info
 4  phantomjs!QEventLoop::processEvents [qeventloop.cpp : 149 + 0x1]
    rbx = 0x0000000004236b80   r12 = 0x00007f162f465e30
    r13 = 0x00007f162f465e40   r14 = 0x00000000041f3230
    r15 = 0x0000000004232fa8   rip = 0x0000000001cdd4b5
    rsp = 0x00007f162f465da0   rbp = 0x00007f162f465de0
    Found by: call frame info
 5  phantomjs!QEventLoop::exec [qeventloop.cpp : 200 + 0x4]
    rbx = 0x0000000004236b80   r12 = 0x00007f162f465e30
    r13 = 0x00007f162f465e40   r14 = 0x00000000041f3230
    r15 = 0x0000000004232fa8   rip = 0x0000000001cdd918
    rsp = 0x00007f162f465dd0   rbp = 0x00007fff8f88b4f0
    Found by: call frame info
 6  phantomjs!QThread::exec [qthread.cpp : 542 + 0xc]
    rbx = 0x0000000004232f20   r12 = 0x0000000004232fa8
    r13 = 0x0000000000000001   r14 = 0x00007f163226f040
    r15 = 0x0000000000000003   rip = 0x0000000001bdfdf6
    rsp = 0x00007f162f465e30   rbp = 0x0000000004232fa8
    Found by: call frame info
 7  phantomjs!QThreadPrivate::start [qthread_unix.cpp : 338 + 0x9]
    rbx = 0x0000000004232fa8   r12 = 0x000000000422af80
    r13 = 0x0000000000000001   r14 = 0x00007f163226f040
    r15 = 0x0000000000000003   rip = 0x0000000001be2cc2
    rsp = 0x00007f162f465e80   rbp = 0x0000000004233b20
    Found by: call frame info
 8  libpthread-2.11.3.so + 0x68c9
    rbx = 0x0000000000000000   r12 = 0x00007fff8f88a9d0
    r13 = 0x00007f162f466700   r14 = 0x00007f163226f040
    r15 = 0x0000000000000003   rip = 0x00007f16315728ca
    rsp = 0x00007f162f465ed0   rbp = 0x0000000000000000
    Found by: call frame info

Thread 3
 0  libpthread-2.11.3.so + 0xb7d2
    rbx = 0x0000000004421ac0   r12 = 0x0000000000000039
    r13 = 0x00007f15ed3a9de0   r14 = 0xffffffffffffff92
    r15 = 0x0000000000000000   rip = 0x00007f16315777d2
    rsp = 0x00007f15ed3a9d68   rbp = 0x0000000004421de0
    Found by: given as instruction pointer in context
 1  phantomjs!QWaitCondition::wait [qwaitcondition_unix.cpp : 84 + 0x7]
    rip = 0x0000000001be39d7   rsp = 0x00007f15ed3a9dc0
    Found by: stack scanning
 2  phantomjs!QThreadPoolThread::run [qthreadpool.cpp : 141 + 0x1d]
    rbx = 0x00000000044219e0   r12 = 0x0000000004421a69
    r13 = 0x0000000000000002   r14 = 0x00007f15e8047e30
    r15 = 0x0000000000000003   rip = 0x0000000001bd783d
    rsp = 0x00007f15ed3a9e40   rbp = 0x0000000004421de0
    Found by: call frame info
 3  phantomjs!QThreadPrivate::start [qthread_unix.cpp : 338 + 0x9]
    rbx = 0x0000000004422f20   r12 = 0x0000000004421f80
    r13 = 0x0000000000000001   r14 = 0x00007f163226f040
    r15 = 0x0000000000000003   rip = 0x0000000001be2cc2
    rsp = 0x00007f15ed3a9e80   rbp = 0x0000000004421de0
    Found by: call frame info
 4  libpthread-2.11.3.so + 0x68c9
    rbx = 0x0000000000000000   r12 = 0x00007f15edba95b0
    r13 = 0x00007f15ed3aa700   r14 = 0x00007f163226f040
    r15 = 0x0000000000000003   rip = 0x00007f16315728ca
    rsp = 0x00007f15ed3a9ed0   rbp = 0x0000000000000000
    Found by: call frame info

Thread 4
 0  libpthread-2.11.3.so + 0xb7d2
    rbx = 0x0000000004421ac0   r12 = 0x0000000000000032
    r13 = 0x00007f15e7ffede0   r14 = 0xffffffffffffff92
    r15 = 0x0000000000000000   rip = 0x00007f16315777d2
    rsp = 0x00007f15e7ffed68   rbp = 0x00007f15e8022e60
    Found by: given as instruction pointer in context
 1  phantomjs!QWaitCondition::wait [qwaitcondition_unix.cpp : 84 + 0x7]
    rip = 0x0000000001be39d7   rsp = 0x00007f15e7ffedc0
    rbp = 0x00007f15e8022e60
    Found by: stack scanning
 2  phantomjs!QThreadPoolThread::run [qthreadpool.cpp : 141 + 0x1d]
    rbx = 0x00000000044219e0   r12 = 0x0000000004421a69
    r13 = 0x0000000000000002   r14 = 0x00007f15e80e80b0
    r15 = 0x0000000000000003   rip = 0x0000000001bd783d
    rsp = 0x00007f15e7ffee40   rbp = 0x00007f15e8022e60
    Found by: call frame info
 3  phantomjs!QThreadPrivate::start [qthread_unix.cpp : 338 + 0x9]
    rbx = 0x0000000004434960   r12 = 0x00007f15e8001850
    r13 = 0x0000000000000001   r14 = 0x00007f163226f040
    r15 = 0x0000000000000003   rip = 0x0000000001be2cc2
    rsp = 0x00007f15e7ffee80   rbp = 0x00007f15e8022e60
    Found by: call frame info
 4  libpthread-2.11.3.so + 0x68c9
    rbx = 0x0000000000000000   r12 = 0x00007f15edba95b0
    r13 = 0x00007f15e7fff700   r14 = 0x00007f163226f040
    r15 = 0x0000000000000003   rip = 0x00007f16315728ca
    rsp = 0x00007f15e7ffeed0   rbp = 0x0000000000000000
    Found by: call frame info

Thread 5
 0  libpthread-2.11.3.so + 0xb1fc
    rbx = 0x0000000004496250   r12 = 0x004189374bc6a7ef
    r13 = 0xffffffffffffffff   r14 = 0x0000000004496278
    r15 = 0x0000000004496990   rip = 0x00007f16315771fc
    rsp = 0x00007f15e77fdd38   rbp = 0x00007f15ec507990
    Found by: given as instruction pointer in context
 1  phantomjs!QWaitCondition::wait [qwaitcondition_unix.cpp : 86 + 0xa]
    rip = 0x0000000001be39f5   rsp = 0x00007f15e77fdd60
    rbp = 0x00007f15ec507990
    Found by: stack scanning
 2  phantomjs!WTF::ThreadCondition::timedWait [ThreadingQt.cpp : 253 + 0x12]
    rbx = 0x00007f15ec507988   r12 = 0x0000000000000004
    r13 = 0x00007f15ec507988   r14 = 0x00007f15ec507990
    r15 = 0x00007f15e77fde40   rip = 0x00000000004e70ea
    rsp = 0x00007f15e77fdde0   rbp = 0x00007f15ec507990
    Found by: call frame info
 3  phantomjs!WTF::MessageQueue<WebCore::LocalStorageTask>::waitForMessage [MessageQueue.h : 137 + 0x12]
    rbx = 0x0000000000000004   r12 = 0x0000000000000004
    r13 = 0x00007f15ec507988   r14 = 0x00007f15ec507990
    r15 = 0x00007f15e77fde40   rip = 0x0000000001185269
    rsp = 0x00007f15e77fde00   rbp = 0x00007f15ec507998
    Found by: call frame info
 4  phantomjs!WebCore::LocalStorageThread::threadEntryPoint [LocalStorageThread.cpp : 68 + 0xa]
    rbx = 0x00007f15e620ea00   r12 = 0x00000000044e2fb0
    r13 = 0x0000000000000001   r14 = 0x00007f163226f040
    r15 = 0x0000000000000003   rip = 0x0000000001185493
    rsp = 0x00007f15e77fde40   rbp = 0x00007f15ec507988
    Found by: call frame info
 5  phantomjs!WTF::ThreadPrivate::run [ThreadingQt.cpp : 66 + 0x6]
    rbx = 0x00000000044b3f00   r12 = 0x00000000044e2fb0
    r13 = 0x0000000000000001   r14 = 0x00007f163226f040
    r15 = 0x0000000000000003   rip = 0x00000000004e68fb
    rsp = 0x00007f15e77fde70   rbp = 0x00000000044b3f00
    Found by: call frame info
 6  phantomjs!QThreadPrivate::start [qthread_unix.cpp : 338 + 0x9]
    rbx = 0x00000000044e2ef8   r12 = 0x00000000044e2fb0
    r13 = 0x0000000000000001   r14 = 0x00007f163226f040
    r15 = 0x0000000000000003   rip = 0x0000000001be2cc2
    rsp = 0x00007f15e77fde80   rbp = 0x00000000044b3f00
    Found by: call frame info
 7  libpthread-2.11.3.so + 0x68c9
    rbx = 0x0000000000000000   r12 = 0x00007fff8f889b40
    r13 = 0x00007f15e77fe700   r14 = 0x00007f163226f040
    r15 = 0x0000000000000003   rip = 0x00007f16315728ca
    rsp = 0x00007f15e77fded0   rbp = 0x0000000000000000
    Found by: call frame info

