Summary: | www-client/chromium-44.0.2403.30 produces invalid opcode | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Fernando (likewhoa) <email> |
Component: | Current packages | Assignee: | Chromium Project <chromium> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | dschridde+gentoobugs, orzel, sagredo+GentooBugs |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- |
Description
Fernando (likewhoa)
2015-06-19 18:43:26 UTC
I have same problem. I ask gentoo forum . more info on this post https://forums.gentoo.org/viewtopic-t-1017892-highlight-.html Could you obtain a stack trace (see https://code.google.com/p/chromium/wiki/LinuxDebugging)? Also see https://bugs.gentoo.org/show_bug.cgi?id=551666#c2 for some hints about debugging based on just the data from dmesg. I hope it's enough. If you need something more you say . asdf@host ~/debug $ gdb -ex=r --args "/usr/lib64/chromium-browser/chrome" --disable-seccomp-sandbox http://google.com GNU gdb (Gentoo 7.7.1 p1) 7.7.1 Copyright (C) 2014 Free Software Foundation, Inc. License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html> This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. Type "show copying" and "show warranty" for details. This GDB was configured as "x86_64-pc-linux-gnu". Type "show configuration" for configuration details. For bug reporting instructions, please see: <http://bugs.gentoo.org/>. Find the GDB manual and other documentation resources online at: <http://www.gnu.org/software/gdb/documentation/>. For help, type "help". Type "apropos word" to search for commands related to "word"... Reading symbols from /usr/lib64/chromium-browser/chrome...(no debugging symbols found)...done. Starting program: /usr/lib64/chromium-browser/chrome --disable-seccomp-sandbox http://google.com warning: Could not load shared library symbols for linux-vdso.so.1. Do you need "set solib-search-path" or "set sysroot"? [Thread debugging using libthread_db enabled] Using host libthread_db library "/lib64/libthread_db.so.1". [New Thread 0x7fffe6e1d700 (LWP 2653)] [New Thread 0x7fffe661c700 (LWP 2661)] [New Thread 0x7fffe4a80700 (LWP 2664)] [New Thread 0x7fffe427f700 (LWP 2665)] [New Thread 0x7fffe3a7e700 (LWP 2667)] [New Thread 0x7fffe327d700 (LWP 2668)] [New Thread 0x7ffff7e04700 (LWP 2670)] [New Thread 0x7fffe0f69700 (LWP 2675)] [New Thread 0x7fffe0768700 (LWP 2676)] [New Thread 0x7fffdff67700 (LWP 2677)] [New Thread 0x7fffdf766700 (LWP 2678)] [New Thread 0x7fffdef65700 (LWP 2679)] [New Thread 0x7fffde764700 (LWP 2680)] [New Thread 0x7fffddf63700 (LWP 2681)] [New Thread 0x7fffdd762700 (LWP 2682)] [New Thread 0x7fffdcf61700 (LWP 2683)] [New Thread 0x7fffdc760700 (LWP 2684)] [New Thread 0x7fffd9efa700 (LWP 2686)] [New Thread 0x7fffd56e2700 (LWP 2688)] [New Thread 0x7fffd4ee1700 (LWP 2689)] [New Thread 0x7fffd42a4700 (LWP 2691)] [Thread 0x7fffd42a4700 (LWP 2691) exited] [New Thread 0x7fffd2e17700 (LWP 2697)] [New Thread 0x7fffd2616700 (LWP 2698)] [New Thread 0x7fffd1740700 (LWP 2699)] [New Thread 0x7fffd0f3f700 (LWP 2702)] [Thread 0x7fffd0f3f700 (LWP 2702) exited] [New Thread 0x7fffd0f3f700 (LWP 2709)] [New Thread 0x7fffd053e700 (LWP 2718)] [New Thread 0x7fffcf93d700 (LWP 2724)] [Thread 0x7fffcf93d700 (LWP 2724) exited] [New Thread 0x7fffcf93d700 (LWP 2753)] [Thread 0x7fffcf93d700 (LWP 2753) exited] [2637:2681:0705/212407:ERROR:channel.cc(300)] RawChannel read error (connection broken) [New Thread 0x7fffcf93d700 (LWP 2771)] [Thread 0x7fffcf93d700 (LWP 2771) exited] [New Thread 0x7fffcf93d700 (LWP 2781)] [Thread 0x7fffcf93d700 (LWP 2781) exited] [New