nginx.git/src/os/unix/ngx_process_cycle.c, branch release-1.28.2 nginx Silenced complaints about socket leaks on forced termination. 2024-01-29T07:29:39+00:00 Maxim Dounin mdounin@mdounin.ru 2024-01-29T07:29:39+00:00 cc4c3ee0a45ca3a2eeac2874e9199bf42560015c When graceful shutdown was requested, and then nginx was forced to do fast shutdown, it used to (incorrectly) complain about open sockets left in connections which weren't yet closed when fast shutdown was requested. Fix is to avoid complaining about open sockets when fast shutdown was requested after graceful one. Abnormal termination, if requested with the WINCH signal, can still happen though. 
When graceful shutdown was requested, and then nginx was forced to
do fast shutdown, it used to (incorrectly) complain about open sockets
left in connections which weren't yet closed when fast shutdown
was requested.

Fix is to avoid complaining about open sockets when fast shutdown was
requested after graceful one.  Abnormal termination, if requested with
the WINCH signal, can still happen though.
Fixed segfault when switching off master process during upgrade. 2022-11-23T20:48:53+00:00 Maxim Dounin mdounin@mdounin.ru 2022-11-23T20:48:53+00:00 d52e5684437aedd6bb74d6b2b602b7306f4212ba Binary upgrades are not supported without master process, but it is, however, possible, that nginx running with master process is asked to upgrade binary, and the configuration file as available on disk at this time includes "master_process off;". If this happens, listening sockets inherited from the previous binary will have ls[i].previous set. But the old cycle on initial process startup, including startup after binary upgrade, is destroyed by ngx_init_cycle() once configuration parsing is complete. As a result, an attempt to dereference ls[i].previous in ngx_event_process_init() accesses already freed memory. Fix is to avoid looking into ls[i].previous if the old cycle is already freed. With this change it is also no longer needed to clear ls[i].previous in worker processes, so the relevant code was removed. 
Binary upgrades are not supported without master process, but it is,
however, possible, that nginx running with master process is asked
to upgrade binary, and the configuration file as available on disk
at this time includes "master_process off;".

If this happens, listening sockets inherited from the previous binary
will have ls[i].previous set.  But the old cycle on initial process
startup, including startup after binary upgrade, is destroyed by
ngx_init_cycle() once configuration parsing is complete.  As a result,
an attempt to dereference ls[i].previous in ngx_event_process_init()
accesses already freed memory.

Fix is to avoid looking into ls[i].previous if the old cycle is already
freed.

With this change it is also no longer needed to clear ls[i].previous in
worker processes, so the relevant code was removed.
Process events posted by ngx_close_idle_connections() immediately. 2022-11-18T15:31:38+00:00 Roman Arutyunyan arut@nginx.com 2022-11-18T15:31:38+00:00 17066ac8600412eabb1fdf8360cf6ada13f02391 Previously, if an event was posted by a read event handler, called by ngx_close_idle_connections(), that event was not processed until the next event loop iteration, which could happen after a timeout. 
Previously, if an event was posted by a read event handler, called by
ngx_close_idle_connections(), that event was not processed until the next
event loop iteration, which could happen after a timeout.
Restored zeroing of ngx_channel_t in ngx_pass_open_channel(). 2021-04-22T13:12:52+00:00 Ruslan Ermilov ru@nginx.com 2021-04-22T13:12:52+00:00 f02e2a734ef472f0dcf83ab2e8ce96d1acead8a5 Due to structure's alignment, some uninitialized memory contents may have been passed between processes. Zeroing was removed in 0215ec9aaa8a. Reported by Johnny Wang. 
Due to structure's alignment, some uninitialized memory contents may have
been passed between processes.

Zeroing was removed in 0215ec9aaa8a.

Reported by Johnny Wang.
Removed "ch" argument from ngx_pass_open_channel(). 2021-03-11T06:58:45+00:00 Ruslan Ermilov ru@nginx.com 2021-03-11T06:58:45+00:00 02cca547704f710f26a7480d3fa6b476b0f1dccd 






Fixed SIGQUIT not removing listening UNIX sockets (closes #753).
2020-06-01T19:31:23+00:00

Ruslan Ermilov
ru@nginx.com

2020-06-01T19:31:23+00:00

9c3ac44de268f0cf057bc5dd67929e74c9bbc3e3

Listening UNIX sockets were not removed on graceful shutdown, preventing
the next runs.  The fix is to replace the custom socket closing code in
ngx_master_process_cycle() by the ngx_close_listening_sockets() call.