Thread 6
 0  libpthread-2.11.3.so + 0xb7d2
    rbx = 0x0000000004421ac0   r12 = 0x0000000000000036
    r13 = 0x00007f15e6e8bde0   r14 = 0xffffffffffffff92
    r15 = 0x0000000000000000   rip = 0x00007f16315777d2
    rsp = 0x00007f15e6e8bd68   rbp = 0x00007f15e804d6d0
    Found by: given as instruction pointer in context
 1  phantomjs!QWaitCondition::wait [qwaitcondition_unix.cpp : 84 + 0x7]
    rip = 0x0000000001be39d7   rsp = 0x00007f15e6e8bdc0
    rbp = 0x00007f15e804d6d0
    Found by: stack scanning
 2  phantomjs!QThreadPoolThread::run [qthreadpool.cpp : 141 + 0x1d]
    rbx = 0x00000000044219e0   r12 = 0x0000000004421a69
    r13 = 0x0000000000000002   r14 = 0x0000000004e4f0b0
    r15 = 0x0000000000000003   rip = 0x0000000001bd783d
    rsp = 0x00007f15e6e8be40   rbp = 0x00007f15e804d6d0
    Found by: call frame info
 3  phantomjs!QThreadPrivate::start [qthread_unix.cpp : 338 + 0x9]
    rbx = 0x00000000045d9bf0   r12 = 0x00007f15e804dac0
    r13 = 0x0000000000000001   r14 = 0x00007f163226f040
    r15 = 0x0000000000000003   rip = 0x0000000001be2cc2
    rsp = 0x00007f15e6e8be80   rbp = 0x00007f15e804d6d0
    Found by: call frame info
 4  libpthread-2.11.3.so + 0x68c9
    rbx = 0x0000000000000000   r12 = 0x00007f15edba95b0
    r13 = 0x00007f15e6e8c700   r14 = 0x00007f163226f040
    r15 = 0x0000000000000003   rip = 0x00007f16315728ca
    rsp = 0x00007f15e6e8bed0   rbp = 0x0000000000000000
    Found by: call frame info

Thread 7
 0  libpthread-2.11.3.so + 0xb7d2
    rbx = 0x0000000004421ac0   r12 = 0x0000000000000034
    r13 = 0x00007f15e51f0de0   r14 = 0xffffffffffffff92
    r15 = 0x0000000000000000   rip = 0x00007f16315777d2
    rsp = 0x00007f15e51f0d68   rbp = 0x0000000004d960e0
    Found by: given as instruction pointer in context
 1  phantomjs!QWaitCondition::wait [qwaitcondition_unix.cpp : 84 + 0x7]
    rip = 0x0000000001be39d7   rsp = 0x00007f15e51f0dc0
    Found by: stack scanning
 2  phantomjs!QThreadPoolThread::run [qthreadpool.cpp : 141 + 0x1d]
    rbx = 0x00000000044219e0   r12 = 0x0000000004421a69
    r13 = 0x0000000000000002   r14 = 0x00007f15e80c3f60
    r15 = 0x0000000000000003   rip = 0x0000000001bd783d
    rsp = 0x00007f15e51f0e40   rbp = 0x0000000004d960e0
    Found by: call frame info
 3  phantomjs!QThreadPrivate::start [qthread_unix.cpp : 338 + 0x9]
    rbx = 0x0000000004d967f0   r12 = 0x0000000004d96410
    r13 = 0x0000000000000001   r14 = 0x00007f163226f040
    r15 = 0x0000000000000003   rip = 0x0000000001be2cc2
    rsp = 0x00007f15e51f0e80   rbp = 0x0000000004d960e0
    Found by: call frame info
 4  libpthread-2.11.3.so + 0x68c9
    rbx = 0x0000000000000000   r12 = 0x00007f15edba95b0
    r13 = 0x00007f15e51f1700   r14 = 0x00007f163226f040
    r15 = 0x0000000000000003   rip = 0x00007f16315728ca
    rsp = 0x00007f15e51f0ed0   rbp = 0x0000000000000000
    Found by: call frame info

Thread 8
 0  libpthread-2.11.3.so + 0xb7d2
    rbx = 0x0000000004421ac0   r12 = 0x0000000000000038
    r13 = 0x00007f15e49efde0   r14 = 0xffffffffffffff92
    r15 = 0x0000000000000000   rip = 0x00007f16315777d2
    rsp = 0x00007f15e49efd68   rbp = 0x00007f15e806b990
    Found by: given as instruction pointer in context
 1  phantomjs!QWaitCondition::wait [qwaitcondition_unix.cpp : 84 + 0x7]
    rip = 0x0000000001be39d7   rsp = 0x00007f15e49efdc0
    rbp = 0x00007f15e806b990
    Found by: stack scanning
 2  phantomjs!QThreadPoolThread::run [qthreadpool.cpp : 141 + 0x1d]
    rbx = 0x00000000044219e0   r12 = 0x0000000004421a69
    r13 = 0x0000000000000002   r14 = 0x0000000004e6c090
    r15 = 0x0000000000000003   rip = 0x0000000001bd783d
    rsp = 0x00007f15e49efe40   rbp = 0x00007f15e806b990
    Found by: call frame info
 3  phantomjs!QThreadPrivate::start [qthread_unix.cpp : 338 + 0x9]
    rbx = 0x0000000004d8d650   r12 = 0x00007f15e806bbf0
    r13 = 0x0000000000000001   r14 = 0x00007f163226f040
    r15 = 0x0000000000000003   rip = 0x0000000001be2cc2
    rsp = 0x00007f15e49efe80   rbp = 0x00007f15e806b990
    Found by: call frame info
 4  libpthread-2.11.3.so + 0x68c9
    rbx = 0x0000000000000000   r12 = 0x00007f15edba95b0
    r13 = 0x00007f15e49f0700   r14 = 0x00007f163226f040
    r15 = 0x0000000000000003   rip = 0x00007f16315728ca
    rsp = 0x00007f15e49efed0   rbp = 0x0000000000000000
    Found by: call frame info

Loaded modules:
0x00400000 - 0x0268dfff  phantomjs  ???  (main)
0x7f15ec00e000 - 0x7f15ec0a8fff  DejaVuSans.ttf  ???
0x7f15ec581000 - 0x7f15ec786fff  libnss_dns-2.11.3.so  ???
0x7f15ec787000 - 0x7f15ec993fff  libnss_files-2.11.3.so  ???
0x7f15ec994000 - 0x7f15ecba7fff  libresolv-2.11.3.so  ???
0x7f15ee3de000 - 0x7f15ee3f1fff  n019003l.pfb  ???
0x7f162fc68000 - 0x7f162febefff  libssl.so.0.9.8  ???
0x7f162febf000 - 0x7f163025bfff  libcrypto.so.0.9.8  ???
0x7f1630260000 - 0x7f163061efff  locale-archive  ???
0x7f163061f000 - 0x7f1630846fff  libexpat.so.1.5.2  ???
0x7f1630847000 - 0x7f1630a5dfff  libz.so.1.2.3.4  ???
0x7f1630a5e000 - 0x7f1630dbafff  libc-2.11.3.so  ???
0x7f1630dc0000 - 0x7f1630fd5fff  libgcc_s.so.1  ???
0x7f1630fd6000 - 0x7f1631257fff  libm-2.11.3.so  ???
0x7f1631258000 - 0x7f1631556fff  libstdc++.so.6.0.13  ???
0x7f163156c000 - 0x7f1631783fff  libpthread-2.11.3.so  ???
0x7f1631788000 - 0x7f163198ffff  librt-2.11.3.so  ???
0x7f1631990000 - 0x7f1631b93fff  libdl-2.11.3.so  ???
0x7f1631b94000 - 0x7f1631dc8fff  libfontconfig.so.1.4.4  ???
0x7f1631dc9000 - 0x7f1632050fff  libfreetype.so.6.6.0  ???
0x7f1632051000 - 0x7f163206efff  ld-2.11.3.so  ???
0x7f163224b000 - 0x7f1632253fff  945677eb7aeaf62f1d50efc3fb3ec7d8-le64.cache-3  ???
0x7f1632254000 - 0x7f1632257fff  6eb3985aa4124903f6ff08ba781cd364-le64.cache-3  ???
0x7f1632258000 - 0x7f163225bfff  6d41288fd70b0be22e8c3a91e032eec0-le64.cache-3  ???
0x7f1632263000 - 0x7f163226bfff  e13b20fdb08344e0e664864cc2ede53d-le64.cache-3  ???
0x7fff8f9ff000 - 0x7fff8f9fffff  linux-gate.so  ???

Second dump:

Operating system: Linux
                  0.0.0 Linux 2.6.26-2-vserver-amd64 #1 SMP Sun Mar 4 23:39:41 UTC 2012 x86_64
CPU: amd64
     family 6 model 26 stepping 5
     4 CPUs

