2022-10-25 13:35:45 |
Erik Meitner |
bug |
|
|
added bug |
2023-03-23 03:17:55 |
Launchpad Janitor |
mirage (Ubuntu): status |
New |
Confirmed |
|
2023-05-19 13:34:03 |
Juan Hernandez |
bug |
|
|
added subscriber Juan Hernandez |
2023-12-22 16:25:01 |
Sudip Mukherjee |
bug watch added |
|
https://gitlab.com/thomasross/mirage/-/issues/24 |
|
2023-12-22 16:25:01 |
Sudip Mukherjee |
bug task added |
|
mirage |
|
2023-12-22 16:32:22 |
Sudip Mukherjee |
mirage (Ubuntu): status |
Confirmed |
In Progress |
|
2023-12-22 16:32:25 |
Sudip Mukherjee |
mirage (Ubuntu): assignee |
|
Sudip Mukherjee (sudipmuk) |
|
2023-12-22 16:32:37 |
Sudip Mukherjee |
bug |
|
|
added subscriber Sudip Mukherjee |
2023-12-22 18:50:51 |
Bug Watch Updater |
mirage: status |
Unknown |
New |
|
2023-12-22 23:18:30 |
Robie Basak |
nominated for series |
|
Ubuntu Jammy |
|
2023-12-22 23:18:30 |
Robie Basak |
bug task added |
|
mirage (Ubuntu Jammy) |
|
2023-12-22 23:18:30 |
Robie Basak |
nominated for series |
|
Ubuntu Mantic |
|
2023-12-22 23:18:30 |
Robie Basak |
bug task added |
|
mirage (Ubuntu Mantic) |
|
2023-12-22 23:18:30 |
Robie Basak |
nominated for series |
|
Ubuntu Lunar |
|
2023-12-22 23:18:30 |
Robie Basak |
bug task added |
|
mirage (Ubuntu Lunar) |
|
2023-12-25 00:30:54 |
Sudip Mukherjee |
mirage (Ubuntu Jammy): status |
New |
In Progress |
|
2023-12-25 00:30:56 |
Sudip Mukherjee |
mirage (Ubuntu Lunar): status |
New |
In Progress |
|
2023-12-25 00:30:59 |
Sudip Mukherjee |
mirage (Ubuntu Mantic): status |
New |
In Progress |
|
2023-12-25 00:31:02 |
Sudip Mukherjee |
mirage (Ubuntu Jammy): assignee |
|
Sudip Mukherjee (sudipmuk) |
|
2023-12-25 00:31:05 |
Sudip Mukherjee |
mirage (Ubuntu Lunar): assignee |
|
Sudip Mukherjee (sudipmuk) |
|
2023-12-25 00:31:07 |
Sudip Mukherjee |
mirage (Ubuntu Mantic): assignee |
|
Sudip Mukherjee (sudipmuk) |
|
2023-12-25 00:46:30 |
Sudip Mukherjee |
summary |
Mirage segfaults immediately when run |
[SRU] Mirage segfaults immediately when run |
|
2023-12-25 00:46:47 |
Sudip Mukherjee |
description |
Newly installed mirage segfaults immediately when run.
Last few lines of strace:
mmap(NULL, 4096, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f04e7f0a000
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage", {st_mode=S_IFDIR|0755, st_size=4096, ...}, 0) = 0
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/imgfuncs.cpython-310-x86_64-linux-gnu.so", {st_mode=S_IFREG|0644, st_size=14800, ...}, 0) = 0
openat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/imgfuncs.cpython-310-x86_64-linux-gnu.so", O_RDONLY|O_CLOEXEC) = 13
read(13, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\0\0\0\0\0\0\0\0"..., 832) = 832
newfstatat(13, "", {st_mode=S_IFREG|0644, st_size=14800, ...}, AT_EMPTY_PATH) = 0
mmap(NULL, 16720, PROT_READ, MAP_PRIVATE|MAP_DENYWRITE, 13, 0) = 0x7f04e7f05000
mmap(0x7f04e7f06000, 4096, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x1000) = 0x7f04e7f06000
mmap(0x7f04e7f07000, 4096, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e7f07000
mmap(0x7f04e7f08000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e7f08000
close(13) = 0
mprotect(0x7f04e7f08000, 4096, PROT_READ) = 0
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage", {st_mode=S_IFDIR|0755, st_size=4096, ...}, 0) = 0
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/xmouse.cpython-310-x86_64-linux-gnu.so", {st_mode=S_IFREG|0644, st_size=14640, ...}, 0) = 0
openat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/xmouse.cpython-310-x86_64-linux-gnu.so", O_RDONLY|O_CLOEXEC) = 13
read(13, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\0\0\0\0\0\0\0\0"..., 832) = 832
newfstatat(13, "", {st_mode=S_IFREG|0644, st_size=14640, ...}, AT_EMPTY_PATH) = 0
mmap(NULL, 16560, PROT_READ, MAP_PRIVATE|MAP_DENYWRITE, 13, 0) = 0x7f04e4009000
mmap(0x7f04e400a000, 4096, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x1000) = 0x7f04e400a000
mmap(0x7f04e400b000, 4096, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e400b000
mmap(0x7f04e400c000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e400c000
close(13) = 0
mprotect(0x7f04e400c000, 4096, PROT_READ) = 0
--- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=0x1} ---
+++ killed by SIGSEGV (core dumped) +++
Segmentation fault (core dumped)
ProblemType: Bug
DistroRelease: Ubuntu 22.04
Package: mirage 0.11.1-1build4
ProcVersionSignature: Ubuntu 5.15.0-48.54-generic 5.15.53
Uname: Linux 5.15.0-48-generic x86_64
NonfreeKernelModules: nvidia_modeset nvidia
ApportVersion: 2.20.11-0ubuntu82.1
Architecture: amd64
CasperMD5CheckResult: unknown
CurrentDesktop: ubuntu:GNOME
Date: Tue Oct 25 08:30:56 2022
InstallationDate: Installed on 2022-03-03 (235 days ago)
InstallationMedia: Ubuntu 20.04.4 LTS "Focal Fossa" - Release amd64 (20220223)
ProcEnviron:
TERM=xterm-256color
PATH=(custom, no user)
XDG_RUNTIME_DIR=<set>
LANG=en_US.UTF-8
SHELL=/bin/bash
RebootRequiredPkgs: Error: path contained symlinks.
