FS#30857 : [chromium] random segfaults

FS#30857 - [chromium] random segfaults

Attached to Project: Arch Linux
Opened by Dariusz Dwornikowski (tdi) - Thursday, 26 July 2012, 10:25 GMT
Last edited by Evangelos Foutras (foutrelis) - Thursday, 09 August 2012, 16:01 GMT

Task Type	Bug Report
Category	Packages: Extra
Status	Closed
Assigned To	Evangelos Foutras (foutrelis)
Architecture	x86_64
Severity	High
Priority	Normal
Reported Version
Due in Version	Undecided
Due Date	Undecided
Percent Complete
Votes	14 Paulin (popo01) (2012-08-09) Sébastien Luttringer (seblu) (2012-08-08) Sebi Kul (sebikul) (2012-08-07) Roberto Catini (robcat) (2012-08-03) Alex (lext0n) (2012-08-03) Peter Klotz (p.klotz) (2012-07-31) Bastian Beranek (totsilence) (2012-07-31) Adria Arrufat (swiftscythe) (2012-07-30) Bence Balint (kraxor) (2012-07-30) Dariusz Dwornikowski (tdi) (2012-07-29) Mort Yao (soimort) (2012-07-29) Vasyl Demin (zersaa) (2012-07-29) Michele Lacchia (rubik) (2012-07-28) Xi0N (Xi0N) (2012-07-28)
Private	No

Details

Description:

Chromium crashes, all started after the gtk 3.4.4 upgrade. I do not know if this is connected, I just noticed crashing then.
The crashes from time to time occur when:
1. I want to write something into the web address bar. (90% of cases)
2. When I open some heavily javascript pages (gmail.com)

I file the bug because this is annoying and the browser is unusable.

Additional info:
* package version(s)
extra/chromium 20.0.1132.57-2

* config and/or log files etc.
Chromium just says: Segmentation fault.
Dmesg says:
[119079.862425] chromium[7554]: segfault at 2c ip 00007fecf7d8e8f0 sp 00007fffce4b8fd8 error 4 in libglib-2.0.so.0.3200.4[7fecf7d48000+f2000]
[119083.619747] chromium[8017]: segfault at 2c ip 000000000000002c sp 00007fff356bc378 error 14 in SYSV00000000 (deleted)[7f90f0aeb000+503000]

Please if I can help to diagnose, just tell what to do/check

Steps to reproduce:

Use chromium.

This task depends upon

Closed by Evangelos Foutras (foutrelis)
Thursday, 09 August 2012, 16:01 GMT
Reason for closing: Fixed
Additional comments about closing: Fixed in 21.0.1180.57-2 and later; reopen if crashes continue.

