frankenphp is exiting on SIGPIPE failure

[geoidesic]

What happened?

The problem we’re experiencing now with this new setup is that the frankenphp service keeps shutting down without any reason that I can see. The systemd unit file is configured to restart on failure, but I guess this shutdown is not seen as a failure because it’s not restarting.

Build Type

Official static build

Worker Mode

No

Operating System

GNU/Linux

CPU Architecture

x86_64

PHP configuration

PHP Version 8.3.10

System  Linux dev.sportch.co.uk 5.14.0-427.28.1.el9_4.x86_64 #1 SMP PREEMPT_DYNAMIC Fri Aug 2 03:44:10 EDT 2024 x86_64
Build Date  Aug 20 2024 10:23:09
Build System    Linux buildkitsandbox 6.5.0-1025-azure #26~22.04.1-Ubuntu SMP Thu Jul 11 22:33:04 UTC 2024 x86_64 Linux
Configure Command   './configure' '--prefix=' '--with-valgrind=no' '--enable-shared=no' '--enable-static=yes' '--disable-all' '--disable-cgi' '--disable-phpdbg' '--disable-cli' '--disable-fpm' '--enable-embed=static' '--disable-micro' '--disable-opcache-jit' '--enable-zts' '--disable-zend-signals' '--enable-zend-max-execution-timers' '--enable-apcu' '--enable-bcmath' '--with-bz2=/go/src/app/dist/static-php-cli/buildroot' '--enable-calendar' '--enable-ctype' '--with-curl' '--enable-dba' '--enable-dom' '--enable-exif' '--enable-fileinfo' '--enable-filter' '--enable-ftp' '--with-zlib' '--with-zlib-dir=/go/src/app/dist/static-php-cli/buildroot' '--enable-gd' '--with-freetype' '--with-jpeg' '--with-webp' '--with-avif' '--with-gmp=/go/src/app/dist/static-php-cli/buildroot' '--with-gettext=/go/src/app/dist/static-php-cli/buildroot' '--with-iconv=/go/src/app/dist/static-php-cli/buildroot' '--enable-session' '--enable-igbinary' '--with-imagick=/go/src/app/dist/static-php-cli/buildroot' '--enable-intl' '--with-openssl-dir=/go/src/app/dist/static-php-cli/buildroot' '--with-ldap=/go/src/app/dist/static-php-cli/buildroot' '--enable-mbstring' '--enable-mbregex' '--enable-mysqlnd' '--with-mysqli' '--enable-opcache' '--enable-pcntl' '--enable-pdo' '--with-pdo-mysql' '--with-pgsql=/go/src/app/dist/static-php-cli/buildroot' '--with-pdo-pgsql=/go/src/app/dist/static-php-cli/buildroot' '--with-sqlite3=/go/src/app/dist/static-php-cli/buildroot' '--with-pdo-sqlite' '--enable-phar' '--enable-posix' '--enable-protobuf' '--with-readline=/go/src/app/dist/static-php-cli/buildroot' '--enable-redis' '--enable-redis-session' '--enable-redis-igbinary' '--enable-redis-zstd' '--enable-redis-lz4' '--with-liblz4=/go/src/app/dist/static-php-cli/buildroot' '--enable-shmop' '--enable-simplexml' '--enable-soap' '--enable-sockets' '--with-sodium' '--with-ssh2=/go/src/app/dist/static-php-cli/buildroot' '--enable-sysvmsg' '--enable-sysvsem' '--enable-sysvshm' '--with-tidy=/go/src/app/dist/static-php-cli/buildroot' '--enable-tokenizer' '--with-zip=/go/src/app/dist/static-php-cli/buildroot' '--with-xlswriter' '--enable-reader' '--with-openssl=/go/src/app/dist/static-php-cli/buildroot' '--enable-xml' '--enable-xmlreader' '--enable-xmlwriter' '--with-libxml=/go/src/app/dist/static-php-cli/buildroot' '--with-yaml=/go/src/app/dist/static-php-cli/buildroot' '--enable-zstd' '--with-libzstd=/go/src/app/dist/static-php-cli/buildroot' 'CFLAGS=' 'PKG_CONFIG=/go/src/app/dist/static-php-cli/buildroot/bin/pkg-config' 'PKG_CONFIG_PATH=/go/src/app/dist/static-php-cli/buildroot/lib/pkgconfig'
Server API  FrankenPHP
Virtual Directory Support   enabled
Configuration File (php.ini) Path   /lib
Loaded Configuration File   (none)
Scan this dir for additional .ini files /etc/php.d/
Additional .ini files parsed    /etc/php.d/20-bcmath.ini, /etc/php.d/20-bz2.ini, /etc/php.d/20-calendar.ini, /etc/php.d/20-ctype.ini, /etc/php.d/20-curl.ini, /etc/php.d/20-dom.ini, /etc/php.d/20-exif.ini, /etc/php.d/20-fileinfo.ini, /etc/php.d/20-ftp.ini, /etc/php.d/20-gd.ini, /etc/php.d/20-gettext.ini, /etc/php.d/20-iconv.ini, /etc/php.d/20-intl.ini, /etc/php.d/20-mbstring.ini, /etc/php.d/20-mysqlnd.ini, /etc/php.d/20-pdo.ini, /etc/php.d/20-phar.ini, /etc/php.d/20-posix.ini, /etc/php.d/20-shmop.ini, /etc/php.d/20-simplexml.ini, /etc/php.d/20-sqlite3.ini, /etc/php.d/20-sysvmsg.ini, /etc/php.d/20-sysvsem.ini, /etc/php.d/20-sysvshm.ini, /etc/php.d/20-tokenizer.ini, /etc/php.d/20-xml.ini, /etc/php.d/20-xmlwriter.ini, /etc/php.d/20-xsl.ini, /etc/php.d/30-mcrypt.ini, /etc/php.d/30-mysqli.ini, /etc/php.d/30-pdo_mysql.ini, /etc/php.d/30-pdo_sqlite.ini, /etc/php.d/30-xmlreader.ini, /etc/php.d/30-zip.ini, /etc/php.d/40-grpc.ini, /etc/php.d/50-sodium.ini, /etc/php.d/99-sportch.ini
PHP API 20230831
PHP Extension   20230831
Zend Extension  420230831
Zend Extension Build    API420230831,TS
PHP Extension Build API20230831,TS
Debug Build no
Thread Safety   enabled
Thread API  POSIX Threads
Zend Signal Handling    disabled
Zend Memory Manager enabled
Zend Multibyte Support  provided by mbstring
Zend Max Execution Timers   enabled
IPv6 Support    enabled
DTrace Support  disabled
Registered PHP Streams  https, ftps, compress.zlib, compress.bzip2, php, file, glob, data, http, ftp, phar, ssh2.shell, ssh2.exec, ssh2.tunnel, ssh2.scp, ssh2.sftp, zip, compress.zstd
Registered Stream Socket Transports tcp, udp, unix, udg, ssl, tls, tlsv1.0, tlsv1.1, tlsv1.2, tlsv1.3
Registered Stream Filters   zlib.*, bzip2.*, convert.iconv.*, string.rot13, string.toupper, string.tolower, convert.*, consumed, dechunk
Zend logo This program makes use of the Zend Scripting Language Engine:
Zend Engine v4.3.10, Copyright (c) Zend Technologies with Zend OPcache v8.3.10, Copyright (c), by Zend Technologies
Configuration

apcu

APCu Support    Enabled
Version 5.1.23
APCu Debugging  Disabled
MMAP Support    Enabled
MMAP File Mask  no value
Serialization Support   php, igbinary, zstd
Build Date  Aug 20 2024 10:20:59
Directive   Local Value Master Value
apc.coredump_unmap  Off Off
apc.enable_cli  Off Off
apc.enabled On  On
apc.entries_hint    4096    4096
apc.gc_ttl  3600    3600
apc.mmap_file_mask  no value    no value
apc.preload_path    no value    no value
apc.serializer  php php
apc.shm_segments    1   1
apc.shm_size    32M 32M
apc.slam_defense    Off Off
apc.smart   0   0
apc.ttl 0   0
apc.use_request_time    Off Off
bcmath

BCMath support  enabled
Directive   Local Value Master Value
bcmath.scale    0   0
bz2

BZip2 Support   Enabled
Stream Wrapper support  compress.bzip2://
Stream Filter support   bzip2.decompress, bzip2.compress
BZip2 Version   1.0.8, 13-Jul-2019
calendar

Calendar support    enabled
Core

PHP Version 8.3.10
Directive   Local Value Master Value
allow_url_fopen On  On
allow_url_include   Off Off
arg_separator.input &   &
arg_separator.output    &   &
auto_append_file    no value    no value
auto_globals_jit    On  On
auto_prepend_file   no value    no value
browscap    no value    no value
default_charset UTF-8   UTF-8
default_mimetype    text/html   text/html
disable_classes no value    no value
disable_functions   no value    no value
display_errors  On  On
display_startup_errors  On  On
doc_root    no value    no value
docref_ext  no value    no value
docref_root no value    no value
enable_dl   On  On
enable_post_data_reading    On  On
error_append_string no value    no value
error_log   /var/log/frankenphp/error.log   /var/log/frankenphp/error.log
error_log_mode  0644    0644
error_prepend_string    no value    no value
error_reporting 1   no value
expose_php  On  On
extension_dir   /lib/php/extensions/no-debug-zts-20230831   /lib/php/extensions/no-debug-zts-20230831
fiber.stack_size    no value    no value
file_uploads    On  On
hard_timeout    2   2
highlight.comment   #FF8000 #FF8000
highlight.default   #0000BB #0000BB
highlight.html  #000000 #000000
highlight.keyword   #007700 #007700
highlight.string    #DD0000 #DD0000
html_errors On  On
ignore_repeated_errors  Off Off
ignore_repeated_source  Off Off
ignore_user_abort   Off Off
implicit_flush  Off Off
include_path    .::./var/includes   .:
input_encoding  no value    no value
internal_encoding   no value    no value
log_errors  Off Off
mail.add_x_header   Off Off
mail.force_extra_parameters no value    no value
mail.log    no value    no value
mail.mixed_lf_and_crlf  Off Off
max_execution_time  30  30
max_file_uploads    20  20
max_input_nesting_level 64  64
max_input_time  -1  -1
max_input_vars  1000    1000
max_multipart_body_parts    -1  -1
memory_limit    128M    128M
open_basedir    no value    no value
output_buffering    0   0
output_encoding no value    no value
output_handler  no value    no value
post_max_size   10M 10M
precision   14  14
realpath_cache_size 4096K   4096K
realpath_cache_ttl  120 120
register_argc_argv  On  On
report_memleaks On  On
report_zend_debug   Off Off
request_order   no value    no value
sendmail_from   no value    no value
sendmail_path   /usr/sbin/sendmail -t -i    /usr/sbin/sendmail -t -i
serialize_precision -1  -1
short_open_tag  On  On
SMTP    localhost   localhost
smtp_port   25  25
static-php-cli.version  2.3.3   2.3.3
sys_temp_dir    no value    no value
syslog.facility LOG_USER    LOG_USER
syslog.filter   no-ctrl no-ctrl
syslog.ident    php php
unserialize_callback_func   no value    no value
upload_max_filesize 10M 10M
upload_tmp_dir  no value    no value
user_dir    no value    no value
user_ini.cache_ttl  300 300
user_ini.filename   .user.ini   .user.ini
variables_order EGPCS   EGPCS
xmlrpc_error_number 0   0
xmlrpc_errors   Off Off
zend.assertions 1   1
zend.detect_unicode On  On
zend.enable_gc  On  On
zend.exception_ignore_args  Off Off
zend.exception_string_param_max_len 15  15
zend.max_allowed_stack_size 0   0
zend.multibyte  Off Off
zend.reserved_stack_size    0   0
zend.script_encoding    no value    no value
ctype

