Package: lighttpd
Version: 1.4.59-1
Severity: normal
X-Debbugs-Cc: post+debb...@guelker.eu
Dear Maintainer,
lighttpd crashes every few minutes with a segmentation fault. Systemd will
restart it, but this is obviously not the way it should be. Here is
an excerpt from journalctl -u lighttpd.service:
Okt 22 18:04:37 zugspitze systemd[1]: Started Lighttpd Daemon.
Okt 22 19:46:56 zugspitze systemd[1]: lighttpd.service: Main process
exited, code=killed, status=11/SEGV
Okt 22 19:46:56 zugspitze systemd[1]: lighttpd.service: Failed with result
'signal'.
Okt 22 19:46:56 zugspitze systemd[1]: lighttpd.service: Consumed 4.581s CPU
time.
Okt 22 19:46:56 zugspitze systemd[1]: lighttpd.service: Scheduled restart
job, restart counter is at 28.
Okt 22 19:46:56 zugspitze systemd[1]: Stopped Lighttpd Daemon.
Okt 22 19:46:56 zugspitze systemd[1]: lighttpd.service: Consumed 4.581s CPU
time.
Okt 22 19:46:56 zugspitze systemd[1]: Starting Lighttpd Daemon...
Okt 22 19:46:57 zugspitze systemd[1]: Started Lighttpd Daemon.
Okt 22 19:57:05 zugspitze systemd[1]: lighttpd.service: Main process
exited, code=killed, status=11/SEGV
Okt 22 19:57:05 zugspitze systemd[1]: lighttpd.service: Failed with result
'signal'.
Okt 22 19:57:05 zugspitze systemd[1]: lighttpd.service: Consumed 2.718s CPU
time.
Okt 22 19:57:05 zugspitze systemd[1]: lighttpd.service: Scheduled restart
job, restart counter is at 29.
Okt 22 19:57:05 zugspitze systemd[1]: Stopped Lighttpd Daemon.
Okt 22 19:57:05 zugspitze systemd[1]: lighttpd.service: Consumed 2.718s CPU
time.
Okt 22 19:57:05 zugspitze systemd[1]: Starting Lighttpd Daemon...
Okt 22 19:57:06 zugspitze systemd[1]: Started Lighttpd Daemon.
Okt 22 19:57:08 zugspitze systemd[1]: lighttpd.service: Main process
exited, code=killed, status=11/SEGV
Okt 22 19:57:08 zugspitze systemd[1]: lighttpd.service: Failed with result
'signal'.
Okt 22 19:57:08 zugspitze systemd[1]: lighttpd.service: Consumed 2.474s CPU
time.
Okt 22 19:57:09 zugspitze systemd[1]: lighttpd.service: Scheduled restart
job, restart counter is at 30.
Okt 22 19:57:09 zugspitze systemd[1]: Stopped Lighttpd Daemon.
Okt 22 19:57:09 zugspitze systemd[1]: lighttpd.service: Consumed 2.474s CPU
time.
Okt 22 19:57:09 zugspitze systemd[1]: Starting Lighttpd Daemon...
Okt 22 19:57:10 zugspitze systemd[1]: Started Lighttpd Daemon.
Okt 22 19:57:14 zugspitze systemd[1]: lighttpd.service: Main process
exited, code=killed, status=11/SEGV
Okt 22 19:57:14 zugspitze systemd[1]: lighttpd.service: Failed with result
'signal'.
Okt 22 19:57:14 zugspitze systemd[1]: lighttpd.service: Consumed 2.473s CPU
time.
Okt 22 19:57:14 zugspitze systemd[1]: lighttpd.service: Scheduled restart
job, restart counter is at 31.
Okt 22 19:57:14 zugspitze systemd[1]: Stopped Lighttpd Daemon.
Okt 22 19:57:14 zugspitze systemd[1]: lighttpd.service: Consumed 2.473s CPU
time.
Okt 22 19:57:14 zugspitze systemd[1]: Starting Lighttpd Daemon...