Comment by Ionut Biru (wonder) - Thursday, 26 July 2012, 10:54 GMT

chromium doesn't use gtk3

Comment by Dariusz Dwornikowski (tdi) - Thursday, 26 July 2012, 11:04 GMT

Look at ldd, there is gtk and glib

tdi@blackstar /usr/lib/chromium $ ldd chromium
linux-vdso.so.1 (0x00007ffff71ff000)
libX11.so.6 => /lib/libX11.so.6 (0x00007fc7b2b38000)
libXrender.so.1 => /lib/libXrender.so.1 (0x00007fc7b292d000)
libXss.so.1 => /lib/libXss.so.1 (0x00007fc7b2729000)
libXext.so.6 => /lib/libXext.so.6 (0x00007fc7b2516000)
librt.so.1 => /lib/librt.so.1 (0x00007fc7b230e000)
libdl.so.2 => /lib/libdl.so.2 (0x00007fc7b210a000)
libgobject-2.0.so.0 => /lib/libgobject-2.0.so.0 (0x00007fc7b1ebc000)
libglib-2.0.so.0 => /lib/libglib-2.0.so.0 (0x00007fc7b1bc8000)
libgtk-x11-2.0.so.0 => /lib/libgtk-x11-2.0.so.0 (0x00007fc7b159c000)
libgdk-x11-2.0.so.0 => /lib/libgdk-x11-2.0.so.0 (0x00007fc7b12ea000)
libatk-1.0.so.0 => /lib/libatk-1.0.so.0 (0x00007fc7b10c7000)
libpangocairo-1.0.so.0 => /lib/libpangocairo-1.0.so.0 (0x00007fc7b0eba000)
libgdk_pixbuf-2.0.so.0 => /lib/libgdk_pixbuf-2.0.so.0 (0x00007fc7b0c98000)
libcairo.so.2 => /lib/libcairo.so.2 (0x00007fc7b09a1000)
libpango-1.0.so.0 => /lib/libpango-1.0.so.0 (0x00007fc7b0756000)
libfreetype.so.6 => /lib/libfreetype.so.6 (0x00007fc7b04b8000)
libfontconfig.so.1 => /lib/libfontconfig.so.1 (0x00007fc7b0282000)
libevent-2.0.so.5 => /lib/libevent-2.0.so.5 (0x00007fc7b003b000)
libsmime3.so => /lib/libsmime3.so (0x00007fc7afe0e000)
libnss3.so => /lib/libnss3.so (0x00007fc7afad4000)
libnssutil3.so => /lib/libnssutil3.so (0x00007fc7af8ae000)
libplc4.so => /lib/libplc4.so (0x00007fc7af6a9000)
libnspr4.so => /lib/libnspr4.so (0x00007fc7af46b000)
libpthread.so.0 => /lib/libpthread.so.0 (0x00007fc7af24f000)
libz.so.1 => /lib/libz.so.1 (0x00007fc7af039000)
libdbus-1.so.3 => /lib/libdbus-1.so.3 (0x00007fc7aedf4000)
libXcomposite.so.1 => /lib/libXcomposite.so.1 (0x00007fc7aebf1000)
libpng15.so.15 => /lib/libpng15.so.15 (0x00007fc7ae9c4000)
libjpeg.so.8 => /lib/libjpeg.so.8 (0x00007fc7ae773000)
libXfixes.so.3 => /lib/libXfixes.so.3 (0x00007fc7ae56c000)
libasound.so.2 => /lib/libasound.so.2 (0x00007fc7ae279000)
libcups.so.2 => /lib/libcups.so.2 (0x00007fc7ae022000)
libgcrypt.so.11 => /lib/libgcrypt.so.11 (0x00007fc7adda5000)
libbz2.so.1.0 => /lib/libbz2.so.1.0 (0x00007fc7adb95000)
libexpat.so.1 => /lib/libexpat.so.1 (0x00007fc7ad96b000)
libudev.so.1 => /lib/libudev.so.1 (0x00007fc7ad75a000)
libstdc++.so.6 => /lib/libstdc++.so.6 (0x00007fc7ad457000)
libm.so.6 => /lib/libm.so.6 (0x00007fc7ad15d000)
libgcc_s.so.1 => /lib/libgcc_s.so.1 (0x00007fc7acf48000)
libc.so.6 => /lib/libc.so.6 (0x00007fc7acba4000)
/lib/ld-linux-x86-64.so.2 (0x00007fc7b2e71000)
libxcb.so.1 => /lib/libxcb.so.1 (0x00007fc7ac986000)
libgthread-2.0.so.0 => /lib/libgthread-2.0.so.0 (0x00007fc7ac784000)
libpcre.so.1 => /lib/libpcre.so.1 (0x00007fc7ac526000)
libffi.so.6 => /lib/libffi.so.6 (0x00007fc7ac31e000)
libgio-2.0.so.0 => /lib/libgio-2.0.so.0 (0x00007fc7abfd1000)
libpangoft2-1.0.so.0 => /lib/libpangoft2-1.0.so.0 (0x00007fc7abda4000)
libXinerama.so.1 => /lib/libXinerama.so.1 (0x00007fc7abba1000)
libXi.so.6 => /lib/libXi.so.6 (0x00007fc7ab992000)
libXrandr.so.2 => /lib/libXrandr.so.2 (0x00007fc7ab789000)
libXcursor.so.1 => /lib/libXcursor.so.1 (0x00007fc7ab57f000)
libXdamage.so.1 => /lib/libXdamage.so.1 (0x00007fc7ab37c000)
libgmodule-2.0.so.0 => /lib/libgmodule-2.0.so.0 (0x00007fc7ab178000)
libpixman-1.so.0 => /lib/libpixman-1.so.0 (0x00007fc7aaef2000)
libxcb-shm.so.0 => /lib/libxcb-shm.so.0 (0x00007fc7aacf0000)
libxcb-render.so.0 => /lib/libxcb-render.so.0 (0x00007fc7aaae7000)
libplds4.so => /lib/libplds4.so (0x00007fc7aa8e3000)
libgssapi_krb5.so.2 => /lib/libgssapi_krb5.so.2 (0x00007fc7aa69f000)
libgnutls.so.28 => /lib/libgnutls.so.28 (0x00007fc7aa3a2000)
libavahi-common.so.3 => /lib/libavahi-common.so.3 (0x00007fc7aa195000)
libavahi-client.so.3 => /lib/libavahi-client.so.3 (0x00007fc7a9f84000)
libgpg-error.so.0 => /lib/libgpg-error.so.0 (0x00007fc7a9d81000)
libXau.so.6 => /lib/libXau.so.6 (0x00007fc7a9b7d000)
libXdmcp.so.6 => /lib/libXdmcp.so.6 (0x00007fc7a9977000)
libresolv.so.2 => /lib/libresolv.so.2 (0x00007fc7a9760000)
libkrb5.so.3 => /lib/libkrb5.so.3 (0x00007fc7a947c000)
libk5crypto.so.3 => /lib/libk5crypto.so.3 (0x00007fc7a9251000)
libcom_err.so.2 => /lib/libcom_err.so.2 (0x00007fc7a904d000)
libkrb5support.so.0 => /lib/libkrb5support.so.0 (0x00007fc7a8e43000)
libkeyutils.so.1 => /lib/libkeyutils.so.1 (0x00007fc7a8c3f000)
libtasn1.so.3 => /lib/libtasn1.so.3 (0x00007fc7a8a2e000)
libnettle.so.4 => /lib/libnettle.so.4 (0x00007fc7a8808000)
libhogweed.so.2 => /lib/libhogweed.so.2 (0x00007fc7a85f5000)
libgmp.so.10 => /lib/libgmp.so.10 (0x00007fc7a8386000)
libp11-kit.so.0 => /lib/libp11-kit.so.0 (0x00007fc7a8174000)

