Issue 899809 link

Starred by 1 user

Issue metadata

Status:	Fixed
Owner:	keishi@chromium.org
Closed:	Nov 5
Cc:	mlippautz@chromium.org █ kbr@chromium.org hablich@chromium.org haraken@chromium.org
Components:	Blink>JavaScript Blink>WebGL
EstimatedDays:	----
NextAction:	----
OS:	Linux , Windows , Mac
Pri:	1
Type:	Bug-Regression
Stability Hotlist-PixelWrangler

Blocking:
issue 864425

Flaky crashes in WebGL2 tests, probably caused by V8

Project Member Reported by ynovikov@chromium.org, Oct 29

Issue description

https://ci.chromium.org/p/chromium/builders/luci.chromium.ci/Linux%20FYI%20Release%20%28Intel%20HD%20630%29/6773
webgl2_conformance_tests
WebglConformance_conformance_ogles_GL_mat_mat_017_to_024

https://ci.chromium.org/p/chromium/builders/luci.chromium.ci/Linux%20FYI%20Release%20%28Intel%20HD%20630%29/6774
webgl2_conformance_tests
WebglConformance_deqp_functional_gles3_shaderoperator_common_functions_02

https://ci.chromium.org/p/chromium/builders/luci.chromium.ci/Linux%20FYI%20Release%20%28Intel%20HD%20630%29/6775
webgl2_conformance_gl_passthrough_tests
WebglConformance_deqp_functional_gles3_fbocolorbuffer_tex3d_04
WebglConformance_deqp_functional_gles3_texturefiltering_cube_sizes_02

https://ci.chromium.org/p/chromium/builders/luci.chromium.ci/Linux%20FYI%20Release%20%28NVIDIA%29/5990
webgl2_conformance_gl_passthrough_tests
WebglConformance_deqp_functional_gles3_framebufferblit_depth_stencil

https://ci.chromium.org/p/chromium/builders/luci.chromium.ci/Linux%20FYI%20Release%20%28NVIDIA%29/5991
webgl2_conformance_gl_passthrough_tests
WebglConformance_deqp_functional_gles3_shaderindexing_mat_01

Crash is:
  	 0  chrome!Lookup<WTF::IdentityHashTranslator<WTF::MemberHash<blink::Animation>, WTF::HashMapValueTraits<WTF::HashTraits<blink::WeakMember<blink::Animation> >, WTF::HashTraits<unsigned int> >, blink::HeapAllocator>, blink::Animation *> [member.h : 531 + 0x0]
  	 1  chrome!RemoveClient [hash_table.h : 1520 + 0x8]
  	 2  chrome!SetResource [resource_client.cc : 44 + 0x8]
  	 3  chrome!DisposeInternal [resource_client.h : 75 + 0x9]
  	 4  chrome!Dispose [pending_script.cc : 76 + 0x9]
  	 5  chrome!ExecuteScriptBlock [pending_script.cc : 181 + 0x8]
  	 6  chrome!ExecuteAsyncTask [script_runner.cc : 242 + 0xc]
  	 7  chrome!blink::ScriptRunner::ExecuteTask() + 0x17
  	 8  chrome!Run [callback.h : 99 + 0x3]
  	 9  chrome!RunTask [callback.h : 99 + 0x3]
  	10  chrome!DoWork [thread_controller_impl.cc : 196 + 0x1a]
  	11  chrome!Run [bind_internal.h : 516 + 0x3]
  	12  chrome!RunTask [callback.h : 99 + 0x3]
  	13  chrome!RunTask [message_loop.cc : 550 + 0xf]
  	14  chrome!DoWork [message_loop.cc : 561 + 0x12]
  	15  chrome!Run [message_pump_default.cc : 37 + 0x9]
  	16  chrome!Run [message_loop.cc : 502 + 0x9]
  	17  chrome!Run [run_loop.cc : 102 + 0x9]
  	18  chrome!RendererMain [renderer_main.cc : 202 + 0xc]
  	19  chrome!RunZygote [content_main_runner_impl.cc : 495 + 0x4]
  	20  chrome!Run [content_main_runner_impl.cc : 906 + 0x5]
  	21  chrome!Main [main.cc : 472 + 0xa]
  	22  chrome!content::ContentMain(content::ContentMainParams const&) + 0x51
  	23  chrome!ChromeMain [chrome_main.cc : 102 + 0x5]
  	24  libc-2.19.so + 0x21f45
  	25  chrome!frame_dummy + 0x30
  	26  chrome + 0x2d1f000
  	27  ld-2.19.so + 0x101f3
  	28  chrome + 0x2d1f000
  	29  chrome!_start + 0x2a
  	30  0x7ffcef1c9968

