In Progress CPANEL-37063 - Constant subroutine unbound_version redefined at autossl_check

[greektranslator]

I get this kind of emails from the Cron Daemon:

Constant subroutine unbound_version redefined at /usr/local/cpanel/bin/autossl_check line 4294967295.

 

[cPRex]

UPDATED: At the time this comment was originally posted, this was the best information I had before we did some more testing and realized it was a widespread issue. I'm keeping this comment public for now as I don't want it to look like I'm changing the past or anything, but reading further down will show the true details.

This is scheduled to be fixed in version 96.0.10

Original Post: Hey there! I don't have any good news on this one - all servers that I've previously seen that error on were compromised. If you'd like us to confirm that for you, please submit a ticket to our team so we can check.

 

[natenate19]

This seems more like a regression introduced in cPanel 96.0.9 due to unbound being updated:

96 Change Log | cPanel & WHM Documentation

This document lists the cases and bugs worked on during the version 96 release cycle.

docs.cpanel.net

All my servers started sending this cron notification every 4 hours when autossl_check invokes right after updating to 96.0.9. I can tell you they are definitely not compromised. For now, I've just redirected the output of /etc/cron.d/cpanel_autossl to /dev/null to hush the cron alerts.

 

[natenate19]

I've been able to reproduce this on a freshly reimaged CentOS 7 test server running 96.0.9 as well:

[[email protected] ~]# /usr/local/cpanel/bin/autossl_check --all
Constant subroutine unbound_version redefined at /usr/local/cpanel/bin/autossl_check line 4294967295.
AutoSSL’s configured provider is “Let’s Encrypt™”.
Cached Let’s Encrypt DCV (Domain Control Validation) values: 0
Looking for potential NAT (Network Address Translation) problems …
    This server does not use NAT.
Analyzing 1 user …
...

The issue was not present on 96.0.8 and earlier. AutoSSL provider selected does not appear to matter. Appears to just be a notice and doesn't impact actual AutoSSL functionality, nevertheless it is generating alerts from cron every 3-4 hours as /etc/cron.d/cpanel_autossl doesn't redirect output by default.

 

[greektranslator]

Ticket 94330266 submitted.

 

[quanin]

My server is not compromised, and I'm also seeing this. Watching this thread.

 

[challgrentx]

I'm having the same issue on 2 servers with 2 different providers. 1 Server the messages started May 27th at 2257 CST. The other started on May 28th 0037 CDT.


Both servers CSF Firewall report 4 files changes

/usr/sbin/exim: FAILED
/usr/sbin/runq: FAILED
/sbin/exim: FAILED
/sbin/runq: FAILED

Running command manually has

/usr/local/cpanel/bin/autossl_check --all
Constant subroutine unbound_version redefined at /usr/local/cpanel/bin/autossl_check line 4294967295.

 

[mctDarren]

Also seeing this, looks like they've opened a case on it: cPanel Support Article. Follow the post for updates.

 

[greektranslator]

I tried
/usr/local/cpanel/bin/autossl_check --all /dev/null

But gave me:

is script does not recognize the following parameter: /dev/null

Usage:
autossl_check ( --user=<username> | --all | --help )

This command will do a single AutoSSL check of either all users or a
single user.

Upon a successful run, the command will also clear out any outdated
AutoSSL log files.

 

[tui]

Same here on all my servers, following the article

 

[DevTeam9200]

Hey team. Yes we are receiving the following on all our servers after a recent update. I doubt it is a compromise server and unlikely unless there was a major vulnerability and everyone's server got hacked same time

Email with below content is received every 4 hours pretty much:
Constant subroutine unbound_version redefined at /usr/local/cpanel/bin/autossl_check line 4294967295.

I assume lodging a ticket with cPanel support will not avail much progress as I assume it is a change in recent update?

Or is there a formal way provided by cPanel to turn this off?

 

[cPRex]

@mctDarren - thanks for posting that article. As mentioned there, there aren't any workarounds at this time, but we're working on a fix! I'll be sure to post an update once I get one.

 

[rscalover]

YUP same issue "Constant subroutine unbound_version redefined at /usr/local/cpanel/bin/autossl_check line 4294967295." he cPanel we are all paying you so telling us there is currently no workaround is not an option this is annoying

 

[gas75]

Confirmation from me too. Just updated to 96.0.9 and begun getting these messages every 3hrs

 

[EduardoKST]

Confirmation from me too, the error started after updated to 96.0.9, !

 

[Roger690]

Confirmation from me too. Just updated to 96.0.9 and begun getting these messages every 3hrs

+1

running Centos 7

 

[Number5NeedInput]

Same issue here too.

First email

/usr/sbin/exim: FAILED
/usr/sbin/runq: FAILED
/sbin/exim: FAILED
/sbin/runq: FAILED

Second email 3 hours later - with followed up emails.

Constant subroutine unbound_version redefined at /usr/local/cpanel/bin/autossl_check line 4294967295.

 

[360webfirm]

getting the same thing - Constant subroutine unbound_version redefined at /usr/local/cpanel/bin/autossl_check line 4294967295

 

[cPRex]

Thanks for all the posts - I'll provide another link to the support article that talks about this issue, but there currently is not a workaround: cPanel

 

[jeffschips]

Same issue here.