** Description changed: - This affects the qemu-user-static 1:8.2.2+ds-0ubuntu1 package on Ubuntu - 24.04, running on a amd64 host. + [ Impact ] + + * QEMU crashes when running (emulating) ldconfig in a Ubuntu 22.04 + arm64 guest + + * This affects the qemu-user-static 1:8.2.2+ds-0ubuntu1 package on + Ubuntu 24.04+, running on a amd64 host. + + * When running docker containers with Ubuntu 22.04 in them, emulating + arm64 with qemu-aarch64-static, invocations of ldconfig (actually + ldconfig.real) segfault, leading to problems when loading shared + libraries. + + [ Test Plan ] + + * Reproducer is very easy: + + $ sudo snap install docker + docker 27.5.1 from Canonical** installed + $ docker run -ti --platform linux/arm64/v8 ubuntu:22.04 + Unable to find image 'ubuntu:22.04' locally + 22.04: Pulling from library/ubuntu + 0d1c17d4e593: Pull complete + Digest: sha256:ed1544e454989078f5dec1bfdabd8c5cc9c48e0705d07b678ab6ae3fb61952d2 + Status: Downloaded newer image for ubuntu:22.04 + + # Execute ldconfig.real inside the arm64 guest. + # This should not crash after the fix! + root@ad80af5378dc:/# /sbin/ldconfig.real + qemu: uncaught target signal 11 (Segmentation fault) - core dumped + Segmentation fault (core dumped) + + [ Where problems could occur ] + + * This changes the alignment of sections in the ELF binary via QEMUs + elfloader, if something goes wrong with this change, it could lead to + all kind of crashes (segfault) of any emulated binaries. + + [ Other Info ] + + * Upstream bug: https://gitlab.com/qemu-project/qemu/-/issues/1913 + * Upstream fix: https://gitlab.com/qemu-project/qemu/-/commit/4b7b20a3 + - Fix dependency (needed for QEMU < 9.20): https://gitlab.com/qemu-project/qemu/-/commit/c81d1faf + + --- original bug report --- + + + This affects the qemu-user-static 1:8.2.2+ds-0ubuntu1 package on Ubuntu 24.04, running on a amd64 host. When running docker containers with Ubuntu 22.04 in them, emulating arm64 with qemu-aarch64-static, invocations of ldconfig (actually ldconfig.real) segfault. For example: - $ docker run -ti --platform linux/arm64/v8 ubuntu:22.04 + $ docker run -ti --platform linux/arm64/v8 ubuntu:22.04 root@8861ff640a1c:/# /sbin/ldconfig.real Segmentation fault If you copy the ldconfig.real binary to the host, and run it directly via qemu-aarch64-static: - $ gdb --args qemu-aarch64-static ./ldconfig.real + $ gdb --args qemu-aarch64-static ./ldconfig.real GNU gdb (Ubuntu 15.0.50.20240403-0ubuntu1) 15.0.50.20240403-git Copyright (C) 2024 Free Software Foundation, Inc. License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html> This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. Type "show copying" and "show warranty" for details. This GDB was configured as "x86_64-linux-gnu". Type "show configuration" for configuration details. For bug reporting instructions, please see: <https://www.gnu.org/software/gdb/bugs/>. Find the GDB manual and other documentation resources online at: - <http://www.gnu.org/software/gdb/documentation/>. + <http://www.gnu.org/software/gdb/documentation/>. For help, type "help". Type "apropos word" to search for commands related to "word"... Reading symbols from qemu-aarch64-static... Reading symbols from /home/dim/.cache/debuginfod_client/86579812b213be0964189499f62f176bea817bf2/debuginfo... (gdb) r Starting program: /usr/bin/qemu-aarch64-static ./ldconfig.real [Thread debugging using libthread_db enabled] Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1". [New Thread 0x7ffff76006c0 (LWP 28378)] Thread 1 "qemu-aarch64-st" received signal SIGSEGV, Segmentation fault. 0x00007fffe801645b in ?? () - (gdb) disassemble + (gdb) disassemble No function contains program counter for selected frame. It looks like this is a known qemu regression after v8.1.1: https://gitlab.com/qemu-project/qemu/-/issues/1913 Downgrading the package to qemu-user- static_8.0.4+dfsg-1ubuntu3_amd64.deb fixes the segfault.