SourcePackage: mirage
UpgradeStatus: Upgraded to jammy on 2022-06-30 (116 days ago) |
[ Impact ]
mirage is completely unusable as it will always segfault if any user tries to run the application.
Debugger showed that it is causing segfault when it is tryig to import the module xmouse. And then the coredump showed that the segfault is when Python is trying to check the flags for the methods while importing the module.
The upstream Python developers helped and the issue was found to be a missing sentinel value which caused "PyModule_Create" to access memory beyond the end of the array.
[ Test Plan ]
* Execute the command "mirage", which will segfault if its not fixed.
* With the fixed package, the "mirage" window will be displayed.
[ Where problems could occur ]
* This is not changing any part of the code and is only adding a sentinel value to terminate the array.
* It is already completely unusable for users, and this will not cause any more regression than what user experiences now.
[ Other Info ]
* All versions from Jammy are affected by this.
* More info at https://github.com/python/cpython/issues/113460
[ Original Bug Description ]
Newly installed mirage segfaults immediately when run.
Last few lines of strace:
mmap(NULL, 4096, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f04e7f0a000
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage", {st_mode=S_IFDIR|0755, st_size=4096, ...}, 0) = 0
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/imgfuncs.cpython-310-x86_64-linux-gnu.so", {st_mode=S_IFREG|0644, st_size=14800, ...}, 0) = 0
openat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/imgfuncs.cpython-310-x86_64-linux-gnu.so", O_RDONLY|O_CLOEXEC) = 13
read(13, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\0\0\0\0\0\0\0\0"..., 832) = 832
newfstatat(13, "", {st_mode=S_IFREG|0644, st_size=14800, ...}, AT_EMPTY_PATH) = 0
mmap(NULL, 16720, PROT_READ, MAP_PRIVATE|MAP_DENYWRITE, 13, 0) = 0x7f04e7f05000
mmap(0x7f04e7f06000, 4096, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x1000) = 0x7f04e7f06000
mmap(0x7f04e7f07000, 4096, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e7f07000
mmap(0x7f04e7f08000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e7f08000
close(13) = 0
mprotect(0x7f04e7f08000, 4096, PROT_READ) = 0
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage", {st_mode=S_IFDIR|0755, st_size=4096, ...}, 0) = 0
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/xmouse.cpython-310-x86_64-linux-gnu.so", {st_mode=S_IFREG|0644, st_size=14640, ...}, 0) = 0
openat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/xmouse.cpython-310-x86_64-linux-gnu.so", O_RDONLY|O_CLOEXEC) = 13
read(13, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\0\0\0\0\0\0\0\0"..., 832) = 832
newfstatat(13, "", {st_mode=S_IFREG|0644, st_size=14640, ...}, AT_EMPTY_PATH) = 0
mmap(NULL, 16560, PROT_READ, MAP_PRIVATE|MAP_DENYWRITE, 13, 0) = 0x7f04e4009000
mmap(0x7f04e400a000, 4096, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x1000) = 0x7f04e400a000
mmap(0x7f04e400b000, 4096, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e400b000
mmap(0x7f04e400c000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e400c000
close(13) = 0
mprotect(0x7f04e400c000, 4096, PROT_READ) = 0
--- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=0x1} ---
+++ killed by SIGSEGV (core dumped) +++
Segmentation fault (core dumped)
ProblemType: Bug
DistroRelease: Ubuntu 22.04
Package: mirage 0.11.1-1build4
ProcVersionSignature: Ubuntu 5.15.0-48.54-generic 5.15.53
Uname: Linux 5.15.0-48-generic x86_64
NonfreeKernelModules: nvidia_modeset nvidia
ApportVersion: 2.20.11-0ubuntu82.1
Architecture: amd64
CasperMD5CheckResult: unknown
CurrentDesktop: ubuntu:GNOME
Date: Tue Oct 25 08:30:56 2022
InstallationDate: Installed on 2022-03-03 (235 days ago)
InstallationMedia: Ubuntu 20.04.4 LTS "Focal Fossa" - Release amd64 (20220223)
ProcEnviron:
TERM=xterm-256color
PATH=(custom, no user)
XDG_RUNTIME_DIR=<set>
LANG=en_US.UTF-8
SHELL=/bin/bash
RebootRequiredPkgs: Error: path contained symlinks.
