Segfault while loading application cache

[ef4]

I have a repeatable segfault that seems to happen while trying to load the application cache from disk.

The ApplicationCache.db itself appears to be a valid sqlite database with no corruption. I can provide a copy if that will help.

Operating system: Linux
                  0.0.0 Linux 3.2.0-4-686-pae #1 SMP Debian 3.2.60-1+deb7u3 i686
CPU: x86
     GenuineIntel family 6 model 69 stepping 1
     2 CPUs

Crash reason:  SIGSEGV
Crash address: 0xb5eb3000

Thread 0 (crashed)
 0  phantomjs!WTF::AtomicString::add [StringHasher.h : 165 + 0x0]
    eip = 0x081389cb   esp = 0xbfad4c60   ebp = 0xbfad4cf8   ebx = 0x0a4f62bc
    esi = 0x002d3b3e   edi = 0xb66fc000   eax = 0x84493ef2   ecx = 0xb5eb2ffe
    edx = 0x84493ef2   efl = 0x00010202
    Found by: given as instruction pointer in context
 1  phantomjs!WebCore::ApplicationCacheStorage::loadCache [AtomicString.h : 45 + 0x18]
    eip = 0x0884fdc2   esp = 0xbfad4d00   ebp = 0xbfad5028   ebx = 0x0a4f62bc
    esi = 0xffffffff   edi = 0x00000067
    Found by: call frame info
 2  phantomjs!WebCore::ApplicationCacheStorage::cacheGroupForURL [ApplicationCacheStorage.cpp : 239 + 0x15]
    eip = 0x0885537c   esp = 0xbfad5030   ebp = 0xbfad5178   ebx = 0x0a4f62bc
    esi = 0xb6718c30   edi = 0xbfad5120
    Found by: call frame info
 3  phantomjs!WebCore::ApplicationCacheGroup::cacheForMainRequest [ApplicationCacheGroup.cpp : 107 + 0x10]
    eip = 0x08f4af4c   esp = 0xbfad5180   ebp = 0xbfad51d8   ebx = 0x0a4f62bc
    esi = 0xbfad519c   edi = 0x00000000
    Found by: call frame info
 4  phantomjs!WebCore::ApplicationCacheHost::maybeLoadMainResource [ApplicationCacheHost.cpp : 82 + 0x11]
    eip = 0x08849641   esp = 0xbfad51e0   ebp = 0xbfad5338   ebx = 0x0a4f62bc
    esi = 0xb52cdac8   edi = 0xb55860c8
    Found by: call frame info
 5  phantomjs!WebCore::MainResourceLoader::load [MainResourceLoader.cpp : 602 + 0x1a]
    eip = 0x084d5092   esp = 0xbfad5340   ebp = 0xbfad5438   ebx = 0x0a4f62bc
    esi = 0xb5341d20   edi = 0xb55860c8
    Found by: call frame info
 6  phantomjs!WebCore::DocumentLoader::startLoadingMainResource [DocumentLoader.cpp : 798 + 0x18]
    eip = 0x0849e23e   esp = 0xbfad5440   ebp = 0xbfad5478   ebx = 0x0a4f62bc
    esi = 0xb5341b00   edi = 0xb5341d20
    Found by: call frame info
 7  phantomjs!WebCore::FrameLoader::continueLoadAfterWillSubmitForm [FrameLoader.cpp : 2572 + 0x10]
    eip = 0x084acfcc   esp = 0xbfad5480   ebp = 0xbfad54a8   ebx = 0x0a4f62bc
    esi = 0xb5341b00   edi = 0xb586b77c
    Found by: call frame info
 8  phantomjs!WebCore::FrameLoader::continueLoadAfterNavigationPolicy [FrameLoader.cpp : 3105 + 0xc]
    eip = 0x084bebf5   esp = 0xbfad54b0   ebp = 0xbfad54f8   ebx = 0x0a4f62bc
    esi = 0xb586b780   edi = 0xb586b644
    Found by: call frame info
 9  phantomjs!WebCore::FrameLoader::callContinueLoadAfterNavigationPolicy [FrameLoader.cpp : 2978 + 0x1c]
    eip = 0x084bec76   esp = 0xbfad5500   ebp = 0xbfad5528   ebx = 0x0a4f62bc
    esi = 0xb52cb72c   edi = 0xbfad55d0
    Found by: call frame info
10  phantomjs!WebCore::PolicyCallback::call [PolicyCallback.cpp : 103 + 0x1d]
    eip = 0x084dc236   esp = 0xbfad5530   ebp = 0xbfad5598   ebx = 0x0a4f62bc
    esi = 0xb52cb72c   edi = 0xbfad55d0
    Found by: call frame info
11  phantomjs!WebCore::PolicyChecker::continueAfterNavigationPolicy [PolicyChecker.cpp : 160 + 0x18]
    eip = 0x084de40f   esp = 0xbfad55a0   ebp = 0xbfad5788   ebx = 0x0a4f62bc
    esi = 0xb52cb72c   edi = 0x00000000
    Found by: call frame info
12  phantomjs!WebCore::FrameLoaderClientQt::dispatchDecidePolicyForNavigationAction [FrameLoaderClientQt.cpp : 245 + 0x2d]
    eip = 0x0810d253   esp = 0xbfad5790   ebp = 0xbfad5948   ebx = 0x0a4f62bc
    esi = 0x084de060   edi = 0x00000000
    Found by: call frame info
13  phantomjs!WebCore::PolicyChecker::checkNavigationPolicy [PolicyChecker.cpp : 88 + 0x30]
    eip = 0x084dd002   esp = 0xbfad5950   ebp = 0xbfad5a28   ebx = 0x0a4f62bc
    esi = 0x084de060   edi = 0x00000000
    Found by: call frame info
14  phantomjs!WebCore::FrameLoader::loadWithDocumentLoader [FrameLoader.cpp : 1586 + 0x3b]
    eip = 0x084bf261   esp = 0xbfad5a30   ebp = 0xbfad5af8   ebx = 0x0a4f62bc
    esi = 0x00000000   edi = 0xb586b780
    Found by: call frame info
15  phantomjs!WebCore::FrameLoader::load [FrameLoader.cpp : 1527 + 0xf]
    eip = 0x084c06d9   esp = 0xbfad5b00   ebp = 0xbfad5b38   ebx = 0x0a4f62bc
    esi = 0xb586b644   edi = 0xb5341b00
    Found by: call frame info
16  phantomjs!WebCore::FrameLoader::load [FrameLoader.cpp : 1463 + 0xe]