ctype functions enabled
curl

cURL support    enabled
cURL Information    8.9.1
Age 11
Features
AsynchDNS   Yes
CharConv    No
Debug   No
GSS-Negotiate   No
IDN No
IPv6    Yes
krb4    No
Largefile   Yes
libz    Yes
NTLM    Yes
NTLMWB  No
SPNEGO  No
SSL Yes
SSPI    No
TLS-SRP Yes
HTTP2   Yes
GSSAPI  No
KERBEROS5   No
UNIX_SOCKETS    Yes
PSL No
HTTPS_PROXY Yes
MULTI_SSL   No
BROTLI  Yes
ALTSVC  Yes
HTTP3   No
UNICODE No
ZSTD    Yes
HSTS    Yes
GSASL   No
Protocols   dict, file, ftp, ftps, gopher, gophers, http, https, imap, imaps, mqtt, pop3, pop3s, rtsp, scp, sftp, smb, smbs, smtp, smtps, telnet, tftp
Host    Linux
SSL Version OpenSSL/3.3.1
ZLib Version    1.3.1
libSSH Version  libssh2/1.11.0
Directive   Local Value Master Value
curl.cainfo /var/lib/frankenphp/.local/share/caddy/certificates/acme-v02.api.letsencrypt.org-directory/dev.sportch.co.uk/dev.sportch.co.uk.crt  /var/lib/frankenphp/.local/share/caddy/certificates/acme-v02.api.letsencrypt.org-directory/dev.sportch.co.uk/dev.sportch.co.uk.crt
date

date/time support   enabled
timelib version 2022.10
"Olson" Timezone Database Version   2024.1
Timezone Database   internal
Default timezone    UTC
Directive   Local Value Master Value
date.default_latitude   31.7667 31.7667
date.default_longitude  35.2333 35.2333
date.sunrise_zenith 90.833333   90.833333
date.sunset_zenith  90.833333   90.833333
date.timezone   UTC UTC
dba

DBA support enabled
Supported handlers  cdb cdb_make inifile flatfile
Directive   Local Value Master Value
dba.default_handler flatfile    flatfile
dom

DOM/XML enabled
DOM/XML API Version 20031129
libxml Version  2.12.5
HTML Support    enabled
XPath Support   enabled
XPointer Support    enabled
Schema Support  enabled
RelaxNG Support enabled
exif

EXIF Support    enabled
Supported EXIF Version  0220
Supported filetypes JPEG, TIFF
Multibyte decoding support using mbstring   enabled
Extended EXIF tag formats   Canon, Casio, Fujifilm, Nikon, Olympus, Samsung, Panasonic, DJI, Sony, Pentax, Minolta, Sigma, Foveon, Kyocera, Ricoh, AGFA, Epson
Directive   Local Value Master Value
exif.decode_jis_intel   JIS JIS
exif.decode_jis_motorola    JIS JIS
exif.decode_unicode_intel   UCS-2LE UCS-2LE
exif.decode_unicode_motorola    UCS-2BE UCS-2BE
exif.encode_jis no value    no value
exif.encode_unicode ISO-8859-15 ISO-8859-15
fileinfo

fileinfo support    enabled
libmagic    543
filter

Input Validation and Filtering  enabled
Directive   Local Value Master Value
filter.default  unsafe_raw  unsafe_raw
filter.default_flags    no value    no value
frankenphp

Version dev
ftp

FTP support enabled
FTPS support    enabled
gd

GD Support  enabled
GD Version  bundled (2.1.0 compatible)
FreeType Support    enabled
FreeType Linkage    with freetype
FreeType Version    2.13.2
GIF Read Support    enabled
GIF Create Support  enabled
JPEG Support    enabled
libJPEG Version 6b
PNG Support enabled
libPNG Version  1.6.44.git
WBMP Support    enabled
XBM Support enabled
WebP Support    enabled
BMP Support enabled
AVIF Support    enabled
TGA Read Support    enabled
Directive   Local Value Master Value
gd.jpeg_ignore_warning  On  On
gettext

GetText Support enabled
gmp

gmp support enabled
GMP version 6.3.0
hash

hash support    enabled
Hashing Engines md2 md4 md5 sha1 sha224 sha256 sha384 sha512/224 sha512/256 sha512 sha3-224 sha3-256 sha3-384 sha3-512 ripemd128 ripemd160 ripemd256 ripemd320 whirlpool tiger128,3 tiger160,3 tiger192,3 tiger128,4 tiger160,4 tiger192,4 snefru snefru256 gost gost-crypto adler32 crc32 crc32b crc32c fnv132 fnv1a32 fnv164 fnv1a64 joaat murmur3a murmur3c murmur3f xxh32 xxh64 xxh3 xxh128 haval128,3 haval160,3 haval192,3 haval224,3 haval256,3 haval128,4 haval160,4 haval192,4 haval224,4 haval256,4 haval128,5 haval160,5 haval192,5 haval224,5 haval256,5
iconv

iconv support   enabled
iconv implementation    libiconv
iconv library version   1.17
Directive   Local Value Master Value
iconv.input_encoding    no value    no value
iconv.internal_encoding no value    no value
iconv.output_encoding   no value    no value
igbinary

igbinary support    enabled
igbinary version    3.2.16
igbinary APCu serializer ABI    0
igbinary session support    yes
Directive   Local Value Master Value
igbinary.compact_strings    On  On
imagick

imagick module  enabled
imagick module version  3.7.0
imagick classes Imagick, ImagickDraw, ImagickPixel, ImagickPixelIterator, ImagickKernel
Imagick compiled with ImageMagick version   ImageMagick 7.1.1-36 Q16-HDRI x86_64 58ddb87ca:20240726 https://imagemagick.org
Imagick using ImageMagick library version   ImageMagick 7.1.1-36 Q16-HDRI x86_64 58ddb87ca:20240726 https://imagemagick.org
ImageMagick copyright   (C) 1999 ImageMagick Studio LLC
ImageMagick release date    2024-07-26
ImageMagick number of supported formats:    259
ImageMagick supported formats   3FR, 3G2, 3GP, A, AAI, AI, APNG, ART, ARW, ASHLAR, AVI, AVS, B, BAYER, BAYERA, BGR, BGRA, BGRO, BMP, BMP2, BMP3, BRF, C, CAL, CALS, CANVAS, CAPTION, CIN, CIP, CLIP, CMYK, CMYKA, CR2, CR3, CRW, CUBE, CUR, CUT, DATA, DCM, DCR, DCRAW, DCX, DDS, DFONT, DNG, DPX, DXT1, DXT5, EPDF, EPI, EPS, EPS2, EPS3, EPSF, EPSI, EPT, EPT2, EPT3, ERF, FARBFELD, FAX, FF, FFF, FILE, FITS, FL32, FLV, FRACTAL, FTP, FTS, FTXT, G, G3, G4, GIF, GIF87, GRADIENT, GRAY, GRAYA, GROUP4, HALD, HDR, HISTOGRAM, HRZ, HTM, HTML, HTTP, HTTPS, ICB, ICO, ICON, IIQ, INFO, INLINE, IPL, ISOBRL, ISOBRL6, JNG, JNX, JPE, JPEG, JPG, JPS, JSON, K, K25, KDC, LABEL, M, M2V, M4V, MAC, MAP, MASK, MAT, MATTE, MDC, MEF, MIFF, MKV, MNG, MONO, MOS, MOV, MP4, MPC, MPEG, MPG, MPO, MRW, MSL, MSVG, MTV, MVG, NEF, NRW, NULL, O, ORA, ORF, OTB, OTF, PAL, PALM, PAM, PANGO, PATTERN, PBM, PCD, PCDS, PCL, PCT, PCX, PDB, PDF, PDFA, PEF, PES, PFA, PFB, PFM, PGM, PGX, PHM, PICON, PICT, PIX, PJPEG, PLASMA, PNG, PNG00, PNG24, PNG32, PNG48, PNG64, PNG8, PNM, POCKETMOD, PPM, PS, PS2, PS3, PSB, PSD, PTIF, PWP, QOI, R, RADIAL-GRADIENT, RAF, RAS, RAW, RGB, RGB565, RGBA, RGBO, RGF, RLA, RLE, RMF, RW2, RWL, SCR, SCREENSHOT, SCT, SFW, SGI, SHTML, SIX, SIXEL, SPARSE-COLOR, SR2, SRF, SRW, STEGANO, STI, STRIMG, SUN, SVG, SVGZ, TEXT, TGA, THUMBNAIL, TIFF, TIFF64, TILE, TIM, TM2, TTC, TTF, TXT, UBRL, UBRL6, UIL, UYVY, VDA, VICAR, VID, VIFF, VIPS, VST, WBMP, WEBM, WEBP, WMV, WPG, X3F, XBM, XC, XCF, XPM, XPS, XV, Y, YAML, YCBCR, YCBCRA, YUV
Directive   Local Value Master Value
imagick.allow_zero_dimension_images 0   0
imagick.locale_fix  0   0
imagick.progress_monitor    0   0
imagick.set_single_thread   1   1
imagick.shutdown_sleep_count    10  10
imagick.skip_version_check  0   0
intl

Internationalization support    enabled
ICU version 75.1
ICU Data version    75.1
ICU TZData version  2024a
ICU Unicode version 15.1
Directive   Local Value Master Value
intl.default_locale no value    no value
intl.error_level    0   0
intl.use_exceptions Off Off
json

json support    enabled
ldap

LDAP Support    enabled
Total Links 0/unlimited
API Version 3001
Vendor Name OpenLDAP
Vendor Version  20608
Directive   Local Value Master Value
ldap.max_links  Unlimited   Unlimited
libxml

libXML support  active
libXML Compiled Version 2.12.5
libXML Loaded Version   21205
libXML streams  enabled
mbstring

Multibyte Support   enabled
Multibyte string engine libmbfl
HTTP input encoding translation disabled
libmbfl version 1.3.2
mbstring extension makes use of "streamable kanji code filter and converter", which is distributed under the GNU Lesser General Public License version 2.1.
Multibyte (japanese) regex support  enabled
Multibyte regex (oniguruma) version 6.9.9
Directive   Local Value Master Value
mbstring.detect_order   no value    no value
mbstring.encoding_translation   Off Off
mbstring.http_input no value    no value
mbstring.http_output    no value    no value
mbstring.http_output_conv_mimetypes ^(text/|application/xhtml\+xml) ^(text/|application/xhtml\+xml)
mbstring.internal_encoding  no value    no value
mbstring.language   neutral neutral
mbstring.regex_retry_limit  1000000 1000000
mbstring.regex_stack_limit  100000  100000
mbstring.strict_detection   Off Off
mbstring.substitute_character   no value    no value
mysqli

