Issue 714366 link

Starred by 3 users

Issue metadata

Status:	Untriaged
Merged:	issue 619978
Owner:	----
EstimatedDays:	----
NextAction:	2019-07-09
OS:	Linux
Pri:	3
Type:	Bug
Stability-Crash Via-Wizard-Crashes

mmap: chrome (13383): VmData 2151059456 exceed data ulimit 2147483647. Update limits or use boot option ignore_rlimit_data.

Reported by mikhail....@gmail.com, Apr 22 2017

Issue description

UserAgent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.15 Safari/537.36

Steps to reproduce the problem:
1. Open as many tabs as this allows your paging file (on my computer 32Gb RAM, 64Gb swap partition so tabs opened more than 3000!!!)
2. Wait until it happens (today i needed 2 hours)
3. 

What is the expected behavior?

What went wrong?
Crash message in chrome://crashes/

and message in dmesg log:

[ 3292.798758] mmap: chrome (13383): VmData 2151059456 exceed data ulimit 2147483647. Update limits or use boot option ignore_rlimit_data.
[ 3298.126950] kworker/dying (14682) used greatest stack depth: 9624 bytes left
[ 3304.969802] do_trap: 71 callbacks suppressed
[ 3304.969812] traps: chrome[13383] trap invalid opcode ip:5635bc7e6fd0 sp:7ffed766d450 error:0 in chrome[5635b8748000+6ad2000]

Crashed report ID: c2e0aef190000000

How much crashed? Just one tab

Is it a problem with a plugin? N/A 

Did this work before? N/A 

Chrome version: 59.0.3071.15  Channel: dev
OS Version: 
Flash Version: Shockwave Flash 25.0 r0

dmesg.log
127 KB View Download

Comment 1 by mikhail....@gmail.com, Apr 23 2017

dmesg.txt
115 KB View Download

Comment 2 by mikhail....@gmail.com, Apr 23 2017

	Screenshot from 2017-04-24 00-01-53.png 400 KB View Download

Comment 3 by sandeepkumars@chromium.org, Apr 24 2017

Mergedinto: 619978
Status: Duplicate (was: Unconfirmed)