Comment by Ionut Biru (wonder) - Thursday, 26 July 2012, 11:11 GMT

glib2 is not gtk3. you should provide a gdb trace, what you have provided until now, it doesn't help us at all.

Comment by Dariusz Dwornikowski (tdi) - Thursday, 26 July 2012, 11:58 GMT

gdb attached

chrome.dgb.txt (21.9 KiB)

Comment by Evangelos Foutras (foutrelis) - Friday, 27 July 2012, 02:43 GMT

If you downgrade glib2 to 2.32.3-1 [1], do the segfaults continue?

[1] http://arm.konnichi.com/core/os/x86_64/glib2-2.32.3-1-x86_64.pkg.tar.xz

Comment by Kamil Kuduk (kkuduk) - Friday, 27 July 2012, 08:30 GMT

and, a bit of wild guess, got the same symptoms after upgrading libexif (on gentoo) I'm not able to check if on my machine chromium links to libexif, but it got crachesh when accessing page icons cache, you might try to clear that cache and/or downgrade libexif (if glib2 won't do the trick)

Comment by blahgeek (blahgeek) - Saturday, 28 July 2012, 05:26 GMT

I got the almost same problem. Chromium will crash in some cases when I close a tab.

dmesg: chromium[25499]: segfault at 7f86c38cbc80 ip 00007f86c38cbc80 sp 00007fff98797d98 error 15
version: chromium 20.0.1132.57-2

Comment by blahgeek (blahgeek) - Saturday, 28 July 2012, 05:30 GMT

oops... It just crashed after I posted this comment... So now I have no idea which cases will cause the problem...

Comment by Evangelos Foutras (foutrelis) - Saturday, 28 July 2012, 09:19 GMT

I'm having trouble reproducing any crashes.

Answers to the following might help:

- Does the previous release (20.0.1132.57-1) crash as well?
- What browser plugins and AUR packages do you have installed?
- Is there a web page that consistently produces a crash?
- How long does it take for a crash to occur?

Comment by Michele Lacchia (rubik) - Saturday, 28 July 2012, 16:54 GMT

I'm having the same issue. Chromium crashes randomly on a variety of pages. I'm unable to reproduce it but it sometimes happens.

- The previous release had the same issue (for me).
- I installed only the `flashplugin` package.
- No. On my installation it crashes (not always and not periodically) on: GMail, ArchLinux Forums, YouTube, when using the omnibox, and some other sites.
- Sometimes it occurs as soon as Chromium is started (typing in the omnibox), sometimes after a long time which differs from time to time.

I've a strace output but it's 51MB and I don't know where to upload it.
Launching from the terminal I see this output:

Failed to open VDPAU backend libvdpau_nvidia.so: cannot open shared object file: No such file or directory
Failed to open VDPAU backend libvdpau_nvidia.so: cannot open shared object file: No such file or directory
Segmentation fault

Is there a command line option to get a more verbose output? I guess no...
If I have do something just tell me and I'll try.