SourcePackage: mirage
UpgradeStatus: Upgraded to jammy on 2022-06-30 (116 days ago) |
|
2023-12-25 00:47:18 |
Sudip Mukherjee |
attachment added |
|
mirage_noble.patch https://bugs.launchpad.net/ubuntu/+source/mirage/+bug/1994145/+attachment/5732178/+files/mirage_noble.patch |
|
2023-12-25 01:05:31 |
Sudip Mukherjee |
attachment added |
|
mirage_mantic.patch https://bugs.launchpad.net/ubuntu/+source/mirage/+bug/1994145/+attachment/5732179/+files/mirage_mantic.patch |
|
2023-12-25 01:06:12 |
Sudip Mukherjee |
attachment added |
|
mirage_lunar.debdiff https://bugs.launchpad.net/ubuntu/+source/mirage/+bug/1994145/+attachment/5732180/+files/mirage_lunar.debdiff |
|
2023-12-25 01:06:33 |
Sudip Mukherjee |
attachment added |
|
mirage_jammy.debdiff https://bugs.launchpad.net/ubuntu/+source/mirage/+bug/1994145/+attachment/5732181/+files/mirage_jammy.debdiff |
|
2023-12-25 01:07:02 |
Sudip Mukherjee |
mirage (Ubuntu): status |
In Progress |
Confirmed |
|
2023-12-25 01:07:05 |
Sudip Mukherjee |
mirage (Ubuntu Jammy): status |
In Progress |
Confirmed |
|
2023-12-25 01:07:08 |
Sudip Mukherjee |
mirage (Ubuntu Lunar): status |
In Progress |
Confirmed |
|
2023-12-25 01:07:11 |
Sudip Mukherjee |
mirage (Ubuntu Mantic): status |
In Progress |
Confirmed |
|
2023-12-25 01:07:14 |
Sudip Mukherjee |
mirage (Ubuntu Mantic): assignee |
Sudip Mukherjee (sudipmuk) |
|
|
2023-12-25 01:07:16 |
Sudip Mukherjee |
mirage (Ubuntu Lunar): assignee |
Sudip Mukherjee (sudipmuk) |
|
|
2023-12-25 01:07:18 |
Sudip Mukherjee |
mirage (Ubuntu Jammy): assignee |
Sudip Mukherjee (sudipmuk) |
|
|
2023-12-25 01:07:20 |
Sudip Mukherjee |
mirage (Ubuntu): assignee |
Sudip Mukherjee (sudipmuk) |
|
|
2023-12-25 01:07:35 |
Sudip Mukherjee |
bug |
|
|
added subscriber Ubuntu Sponsors |
2023-12-25 12:51:54 |
Graham Inggs |
removed subscriber Ubuntu Sponsors |
|
|
|
2023-12-25 12:51:57 |
Graham Inggs |
mirage (Ubuntu): assignee |
|
Graham Inggs (ginggs) |
|
2023-12-25 12:52:00 |
Graham Inggs |
mirage (Ubuntu): status |
Confirmed |
In Progress |
|
2023-12-25 13:42:07 |
Graham Inggs |
mirage (Ubuntu): status |
In Progress |
Fix Committed |
|
2023-12-25 13:42:12 |
Graham Inggs |
mirage (Ubuntu Jammy): status |
Confirmed |
In Progress |
|
2023-12-25 13:42:16 |
Graham Inggs |
mirage (Ubuntu Mantic): status |
Confirmed |
In Progress |
|
2023-12-25 13:42:25 |
Graham Inggs |
mirage (Ubuntu Lunar): status |
Confirmed |
Opinion |
|
2023-12-25 17:00:13 |
Launchpad Janitor |
mirage (Ubuntu): status |
Fix Committed |
Fix Released |
|
2023-12-25 21:44:04 |
Ubuntu Archive Robot |
bug |
|
|
added subscriber Graham Inggs |
2023-12-25 23:07:20 |
Bug Watch Updater |
mirage: status |
New |
Fix Released |
|
2024-01-05 14:29:50 |
Timo Aaltonen |
mirage (Ubuntu Mantic): status |
In Progress |
Fix Committed |
|
2024-01-05 14:29:51 |
Timo Aaltonen |
bug |
|
|
added subscriber Ubuntu Stable Release Updates Team |
2024-01-05 14:29:54 |
Timo Aaltonen |
bug |
|
|
added subscriber SRU Verification |
2024-01-05 14:29:57 |
Timo Aaltonen |
tags |
amd64 apport-bug jammy wayland-session |
amd64 apport-bug jammy verification-needed verification-needed-mantic wayland-session |
|
2024-01-05 14:30:31 |
Timo Aaltonen |
mirage (Ubuntu Jammy): status |
In Progress |
Fix Committed |
|
2024-01-05 14:30:36 |
Timo Aaltonen |
tags |
amd64 apport-bug jammy verification-needed verification-needed-mantic wayland-session |
amd64 apport-bug jammy verification-needed verification-needed-jammy verification-needed-mantic wayland-session |
|
2024-01-10 21:18:31 |
Sudip Mukherjee |
description |
[ Impact ]
mirage is completely unusable as it will always segfault if any user tries to run the application.
Debugger showed that it is causing segfault when it is tryig to import the module xmouse. And then the coredump showed that the segfault is when Python is trying to check the flags for the methods while importing the module.
The upstream Python developers helped and the issue was found to be a missing sentinel value which caused "PyModule_Create" to access memory beyond the end of the array.
[ Test Plan ]
* Execute the command "mirage", which will segfault if its not fixed.