MysqlI Support  enabled
Client API library version  mysqlnd 8.3.10
Active Persistent Links 0
Inactive Persistent Links   0
Active Links    1
Directive   Local Value Master Value
mysqli.allow_local_infile   Off Off
mysqli.allow_persistent On  On
mysqli.default_host no value    no value
mysqli.default_port 3306    3306
mysqli.default_pw   no value    no value
mysqli.default_socket   no value    no value
mysqli.default_user no value    no value
mysqli.local_infile_directory   no value    no value
mysqli.max_links    Unlimited   Unlimited
mysqli.max_persistent   Unlimited   Unlimited
mysqli.rollback_on_cached_plink Off Off
mysqlnd

mysqlnd enabled
Version mysqlnd 8.3.10
Compression supported
core SSL    supported
extended SSL    supported
Command buffer size 4096
Read buffer size    32768
Read timeout    86400
Collecting statistics   Yes
Collecting memory statistics    No
Tracing n/a
Loaded plugins  mysqlnd,debug_trace,auth_plugin_mysql_native_password,auth_plugin_mysql_clear_password,auth_plugin_caching_sha2_password,auth_plugin_sha256_password
API Extensions  mysqli,pdo_mysql
openssl

OpenSSL support enabled
OpenSSL Library Version OpenSSL 3.3.1 4 Jun 2024
OpenSSL Header Version  OpenSSL 3.3.1 4 Jun 2024
Openssl default config  /ssl/openssl.cnf
Directive   Local Value Master Value
openssl.cafile  no value    no value
openssl.capath  no value    no value
pcntl

pcntl support   enabled
pcre

PCRE (Perl Compatible Regular Expressions) Support  enabled
PCRE Library Version    10.42 2022-12-12
PCRE Unicode Version    14.0.0
PCRE JIT Support    enabled
PCRE JIT Target x86 64bit (little endian + unaligned)
Directive   Local Value Master Value
pcre.backtrack_limit    1000000 1000000
pcre.jit    On  On
pcre.recursion_limit    100000  100000
PDO

PDO support enabled
PDO drivers mysql, pgsql, sqlite
pdo_mysql

PDO Driver for MySQL    enabled
Client API version  mysqlnd 8.3.10
Directive   Local Value Master Value
pdo_mysql.default_socket    /tmp/mysql.sock /tmp/mysql.sock
pdo_pgsql

PDO Driver for PostgreSQL   enabled
PostgreSQL(libpq) Version   16.2
pdo_sqlite

PDO Driver for SQLite 3.x   enabled
SQLite Library  3.43.2
pgsql

PostgreSQL Support  enabled
PostgreSQL (libpq) Version  16.2
Multibyte character support enabled
Active Persistent Links 0
Active Links    0
Directive   Local Value Master Value
pgsql.allow_persistent  On  On
pgsql.auto_reset_persistent Off Off
pgsql.ignore_notice Off Off
pgsql.log_notice    Off Off
pgsql.max_links Unlimited   Unlimited
pgsql.max_persistent    Unlimited   Unlimited
Phar

Phar: PHP Archive support   enabled
Phar API version    1.1.1
Phar-based phar archives    enabled
Tar-based phar archives enabled
ZIP-based phar archives enabled
gzip compression    enabled
bzip2 compression   enabled
OpenSSL support enabled
Phar based on pear/PHP_Archive, original concept by Davey Shafik.
Phar fully realized by Gregory Beaver and Marcus Boerger.
Portions of tar implementation Copyright (c) 2003-2009 Tim Kientzle.
Directive   Local Value Master Value
phar.cache_list no value    no value
phar.readonly   On  On
phar.require_hash   On  On
posix

POSIX support   enabled
protobuf

Version 4.28.0RC2
Directive   Local Value Master Value
protobuf.keep_descriptor_pool_after_request 0   0
random

Version 8.3.10
readline

Readline Support    enabled
Readline library    8.2
Directive   Local Value Master Value
cli.pager   no value    no value
cli.prompt  \b \>   \b \>
redis

Redis Support   enabled
Redis Version   5.3.7
Redis Sentinel Version  0.1
Available serializers   php, json, igbinary
Available compression   zstd, lz4
Directive   Local Value Master Value
redis.arrays.algorithm  no value    no value
redis.arrays.auth   no value    no value
redis.arrays.autorehash 0   0
redis.arrays.connecttimeout 0   0
redis.arrays.consistent 0   0
redis.arrays.distributor    no value    no value
redis.arrays.functions  no value    no value
redis.arrays.hosts  no value    no value
redis.arrays.index  0   0
redis.arrays.lazyconnect    0   0
redis.arrays.names  no value    no value
redis.arrays.pconnect   0   0
redis.arrays.previous   no value    no value
redis.arrays.readtimeout    0   0
redis.arrays.retryinterval  0   0
redis.clusters.auth no value    no value
redis.clusters.cache_slots  0   0
redis.clusters.persistent   0   0
redis.clusters.read_timeout 0   0
redis.clusters.seeds    no value    no value
redis.clusters.timeout  0   0
redis.pconnect.connection_limit 0   0
redis.pconnect.echo_check_liveness  1   1
redis.pconnect.pool_detect_dirty    0   0
redis.pconnect.pool_pattern no value    no value
redis.pconnect.pool_poll_timeout    0   0
redis.pconnect.pooling_enabled  1   1
redis.session.lock_expire   0   0
redis.session.lock_retries  10  10
redis.session.lock_wait_time    2000    2000
redis.session.locking_enabled   0   0
Reflection

Reflection  enabled
session

Session Support enabled
Registered save handlers    files user redis rediscluster
Registered serializer handlers  php_serialize php php_binary igbinary
Directive   Local Value Master Value
session.auto_start  Off Off
session.cache_expire    180 180
session.cache_limiter   nocache nocache
session.cookie_domain   no value    no value
session.cookie_httponly Off Off
session.cookie_lifetime 0   0
session.cookie_path /   /
session.cookie_samesite no value    no value
session.cookie_secure   Off Off
session.gc_divisor  100 100
session.gc_maxlifetime  1440    1440
session.gc_probability  1   1
session.lazy_write  On  On
session.name    PHPSESSID   PHPSESSID
session.referer_check   no value    no value
session.save_handler    files   files
session.save_path   no value    no value
session.serialize_handler   php php
session.sid_bits_per_character  4   4
session.sid_length  32  32
session.upload_progress.cleanup On  On
session.upload_progress.enabled On  On
session.upload_progress.freq    1%  1%
session.upload_progress.min_freq    1   1
session.upload_progress.name    PHP_SESSION_UPLOAD_PROGRESS PHP_SESSION_UPLOAD_PROGRESS
session.upload_progress.prefix  upload_progress_    upload_progress_
session.use_cookies On  On
session.use_only_cookies    On  On
session.use_strict_mode Off Off
session.use_trans_sid   Off Off
shmop

shmop support   enabled
SimpleXML

SimpleXML support   enabled
Schema support  enabled
soap

Soap Client enabled
Soap Server enabled
Directive   Local Value Master Value
soap.wsdl_cache 1   1
soap.wsdl_cache_dir /tmp    /tmp
soap.wsdl_cache_enabled On  On
soap.wsdl_cache_limit   5   5
soap.wsdl_cache_ttl 86400   86400
sockets

Sockets Support enabled
sodium

sodium support  enabled
libsodium headers version   1.0.20
libsodium library version   1.0.20
SPL

SPL support enabled
Interfaces  OuterIterator, RecursiveIterator, SeekableIterator, SplObserver, SplSubject
Classes AppendIterator, ArrayIterator, ArrayObject, BadFunctionCallException, BadMethodCallException, CachingIterator, CallbackFilterIterator, DirectoryIterator, DomainException, EmptyIterator, FilesystemIterator, FilterIterator, GlobIterator, InfiniteIterator, InvalidArgumentException, IteratorIterator, LengthException, LimitIterator, LogicException, MultipleIterator, NoRewindIterator, OutOfBoundsException, OutOfRangeException, OverflowException, ParentIterator, RangeException, RecursiveArrayIterator, RecursiveCachingIterator, RecursiveCallbackFilterIterator, RecursiveDirectoryIterator, RecursiveFilterIterator, RecursiveIteratorIterator, RecursiveRegexIterator, RecursiveTreeIterator, RegexIterator, RuntimeException, SplDoublyLinkedList, SplFileInfo, SplFileObject, SplFixedArray, SplHeap, SplMinHeap, SplMaxHeap, SplObjectStorage, SplPriorityQueue, SplQueue, SplStack, SplTempFileObject, UnderflowException, UnexpectedValueException
sqlite3

SQLite3 support enabled
SQLite Library  3.43.2
Directive   Local Value Master Value
sqlite3.defensive   On  On
sqlite3.extension_dir   no value    no value
ssh2

SSH2 support    enabled
extension version   1.4.1
libssh2 version 1.11.0
banner  SSH-2.0-libssh2_1.11.0
standard

Dynamic Library Support enabled
Path to sendmail    /usr/sbin/sendmail -t -i
Directive   Local Value Master Value
assert.active   On  On
assert.bail Off Off
assert.callback no value    no value
assert.exception    On  On
assert.warning  On  On
auto_detect_line_endings    Off Off
default_socket_timeout  60  60
from    no value    no value
session.trans_sid_hosts no value    no value
session.trans_sid_tags  a=href,area=href,frame=src,form=    a=href,area=href,frame=src,form=
unserialize_max_depth   4096    4096
url_rewriter.hosts  no value    no value
url_rewriter.tags   form=   form=
user_agent  no value    no value
sysvmsg

sysvmsg support enabled
sysvsem

sysvsem support enabled
sysvshm

sysvshm support enabled
tidy

Tidy support    enabled
libTidy Version 5.8.0
libTidy Release 2021/07/10
Directive   Local Value Master Value
tidy.clean_output   Off Off
tidy.default_config no value    no value
tokenizer

Tokenizer Support   enabled
xlswriter

xlswriter support   enabled
Version 1.5.5
bundled libxlsxwriter version   1.1.3
bundled libxlsxio version   0.2.27
xml

XML Support active
XML Namespace Support   active
libxml2 Version 2.12.5
xmlreader

XMLReader   enabled
xmlwriter

XMLWriter   enabled
yaml

LibYAML Support enabled
Module Version  2.2.3
LibYAML Version 0.2.5
Directive   Local Value Master Value
yaml.decode_binary  0   0
yaml.decode_php 0   0
yaml.decode_timestamp   0   0
yaml.output_canonical   0   0
yaml.output_indent  2   2
yaml.output_width   80  80
Zend OPcache

Opcode Caching  Up and Running
Optimization    Enabled
SHM Cache   Enabled
File Cache  Disabled
JIT Not Available
Startup OK
Shared memory model mmap
Cache hits  230300
Cache misses    582
Used memory 17943040
Free memory 116241608
Wasted memory   33080
Interned Strings Used memory    4889032
Interned Strings Free memory    3499576
Cached scripts  510
Cached keys 794
Max keys    16229
OOM restarts    0
Hash keys restarts  0
Manual restarts 0
Start time  2024-09-04T14:08:34+0000
Last restart time   none
Last force restart time none
Directive   Local Value Master Value
opcache.blacklist_filename  no value    no value
opcache.dups_fix    Off Off
opcache.enable  On  On
opcache.enable_cli  Off Off
opcache.enable_file_override    Off Off
opcache.error_log   no value    no value
opcache.file_cache  no value    no value
opcache.file_cache_consistency_checks   On  On
opcache.file_cache_only Off Off
opcache.file_update_protection  2   2
opcache.force_restart_timeout   180 180
opcache.huge_code_pages Off Off
opcache.interned_strings_buffer 8   8
opcache.lockfile_path   /tmp    /tmp
opcache.log_verbosity_level 1   1
opcache.max_accelerated_files   10000   10000
opcache.max_file_size   0   0
opcache.max_wasted_percentage   5   5
opcache.memory_consumption  128 128
opcache.opt_debug_level 0   0
opcache.optimization_level  0x7FFEBFFF  0x7FFEBFFF
opcache.preferred_memory_model  no value    no value
opcache.preload no value    no value
opcache.preload_user    no value    no value
opcache.protect_memory  Off Off
opcache.record_warnings Off Off
opcache.restrict_api    no value    no value
opcache.revalidate_freq 2   2
opcache.revalidate_path Off Off
opcache.save_comments   On  On
opcache.use_cwd On  On
opcache.validate_permission Off Off
opcache.validate_root   Off Off
opcache.validate_timestamps On  On
zip

