#1135855 php8.4: Make telemetry disableable at runtime, if its is enabled at build time

Package:
php8.4-common
Source:
php8.4-common
Description:
documentation, examples and common module for PHP
Submitter:
Grundik
Date:
2026-05-06 16:43:03 UTC
Severity:
normal
#1135855#5
Date:
2026-05-06 16:41:05 UTC
From:
To:
Dear Maintainer,

There are debian-specific patch for telemetry in PHP called "0047-Add-minimal-
privacy-preserving-secure-DNS-telemetry-.patch" (https://salsa.debian.org/php-
team/php/-/blob/debian/main/8.4/debian/patches/0047-Add-minimal-privacy-
preserving-secure-DNS-telemetry-.patch), with stated purpose of notifying about
outdated/vulnerable binaries
(https://codeberg.org/oerdnj/deb.sury.org/issues/76).

Its now disabled at official debian builds. But it cant be turned off if its
enabled, since patch hardcodes everything at build time. And its enabled in
Ondrej own builds.

Please make it disableable at runtime, preferably as opt-in option, not opt-
out.

Patch name says its "privacy-preserving", but it uses peculiar approach leaking
user IP address: instead of just querying something like
"build_id.alers.telemetry.server TXT" through system DNS (which can/will be
anonymized by ISP or other means, protected by DoH and such) it connects
directly to the telemetry server, sending some encrypted payload to it. Thats
quite concerning, even if playload currently seems to be harmless.