Stack Trace
============
Thread 0 CRASHED [SIGTRAP @ 0x00000000 ] MAGIC SIGNATURE THREAD
Stack Quality71%Show frame trust levels
0x00005635bc7e6fd0	(chrome -Partitions.cpp:149 )	WTF::PartitionsOutOfMemoryUsing64M()
0x00005635bc7e6eb5	(chrome -Partitions.cpp:187 )	WTF::Partitions::HandleOutOfMemory()
0x00005635baa361de	(chrome -partition_alloc.cc:266 )	base::PartitionOutOfMemory(base::PartitionRootBase const*)
0x00005635baa361ad	(chrome -partition_alloc.cc:818 )	base::PartitionAllocSlowPath(base::PartitionRootBase*, int, unsigned long, base::PartitionBucket*)
0x00005635bc7e6c5e	(chrome -partition_alloc.h:674 )	WTF::PartitionAllocator::AllocateBacking(unsigned long, char const*)
0x00005635ba51eee7	(chrome -PartitionAllocator.h:49 )	WTF::Vector<SkFontArguments::Axis, 0ul, WTF::PartitionAllocator>::ReserveCapacity(unsigned long)
0x00005635bc7fb622	(chrome -Vector.h:1516 )	void WTF::Vector<SkFontArguments::Axis, 0ul, WTF::PartitionAllocator>::AppendSlowCase<SkFontArguments::Axis&>(SkFontArguments::Axis&)
0x00005635bc9ac7b1	(chrome -Vector.h:1678 )	non-virtual thunk to blink::ScriptWrappableVisitor::MarkWrapperHeader(blink::HeapObjectHeader*) const
0x00005635bcc55f0c	(chrome -TraceTraits.h:230 )	blink::ContainerNode::TraceWrappers(blink::WrapperVisitor const*) const
0x00005635bc9da71d	(chrome + 0x0429271d )	blink::TraceTrait<blink::ANGLEInstancedArrays>::TraceMarkedWrapper(blink::WrapperVisitor const*, void const*)
0x00005635bc9ac2e4	(chrome -ScriptWrappableVisitor.h:42 )	blink::ScriptWrappableVisitor::AdvanceTracing(double, v8::EmbedderHeapTracer::AdvanceTracingActions)
0x00005635ba0f1f27	(chrome -mark-compact.cc:2154 )	v8::internal::MarkCompactCollector::ProcessEphemeralMarking(v8::internal::ObjectVisitor*, bool)
0x00005635ba0e36e9	(chrome -mark-compact.cc:2504 )	v8::internal::MarkCompactCollector::MarkLiveObjects()
0x00005635ba0e2eb8	(chrome -mark-compact.cc:374 )	v8::internal::MarkCompactCollector::CollectGarbage()
0x00005635ba0c5e2b	(chrome -heap.cc:1483 )	v8::internal::Heap::MarkCompact()
0x00005635ba0c4f00	(chrome -heap.cc:1343 )	v8::internal::Heap::PerformGarbageCollection(v8::internal::GarbageCollector, v8::GCCallbackFlags)
0x00005635ba0c3d39	(chrome -heap.cc:1023 )	v8::internal::Heap::CollectGarbage(v8::internal::GarbageCollector, v8::internal::GarbageCollectionReason, char const*, v8::GCCallbackFlags)
0x00005635ba0c38c4	(chrome -heap-inl.h:685 )	v8::internal::Heap::HandleGCRequest()
0x00005635ba087b10	(chrome -execution.cc:470 )	v8::internal::StackGuard::HandleInterrupts()
0x00005635ba2da2fe	(chrome -runtime-internal.cc:326 )	v8::internal::Runtime_StackGuard(int, v8::internal::Object**, v8::internal::Isolate*)
0x00001520ce2843fc		
0x00001520cef8eeff		
0x00001520cef89151		
0x00001520cef97cf8		
0x00001520cef068ca		
0x00001520cef04440		
0x00001520ce3b4dee		
0x00001520ce285a7a		
0x00001520cef6a418		
0x00001520cef648aa		
0x00001520cef6fe5c		
0x00001520ce33b0f8		
0x00001520ce2aaacc		
0x00005635ba087281	(chrome -execution.cc:145 )	v8::internal::(anonymous namespace)::Invoke(v8::internal::Isolate*, bool, v8::internal::Handle<v8::internal::Object>, v8::internal::Handle<v8::internal::Object>, int, v8::internal::Handle<v8::internal::Object>*, v8::internal::Handle<v8::internal::Object>, v8::internal::Execution::MessageHandling)
0x00005635ba087004	(chrome -execution.cc:181 )	v8::internal::Execution::Call(v8::internal::Isolate*, v8::internal::Handle<v8::internal::Object>, v8::internal::Handle<v8::internal::Object>, int, v8::internal::Handle<v8::internal::Object>*)
0x00005635b9d5829f	(chrome -api.cc:2024 )	v8::Script::Run(v8::Local<v8::Context>)
0x00005635bc9c3a69	(chrome -V8ScriptRunner.cpp:550 )	blink::V8ScriptRunner::RunCompiledScript(v8::Isolate*, v8::Local<v8::Script>, blink::ExecutionContext*)
0x00005635bc9a5944	(chrome -ScriptController.cpp:137 )	blink::ScriptController::ExecuteScriptAndReturnValue(v8::Local<v8::Context>, blink::ScriptSourceCode const&, blink::AccessControlStatus)
0x00005635bc9a65d6	(chrome -ScriptController.cpp:326 )	blink::ScriptController::EvaluateScriptInMainWorld(blink::ScriptSourceCode const&, blink::AccessControlStatus, blink::ScriptController::ExecuteScriptPolicy)
0x00005635bc93de08	(chrome -WebLocalFrameImpl.cpp:761 )	blink::WebLocalFrameImpl::ExecuteScriptAndReturnValue(blink::WebScriptSource const&)
0x00005635bd80a816	(chrome -render_frame_impl.cc:1990 )	content::RenderFrameImpl::OnJavaScriptExecuteRequest(std::basic_string<unsigned short, base::string16_char_traits, std::allocator<unsigned short> > const&, int, bool)
0x00005635bd80f82b	(chrome -tuple.h:77 )	bool IPC::MessageT<FrameMsg_JavaScriptExecuteRequest_Meta, std::tuple<std::basic_string<unsigned short, base::string16_char_traits, std::allocator<unsigned short> >, int, bool>, void>::Dispatch<content::RenderFrameImpl, content::RenderFrameImpl, void, void (content::RenderFrameImpl::*)(std::basic_string<unsigned short, base::string16_char_traits, std::allocator<unsigned short> > const&, int, bool)>(IPC::Message const*, content::RenderFrameImpl*, content::RenderFrameImpl*, void*, void (content::RenderFrameImpl::*)(std::basic_string<unsigned short, base::string16_char_traits, std::allocator<unsigned short> > const&, int, bool))
0x00005635bd7f3760	(chrome -render_frame_impl.cc:1572 )	content::RenderFrameImpl::OnMessageReceived(IPC::Message const&)
0x00005635baeb1da9	(chrome -ipc_channel_proxy.cc:329 )	IPC::ChannelProxy::Context::OnDispatchMessage(IPC::Message const&)
0x00005635baa38b8f	(chrome -callback.h:91 )	base::debug::TaskAnnotator::RunTask(char const*, base::PendingTask*)
0x00005635bc8e55fd	(chrome -task_queue_manager.cc:539 )	blink::scheduler::TaskQueueManager::ProcessTaskFromWorkQueue(blink::scheduler::internal::WorkQueue*, bool, blink::scheduler::LazyNow, base::TimeTicks*)
0x00005635bc8e49c7	(chrome -task_queue_manager.cc:337 )	blink::scheduler::TaskQueueManager::DoWork(bool)
0x00005635baa38b8f	(chrome -callback.h:91 )	base::debug::TaskAnnotator::RunTask(char const*, base::PendingTask*)
0x00005635ba9cb7bf	(chrome -message_loop.cc:423 )	base::MessageLoop::RunTask(base::PendingTask*)
0x00005635ba9cbbe7	(chrome -message_loop.cc:434 )	base::MessageLoop::DeferOrRunPendingTask(base::PendingTask)
0x00005635ba9cb315	(chrome -message_loop.cc:527 )	base::MessageLoop::DoWork()
0x00005635ba9ccf74	(chrome -message_pump_default.cc:33 )	base::MessagePumpDefault::Run(base::MessagePump::Delegate*)
0x00005635ba9e871d	(chrome -run_loop.cc:37 )	base::RunLoop::Run()
0x00005635bd84d7f0	(chrome -renderer_main.cc:200 )	content::RendererMain(content::MainFunctionParams const&)
0x00005635ba67a50e	(chrome -content_main_runner.cc:367 )	content::RunZygote(content::MainFunctionParams const&, content::ContentMainDelegate*)
0x00005635ba67b4d4	(chrome -content_main_runner.cc:740 )	content::ContentMainRunnerImpl::Run()
0x00005635bb9676df	(chrome -main.cc:179 )	service_manager::Main(service_manager::MainParams const&)
0x00005635ba67a2b1	(chrome -content_main.cc:19 )	content::ContentMain(content::ContentMainParams const&)
0x00005635b92ad960	(chrome -chrome_main.cc:123 )	ChromeMain
0x00007f63fa30d5fd	(libc-2.25.so + 0x000205fd )	
0x00005635b92ad8cf	(chrome + 0x00b658cf )	SyscallAsm
0x00007f6400f28b12	(ld-2.25.so + 0x00010b12 )	
0x00005635b92ad773	(chrome -os2.cc:103 )	__cxx_global_array_dtor