Listening UNIX sockets were not removed on graceful shutdown, preventing
the next runs.  The fix is to replace the custom socket closing code in
ngx_master_process_cycle() by the ngx_close_listening_sockets() call.







Fixed capabilities version.
2017-12-19T16:00:27+00:00

Roman Arutyunyan
arut@nginx.com

2017-12-19T16:00:27+00:00

ce45ded2a8c1b0c0e601779bcc3e54668a14e271

Previously, capset(2) was called with the 64-bit capabilities version
_LINUX_CAPABILITY_VERSION_3.  With this version Linux kernel expected two
copies of struct __user_cap_data_struct, while only one was submitted.  As a
result, random stack memory was accessed and random capabilities were requested
by the worker.  This sometimes caused capset() errors.  Now the 32-bit version
_LINUX_CAPABILITY_VERSION_1 is used instead.  This is OK since CAP_NET_RAW is
a 32-bit capability (CAP_NET_RAW = 13).





Previously, capset(2) was called with the 64-bit capabilities version
_LINUX_CAPABILITY_VERSION_3.  With this version Linux kernel expected two
copies of struct __user_cap_data_struct, while only one was submitted.  As a
result, random stack memory was accessed and random capabilities were requested
by the worker.  This sometimes caused capset() errors.  Now the 32-bit version
_LINUX_CAPABILITY_VERSION_1 is used instead.  This is OK since CAP_NET_RAW is
a 32-bit capability (CAP_NET_RAW = 13).







Improved the capabilities feature detection.
2017-12-18T18:09:39+00:00

Roman Arutyunyan
arut@nginx.com

2017-12-18T18:09:39+00:00

0e92c213f51bae95605c19dfee843902e7c8a0ad

Previously included file sys/capability.h mentioned in capset(2) man page,
belongs to the libcap-dev package, which may not be installed on some Linux
systems when compiling nginx.  This prevented the capabilities feature from
being detected and compiled on that systems.

Now linux/capability.h system header is included instead.  Since capset()
declaration is located in sys/capability.h, now capset() syscall is defined
explicitly in code using the SYS_capset constant, similarly to other
Linux-specific features in nginx.





Previously included file sys/capability.h mentioned in capset(2) man page,
belongs to the libcap-dev package, which may not be installed on some Linux
systems when compiling nginx.  This prevented the capabilities feature from
being detected and compiled on that systems.

Now linux/capability.h system header is included instead.  Since capset()
declaration is located in sys/capability.h, now capset() syscall is defined
explicitly in code using the SYS_capset constant, similarly to other
Linux-specific features in nginx.







Retain CAP_NET_RAW capability for transparent proxying.
2017-12-13T17:40:53+00:00

Roman Arutyunyan
arut@nginx.com

2017-12-13T17:40:53+00:00

752f66bf7d70fae2bf05fbf5941ff4be52b2b9a5

The capability is retained automatically in unprivileged worker processes after
changing UID if transparent proxying is enabled at least once in nginx
configuration.

The feature is only available in Linux.





The capability is retained automatically in unprivileged worker processes after
changing UID if transparent proxying is enabled at least once in nginx
configuration.

The feature is only available in Linux.







Fixed "changing binary" when reaper is not init.
2017-11-28T09:00:24+00:00

Ruslan Ermilov
ru@nginx.com

2017-11-28T09:00:24+00:00

afad21917584e9b452ba33ce3485edde5615b859

On some systems, it's possible that reaper of orphaned processes is
set to something other than "init" process.  On such systems, the
changing binary procedure did not work.

The fix is to check if PPID has changed, instead of assuming it's
always 1 for orphaned processes.





On some systems, it's possible that reaper of orphaned processes is
set to something other than "init" process.  On such systems, the
changing binary procedure did not work.

The fix is to check if PPID has changed, instead of assuming it's
always 1 for orphaned processes.