    eip = 0x084c0862   esp = 0xbfad5b40   ebp = 0xbfad5ba8   ebx = 0x0a4f62bc
    esi = 0x0a41b73c   edi = 0xb5341b00
    Found by: call frame info
17  phantomjs!WebCore::FrameLoader::load [FrameLoader.cpp : 1450 + 0x1c]
    eip = 0x084c0a01   esp = 0xbfad5bb0   ebp = 0xbfad5c48   ebx = 0x0a4f62bc
    esi = 0x00000000   edi = 0x09f1bfe6
    Found by: call frame info
18  phantomjs!QWebFrame::load [qwebframe.cpp : 939 + 0x25]
    eip = 0x080c9c31   esp = 0xbfad5c50   ebp = 0xbfad5df8   ebx = 0x0a4f62bc
    esi = 0xbfad5d94   edi = 0x09f1bfe6
    Found by: call frame info
19  phantomjs!WebPage::openUrl [webpage.cpp : 841 + 0x25]
    eip = 0x0805ec50   esp = 0xbfad5e00   ebp = 0xbfad5f28   ebx = 0xbfad5ed0
    esi = 0xbfad5e64   edi = 0x00000002
    Found by: call frame info
20  phantomjs!WebPage::qt_static_metacall [moc_webpage.cpp : 221 + 0x1c]
    eip = 0x080b0ce7   esp = 0xbfad5f30   ebp = 0xbfad5fd8   ebx = 0x00000000
    esi = 0xbfad676c   edi = 0x0af0afc8
    Found by: call frame info
21  phantomjs!WebPage::qt_metacall [moc_webpage.cpp : 338 + 0x17]
    eip = 0x080b1308   esp = 0xbfad5fe0   ebp = 0xbfad6068   ebx = 0x00000000
    esi = 0xbfad676c   edi = 0x0af0afc8
    Found by: call frame info
22  phantomjs!QMetaObject::metacall [qmetaobject.cpp : 245 + 0x16]
    eip = 0x09affe4b   esp = 0xbfad6070   ebp = 0xbfad6088   ebx = 0x0a4f62bc
    esi = 0xbfad676c   edi = 0x00000012
    Found by: call frame info
23  phantomjs!JSC::Bindings::QtRuntimeMetaMethod::call [qt_runtime.cpp : 1455 + 0x29]
    eip = 0x081a7908   esp = 0xbfad6090   ebp = 0xbfad6ae8   ebx = 0x0a4f62bc
    esi = 0x0af0afc8   edi = 0x0af04db8
    Found by: call frame info
24  phantomjs!JSC::cti_op_call_NotJSFunction [JITStubs.cpp : 2191 + 0x5]
    eip = 0x08c37cd4   esp = 0xbfad6af0   ebp = 0xbfad6b68   ebx = 0x0a4f62bc
    esi = 0xb4369900   edi = 0xb4369900
    Found by: call frame info
25  0xb4357191
    eip = 0xb4357192   esp = 0xbfad6b70   ebp = 0xbfad6bb8   ebx = 0xfffffffb
    esi = 0x000001e7   edi = 0xb5ab2120
    Found by: call frame info
26  phantomjs!JSC::Interpreter::execute [JITCode.h : 77 + 0x25]
    eip = 0x08c02b41   esp = 0xbfad6bc0   ebp = 0xbfad6c48
    Found by: previous frame's frame pointer
27  phantomjs!JSC::evaluate [Completion.cpp : 64 + 0x2d]
    eip = 0x08147943   esp = 0xbfad6c50   ebp = 0xbfad6ca8   ebx = 0x0a4f62bc
    esi = 0xb4cc8b08   edi = 0xb5a246a8
    Found by: call frame info
28  phantomjs!WebCore::ScriptController::evaluateInWorld [JSMainThreadExecState.h : 54 + 0x20]
    eip = 0x0817ade9   esp = 0xbfad6cb0   ebp = 0xbfad6d58   ebx = 0x0a4f62bc
    esi = 0x0a51a354   edi = 0x00000000
    Found by: call frame info
29  phantomjs!WebCore::ScriptController::evaluate [ScriptController.cpp : 167 + 0x1e]
    eip = 0x0817b0d9   esp = 0xbfad6d60   ebp = 0xbfad6d78   ebx = 0x0a4f62bc
    esi = 0xbfad6dc0   edi = 0xb66f1800
    Found by: call frame info
30  phantomjs!WebCore::ScriptController::executeScript [ScriptControllerBase.cpp : 64 + 0x15]
    eip = 0x0816bbf7   esp = 0xbfad6d80   ebp = 0xbfad6dd8   ebx = 0x0a4f62bc
    esi = 0xb66f1ad8   edi = 0xb66f1800
    Found by: call frame info
31  phantomjs!QWebFrame::evaluateJavaScript [qwebframe.cpp : 1556 + 0x23]
    eip = 0x080c80cd   esp = 0xbfad6de0   ebp = 0xbfad6ea8   ebx = 0x0a4f62bc
    esi = 0x00000001   edi = 0xb51bc730
    Found by: call frame info
32  phantomjs!Utils::injectJsInFrame [utils.cpp : 122 + 0x1c]
    eip = 0x0806f053   esp = 0xbfad6eb0   ebp = 0xbfad6f08   ebx = 0xbfad6ed4
    esi = 0x00000001   edi = 0xbfad6ee0
    Found by: call frame info
33  phantomjs!Phantom::execute [phantom.cpp : 228 + 0x5a]
    eip = 0x080528eb   esp = 0xbfad6f10   ebp = 0xbfad7018   ebx = 0x0ad0d1e0
    esi = 0x0ad0c4c8   edi = 0xbfad6fb4
    Found by: call frame info
34  phantomjs!main [main.cpp : 120 + 0x4]
    eip = 0x0806d9b0   esp = 0xbfad7020   ebp = 0xbfad70d8   ebx = 0x0ad0d1d8
    esi = 0xbfad70f0   edi = 0xbfad709c
    Found by: call frame info
35  libc-2.13.so + 0x16e65
    eip = 0xb73eae66   esp = 0xbfad70f0   ebp = 0xbfad7168   ebx = 0xb7532ff4
    esi = 0x00000000   edi = 0x00000000
    Found by: call frame info
36  phantomjs + 0x5930
    eip = 0x0804d931   esp = 0xbfad7170   ebp = 0x00000000
    Found by: previous frame's frame pointer
37  phantomjs!_GLOBAL__I_main [main.cpp : 129 + 0x7]
    eip = 0x0806d780   esp = 0xbfad7174   ebp = 0x00000000
    Found by: stack scanning
38  ld-2.13.so + 0xe58f
    eip = 0xb777b590   esp = 0xbfad7188   ebp = 0x00000000
    Found by: stack scanning
39  ld-2.13.so + 0x1d907
    eip = 0xb778a908   esp = 0xbfad7190   ebp = 0x00000000
    Found by: stack scanning