Above Stack trace is matching with the  issue 619978 . Hence merging this issue into 619978. Please un merge if not the case.

Comment 4 by peria@chromium.org, Apr 24 2017

Status: Untriaged (was: Duplicate)

This issue is independent from the  issue 619978 .

Comment 5 by anhi...@gmail.com, Jul 21 2017

I've hit the same issue with Vivaldi (a Chromium-based browser) for the first time after upgrading to the latest version recently.
It never happened before.

When it happened, I had ~32 tabs open and a few memory hog VMs running in the background.
The crashed tab was an item page on www.staples.com.

Version info:
Vivaldi       1.10.867.46 (Stable channel) (64-bit)
Revision      a15109d5067af6b5a12e545c62002cb77d8f329e
OS            Linux
JavaScript    V8 5.9.211.38
Flash         (Disabled)
User Agent    Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.112 Safari/537.36 Vivaldi/1.91.867.46

dmesg:
[679861.517865] mmap: vivaldi-bin (32524): VmData 2147684352 exceed data ulimit 2147483647. Update limits or use boot option ignore_rlimit_data.
[679876.537167] traps: vivaldi-bin[32524] trap int3 ip:55b38fbcf250 sp:7ffdab7a9190 error:0


My default VmData ulimit is unlimited:
$ grep 'data size' /proc/$$/limits
Max data size             unlimited            unlimited            bytes

But Chromium (Vivaldi in my case) sets it to 2147483647 for all renderer processes:
$ grep -h 'data size' $(printf "/proc/%s/limits\n" $(pidof vivaldi-bin)) | sort | uniq -c
     28 Max data size             2147483647           2147483647           bytes
      3 Max data size             unlimited            unlimited            bytes

$ uname -a
Linux qqqq 4.11.4-gentoo-20170608 #2 SMP Thu Jun 8 17:02:40 EDT 2017 x86_64 Intel(R) Xeon(R) CPU E5-2623 v3 @ 3.00GHz GenuineIntel GNU/Linux

$ free -h
              total        used        free      shared  buff/cache   available
Mem:            62G         54G        2.2G        218M        6.2G        7.5G
Swap:            0B          0B          0B

Comment 6 by benhenry@google.com, Jan 10

Labels: Pri-3
NextAction: 2019-07-09

Downgrading P2s that haven't been modified in more than 6 months, which have no component or owner.

►

Issue 714366 link

Issue metadata

mmap: chrome (13383): VmData 2151059456 exceed data ulimit 2147483647. Update limits or use boot option ignore_rlimit_data.

Issue description

Comment 1 by mikhail....@gmail.com, Apr 23 2017

Comment 1 Deleted

Comment 2 by mikhail....@gmail.com, Apr 23 2017

Comment 2 Deleted

Comment 3 by sandeepkumars@chromium.org, Apr 24 2017

Comment 3 Deleted

Comment 4 by peria@chromium.org, Apr 24 2017

Comment 4 Deleted

Comment 5 by anhi...@gmail.com, Jul 21 2017

Comment 5 Deleted

Comment 6 by benhenry@google.com, Jan 10

Comment 6 Deleted

Sign in to add a comment