Crash reason:  SIGSEGV
Crash address: 0x0

Thread 0 (crashed)
 0  0x0
    rbx = 0x00007fffd59f6160   r12 = 0x000000000468fcb0
    r13 = 0x00007fffd59f6150   r14 = 0x00007fffd59f6180
    r15 = 0x00000000044ebd50   rip = 0x0000000000000000
    rsp = 0x00007fffd59f60d8   rbp = 0x000000000468fcd8
    Found by: given as instruction pointer in context
 1  phantomjs!NetworkAccessManager::handleTimeout [networkaccessmanager.cpp : 283 + 0xd]
    rip = 0x000000000042c2f5   rsp = 0x00007fffd59f60e0
    Found by: stack scanning
 2  phantomjs!QMetaObject::activate [qobject.cpp : 3539 + 0x1e]
    rbx = 0x000000000000000e   r12 = 0x00007fffd59f6a01
    r13 = 0x000000000046c540   r14 = 0x0000000000000009
    r15 = 0x0000000004690b30   rip = 0x0000000001cf6ef8
    rsp = 0x00007fffd59f61f0   rbp = 0x00000000044ebd50
    Found by: call frame info
 3  phantomjs!QObject::event [qobject.cpp : 1156 + 0x8]
    rbx = 0x000000000468fcb0   r12 = 0x00007fffd59f6a10
    r13 = 0x00000000042ccab0   r14 = 0x00000000000a9152
    r15 = 0x00007fffd59f6a10   rip = 0x0000000001cefbc4
    rsp = 0x00007fffd59f6310   rbp = 0x000000000468fcb0
    Found by: call frame info
 4  phantomjs!QApplicationPrivate::notify_helper [qapplication.cpp : 4562 + 0xc]
    rbx = 0x00007fffd59f6c90   r12 = 0x00007fffd59f6a10
    r13 = 0x00000000042ccab0   r14 = 0x00000000000a9152
    r15 = 0x00007fffd59f6a10   rip = 0x00000000015decaf
    rsp = 0x00007fffd59f64b0   rbp = 0x000000000468fcb0
    Found by: call frame info
 5  phantomjs!QApplication::notify [qapplication.cpp : 4423 + 0x17]
    rbx = 0x00007fffd59f6c90   r12 = 0x00007fffd59f6a10
    r13 = 0x00007fffd59f6c90   r14 = 0x00000000000a9152
    r15 = 0x00007fffd59f6a10   rip = 0x00000000015e793b
    rsp = 0x00007fffd59f64e0   rbp = 0x000000000468fcb0
    Found by: call frame info
 6  phantomjs!QCoreApplication::notifyInternal [qcoreapplication.cpp : 946 + 0x2]
    rbx = 0x00000000042ca1c0   r12 = 0x00007fffd59f6a10
    r13 = 0x00007fffd59f6c90   r14 = 0x00000000000a9152
    r15 = 0x00007fffd59f6a10   rip = 0x0000000001cde3d4
    rsp = 0x00007fffd59f69b0   rbp = 0x000000000468fcb0
    Found by: call frame info
 7  phantomjs!QTimerInfoList::activateTimers [qcoreapplication.h : 231 + 0x14]
    rbx = 0x00000000042ce898   r12 = 0x0000000000000001
    r13 = 0x0000000000000001   r14 = 0x00000000000a9152
    r15 = 0x00007fffd59f6a10   rip = 0x0000000001d07ecd
    rsp = 0x00007fffd59f6a00   rbp = 0x00000000005d2656
    Found by: call frame info
 8  phantomjs!QEventDispatcherUNIX::processEvents [qeventdispatcher_unix.cpp : 941 + 0x7]
    rbx = 0x0000000000000000   r12 = 0x00007fffd59f6ae0
    r13 = 0x00000000042c9560   r14 = 0x0000000000000001
    r15 = 0x00000000042ca2d8   rip = 0x0000000001d080e0
    rsp = 0x00007fffd59f6a90   rbp = 0x00000000042ce030
    Found by: call frame info
 9  phantomjs!QEventDispatcherQPA::processEvents [qeventdispatcher_qpa.cpp : 246 + 0x4]
    rbx = 0x00000000044f0d60   r12 = 0x0000000000000000
    r13 = 0x00000000042c9560   r14 = 0x00007fffd59f6b20
    r15 = 0x00000000042ca2d8   rip = 0x000000000163a6a4
    rsp = 0x00007fffd59f6ae0   rbp = 0x00000000042ce030
    Found by: call frame info
10  phantomjs!QEventLoop::processEvents [qeventloop.cpp : 149 + 0x1]
    rbx = 0x00000000044f0d60   r12 = 0x00007fffd59f6bb0
    r13 = 0x00007fffd59f6bc0   r14 = 0x00000000042ca230
    r15 = 0x00000000042ca2d8   rip = 0x0000000001cdd4b5
    rsp = 0x00007fffd59f6b20   rbp = 0x00007fffd59f6b60
    Found by: call frame info
11  phantomjs!QEventLoop::exec [qeventloop.cpp : 200 + 0x4]
    rbx = 0x00000000044f0d60   r12 = 0x00007fffd59f6bb0
    r13 = 0x00007fffd59f6bc0   r14 = 0x00000000042ca230
    r15 = 0x00000000042ca2d8   rip = 0x0000000001cdd918
    rsp = 0x00007fffd59f6b50   rbp = 0x00007fffd59f6c90
    Found by: call frame info
12  phantomjs!QCoreApplication::exec [qcoreapplication.cpp : 1218 + 0x4]
    rbx = 0x00000000042ca1c0   r12 = 0x00007fffd59f6c90
    r13 = 0x00007fffd59f6e48   r14 = 0x00007fffd59f6c00
    r15 = 0x0000000000000000   rip = 0x0000000001cdf7cb
    rsp = 0x00007fffd59f6bb0   rbp = 0x00000000042ca1c0
    Found by: call frame info
13  phantomjs!main [main.cpp : 121 + 0x4]
    rbx = 0x0000000004319dd0   r12 = 0x00007fffd59f6c90
    r13 = 0x00007fffd59f6e48   r14 = 0x00007fffd59f6c00
    r15 = 0x0000000000000000   rip = 0x0000000000427cb2
    rsp = 0x00007fffd59f6bf0   rbp = 0x00007fffd59f6e28
    Found by: call frame info
14  libc-2.11.3.so + 0x1ec8c
    rbx = 0x0000000000000000   r12 = 0x0000000000407cc0
    r13 = 0x00007fffd59f6e20   r14 = 0x0000000000000000
    r15 = 0x0000000000000000   rip = 0x00007f1f586dac8d
    rsp = 0x00007fffd59f6d50   rbp = 0x0000000000000000
    Found by: call frame info
15  phantomjs + 0x27a5f
    rip = 0x0000000000427a60   rsp = 0x00007fffd59f6d70
    Found by: stack scanning

Thread 1
 0  libc-2.11.3.so + 0xa0c5d
    rbx = 0x00007f1f578c4d80   r12 = 0x00000000ffffffff
    r13 = 0x00007f1f1611c0c0   r14 = 0x0000000002a7e1a0
    r15 = 0x0000000002a7e170   rip = 0x00007f1f5875cc5d
    rsp = 0x00007f1f578c4c50   rbp = 0x00007f1f578c4d00
    Found by: given as instruction pointer in context
 1  libc-2.11.3.so + 0xa0acf
    rip = 0x00007f1f5875cad0   rsp = 0x00007f1f578c4c60
    rbp = 0x00007f1f578c4d00
    Found by: stack scanning
 2  phantomjs + 0x18b5c6f
    rip = 0x0000000001cb5c70   rsp = 0x00007f1f578c4c68
    rbp = 0x00007f1f578c4d00
    Found by: stack scanning
 3  ld-2.11.3.so + 0x9009
    rip = 0x00007f1f59cb800a   rsp = 0x00007f1f578c4ca0
    rbp = 0x00007f1f578c4d00
    Found by: stack scanning
 4  ld-2.11.3.so + 0x982b
    rip = 0x00007f1f59cb882c   rsp = 0x00007f1f578c4ce0
    rbp = 0x00007f1f578c4d00
    Found by: stack scanning
 5  libpthread-2.11.3.so + 0xefef
    rip = 0x00007f1f591d8ff0   rsp = 0x00007f1f578c4cf8
    rbp = 0x00007f1f578c4d00
    Found by: stack scanning
 6  ld-2.11.3.so + 0x9af1
    rip = 0x00007f1f59cb8af2   rsp = 0x00007f1f578c4d00
    rbp = 0x00007f1f578c4d00
    Found by: stack scanning
 7  libc-2.11.3.so + 0xe217
    rip = 0x00007f1f586ca218   rsp = 0x00007f1f578c4d48
    Found by: stack scanning
 8  libpthread-2.11.3.so + 0xb295
    rip = 0x00007f1f591d5296   rsp = 0x00007f1f578c4e18
    Found by: stack scanning
 9  phantomjs!WTF::TCMalloc_PageHeap::scavengerThread [FastMalloc.cpp : 2499 + 0x4]
    rip = 0x00000000004dda2e   rsp = 0x00007f1f578c4e40
    Found by: stack scanning
10  phantomjs!WTF::TCMalloc_PageHeap::runScavengerThread [FastMalloc.cpp : 1618 + 0x4]
    rbx = 0x0000000000000000   r12 = 0x00007f1f591dafc0
    r13 = 0x0000000000000000   r14 = 0x00007f1f59ecd040
    r15 = 0x0000000000000003   rip = 0x00000000004ddc99
    rsp = 0x00007f1f578c4ec0   rbp = 0x0000000000000000
    Found by: call frame info
11  libpthread-2.11.3.so + 0x68c9
    rbx = 0x0000000000000000   r12 = 0x00007f1f591dafc0
    r13 = 0x0000000000000000   r14 = 0x00007f1f59ecd040
    r15 = 0x0000000000000003   rip = 0x00007f1f591d08ca
    rsp = 0x00007f1f578c4ed0   rbp = 0x0000000000000000
    Found by: call frame info
12  libpthread-2.11.3.so + 0x10fbf
    rip = 0x00007f1f591dafc0   rsp = 0x00007f1f578c4f78
    Found by: stack scanning
13  libc-2.11.3.so + 0xcfb6c
    rip = 0x00007f1f5878bb6d   rsp = 0x00007f1f578c4fe0
    Found by: stack scanning