https://ci.chromium.org/p/chromium/builders/luci.chromium.ci/Linux%20FYI%20Release%20%28NVIDIA%29/5992
webgl2_conformance_tests
WebglConformance_deqp_functional_gles3_textureformat_sized_color_cube_pot_01

This one has a different stack:
  	 0  chrome!Visit [heap_page.h : 906 + 0x0]
  	 1  chrome!Trace<blink::Visitor *> [visitor.h : 113 + 0x20]
  	 2  chrome!Visit [marking_visitor.h : 103 + 0xa]
  	 3  chrome!Trace [visitor.h : 123 + 0x17]
  	 4  chrome!Visit [marking_visitor.h : 103 + 0xa]
  	 5  chrome!Trace<blink::Visitor *> [visitor.h : 113 + 0x20]
  	 6  chrome!Visit [marking_visitor.h : 103 + 0xa]
  	 7  chrome!Trace [visitor.h : 123 + 0x17]
  	 8  chrome!AdvanceMarking [heap.cc : 260 + 0x9]
  	 9  chrome!MarkPhaseAdvanceMarking [thread_state.cc : 1781 + 0x8]
  	10  chrome!IncrementalMarkingStep [thread_state.cc : 1500 + 0xb]
  	11  chrome!RunScheduledGC [thread_state.cc : 963 + 0x8]
  	12  chrome!SafePoint [thread_state.cc : 1314 + 0xb]
  	13  chrome!NotifyDidProcessTask [sequence_manager_impl.cc : 573 + 0xc]
  	14  chrome!DidRunTask [sequence_manager_impl.cc : 421 + 0xf]
  	15  chrome!DoWork [thread_controller_impl.cc : 202 + 0x6]
  	16  chrome!Run [bind_internal.h : 516 + 0x3]
  	17  chrome!RunTask [callback.h : 99 + 0x3]
  	18  chrome!RunTask [message_loop.cc : 550 + 0xf]
  	19  chrome!DoWork [message_loop.cc : 561 + 0x12]
  	20  chrome!Run [message_pump_default.cc : 37 + 0x9]
  	21  chrome!Run [message_loop.cc : 502 + 0x9]
  	22  chrome!Run [run_loop.cc : 102 + 0x9]
  	23  chrome!RendererMain [renderer_main.cc : 202 + 0xc]
  	24  chrome!RunZygote [content_main_runner_impl.cc : 495 + 0x4]
  	25  chrome!Run [content_main_runner_impl.cc : 906 + 0x5]
  	26  chrome!Main [main.cc : 472 + 0xa]
  	27  chrome!content::ContentMain(content::ContentMainParams const&) + 0x51
  	28  chrome!ChromeMain [chrome_main.cc : 102 + 0x5]
  	29  libc-2.19.so + 0x21f45
  	30  chrome!frame_dummy + 0x30
  	31  chrome + 0x2d1f000
  	32  ld-2.19.so + 0x101f3
  	33  chrome + 0x2d1f000
  	34  chrome!_start + 0x2a
  	35  0x7ffee6f1a4a8

https://ci.chromium.org/p/chromium/builders/luci.chromium.ci/Linux%20FYI%20Release%20%28Intel%20HD%20630%29/6773 gives regression range crrev.com/603467..603477
https://ci.chromium.org/p/chromium/builders/luci.chromium.ci/Linux%20FYI%20Release%20(NVIDIA) gives regression range crrev.com/603474..603481
Intersection is crrev.com/603474..603477
Most likely culprits are:
V8 roll in https://chromium-review.googlesource.com/c/chromium/src/+/1304402
Enable HeapCompaction in https://chromium-review.googlesource.com/c/chromium/src/+/1297782

This affects Chromium CQ, see https://ci.chromium.org/p/chromium/builders/luci.chromium.try/linux_optional_gpu_tests_rel/10899, ironically, for V8 roll.
Could you please revert one or both of the CLs above?