* With the fixed package, the "mirage" window will be displayed.
[ Where problems could occur ]
* This is not changing any part of the code and is only adding a sentinel value to terminate the array.
* It is already completely unusable for users, and this will not cause any more regression than what user experiences now.
[ Other Info ]
* All versions from Jammy are affected by this.
* More info at https://github.com/python/cpython/issues/113460
[ Original Bug Description ]
Newly installed mirage segfaults immediately when run.
Last few lines of strace:
mmap(NULL, 4096, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f04e7f0a000
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage", {st_mode=S_IFDIR|0755, st_size=4096, ...}, 0) = 0
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/imgfuncs.cpython-310-x86_64-linux-gnu.so", {st_mode=S_IFREG|0644, st_size=14800, ...}, 0) = 0
openat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/imgfuncs.cpython-310-x86_64-linux-gnu.so", O_RDONLY|O_CLOEXEC) = 13
read(13, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\0\0\0\0\0\0\0\0"..., 832) = 832
newfstatat(13, "", {st_mode=S_IFREG|0644, st_size=14800, ...}, AT_EMPTY_PATH) = 0
mmap(NULL, 16720, PROT_READ, MAP_PRIVATE|MAP_DENYWRITE, 13, 0) = 0x7f04e7f05000
mmap(0x7f04e7f06000, 4096, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x1000) = 0x7f04e7f06000
mmap(0x7f04e7f07000, 4096, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e7f07000
mmap(0x7f04e7f08000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e7f08000
close(13) = 0
mprotect(0x7f04e7f08000, 4096, PROT_READ) = 0
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage", {st_mode=S_IFDIR|0755, st_size=4096, ...}, 0) = 0
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/xmouse.cpython-310-x86_64-linux-gnu.so", {st_mode=S_IFREG|0644, st_size=14640, ...}, 0) = 0
openat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/xmouse.cpython-310-x86_64-linux-gnu.so", O_RDONLY|O_CLOEXEC) = 13
read(13, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\0\0\0\0\0\0\0\0"..., 832) = 832
newfstatat(13, "", {st_mode=S_IFREG|0644, st_size=14640, ...}, AT_EMPTY_PATH) = 0
mmap(NULL, 16560, PROT_READ, MAP_PRIVATE|MAP_DENYWRITE, 13, 0) = 0x7f04e4009000
mmap(0x7f04e400a000, 4096, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x1000) = 0x7f04e400a000
mmap(0x7f04e400b000, 4096, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e400b000
mmap(0x7f04e400c000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e400c000
close(13) = 0
mprotect(0x7f04e400c000, 4096, PROT_READ) = 0
--- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=0x1} ---
+++ killed by SIGSEGV (core dumped) +++
Segmentation fault (core dumped)
ProblemType: Bug
DistroRelease: Ubuntu 22.04
Package: mirage 0.11.1-1build4
ProcVersionSignature: Ubuntu 5.15.0-48.54-generic 5.15.53
Uname: Linux 5.15.0-48-generic x86_64
NonfreeKernelModules: nvidia_modeset nvidia
ApportVersion: 2.20.11-0ubuntu82.1
Architecture: amd64
CasperMD5CheckResult: unknown
CurrentDesktop: ubuntu:GNOME
Date: Tue Oct 25 08:30:56 2022
InstallationDate: Installed on 2022-03-03 (235 days ago)
InstallationMedia: Ubuntu 20.04.4 LTS "Focal Fossa" - Release amd64 (20220223)
ProcEnviron:
TERM=xterm-256color
PATH=(custom, no user)
XDG_RUNTIME_DIR=<set>
LANG=en_US.UTF-8
SHELL=/bin/bash
RebootRequiredPkgs: Error: path contained symlinks.
SourcePackage: mirage
UpgradeStatus: Upgraded to jammy on 2022-06-30 (116 days ago) |
[ Impact ]
mirage is completely unusable as it will always segfault if any user tries to run the application.
Debugger showed that it is causing segfault when it is tryig to import the module xmouse. And then the coredump showed that the segfault is when Python is trying to check the flags for the methods while importing the module.
The upstream Python developers helped and the issue was found to be a missing sentinel value which caused "PyModule_Create" to access memory beyond the end of the array.
[ Test Plan ]
* Create an offline pcap file with the command:
printf '\xd4\xc3\xb2\xa1\x02\0\x04\0\0\0\0\0\0\0\0\0\0\0\x04\0\x01\0\0\0' > tmp.pcap
* Use the pcap file with sngrep with the command:
sngrep -I tmp.pcap
* The sngrep panel will be displayed.
* Press Esc key to exit, and then Enter to confirm.
* It will segfault if its not fixed.
* With the fixed package, the sngrep panel will exit without segfault.
[ Where problems could occur ]
* This is not changing any part of the code and is only adding a sentinel value to terminate the array.
* It is already completely unusable for users, and this will not cause any more regression than what user experiences now.
[ Other Info ]
* All versions from Jammy are affected by this.
* More info at https://github.com/python/cpython/issues/113460
[ Original Bug Description ]
Newly installed mirage segfaults immediately when run.