Okt 22 19:57:15 zugspitze systemd[1]: Started Lighttpd Daemon.
Okt 22 20:13:58 zugspitze systemd[1]: lighttpd.service: Main process
exited, code=killed, status=11/SEGV
Okt 22 20:13:58 zugspitze systemd[1]: lighttpd.service: Failed with result
'signal'.
Okt 22 20:13:58 zugspitze systemd[1]: lighttpd.service: Consumed 2.797s CPU
time.
Okt 22 20:13:59 zugspitze systemd[1]: lighttpd.service: Scheduled restart
job, restart counter is at 32.
Okt 22 20:13:59 zugspitze systemd[1]: Stopped Lighttpd Daemon.
Okt 22 20:13:59 zugspitze systemd[1]: lighttpd.service: Consumed 2.797s CPU
time.
Okt 22 20:13:59 zugspitze systemd[1]: Starting Lighttpd Daemon...
Okt 22 20:14:00 zugspitze systemd[1]: Started Lighttpd Daemon.
Okt 22 20:26:19 zugspitze systemd[1]: lighttpd.service: Main process
exited, code=killed, status=11/SEGV
Okt 22 20:26:19 zugspitze systemd[1]: lighttpd.service: Failed with result
'signal'.
Okt 22 20:26:19 zugspitze systemd[1]: lighttpd.service: Consumed 2.642s CPU
time.
Okt 22 20:26:20 zugspitze systemd[1]: lighttpd.service: Scheduled restart
job, restart counter is at 33.
Okt 22 20:26:20 zugspitze systemd[1]: Stopped Lighttpd Daemon.
Okt 22 20:26:20 zugspitze systemd[1]: lighttpd.service: Consumed 2.642s CPU
time.
Okt 22 20:26:20 zugspitze systemd[1]: Starting Lighttpd Daemon...
Okt 22 20:26:21 zugspitze systemd[1]: Started Lighttpd Daemon.
Okt 22 20:26:24 zugspitze systemd[1]: lighttpd.service: Main process
exited, code=killed, status=11/SEGV
Okt 22 20:26:24 zugspitze systemd[1]: lighttpd.service: Failed with result
'signal'.
Okt 22 20:26:24 zugspitze systemd[1]: lighttpd.service: Consumed 2.474s CPU
time.
Okt 22 20:26:25 zugspitze systemd[1]: lighttpd.service: Scheduled restart
job, restart counter is at 34.
Okt 22 20:26:25 zugspitze systemd[1]: Stopped Lighttpd Daemon.
Okt 22 20:26:25 zugspitze systemd[1]: lighttpd.service: Consumed 2.474s CPU
time.
Okt 22 20:26:25 zugspitze systemd[1]: Starting Lighttpd Daemon...
Okt 22 20:26:26 zugspitze systemd[1]: Started Lighttpd Daemon.
Okt 22 20:26:29 zugspitze systemd[1]: lighttpd.service: Main process
exited, code=killed, status=11/SEGV
Okt 22 20:26:29 zugspitze systemd[1]: lighttpd.service: Failed with result
'signal'.
Okt 22 20:26:29 zugspitze systemd[1]: lighttpd.service: Consumed 2.464s CPU
time.
Okt 22 20:26:30 zugspitze systemd[1]: lighttpd.service: Scheduled restart
job, restart counter is at 35.
Okt 22 20:26:30 zugspitze systemd[1]: Stopped Lighttpd Daemon.
Okt 22 20:26:30 zugspitze systemd[1]: lighttpd.service: Consumed 2.464s CPU
time.
Okt 22 20:26:30 zugspitze systemd[1]: Starting Lighttpd Daemon...
Okt 22 20:26:31 zugspitze systemd[1]: Started Lighttpd Daemon.
Okt 22 20:26:34 zugspitze systemd[1]: lighttpd.service: Main process
exited, code=killed, status=11/SEGV
Okt 22 20:26:34 zugspitze systemd[1]: lighttpd.service: Failed with result
'signal'.