Zip enabled
Zip version 1.22.3
Libzip version  1.10.1
BZIP2 compression   Yes
XZ compression  No
ZSTD compression    No
AES-128 encryption  Yes
AES-192 encryption  Yes
AES-256 encryption  Yes
zlib

ZLib Support    enabled
Stream Wrapper  compress.zlib://
Stream Filter   zlib.inflate, zlib.deflate
Compiled Version    1.3.1
Linked Version  1.3.1
Directive   Local Value Master Value
zlib.output_compression Off Off
zlib.output_compression_level   -1  -1
zlib.output_handler no value    no value
zstd

Zstd support    enabled
Extension Version   0.13.3
Interface Version   1.5.6
APCu serializer ABI 0
Additional Modules

Module Name
Environment

Variable    Value
/usr/bin/frankenphp
LANG    C.UTF-8
PATH    /usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin
NOTIFY_SOCKET   /run/systemd/notify
HOME    /var/lib/frankenphp
LOGNAME frankenphp
USER    frankenphp
INVOCATION_ID   2f21b672c7af48d5aef804b70e27d12f
JOURNAL_STREAM  8:1704246
SYSTEMD_EXEC_PID    111840
PHP_INI_SCAN_DIR    /etc/php.d/

Relevant log output

From `systemctl status frankenphp`

[root@dev frankenphp]# systemctl status frankenphp
—‹ frankenphp.service - FrankenPHP Server
     Loaded: loaded (/etc/systemd/system/frankenphp.service; enabled; preset: disabled)
     Active: inactive (dead) since Tue 2024-09-03 15:36:35 UTC; 16h ago
   Duration: 20h 44min 18.805s
    Process: 100382 ExecStartPre=/usr/bin/frankenphp validate --config /etc/frankenphp/Caddyfile (code=exited, status=0/SUCCESS)
    Process: 100388 ExecStart=/usr/bin/frankenphp run --environ --config /etc/frankenphp/Caddyfile (code=killed, signal=PIPE)
   Main PID: 100388 (code=killed, signal=PIPE)
        CPU: 50.347s

Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3334386,"logger":"events","msg":"event","name":"tls_get_certificate","id":"4168e6cc-f41d-4698-bd3a->
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3334827,"logger":"tls.handshake","msg":"choosing certificate","identifier":"dev.sportch.co.uk","num>
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.333501,"logger":"tls.handshake","msg":"default certificate selection results","identifier":"dev.spo>
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3335104,"logger":"tls.handshake","msg":"matched certificate in cache","remote_ip":"82.180.154.41",">
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.334562,"logger":"http.stdlib","msg":"http: TLS handshake error from 82.180.154.41:60610: local erro>
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.4226334,"logger":"http.handlers.rewrite","msg":"rewrote request","request":{"remote_ip":"91.196.222>
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.4567268,"logger":"http.handlers.rewrite","msg":"rewrote request","request":{"remote_ip":"91.196.222>
Sep 03 15:36:24 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377784.3332665,"logger":"http.handlers.rewrite","msg":"rewrote request","request":{"remote_ip":"91.196.222>
Sep 03 15:36:35 dev.sportch.co.uk systemd[1]: frankenphp.service: Deactivated successfully.
Sep 03 15:36:35 dev.sportch.co.uk systemd[1]: frankenphp.service: Consumed 50.347s CPU time.

