Date: Fri, 21 Jun 2019 08:53:51 +0000 From: bugzilla-noreply@freebsd.org To: ports-bugs@FreeBSD.org Subject: [Bug 238739] www/nginx www/nginx-devel: add support for FreeBSD accept filters Message-ID: <bug-238739-7788@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D238739 Bug ID: 238739 Summary: www/nginx www/nginx-devel: add support for FreeBSD accept filters Product: Ports & Packages Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Some People Priority: --- Component: Individual Port(s) Assignee: joneum@FreeBSD.org Reporter: jdc@koitsu.org Assignee: joneum@FreeBSD.org Flags: maintainer-feedback?(joneum@FreeBSD.org) Created attachment 205253 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D205253&action= =3Dedit nginx.in diff (for both www/nginx and www/nginx-devel) I noticed that nginx's rc.d script had no support for loading accf_http.ko = and accf_data.ko kernel modules (see accf_http(9) and accf_data(9)) dynamically= at start. nginx can use these via the "accept_filter=3Dxxx" argument in the "listen" directive. Reference: http://nginx.org/en/docs/http/ngx_http_core_module.html#listen Attached is an svn diff/patch for www/{nginx,nginx-devel}/files/nginx.in th= at adds loading of this module when nginx_http_accept_enable=3D"yes" in rc.con= f. It is based on www/apache24/files/apache24.in which has worked for literally decades. I did not add the "eval" line supporting this shim via nginx profiles becau= se I don't use/understand them. But it should be a single line if needed. Note: testing this was annoying because for whatever reason on stable/11, o= nce accf_http.ko and accf_data.ko are loaded, they cannot be unloaded (Operation not permitted, even when kern.securelevel =3D=3D -1, no processes using the= filters are even running nor any lingering TCP sessions in TIME_WAIT or other state= s).=20 Just something to be aware of. Thanks. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-238739-7788>