Comment 1 by ynovikov@chromium.org, Oct 29

Labels: OS-Mac OS-Windows
Summary: Flaky crashes in WebGL2 tests, probably caused by V8 (was: Flaky crashes in WebGL2 CTS on Linux Intel and NVIDIA)

Also on Windows:
https://ci.chromium.org/p/chromium/builders/luci.chromium.ci/Win10%20FYI%20Release%20%28NVIDIA%29/2914
webgl2_conformance_tests
WebglConformance_deqp_functional_gles3_fboinvalidate_default

  	04fbe4e8 65d47a9b 04fbe518 5fec40f8 04fbe510 chrome_child!WTF::HashTable<blink::WeakMember<blink::CSSStyleRule const >,WTF::KeyValuePair<blink::WeakMember<blink::CSSStyleRule const >,WTF::String>,WTF::KeyValuePairKeyExtractor,WTF::MemberHash<blink::CSSStyleRule const >,WTF::HashMapValueTraits<WTF::HashTraits<blink::WeakMember<blink::CSSStyleRule const > >,WTF::HashTraits<WTF::String> >,WTF::HashTraits<blink::WeakMember<blink::CSSStyleRule const > >,blink::HeapAllocator>::Lookup<WTF::IdentityHashTranslator<WTF::MemberHash<blink::CSSStyleRule const >,WTF::HashMapValueTraits<WTF::HashTraits<blink::WeakMember<blink::CSSStyleRule const > >,WTF::HashTraits<WTF::String> >,blink::HeapAllocator>,blink::CSSStyleRule const *>+0xe7
  	04fbe5fc 65d4dc6b 5baa1880 5baa1820 00000000 chrome_child!blink::Resource::RemoveClient+0x87
  	04fbe614 6806841a 00000000 00000000 5baa1820 chrome_child!blink::ResourceClient::SetResource+0x25
  	04fbe628 683c6d00 38ad5270 683c7191 69c1019c chrome_child!blink::ClassicPendingScript::DisposeInternal+0x22
  	04fbe700 683c70cd 43c006a2 000e74d9 5bb61820 chrome_child!blink::PendingScript::Dispose+0x9a
  	04fbe744 674e71cd 38a60088 5fda2074 04fbe750 chrome_child!blink::PendingScript::ExecuteScriptBlock+0x15d
  	04fbe83c 674e67c3 04fbe854 04fbe860 64057d22 chrome_child!blink::ScriptRunner::ExecuteAsyncTask+0x14f
  	04fbe848 64057d22 0a29dc08 0a29dc08 43c009e2 chrome_child!blink::ScriptRunner::ExecuteTask+0x11
  	04fbe860 65d4b8f1 00000100 00000000 00000000 chrome_child!base::OnceCallback<void __cdecl(void)>::Run+0x2a
  	04fbe934 666da01a 0c18f4e8 660e68f7 079e5fb0 chrome_child!WTF::ThreadCheckingCallbackWrapper<base::OnceCallback<void __cdecl(void)>,void __cdecl(void)>::Run+0x5f
  	04fbea48 666ee5b9 693a4948 04fbeac0 43c00bf2 chrome_child!base::debug::TaskAnnotator::RunTask+0x12a
  	04fbebe4 6499799e 00000000 00000000 666ee2e0 chrome_child!base::sequence_manager::internal::ThreadControllerImpl::DoWork+0x2d9