Thread 0x7fffcf93d700 (LWP 2793)] [Thread 0x7fffcf93d700 (LWP 2793) exited] [2637:2681:0705/212408:ERROR:channel.cc(300)] RawChannel read error (connection broken) [New Thread 0x7fffcf93d700 (LWP 2853)] [Thread 0x7fffcf93d700 (LWP 2853) exited] [2637:2681:0705/212413:ERROR:channel.cc(300)] RawChannel read error (connection broken) [New Thread 0x7fffcf93d700 (LWP 2866)] [New Thread 0x7fffcef3c700 (LWP 2867)] asdf@host1 ~ $ gdb --args /usr/lib64/chromium-browser/chrome --single-process GNU gdb (Gentoo 7.7.1 p1) 7.7.1 Copyright (C) 2014 Free Software Foundation, Inc. License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html> This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. Type "show copying" and "show warranty" for details. This GDB was configured as "x86_64-pc-linux-gnu". Type "show configuration" for configuration details. For bug reporting instructions, please see: <http://bugs.gentoo.org/>. Find the GDB manual and other documentation resources online at: <http://www.gnu.org/software/gdb/documentation/>. For help, type "help". Type "apropos word" to search for commands related to "word"... Reading symbols from /usr/lib64/chromium-browser/chrome...Reading symbols from /usr/lib64/debug//usr/lib64/chromium-browser/chrome.debug...done. done. (gdb) run Starting program: /usr/lib64/chromium-browser/chrome --single-process warning: Could not load shared library symbols for linux-vdso.so.1. Do you need "set solib-search-path" or "set sysroot"? [Thread debugging using libthread_db enabled] Using host libthread_db library "/lib64/libthread_db.so.1". [New Thread 0x7fffe6e1d700 (LWP 7246)] [New Thread 0x7fffe661c700 (LWP 7252)] [New Thread 0x7fffe4a80700 (LWP 7253)] [New Thread 0x7fffe427f700 (LWP 7254)] [New Thread 0x7fffe3a7e700 (LWP 7255)] [New Thread 0x7fffe327d700 (LWP 7256)] [New Thread 0x7ffff7e04700 (LWP 7257)] [New Thread 0x7fffe0f69700 (LWP 7258)] [New Thread 0x7fffe0768700 (LWP 7259)] [New Thread 0x7fffdff67700 (LWP 7260)] [New Thread 0x7fffdf766700 (LWP 7261)] [New Thread 0x7fffdef65700 (LWP 7262)] [New Thread 0x7fffde764700 (LWP 7263)] [New Thread 0x7fffddf63700 (LWP 7264)] [New Thread 0x7fffdd762700 (LWP 7265)] [New Thread 0x7fffdcf61700 (LWP 7266)] [New Thread 0x7fffdc760700 (LWP 7267)] [New Thread 0x7fffdba9e700 (LWP 7268)] [New Thread 0x7fffd96f9700 (LWP 7269)] [New Thread 0x7fffd4ee1700 (LWP 7270)] [7242:7264:0705/215054:ERROR:proxy_service_factory.cc(129)] Cannot use V8 Proxy resolver in single process mode. [New Thread 0x7fffd46e0700 (LWP 7272)] [7242:7264:0705/215055:ERROR:proxy_service_factory.cc(129)] Cannot use V8 Proxy resolver in single process mode. [New Thread 0x7fffd3aa3700 (LWP 7273)] [New Thread 0x7fffd32a2700 (LWP 7274)] [Thread 0x7fffd32a2700 (LWP 7274) exited] [New Thread 0x7fffd1e15700 (LWP 7293)] [New Thread 0x7fffd1614700 (LWP 7294)] [New Thread 0x7fffd073e700 (LWP 7295)] [New Thread 0x7fffcff3d700 (LWP 7296)] [New Thread 0x7fffcf73c700 (LWP 7297)] [New Thread 0x7fffcef3b700 (LWP 7298)] [New Thread 0x7fffce73a700 (LWP 7299)] Program received signal SIGILL, Illegal instruction. [Switching to Thread 0x7fffd073e700 (LWP 7295)] WTF::decommitSystemPages (addr=0x2e189a458000, len=16384) at ../../third_party/WebKit/Source/wtf/PageAllocator.cpp:229 229 ../../third_party/WebKit/Source/wtf/PageAllocator.cpp: No existe el fichero o el directorio. (In reply to sagredo from comment #4) > Program received signal SIGILL, Illegal instruction. > [Switching to Thread 0x7fffd073e700 (LWP 7295)] > WTF::decommitSystemPages (addr=0x2e189a458000, len=16384) at > ../../third_party/WebKit/Source/wtf/PageAllocator.cpp:229 > 229 ../../third_party/WebKit/Source/wtf/PageAllocator.cpp: No existe el > fichero o el directorio. Okay. Could you also run "bt" for a full stack trace and post the results? Could you also post the results of "disass" for WTF::decommitSystemPages ? (see https://sourceware.org/gdb/onlinedocs/gdb/Machine-Code.html) I hope you find it useful sag@host ~ $ gdb -ex=r --args "/usr/lib64/chromium-browser/chrome" --disable-seccomp-sandbox http://google.com GNU gdb (Gentoo 7.7.1 p1) 7.7.1 Copyright (C) 2014 Free Software Foundation, Inc. License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html> This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. Type "show copying" and "show warranty" for details. This GDB was configured as "x86_64-pc-linux-gnu". Type "show configuration" for configuration details. For bug reporting instructions, please see: <http://bugs.gentoo.org/>. Find the GDB manual and other documentation resources online at: <http://www.gnu.org/software/gdb/documentation/>. For help, type "help". Type "apropos word" to search for commands related to "word"... Reading symbols from /usr/lib64/chromium-browser/chrome...Reading symbols from /usr/lib64/debug//usr/lib64/chromium-browser/chrome.debug...done. done. Starting program: /usr/lib64/chromium-browser/chrome --disable-seccomp-sandbox http://google.com warning: Could not load shared library symbols for linux-vdso.so.1. Do you need "set solib-search-path" or "set sysroot"? [Thread debugging using libthread_db enabled] Using host libthread_db library "/lib64/libthread_db.so.1". [New Thread 0x7fffe6e1d700 (LWP 24481)] [New Thread 0x7fffe661c700 (LWP 24487)] [New Thread 0x7fffe4a80700 (LWP 24488)] [New Thread 0x7fffe427f700 (LWP 24489)] [New Thread 0x7fffe3a7e700 (LWP 24490)] [New Thread 0x7fffe327d700 (LWP 24491)] [New Thread 0x7ffff7e0e700 (LWP 24492)] [New Thread 0x7fffe0f63700 (LWP 24493)] [New Thread 0x7fffe0762700 (LWP 24494)] [New Thread 0x7fffdff61700 (LWP 24495)] [New Thread 0x7fffdf760700 (LWP 24496)] [New Thread 0x7fffdef5f700 (LWP 24497)] [New Thread 0x7fffde75e700 (LWP 24498)] [New Thread 0x7fffddf5d700 (LWP 24499)] [New Thread 0x7fffdd75c700 (LWP 24500)] [New Thread 0x7fffdcf5b700 (LWP 24501)] [New Thread 0x7fffdc75a700 (LWP 24502)] [New Thread 0x7fffd9ef4700 (LWP 24508)] [New Thread 0x7fffd56dc700 (LWP 24509)] [New Thread 0x7fffd4edb700 (LWP 24511)] [New Thread 0x7fffd429e700 (LWP 24512)] [New Thread 0x7fffd3a9d700 (LWP 24513)] [Thread 0x7fffd3a9d700 (LWP 24513) exited] [New Thread 0x7fffd2610700 (LWP 24514)] [New Thread 0x7fffd1e0f700 (LWP 24515)] [New Thread 0x7fffd0f39700 (LWP 24516)] [New Thread 0x7fffd0738700 (LWP 24519)] [Thread 0x7fffd0738700 (LWP 24519) exited] [New Thread 0x7fffd0738700 (LWP 24531)] [24477:24499:0715/223948:ERROR:channel.cc(300)] RawChannel read error (connection broken) [New Thread 0x7fffcf6b6700 (LWP 24537)] [Thread 0x7fffcf6b6700 (LWP 24537) exited] [24477:24499:0715/223951:ERROR:channel.cc(300)] RawChannel read error (connection broken) [New Thread 0x7fffcf6b6700 (LWP 24543)] [New Thread 0x7fffceeb5700 (LWP 24544)] [New Thread 0x7fffce6b4700 (LWP 24547)] Program received signal SIGPIPE, Broken pipe. [Switching to Thread 0x7fffddf5d700 (LWP 24499)] 0x00007ffff1173ecd in write () from /lib64/libpthread.so.0 (gdb) bt #0 0x00007ffff1173ecd in write () from /lib64/libpthread.so.0 #1 0x0000555556a62671 in IPC::ChannelPosix::ProcessOutgoingMessages ( this=0x29d8f6644000) at ../../ipc/ipc_channel_posix.cc:497 #2 0x0000555556a628ca in IPC::ChannelPosix::Send (this=0x29d8f6644000, message=<optimized