After updating snapd, certbot seg faults under CentOS 7

juangacovasegea · December 10, 2022, 7:37pm

After latest dnf update, certbot does not run: signal SIGSEGV (segmentation violation)

Updating:
 snap-confine                                                               x86_64                                                              2.57.6-1.el7                                                                epel                                                              3.4 M
 snapd                                                                      x86_64                                                              2.57.6-1.el7                                                                epel                                                               16 M
 snapd-selinux                                                              noarch                                                              2.57.6-1.el7                                                                epel                                                              532 k

My web server is (include version): N/A

The operating system: CentOS Linux release 7.9

I can login to a root shell on my machine (yes or no, or I don't know): yes

I'm using a control panel to manage my site: no

The version of my client is... unknown:

Output of certbot command after the updated snapd:

# certbot --version

fatal error: unexpected signal during runtime execution
[signal SIGSEGV: segmentation violation code=0x1 addr=0x0 pc=0x0]

runtime stack:
runtime.throw({0x7257cd, 0x0})
        /usr/lib/golang/src/runtime/panic.go:1198 +0x71 fp=0x7ffda8ed5da0 sp=0x7ffda8ed5d70 pc=0x435291
runtime.sigpanic()
        /usr/lib/golang/src/runtime/signal_unix.go:719 +0x396 fp=0x7ffda8ed5df0 sp=0x7ffda8ed5da0 pc=0x44aa16

goroutine 1 [syscall, locked to thread]:
runtime.cgocall(0x5e9a70, 0xc00015b6c0)
        /usr/lib/golang/src/runtime/cgocall.go:156 +0x5c fp=0xc00015b698 sp=0xc00015b660 pc=0x40551c
crypto/internal/boring._Cfunc__goboringcrypto_DLOPEN_OPENSSL()
        _cgo_gotypes.go:603 +0x49 fp=0xc00015b6c0 sp=0xc00015b698 pc=0x5366c9
crypto/internal/boring.init.0()
        /usr/lib/golang/src/crypto/internal/boring/boring.go:46 +0x45 fp=0xc00015b6f8 sp=0xc00015b6c0 pc=0x537445

_az · December 10, 2022, 9:01pm

We're looking into it.

You can try Certbot via one of the alternate installation methods in the meantime, such as using pip or installing the packages from EPEL7.

gus · December 12, 2022, 6:51pm

Same exact problem here. Also on CentOS 7.9. Yum updated snapd automatically over the weekend, and today, Monday, certbot failed with segmentation fault and core dump:

certbot --version

fatal error: unexpected signal during runtime execution
[signal SIGSEGV: segmentation violation code=0x1 addr=0x0 pc=0x0]

runtime stack:
runtime.throw({0x7257cd, 0x0})
/usr/lib/golang/src/runtime/panic.go:1198 +0x71 fp=0x7ffcf0c3a880 sp=0x7ffcf0c3a850 pc=0x435291
runtime.sigpanic()
/usr/lib/golang/src/runtime/signal_unix.go:719 +0x396 fp=0x7ffcf0c3a8d0 sp=0x7ffcf0c3a880 pc=0x44aa16

....

/usr/lib/golang/src/runtime/mfinal.go:157 +0x45

Aborted (core dumped)

Thank you,
Gus

juangacovasegea · December 14, 2022, 8:43am

Thanks for your reply. Unfortunately, the packages from EPEL7 are old and report some problems about config versions, but apparently works. As a temp. patch is ok for us here.

juangacovasegea · December 20, 2022, 7:38pm

It's solved after a new update of snapd. Thanks for your efforts.

system · January 19, 2023, 7:39pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.