Thread 2
 0  libc-2.11.3.so + 0xc93e3
    rbx = 0x0000000000000000   r12 = 0x00007f1f570c3da0
    r13 = 0x0000000000000009   r14 = 0x00000000044a0318
    r15 = 0x00000000044a05b0   rip = 0x00007f1f587853e3
    rsp = 0x00007f1f570c3b70   rbp = 0x00000000044a0160
    Found by: given as instruction pointer in context
 1  phantomjs!qt_safe_select [qcore_unix.cpp : 83 + 0x15]
    rip = 0x0000000001d06327   rsp = 0x00007f1f570c3b80
    Found by: stack scanning
 2  phantomjs!QEventDispatcherUNIXPrivate::doSelect [qeventdispatcher_unix.cpp : 223 + 0xd]
    rbx = 0x000000000430a7f0   r12 = 0x00007f1f570c3da0
    r13 = 0x00000000044a0160   r14 = 0x0000000000000000
    r15 = 0x00000000044a05b0   rip = 0x0000000001d075e7
    rsp = 0x00007f1f570c3c10   rbp = 0x00000000044a0160
    Found by: call frame info
 3  phantomjs!QEventDispatcherUNIX::processEvents [qeventdispatcher_unix.cpp : 937 + 0x4]
    rbx = 0x000000000430a7f0   r12 = 0x00007f1f570c3da0
    r13 = 0x0000000004309810   r14 = 0x0000000000000001
    r15 = 0x0000000004318658   rip = 0x0000000001d08092
    rsp = 0x00007f1f570c3d50   rbp = 0x00000000044a0160
    Found by: call frame info
 4  phantomjs!QEventLoop::processEvents [qeventloop.cpp : 149 + 0x1]
    rbx = 0x000000000430a7f0   r12 = 0x00007f1f570c3e30
    r13 = 0x00007f1f570c3e40   r14 = 0x00000000042ca230
    r15 = 0x0000000004318658   rip = 0x0000000001cdd4b5
    rsp = 0x00007f1f570c3da0   rbp = 0x00007f1f570c3de0
    Found by: call frame info
 5  phantomjs!QEventLoop::exec [qeventloop.cpp : 200 + 0x4]
    rbx = 0x000000000430a7f0   r12 = 0x00007f1f570c3e30
    r13 = 0x00007f1f570c3e40   r14 = 0x00000000042ca230
    r15 = 0x0000000004318658   rip = 0x0000000001cdd918
    rsp = 0x00007f1f570c3dd0   rbp = 0x00007fffd59f6c90
    Found by: call frame info
 6  phantomjs!QThread::exec [qthread.cpp : 542 + 0xc]
    rbx = 0x00000000043185d0   r12 = 0x0000000004318658
    r13 = 0x0000000000000001   r14 = 0x00007f1f59ecd040
    r15 = 0x0000000000000003   rip = 0x0000000001bdfdf6
    rsp = 0x00007f1f570c3e30   rbp = 0x0000000004318658
    Found by: call frame info
 7  phantomjs!QThreadPrivate::start [qthread_unix.cpp : 338 + 0x9]
    rbx = 0x0000000004318658   r12 = 0x000000000430e9a0
    r13 = 0x0000000000000001   r14 = 0x00007f1f59ecd040
    r15 = 0x0000000000000003   rip = 0x0000000001be2cc2
    rsp = 0x00007f1f570c3e80   rbp = 0x000000000430acd0
    Found by: call frame info
 8  libpthread-2.11.3.so + 0x68c9
    rbx = 0x0000000000000000   r12 = 0x00007fffd59f6170
    r13 = 0x00007f1f570c4700   r14 = 0x00007f1f59ecd040
    r15 = 0x0000000000000003   rip = 0x00007f1f591d08ca
    rsp = 0x00007f1f570c3ed0   rbp = 0x0000000000000000
    Found by: call frame info

Thread 3
 0  libpthread-2.11.3.so + 0xb7d2
    rbx = 0x00000000044b0a60   r12 = 0x0000000000000031
    r13 = 0x00007f1f14ff5de0   r14 = 0xffffffffffffff92
    r15 = 0x0000000000000000   rip = 0x00007f1f591d57d2
    rsp = 0x00007f1f14ff5d68   rbp = 0x00000000044b0d90
    Found by: given as instruction pointer in context
 1  phantomjs!QWaitCondition::wait [qwaitcondition_unix.cpp : 84 + 0x7]
    rip = 0x0000000001be39d7   rsp = 0x00007f1f14ff5dc0
    Found by: stack scanning
 2  phantomjs!QThreadPoolThread::run [qthreadpool.cpp : 141 + 0x1d]
    rbx = 0x00000000044b0980   r12 = 0x00000000044b0a09
    r13 = 0x0000000000000002   r14 = 0x000000000466afa0
    r15 = 0x0000000000000003   rip = 0x0000000001bd783d
    rsp = 0x00007f1f14ff5e40   rbp = 0x00000000044b0d90
    Found by: call frame info
 3  phantomjs!QThreadPrivate::start [qthread_unix.cpp : 338 + 0x9]
    rbx = 0x0000000004523550   r12 = 0x00000000044b0f30
    r13 = 0x0000000000000001   r14 = 0x00007f1f59ecd040
    r15 = 0x0000000000000003   rip = 0x0000000001be2cc2
    rsp = 0x00007f1f14ff5e80   rbp = 0x00000000044b0d90
    Found by: call frame info
 4  libpthread-2.11.3.so + 0x68c9
    rbx = 0x0000000000000000   r12 = 0x00007f1f157f55b0
    r13 = 0x00007f1f14ff6700   r14 = 0x00007f1f59ecd040
    r15 = 0x0000000000000003   rip = 0x00007f1f591d08ca
    rsp = 0x00007f1f14ff5ed0   rbp = 0x0000000000000000
    Found by: call frame info

Thread 4
 0  libpthread-2.11.3.so + 0xb7d2
    rbx = 0x00000000044b0a60   r12 = 0x000000000000002d
    r13 = 0x00007f1f141cbde0   r14 = 0xffffffffffffff92
    r15 = 0x0000000000000000   rip = 0x00007f1f591d57d2
    rsp = 0x00007f1f141cbd68   rbp = 0x000000000453e670
    Found by: given as instruction pointer in context
 1  phantomjs!QWaitCondition::wait [qwaitcondition_unix.cpp : 84 + 0x7]
    rip = 0x0000000001be39d7   rsp = 0x00007f1f141cbdc0
    Found by: stack scanning
 2  phantomjs!QThreadPoolThread::run [qthreadpool.cpp : 141 + 0x1d]
    rbx = 0x00000000044b0980   r12 = 0x00000000044b0a09
    r13 = 0x0000000000000002   r14 = 0x00007f1f0c23f980
    r15 = 0x0000000000000003   rip = 0x0000000001bd783d
    rsp = 0x00007f1f141cbe40   rbp = 0x000000000453e670
    Found by: call frame info
 3  phantomjs!QThreadPrivate::start [qthread_unix.cpp : 338 + 0x9]
    rbx = 0x00000000044fdf20   r12 = 0x0000000004500b90
    r13 = 0x0000000000000001   r14 = 0x00007f1f59ecd040
    r15 = 0x0000000000000003   rip = 0x0000000001be2cc2
    rsp = 0x00007f1f141cbe80   rbp = 0x000000000453e670
    Found by: call frame info
 4  libpthread-2.11.3.so + 0x68c9
    rbx = 0x0000000000000000   r12 = 0x00007f1f157f55b0
    r13 = 0x00007f1f141cc700   r14 = 0x00007f1f59ecd040
    r15 = 0x0000000000000003   rip = 0x00007f1f591d08ca
    rsp = 0x00007f1f141cbed0   rbp = 0x0000000000000000
    Found by: call frame info

Thread 5
 0  libpthread-2.11.3.so + 0xb1fc
    rbx = 0x0000000004558d60   r12 = 0x004189374bc6a7ef
    r13 = 0xffffffffffffffff   r14 = 0x0000000004558d88
    r15 = 0x00000000045594a0   rip = 0x00007f1f591d51fc
    rsp = 0x00007f1f135d2d38   rbp = 0x00007f1f1392b990
    Found by: given as instruction pointer in context
 1  phantomjs!QWaitCondition::wait [qwaitcondition_unix.cpp : 86 + 0xa]
    rip = 0x0000000001be39f5   rsp = 0x00007f1f135d2d60
    rbp = 0x00007f1f1392b990
    Found by: stack scanning
 2  phantomjs!WTF::ThreadCondition::timedWait [ThreadingQt.cpp : 253 + 0x12]
    rbx = 0x00007f1f1392b988   r12 = 0x0000000000000005
    r13 = 0x00007f1f1392b988   r14 = 0x00007f1f1392b990
    r15 = 0x00007f1f135d2e40   rip = 0x00000000004e70ea
    rsp = 0x00007f1f135d2de0   rbp = 0x00007f1f1392b990
    Found by: call frame info
 3  phantomjs!WTF::MessageQueue<WebCore::LocalStorageTask>::waitForMessage [MessageQueue.h : 137 + 0x12]
    rbx = 0x0000000000000005   r12 = 0x0000000000000005
    r13 = 0x00007f1f1392b988   r14 = 0x00007f1f1392b990
    r15 = 0x00007f1f135d2e40   rip = 0x0000000001185269
    rsp = 0x00007f1f135d2e00   rbp = 0x00007f1f1392b998
    Found by: call frame info
 4  phantomjs!WebCore::LocalStorageThread::threadEntryPoint [LocalStorageThread.cpp : 68 + 0xa]
    rbx = 0x00007f1f10daca28   r12 = 0x00000000045aca70
    r13 = 0x0000000000000001   r14 = 0x00007f1f59ecd040
    r15 = 0x0000000000000003   rip = 0x0000000001185493
    rsp = 0x00007f1f135d2e40   rbp = 0x00007f1f1392b988
    Found by: call frame info
 5  phantomjs!WTF::ThreadPrivate::run [ThreadingQt.cpp : 66 + 0x6]
    rbx = 0x0000000004590510   r12 = 0x00000000045aca70
    r13 = 0x0000000000000001   r14 = 0x00007f1f59ecd040
    r15 = 0x0000000000000003   rip = 0x00000000004e68fb
    rsp = 0x00007f1f135d2e70   rbp = 0x0000000004590510
    Found by: call frame info
 6  phantomjs!QThreadPrivate::start [qthread_unix.cpp : 338 + 0x9]
    rbx = 0x00000000045ac9b8   r12 = 0x00000000045aca70
    r13 = 0x0000000000000001   r14 = 0x00007f1f59ecd040
    r15 = 0x0000000000000003   rip = 0x0000000001be2cc2
    rsp = 0x00007f1f135d2e80   rbp = 0x0000000004590510
    Found by: call frame info
 7  libpthread-2.11.3.so + 0x68c9
    rbx = 0x0000000000000000   r12 = 0x00007fffd59f52e0
    r13 = 0x00007f1f135d3700   r14 = 0x00007f1f59ecd040
    r15 = 0x0000000000000003   rip = 0x00007f1f591d08ca
    rsp = 0x00007f1f135d2ed0   rbp = 0x0000000000000000
    Found by: call frame info