From journalctl -xeu frankenphp.service

Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.2112532,"logger":"http.handlers.rewrite","msg":"rewrote request","request":{"remote_ip":"91.196.222.121","remote_port":"54092","client_ip":"91.196.222.121","proto":"HTTP/3.0","method":"POST","host":"dev.sportch.co.uk","uri":"/api/v1/adverts","headers":{"User-Agent":["Sportch/4 CFNetwork/1498.700.2 Darwin/23.6.0"],"X-App-Revision":["1.8.11.r2"],"Content-Type":["application/json"],"X-Timezone":["3600"],"Accept-Language":["en-GB,en;q=0.9"],"Crossorigin":["anonymous"],"Accept-Encoding":["gzip, deflate, br"],"X-App-Version":["10811"],"X-Api-Token":["token_JAc4ALHt3DbFjIYloyqnWJDUxJlWCg7efLvecIG71OaovgGRZJytrHipRt75YTME"],"Accept":["application/json, text/javascript, */*; q=0.01"],"X-Api-Public":["nscagbnlx8uuusd9vnq9vmzxwnaqwl28w3hmhrjizwphme7vngmjefn5yu9gdkwpulp15meibt7jsz4d92hbxl3z6jvgthju6jlvt7qulke1lul6fusniogkd8cavbwo"],"Priority":["u=3"],"X-Api-Private":["2b74155ffd46ec67a9fc03f62184b833c1f7e8a37e1e9c052acff6b6d2310407"],"Content-Length":["83"]},"tls":{"resumed":false,"version":772,"cipher_suite":4865,"proto":"h3","server_name":"dev.sportch.co.uk"}},"method":"POST","uri":"/index.php"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.28994,"logger":"events","msg":"event","name":"tls_get_certificate","id":"38c29a2d-9b0d-419e-8c25-90c6b0eb8fa0","origin":"tls","data":{"client_hello":{"CipherSuites":[4866,4867,4865,49199,49195,49200,49196,158,162,163,159,49191,49187,49171,49161,49192,49188,49172,49162,103,51,64,107,56,57,156,157,49324,49310,50,49308,60,47,49325,49311,106,49309,61,53,52393,52392,52394,49245,49249,49239,49235,49244,49248,49238,49234,49267,49271,196,195,49266,49270,190,189,136,135,69,68,49233,49232,192,186,132,65,255],"ServerName":"dev.sportch.co.uk","SupportedCurves":[29,23,30,25,24,256,257,258,259,260],"SupportedPoints":"AAEC","SignatureSchemes":[1027,1283,1539,2055,2056,2074,2075,2076,2057,2058,2059,2052,2053,2054,1025,1281,1537,771,769,770,1026,1282,1538],"SupportedProtos":null,"SupportedVersions":[772,771],"RemoteAddr":{"IP":"82.180.154.41","Port":60508,"Zone":""},"LocalAddr":{"IP":"82.180.154.41","Port":443,"Zone":""}}}}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.2899969,"logger":"tls.handshake","msg":"choosing certificate","identifier":"dev.sportch.co.uk","num_choices":1}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.2900152,"logger":"tls.handshake","msg":"default certificate selection results","identifier":"dev.sportch.co.uk","subjects":["dev.sportch.co.uk"],"managed":true,"issuer_key":"acme-v02.api.letsencrypt.org-directory","hash":"c2872e392c0ce0a3dd400c85b5f0942782516864180885f9b73b52798dcff6d3"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.2900248,"logger":"tls.handshake","msg":"matched certificate in cache","remote_ip":"82.180.154.41","remote_port":"60508","subjects":["dev.sportch.co.uk"],"managed":true,"expiration":1730841910,"hash":"c2872e392c0ce0a3dd400c85b5f0942782516864180885f9b73b52798dcff6d3"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.2910495,"logger":"http.stdlib","msg":"http: TLS handshake error from 82.180.154.41:60508: local error: tls: bad record MAC"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.2931867,"logger":"events","msg":"event","name":"tls_get_certificate","id":"0067828b-aafe-47f8-9f65-033344f45db0","origin":"tls","data":{"client_hello":{"CipherSuites":[4866,4867,4865,49199,49195,49200,49196,158,162,163,159,49191,49187,49171,49161,49192,49188,49172,49162,103,51,64,107,56,57,156,157,49324,49310,50,49308,60,47,49325,49311,106,49309,61,53,52393,52392,52394,49245,49249,49239,49235,49244,49248,49238,49234,49267,49271,196,195,49266,49270,190,189,136,135,69,68,49233,49232,192,186,132,65,255],"ServerName":"dev.sportch.co.uk","SupportedCurves":[29,23,30,25,24,256,257,258,259,260],"SupportedPoints":"AAEC","SignatureSchemes":[1027,1283,1539,2055,2056,2074,2075,2076,2057,2058,2059,2052,2053,2054,1025,1281,1537,771,769,770,1026,1282,1538],"SupportedProtos":null,"SupportedVersions":[772,771],"RemoteAddr":{"IP":"82.180.154.41","Port":60522,"Zone":""},"LocalAddr":{"IP":"82.180.154.41","Port":443,"Zone":""}}}}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.2932167,"logger":"tls.handshake","msg":"choosing certificate","identifier":"dev.sportch.co.uk","num_choices":1}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.2932303,"logger":"tls.handshake","msg":"default certificate selection results","identifier":"dev.sportch.co.uk","subjects":["dev.sportch.co.uk"],"managed":true,"issuer_key":"acme-v02.api.letsencrypt.org-directory","hash":"c2872e392c0ce0a3dd400c85b5f0942782516864180885f9b73b52798dcff6d3"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.293239,"logger":"tls.handshake","msg":"matched certificate in cache","remote_ip":"82.180.154.41","remote_port":"60522","subjects":["dev.sportch.co.uk"],"managed":true,"expiration":1730841910,"hash":"c2872e392c0ce0a3dd400c85b5f0942782516864180885f9b73b52798dcff6d3"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.2940493,"logger":"http.stdlib","msg":"http: TLS handshake error from 82.180.154.41:60522: local error: tls: bad record MAC"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.2972147,"logger":"events","msg":"event","name":"tls_get_certificate","id":"e7b53b53-e55c-45a0-a29e-3e1dd25c26f5","origin":"tls","data":{"client_hello":{"CipherSuites":[4866,4867,4865,49199,49195,49200,49196,158,162,163,159,49191,49187,49171,49161,49192,49188,49172,49162,103,51,64,107,56,57,156,157,49324,49310,50,49308,60,47,49325,49311,106,49309,61,53,52393,52392,52394,49245,49249,49239,49235,49244,49248,49238,49234,49267,49271,196,195,49266,49270,190,189,136,135,69,68,49233,49232,192,186,132,65,255],"ServerName":"dev.sportch.co.uk","SupportedCurves":[29,23,30,25,24,256,257,258,259,260],"SupportedPoints":"AAEC","SignatureSchemes":[1027,1283,1539,2055,2056,2074,2075,2076,2057,2058,2059,2052,2053,2054,1025,1281,1537,771,769,770,1026,1282,1538],"SupportedProtos":null,"SupportedVersions":[772,771],"RemoteAddr":{"IP":"82.180.154.41","Port":60538,"Zone":""},"LocalAddr":{"IP":"82.180.154.41","Port":443,"Zone":""}}}}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.29726,"logger":"tls.handshake","msg":"choosing certificate","identifier":"dev.sportch.co.uk","num_choices":1}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.297275,"logger":"tls.handshake","msg":"default certificate selection results","identifier":"dev.sportch.co.uk","subjects":["dev.sportch.co.uk"],"managed":true,"issuer_key":"acme-v02.api.letsencrypt.org-directory","hash":"c2872e392c0ce0a3dd400c85b5f0942782516864180885f9b73b52798dcff6d3"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.297283,"logger":"tls.handshake","msg":"matched certificate in cache","remote_ip":"82.180.154.41","remote_port":"60538","subjects":["dev.sportch.co.uk"],"managed":true,"expiration":1730841910,"hash":"c2872e392c0ce0a3dd400c85b5f0942782516864180885f9b73b52798dcff6d3"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.2982512,"logger":"http.stdlib","msg":"http: TLS handshake error from 82.180.154.41:60538: local error: tls: bad record MAC"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3005865,"logger":"events","msg":"event","name":"tls_get_certificate","id":"975af49d-24a9-47af-830e-c83d32c7402e","origin":"tls","data":{"client_hello":{"CipherSuites":[4866,4867,4865,49199,49195,49200,49196,158,162,163,159,49191,49187,49171,49161,49192,49188,49172,49162,103,51,64,107,56,57,156,157,49324,49310,50,49308,60,47,49325,49311,106,49309,61,53,52393,52392,52394,49245,49249,49239,49235,49244,49248,49238,49234,49267,49271,196,195,49266,49270,190,189,136,135,69,68,49233,49232,192,186,132,65,255],"ServerName":"dev.sportch.co.uk","SupportedCurves":[29,23,30,25,24,256,257,258,259,260],"SupportedPoints":"AAEC","SignatureSchemes":[1027,1283,1539,2055,2056,2074,2075,2076,2057,2058,2059,2052,2053,2054,1025,1281,1537,771,769,770,1026,1282,1538],"SupportedProtos":null,"SupportedVersions":[772,771],"RemoteAddr":{"IP":"82.180.154.41","Port":60544,"Zone":""},"LocalAddr":{"IP":"82.180.154.41","Port":443,"Zone":""}}}}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3006246,"logger":"tls.handshake","msg":"choosing certificate","identifier":"dev.sportch.co.uk","num_choices":1}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3006437,"logger":"tls.handshake","msg":"default certificate selection results","identifier":"dev.sportch.co.uk","subjects":["dev.sportch.co.uk"],"managed":true,"issuer_key":"acme-v02.api.letsencrypt.org-directory","hash":"c2872e392c0ce0a3dd400c85b5f0942782516864180885f9b73b52798dcff6d3"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3006516,"logger":"tls.handshake","msg":"matched certificate in cache","remote_ip":"82.180.154.41","remote_port":"60544","subjects":["dev.sportch.co.uk"],"managed":true,"expiration":1730841910,"hash":"c2872e392c0ce0a3dd400c85b5f0942782516864180885f9b73b52798dcff6d3"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3013592,"logger":"http.stdlib","msg":"http: TLS handshake error from 82.180.154.41:60544: local error: tls: bad record MAC"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3052375,"logger":"events","msg":"event","name":"tls_get_certificate","id":"7a743401-51df-46df-864c-a27449faa94a","origin":"tls","data":{"client_hello":{"CipherSuites":[4866,4867,4865,49199,49195,49200,49196,158,162,163,159,49191,49187,49171,49161,49192,49188,49172,49162,103,51,64,107,56,57,156,157,49324,49310,50,49308,60,47,49325,49311,106,49309,61,53,52393,52392,52394,49245,49249,49239,49235,49244,49248,49238,49234,49267,49271,196,195,49266,49270,190,189,136,135,69,68,49233,49232,192,186,132,65,255],"ServerName":"dev.sportch.co.uk","SupportedCurves":[29,23,30,25,24,256,257,258,259,260],"SupportedPoints":"AAEC","SignatureSchemes":[1027,1283,1539,2055,2056,2074,2075,2076,2057,2058,2059,2052,2053,2054,1025,1281,1537,771,769,770,1026,1282,1538],"SupportedProtos":null,"SupportedVersions":[772,771],"RemoteAddr":{"IP":"82.180.154.41","Port":60554,"Zone":""},"LocalAddr":{"IP":"82.180.154.41","Port":443,"Zone":""}}}}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.305295,"logger":"tls.handshake","msg":"choosing certificate","identifier":"dev.sportch.co.uk","num_choices":1}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.305313,"logger":"tls.handshake","msg":"default certificate selection results","identifier":"dev.sportch.co.uk","subjects":["dev.sportch.co.uk"],"managed":true,"issuer_key":"acme-v02.api.letsencrypt.org-directory","hash":"c2872e392c0ce0a3dd400c85b5f0942782516864180885f9b73b52798dcff6d3"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3053222,"logger":"tls.handshake","msg":"matched certificate in cache","remote_ip":"82.180.154.41","remote_port":"60554","subjects":["dev.sportch.co.uk"],"managed":true,"expiration":1730841910,"hash":"c2872e392c0ce0a3dd400c85b5f0942782516864180885f9b73b52798dcff6d3"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3061454,"logger":"http.stdlib","msg":"http: TLS handshake error from 82.180.154.41:60554: local error: tls: bad record MAC"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3095,"logger":"events","msg":"event","name":"tls_get_certificate","id":"38413651-71d4-42f1-84b2-73a6ff3fa2eb","origin":"tls","data":{"client_hello":{"CipherSuites":[4866,4867,4865,49199,49195,49200,49196,158,162,163,159,49191,49187,49171,49161,49192,49188,49172,49162,103,51,64,107,56,57,156,157,49324,49310,50,49308,60,47,49325,49311,106,49309,61,53,52393,52392,52394,49245,49249,49239,49235,49244,49248,49238,49234,49267,49271,196,195,49266,49270,190,189,136,135,69,68,49233,49232,192,186,132,65,255],"ServerName":"dev.sportch.co.uk","SupportedCurves":[29,23,30,25,24,256,257,258,259,260],"SupportedPoints":"AAEC","SignatureSchemes":[1027,1283,1539,2055,2056,2074,2075,2076,2057,2058,2059,2052,2053,2054,1025,1281,1537,771,769,770,1026,1282,1538],"SupportedProtos":null,"SupportedVersions":[772,771],"RemoteAddr":{"IP":"82.180.154.41","Port":60564,"Zone":""},"LocalAddr":{"IP":"82.180.154.41","Port":443,"Zone":""}}}}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3095362,"logger":"tls.handshake","msg":"choosing certificate","identifier":"dev.sportch.co.uk","num_choices":1}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3095496,"logger":"tls.handshake","msg":"default certificate selection results","identifier":"dev.sportch.co.uk","subjects":["dev.sportch.co.uk"],"managed":true,"issuer_key":"acme-v02.api.letsencrypt.org-directory","hash":"c2872e392c0ce0a3dd400c85b5f0942782516864180885f9b73b52798dcff6d3"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3095627,"logger":"tls.handshake","msg":"matched certificate in cache","remote_ip":"82.180.154.41","remote_port":"60564","subjects":["dev.sportch.co.uk"],"managed":true,"expiration":1730841910,"hash":"c2872e392c0ce0a3dd400c85b5f0942782516864180885f9b73b52798dcff6d3"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.310275,"logger":"http.stdlib","msg":"http: TLS handshake error from 82.180.154.41:60564: local error: tls: bad record MAC"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.312344,"logger":"events","msg":"event","name":"tls_get_certificate","id":"f5ffa786-3f3e-49b5-97d2-7f83040dfc0c","origin":"tls","data":{"client_hello":{"CipherSuites":[4866,4867,4865,49199,49195,49200,49196,158,162,163,159,49191,49187,49171,49161,49192,49188,49172,49162,103,51,64,107,56,57,156,157,49324,49310,50,49308,60,47,49325,49311,106,49309,61,53,52393,52392,52394,49245,49249,49239,49235,49244,49248,49238,49234,49267,49271,196,195,49266,49270,190,189,136,135,69,68,49233,49232,192,186,132,65,255],"ServerName":"dev.sportch.co.uk","SupportedCurves":[29,23,30,25,24,256,257,258,259,260],"SupportedPoints":"AAEC","SignatureSchemes":[1027,1283,1539,2055,2056,2074,2075,2076,2057,2058,2059,2052,2053,2054,1025,1281,1537,771,769,770,1026,1282,1538],"SupportedProtos":null,"SupportedVersions":[772,771],"RemoteAddr":{"IP":"82.180.154.41","Port":60574,"Zone":""},"LocalAddr":{"IP":"82.180.154.41","Port":443,"Zone":""}}}}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3123627,"logger":"tls.handshake","msg":"choosing certificate","identifier":"dev.sportch.co.uk","num_choices":1}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3123765,"logger":"tls.handshake","msg":"default certificate selection