  	04fbecc4 666da01a 079e2658 07a40bc8 04fbef80 chrome_child!base::internal::Invoker<base::internal::BindState<void (__thiscall base::sequence_manager::internal::ThreadControllerImpl::*)(enum base::sequence_manager::internal::ThreadControllerImpl::WorkType),base::WeakPtr<base::sequence_manager::internal::ThreadControllerImpl>,enum base::sequence_manager::internal::ThreadControllerImpl::WorkType>,void __cdecl(void)>::Run+0x9e
  	04fbedd8 6609e676 692226b7 04fbef18 693a4778 chrome_child!base::debug::TaskAnnotator::RunTask+0x12a
  	04fbeef0 6609e8a3 04fbef18 666dce60 43c00e92 chrome_child!base::MessageLoop::RunTask+0xf6
  	04fbef10 6609e99f 00000000 693a49b7 693a4778 chrome_child!base::MessageLoop::DeferOrRunPendingTask+0x53
  	04fbefe8 666dd05c 079c8ed0 079c8ec8 00000801 chrome_child!base::MessageLoop::DoWork+0xcf
  	04fbf00c 6609e377 079f2c70 0000001c 00000000 chrome_child!base::MessagePumpDefault::Run+0x9c
  	04fbf0e4 660bc00c 00000001 04fbf1d8 6922900c chrome_child!base::MessageLoop::Run+0x77
  	04fbf1c0 6669293c 079c7ab0 076b6c00 079f2c70 chrome_child!base::RunLoop::Run+0xcc
  	04fbf2a4 66074147 04fbf2d4 076b76d8 04fbf3a0 chrome_child!content::RendererMain+0x32c
  	04fbf2bc 660747ad 04fbf3a0 04fbf2d4 04fbf55c chrome_child!content::RunOtherNamedProcessTypeMain+0x4b
  	04fbf3d0 66073edf 00000000 00000003 04fbf4e4 chrome_child!content::ContentMainRunnerImpl::Run+0x1ad
  	04fbf3e0 660780ec 04fbf4f4 00000000 00000000 chrome_child!content::ContentServiceManagerMainDelegate::RunEmbedderProcess+0x13
  	04fbf4e4 660740d3 04fbf4f0 04fbf4f4 6921f420 chrome_child!service_manager::Main+0x568
  	04fbf524 64051120 04fbf548 04fbf530 04fbf52c chrome_child!content::ContentMain+0x33
  	*** WARNING: Unable to verify checksum for chrome.exe
  	04fbf598 00cd55a8 00cd0000 04fbf5e0 88cce343 chrome_child!ChromeMain+0x120
  	04fbf624 00cd146d 00cd0000 88cce343 00000006 chrome!MainDllLoader::Launch+0x22a
  	04fbf794 00dc8bba 00cd0000 00000000 0744278c chrome!wWinMain+0x46d
  	*** WARNING: Unable to verify checksum for KERNEL32.DLL
  	*** ERROR: Symbol file could not be found.  Defaulted to export symbols for KERNEL32.DLL - 
  	04fbf7e0 75078674 050d6000 75078650 1376715c chrome!__scrt_common_main_seh+0xf8
  	WARNING: Stack unwind information not available. Following frames may be wrong.
  	04fbf7f4 77a15d87 050d6000 af44b288 00000000 KERNEL32!BaseThreadInitThunk+0x24
  	04fbf83c 77a15d57 ffffffff 77a3ad0c 00000000 ntdll!RtlGetAppContainerNamedObjectPath+0x137
  	04fbf84c 00000000 00dc8c40 050d6000 00000000 ntdll!RtlGetAppContainerNamedObjectPath+0x107