Okt 22 20:26:34 zugspitze systemd[1]: lighttpd.service: Consumed 2.476s CPU
time.
Okt 22 20:26:35 zugspitze systemd[1]: lighttpd.service: Scheduled restart
job, restart counter is at 36.
Okt 22 20:26:35 zugspitze systemd[1]: Stopped Lighttpd Daemon.
Okt 22 20:26:35 zugspitze systemd[1]: lighttpd.service: Consumed 2.476s CPU
time.
Okt 22 20:26:35 zugspitze systemd[1]: Starting Lighttpd Daemon...
Okt 22 20:26:36 zugspitze systemd[1]: Started Lighttpd Daemon.
Okt 22 20:26:49 zugspitze systemd[1]: lighttpd.service: Main process
exited, code=killed, status=11/SEGV
Okt 22 20:26:49 zugspitze systemd[1]: lighttpd.service: Failed with result
'signal'.
Okt 22 20:26:49 zugspitze systemd[1]: lighttpd.service: Consumed 2.497s CPU
time.
Okt 22 20:26:50 zugspitze systemd[1]: lighttpd.service: Scheduled restart
job, restart counter is at 37.
Okt 22 20:26:50 zugspitze systemd[1]: Stopped Lighttpd Daemon.
Okt 22 20:26:50 zugspitze systemd[1]: lighttpd.service: Consumed 2.497s CPU
time.
Okt 22 20:26:50 zugspitze systemd[1]: Starting Lighttpd Daemon...
Okt 22 20:26:51 zugspitze systemd[1]: Started Lighttpd Daemon.
Okt 22 20:27:04 zugspitze systemd[1]: lighttpd.service: Main process
exited, code=killed, status=11/SEGV
Okt 22 20:27:04 zugspitze systemd[1]: lighttpd.service: Failed with result
'signal'.
Okt 22 20:27:04 zugspitze systemd[1]: lighttpd.service: Consumed 2.494s CPU
time.
Okt 22 20:27:05 zugspitze systemd[1]: lighttpd.service: Scheduled restart
job, restart counter is at 38.
Okt 22 20:27:05 zugspitze systemd[1]: Stopped Lighttpd Daemon.
Okt 22 20:27:05 zugspitze systemd[1]: lighttpd.service: Consumed 2.494s CPU
time.
Okt 22 20:27:05 zugspitze systemd[1]: Starting Lighttpd Daemon...
Okt 22 20:27:06 zugspitze systemd[1]: Started Lighttpd Daemon.
Okt 22 20:27:34 zugspitze systemd[1]: lighttpd.service: Main process
exited, code=killed, status=11/SEGV
Okt 22 20:27:34 zugspitze systemd[1]: lighttpd.service: Failed with result
'signal'.
Okt 22 20:27:34 zugspitze systemd[1]: lighttpd.service: Consumed 2.556s CPU
time.
Okt 22 20:27:35 zugspitze systemd[1]: lighttpd.service: Scheduled restart
job, restart counter is at 39.
Okt 22 20:27:35 zugspitze systemd[1]: Stopped Lighttpd Daemon.
Okt 22 20:27:35 zugspitze systemd[1]: lighttpd.service: Consumed 2.556s CPU
time.
Okt 22 20:27:35 zugspitze systemd[1]: Starting Lighttpd Daemon...
Okt 22 20:27:36 zugspitze systemd[1]: Started Lighttpd Daemon.
Okt 22 20:31:23 zugspitze systemd[1]: lighttpd.service: Main process
exited, code=killed, status=11/SEGV
Okt 22 20:31:23 zugspitze systemd[1]: lighttpd.service: Failed with result
'signal'.
Okt 22 20:31:23 zugspitze systemd[1]: lighttpd.service: Consumed 2.582s CPU
time.
Okt 22 20:31:23 zugspitze systemd[1]: lighttpd.service: Scheduled restart
job, restart counter is at 40.
