php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Bug #79513 php coredumps upon restart yet runs normally
Submitted: 2020-04-23 12:01 UTC Modified: 2021-06-06 04:22 UTC
From: jason at aventia dot pw Assigned: cmb (profile)
Status: No Feedback Package: OpenSSL related
PHP Version: 7.3.17 OS: FreeBSD 11.3p7
Private report: No CVE-ID: None
 [2020-04-23 12:01 UTC] jason at aventia dot pw
Description:
------------
hey there,

I've noticed on two similarly configured FreeBSD 11.3 (not any of my 12.1 boxes similarly configured using openssl1.1.1base) servers;

php-fpm core dumps upon restarting since openssl updated to 1.1.1d.  It does not prevent php from working, just core dumps on startup.  Openssl just released some info which may require some action on php's side https://www.openssl.org/news/secadv/20200421.txt

this issue seems to now reside with php, perhaps something was built against an earlier version of openssl...  Just a sysadmin not a programmer


This remains valid even from back in April 1st 2020 (no joke)

on FreeBSD 11.3p7

#/usr/local/bin/openssl version

OpenSSL 1.1.1e  17 Mar 2020

# php -v
PHP 7.3.16 (cli) (built: Mar 27 2020 08:49:41) ( NTS )
Copyright (c) 1997-2018 The PHP Group
Zend Engine v3.3.16, Copyright (c) 1998-2018 Zend Technologies
    with Zend OPcache v7.3.16, Copyright (c) 1999-2018, by Zend Technologies
Segmentation fault (core dumped)

# service php-fpm restart
Performing sanity check on php-fpm configuration:
[28-Mar-2020 13:09:07] NOTICE: configuration file
/usr/local/etc/php-fpm.conf test is successful

Stopping php_fpm.
Waiting for PIDS: 64904.
Performing sanity check on php-fpm configuration:
[28-Mar-2020 13:09:08] NOTICE: configuration file
/usr/local/etc/php-fpm.conf test is successful

Starting php_fpm.
Segmentation fault (core dumped)
/usr/local/etc/rc.d/php-fpm: WARNING: failed to start php_fpm



# gdb /usr/local/bin/php php.core

GNU gdb 6.1.1 [FreeBSD]
Copyright 2004 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you are
welcome to change it and/or distribute copies of it under certain
conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB.  Type "show warranty" for details.
This GDB was configured as "amd64-marcel-freebsd"...(no debugging
symbols found)...
Core was generated by `php -v'.
Program terminated with signal 11, Segmentation fault.
Reading symbols from /lib/libelf.so.2...Reading symbols from
/usr/lib/debug//lib/libelf.so.2.debug...done.
done.
Loaded symbols for /lib/libelf.so.2
Reading symbols from /lib/libcrypt.so.5...Reading symbols from
/usr/lib/debug//lib/libcrypt.so.5.debug...done.
done.
Loaded symbols for /lib/libcrypt.so.5
Reading symbols from /usr/local/lib/libargon2.so.0...done.
Loaded symbols for /usr/local/lib/libargon2.so.0
Reading symbols from /lib/libm.so.5...Reading symbols from
/usr/lib/debug//lib/libm.so.5.debug...done.
done.
Loaded symbols for /lib/libm.so.5
Reading symbols from /lib/libthr.so.3...Reading symbols from
/usr/lib/debug//lib/libthr.so.3.debug...done.
done.
Loaded symbols for /lib/libthr.so.3
Reading symbols from /usr/local/lib/libxml2.so.2...done.
Loaded symbols for /usr/local/lib/libxml2.so.2
Reading symbols from /lib/libz.so.6...Reading symbols from
/usr/lib/debug//lib/libz.so.6.debug...done.
done.
Loaded symbols for /lib/libz.so.6
Reading symbols from /usr/lib/liblzma.so.5...Reading symbols from
/usr/lib/debug//usr/lib/liblzma.so.5.debug...done.
done.
Loaded symbols for /usr/lib/liblzma.so.5
Reading symbols from /usr/local/lib/libpcre2-8.so.0...done.
Loaded symbols for /usr/local/lib/libpcre2-8.so.0
Reading symbols from /lib/libc.so.7...Reading symbols from
/usr/lib/debug//lib/libc.so.7.debug...done.
done.
Loaded symbols for /lib/libc.so.7
Reading symbols from /usr/local/lib/libssl.so.11...done.
Loaded symbols for /usr/local/lib/libssl.so.11
Reading symbols from /usr/local/lib/libcrypto.so.11...done.
Loaded symbols for /usr/local/lib/libcrypto.so.11
Reading symbols from /usr/local/lib/libintl.so.8...done.
Loaded symbols for /usr/local/lib/libintl.so.8
Reading symbols from /usr/local/lib/libiconv.so.2...done.
Loaded symbols for /usr/local/lib/libiconv.so.2
Reading symbols from /usr/local/lib/libglib-2.0.so.0...done.
Loaded symbols for /usr/local/lib/libglib-2.0.so.0
Reading symbols from /usr/local/lib/libpcre.so.1...done.
Loaded symbols for /usr/local/lib/libpcre.so.1
Reading symbols from /libexec/ld-elf.so.1...Reading symbols from
/usr/lib/debug//libexec/ld-elf.so.1.debug...done.
done.
Loaded symbols for /libexec/ld-elf.so.1
#0  0x00000008049a8482 in OPENSSL_LH_doall_arg () from
/usr/local/lib/libcrypto.so.11


Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2020-04-23 15:39 UTC] cmb@php.net
Does the segfault also happen with the CLI SAPI? (It seems so.)

> perhaps something was built against an earlier version of
> openssl

Possible, but since we are not shipping any binaries (only for
Windows), that would be someone else's problem. :)

Also note, that I am not aware of any issues with OpenSSL 1.1.1e
on Windows (which is used by PHP 7.2.30, 7.3.17 and 7.4.5).
 [2021-05-28 11:17 UTC] cmb@php.net
-Status: Open +Status: Feedback -Assigned To: +Assigned To: cmb
 [2021-05-28 11:17 UTC] cmb@php.net
Is that still an issue with any of the actively supported PHP
versions[1]?

[1] <https://www.php.net/supported-versions.php>
 [2021-06-06 04:22 UTC] php-bugs at lists dot php dot net
No feedback was provided. The bug is being suspended because
we assume that you are no longer experiencing the problem.
If this is not the case and you are able to provide the
information that was requested earlier, please do so and
change the status of the bug back to "Re-Opened". Thank you.
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved.
Last updated: Fri Nov 22 17:01:31 2024 UTC