-- You received this bug notification because you are a member of qemu- devel-ml, which is subscribed to QEMU. https://bugs.launchpad.net/bugs/2072564 Title: qemu-aarch64-static segfaults running ldconfig.real (amd64 host) Status in QEMU: Fix Released Status in qemu package in Ubuntu: Triaged Status in qemu source package in Noble: Triaged Status in qemu source package in Oracular: Triaged Bug description: [ Impact ] * QEMU crashes when running (emulating) ldconfig in a Ubuntu 22.04 arm64 guest * This affects the qemu-user-static 1:8.2.2+ds-0ubuntu1 package on Ubuntu 24.04+, running on a amd64 host. * When running docker containers with Ubuntu 22.04 in them, emulating arm64 with qemu-aarch64-static, invocations of ldconfig (actually ldconfig.real) segfault, leading to problems when loading shared libraries. [ Test Plan ] * Reproducer is very easy: $ sudo snap install docker docker 27.5.1 from Canonical** installed $ docker run -ti --platform linux/arm64/v8 ubuntu:22.04 Unable to find image 'ubuntu:22.04' locally 22.04: Pulling from library/ubuntu 0d1c17d4e593: Pull complete Digest: sha256:ed1544e454989078f5dec1bfdabd8c5cc9c48e0705d07b678ab6ae3fb61952d2 Status: Downloaded newer image for ubuntu:22.04 # Execute ldconfig.real inside the arm64 guest. # This should not crash after the fix! root@ad80af5378dc:/# /sbin/ldconfig.real qemu: uncaught target signal 11 (Segmentation fault) - core dumped Segmentation fault (core dumped) [ Where problems could occur ] * This changes the alignment of sections in the ELF binary via QEMUs elfloader, if something goes wrong with this change, it could lead to all kind of crashes (segfault) of any emulated binaries. [ Other Info ] * Upstream bug: https://gitlab.com/qemu-project/qemu/-/issues/1913 * Upstream fix: https://gitlab.com/qemu-project/qemu/-/commit/4b7b20a3 - Fix dependency (needed for QEMU < 9.20): https://gitlab.com/qemu-project/qemu/-/commit/c81d1faf --- original bug report --- This affects the qemu-user-static 1:8.2.2+ds-0ubuntu1 package on Ubuntu 24.04, running on a amd64 host. When running docker containers with Ubuntu 22.04 in them, emulating arm64 with qemu-aarch64-static, invocations of ldconfig (actually ldconfig.real) segfault. For example: $ docker run -ti --platform linux/arm64/v8 ubuntu:22.04 root@8861ff640a1c:/# /sbin/ldconfig.real Segmentation fault If you copy the ldconfig.real binary to the host, and run it directly via qemu-aarch64-static: $ gdb --args qemu-aarch64-static ./ldconfig.real GNU gdb (Ubuntu 15.0.50.20240403-0ubuntu1) 15.0.50.20240403-git Copyright (C) 2024 Free Software Foundation, Inc. License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html> This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. Type "show copying" and "show warranty" for details. This GDB was configured as "x86_64-linux-gnu". Type "show configuration" for configuration details. For bug reporting instructions, please see: <https://www.gnu.org/software/gdb/bugs/>. Find the GDB manual and other documentation resources online at: <http://www.gnu.org/software/gdb/documentation/>. For help, type "help". Type "apropos word" to search for commands related to "word"... Reading symbols from qemu-aarch64-static... Reading symbols from /home/dim/.cache/debuginfod_client/86579812b213be0964189499f62f176bea817bf2/debuginfo... (gdb) r Starting program: /usr/bin/qemu-aarch64-static ./ldconfig.real [Thread debugging using libthread_db enabled] Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1". [New Thread 0x7ffff76006c0 (LWP 28378)] Thread 1 "qemu-aarch64-st" received signal SIGSEGV, Segmentation fault. 0x00007fffe801645b in ?? () (gdb) disassemble No function contains program counter for selected frame. It looks like this is a known qemu regression after v8.1.1: https://gitlab.com/qemu-project/qemu/-/issues/1913 Downgrading the package to qemu-user- static_8.0.4+dfsg-1ubuntu3_amd64.deb fixes the segfault. To manage notifications about this bug go to: https://bugs.launchpad.net/qemu/+bug/2072564/+subscriptions