Okt 22 20:31:23 zugspitze systemd[1]: Stopped Lighttpd Daemon.
Okt 22 20:31:23 zugspitze systemd[1]: lighttpd.service: Consumed 2.582s CPU
time.
Okt 22 20:31:23 zugspitze systemd[1]: Starting Lighttpd Daemon...
Okt 22 20:31:24 zugspitze systemd[1]: Started Lighttpd Daemon.
Excerpts from syslog:
Oct 22 20:26:35 zugspitze systemd[1]: Starting Lighttpd Daemon...
Oct 22 20:26:36 zugspitze systemd[1]: Started Lighttpd Daemon.
Oct 22 20:26:49 zugspitze kernel: [48744.493390] lighttpd[27598]: segfault
at 8 ip 00007f4aa312da9a sp 00007ffd9829d690 error 4 in
mod_openssl.so[7f4aa312b000+6000]
Oct 22 20:26:49 zugspitze kernel: [48744.642036] Code: 83 ec 10 64 48 8b 04
25 28 00 00 00 48 89 44 24 08 31 c0 e8 e8 df ff ff 66 83 78 1c 04 0f 84 dd 00
00 00 4c 8b 60 20 48 89 c3 <49> 8b 74 24 08 48 85 f6 0f 84 9c e1 ff ff 49 83 3c
24 00 0f 84 91
Oct 22 20:26:49 zugspitze systemd[1]: lighttpd.service: Main process
exited, code=killed, status=11/SEGV
Oct 22 20:26:49 zugspitze systemd[1]: lighttpd.service: Failed with result
'signal'.
Oct 22 20:26:49 zugspitze systemd[1]: lighttpd.service: Consumed 2.497s CPU
time.
Oct 22 20:26:50 zugspitze systemd[1]: lighttpd.service: Scheduled restart
job, restart counter is at 37.
Oct 22 20:26:50 zugspitze systemd[1]: Stopped Lighttpd Daemon.
Oct 22 20:26:50 zugspitze systemd[1]: lighttpd.service: Consumed 2.497s CPU
time.
Oct 22 20:26:50 zugspitze systemd[1]: Starting Lighttpd Daemon...
Oct 22 20:26:51 zugspitze systemd[1]: Started Lighttpd Daemon.
Oct 22 20:27:04 zugspitze kernel: [48759.509710] lighttpd[27609]: segfault
at 8 ip 00007fa3db18ba9a sp 00007ffe4c52ba40 error 4 in
mod_openssl.so[7fa3db189000+6000]
Oct 22 20:27:04 zugspitze kernel: [48759.658287] Code: 83 ec 10 64 48 8b 04
25 28 00 00 00 48 89 44 24 08 31 c0 e8 e8 df ff ff 66 83 78 1c 04 0f 84 dd 00
00 00 4c 8b 60 20 48 89 c3 <49> 8b 74 24 08 48 85 f6 0f 84 9c e1 ff ff 49 83 3c
24 00 0f 84 91
Oct 22 20:27:04 zugspitze systemd[1]: lighttpd.service: Main process
exited, code=killed, status=11/SEGV
Oct 22 20:27:04 zugspitze systemd[1]: lighttpd.service: Failed with result
'signal'.
Oct 22 20:27:04 zugspitze systemd[1]: lighttpd.service: Consumed 2.494s CPU
time.
Oct 22 20:27:05 zugspitze systemd[1]: lighttpd.service: Scheduled restart
job, restart counter is at 38.
Oct 22 20:27:05 zugspitze systemd[1]: Stopped Lighttpd Daemon.
Oct 22 20:27:05 zugspitze systemd[1]: lighttpd.service: Consumed 2.494s CPU
time.
Oct 22 20:27:05 zugspitze systemd[1]: Starting Lighttpd Daemon...
Oct 22 20:27:06 zugspitze systemd[1]: Started Lighttpd Daemon.