And I think on Mac:
https://ci.chromium.org/p/chromium/builders/luci.chromium.ci/Mac%20FYI%20Release%20%28Intel%29/7806
webgl2_conformance_tests
WebglConformance_conformance_glsl_functions_glsl_function_clamp_float

Crashing there is due to CHECK firing, maybe because of page being unresposive: FATAL:devtools_agent.cc(104)] Check failed: false.
However, another thread is doing something with hashes:
	Thread 0
	 0  Chromium Framework!__ZNK3WTF9HashTableIjNS_12KeyValuePairIjN5blink6MemberINS2_23CachedMatchedPropertiesEEEEENS_24KeyValuePairKeyExtractorENS_7IntHashIjEENS_18HashMapValueTraitsINS_10HashTraitsIjEENS2_33CachedMatchedPropertiesHashTraitsEEESC_NS2_13HeapAllocatorEE6LookupINS_22IdentityHashTranslatorIS9_SE_SF_EEjEEPKS6_RKT0_ + 0x15b
	 1  Chromium Framework!__ZN5blink22MatchedPropertiesCache4FindEjRKNS_18StyleResolverStateERKNS_10HeapVectorINS_17MatchedPropertiesELj64EEE + 0x70
	 2  Chromium Framework!__ZN5blink13StyleResolver17ApplyMatchedCacheERNS_18StyleResolverStateERKNS_11MatchResultE + 0xb4
	 3  Chromium Framework!__ZN5blink13StyleResolver49ApplyMatchedPropertiesAndCustomPropertyAnimationsERNS_18StyleResolverStateERKNS_11MatchResultEPKNS_7ElementE + 0x2f
	 4  Chromium Framework!__ZN5blink13StyleResolver15StyleForElementEPNS_7ElementEPKNS_13ComputedStyleES5_NS_20RuleMatchingBehaviorE + 0xed3
	 5  Chromium Framework!__ZN5blink7Element28OriginalStyleForLayoutObjectEv + 0x8d
	 6  Chromium Framework!__ZN5blink7Element20StyleForLayoutObjectEv + 0x18b
	 7  Chromium Framework!__ZN5blink7Element14RecalcOwnStyleENS_17StyleRecalcChangeE + 0x256
	 8  Chromium Framework!__ZN5blink7Element11RecalcStyleENS_17StyleRecalcChangeE + 0x300
	 9  Chromium Framework!__ZN5blink11StyleEngine11RecalcStyleENS_17StyleRecalcChangeE + 0x15f
	10  Chromium Framework!__ZN5blink8Document11UpdateStyleEv + 0x3eb
	11  Chromium Framework!__ZN5blink8Document24UpdateStyleAndLayoutTreeEv + 0x252
	12  Chromium Framework!__ZN5blink8Document13ImplicitCloseEv + 0x27d
	13  Chromium Framework!__ZN5blink8Document22CheckCompletedInternalEv + 0x71
	14  Chromium Framework!__ZN5blink8Document45DecrementLoadEventDelayCountAndCheckLoadEventEv + 0x73
	15  Chromium Framework!__ZN5blink28IncrementLoadEventDelayCount22ClearAndCheckLoadEventEv + 0x1f
	16  Chromium Framework!__ZN5blink11ImageLoader24DispatchPendingLoadEventENSt3__110unique_ptrINS_28IncrementLoadEventDelayCountENS1_14default_deleteIS3_EEEE + 0x74