Last few lines of strace:
mmap(NULL, 4096, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f04e7f0a000
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage", {st_mode=S_IFDIR|0755, st_size=4096, ...}, 0) = 0
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/imgfuncs.cpython-310-x86_64-linux-gnu.so", {st_mode=S_IFREG|0644, st_size=14800, ...}, 0) = 0
openat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/imgfuncs.cpython-310-x86_64-linux-gnu.so", O_RDONLY|O_CLOEXEC) = 13
read(13, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\0\0\0\0\0\0\0\0"..., 832) = 832
newfstatat(13, "", {st_mode=S_IFREG|0644, st_size=14800, ...}, AT_EMPTY_PATH) = 0
mmap(NULL, 16720, PROT_READ, MAP_PRIVATE|MAP_DENYWRITE, 13, 0) = 0x7f04e7f05000
mmap(0x7f04e7f06000, 4096, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x1000) = 0x7f04e7f06000
mmap(0x7f04e7f07000, 4096, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e7f07000
mmap(0x7f04e7f08000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e7f08000
close(13) = 0
mprotect(0x7f04e7f08000, 4096, PROT_READ) = 0
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage", {st_mode=S_IFDIR|0755, st_size=4096, ...}, 0) = 0
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/xmouse.cpython-310-x86_64-linux-gnu.so", {st_mode=S_IFREG|0644, st_size=14640, ...}, 0) = 0
openat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/xmouse.cpython-310-x86_64-linux-gnu.so", O_RDONLY|O_CLOEXEC) = 13
read(13, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\0\0\0\0\0\0\0\0"..., 832) = 832
newfstatat(13, "", {st_mode=S_IFREG|0644, st_size=14640, ...}, AT_EMPTY_PATH) = 0
mmap(NULL, 16560, PROT_READ, MAP_PRIVATE|MAP_DENYWRITE, 13, 0) = 0x7f04e4009000
mmap(0x7f04e400a000, 4096, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x1000) = 0x7f04e400a000
mmap(0x7f04e400b000, 4096, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e400b000
mmap(0x7f04e400c000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e400c000
close(13) = 0
mprotect(0x7f04e400c000, 4096, PROT_READ) = 0
--- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=0x1} ---
+++ killed by SIGSEGV (core dumped) +++
Segmentation fault (core dumped)
ProblemType: Bug
DistroRelease: Ubuntu 22.04
Package: mirage 0.11.1-1build4
ProcVersionSignature: Ubuntu 5.15.0-48.54-generic 5.15.53
Uname: Linux 5.15.0-48-generic x86_64
NonfreeKernelModules: nvidia_modeset nvidia
ApportVersion: 2.20.11-0ubuntu82.1
Architecture: amd64
CasperMD5CheckResult: unknown
CurrentDesktop: ubuntu:GNOME
Date: Tue Oct 25 08:30:56 2022
InstallationDate: Installed on 2022-03-03 (235 days ago)
InstallationMedia: Ubuntu 20.04.4 LTS "Focal Fossa" - Release amd64 (20220223)
ProcEnviron:
TERM=xterm-256color
PATH=(custom, no user)
XDG_RUNTIME_DIR=<set>
LANG=en_US.UTF-8
SHELL=/bin/bash
RebootRequiredPkgs: Error: path contained symlinks.
SourcePackage: mirage
UpgradeStatus: Upgraded to jammy on 2022-06-30 (116 days ago) |
|
2024-01-10 21:19:31 |
Sudip Mukherjee |
description |
[ Impact ]
mirage is completely unusable as it will always segfault if any user tries to run the application.
Debugger showed that it is causing segfault when it is tryig to import the module xmouse. And then the coredump showed that the segfault is when Python is trying to check the flags for the methods while importing the module.
The upstream Python developers helped and the issue was found to be a missing sentinel value which caused "PyModule_Create" to access memory beyond the end of the array.
[ Test Plan ]
* Create an offline pcap file with the command:
printf '\xd4\xc3\xb2\xa1\x02\0\x04\0\0\0\0\0\0\0\0\0\0\0\x04\0\x01\0\0\0' > tmp.pcap
* Use the pcap file with sngrep with the command:
sngrep -I tmp.pcap
* The sngrep panel will be displayed.
* Press Esc key to exit, and then Enter to confirm.
* It will segfault if its not fixed.
* With the fixed package, the sngrep panel will exit without segfault.
[ Where problems could occur ]
* This is not changing any part of the code and is only adding a sentinel value to terminate the array.
* It is already completely unusable for users, and this will not cause any more regression than what user experiences now.
[ Other Info ]
* All versions from Jammy are affected by this.
* More info at https://github.com/python/cpython/issues/113460
[ Original Bug Description ]
Newly installed mirage segfaults immediately when run.