Comment by Xi0N (Xi0N) - Saturday, 28 July 2012, 17:11 GMT

Also happens under 32bit system

Comment by Michele Lacchia (rubik) - Saturday, 28 July 2012, 17:13 GMT

Yes, forgot to mention that. My system is 32 bit.

Comment by Michele Lacchia (rubik) - Saturday, 28 July 2012, 18:34 GMT

Maybe we should open a Chromium ticket too?

Comment by blahgeek (blahgeek) - Sunday, 29 July 2012, 12:45 GMT

It seems that it's caused by chromium extension "Smooth Gestures" in my case. Chromium haven't crashed for a whole day after a uninstalled that extension. :)

Comment by Xi0N (Xi0N) - Sunday, 29 July 2012, 12:55 GMT

I don't have such extension....

Comment by Mort Yao (soimort) - Sunday, 29 July 2012, 13:40 GMT

The same issue here.
The previous release 20.0.1132.57-1 also has this issue for me.
I disabled all extensions but it still happens randomly. The error output:

terminate called after throwing an instance of 'std::out_of_range'
what(): vector::_M_range_check
Aborted

I'm on a 64-bit system.

Comment by Dariusz Dwornikowski (tdi) - Sunday, 29 July 2012, 21:03 GMT

1. I also confirm previous release had issue for me. No issue for prev. version though.
2. Installed flashplugin, no AUR addons. I checked on chromium without any extensions too.
3. No specific web page.
4. same as in @rubik's description.

Comment by Xi0N (Xi0N) - Sunday, 29 July 2012, 21:07 GMT

I actually use the pepper flash plugin to avoid the blue faces in youtube and has the same effect than normal flashplugin...
The problem is definitely with the browser itself, not with the plugins...

Comment by Bence Balint (kraxor) - Monday, 30 July 2012, 00:28 GMT

Same issue, random segfaults. Disabling all extensions, using a clear profile, etc. won't help. I'm on 32-bit.

Comment by Dariusz Dwornikowski (tdi) - Wednesday, 01 August 2012, 19:05 GMT

New chromium from repo also does that but way less often.

Comment by Mort Yao (soimort) - Thursday, 02 August 2012, 00:43 GMT

Same segfaults on the new version (21.0.1180.57-1). on my machine it happens as frequently as before.

Comment by Xi0N (Xi0N) - Thursday, 02 August 2012, 05:08 GMT

Here it happens really frequently as well still with the new version...

Comment by Evangelos Foutras (foutrelis) - Tuesday, 07 August 2012, 14:11 GMT

I have uploaded packages with debug information @ http://pkgbuild.com/~foutrelis/chromium-test-pkgs/

Install the package for your architecture, run /usr/lib/chromium/chromium under gdb in order to get a backtrace [1] and then attach it here.

[1] https://wiki.archlinux.org/index.php/Debug_-_Getting_Traces#Getting_the_trace

Comment by Sebi Kul (sebikul) - Tuesday, 07 August 2012, 19:47 GMT

Attached is a backtrace of the crash using the chromium build provided in the previous comment

trace.log (4.1 KiB)

Comment by Sebi Kul (sebikul) - Tuesday, 07 August 2012, 20:19 GMT

I just got another crash and the backtrace looks completely different. Not sure why...

trace.log (4.8 KiB)

Comment by Mort Yao (soimort) - Wednesday, 08 August 2012, 01:13 GMT

The backtrace I got.

trace.log (4.8 KiB)

Comment by Mort Yao (soimort) - Wednesday, 08 August 2012, 03:52 GMT

another crash. the very similar backtrace for me...

trace.log (4.7 KiB)

Comment by Evangelos Foutras (foutrelis) - Wednesday, 08 August 2012, 11:40 GMT

Please test chromium 21.0.1180.57-2; it includes an upstream patch for http://crbug.com/138790.

Comment by Bastian Beranek (totsilence) - Wednesday, 08 August 2012, 20:08 GMT

Been trying for at least 5 hours now, no crashes so far.

Comment by Dariusz Dwornikowski (tdi) - Thursday, 09 August 2012, 07:09 GMT

For me the same, no crashes so far on the updated package.

	Tasks related to this task (0)

Duplicate tasks of this task (0)

Arch Linux

FS#30857 - [chromium] random segfaults

Details

Loading...