Oct 22 20:27:34 zugspitze kernel: [48789.515086] lighttpd[27619]: segfault
at 8 ip 00007f89ceffaa9a sp 00007ffe39f02410 error 4 in
mod_openssl.so[7f89ceff8000+6000]
Oct 22 20:27:34 zugspitze kernel: [48789.663652] Code: 83 ec 10 64 48 8b 04
25 28 00 00 00 48 89 44 24 08 31 c0 e8 e8 df ff ff 66 83 78 1c 04 0f 84 dd 00
00 00 4c 8b 60 20 48 89 c3 <49> 8b 74 24 08 48 85 f6 0f 84 9c e1 ff ff 49 83 3c
24 00 0f 84 91
Oct 22 20:27:34 zugspitze systemd[1]: lighttpd.service: Main process
exited, code=killed, status=11/SEGV
Oct 22 20:27:34 zugspitze systemd[1]: lighttpd.service: Failed with result
'signal'.
Oct 22 20:27:34 zugspitze systemd[1]: lighttpd.service: Consumed 2.556s CPU
time.
Oct 22 20:27:35 zugspitze systemd[1]: lighttpd.service: Scheduled restart
job, restart counter is at 39.
Oct 22 20:27:35 zugspitze systemd[1]: Stopped Lighttpd Daemon.
Oct 22 20:27:35 zugspitze systemd[1]: lighttpd.service: Consumed 2.556s CPU
time.
Oct 22 20:27:35 zugspitze systemd[1]: Starting Lighttpd Daemon...
Oct 22 20:27:36 zugspitze systemd[1]: Started Lighttpd Daemon.
Oct 22 20:31:23 zugspitze kernel: [49018.082589] lighttpd[27631]: segfault
at 8 ip 00007f4d7ab40a9a sp 00007ffd8234a120 error 4 in
mod_openssl.so[7f4d7ab3e000+6000]
Oct 22 20:31:23 zugspitze kernel: [49018.230366] Code: 83 ec 10 64 48 8b 04
25 28 00 00 00 48 89 44 24 08 31 c0 e8 e8 df ff ff 66 83 78 1c 04 0f 84 dd 00
00 00 4c 8b 60 20 48 89 c3 <49> 8b 74 24 08 48 85 f6 0f 84 9c e1 ff ff 49 83 3c
24 00 0f 84 91
Oct 22 20:31:23 zugspitze systemd[1]: lighttpd.service: Main process
exited, code=killed, status=11/SEGV
Output of `uname -a':
Linux zugspitze 5.10.0-9-amd64 #1 SMP Debian 5.10.70-1 (2021-09-30) x86_64
GNU/Linux
I use lighttpd to run a handful of static HTML web pages and a Redmine
instance for which lighttpd runs as a reverse proxy. All sites are
served both via HTTP and HTTPS. I obtain the TLS certificates from Let's
Encrypt with certbot.
* What led up to the situation?
I installed, configured, and started lighttpd. It then started crashing
repeatedly.
* What exactly did you do (or not do) that was effective (or
ineffective)?
I ran
$ sudo systemctl restart lighttpd
after I finished configuring and it started crashing every few minutes.
* What was the outcome of this action?
lighttpd crashes with a segmentation fault and systemd restarts it.
* What outcome did you expect instead?
It should not crash with a segmentation fault.