Last few lines of strace:
mmap(NULL, 4096, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f04e7f0a000
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage", {st_mode=S_IFDIR|0755, st_size=4096, ...}, 0) = 0
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/imgfuncs.cpython-310-x86_64-linux-gnu.so", {st_mode=S_IFREG|0644, st_size=14800, ...}, 0) = 0
openat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/imgfuncs.cpython-310-x86_64-linux-gnu.so", O_RDONLY|O_CLOEXEC) = 13
read(13, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\0\0\0\0\0\0\0\0"..., 832) = 832
newfstatat(13, "", {st_mode=S_IFREG|0644, st_size=14800, ...}, AT_EMPTY_PATH) = 0
mmap(NULL, 16720, PROT_READ, MAP_PRIVATE|MAP_DENYWRITE, 13, 0) = 0x7f04e7f05000
mmap(0x7f04e7f06000, 4096, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x1000) = 0x7f04e7f06000
mmap(0x7f04e7f07000, 4096, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e7f07000
mmap(0x7f04e7f08000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e7f08000
close(13) = 0
mprotect(0x7f04e7f08000, 4096, PROT_READ) = 0
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage", {st_mode=S_IFDIR|0755, st_size=4096, ...}, 0) = 0
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/xmouse.cpython-310-x86_64-linux-gnu.so", {st_mode=S_IFREG|0644, st_size=14640, ...}, 0) = 0
openat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/xmouse.cpython-310-x86_64-linux-gnu.so", O_RDONLY|O_CLOEXEC) = 13
read(13, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\0\0\0\0\0\0\0\0"..., 832) = 832
newfstatat(13, "", {st_mode=S_IFREG|0644, st_size=14640, ...}, AT_EMPTY_PATH) = 0
mmap(NULL, 16560, PROT_READ, MAP_PRIVATE|MAP_DENYWRITE, 13, 0) = 0x7f04e4009000
mmap(0x7f04e400a000, 4096, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x1000) = 0x7f04e400a000
mmap(0x7f04e400b000, 4096, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e400b000
mmap(0x7f04e400c000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e400c000
close(13) = 0
mprotect(0x7f04e400c000, 4096, PROT_READ) = 0
--- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=0x1} ---
+++ killed by SIGSEGV (core dumped) +++
Segmentation fault (core dumped)
ProblemType: Bug
DistroRelease: Ubuntu 22.04
Package: mirage 0.11.1-1build4
ProcVersionSignature: Ubuntu 5.15.0-48.54-generic 5.15.53
Uname: Linux 5.15.0-48-generic x86_64
NonfreeKernelModules: nvidia_modeset nvidia
ApportVersion: 2.20.11-0ubuntu82.1
Architecture: amd64
CasperMD5CheckResult: unknown
CurrentDesktop: ubuntu:GNOME
Date: Tue Oct 25 08:30:56 2022
InstallationDate: Installed on 2022-03-03 (235 days ago)
InstallationMedia: Ubuntu 20.04.4 LTS "Focal Fossa" - Release amd64 (20220223)
ProcEnviron:
TERM=xterm-256color
PATH=(custom, no user)
XDG_RUNTIME_DIR=<set>
LANG=en_US.UTF-8
SHELL=/bin/bash
RebootRequiredPkgs: Error: path contained symlinks.
SourcePackage: mirage
UpgradeStatus: Upgraded to jammy on 2022-06-30 (116 days ago) |
[ Impact ]
mirage is completely unusable as it will always segfault if any user tries to run the application.
Debugger showed that it is causing segfault when it is tryig to import the module xmouse. And then the coredump showed that the segfault is when Python is trying to check the flags for the methods while importing the module.
The upstream Python developers helped and the issue was found to be a missing sentinel value which caused "PyModule_Create" to access memory beyond the end of the array.
[ Test Plan ]
* Execute the command "mirage", which will segfault if its not fixed.
* With the fixed package, the "mirage" window will be displayed.
[ Where problems could occur ]
* This is not changing any part of the code and is only adding a sentinel value to terminate the array.
* It is already completely unusable for users, and this will not cause any more regression than what user experiences now.
[ Other Info ]
* All versions from Jammy are affected by this.
* More info at https://github.com/python/cpython/issues/113460
[ Original Bug Description ]
Newly installed mirage segfaults immediately when run.
Last few lines of strace:
mmap(NULL, 4096, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f04e7f0a000
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage", {st_mode=S_IFDIR|0755, st_size=4096, ...}, 0) = 0
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/imgfuncs.cpython-310-x86_64-linux-gnu.so", {st_mode=S_IFREG|0644, st_size=14800, ...}, 0) = 0
openat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/imgfuncs.cpython-310-x86_64-linux-gnu.so", O_RDONLY|O_CLOEXEC) = 13
read(13, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\0\0\0\0\0\0\0\0"..., 832) = 832
newfstatat(13, "", {st_mode=S_IFREG|0644, st_size=14800, ...}, AT_EMPTY_PATH) = 0
mmap(NULL, 16720, PROT_READ, MAP_PRIVATE|MAP_DENYWRITE, 13, 0) = 0x7f04e7f05000
mmap(0x7f04e7f06000, 4096, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x1000) = 0x7f04e7f06000
mmap(0x7f04e7f07000, 4096, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e7f07000
mmap(0x7f04e7f08000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e7f08000
close(13) = 0
mprotect(0x7f04e7f08000, 4096, PROT_READ) = 0
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage", {st_mode=S_IFDIR|0755, st_size=4096, ...}, 0) = 0
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/xmouse.cpython-310-x86_64-linux-gnu.so", {st_mode=S_IFREG|0644, st_size=14640, ...}, 0) = 0
openat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/xmouse.cpython-310-x86_64-linux-gnu.so", O_RDONLY|O_CLOEXEC) = 13
read(13, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\0\0\0\0\0\0\0\0"..., 832) = 832
newfstatat(13, "", {st_mode=S_IFREG|0644, st_size=14640, ...}, AT_EMPTY_PATH) = 0
mmap(NULL, 16560, PROT_READ, MAP_PRIVATE|MAP_DENYWRITE, 13, 0) = 0x7f04e4009000
mmap(0x7f04e400a000, 4096, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x1000) = 0x7f04e400a000
mmap(0x7f04e400b000, 4096, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e400b000
mmap(0x7f04e400c000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e400c000
close(13) = 0
mprotect(0x7f04e400c000, 4096, PROT_READ) = 0
--- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=0x1} ---
+++ killed by SIGSEGV (core dumped) +++
Segmentation fault (core dumped)
ProblemType: Bug
DistroRelease: Ubuntu 22.04
Package: mirage 0.11.1-1build4
ProcVersionSignature: Ubuntu 5.15.0-48.54-generic 5.15.53
Uname: Linux 5.15.0-48-generic x86_64
NonfreeKernelModules: nvidia_modeset nvidia
ApportVersion: 2.20.11-0ubuntu82.1
Architecture: amd64
CasperMD5CheckResult: unknown
CurrentDesktop: ubuntu:GNOME
Date: Tue Oct 25 08:30:56 2022
InstallationDate: Installed on 2022-03-03 (235 days ago)
InstallationMedia: Ubuntu 20.04.4 LTS "Focal Fossa" - Release amd64 (20220223)
ProcEnviron:
TERM=xterm-256color
PATH=(custom, no user)
XDG_RUNTIME_DIR=<set>
LANG=en_US.UTF-8
SHELL=/bin/bash
RebootRequiredPkgs: Error: path contained symlinks.