results","identifier":"dev.sportch.co.uk","subjects":["dev.sportch.co.uk"],"managed":true,"issuer_key":"acme-v02.api.letsencrypt.org-directory","hash":"c2872e392c0ce0a3dd400c85b5f0942782516864180885f9b73b52798dcff6d3"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3123846,"logger":"tls.handshake","msg":"matched certificate in cache","remote_ip":"82.180.154.41","remote_port":"60574","subjects":["dev.sportch.co.uk"],"managed":true,"expiration":1730841910,"hash":"c2872e392c0ce0a3dd400c85b5f0942782516864180885f9b73b52798dcff6d3"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3129933,"logger":"http.stdlib","msg":"http: TLS handshake error from 82.180.154.41:60574: local error: tls: bad record MAC"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3152652,"logger":"events","msg":"event","name":"tls_get_certificate","id":"b4ab6bd1-7237-4ac6-9482-8fba0bcb5c40","origin":"tls","data":{"client_hello":{"CipherSuites":[4866,4867,4865,49199,49195,49200,49196,158,162,163,159,49191,49187,49171,49161,49192,49188,49172,49162,103,51,64,107,56,57,156,157,49324,49310,50,49308,60,47,49325,49311,106,49309,61,53,52393,52392,52394,49245,49249,49239,49235,49244,49248,49238,49234,49267,49271,196,195,49266,49270,190,189,136,135,69,68,49233,49232,192,186,132,65,255],"ServerName":"dev.sportch.co.uk","SupportedCurves":[29,23,30,25,24,256,257,258,259,260],"SupportedPoints":"AAEC","SignatureSchemes":[1027,1283,1539,2055,2056,2074,2075,2076,2057,2058,2059,2052,2053,2054,1025,1281,1537,771,769,770,1026,1282,1538],"SupportedProtos":null,"SupportedVersions":[772,771],"RemoteAddr":{"IP":"82.180.154.41","Port":60578,"Zone":""},"LocalAddr":{"IP":"82.180.154.41","Port":443,"Zone":""}}}}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3152938,"logger":"tls.handshake","msg":"choosing certificate","identifier":"dev.sportch.co.uk","num_choices":1}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.315304,"logger":"tls.handshake","msg":"default certificate selection results","identifier":"dev.sportch.co.uk","subjects":["dev.sportch.co.uk"],"managed":true,"issuer_key":"acme-v02.api.letsencrypt.org-directory","hash":"c2872e392c0ce0a3dd400c85b5f0942782516864180885f9b73b52798dcff6d3"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.31531,"logger":"tls.handshake","msg":"matched certificate in cache","remote_ip":"82.180.154.41","remote_port":"60578","subjects":["dev.sportch.co.uk"],"managed":true,"expiration":1730841910,"hash":"c2872e392c0ce0a3dd400c85b5f0942782516864180885f9b73b52798dcff6d3"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.316304,"logger":"http.stdlib","msg":"http: TLS handshake error from 82.180.154.41:60578: local error: tls: bad record MAC"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3195548,"logger":"events","msg":"event","name":"tls_get_certificate","id":"df5a3e47-b3b3-4007-b7b9-d19b0dcaabdc","origin":"tls","data":{"client_hello":{"CipherSuites":[4866,4867,4865,49199,49195,49200,49196,158,162,163,159,49191,49187,49171,49161,49192,49188,49172,49162,103,51,64,107,56,57,156,157,49324,49310,50,49308,60,47,49325,49311,106,49309,61,53,52393,52392,52394,49245,49249,49239,49235,49244,49248,49238,49234,49267,49271,196,195,49266,49270,190,189,136,135,69,68,49233,49232,192,186,132,65,255],"ServerName":"dev.sportch.co.uk","SupportedCurves":[29,23,30,25,24,256,257,258,259,260],"SupportedPoints":"AAEC","SignatureSchemes":[1027,1283,1539,2055,2056,2074,2075,2076,2057,2058,2059,2052,2053,2054,1025,1281,1537,771,769,770,1026,1282,1538],"SupportedProtos":null,"SupportedVersions":[772,771],"RemoteAddr":{"IP":"82.180.154.41","Port":60582,"Zone":""},"LocalAddr":{"IP":"82.180.154.41","Port":443,"Zone":""}}}}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.319594,"logger":"tls.handshake","msg":"choosing certificate","identifier":"dev.sportch.co.uk","num_choices":1}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3196118,"logger":"tls.handshake","msg":"default certificate selection results","identifier":"dev.sportch.co.uk","subjects":["dev.sportch.co.uk"],"managed":true,"issuer_key":"acme-v02.api.letsencrypt.org-directory","hash":"c2872e392c0ce0a3dd400c85b5f0942782516864180885f9b73b52798dcff6d3"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.319621,"logger":"tls.handshake","msg":"matched certificate in cache","remote_ip":"82.180.154.41","remote_port":"60582","subjects":["dev.sportch.co.uk"],"managed":true,"expiration":1730841910,"hash":"c2872e392c0ce0a3dd400c85b5f0942782516864180885f9b73b52798dcff6d3"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3204825,"logger":"http.stdlib","msg":"http: TLS handshake error from 82.180.154.41:60582: local error: tls: bad record MAC"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3257048,"logger":"events","msg":"event","name":"tls_get_certificate","id":"9dc342d8-05ed-46bb-a4a9-7d82fb7c684b","origin":"tls","data":{"client_hello":{"CipherSuites":[4866,4867,4865,49199,49195,49200,49196,158,162,163,159,49191,49187,49171,49161,49192,49188,49172,49162,103,51,64,107,56,57,156,157,49324,49310,50,49308,60,47,49325,49311,106,49309,61,53,52393,52392,52394,49245,49249,49239,49235,49244,49248,49238,49234,49267,49271,196,195,49266,49270,190,189,136,135,69,68,49233,49232,192,186,132,65,255],"ServerName":"dev.sportch.co.uk","SupportedCurves":[29,23,30,25,24,256,257,258,259,260],"SupportedPoints":"AAEC","SignatureSchemes":[1027,1283,1539,2055,2056,2074,2075,2076,2057,2058,2059,2052,2053,2054,1025,1281,1537,771,769,770,1026,1282,1538],"SupportedProtos":null,"SupportedVersions":[772,771],"RemoteAddr":{"IP":"82.180.154.41","Port":60594,"Zone":""},"LocalAddr":{"IP":"82.180.154.41","Port":443,"Zone":""}}}}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3257375,"logger":"tls.handshake","msg":"choosing certificate","identifier":"dev.sportch.co.uk","num_choices":1}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3257604,"logger":"tls.handshake","msg":"default certificate selection results","identifier":"dev.sportch.co.uk","subjects":["dev.sportch.co.uk"],"managed":true,"issuer_key":"acme-v02.api.letsencrypt.org-directory","hash":"c2872e392c0ce0a3dd400c85b5f0942782516864180885f9b73b52798dcff6d3"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3257692,"logger":"tls.handshake","msg":"matched certificate in cache","remote_ip":"82.180.154.41","remote_port":"60594","subjects":["dev.sportch.co.uk"],"managed":true,"expiration":1730841910,"hash":"c2872e392c0ce0a3dd400c85b5f0942782516864180885f9b73b52798dcff6d3"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3266876,"logger":"http.stdlib","msg":"http: TLS handshake error from 82.180.154.41:60594: local error: tls: bad record MAC"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3298473,"logger":"events","msg":"event","name":"tls_get_certificate","id":"ac1c0cf9-d5ee-4c84-8f24-4224d6f92a2d","origin":"tls","data":{"client_hello":{"CipherSuites":[4866,4867,4865,49199,49195,49200,49196,158,162,163,159,49191,49187,49171,49161,49192,49188,49172,49162,103,51,64,107,56,57,156,157,49324,49310,50,49308,60,47,49325,49311,106,49309,61,53,52393,52392,52394,49245,49249,49239,49235,49244,49248,49238,49234,49267,49271,196,195,49266,49270,190,189,136,135,69,68,49233,49232,192,186,132,65,255],"ServerName":"dev.sportch.co.uk","SupportedCurves":[29,23,30,25,24,256,257,258,259,260],"SupportedPoints":"AAEC","SignatureSchemes":[1027,1283,1539,2055,2056,2074,2075,2076,2057,2058,2059,2052,2053,2054,1025,1281,1537,771,769,770,1026,1282,1538],"SupportedProtos":null,"SupportedVersions":[772,771],"RemoteAddr":{"IP":"82.180.154.41","Port":60604,"Zone":""},"LocalAddr":{"IP":"82.180.154.41","Port":443,"Zone":""}}}}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3298748,"logger":"tls.handshake","msg":"choosing certificate","identifier":"dev.sportch.co.uk","num_choices":1}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3298893,"logger":"tls.handshake","msg":"default certificate selection results","identifier":"dev.sportch.co.uk","subjects":["dev.sportch.co.uk"],"managed":true,"issuer_key":"acme-v02.api.letsencrypt.org-directory","hash":"c2872e392c0ce0a3dd400c85b5f0942782516864180885f9b73b52798dcff6d3"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3298974,"logger":"tls.handshake","msg":"matched certificate in cache","remote_ip":"82.180.154.41","remote_port":"60604","subjects":["dev.sportch.co.uk"],"managed":true,"expiration":1730841910,"hash":"c2872e392c0ce0a3dd400c85b5f0942782516864180885f9b73b52798dcff6d3"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.330835,"logger":"http.stdlib","msg":"http: TLS handshake error from 82.180.154.41:60604: local error: tls: bad record MAC"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3334386,"logger":"events","msg":"event","name":"tls_get_certificate","id":"4168e6cc-f41d-4698-bd3a-d1f6c180147c","origin":"tls","data":{"client_hello":{"CipherSuites":[4866,4867,4865,49199,49195,49200,49196,158,162,163,159,49191,49187,49171,49161,49192,49188,49172,49162,103,51,64,107,56,57,156,157,49324,49310,50,49308,60,47,49325,49311,106,49309,61,53,52393,52392,52394,49245,49249,49239,49235,49244,49248,49238,49234,49267,49271,196,195,49266,49270,190,189,136,135,69,68,49233,49232,192,186,132,65,255],"ServerName":"dev.sportch.co.uk","SupportedCurves":[29,23,30,25,24,256,257,258,259,260],"SupportedPoints":"AAEC","SignatureSchemes":[1027,1283,1539,2055,2056,2074,2075,2076,2057,2058,2059,2052,2053,2054,1025,1281,1537,771,769,770,1026,1282,1538],"SupportedProtos":null,"SupportedVersions":[772,771],"RemoteAddr":{"IP":"82.180.154.41","Port":60610,"Zone":""},"LocalAddr":{"IP":"82.180.154.41","Port":443,"Zone":""}}}}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3334827,"logger":"tls.handshake","msg":"choosing certificate","identifier":"dev.sportch.co.uk","num_choices":1}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.333501,"logger":"tls.handshake","msg":"default certificate selection results","identifier":"dev.sportch.co.uk","subjects":["dev.sportch.co.uk"],"managed":true,"issuer_key":"acme-v02.api.letsencrypt.org-directory","hash":"c2872e392c0ce0a3dd400c85b5f0942782516864180885f9b73b52798dcff6d3"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.3335104,"logger":"tls.handshake","msg":"matched certificate in cache","remote_ip":"82.180.154.41","remote_port":"60610","subjects":["dev.sportch.co.uk"],"managed":true,"expiration":1730841910,"hash":"c2872e392c0ce0a3dd400c85b5f0942782516864180885f9b73b52798dcff6d3"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.334562,"logger":"http.stdlib","msg":"http: TLS handshake error from 82.180.154.41:60610: local error: tls: bad record MAC"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.4226334,"logger":"http.handlers.rewrite","msg":"rewrote request","request":{"remote_ip":"91.196.222.121","remote_port":"54092","client_ip":"91.196.222.121","proto":"HTTP/3.0","method":"POST","host":"dev.sportch.co.uk","uri":"/api/v1/badges","headers":{"Accept-Encoding":["gzip, deflate, br"],"Crossorigin":["anonymous"],"Accept":["application/json, text/javascript, */*; q=0.01"],"X-Api-Public":["nscagbnlx8uuusd9vnq9vmzxwnaqwl28w3hmhrjizwphme7vngmjefn5yu9gdkwpulp15meibt7jsz4d92hbxl3z6jvgthju6jlvt7qulke1lul6fusniogkd8cavbwo"],"Priority":["u=3"],"X-App-Version":["10811"],"X-Api-Token":["token_JAc4ALHt3DbFjIYloyqnWJDUxJlWCg7efLvecIG71OaovgGRZJytrHipRt75YTME"],"X-Api-Private":["0a37ef36c99f3987dc598a69fc3f709902b4d475ed36c4d200e6f9cf2a33eea7"],"X-App-Revision":["1.8.11.r2"],"X-Timezone":["3600"],"User-Agent":["Sportch/4 CFNetwork/1498.700.2 Darwin/23.6.0"],"Content-Length":["6"],"Content-Type":["application/json"],"Accept-Language":["en-GB,en;q=0.9"]},"tls":{"resumed":false,"version":772,"cipher_suite":4865,"proto":"h3","server_name":"dev.sportch.co.uk"}},"method":"POST","uri":"/index.php"}
Sep 03 15:36:23 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377783.4567268,"logger":"http.handlers.rewrite","msg":"rewrote request","request":{"remote_ip":"91.196.222.121","remote_port":"54092","client_ip":"91.196.222.121","proto":"HTTP/3.0","method":"POST","host":"dev.sportch.co.uk","uri":"/api/v1/getInformationImportant","headers":{"Crossorigin":["anonymous"],"X-App-Revision":["1.8.11.r2"],"X-Api-Public":["nscagbnlx8uuusd9vnq9vmzxwnaqwl28w3hmhrjizwphme7vngmjefn5yu9gdkwpulp15meibt7jsz4d92hbxl3z6jvgthju6jlvt7qulke1lul6fusniogkd8cavbwo"],"Accept-Language":["en-GB,en;q=0.9"],"Accept-Encoding":["gzip, deflate, br"],"X-Api-Private":["0a37ef36c99f3987dc598a69fc3f709902b4d475ed36c4d200e6f9cf2a33eea7"],"Content-Length":["6"],"X-App-Version":["10811"],"Content-Type":["application/json"],"Priority":["u=3"],"User-Agent":["Sportch/4 CFNetwork/1498.700.2 Darwin/23.6.0"],"X-Api-Token":["token_JAc4ALHt3DbFjIYloyqnWJDUxJlWCg7efLvecIG71OaovgGRZJytrHipRt75YTME"],"Accept":["application/json, text/javascript, */*; q=0.01"],"X-Timezone":["3600"]},"tls":{"resumed":false,"version":772,"cipher_suite":4865,"proto":"h3","server_name":"dev.sportch.co.uk"}},"method":"POST","uri":"/index.php"}
Sep 03 15:36:24 dev.sportch.co.uk frankenphp[100388]: {"level":"debug","ts":1725377784.3332665,"logger":"http.handlers.rewrite","msg":"rewrote request","request":{"remote_ip":"91.196.222.121","remote_port":"54092","client_ip":"91.196.222.121","proto":"HTTP/3.0","method":"POST","host":"dev.sportch.co.uk","uri":"/api/v1/getInformationImportant","headers":{"Accept":["application/json, text/javascript, */*; q=0.01"],"X-Api-Public":["nscagbnlx8uuusd9vnq9vmzxwnaqwl28w3hmhrjizwphme7vngmjefn5yu9gdkwpulp15meibt7jsz4d92hbxl3z6jvgthju6jlvt7qulke1lul6fusniogkd8cavbwo"],"Priority":["u=3"],"Crossorigin":["anonymous"],"Content-Type":["application/json"],"X-Api-Private":["0a37ef36c99f3987dc598a69fc3f709902b4d475ed36c4d200e6f9cf2a33eea7"],"Accept-Language":["en-GB,en;q=0.9"],"Accept-Encoding":["gzip, deflate, br"],"X-App-Version":["10811"],"User-Agent":["Sportch/4 CFNetwork/1498.700.2 Darwin/23.6.0"],"X-App-Revision":["1.8.11.r2"],"Content-Length":["6"],"X-Api-Token":["token_JAc4ALHt3DbFjIYloyqnWJDUxJlWCg7efLvecIG71OaovgGRZJytrHipRt75YTME"],"X-Timezone":["3600"]},"tls":{"resumed":false,"version":772,"cipher_suite":4865,"proto":"h3","server_name":"dev.sportch.co.uk"}},"method":"POST","uri":"/index.php"}
Sep 03 15:36:35 dev.sportch.co.uk systemd[1]: frankenphp.service: Deactivated successfully.
Sep 03 15:36:35 dev.sportch.co.uk systemd[1]: frankenphp.service: Consumed 50.347s CPU time.