-quintus
-- System Information:
Debian Release: 11.1
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable-security'), (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 5.10.0-9-amd64 (SMP w/4 CPU threads)
Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages lighttpd depends on:
ii init-system-helpers 1.60
ii libc6 2.31-13+deb11u2
ii libcrypt1 1:4.4.18-4
ii libnettle8 3.7.3-1
ii libpcre3 2:8.39-13
ii libxxhash0 0.8.0-2
ii lsb-base 11.1.0
ii mime-support 3.66
Versions of packages lighttpd recommends:
ii lighttpd-mod-deflate 1.4.59-1
ii lighttpd-mod-openssl 1.4.59-1
ii perl 5.32.1-4+deb11u2
ii spawn-fcgi 1.6.4-2
Versions of packages lighttpd suggests:
pn apache2-utils <none>
pn lighttpd-doc <none>
pn lighttpd-mod-authn-gssapi <none>
pn lighttpd-mod-authn-pam <none>
pn lighttpd-mod-authn-sasl <none>
pn lighttpd-mod-geoip <none>
pn lighttpd-mod-maxminddb <none>
pn lighttpd-mod-trigger-b4-dl <none>
pn lighttpd-mod-vhostdb-pgsql <none>
pn lighttpd-mod-webdav <none>
pn lighttpd-modules-dbi <none>
pn lighttpd-modules-ldap <none>
pn lighttpd-modules-lua <none>
pn lighttpd-modules-mysql <none>
ii openssl 1.1.1k-1+deb11u1
pn php-cgi <none>
pn php-fpm <none>
pn rrdtool <none>
-- Configuration Files:
/etc/lighttpd/conf-available/10-cgi.conf changed:
server.modules += ( "mod_setenv", "mod_cgi" )
server.breakagelog = "/var/log/lighttpd/breakage.log"
$HTTP["url"] =~ "^/cgi-bin/" {
cgi.assign = ( "" => "" )
alias.url += ( "/cgi-bin/" => "/usr/lib/cgi-bin/" )
}
/etc/lighttpd/conf-available/99-unconfigured.conf changed:
index-file.names := ( "index.php", "index.html", "index.lighttpd.html" )
include "/etc/lighttpd/letsencrypt.conf"
/etc/lighttpd/lighttpd.conf changed:
server.modules = (
"mod_indexfile",
"mod_access",
"mod_alias",
"mod_redirect",
)
server.document-root = "/var/www/html"
server.upload-dirs = ( "/var/cache/lighttpd/uploads" )
server.errorlog = "/var/log/lighttpd/error.log"
server.pid-file = "/run/lighttpd.pid"
server.username = "www-data"
server.groupname = "www-data"
server.port = 80
server.feature-flags += ("server.h2proto" => "disable")
server.feature-flags += ("server.h2c" => "enable")
server.feature-flags += ("server.graceful-shutdown-timeout" => 5)
server.http-parseopts = (
"header-strict" => "enable",# default
"host-strict" => "enable",# default
"host-normalize" => "enable",# default
"url-normalize-unreserved"=> "enable",# recommended highly
"url-normalize-required" => "enable",# recommended
"url-ctrls-reject" => "enable",# recommended
"url-path-2f-decode" => "enable",# recommended highly (unless breaks app)
#"url-path-2f-reject" => "enable",
"url-path-dotseg-remove" => "enable",# recommended highly (unless breaks app)
#"url-path-dotseg-reject" => "enable",
#"url-query-20-plus" => "enable",# consistency in query string
)
index-file.names = ( "index.php", "index.html" )
url.access-deny = ( "~", ".inc" )
static-file.exclude-extensions = ( ".php", ".pl", ".fcgi" )
include_shell "/usr/share/lighttpd/use-ipv6.pl " + server.port
include_shell "/usr/share/lighttpd/create-mime.conf.pl"
include "/etc/lighttpd/conf-enabled/*.conf"
server.modules += (
"mod_dirlisting",
"mod_staticfile",
)
/etc/logrotate.d/lighttpd changed:
/var/log/lighttpd/*.log {
daily
missingok
rotate 7
compress
delaycompress
notifempty
sharedscripts
postrotate
if [ -x /usr/sbin/invoke-rc.d ]; then \
invoke-rc.d lighttpd reopen-logs > /dev/null 2>&1; \
else \
/etc/init.d/lighttpd reopen-logs > /dev/null 2>&1; \
fi; \
endscript
}
-- no debconf information
--
Dipl.-Jur. M. Gülker | https://mg.guelker.eu | For security:
Passau, Germany | kont...@guelker.eu | () Avoid HTML e-mail
European Union | PGP: see homepage | /\ http://asciiribbon.org