out>) at ../../ipc/ipc_channel_posix.cc:571 #3 0x00005555585cff60 in content::BrowserMessageFilter::Send ( this=<optimized out>, message=0x29d8f6cbee80) at ../../content/public/browser/browser_message_filter.cc:143 #4 0x000055555867f4ae in content::ProfilerMessageFilter::OnChannelConnected ( this=0x29d8f6c7c230, peer_pid=<optimized out>) at ../../content/browser/profiler_message_filter.cc:21 #5 0x00005555585d0251 in content::BrowserMessageFilter::Internal::OnChannelConnected (this=0x29d8f65a9320, peer_pid=24545) at ../../content/public/browser/browser_message_filter.cc:46 #6 0x0000555556b899fd in content::ChildProcessHostImpl::OnChannelConnected ( this=0x29d8f6c7c2d0, peer_pid=24545) at ../../content/common/child_process_host_impl.cc:285 #7 0x0000555556a63870 in IPC::ChannelPosix::HandleInternalMessage ( this=0x29d8f6644000, msg=...) at ../../ipc/ipc_channel_posix.cc:1034 #8 0x0000555556a66896 in IPC::internal::ChannelReader::DispatchInputData ( this=0x29d8f6644008, input_data=<optimized out>, input_data_len=<optimized out>) at ../../ipc/ipc_channel_reader.cc:94 #9 0x0000555556a665ae in IPC::internal::ChannelReader::ProcessIncomingMessages ---Type <return> to continue, or q <return> to quit--- (this=0x29d8f6644008) at ../../ipc/ipc_channel_reader.cc:32 #10 0x0000555556a62e13 in IPC::ChannelPosix::OnFileCanReadWithoutBlocking ( this=0x29d8f6644000, fd=<optimized out>) at ../../ipc/ipc_channel_posix.cc:708 #11 0x00005555564ea578 in OnFileCanReadWithoutBlocking (this=0x29d8f6645058, fd=101, pump=<optimized out>) at ../../base/message_loop/message_pump_libevent.cc:100 #12 base::MessagePumpLibevent::OnLibeventNotification (fd=101, flags=<optimized out>, context=<optimized out>) at ../../base/message_loop/message_pump_libevent.cc:360 #13 0x00007ffff72137a8 in event_base_loop () from /usr/lib64/libevent-2.0.so.5 #14 0x00005555564ea90e in base::MessagePumpLibevent::Run (this=0x29d8f5e18f60, delegate=0x29d8f5e12180) at ../../base/message_loop/message_pump_libevent.cc:237 #15 0x000055555651ca30 in base::RunLoop::Run (this=0x7fffddf5cb08) at ../../base/run_loop.cc:55 #16 0x000055555650ae3a in base::MessageLoop::Run (this=<optimized out>) at ../../base/message_loop/message_loop.cc:303 #17 0x00005555585ec4c8 in content::BrowserThreadImpl::IOThreadRun (this=0x65, message_loop=0x29d8f6c6af60) at ../../content/browser/browser_thread_impl.cc:219 #18 0x000055555653d6c0 in base::Thread::ThreadMain (this=0x29d8f5deda00) at ../../base/threading/thread.cc:235 ---Type <return> to continue, or q <return> to quit--- #19 0x0000555556539fbc in base::(anonymous namespace)::ThreadFunc ( params=<optimized out>) at ../../base/threading/platform_thread_posix.cc:77 #20 0x00007ffff116d204 in start_thread () from /lib64/libpthread.so.0 #21 0x00007fffef5fa39d in clone () from /lib64/libc.so.6 (gdb) disass WTF::decommitSystemPages Dump of assembler code for function WTF::decommitSystemPages(void*, unsigned long): 0x0000555556ee6c00 <+0>: push %rax 0x0000555556ee6c01 <+1>: mov $0x4,%edx 0x0000555556ee6c06 <+6>: callq 0x555555f8f1e0 <madvise@plt> 0x0000555556ee6c0b <+11>: test %eax,%eax 0x0000555556ee6c0d <+13>: jne 0x555556ee6c11 <WTF::decommitSystemPages(void*, unsigned long)+17> 0x0000555556ee6c0f <+15>: pop %rax 0x0000555556ee6c10 <+16>: retq 0x0000555556ee6c11 <+17>: ud2 End of assembler dump. It looks like this RELEASE_ASSERT is being triggered in WTF::decommitSystemPages. I think that "ud2" opcode gets generated when full assertions are not enabled. https://code.google.com/p/chromium/codesearch#chromium/src/third_party/WebKit/Source/wtf/PageAllocator.cpp&sq=package:chromium&rcl=1436599777&l=208 