unit.git/src, branch 1.33.0 Universal Web Application Server python: Don't decrement a reference to a borrowed object 2024-09-13T16:12:39+00:00 Andrew Clayton a.clayton@nginx.com 2024-09-12T15:48:10+00:00 50b1aca3b8318c58f7073fe11911f1f0d52c651d On some Python 3.11 systems, 3.11.9 & 3.11.10, we were seeing a crash triggered by Py_Finalize() in nxt_python_atexit() when running one of our pytests, namely test/test_python_factory.py::test_python_factory_invalid_callable_value 2024/09/12 15:07:29 [alert] 5452#5452 factory "wsgi_invalid_callable" in module "wsgi" can not be called to fetch callable Fatal Python error: none_dealloc: deallocating None: bug likely caused by a refcount error in a C extension Python runtime state: finalizing (tstate=0x00007f560b88a718) Current thread 0x00007f560bde7ad0 (most recent call first): <no Python frame> 2024/09/12 15:07:29 [alert] 5451#5451 app process 5452 exited on signal 6 (core dumped) This was due to obj = PyDict_GetItemString(PyModule_GetDict(module), callable); in nxt_python_set_target() which returns a *borrowed* reference, then due to the test meaning this is a `None` object we `goto fail` and call Py_DECREF(obj); which then causes `Py_Finalize()` to blow up. The simple fix is to just increment its reference count before the `goto fail`. Note: This problem only showed up under (the various versions of Python we test on); 3.11.9 & 3.11.10. It doesn't show up under; 3.6, 3.7, 3.9, 3.10, 3.12 Cc: Konstantin Pavlov <thresh@nginx.com> Closes: https://github.com/nginx/unit/issues/1413 Fixes: a9aa9e76d ("python: Support application factories") Signed-off-by: Andrew Clayton <a.clayton@nginx.com> 
On some Python 3.11 systems, 3.11.9 & 3.11.10, we were seeing a crash
triggered by Py_Finalize() in nxt_python_atexit() when running one of
our pytests, namely
test/test_python_factory.py::test_python_factory_invalid_callable_value

  2024/09/12 15:07:29 [alert] 5452#5452 factory "wsgi_invalid_callable" in module "wsgi" can not be called to fetch callable
  Fatal Python error: none_dealloc: deallocating None: bug likely caused by a refcount error in a C extension
  Python runtime state: finalizing (tstate=0x00007f560b88a718)

  Current thread 0x00007f560bde7ad0 (most recent call first):
    <no Python frame>
  2024/09/12 15:07:29 [alert] 5451#5451 app process 5452 exited on signal 6 (core dumped)

This was due to

  obj = PyDict_GetItemString(PyModule_GetDict(module), callable);

in nxt_python_set_target() which returns a *borrowed* reference, then
due to the test meaning this is a `None` object we `goto fail` and call

  Py_DECREF(obj);

which then causes `Py_Finalize()` to blow up.

The simple fix is to just increment its reference count before the `goto
fail`.

Note: This problem only showed up under (the various versions of Python
we test on); 3.11.9 & 3.11.10. It doesn't show up under; 3.6, 3.7, 3.9,
3.10, 3.12

Cc: Konstantin Pavlov <thresh@nginx.com>
Closes: https://github.com/nginx/unit/issues/1413
Fixes: a9aa9e76d ("python: Support application factories")
Signed-off-by: Andrew Clayton <a.clayton@nginx.com>
http: Fix router process crash whilst using proxy 2024-09-10T02:12:39+00:00 Zhidao HONG z.hong@f5.com 2024-09-09T15:15:29+00:00 5fde2ff79c92e2bb2ff67e4537640af7d06e73b6 When the client closes the connection before the upstream, the proxy's error handler was calling cleanup operation like peer close and request close twice, this fix ensures the cleanup is performed only once, improving proxy stability. Closes: https://github.com/nginx/unit/issues/828 
When the client closes the connection before the upstream,
the proxy's error handler was calling cleanup operation like
peer close and request close twice, this fix ensures the cleanup
is performed only once, improving proxy stability.

Closes: https://github.com/nginx/unit/issues/828
wasm-wc: Enable environment inheritance 2024-09-04T21:50:59+00:00 Robbie McKinstry thesnowmancometh@gmail.com 2024-08-28T02:00:43+00:00 56c237b347fd0ff3fa182663cbc965e05b158e39 While the C based wasm language module inherits the process environment the Rust based wasm-wasi-component language module did not. One upshot of this is that with wasm-wasi-component you don't get access to any environment variables specified in the Unit configuration. wasm-wasi-component was based on wasmtime 17.0.0. This capability wasn't added to the wasmtime-crate until version 20.0.0. Now that wasm-wasi-component has been updated to a newer wasmtime-crate we can enable this functionality. Closes: https://github.com/nginx/unit/issues/1312 [ Commit message - Andrew ] Signed-off-by: Andrew Clayton <a.clayton@nginx.com> 
While the C based wasm language module inherits the process environment
the Rust based wasm-wasi-component language module did not.