Thread 1
 0  linux-gate.so + 0x424
    eip = 0xb776c424   esp = 0xb6fe511c   ebp = 0xb6fe52f8   ebx = 0xb6fe52e4
    esi = 0x00000000   edi = 0xb6fe52e4   eax = 0xfffffdfc   ecx = 0xb6fe52e4
    edx = 0xb7532ff4   efl = 0x00000293
    Found by: given as instruction pointer in context
 1  phantomjs!WTF::TCMalloc_PageHeap::scavengerThread [FastMalloc.cpp : 2499 + 0xb]
    eip = 0x0812a6d3   esp = 0xb6fe5300   ebp = 0xb6fe5368
    Found by: previous frame's frame pointer
 2  phantomjs!WTF::TCMalloc_PageHeap::runScavengerThread [FastMalloc.cpp : 1618 + 0xa]
    eip = 0x0812a961   esp = 0xb6fe5370   ebp = 0xb6fe5378   ebx = 0xb767cff4
    esi = 0x00000000   edi = 0x003d0f00
    Found by: call frame info
 3  libpthread-2.13.so + 0x5c38
    eip = 0xb766cc39   esp = 0xb6fe5380   ebp = 0xb6fe5478   ebx = 0xb767cff4
    esi = 0x00000000   edi = 0x003d0f00
    Found by: call frame info
 4  libc-2.13.so + 0xd6a6d
    eip = 0xb74aaa6e   esp = 0xb6fe5480   ebp = 0x00000000
    Found by: previous frame's frame pointer