SourcePackage: mirage
UpgradeStatus: Upgraded to jammy on 2022-06-30 (116 days ago) |
|
2024-01-11 20:46:29 |
Sudip Mukherjee |
tags |
amd64 apport-bug jammy verification-needed verification-needed-jammy verification-needed-mantic wayland-session |
amd64 apport-bug jammy verification-done verification-done-jammy verification-done-mantic wayland-session |
|
2024-01-15 10:53:14 |
Launchpad Janitor |
mirage (Ubuntu Mantic): status |
Fix Committed |
Fix Released |
|
2024-01-15 10:53:17 |
Łukasz Zemczak |
removed subscriber Ubuntu Stable Release Updates Team |
|
|
|
2024-01-18 17:41:36 |
Andreas Hasenack |
description |
[ Impact ]
mirage is completely unusable as it will always segfault if any user tries to run the application.
Debugger showed that it is causing segfault when it is tryig to import the module xmouse. And then the coredump showed that the segfault is when Python is trying to check the flags for the methods while importing the module.
The upstream Python developers helped and the issue was found to be a missing sentinel value which caused "PyModule_Create" to access memory beyond the end of the array.
[ Test Plan ]
* Execute the command "mirage", which will segfault if its not fixed.
* With the fixed package, the "mirage" window will be displayed.
[ Where problems could occur ]
* This is not changing any part of the code and is only adding a sentinel value to terminate the array.
* It is already completely unusable for users, and this will not cause any more regression than what user experiences now.
[ Other Info ]
* All versions from Jammy are affected by this.
* More info at https://github.com/python/cpython/issues/113460
[ Original Bug Description ]
Newly installed mirage segfaults immediately when run.
Last few lines of strace:
mmap(NULL, 4096, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f04e7f0a000
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage", {st_mode=S_IFDIR|0755, st_size=4096, ...}, 0) = 0
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/imgfuncs.cpython-310-x86_64-linux-gnu.so", {st_mode=S_IFREG|0644, st_size=14800, ...}, 0) = 0
openat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/imgfuncs.cpython-310-x86_64-linux-gnu.so", O_RDONLY|O_CLOEXEC) = 13
read(13, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\0\0\0\0\0\0\0\0"..., 832) = 832
newfstatat(13, "", {st_mode=S_IFREG|0644, st_size=14800, ...}, AT_EMPTY_PATH) = 0
mmap(NULL, 16720, PROT_READ, MAP_PRIVATE|MAP_DENYWRITE, 13, 0) = 0x7f04e7f05000
mmap(0x7f04e7f06000, 4096, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x1000) = 0x7f04e7f06000
mmap(0x7f04e7f07000, 4096, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e7f07000
mmap(0x7f04e7f08000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e7f08000
close(13) = 0
mprotect(0x7f04e7f08000, 4096, PROT_READ) = 0
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage", {st_mode=S_IFDIR|0755, st_size=4096, ...}, 0) = 0
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/xmouse.cpython-310-x86_64-linux-gnu.so", {st_mode=S_IFREG|0644, st_size=14640, ...}, 0) = 0
openat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/xmouse.cpython-310-x86_64-linux-gnu.so", O_RDONLY|O_CLOEXEC) = 13
read(13, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\0\0\0\0\0\0\0\0"..., 832) = 832
newfstatat(13, "", {st_mode=S_IFREG|0644, st_size=14640, ...}, AT_EMPTY_PATH) = 0
mmap(NULL, 16560, PROT_READ, MAP_PRIVATE|MAP_DENYWRITE, 13, 0) = 0x7f04e4009000
mmap(0x7f04e400a000, 4096, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x1000) = 0x7f04e400a000
mmap(0x7f04e400b000, 4096, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e400b000
mmap(0x7f04e400c000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e400c000
close(13) = 0
mprotect(0x7f04e400c000, 4096, PROT_READ) = 0
--- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=0x1} ---
+++ killed by SIGSEGV (core dumped) +++
Segmentation fault (core dumped)
ProblemType: Bug
DistroRelease: Ubuntu 22.04
Package: mirage 0.11.1-1build4
ProcVersionSignature: Ubuntu 5.15.0-48.54-generic 5.15.53
Uname: Linux 5.15.0-48-generic x86_64
NonfreeKernelModules: nvidia_modeset nvidia
ApportVersion: 2.20.11-0ubuntu82.1
Architecture: amd64
CasperMD5CheckResult: unknown
CurrentDesktop: ubuntu:GNOME
Date: Tue Oct 25 08:30:56 2022
InstallationDate: Installed on 2022-03-03 (235 days ago)
InstallationMedia: Ubuntu 20.04.4 LTS "Focal Fossa" - Release amd64 (20220223)
ProcEnviron:
TERM=xterm-256color
PATH=(custom, no user)
XDG_RUNTIME_DIR=<set>
LANG=en_US.UTF-8
SHELL=/bin/bash
RebootRequiredPkgs: Error: path contained symlinks.
