In Progress CPANEL-37063 - Constant subroutine unbound_version redefined at autossl_check

Status
Not open for further replies.

cPRex

Jurassic Moderator
Staff member
Oct 19, 2014
6,142
784
313
cPanel Access Level
Root Administrator
UPDATED: At the time this comment was originally posted, this was the best information I had before we did some more testing and realized it was a widespread issue. I'm keeping this comment public for now as I don't want it to look like I'm changing the past or anything, but reading further down will show the true details.

This is scheduled to be fixed in version 96.0.10

Original Post: Hey there! I don't have any good news on this one - all servers that I've previously seen that error on were compromised. If you'd like us to confirm that for you, please submit a ticket to our team so we can check.
 
Last edited:

natenate19

Member
Jun 18, 2015
8
3
53
Michigan
cPanel Access Level
Root Administrator
This seems more like a regression introduced in cPanel 96.0.9 due to unbound being updated:


All my servers started sending this cron notification every 4 hours when autossl_check invokes right after updating to 96.0.9. I can tell you they are definitely not compromised. For now, I've just redirected the output of /etc/cron.d/cpanel_autossl to /dev/null to hush the cron alerts.
 

natenate19

Member
Jun 18, 2015
8
3
53
Michigan
cPanel Access Level
Root Administrator
I've been able to reproduce this on a freshly reimaged CentOS 7 test server running 96.0.9 as well:

Code:
[[email protected] ~]# /usr/local/cpanel/bin/autossl_check --all
Constant subroutine unbound_version redefined at /usr/local/cpanel/bin/autossl_check line 4294967295.
AutoSSL’s configured provider is “Let’s Encrypt™”.
Cached Let’s Encrypt DCV (Domain Control Validation) values: 0
Looking for potential NAT (Network Address Translation) problems …
    This server does not use NAT.
Analyzing 1 user …
...
The issue was not present on 96.0.8 and earlier. AutoSSL provider selected does not appear to matter. Appears to just be a notice and doesn't impact actual AutoSSL functionality, nevertheless it is generating alerts from cron every 3-4 hours as /etc/cron.d/cpanel_autossl doesn't redirect output by default.
 
  • Like
Reactions: mctDarren

challgrentx

Registered
May 29, 2021
1
0
0
Austin
cPanel Access Level
Root Administrator
I'm having the same issue on 2 servers with 2 different providers. 1 Server the messages started May 27th at 2257 CST. The other started on May 28th 0037 CDT.


Both servers CSF Firewall report 4 files changes

/usr/sbin/exim: FAILED
/usr/sbin/runq: FAILED
/sbin/exim: FAILED
/sbin/runq: FAILED


Running command manually has

/usr/local/cpanel/bin/autossl_check --all
Constant subroutine unbound_version redefined at /usr/local/cpanel/bin/autossl_check line 4294967295.
 

greektranslator

Well-Known Member
Jun 5, 2011
104
5
68
Greece
cPanel Access Level
Root Administrator
I tried
/usr/local/cpanel/bin/autossl_check --all /dev/null

But gave me:

is script does not recognize the following parameter: /dev/null

Usage:
autossl_check ( --user=<username> | --all | --help )

This command will do a single AutoSSL check of either all users or a
single user.

Upon a successful run, the command will also clear out any outdated
AutoSSL log files.
 

DevTeam9200

Registered
Jan 29, 2018
4
0
1
Australia
cPanel Access Level
Root Administrator
Hey team. Yes we are receiving the following on all our servers after a recent update. I doubt it is a compromise server and unlikely unless there was a major vulnerability and everyone's server got hacked same time :oops:

Email with below content is received every 4 hours pretty much:
Constant subroutine unbound_version redefined at /usr/local/cpanel/bin/autossl_check line 4294967295.

I assume lodging a ticket with cPanel support will not avail much progress as I assume it is a change in recent update?

Or is there a formal way provided by cPanel to turn this off?
 

rscalover

Well-Known Member
Dec 16, 2010
86
10
58
cPanel Access Level
Root Administrator
YUP same issue "Constant subroutine unbound_version redefined at /usr/local/cpanel/bin/autossl_check line 4294967295." he cPanel we are all paying you so telling us there is currently no workaround is not an option this is annoying
 

Number5NeedInput

Registered
May 3, 2019
2
0
1
Montreal
cPanel Access Level
Root Administrator
Same issue here too.

First email

/usr/sbin/exim: FAILED
/usr/sbin/runq: FAILED
/sbin/exim: FAILED
/sbin/runq: FAILED

Second email 3 hours later - with followed up emails.

Constant subroutine unbound_version redefined at /usr/local/cpanel/bin/autossl_check line 4294967295.
 
Status
Not open for further replies.