That would mean that madvise(2) is returning with a value other than zero. Could be something related to hardening... does this crash happen with a more "vanilla" kernel? (In reply to sagredo from comment #6) > Program received signal SIGPIPE, Broken pipe. > [Switching to Thread 0x7fffddf5d700 (LWP 24499)] > 0x00007ffff1173ecd in write () from /lib64/libpthread.so.0 > (gdb) bt > #0 0x00007ffff1173ecd in write () from /lib64/libpthread.so.0 Note that this is stack trace for SIGPIPE, not SIGILL. Consider running "handle SIGPIPE nostop noprint pass" as the first command in gdb before running chrome. Also see Mike's question above about kernel and madvise failing. Thank you both for your help. As he had said Mike Gilbert, the problem was the kernel configuration. On the following settings and everything ok General setup ---> ---[*] Configure standard kernel features (expert users) ---> ----[*] Enable madvise/fadvise syscalls I can confirm that enabling the option above works for me. Perhaps this should be a check on the ebuild. I do not seem to have that option in my vanilla kernel. What is the actual option name from .config? Should be something like CONFIG_FOO_BAR. I found it: CONFIG_ADVISE_SYSCALLS. I missed it because it doesn't actually appear in the CONFIG_EXPERT sub-menu. Thanks, I committed a change to chromium.eclass to check for this. The line in the eclass is now: CONFIG_CHECK="~PID_NS ~NET_NS ~SECCOMP_FILTER ~USER_NS ~CONFIG_ADVISE_SYSCALLS ~!CONFIG_COMPAT_VDSO" I think you should strip the CONFIG_ prefix - the other flags seem to not have it, either. While you are at it, the COMPAT_VDSO flag seems to be wrong, too. I get the following message upon merging: * CONFIG_ADVISE_SYSCALLS is required for the renderer (bug #552576) But the flag is enabled: # grep CONFIG_ADVISE_SYSCALLS /boot/config-$(uname -r) CONFIG_ADVISE_SYSCALLS=y commit 964539c82ff926fad5173556d0261461050896fd Author: Mike Gilbert <floppym@gentoo.org> Date: Tue Sep 22 12:38:05 2015 -0400 chromium.eclass: Fix kernel checks As reported by Dennis Schridde, the chkconfig functions prepend CONFIG_ to the options, so we should not include it. Bug: https://bugs.gentoo.org/552576 eclass/chromium.eclass | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) wrt to last comment : indeed, why hasn't it been fixed ? It's quick to fix. emerge keeps on complaining : * CONFIG_ADVISE_SYSCALLS is required for the renderer (bug #552576) while i actually have it ... # zgrep ADVISE_SYSC /proc/config.gz CONFIG_ADVISE_SYSCALLS=y (In reply to Thomas Capricelli from comment #16) It works for me. Your portage tree is probably out of date. Ermmm. My comment was written at 17:41 CEST you did the commit at 18:38 CEST : https://github.com/gentoo/gentoo/commit/964539c82ff926fad5173556d0261461050896fd#diff-4495092ae4077d224a8812b1f424a10c And you tell me at 18:48 CEST that it works for you ? That's not really honest, is it ? (In reply to Thomas Capricelli from comment #18) > Ermmm. > > My comment was written at 17:41 CEST Not according to Bugzilla. I see you comment at 2015-09-22 13:41:54 EDT, which is equivalent to 19:41:54 CEST. That's over an hour after I committed the change. Ah, that might explain. Sorry then. (still.... one hour, it's quite small!) (In reply to Thomas Capricelli from comment #20) > (still.... one hour, it's quite small!) I agree. In the future you should wait a longer period of time after the fix has been committed before asking "why isn't this fixed" on a bug report. |