Kestrel: Segfault when specifying default certificate on Ubuntu 20.04 #81964
Description
Is there an existing issue for this?
- I have searched the existing issues
Describe the bug
After upgrading an ASP.NET Core project from .NET 6 to .NET 7, the application fails to start with a segmentation fault when specifying a default certificate for Kestrel.
Expected Behavior
Application works with a certificate on .NET 7 same as before on .NET 6.
Steps To Reproduce
- Start the application without specifying a certificate
- Add the following in
appsettings.json:
{
"Kestrel": {
"Certificates": {
"Default": {
"Path": "/path/to/cert.p12",
"Password": "password"
}
}
}
}
- After the configuration has been reloaded, see
Main process exited, code=killed, status=11/SEGV
Alternatively, can just specify the certificate from the start and see that the application crashes before starting.
Exceptions (if any)
I've seen two types of segfaults in the hypervisor syslog:
after updating appsettings.json
kernel: .NET ThreadPool[3421307]: segfault at 0 ip 00007f32507860be sp 00007f3226bb58c0 error 4 in libcrypto.so.1.1[7f3250674000+19b000]
kernel: Code: 00 00 4c 89 f1 4c 89 fa e8 bf 24 07 00 85 c0 0f 84 bf 00 00 00 8b 54 24 1c 49 8d 7c 24 10 4c 89 fe e8 56 2b f0 ff 85 c0 74 52 <48> 63 75 00 48 8b 7d 08 45 31 c9 49 89 d8 4c 89 f1 4c 89 fa e8 49
and starting the application with default certificates:
kernel: Gnomeshade.WebA[3397350]: segfault at 0 ip 00007f705b6200be sp 00007fff3b39f640 error 4 in libcrypto.so.1.1[7f705b50e000+19b000]
kernel: Code: 00 00 4c 89 f1 4c 89 fa e8 bf 24 07 00 85 c0 0f 84 bf 00 00 00 8b 54 24 1c 49 8d 7c 24 10 4c 89 fe e8 56 2b f0 ff 85 c0 74 52 <48> 63 75 00 48 8b 7d 08 45 31 c9 49 89 d8 4c 89 f1 4c 89 fa e8 49
.NET Version
7.0.102
Anything else?
Running on Ubuntu 20.04.5 LTS LXC container on Proxmox 7.3-4.
libbssl version:
~$ sudo apt show libssl1.1
Package: libssl1.1
Version: 1.1.1f-1ubuntu2.16