One upshot of this is that with wasm-wasi-component you don't get access
to any environment variables specified in the Unit configuration.

wasm-wasi-component was based on wasmtime 17.0.0. This capability wasn't
added to the wasmtime-crate until version 20.0.0.

Now that wasm-wasi-component has been updated to a newer wasmtime-crate
we can enable this functionality.

Closes: https://github.com/nginx/unit/issues/1312
[ Commit message - Andrew ]
Signed-off-by: Andrew Clayton <a.clayton@nginx.com>
wasm-wc: bump wasmtime to v24 2024-09-04T21:50:59+00:00 Ava Hahn a.hahn@f5.com 2024-08-28T19:50:45+00:00 011071aaa1809f63abdc4287c80843c8d6e7e179 Signed-off-by: Ava Hahn <a.hahn@f5.com> 
Signed-off-by: Ava Hahn <a.hahn@f5.com>
socket: Prevent buffer under-read in nxt_inet_addr() 2024-08-26T14:18:12+00:00 Arjun pkillarjun@protonmail.com 2024-08-23T03:45:18+00:00 932b914618791b6c9648b1066e0cfe4ee6d25cff This was found via ASan. Given a listener address like ":" (or any address where the first character is a colon) we can end up under-reading the addr->start buffer here if (nxt_slow_path(*(buf + length - 1) == '.')) { due to length (essentially the position of the ":" in the string) being 0. Seeing as any address that starts with a ":" is invalid Unit config wise, we should simply reject the address if length == 0 in nxt_sockaddr_inet_parse(). Link: <https://clang.llvm.org/docs/AddressSanitizer.html> Signed-off-by: Arjun <pkillarjun@protonmail.com> [ Commit message - Andrew ] Signed-off-by: Andrew Clayton <a.clayton@nginx.com> 
This was found via ASan.

Given a listener address like ":" (or any address where the first
character is a colon) we can end up under-reading the addr->start
buffer here

  if (nxt_slow_path(*(buf + length - 1) == '.')) {

due to length (essentially the position of the ":" in the string) being
0.

Seeing as any address that starts with a ":" is invalid Unit config
wise, we should simply reject the address if length == 0 in
nxt_sockaddr_inet_parse().

Link: <https://clang.llvm.org/docs/AddressSanitizer.html>
Signed-off-by: Arjun <pkillarjun@protonmail.com>
[ Commit message - Andrew ]
Signed-off-by: Andrew Clayton <a.clayton@nginx.com>
http: Add "if" option to the "match" object 2024-08-20T01:17:24+00:00 Zhidao HONG z.hong@f5.com 2024-08-15T16:29:16+00:00 debd61c3a4f7e5817bf842c2166217929ef80c88 This feature allows users to specify conditions to check if one route is matched. It is used the same way as the "if" option in the access log. Example: { "match": { "if": "`${headers['User-Agent'].split('/')[0] == 'curl'}`" }, "action": { "return": 204 } } 
This feature allows users to specify conditions to check if one
route is matched. It is used the same way as the "if" option in
the access log.

Example:

    {
        "match": {
            "if": "`${headers['User-Agent'].split('/')[0] == 'curl'}`"
        },
        "action": {
            "return": 204
        }
    }
http: Get rid of nxt_http_request_access_log() 2024-08-20T01:17:24+00:00 Zhidao HONG z.hong@f5.com 2024-08-15T16:09:22+00:00 57f939569d3c3db11d8bbc7dd0b45693cbe3344e 






http: Refactor out nxt_tstr_cond_t from the access log module
2024-08-20T01:17:23+00:00

Zhidao HONG
z.hong@f5.com

2024-08-15T16:06:45+00:00

82e168fe01306cf03f8eaba284f31f7285347424

This nxt_tstr_cond_t will be reused for the feature of adding "if"
option to the "match" object. The two "if" options have the same usage.





This nxt_tstr_cond_t will be reused for the feature of adding "if"
option to the "match" object. The two "if" options have the same usage.







var: Remove unused functions and structure fields
2024-08-20T01:17:23+00:00

Zhidao HONG
z.hong@f5.com

2024-04-18T10:34:07+00:00

5f6ae1a189b1736eb7cc35f1ff8018fd8606db9b












http: Refactor access log write
2024-08-20T01:17:23+00:00

Zhidao HONG
z.hong@f5.com

2024-04-18T10:31:04+00:00

ecb3f86c8528a26d770e93bd5296b780981e20ff