	17  Chromium Framework!__ZN4base8internal7InvokerINS0_9BindStateIMN5blink11ImageLoaderEFvNSt3__110unique_ptrINS3_28IncrementLoadEventDelayCountENS5_14default_deleteIS7_EEEEEJNS3_10PersistentIS4_EEN3WTF13PassedWrapperISA_EEEEEFvvEE7RunOnceEPNS0_13BindStateBaseE + 0x4f
	18  Chromium Framework!__ZN3WTF29ThreadCheckingCallbackWrapperIN4base12OnceCallbackIFvvEEES3_E3RunEv + 0xb6
	19  Chromium Framework!__ZN5blink10TaskHandle6Runner3RunERKS0_ + 0xd3
	20  Chromium Framework!__ZN4base8internal7InvokerINS0_9BindStateIMN5blink10TaskHandle6RunnerEFvRKS4_EJNS_7WeakPtrIS5_EES4_EEEFvvEE7RunOnceEPNS0_13BindStateBaseE + 0xc0
	21  Chromium Framework!__ZN3WTF29ThreadCheckingCallbackWrapperIN4base12OnceCallbackIFvvEEES3_E3RunEv + 0xb6
	22  Chromium Framework!__ZN4base5debug13TaskAnnotator7RunTaskEPKcPNS_11PendingTaskE + 0x136
	23  Chromium Framework!__ZN4base16sequence_manager8internal20ThreadControllerImpl6DoWorkENS2_8WorkTypeE + 0x3a0
	24  Chromium Framework!__ZN4base8internal7InvokerINS0_9BindStateIMNS_16sequence_manager8internal20ThreadControllerImplEFvNS5_8WorkTypeEEJNS_7WeakPtrIS5_EES6_EEEFvvEE3RunEPNS0_13BindStateBaseE + 0xbb
	25  Chromium Framework!__ZN4base5debug13TaskAnnotator7RunTaskEPKcPNS_11PendingTaskE + 0x136
	26  Chromium Framework!__ZN4base11MessageLoop7RunTaskEPNS_11PendingTaskE + 0x10f
	27  Chromium Framework!__ZN4base11MessageLoop6DoWorkEv + 0x183
	28  Chromium Framework!__ZN4base24MessagePumpCFRunLoopBase7RunWorkEv + 0x2a
	29  Chromium Framework!__ZN4base3mac15CallWithEHFrameEU13block_pointerFvvE + 0xa
	30  Chromium Framework!__ZN4base24MessagePumpCFRunLoopBase13RunWorkSourceEPv + 0x3f
	31  CoreFoundation + 0xa7321
	32  CoreFoundation + 0x8821d
	33  CoreFoundation + 0x87716
	34  CoreFoundation + 0x87114
	35  Foundation + 0x22252
	36  Chromium Framework!__ZN4base20MessagePumpNSRunLoop5DoRunEPNS_11MessagePump8DelegateE + 0x7d
	37  Chromium Framework!__ZN4base24MessagePumpCFRunLoopBase3RunEPNS_11MessagePump8DelegateE + 0x6e
	38  Chromium Framework!__ZN4base11MessageLoop3RunEb + 0x84
	39  Chromium Framework!__ZN4base7RunLoop3RunEv + 0xf9
	40  Chromium Framework!__ZN7content12RendererMainERKNS_18MainFunctionParamsE + 0x4bc
	41  Chromium Framework!__ZN7content21ContentMainRunnerImpl3RunEb + 0x18a
	42  Chromium Framework!__ZN15service_manager4MainERKNS_10MainParamsE + 0xbdc
	43  Chromium Framework!__ZN7content11ContentMainERKNS_17ContentMainParamsE + 0x44
	44  Chromium Framework!_ChromeMain + 0xaf
	45  Chromium Helper!_main + 0x1ee
	46  libdyld.dylib + 0x5235
	47  libdyld.dylib + 0x5235