[dunglas]

Hi, this is likely caused by an extension that doesn't block the SIGPIPE signal. We fixed the amqp extension (https://github.com/php-amqp/php-amqp/pull/550, https://github.com/dunglas/frankenphp/issues/682) as well as FrankenPHP itself (https://github.com/dunglas/frankenphp/pull/651) in the past.

Could you try to gather a stack trace, wo we can identify (and hopefully fix) the offender?

The easiest way is to use a debug binary with GDB: https://frankenphp.dev/docs/contributing/#debugging-segmentation-faults-with-static-builds

But in this case using strace to trace the I/O may be enough to identify the broken connection.

Thanks.

[geoidesic]

Um... I don't really understand any of that?

1. I don't know where to download the debug static build from (and will it have the updates from https://github.com/dunglas/frankenphp/pull/988 ?)
2. I don't know how to make a static debug build, if that's necessary?
3. I don't know what to do with strace, nor when to do it?

[geoidesic]

Ok a bit of research later and I've set up strace (I think):

nohup strace -e trace=signal,read,write -p 111840 -o strace_output.txt > /dev/null 2>&1 &

So now I'll wait for a day or so and see if we catch any fish...

[withinboredom]

@geoidesic, any fish?

[geoidesic]

Nope. The strace output file is empty but the frankenphp pid has changed. So I guess don't know how to capture that. I can see that it's only been up and running for 2 days, which means it's still falling over periodically:

[root@dev ~]# systemctl status frankenphp
— frankenphp.service - FrankenPHP Server
     Loaded: loaded (/etc/systemd/system/frankenphp.service; enabled; preset: disabled)
     Active: active (running) since Tue 2024-09-17 10:22:27 UTC; 2 days ago

[withinboredom]

Anything in journalctl related to frankenphp (I think it is the -x flag, but can't remember off the top of my head)?

[geoidesic]

A lot of the TLS handshake errors are originating from the server itself e.g.:

Sep 26 23:00:08 app.sportch.co.uk frankenphp[44270]: {"level":"debug","ts":1727391608.0926747,"logger":"http.stdlib","msg":"http: TLS handshake error from 82.180.154.41:42652: local error: tls: bad record MAC"}

This is the IP address of the server itself: 82.180.154.41

[geoidesic]

Here's some more logs.

Note this is a standard request made to the app. After the request completes successfully there seems to be a number of requests from 127.0.0.1 to 127.0.0.1 that fail the TLS lookup. These are not generated by our application code. Something – presumably frankenphp – is causing those spurious requests. I don't understand it. This is happening frequently. Very frequently.

Sep 29 13:24:46 app frankenphp[2917]: {"level":"debug","ts":1727616286.4948027,"logger":"http.handlers.rewrite","msg":"rewrote request","request":{"remote_ip":"193.42.53.172","remote_port":"62437","client_ip":"193.42.53.172","proto":"HTTP/2.0","method":"POST","host":"app.sportch.co.uk","uri":"/api/v1/adverts","headers":{"Content-Length":["83"],"X-App-Revision":["1.9.0.r1.web"],"Sec-Ch-Ua-Mobile":["?0"],"Sec-Fetch-Site":["same-origin"],"Accept-Language":["en-GB,en-US;q=0.9,en;q=0.8"],"Cookie":["REDACTED"],"X-Api-Token":["REDACTED"],"Crossorigin":["anonymous"],"X-App-Version":["10900"],"Accept":["application/json, text/javascript, */*; q=0.01"],"X-Api-Public":["REDACTED"],"Origin":["https://app.sportch.co.uk"],"Sec-Fetch-Dest":["empty"],"Sec-Ch-Ua-Platform":["\"Windows\""],"Sec-Fetch-Mode":["cors"],"Accept-Encoding":["gzip, deflate, br, zstd"],"Priority":["u=1, i"],"X-Api-Private":["REDACTED"],"Sec-Ch-Ua":["\"Google Chrome\";v=\"129\", \"Not=A?Brand\";v=\"8\", \"Chromium\";v=\"129\""],"X-Timezone":["3600"],"User-Agent":["Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/129.0.0.0 Safari/537.36"],"Content-Type":["application/json"],"Referer":["https://app.sportch.co.uk/web/"]},"tls":{"resumed":true,"version":772,"cipher_suite":4865,"proto":"h2","server_name":"app.sportch.co.uk"}},"method":"POST","uri":"/index.php"}
Sep 29 13:24:46 app frankenphp[2917]: {"level":"debug","ts":1727616286.4953215,"logger":"http.handlers.file_server","msg":"sanitized path join","site_root":"/var/www/html/SportchLegacyApp","fs":"","request_path":"/web/images/match-single.png","result":"/var/www/html/SportchLegacyApp/web/images/match-single.png"}
Sep 29 13:24:46 app frankenphp[2917]: {"level":"debug","ts":1727616286.495429,"logger":"http.handlers.file_server","msg":"opening file","filename":"/var/www/html/SportchLegacyApp/web/images/match-single.png"}
Sep 29 13:24:46 app frankenphp[2917]: {"level":"debug","ts":1727616286.4958642,"logger":"http.handlers.file_server","msg":"sanitized path join","site_root":"/var/www/html/SportchLegacyApp","fs":"","request_path":"/web/images/icon-clap-white.png","result":"/var/www/html/SportchLegacyApp/web/images/icon-clap-white.png"}
Sep 29 13:24:46 app frankenphp[2917]: {"level":"debug","ts":1727616286.4958966,"logger":"http.handlers.file_server","msg":"opening file","filename":"/var/www/html/SportchLegacyApp/web/images/icon-clap-white.png"}
Sep 29 13:24:46 app frankenphp[2917]: {"level":"debug","ts":1727616286.4960034,"logger":"http.handlers.file_server","msg":"sanitized path join","site_root":"/var/www/html/SportchLegacyApp","fs":"","request_path":"/web/images/icon-coach-white.png","result":"/var/www/html/SportchLegacyApp/web/images/icon-coach-white.png"}
Sep 29 13:24:46 app frankenphp[2917]: {"level":"debug","ts":1727616286.496093,"logger":"http.handlers.file_server","msg":"opening file","filename":"/var/www/html/SportchLegacyApp/web/images/icon-coach-white.png"}
Sep 29 13:24:46 app frankenphp[2917]: {"level":"debug","ts":1727616286.4963937,"logger":"http.handlers.file_server","msg":"sanitized path join","site_root":"/var/www/html/SportchLegacyApp","fs":"","request_path":"/web/images/level-1.png","result":"/var/www/html/SportchLegacyApp/web/images/level-1.png"}
Sep 29 13:24:46 app frankenphp[2917]: {"level":"debug","ts":1727616286.4970129,"logger":"http.handlers.file_server","msg":"opening file","filename":"/var/www/html/SportchLegacyApp/web/images/level-1.png"}
Sep 29 13:24:46 app frankenphp[2917]: {"level":"debug","ts":1727616286.4964833,"logger":"http.handlers.file_server","msg":"sanitized path join","site_root":"/var/www/html/SportchLegacyApp","fs":"","request_path":"/web/images/level-4.png","result":"/var/www/html/SportchLegacyApp/web/images/level-4.png"}
Sep 29 13:24:46 app frankenphp[2917]: {"level":"debug","ts":1727616286.4973123,"logger":"http.handlers.file_server","msg":"opening file","filename":"/var/www/html/SportchLegacyApp/web/images/level-4.png"}
Sep 29 13:24:46 app frankenphp[2917]: {"level":"debug","ts":1727616286.5686858,"logger":"http.handlers.file_server","msg":"sanitized path join","site_root":"/var/www/html/SportchLegacyApp","fs":"","request_path":"/web/images/no-image.png","result":"/var/www/html/SportchLegacyApp/web/images/no-image.png"}
Sep 29 13:24:46 app frankenphp[2917]: {"level":"debug","ts":1727616286.5687237,"logger":"http.handlers.file_server","msg":"opening file","filename":"/var/www/html/SportchLegacyApp/web/images/no-image.png"}
Sep 29 13:24:46 app frankenphp[2917]: {"level":"debug","ts":1727616286.611154,"logger":"events","msg":"event","name":"tls_get_certificate","id":"ef5ed62f-545c-4d56-af02-c1fa8631cb56","origin":"tls","data":{"client_hello":{"CipherSuites":[4866,4867,4865,49199,49195,49200,49196,158,162,163,159,49191,49187,49171,49161,49192,49188,49172,49162,103,51,64,107,56,57,156,157,49324,49310,50,49308,60,47,49325,49311,106,49309,61,53,52393,52392,52394,49245,49249,49239,49235,49244,49248,49238,49234,49267,49271,196,195,49266,49270,190,189,136,135,69,68,49233,49232,192,186,132,65,255],"ServerName":"app.sportch.co.uk","SupportedCurves":[29,23,30,25,24,256,257,258,259,260],"SupportedPoints":"AAEC","SignatureSchemes":[1027,1283,1539,2055,2056,2074,2075,2076,2057,2058,2059,2052,2053,2054,1025,1281,1537,771,769,770,1026,1282,1538],"SupportedProtos":null,"SupportedVersions":[772,771],"RemoteAddr":{"IP":"127.0.0.1","Port":40968,"Zone":""},"LocalAddr":{"IP":"127.0.0.1","Port":443,"Zone":""}}}}
Sep 29 13:24:46 app frankenphp[2917]: {"level":"debug","ts":1727616286.6111825,"logger":"tls.handshake","msg":"choosing certificate","identifier":"app.sportch.co.uk","num_choices":1}
Sep 29 13:24:46 app frankenphp[2917]: {"level":"debug","ts":1727616286.6111953,"logger":"tls.handshake","msg":"default certificate selection results","identifier":"app.sportch.co.uk","subjects":["app.sportch.co.uk"],"managed":true,"issuer_key":"acme-v02.api.letsencrypt.org-directory","hash":"REDACTED"}
Sep 29 13:24:46 app frankenphp[2917]: {"level":"debug","ts":1727616286.6112022,"logger":"tls.handshake","msg":"matched certificate in cache","remote_ip":"127.0.0.1","remote_port":"40968","subjects":["app.sportch.co.uk"],"managed":true,"expiration":1734939626,"hash":"REDACTED"}
Sep 29 13:24:46 app frankenphp[2917]: {"level":"debug","ts":1727616286.6118376,"logger":"http.stdlib","msg":"http: TLS handshake error from 127.0.0.1:40968: local error: tls: bad record MAC"}
Sep 29 13:24:46 app frankenphp[2917]: {"level":"debug","ts":1727616286.6133301,"logger":"events","msg":"event","name":"tls_get_certificate","id":"7f5e7696-5aa1-4f82-a4ee-353cd0ab452d","origin":"tls","data":{"client_hello":{"CipherSuites":[4866,4867,4865,49199,49195,49200,49196,158,162,163,159,49191,49187,49171,49161,49192,49188,49172,49162,103,51,64,107,56,57,156,157,49324,49310,50,49308,60,47,49325,49311,106,49309,61,53,52393,52392,52394,49245,49249,49239,49235,49244,49248,49238,49234,49267,49271,196,195,49266,49270,190,189,136,135,69,68,49233,49232,192,186,132,65,255],"ServerName":"app.sportch.co.uk","SupportedCurves":[29,23,30,25,24,256,257,258,259,260],"SupportedPoints":"AAEC","SignatureSchemes":[1027,1283,1539,2055,2056,2074,2075,2076,2057,2058,2059,2052,2053,2054,1025,1281,1537,771,769,770,1026,1282,1538],"SupportedProtos":null,"SupportedVersions":[772,771],"RemoteAddr":{"IP":"127.0.0.1","Port":40984,"Zone":""},"LocalAddr":{"IP":"127.0.0.1","Port":443,"Zone":""}}}}
Sep 29 13:24:46 app frankenphp[2917]: {"level":"debug","ts":1727616286.6133478,"logger":"tls.handshake","msg":"choosing certificate","identifier":"app.sportch.co.uk","num_choices":1}
Sep 29 13:24:46 app frankenphp[2917]: {"level":"debug","ts":1727616286.6133573,"logger":"tls.handshake","msg":"default certificate selection results","identifier":"app.sportch.co.uk","subjects":["app.sportch.co.uk"],"managed":true,"issuer_key":"acme-v02.api.letsencrypt.org-directory","hash":"REDACTED"}
Sep 29 13:24:46 app frankenphp[2917]: {"level":"debug","ts":1727616286.613364,"logger":"tls.handshake","msg":"matched certificate in cache","remote_ip":"127.0.0.1","remote_port":"40984","subjects":["app.sportch.co.uk"],"managed":true,"expiration":1734939626,"hash":"REDACTED"}
Sep 29 13:24:46 app frankenphp[2917]: {"level":"debug","ts":1727616286.6138408,"logger":"http.stdlib","msg":"http: TLS handshake error from 127.0.0.1:40984: local error: tls: bad record MAC"} 