Thread 2
 0  linux-gate.so + 0x424
    eip = 0xb776c424   esp = 0xb66bc06c   ebp = 0xb66bc0e8   ebx = 0x00000008
    esi = 0x0ad0e864   edi = 0x00000000   eax = 0xfffffdfe   ecx = 0x0ad0e43c
    edx = 0x0ad0e650   efl = 0x00000293
    Found by: given as instruction pointer in context
 1  phantomjs!QEventDispatcherUNIX::select [qeventdispatcher_unix.cpp : 650 + 0x23]
    eip = 0x09b23e29   esp = 0xb66bc0f0   ebp = 0xb66bc108
    Found by: previous frame's frame pointer
 2  phantomjs!QEventDispatcherUNIXPrivate::doSelect [qeventdispatcher_unix.cpp : 223 + 0x34]
    eip = 0x09b257e7   esp = 0xb66bc110   ebp = 0xb66bc218   ebx = 0x0a4f62bc
    Found by: call frame info
 3  phantomjs!QEventDispatcherUNIX::processEvents [qeventdispatcher_unix.cpp : 937 + 0xb]
    eip = 0x09b25c57   esp = 0xb66bc220   ebp = 0xb66bc258   ebx = 0x0a4f62bc
    esi = 0xb66bc240   edi = 0x0ad0e348
    Found by: call frame info
 4  phantomjs!QEventLoop::processEvents [qeventloop.cpp : 149 + 0x8]
    eip = 0x09af7fcd   esp = 0xb66bc260   ebp = 0xb66bc288   ebx = 0x0a4f62bc
    esi = 0x0ad0c948   edi = 0xb66bc2c8
    Found by: call frame info
 5  phantomjs!QEventLoop::exec [qeventloop.cpp : 200 + 0x11]
    eip = 0x09af84b1   esp = 0xb66bc290   ebp = 0xb66bc2d8   ebx = 0x0a4f62bc
    esi = 0x0ad0c948   edi = 0xb66bc310
    Found by: call frame info
 6  phantomjs!QThread::exec [qthread.cpp : 542 + 0xe]
    eip = 0x099e7b6a   esp = 0xb66bc2e0   ebp = 0xb66bc328   ebx = 0x0a4f62bc
    esi = 0x0ad02f38   edi = 0xb66bc310
    Found by: call frame info
 7  phantomjs!QThread::run [qthread.cpp : 609 + 0xa]
    eip = 0x099e7cb1   esp = 0xb66bc330   ebp = 0xb66bc338   ebx = 0x0a4f62bc
    esi = 0x0ae789d8   edi = 0x0ae81310
    Found by: call frame info
 8  phantomjs!QThreadPrivate::start [qthread_unix.cpp : 338 + 0x7]
    eip = 0x099ead90   esp = 0xb66bc340   ebp = 0xb66bc378   ebx = 0x0a4f62bc
    esi = 0x0ae789d8   edi = 0x0ae81310
    Found by: call frame info
 9  libpthread-2.13.so + 0x5c38
    eip = 0xb766cc39   esp = 0xb66bc380   ebp = 0xb66bc478   ebx = 0xb767cff4
    esi = 0x00000000   edi = 0x003d0f00
    Found by: call frame info
10  libc-2.13.so + 0xd6a6d
    eip = 0xb74aaa6e   esp = 0xb66bc480   ebp = 0x00000000
    Found by: previous frame's frame pointer