Thread 6
 0  libpthread-2.11.3.so + 0xb7d2
    rbx = 0x00000000044b0a60   r12 = 0x0000000000000030
    r13 = 0x00007f1f12cf8de0   r14 = 0xffffffffffffff92
    r15 = 0x0000000000000000   rip = 0x00007f1f591d57d2
    rsp = 0x00007f1f12cf8d68   rbp = 0x00000000044facf0
    Found by: given as instruction pointer in context
 1  phantomjs!QWaitCondition::wait [qwaitcondition_unix.cpp : 84 + 0x7]
    rip = 0x0000000001be39d7   rsp = 0x00007f1f12cf8dc0
    Found by: stack scanning
 2  phantomjs!QThreadPoolThread::run [qthreadpool.cpp : 141 + 0x1d]
    rbx = 0x00000000044b0980   r12 = 0x00000000044b0a09
    r13 = 0x0000000000000002   r14 = 0x000000000466e1f0
    r15 = 0x0000000000000003   rip = 0x0000000001bd783d
    rsp = 0x00007f1f12cf8e40   rbp = 0x00000000044facf0
    Found by: call frame info
 3  phantomjs!QThreadPrivate::start [qthread_unix.cpp : 338 + 0x9]
    rbx = 0x00000000045bc830   r12 = 0x00000000045bb930
    r13 = 0x0000000000000001   r14 = 0x00007f1f59ecd040
    r15 = 0x0000000000000003   rip = 0x0000000001be2cc2
    rsp = 0x00007f1f12cf8e80   rbp = 0x00000000044facf0
    Found by: call frame info
 4  libpthread-2.11.3.so + 0x68c9
    rbx = 0x0000000000000000   r12 = 0x00007f1f157f55b0
    r13 = 0x00007f1f12cf9700   r14 = 0x00007f1f59ecd040
    r15 = 0x0000000000000003   rip = 0x00007f1f591d08ca
    rsp = 0x00007f1f12cf8ed0   rbp = 0x0000000000000000
    Found by: call frame info

Thread 7
 0  libpthread-2.11.3.so + 0xb7d2
    rbx = 0x00000000044b0a60   r12 = 0x000000000000002b
    r13 = 0x00007f1f124f7de0   r14 = 0xffffffffffffff92
    r15 = 0x0000000000000000   rip = 0x00007f1f591d57d2
    rsp = 0x00007f1f124f7d68   rbp = 0x00007f1f0c048860
    Found by: given as instruction pointer in context
 1  phantomjs!QWaitCondition::wait [qwaitcondition_unix.cpp : 84 + 0x7]
    rip = 0x0000000001be39d7   rsp = 0x00007f1f124f7dc0
    Found by: stack scanning
 2  phantomjs!QThreadPoolThread::run [qthreadpool.cpp : 141 + 0x1d]
    rbx = 0x00000000044b0980   r12 = 0x00000000044b0a09
    r13 = 0x0000000000000002   r14 = 0x00007f1f0c3a1410
    r15 = 0x0000000000000003   rip = 0x0000000001bd783d
    rsp = 0x00007f1f124f7e40   rbp = 0x00007f1f0c048860
    Found by: call frame info
 3  phantomjs!QThreadPrivate::start [qthread_unix.cpp : 338 + 0x9]
    rbx = 0x00000000045c0190   r12 = 0x00007f1f0c048c50
    r13 = 0x0000000000000001   r14 = 0x00007f1f59ecd040
    r15 = 0x0000000000000003   rip = 0x0000000001be2cc2
    rsp = 0x00007f1f124f7e80   rbp = 0x00007f1f0c048860
    Found by: call frame info
 4  libpthread-2.11.3.so + 0x68c9
    rbx = 0x0000000000000000   r12 = 0x00007f1f157f55b0
    r13 = 0x00007f1f124f8700   r14 = 0x00007f1f59ecd040
    r15 = 0x0000000000000003   rip = 0x00007f1f591d08ca
    rsp = 0x00007f1f124f7ed0   rbp = 0x0000000000000000
    Found by: call frame info

Thread 8
 0  libpthread-2.11.3.so + 0xb7d2
    rbx = 0x00000000044b0a60   r12 = 0x000000000000002c
    r13 = 0x00007f1f11adbde0   r14 = 0xffffffffffffff92
    r15 = 0x0000000000000000   rip = 0x00007f1f591d57d2
    rsp = 0x00007f1f11adbd68   rbp = 0x00007f1f0c052010
    Found by: given as instruction pointer in context
 1  phantomjs!QWaitCondition::wait [qwaitcondition_unix.cpp : 84 + 0x7]
    rip = 0x0000000001be39d7   rsp = 0x00007f1f11adbdc0
    Found by: stack scanning
 2  phantomjs!QThreadPoolThread::run [qthreadpool.cpp : 141 + 0x1d]
    rbx = 0x00000000044b0980   r12 = 0x00000000044b0a09
    r13 = 0x0000000000000002   r14 = 0x00007f1f59ecd040
    r15 = 0x0000000000000003   rip = 0x0000000001bd783d
    rsp = 0x00007f1f11adbe40   rbp = 0x00007f1f0c052010
    Found by: call frame info
 3  phantomjs!QThreadPrivate::start [qthread_unix.cpp : 338 + 0x9]
    rbx = 0x00000000046e4630   r12 = 0x00007f1f0c052390
    r13 = 0x0000000000000001   r14 = 0x00007f1f59ecd040
    r15 = 0x0000000000000003   rip = 0x0000000001be2cc2
    rsp = 0x00007f1f11adbe80   rbp = 0x00007f1f0c052010
    Found by: call frame info
 4  libpthread-2.11.3.so + 0x68c9
    rbx = 0x0000000000000000   r12 = 0x00007f1f157f55b0
    r13 = 0x00007f1f11adc700   r14 = 0x00007f1f59ecd040
    r15 = 0x0000000000000003   rip = 0x00007f1f591d08ca
    rsp = 0x00007f1f11adbed0   rbp = 0x0000000000000000
    Found by: call frame info

Loaded modules:
0x00400000 - 0x0268dfff  phantomjs  ???  (main)
0x7f1f11c56000 - 0x7f1f11cf0fff  DejaVuSans.ttf  ???
0x7f1f141cd000 - 0x7f1f143d2fff  libnss_dns-2.11.3.so  ???
0x7f1f143d3000 - 0x7f1f145dffff  libnss_files-2.11.3.so  ???
0x7f1f145e0000 - 0x7f1f147f3fff  libresolv-2.11.3.so  ???
0x7f1f1603c000 - 0x7f1f1604ffff  n019003l.pfb  ???
0x7f1f578c6000 - 0x7f1f57b1cfff  libssl.so.0.9.8  ???
0x7f1f57b1d000 - 0x7f1f57eb9fff  libcrypto.so.0.9.8  ???
0x7f1f57ebe000 - 0x7f1f5827cfff  locale-archive  ???
0x7f1f5827d000 - 0x7f1f584a4fff  libexpat.so.1.5.2  ???
0x7f1f584a5000 - 0x7f1f586bbfff  libz.so.1.2.3.4  ???
0x7f1f586bc000 - 0x7f1f58a18fff  libc-2.11.3.so  ???
0x7f1f58a1e000 - 0x7f1f58c33fff  libgcc_s.so.1  ???
0x7f1f58c34000 - 0x7f1f58eb5fff  libm-2.11.3.so  ???
0x7f1f58eb6000 - 0x7f1f591b4fff  libstdc++.so.6.0.13  ???
0x7f1f591ca000 - 0x7f1f593e1fff  libpthread-2.11.3.so  ???
0x7f1f593e6000 - 0x7f1f595edfff  librt-2.11.3.so  ???
0x7f1f595ee000 - 0x7f1f597f1fff  libdl-2.11.3.so  ???
0x7f1f597f2000 - 0x7f1f59a26fff  libfontconfig.so.1.4.4  ???
0x7f1f59a27000 - 0x7f1f59caefff  libfreetype.so.6.6.0  ???
0x7f1f59caf000 - 0x7f1f59cccfff  ld-2.11.3.so  ???
0x7f1f59ea9000 - 0x7f1f59eb1fff  945677eb7aeaf62f1d50efc3fb3ec7d8-le64.cache-3  ???
0x7f1f59eb2000 - 0x7f1f59eb5fff  6eb3985aa4124903f6ff08ba781cd364-le64.cache-3  ???
0x7f1f59eb6000 - 0x7f1f59eb9fff  6d41288fd70b0be22e8c3a91e032eec0-le64.cache-3  ???
0x7f1f59ec1000 - 0x7f1f59ec9fff  e13b20fdb08344e0e664864cc2ede53d-le64.cache-3  ???
0x7fffd59ff000 - 0x7fffd59fffff  linux-gate.so  ???
@mfn

Here's another one, same or almost same signature; btw, I'm running phantomjs periodically via cron for munin. So although I cannot reproduce the crashes exactly, they happen fairly frequent, in case this helps to test out something.