[withinboredom]

FrankenPhp doesn't make any requests by itself. To be honest, if your application is doing nonsensical things, you might want to check if you have been hacked.

I remember a client once where I saw stuff like this and discovered a whole cialis spam website in a hidden folder.

But to reiterate, FrankenPhp doesn't make any requests. It forwards request from caddy to php. So, if you see a request in your logs, that request was made by a client.

[geoidesic]

Yeah. Fair comment really. The legacy code is a bit of a custom job which is hard to evaluate fully because of how it's been written. Definitely not hacked but quite possibly some rogue legacy code doing weird things. Also maybe a red-herring because it's not related to the SIGPIPE fault, it's just been getting in the way as I'm studying the logs.

[geoidesic]

I've been through the logs again today. I can't see any SIGPIPE failures. My logs go back to 8 September; nothing. So maybe that's no longer an issue. Frankenphp is still stopping and restarting often but it seems to be a deactivation, e.g.:

Oct  3 14:59:48 app systemd[1]: frankenphp.service: Deactivated successfully.

It's not clear why this might be happening. Any suggestions on how to monitor this?

[withinboredom]

In the next release, there will be some metrics: https://github.com/dunglas/frankenphp/blob/main/docs/metrics.md

That might be helpful.

[Eckieck]

I think we are observing the very same issue with the static build 1.2.5. Regardless if run by systemd or not, frankenphp is killed after a few minutes of runtime by a SIGPIPE. Absolut no journal entry when frankenphp gets cut off:

Oct 15 16:39:17 v2 systemd[1]: Started FrankenPHP Server.
Oct 15 16:39:17 v2 frankenphp-linux-x86_64[122325]: {"level":"info","ts":1729003157.986765,"logger":"tls","msg":"storage cleaning happened too recently; skipping for now","storage":"FileStorage:/var/lib/caddy","instance":"XX-XX-XX-XX-XXX","try_again":1729089557.9867628,"try_again_in":86399.999999616}
Oct 15 16:39:17 v2 frankenphp-linux-x86_64[122325]: {"level":"info","ts":1729003157.986842,"logger":"tls","msg":"finished cleaning storage units"}
Oct 15 16:41:18 v2 systemd[1]: frankenphp.service: Deactivated successfully.
Oct 15 16:41:18 v2 systemd[1]: frankenphp.service: Consumed 3.342s CPU time.
Oct 15 16:41:18 v2 systemd[1]: frankenphp.service: Scheduled restart job, restart counter is at 131.
Oct 15 16:41:18 v2 systemd[1]: Stopped FrankenPHP Server.
Oct 15 16:41:18 v2 systemd[1]: frankenphp.service: Consumed 3.342s CPU time.
Oct 15 16:41:18 v2 systemd[1]: Starting FrankenPHP Server...
Oct 15 16:41:19 v2 frankenphp-linux-x86_64[122418]: {"level":"info","ts":1729003279.4957032,"msg":"using config from file","file":"/etc/caddy/Caddyfile"}

Attached strace output. sigpipe1.txt

[dunglas]

@Eckieck could you try to replace your static build with a debug version (the binary with the -debug suffix in the latest release) and follow these steps to get a back trace, please? This would be very helpful: https://frankenphp.dev/docs/contributing/#debugging-segmentation-faults-with-static-builds

[Eckieck]

bt.txt

[dunglas]

Could you run the bt command in the GDB shell after the crash. There is something weird happening.

[Eckieck]

Of course, here is another another, complete one.

bt2.txt

[dunglas]

Thank you very much. It looks like this happen in the Go runtime itself, not in FrankenPHP or PHP. This is very weird.

This seems to occur when Go is doing some crypto things to handle a TLS connection.

Is there anything special on your system (processor for instance) that may be uncommon?

[dunglas]

According to the manual, this should not happen: https://pkg.go.dev/os/signal#hdr-SIGPIPE

Maybe similar:

• https://github.com/etcd-io/etcd/issues/7807

[dunglas]

There is something very weird in the logs. The thread is named frankenphp-linu. New versions should use php-<int>. Could you copy the output of frankenphp build-info please?

[Eckieck]

Is there anything special on your system (processor for instance) that may be uncommon?

The system is Rocky Linux 9.4 in a QEMU-VM on Proxmox 8.2. CPU is Xeon Silver 4416+. Crash happens after between a few seconds and three minutes. Barly usable.

[Eckieck]

buildinfo-debug.txt

[dunglas]

Ok, systemd seems to do weird things: https://github.com/moby/moby/blob/1b7c209de1f158937480f675e85d075fda1c9743/cmd/dockerd/docker.go#L87-L90

Let's try to totally ignore SIGPIPE Go-side (we already ignore it C-side) to see if this fixes the issue: https://github.com/dunglas/frankenphp/pull/1101

Could you try this patch @Eckieck? The CI will build a test binary.

[Eckieck]

Ok, systemd seems to do weird things: https://github.com/moby/moby/blob/1b7c209de1f158937480f675e85d075fda1c9743/cmd/dockerd/docker.go#L87-L90

But: while debugging what is happening i started frankenphp without systemd and it got killed, too. Should i re-try this with the old build?

Let's try to totally ignore SIGPIPE Go-side (we already ignore it C-side) to see if this fixes the issue: #1101

Could you try this patch @Eckieck? The CI will build a test binary.

Using the generated debug-build I would say it is now fixed, new runtime record:

Active: active (running) since Thu 2024-10-17 09:29:11 CEST; 40min ago

Thank you!

[geoidesic]

Let's try to totally ignore SIGPIPE Go-side (we already ignore it C-side) to see if this fixes the issue: #1101 Could you try this patch @Eckieck? The CI will build a test binary.

@dunglas How can I get hold of that binary for my environment? That way I can also test it. (I don't know what you mean by The CI will build a test binary)

Tx. Noel

[Eckieck]

The fix-build is still working for me. It is segfaulting sometimes after a few hours, but i have to investigate this further. The sigpipe-problem is gone.

@geoidesic Have look here: https://github.com/dunglas/frankenphp/actions/runs/11374351086

[geoidesic]

@geoidesic Have look here: https://github.com/dunglas/frankenphp/actions/runs/11374351086

@Eckieck @dunglas That looks like a docker build. I'm using static binaries. Maybe I just don't understand the UI? I can't find where to download the binary. [Update: nvm. they are linked at the bottom of that page you linked.]

[francislavoie]

FYI @geoidesic (only seeing this now)

A lot of the TLS handshake errors are originating from the server itself e.g.:

Sep 26 23:00:08 app.sportch.co.uk frankenphp[44270]: {"level":"debug","ts":1727391608.0926747,"logger":"http.stdlib","msg":"http: TLS handshake error from 82.180.154.41:42652: local error: tls: bad record MAC"}

This is the IP address of the server itself: 82.180.154.41

That looks like normal bot traffic. To explain, Caddy needs to choose a certificate to perform the TLS handshake. Many bots don't bother to send TLS SNI to declare a domain to try to just get a default certificate from the server when it scans the open internet. Caddy will look for a certificate matching the RemoteAddr of the connection when TLS SNI is empty, but doesn't find one (because you didn't configure it to generate one) so the handshake fails. Totally normal.