Loaded modules:
0x08048000 - 0x0a505fff  phantomjs  ???  (main)
0xb6fee000 - 0xb7046fff  libssl.so.1.0.0  ???
0xb7047000 - 0xb7202fff  libcrypto.so.1.0.0  ???
0xb7210000 - 0xb7215fff  945677eb7aeaf62f1d50efc3fb3ec7d8-le32d4.cache-3  ???
0xb7216000 - 0xb7218fff  6d41288fd70b0be22e8c3a91e032eec0-le32d4.cache-3  ???
0xb7219000 - 0xb738ffff  locale-archive  ???
0xb7393000 - 0xb73bafff  libexpat.so.1.6.0  ???
0xb73bb000 - 0xb73d3fff  libz.so.1.2.7  ???
0xb73d4000 - 0xb7533fff  libc-2.13.so  ???
0xb7537000 - 0xb7553fff  libgcc_s.so.1  ???
0xb7555000 - 0xb757afff  libm-2.13.so  ???
0xb757b000 - 0xb765ffff  libstdc++.so.6.0.17  ???
0xb7667000 - 0xb767dfff  libpthread-2.13.so  ???
0xb7680000 - 0xb7688fff  librt-2.13.so  ???
0xb7689000 - 0xb768cfff  libdl-2.13.so  ???
0xb768e000 - 0xb76c3fff  libfontconfig.so.1.5.0  ???
0xb76c4000 - 0xb775ffff  libfreetype.so.6.8.1  ???
0xb776c000 - 0xb776cfff  linux-gate.so  ???
0xb776d000 - 0xb778afff  ld-2.13.so  ???

[vitallium]

Please upgrade to PhantomJS 2. 1.9.x is no longer supported, and known to have many crasher bugs that are fixed in 2 version.