php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Bug #79513 php coredumps upon restart yet runs normally
Submitted: 2020-04-23 12:01 UTC Modified: 2020-04-23 15:39 UTC
From: jason at aventia dot pw Assigned:
Status: Open Package: OpenSSL related
PHP Version: 7.3.17 OS: FreeBSD 11.3p7
Private report: No CVE-ID: None
Have you experienced this issue?
Rate the importance of this bug to you:

 [2020-04-23 12:01 UTC] jason at aventia dot pw
Description:
------------
hey there,

I've noticed on two similarly configured FreeBSD 11.3 (not any of my 12.1 boxes similarly configured using openssl1.1.1base) servers;

php-fpm core dumps upon restarting since openssl updated to 1.1.1d.  It does not prevent php from working, just core dumps on startup.  Openssl just released some info which may require some action on php's side https://www.openssl.org/news/secadv/20200421.txt

this issue seems to now reside with php, perhaps something was built against an earlier version of openssl...  Just a sysadmin not a programmer


This remains valid even from back in April 1st 2020 (no joke)

on FreeBSD 11.3p7

#/usr/local/bin/openssl version

OpenSSL 1.1.1e  17 Mar 2020

# php -v
PHP 7.3.16 (cli) (built: Mar 27 2020 08:49:41) ( NTS )
Copyright (c) 1997-2018 The PHP Group
Zend Engine v3.3.16, Copyright (c) 1998-2018 Zend Technologies
    with Zend OPcache v7.3.16, Copyright (c) 1999-2018, by Zend Technologies
Segmentation fault (core dumped)

# service php-fpm restart
Performing sanity check on php-fpm configuration:
[28-Mar-2020 13:09:07] NOTICE: configuration file
/usr/local/etc/php-fpm.conf test is successful

Stopping php_fpm.
Waiting for PIDS: 64904.
Performing sanity check on php-fpm configuration:
[28-Mar-2020 13:09:08] NOTICE: configuration file
/usr/local/etc/php-fpm.conf test is successful

Starting php_fpm.
Segmentation fault (core dumped)
/usr/local/etc/rc.d/php-fpm: WARNING: failed to start php_fpm



# gdb /usr/local/bin/php php.core

GNU gdb 6.1.1 [FreeBSD]
Copyright 2004 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you are
welcome to change it and/or distribute copies of it under certain
conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB.  Type "show warranty" for details.
This GDB was configured as "amd64-marcel-freebsd"...(no debugging
symbols found)...
Core was generated by `php -v'.
Program terminated with signal 11, Segmentation fault.
Reading symbols from /lib/libelf.so.2...Reading symbols from
/usr/lib/debug//lib/libelf.so.2.debug...done.
done.
Loaded symbols for /lib/libelf.so.2
Reading symbols from /lib/libcrypt.so.5...Reading symbols from
/usr/lib/debug//lib/libcrypt.so.5.debug...done.
done.
Loaded symbols for /lib/libcrypt.so.5
Reading symbols from /usr/local/lib/libargon2.so.0...done.
Loaded symbols for /usr/local/lib/libargon2.so.0
Reading symbols from /lib/libm.so.5...Reading symbols from
/usr/lib/debug//lib/libm.so.5.debug...done.
done.
Loaded symbols for /lib/libm.so.5
Reading symbols from /lib/libthr.so.3...Reading symbols from
/usr/lib/debug//lib/libthr.so.3.debug...done.
done.
Loaded symbols for /lib/libthr.so.3
Reading symbols from /usr/local/lib/libxml2.so.2...done.
Loaded symbols for /usr/local/lib/libxml2.so.2
Reading symbols from /lib/libz.so.6...Reading symbols from
/usr/lib/debug//lib/libz.so.6.debug...done.
done.
Loaded symbols for /lib/libz.so.6
Reading symbols from /usr/lib/liblzma.so.5...Reading symbols from
/usr/lib/debug//usr/lib/liblzma.so.5.debug...done.
done.
Loaded symbols for /usr/lib/liblzma.so.5
Reading symbols from /usr/local/lib/libpcre2-8.so.0...done.
Loaded symbols for /usr/local/lib/libpcre2-8.so.0
Reading symbols from /lib/libc.so.7...Reading symbols from
/usr/lib/debug//lib/libc.so.7.debug...done.
done.
Loaded symbols for /lib/libc.so.7
Reading symbols from /usr/local/lib/libssl.so.11...done.
Loaded symbols for /usr/local/lib/libssl.so.11
Reading symbols from /usr/local/lib/libcrypto.so.11...done.
Loaded symbols for /usr/local/lib/libcrypto.so.11
Reading symbols from /usr/local/lib/libintl.so.8...done.
Loaded symbols for /usr/local/lib/libintl.so.8
Reading symbols from /usr/local/lib/libiconv.so.2...done.
Loaded symbols for /usr/local/lib/libiconv.so.2
Reading symbols from /usr/local/lib/libglib-2.0.so.0...done.
Loaded symbols for /usr/local/lib/libglib-2.0.so.0
Reading symbols from /usr/local/lib/libpcre.so.1...done.
Loaded symbols for /usr/local/lib/libpcre.so.1
Reading symbols from /libexec/ld-elf.so.1...Reading symbols from
/usr/lib/debug//libexec/ld-elf.so.1.debug...done.
done.
Loaded symbols for /libexec/ld-elf.so.1
#0  0x00000008049a8482 in OPENSSL_LH_doall_arg () from
/usr/local/lib/libcrypto.so.11


Patches

Add a Patch

Pull Requests

Add a Pull Request

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2020-04-23 15:39 UTC] cmb@php.net
Does the segfault also happen with the CLI SAPI? (It seems so.)

> perhaps something was built against an earlier version of
> openssl

Possible, but since we are not shipping any binaries (only for
Windows), that would be someone else's problem. :)

Also note, that I am not aware of any issues with OpenSSL 1.1.1e
on Windows (which is used by PHP 7.2.30, 7.3.17 and 7.4.5).
 
PHP Copyright © 2001-2020 The PHP Group
All rights reserved.
Last updated: Sat Jul 11 17:01:27 2020 UTC