This is similar to another Windows crash:
https://ci.chromium.org/p/chromium/builders/luci.chromium.ci/Win7%20FYI%20Release%20%28AMD%29/3215
WebglConformance_deqp_functional_gles3_texturespecification_basic_teximage2d_cube_04
	0035e548 677c95e0 00000000 677aa570 00000000 chrome_child!WTF::ThreadSpecific<blink::ThreadState *>::operator blink::ThreadState * *+0x3
	0035e618 677d29b1 677c96ac a7ac1c03 00000007 chrome_child!blink::MemberBase<blink::FrameFetchContext::FrozenState const ,0>::SaveCreationThreadState+0x28
	0035e700 677d6f5b 0035e730 05e640d8 0035e728 chrome_child!WTF::HashTable<blink::WeakMember<blink::CSSStyleRule const >,WTF::KeyValuePair<blink::WeakMember<blink::CSSStyleRule const >,WTF::String>,WTF::KeyValuePairKeyExtractor,WTF::MemberHash<blink::CSSStyleRule const >,WTF::HashMapValueTraits<WTF::HashTraits<blink::WeakMember<blink::CSSStyleRule const > >,WTF::HashTraits<WTF::String> >,WTF::HashTraits<blink::WeakMember<blink::CSSStyleRule const > >,blink::HeapAllocator>::Lookup<WTF::IdentityHashTranslator<WTF::MemberHash<blink::CSSStyleRule const >,WTF::HashMapValueTraits<WTF::HashTraits<blink::WeakMember<blink::CSSStyleRule const > >,WTF::HashTraits<WTF::String> >,blink::HeapAllocator>,blink::CSSStyleRule const *>+0x137
	0035e814 677dd12b 22fcb758 22fcb6f8 00000000 chrome_child!blink::Resource::RemoveClient+0x87
	0035e82c 69af78da 00000000 00000000 22fcb6f8 chrome_child!blink::ResourceClient::SetResource+0x25
	0035e840 69e561cc 2c8d61c0 69e5665d 6b69f19c chrome_child!blink::ClassicPendingScript::DisposeInternal+0x22
	0035e918 69e56599 58d39c01 00b76999 22fa9de8 chrome_child!blink::PendingScript::Dispose+0x9a
	0035e95c 68f7668d 2c860088 05d42074 0035e968 chrome_child!blink::PendingScript::ExecuteScriptBlock+0x15d
	0035ea54 68f75c83 0035ea6c 0035ea78 65ae7d22 chrome_child!blink::ScriptRunner::ExecuteAsyncTask+0x14f
	0035ea60 65ae7d22 06d5fcf8 06d5fcf8 58d39f41 chrome_child!blink::ScriptRunner::ExecuteTask+0x11
	0035ea78 677dadb1 00000100 00000000 00000000 chrome_child!base::OnceCallback<void __cdecl(void)>::Run+0x2a
	0035eb4c 681694da 07c9cc08 67b75db7 0107d1f0 chrome_child!WTF::ThreadCheckingCallbackWrapper<base::OnceCallback<void __cdecl(void)>,void __cdecl(void)>::Run+0x5f
	0035ec60 6817da79 6ae33948 0035ecd8 0035eccc chrome_child!base::debug::TaskAnnotator::RunTask+0x12a
	0035edfc 6642799e 00000000 00000000 6817d7a0 chrome_child!base::sequence_manager::internal::ThreadControllerImpl::DoWork+0x2d9
	0035eedc 681694da 0106de60 01043028 0035f198 chrome_child!base::internal::Invoker<base::internal::BindState<void (__thiscall base::sequence_manager::internal::ThreadControllerImpl::*)(enum base::sequence_manager::internal::ThreadControllerImpl::WorkType),base::WeakPtr<base::sequence_manager::internal::ThreadControllerImpl>,enum base::sequence_manager::internal::ThreadControllerImpl::WorkType>,void __cdecl(void)>::Run+0x9e
	0035eff0 67b2db36 6acb16b7 0035f130 6ae33778 chrome_child!base::debug::TaskAnnotator::RunTask+0x12a
	0035f108 67b2dd63 0035f130 6816c320 58d38411 chrome_child!base::MessageLoop::RunTask+0xf6
	0035f128 67b2de5f 00000000 6ae339b7 6ae33778 chrome_child!base::MessageLoop::DeferOrRunPendingTask+0x53
	0035f200 6816c51c 0107d138 0107d130 00000d01 chrome_child!base::MessageLoop::DoWork+0xcf
	0035f224 67b2d837 0107fcf0 0035f3f0 01040000 chrome_child!base::MessagePumpDefault::Run+0x9c
	0035f2fc 67b4b4cc 00000001 0035f3f0 6acb800c chrome_child!base::MessageLoop::Run+0x77
	0035f3d8 68121dfc 0035f374 01048300 0107fcf0 chrome_child!base::RunLoop::Run+0xcc
	0035f4bc 67b03607 0035f4ec 010427b0 0035f5b8 chrome_child!content::RendererMain+0x32c
	0035f4d4 67b03c6d 0035f5b8 0035f4ec 0035f774 chrome_child!content::RunOtherNamedProcessTypeMain+0x4b
	0035f5e8 67b0339f 00000000 00000003 0035f6fc chrome_child!content::ContentMainRunnerImpl::Run+0x1ad
	0035f5f8 67b075ac 0035f70c 00000000 00000000 chrome_child!content::ContentServiceManagerMainDelegate::RunEmbedderProcess+0x13
	0035f6fc 67b03593 0035f708 0035f70c 6acae420 chrome_child!service_manager::Main+0x568
	0035f73c 65ae1120 0035f760 0035f748 0035f744 chrome_child!content::ContentMain+0x33
	*** WARNING: Unable to verify checksum for chrome.exe
	0035f7b0 012e55a8 012e0000 0035f7f8 931d4ed0 chrome_child!ChromeMain+0x120
	0035f83c 012e146d 012e0000 931d4ed0 00000004 chrome!MainDllLoader::Launch+0x22a
	0035f9b0 013d8bba 012e0000 00000000 00eb339a chrome!wWinMain+0x46d
	0035f9fc 7525337a fffde000 0035fa48 774692b2 chrome!__scrt_common_main_seh+0xf8
	WARNING: Stack unwind information not available. Following frames may be wrong.
	0035fa08 774692b2 fffde000 764d177f 00000000 kernel32!BaseThreadInitThunk+0x12
	0035fa48 77469285 013d8c40 fffde000 ffffffff ntdll!RtlInitializeExceptionChain+0x63
	0035fa60 00000000 013d8c40 fffde000 00000000 ntdll!RtlInitializeExceptionChain+0x36