Operating system: Linux
                  0.0.0 Linux 2.6.26-2-vserver-amd64 #1 SMP Sun Mar 4 23:39:41 UTC 2012 x86_64
CPU: amd64
     family 6 model 26 stepping 5
     4 CPUs

Crash reason:  SIGSEGV
Crash address: 0xe0

Thread 0 (crashed)
 0  phantomjs!NetworkAccessManager::handleTimeout [networkaccessmanager.cpp : 283 + 0x8]
    rbx = 0x00007fff0710a0d0   r12 = 0x0000000003fc4cd0
    r13 = 0x00007fff0710a0c0   r14 = 0x00007fff0710a0f0
    r15 = 0x0000000003d8cbc0   rip = 0x000000000042c2ef
    rsp = 0x00007fff0710a050   rbp = 0x0000000003fc4cf8
    Found by: given as instruction pointer in context
 1  phantomjs!QMetaObject::activate [qobject.cpp : 3539 + 0x1e]
    rbx = 0x000000000000000e   r12 = 0x00007fff0710a901
    r13 = 0x000000000046c540   r14 = 0x0000000000000009
    r15 = 0x0000000003fc2910   rip = 0x0000000001cf6ef8
    rsp = 0x00007fff0710a160   rbp = 0x0000000003d8cbc0
    Found by: call frame info
 2  phantomjs!QObject::event [qobject.cpp : 1156 + 0x8]
    rbx = 0x0000000003fc4cd0   r12 = 0x00007fff0710a980
    r13 = 0x0000000003b6dab0   r14 = 0x00000000000540f4
    r15 = 0x00007fff0710a980   rip = 0x0000000001cefbc4
    rsp = 0x00007fff0710a280   rbp = 0x0000000003fc4cd0
    Found by: call frame info
 3  phantomjs!QApplicationPrivate::notify_helper [qapplication.cpp : 4562 + 0xc]
    rbx = 0x00007fff0710ac00   r12 = 0x00007fff0710a980
    r13 = 0x0000000003b6dab0   r14 = 0x00000000000540f4
    r15 = 0x00007fff0710a980   rip = 0x00000000015decaf
    rsp = 0x00007fff0710a420   rbp = 0x0000000003fc4cd0
    Found by: call frame info
 4  phantomjs!QApplication::notify [qapplication.cpp : 4423 + 0x17]
    rbx = 0x00007fff0710ac00   r12 = 0x00007fff0710a980
    r13 = 0x00007fff0710ac00   r14 = 0x00000000000540f4
    r15 = 0x00007fff0710a980   rip = 0x00000000015e793b
    rsp = 0x00007fff0710a450   rbp = 0x0000000003fc4cd0
    Found by: call frame info
 5  phantomjs!QCoreApplication::notifyInternal [qcoreapplication.cpp : 946 + 0x2]
    rbx = 0x0000000003b6b1c0   r12 = 0x00007fff0710a980
    r13 = 0x00007fff0710ac00   r14 = 0x00000000000540f4
    r15 = 0x00007fff0710a980   rip = 0x0000000001cde3d4
    rsp = 0x00007fff0710a920   rbp = 0x0000000003fc4cd0
    Found by: call frame info
 6  phantomjs!QTimerInfoList::activateTimers [qcoreapplication.h : 231 + 0x14]
    rbx = 0x0000000003b6f898   r12 = 0x0000000000000000
    r13 = 0x0000000000000001   r14 = 0x00000000000540f4
    r15 = 0x00007fff0710a980   rip = 0x0000000001d07ecd
    rsp = 0x00007fff0710a970   rbp = 0x00000000005d2fbf
    Found by: call frame info
 7  phantomjs!QEventDispatcherUNIX::processEvents [qeventdispatcher_unix.cpp : 941 + 0x7]
    rbx = 0x0000000000000000   r12 = 0x00007fff0710aa50
    r13 = 0x0000000003b6a560   r14 = 0x0000000000000001
    r15 = 0x0000000003b6b2d8   rip = 0x0000000001d080e0
    rsp = 0x00007fff0710aa00   rbp = 0x0000000003b6f030
    Found by: call frame info
 8  phantomjs!QEventDispatcherQPA::processEvents [qeventdispatcher_qpa.cpp : 246 + 0x4]
    rbx = 0x0000000003d91c70   r12 = 0x0000000000000000
    r13 = 0x0000000003b6a560   r14 = 0x00007fff0710aa90
    r15 = 0x0000000003b6b2d8   rip = 0x000000000163a6a4
    rsp = 0x00007fff0710aa50   rbp = 0x0000000003b6f030
    Found by: call frame info
 9  phantomjs!QEventLoop::processEvents [qeventloop.cpp : 149 + 0x1]
    rbx = 0x0000000003d91c70   r12 = 0x00007fff0710ab20
    r13 = 0x00007fff0710ab30   r14 = 0x0000000003b6b230
    r15 = 0x0000000003b6b2d8   rip = 0x0000000001cdd4b5
    rsp = 0x00007fff0710aa90   rbp = 0x00007fff0710aad0
    Found by: call frame info
10  phantomjs!QEventLoop::exec [qeventloop.cpp : 200 + 0x4]
    rbx = 0x0000000003d91c70   r12 = 0x00007fff0710ab20
    r13 = 0x00007fff0710ab30   r14 = 0x0000000003b6b230
    r15 = 0x0000000003b6b2d8   rip = 0x0000000001cdd918
    rsp = 0x00007fff0710aac0   rbp = 0x00007fff0710ac00
    Found by: call frame info
11  phantomjs!QCoreApplication::exec [qcoreapplication.cpp : 1218 + 0x4]
    rbx = 0x0000000003b6b1c0   r12 = 0x00007fff0710ac00
    r13 = 0x00007fff0710adc0   r14 = 0x00007fff0710ab70
    r15 = 0x0000000000000000   rip = 0x0000000001cdf7cb
    rsp = 0x00007fff0710ab20   rbp = 0x0000000003b6b1c0
    Found by: call frame info
12  phantomjs!main [main.cpp : 121 + 0x4]
    rbx = 0x0000000003bbaa30   r12 = 0x00007fff0710ac00
    r13 = 0x00007fff0710adc0   r14 = 0x00007fff0710ab70
    r15 = 0x0000000000000000   rip = 0x0000000000427cb2
    rsp = 0x00007fff0710ab60   rbp = 0x00007fff0710ad98
    Found by: call frame info
13  libc-2.11.3.so + 0x1ec8c
    rbx = 0x0000000000000000   r12 = 0x0000000000407cc0
    r13 = 0x00007fff0710ad90   r14 = 0x0000000000000000
    r15 = 0x0000000000000000   rip = 0x00007f49419dcc8d
    rsp = 0x00007fff0710acc0   rbp = 0x0000000000000000
    Found by: call frame info
14  phantomjs + 0x27a5f
    rip = 0x0000000000427a60   rsp = 0x00007fff0710ace0
    Found by: stack scanning

Thread 1
 0  libc-2.11.3.so + 0xa0c5d
    rbx = 0x00007f4940bc6d80   r12 = 0x00000000ffffffff
    r13 = 0x00007f48f5fb4510   r14 = 0x0000000002a82ee0
    r15 = 0x0000000002a82eb0   rip = 0x00007f4941a5ec5d
    rsp = 0x00007f4940bc6c50   rbp = 0x00007f4940bc6d00
    Found by: given as instruction pointer in context
 1  libc-2.11.3.so + 0xa0acf
    rip = 0x00007f4941a5ead0   rsp = 0x00007f4940bc6c60
    rbp = 0x00007f4940bc6d00
    Found by: stack scanning
 2  phantomjs + 0x18b5c6f
    rip = 0x0000000001cb5c70   rsp = 0x00007f4940bc6c68
    rbp = 0x00007f4940bc6d00
    Found by: stack scanning
 3  ld-2.11.3.so + 0x9009
    rip = 0x00007f4942fba00a   rsp = 0x00007f4940bc6ca0
    rbp = 0x00007f4940bc6d00
    Found by: stack scanning
 4  ld-2.11.3.so + 0x982b
    rip = 0x00007f4942fba82c   rsp = 0x00007f4940bc6ce0
    rbp = 0x00007f4940bc6d00
    Found by: stack scanning
 5  libpthread-2.11.3.so + 0xefef
    rip = 0x00007f49424daff0   rsp = 0x00007f4940bc6cf8
    rbp = 0x00007f4940bc6d00
    Found by: stack scanning
 6  ld-2.11.3.so + 0x9af1
    rip = 0x00007f4942fbaaf2   rsp = 0x00007f4940bc6d00
    rbp = 0x00007f4940bc6d00
    Found by: stack scanning
 7  libc-2.11.3.so + 0xe217
    rip = 0x00007f49419cc218   rsp = 0x00007f4940bc6d48
    Found by: stack scanning
 8  libpthread-2.11.3.so + 0xb295
    rip = 0x00007f49424d7296   rsp = 0x00007f4940bc6e18
    Found by: stack scanning
 9  phantomjs!WTF::TCMalloc_PageHeap::scavengerThread [FastMalloc.cpp : 2499 + 0x4]
    rip = 0x00000000004dda2e   rsp = 0x00007f4940bc6e40
    Found by: stack scanning
10  phantomjs!WTF::TCMalloc_PageHeap::runScavengerThread [FastMalloc.cpp : 1618 + 0x4]
    rbx = 0x0000000000000000   r12 = 0x00007f49424dcfc0
    r13 = 0x0000000000000000   r14 = 0x00007f49431cf040
    r15 = 0x0000000000000003   rip = 0x00000000004ddc99
    rsp = 0x00007f4940bc6ec0   rbp = 0x0000000000000000
    Found by: call frame info
11  libpthread-2.11.3.so + 0x68c9
    rbx = 0x0000000000000000   r12 = 0x00007f49424dcfc0
    r13 = 0x0000000000000000   r14 = 0x00007f49431cf040
    r15 = 0x0000000000000003   rip = 0x00007f49424d28ca
    rsp = 0x00007f4940bc6ed0   rbp = 0x0000000000000000
    Found by: call frame info
12  libpthread-2.11.3.so + 0x10fbf
    rip = 0x00007f49424dcfc0   rsp = 0x00007f4940bc6f78
    Found by: stack scanning
13  libc-2.11.3.so + 0xcfb6c
    rip = 0x00007f4941a8db6d   rsp = 0x00007f4940bc6fe0
    Found by: stack scanning

