On Fri, Feb 23, 2018 at 05:55:31PM +0100, Christoph Martin wrote:

> Do you happen to have mod_php enabled?

mod_php is not enabled, but it could be that some other module is
enabled that has the same issue with openssl.

> We have seen problems together with mod_php which is falsely linked with
> openssl 1.1 while apache itself and all other modules are linked with
> openssl 1.0 which was the policy for stretch release. Then it depends on
> the load order of the modules if apache crashes or not.
> Can you verify this?

Here is a list of modules that are enabled:

$ ls /etc/apache2/mods-enabled/
access_compat.load  authn_file.load       authz_user.load  deflate.conf  
filter.load   ldap.load        mpm_worker.load   reqtimeout.load     ssl.load
alias.conf          authnz_ldap.load      autoindex.conf   deflate.load  
headers.load  macro.load       negotiation.conf  setenvif.conf       status.conf
alias.load          authz_core.load       autoindex.load   dir.conf      
info.conf     mime.conf        negotiation.load  setenvif.load       status.load
auth_basic.load     authz_groupfile.load  cgid.conf        dir.load      
info.load     mime.load        perl.load         socache_shmcb.load  wsgi.conf
authn_core.load     authz_host.load       cgid.load        env.load      
ldap.conf     mpm_worker.conf  reqtimeout.conf   ssl.conf            wsgi.load

I ran:
for mod in $(ls /etc/apache2/mods-enabled/*.load); do SO=$(sed -nre 's/.+ ([^ 
]+.so)$/\1/p' $mod); echo $SO; ldd $SO; done

And found this:
        linux-vdso.so.1 (0x00007ffdd7be9000)
        libssl.so.1.0.2 => /usr/lib/x86_64-linux-gnu/libssl.so.1.0.2 
        libcrypto.so.1.0.2 => /usr/lib/x86_64-linux-gnu/libcrypto.so.1.0.2 
        libpthread.so.0 => /lib/x86_64-linux-gnu/libpthread.so.0 
        libc.so.6 => /lib/x86_64-linux-gnu/libc.so.6 (0x00007ff3b648d000)
        libdl.so.2 => /lib/x86_64-linux-gnu/libdl.so.2 (0x00007ff3b6289000)
        /lib64/ld-linux-x86-64.so.2 (0x00007ff3b734f000)

Could it be relevant?


GPG key: 4096R/634F4BD1E7AD5568 2009-05-08 Enrico Zini <enr...@enricozini.org>

Attachment: signature.asc
Description: PGP signature

Reply via email to