Comment 2 by mlippautz@google.com, Oct 29

The major change there that sticks out is enabling compaction:

  10a10dd Oilpan: Enable HeapCompaction for incremental marking by Keishi Hattori · 5 hours ago

Since this seems to be blocking rolls and whatnot I will speculatively revert for now. We can reland if it turns out that it was a different issue.

Project Member

Comment 3 by bugdroid1@chromium.org, Oct 29

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/0ce72e129d923a9f4a6ff0eae3c599b25fdb8d36

commit 0ce72e129d923a9f4a6ff0eae3c599b25fdb8d36
Author: Yuly Novikov <ynovikov@chromium.org>
Date: Mon Oct 29 18:33:30 2018

Revert "Oilpan: Enable HeapCompaction for incremental marking"

This reverts commit 10a10dd9fde23fa0f038c83fa9940ea69afcae2a.

Reason for revert: Suspected for flaky crashes affecting Chromium CQ.

Original change's description:
> Oilpan: Enable HeapCompaction for incremental marking
> 
> Enables HeapCompaction for kIncrementalIdleGC and kIncrementalV8FollowupGC.
> 
> Bug: 864425
> 
> Change-Id: I1fb04d7c501a8519e106237946f86f52eb7ce8f8
> Reviewed-on: https://chromium-review.googlesource.com/c/1297782
> Reviewed-by: Kentaro Hara <haraken@chromium.org>
> Reviewed-by: Michael Lippautz <mlippautz@chromium.org>
> Commit-Queue: Keishi Hattori <keishi@chromium.org>
> Cr-Commit-Position: refs/heads/master@{#603477}

TBR=haraken@chromium.org,keishi@chromium.org,mlippautz@chromium.org

Change-Id: Ie72a2eb04571945b3515ee7374a75a1ab87275c2
No-Presubmit: true
No-Tree-Checks: true
No-Try: true
Bug: 864425,  899809 
Reviewed-on: https://chromium-review.googlesource.com/c/1305833
Reviewed-by: Yuly Novikov <ynovikov@chromium.org>
Commit-Queue: Yuly Novikov <ynovikov@chromium.org>
Cr-Commit-Position: refs/heads/master@{#603573}
[modify] https://crrev.com/0ce72e129d923a9f4a6ff0eae3c599b25fdb8d36/third_party/blink/renderer/platform/heap/heap_compact.cc

Comment 4 by ynovikov@chromium.org, Oct 29

Sorry, forgot to click "Save changes" on this:

According to https://ci.chromium.org/p/chromium/g/chromium.gpu.fyi/console V8 sheriff is <none>, thus going to tentatively revert "Enable HeapCompaction".

Comment 5 by ynovikov@chromium.org, Oct 29

Cc: -keishi@chromium.org
Labels: -Pri-0 Pri-1
Owner: keishi@chromium.org
Status: Assigned (was: Unconfirmed)

Well, the bots are green since the revert landed:
https://ci.chromium.org/p/chromium/builders/luci.chromium.ci/Linux%20FYI%20Release%20%28Intel%20HD%20630%29/6778
https://ci.chromium.org/p/chromium/builders/luci.chromium.ci/Linux%20FYI%20Release%20%28NVIDIA%29/5995

However, they became green in the build before the revert, so I'm not 100% certain. But, I don't see anything related in the range of the previous green builds, and the reverted CL is still most likely culprit in regression range.
Leaving to keishi@ to investigate further.

Comment 6 by kbr@chromium.org, Oct 29

Blocking: 864425

Comment 7 by keishi@google.com, Nov 5

Status: Fixed (was: Assigned)

I landed a fix. Hopefully it fixed this.
https://chromium-review.googlesource.com/c/chromium/src/+/1312189

►

Issue 899809 link

Issue metadata

Flaky crashes in WebGL2 tests, probably caused by V8

Issue description

Comment 1 by ynovikov@chromium.org, Oct 29

Comment 1 Deleted

Comment 2 by mlippautz@google.com, Oct 29

Comment 2 Deleted

Comment 3 by bugdroid1@chromium.org, Oct 29

Comment 3 Deleted

Comment 4 by ynovikov@chromium.org, Oct 29

Comment 4 Deleted

Comment 5 by ynovikov@chromium.org, Oct 29

Comment 5 Deleted

Comment 6 by kbr@chromium.org, Oct 29

Comment 6 Deleted

Comment 7 by keishi@google.com, Nov 5

Comment 7 Deleted

Sign in to add a comment