Thread 2
 0  libc-2.11.3.so + 0xc93e3
    rbx = 0x0000000000000000   r12 = 0x00007f49403c5da0
    r13 = 0x0000000000000009   r14 = 0x0000000003d36b58
    r15 = 0x0000000003d36df0   rip = 0x00007f4941a873e3
    rsp = 0x00007f49403c5b70   rbp = 0x0000000003d369a0
    Found by: given as instruction pointer in context
 1  phantomjs!qt_safe_select [qcore_unix.cpp : 83 + 0x15]
    rip = 0x0000000001d06327   rsp = 0x00007f49403c5b80
    Found by: stack scanning
 2  phantomjs!QEventDispatcherUNIXPrivate::doSelect [qeventdispatcher_unix.cpp : 223 + 0xd]
    rbx = 0x0000000003bbe260   r12 = 0x00007f49403c5da0
    r13 = 0x0000000003d369a0   r14 = 0x0000000000000000
    r15 = 0x0000000003d36df0   rip = 0x0000000001d075e7
    rsp = 0x00007f49403c5c10   rbp = 0x0000000003d369a0
    Found by: call frame info
 3  phantomjs!QEventDispatcherUNIX::processEvents [qeventdispatcher_unix.cpp : 937 + 0x4]
    rbx = 0x0000000003bbe260   r12 = 0x00007f49403c5da0
    r13 = 0x0000000003ba6dc0   r14 = 0x0000000000000001
    r15 = 0x0000000003ba9b08   rip = 0x0000000001d08092
    rsp = 0x00007f49403c5d50   rbp = 0x0000000003d369a0
    Found by: call frame info
 4  phantomjs!QEventLoop::processEvents [qeventloop.cpp : 149 + 0x1]
    rbx = 0x0000000003bbe260   r12 = 0x00007f49403c5e30
    r13 = 0x00007f49403c5e40   r14 = 0x0000000003b6b230
    r15 = 0x0000000003ba9b08   rip = 0x0000000001cdd4b5
    rsp = 0x00007f49403c5da0   rbp = 0x00007f49403c5de0
    Found by: call frame info
 5  phantomjs!QEventLoop::exec [qeventloop.cpp : 200 + 0x4]
    rbx = 0x0000000003bbe260   r12 = 0x00007f49403c5e30
    r13 = 0x00007f49403c5e40   r14 = 0x0000000003b6b230
    r15 = 0x0000000003ba9b08   rip = 0x0000000001cdd918
    rsp = 0x00007f49403c5dd0   rbp = 0x00007fff0710ac00
    Found by: call frame info
 6  phantomjs!QThread::exec [qthread.cpp : 542 + 0xc]
    rbx = 0x0000000003ba9a80   r12 = 0x0000000003ba9b08
    r13 = 0x0000000000000001   r14 = 0x00007f49431cf040
    r15 = 0x0000000000000003   rip = 0x0000000001bdfdf6
    rsp = 0x00007f49403c5e30   rbp = 0x0000000003ba9b08
    Found by: call frame info
 7  phantomjs!QThreadPrivate::start [qthread_unix.cpp : 338 + 0x9]
    rbx = 0x0000000003ba9b08   r12 = 0x0000000003baef50
    r13 = 0x0000000000000001   r14 = 0x00007f49431cf040
    r15 = 0x0000000000000003   rip = 0x0000000001be2cc2
    rsp = 0x00007f49403c5e80   rbp = 0x0000000003bb9930
    Found by: call frame info
 8  libpthread-2.11.3.so + 0x68c9
    rbx = 0x0000000000000000   r12 = 0x00007fff0710a0e0
    r13 = 0x00007f49403c6700   r14 = 0x00007f49431cf040
    r15 = 0x0000000000000003   rip = 0x00007f49424d28ca
    rsp = 0x00007f49403c5ed0   rbp = 0x0000000000000000
    Found by: call frame info

Thread 3
 0  libpthread-2.11.3.so + 0xb7d2
    rbx = 0x0000000003d5bc60   r12 = 0x000000000000002e
    r13 = 0x00007f493e409de0   r14 = 0xffffffffffffff92
    r15 = 0x0000000000000000   rip = 0x00007f49424d77d2
    rsp = 0x00007f493e409d68   rbp = 0x0000000003d3f200
    Found by: given as instruction pointer in context
 1  phantomjs!QWaitCondition::wait [qwaitcondition_unix.cpp : 84 + 0x7]
    rip = 0x0000000001be39d7   rsp = 0x00007f493e409dc0
    Found by: stack scanning
 2  phantomjs!QThreadPoolThread::run [qthreadpool.cpp : 141 + 0x1d]
    rbx = 0x0000000003d5bb80   r12 = 0x0000000003d5bc09
    r13 = 0x0000000000000002   r14 = 0x0000000004351670
    r15 = 0x0000000000000003   rip = 0x0000000001bd783d
    rsp = 0x00007f493e409e40   rbp = 0x0000000003d3f200
    Found by: call frame info
 3  phantomjs!QThreadPrivate::start [qthread_unix.cpp : 338 + 0x9]
    rbx = 0x0000000003d95980   r12 = 0x0000000003d512d0
    r13 = 0x0000000000000001   r14 = 0x00007f49431cf040
    r15 = 0x0000000000000003   rip = 0x0000000001be2cc2
    rsp = 0x00007f493e409e80   rbp = 0x0000000003d3f200
    Found by: call frame info
 4  libpthread-2.11.3.so + 0x68c9
    rbx = 0x0000000000000000   r12 = 0x00007f493ec095b0
    r13 = 0x00007f493e40a700   r14 = 0x00007f49431cf040
    r15 = 0x0000000000000003   rip = 0x00007f49424d28ca
    rsp = 0x00007f493e409ed0   rbp = 0x0000000000000000
    Found by: call frame info

Thread 4
 0  libpthread-2.11.3.so + 0xb7d2
    rbx = 0x0000000003d5bc60   r12 = 0x000000000000002d
    r13 = 0x00007f493d5d8de0   r14 = 0xffffffffffffff92
    r15 = 0x0000000000000000   rip = 0x00007f49424d77d2
    rsp = 0x00007f493d5d8d68   rbp = 0x00007f4938001bb0
    Found by: given as instruction pointer in context
 1  phantomjs!QWaitCondition::wait [qwaitcondition_unix.cpp : 84 + 0x7]
    rip = 0x0000000001be39d7   rsp = 0x00007f493d5d8dc0
    Found by: stack scanning
 2  phantomjs!QThreadPoolThread::run [qthreadpool.cpp : 141 + 0x1d]
    rbx = 0x0000000003d5bb80   r12 = 0x0000000003d5bc09
    r13 = 0x0000000000000002   r14 = 0x000000000434f6e0
    r15 = 0x0000000000000003   rip = 0x0000000001bd783d
    rsp = 0x00007f493d5d8e40   rbp = 0x00007f4938001bb0
    Found by: call frame info
 3  phantomjs!QThreadPrivate::start [qthread_unix.cpp : 338 + 0x9]
    rbx = 0x0000000003d939d0   r12 = 0x00007f4938001e60
    r13 = 0x0000000000000001   r14 = 0x00007f49431cf040
    r15 = 0x0000000000000003   rip = 0x0000000001be2cc2
    rsp = 0x00007f493d5d8e80   rbp = 0x00007f4938001bb0
    Found by: call frame info
 4  libpthread-2.11.3.so + 0x68c9
    rbx = 0x0000000000000000   r12 = 0x00007f493ec095b0
    r13 = 0x00007f493d5d9700   r14 = 0x00007f49431cf040
    r15 = 0x0000000000000003   rip = 0x00007f49424d28ca
    rsp = 0x00007f493d5d8ed0   rbp = 0x0000000000000000
    Found by: call frame info

Thread 5
 0  libpthread-2.11.3.so + 0xb1fc
    rbx = 0x00007f493803fb60   r12 = 0x004189374bc6a7ef
    r13 = 0xffffffffffffffff   r14 = 0x00007f493803fb88
    r15 = 0x00007f493803fab0   rip = 0x00007f49424d71fc
    rsp = 0x00007f493c8e6d38   rbp = 0x00007f493cd3ea10
    Found by: given as instruction pointer in context
 1  phantomjs!QWaitCondition::wait [qwaitcondition_unix.cpp : 86 + 0xa]
    rip = 0x0000000001be39f5   rsp = 0x00007f493c8e6d60
    rbp = 0x00007f493cd3ea10
    Found by: stack scanning
 2  phantomjs!WTF::ThreadCondition::timedWait [ThreadingQt.cpp : 253 + 0x12]
    rbx = 0x00007f493cd3ea08   r12 = 0x0000000000000005
    r13 = 0x00007f493cd3ea08   r14 = 0x00007f493cd3ea10
    r15 = 0x00007f493c8e6e40   rip = 0x00000000004e70ea
    rsp = 0x00007f493c8e6de0   rbp = 0x00007f493cd3ea10
    Found by: call frame info
 3  phantomjs!WTF::MessageQueue<WebCore::LocalStorageTask>::waitForMessage [MessageQueue.h : 137 + 0x12]
    rbx = 0x0000000000000005   r12 = 0x0000000000000005
    r13 = 0x00007f493cd3ea08   r14 = 0x00007f493cd3ea10
    r15 = 0x00007f493c8e6e40   rip = 0x0000000001185269
    rsp = 0x00007f493c8e6e00   rbp = 0x00007f493cd3ea18
    Found by: call frame info
 4  phantomjs!WebCore::LocalStorageThread::threadEntryPoint [LocalStorageThread.cpp : 68 + 0xa]
    rbx = 0x00007f48f6d15960   r12 = 0x00007f493803fd40
    r13 = 0x0000000000000001   r14 = 0x00007f49431cf040
    r15 = 0x0000000000000003   rip = 0x0000000001185493
    rsp = 0x00007f493c8e6e40   rbp = 0x00007f493cd3ea08
    Found by: call frame info
 5  phantomjs!WTF::ThreadPrivate::run [ThreadingQt.cpp : 66 + 0x6]
    rbx = 0x00007f493803f9f0   r12 = 0x00007f493803fd40
    r13 = 0x0000000000000001   r14 = 0x00007f49431cf040
    r15 = 0x0000000000000003   rip = 0x00000000004e68fb
    rsp = 0x00007f493c8e6e70   rbp = 0x00007f493803f9f0
    Found by: call frame info
 6  phantomjs!QThreadPrivate::start [qthread_unix.cpp : 338 + 0x9]
    rbx = 0x00007f493803fc58   r12 = 0x00007f493803fd40
    r13 = 0x0000000000000001   r14 = 0x00007f49431cf040
    r15 = 0x0000000000000003   rip = 0x0000000001be2cc2
    rsp = 0x00007f493c8e6e80   rbp = 0x00007f493803f9f0
    Found by: call frame info
 7  libpthread-2.11.3.so + 0x68c9
    rbx = 0x0000000000000000   r12 = 0x00007fff07109250
    r13 = 0x00007f493c8e7700   r14 = 0x00007f49431cf040
    r15 = 0x0000000000000003   rip = 0x00007f49424d28ca
    rsp = 0x00007f493c8e6ed0   rbp = 0x0000000000000000
    Found by: call frame info