SourcePackage: mirage
UpgradeStatus: Upgraded to jammy on 2022-06-30 (116 days ago) |
[ Impact ]
mirage is completely unusable as it will always segfault if any user tries to run the application.
Debugger showed that it is causing segfault when it is tryig to import the module xmouse. And then the coredump showed that the segfault is when Python is trying to check the flags for the methods while importing the module.
The upstream Python developers helped and the issue was found to be a missing sentinel value which caused "PyModule_Create" to access memory beyond the end of the array.
[ Test Plan ]
* Execute the command "mirage", which will segfault if it's not fixed.
* With the fixed package, the "mirage" window will be displayed.
[ Where problems could occur ]
* This is not changing any part of the code and is only adding a sentinel value to terminate the array.
* It is already completely unusable for users, and this will not cause any more regression than what user experiences now.
[ Other Info ]
* All versions from Jammy are affected by this.
* More info at https://github.com/python/cpython/issues/113460
[ Original Bug Description ]
Newly installed mirage segfaults immediately when run.
Last few lines of strace:
mmap(NULL, 4096, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f04e7f0a000
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage", {st_mode=S_IFDIR|0755, st_size=4096, ...}, 0) = 0
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/imgfuncs.cpython-310-x86_64-linux-gnu.so", {st_mode=S_IFREG|0644, st_size=14800, ...}, 0) = 0
openat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/imgfuncs.cpython-310-x86_64-linux-gnu.so", O_RDONLY|O_CLOEXEC) = 13
read(13, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\0\0\0\0\0\0\0\0"..., 832) = 832
newfstatat(13, "", {st_mode=S_IFREG|0644, st_size=14800, ...}, AT_EMPTY_PATH) = 0
mmap(NULL, 16720, PROT_READ, MAP_PRIVATE|MAP_DENYWRITE, 13, 0) = 0x7f04e7f05000
mmap(0x7f04e7f06000, 4096, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x1000) = 0x7f04e7f06000
mmap(0x7f04e7f07000, 4096, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e7f07000
mmap(0x7f04e7f08000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e7f08000
close(13) = 0
mprotect(0x7f04e7f08000, 4096, PROT_READ) = 0
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage", {st_mode=S_IFDIR|0755, st_size=4096, ...}, 0) = 0
newfstatat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/xmouse.cpython-310-x86_64-linux-gnu.so", {st_mode=S_IFREG|0644, st_size=14640, ...}, 0) = 0
openat(AT_FDCWD, "/usr/lib/python3/dist-packages/mirage/xmouse.cpython-310-x86_64-linux-gnu.so", O_RDONLY|O_CLOEXEC) = 13
read(13, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\0\0\0\0\0\0\0\0"..., 832) = 832
newfstatat(13, "", {st_mode=S_IFREG|0644, st_size=14640, ...}, AT_EMPTY_PATH) = 0
mmap(NULL, 16560, PROT_READ, MAP_PRIVATE|MAP_DENYWRITE, 13, 0) = 0x7f04e4009000
mmap(0x7f04e400a000, 4096, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x1000) = 0x7f04e400a000
mmap(0x7f04e400b000, 4096, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e400b000
mmap(0x7f04e400c000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 13, 0x2000) = 0x7f04e400c000
close(13) = 0
mprotect(0x7f04e400c000, 4096, PROT_READ) = 0
--- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=0x1} ---
+++ killed by SIGSEGV (core dumped) +++
Segmentation fault (core dumped)
ProblemType: Bug
DistroRelease: Ubuntu 22.04
Package: mirage 0.11.1-1build4
ProcVersionSignature: Ubuntu 5.15.0-48.54-generic 5.15.53
Uname: Linux 5.15.0-48-generic x86_64
NonfreeKernelModules: nvidia_modeset nvidia
ApportVersion: 2.20.11-0ubuntu82.1
Architecture: amd64
CasperMD5CheckResult: unknown
CurrentDesktop: ubuntu:GNOME
Date: Tue Oct 25 08:30:56 2022
InstallationDate: Installed on 2022-03-03 (235 days ago)
InstallationMedia: Ubuntu 20.04.4 LTS "Focal Fossa" - Release amd64 (20220223)
ProcEnviron:
TERM=xterm-256color
PATH=(custom, no user)
XDG_RUNTIME_DIR=<set>
LANG=en_US.UTF-8
SHELL=/bin/bash
RebootRequiredPkgs: Error: path contained symlinks.
SourcePackage: mirage
UpgradeStatus: Upgraded to jammy on 2022-06-30 (116 days ago) |
|
2024-01-18 17:46:18 |
Launchpad Janitor |
mirage (Ubuntu Jammy): status |
Fix Committed |
Fix Released |
|