Big Issue Nextend Social Login with PHP version 8.4

Hi @tmora!

As I see, PHP 8.4 wasn’t released yet, so probably a different or unstable version got activated on your website. On your screenshot, a backtrace is visible about what codes are running, which are leading you to the error, but the actual error message is missing. Could you tell me what “Fatal error” message appears next to this trace? If you aren’t sure, please ask SiteGround support about it. And if you will be in contact with them, ask them to specify the PHP version too, what exactly runs what they call PHP 8.4?

Hi @nextendweb_gabor

If we turn off your plugin in PHP 8.3.1 and switch to PHP 8.4, the website has no problems, but as soon as the website with the activated plugin is turned on, there is a critical error and it is not possible to deactivate any plugins from WP admin.

https://www.dropbox.com/s/knubfcb24t127ay/Screenshot%202024-08-28%20at%2022.01.40.png?dl=0

Hi @tmora

Officially PHP 8.4 isn’t yet available, so it is totally possible the issue stems from a core PHP issue, which might get resolved once the version is officially available to everyone. Either way, please let us know exactly what error message you see, so what exact critical error message you get (currently only the trace of the problem is visible, so not the exact issue). If it wouldn’t be written out, you could ask your host, and they should have a log about these issues, which should contain the exact error. Let us know, and we’ll take a look at this.

@robertnextendweb

Please check the screen displaying the error message. Also, only Twitter and Google login options are currently active on the website. SiteGround support suggested reaching out to the plugin developer for assistance. Thanks.

https://www.dropbox.com/s/rlnwrghp26ivky8/Screenshot%202024-08-29%20at%2010.18.24.png?dl=0

Hi @tmora

The entire error message is rather strange. It refers to a function called shmop_delete:
https://www.php.net/manual/en/function.shmop-delete.php
We do not use this in our code, or any low level memory management function for that matter, so our code might have been modified somehow on your website. First, please check this file:

• wp-content/plugins/nextend-facebook-connect/includes/oauth2.php

And go to line 220. You should see this:

        if (function_exists('random_bytes')) {
            return $this->bytesToString(random_bytes(self::CSRF_LENGTH));
        }

Do you see the same code part as above? According to your error message it looks like random_bytes might have been replaced by this shmop_delete funciton.

If that is the case, please delete your current Nextend Social Login installation, and install it again. Your plugin settings will stay, so don’t worry about those.

If the problem still appears afterwards, then if you make a test php file (e.g. test.php) with this code:

<?php
var_dump(random_bytes(32));

And open this test file in your browser, do you see the problem there? And also please check this code as well:

<?php
var_dump(substr(bin2hex(random_bytes(32)), 0, 32));

If you see the error still, then we suspect that somehow the random_bytes function is incorrectly configured, or an issue similar to it.