Thread 6
 0  libpthread-2.11.3.so + 0xb7d2
    rbx = 0x0000000003d5bc60   r12 = 0x0000000000000030
    r13 = 0x00007f48f7deade0   r14 = 0xffffffffffffff92
    r15 = 0x0000000000000000   rip = 0x00007f49424d77d2
    rsp = 0x00007f48f7dead68   rbp = 0x00007f4938070070
    Found by: given as instruction pointer in context
 1  phantomjs!QWaitCondition::wait [qwaitcondition_unix.cpp : 84 + 0x7]
    rip = 0x0000000001be39d7   rsp = 0x00007f48f7deadc0
    rbp = 0x00007f4938070070
    Found by: stack scanning
 2  phantomjs!QThreadPoolThread::run [qthreadpool.cpp : 141 + 0x1d]
    rbx = 0x0000000003d5bb80   r12 = 0x0000000003d5bc09
    r13 = 0x0000000000000002   r14 = 0x000000000431f110
    r15 = 0x0000000000000003   rip = 0x0000000001bd783d
    rsp = 0x00007f48f7deae40   rbp = 0x00007f4938070070
    Found by: call frame info
 3  phantomjs!QThreadPrivate::start [qthread_unix.cpp : 338 + 0x9]
    rbx = 0x00007f49380bc230   r12 = 0x00007f4938070460
    r13 = 0x0000000000000001   r14 = 0x00007f49431cf040
    r15 = 0x0000000000000003   rip = 0x0000000001be2cc2
    rsp = 0x00007f48f7deae80   rbp = 0x00007f4938070070
    Found by: call frame info
 4  libpthread-2.11.3.so + 0x68c9
    rbx = 0x0000000000000000   r12 = 0x00007f493ec095b0
    r13 = 0x00007f48f7deb700   r14 = 0x00007f49431cf040
    r15 = 0x0000000000000003   rip = 0x00007f49424d28ca
    rsp = 0x00007f48f7deaed0   rbp = 0x0000000000000000
    Found by: call frame info

Thread 7
 0  libpthread-2.11.3.so + 0xb7d2
    rbx = 0x0000000003d5bc60   r12 = 0x000000000000002a
    r13 = 0x00007f48f75e9de0   r14 = 0xffffffffffffff92
    r15 = 0x0000000000000000   rip = 0x00007f49424d77d2
    rsp = 0x00007f48f75e9d68   rbp = 0x00007f4938074350
    Found by: given as instruction pointer in context
 1  phantomjs!QWaitCondition::wait [qwaitcondition_unix.cpp : 84 + 0x7]
    rip = 0x0000000001be39d7   rsp = 0x00007f48f75e9dc0
    rbp = 0x00007f4938074350
    Found by: stack scanning
 2  phantomjs!QThreadPoolThread::run [qthreadpool.cpp : 141 + 0x1d]
    rbx = 0x0000000003d5bb80   r12 = 0x0000000003d5bc09
    r13 = 0x0000000000000002   r14 = 0x0000000004336290
    r15 = 0x0000000000000003   rip = 0x0000000001bd783d
    rsp = 0x00007f48f75e9e40   rbp = 0x00007f4938074350
    Found by: call frame info
 3  phantomjs!QThreadPrivate::start [qthread_unix.cpp : 338 + 0x9]
    rbx = 0x0000000003eee1e0   r12 = 0x00007f4938074740
    r13 = 0x0000000000000001   r14 = 0x00007f49431cf040
    r15 = 0x0000000000000003   rip = 0x0000000001be2cc2
    rsp = 0x00007f48f75e9e80   rbp = 0x00007f4938074350
    Found by: call frame info
 4  libpthread-2.11.3.so + 0x68c9
    rbx = 0x0000000000000000   r12 = 0x00007f493ec095b0
    r13 = 0x00007f48f75ea700   r14 = 0x00007f49431cf040
    r15 = 0x0000000000000003   rip = 0x00007f49424d28ca
    rsp = 0x00007f48f75e9ed0   rbp = 0x0000000000000000
    Found by: call frame info

Loaded modules:
0x00400000 - 0x0268dfff  phantomjs  ???  (main)
0x7f48f7f65000 - 0x7f48f7ffffff  DejaVuSans.ttf  ???
0x7f493c9e7000 - 0x7f493c9fafff  n019003l.pfb  ???
0x7f493d5e1000 - 0x7f493d7e6fff  libnss_dns-2.11.3.so  ???
0x7f493d7e7000 - 0x7f493d9f3fff  libnss_files-2.11.3.so  ???
0x7f493d9f4000 - 0x7f493dc07fff  libresolv-2.11.3.so  ???
0x7f4940bc8000 - 0x7f4940e1efff  libssl.so.0.9.8  ???
0x7f4940e1f000 - 0x7f49411bbfff  libcrypto.so.0.9.8  ???
0x7f49411c0000 - 0x7f494157efff  locale-archive  ???
0x7f494157f000 - 0x7f49417a6fff  libexpat.so.1.5.2  ???
0x7f49417a7000 - 0x7f49419bdfff  libz.so.1.2.3.4  ???
0x7f49419be000 - 0x7f4941d1afff  libc-2.11.3.so  ???
0x7f4941d20000 - 0x7f4941f35fff  libgcc_s.so.1  ???
0x7f4941f36000 - 0x7f49421b7fff  libm-2.11.3.so  ???
0x7f49421b8000 - 0x7f49424b6fff  libstdc++.so.6.0.13  ???
0x7f49424cc000 - 0x7f49426e3fff  libpthread-2.11.3.so  ???
0x7f49426e8000 - 0x7f49428effff  librt-2.11.3.so  ???
0x7f49428f0000 - 0x7f4942af3fff  libdl-2.11.3.so  ???
0x7f4942af4000 - 0x7f4942d28fff  libfontconfig.so.1.4.4  ???
0x7f4942d29000 - 0x7f4942fb0fff  libfreetype.so.6.6.0  ???
0x7f4942fb1000 - 0x7f4942fcefff  ld-2.11.3.so  ???
0x7f49431ab000 - 0x7f49431b3fff  945677eb7aeaf62f1d50efc3fb3ec7d8-le64.cache-3  ???
0x7f49431b4000 - 0x7f49431b7fff  6eb3985aa4124903f6ff08ba781cd364-le64.cache-3  ???
0x7f49431b8000 - 0x7f49431bbfff  6d41288fd70b0be22e8c3a91e032eec0-le64.cache-3  ???
0x7f49431c3000 - 0x7f49431cbfff  e13b20fdb08344e0e664864cc2ede53d-le64.cache-3  ???
0x7fff071df000 - 0x7fff071dffff  linux-gate.so  ???
@mfn

Since I created this issue I was having like 10 more crashes. I looked at some at it's the same signature so far.

So in case someone wants to provide special test builds I guess the chance I'm getting a crash within a day seems very well and I'm offering to do that.

@Vitallium
Collaborator

Can you provide a minimal example to reproduce this crash?

@mfn
mfn commented Mar 3, 2014

I did some more testing and I don't know if it's really a bug or whether I'm just shooting myself in the foot. Here's the smallest reproducible script which actually calls phantom.exit(0) in the timeout handler. I wasn't aware that this could cause the crash. The idea is/was to exit the whole script on purpose once a timeout is triggered:

page = require('webpage').create();
page.settings.resourceTimeout = 1000;
page.onResourceTimeout = function(e) {
    console.log('crash will happen now');
    phantom.exit(0);
}
page.address = phantom.args[0];
page.open(page.address, function (status) {
    phantom.exit(0);
});

Call it like this: phantomjs test.js http://... and provide some URL which takes longer then resourceTimeout to load.

@ecolotko

Hi, mfn

I got the same behavior, and seems that this is not a bug but a normal behavior of the phantomjs.
Here is a code to implement exact what you want:

page = require('webpage').create();
page.settings.resourceTimeout = 1000;
page.onResourceTimeout = function(e) {
    page.openError = "Unable to connect to '" + e.url 
        + "'. Message: Error code " + e.errorCode + ". " + e.errorString;
}
page.open(phantom.args[0], function (status) {
    if (status !== "success")
    {
        system.stderr.writeLine(page.openError);
        phantom.exit(1);
    }

    phantom.exit(0);
});
@zackw
Collaborator

This appears to be fixed in 2.0.

@zackw zackw closed this Oct 16, 2015
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment