 9dea54a9d6
			
		
	
	
	9dea54a9d6
	
	
	
		
			
			## Dropping SSPI auth support SSPI authentication relied on Microsoft Windows support, removal started in https://codeberg.org/forgejo/forgejo/pulls/5353, because it was broken anyway. We have no knowledge of any users using SSPI authentication. However, if you somehow managed to run Forgejo on Windows, or want to upgrade from a Gitea version which does, please ensure that you do not use SSPI as an authentication mechanism for user accounts. Feel free to reach out if you need assistance. Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/7148 Reviewed-by: Gusted <gusted@noreply.codeberg.org> Reviewed-by: 0ko <0ko@noreply.codeberg.org> Co-authored-by: Otto Richter <otto@codeberg.org> Co-committed-by: Otto Richter <otto@codeberg.org>
		
			
				
	
	
		
			113 lines
		
	
	
	
		
			2.9 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
			
		
		
	
	
			113 lines
		
	
	
	
		
			2.9 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
| // Copyright 2019 The Gitea Authors. All rights reserved.
 | |
| // SPDX-License-Identifier: MIT
 | |
| 
 | |
| // This code is heavily inspired by the archived gofacebook/gracenet/net.go handler
 | |
| 
 | |
| package graceful
 | |
| 
 | |
| import (
 | |
| 	"fmt"
 | |
| 	"net"
 | |
| 	"os"
 | |
| 	"os/exec"
 | |
| 	"strconv"
 | |
| 	"strings"
 | |
| 	"sync"
 | |
| 	"syscall"
 | |
| 	"time"
 | |
| )
 | |
| 
 | |
| var killParent sync.Once
 | |
| 
 | |
| // KillParent sends the kill signal to the parent process if we are a child
 | |
| func KillParent() {
 | |
| 	killParent.Do(func() {
 | |
| 		if GetManager().IsChild() {
 | |
| 			ppid := syscall.Getppid()
 | |
| 			if ppid > 1 {
 | |
| 				_ = syscall.Kill(ppid, syscall.SIGTERM)
 | |
| 			}
 | |
| 		}
 | |
| 	})
 | |
| }
 | |
| 
 | |
| // RestartProcess starts a new process passing it the active listeners. It
 | |
| // doesn't fork, but starts a new process using the same environment and
 | |
| // arguments as when it was originally started. This allows for a newly
 | |
| // deployed binary to be started. It returns the pid of the newly started
 | |
| // process when successful.
 | |
| func RestartProcess() (int, error) {
 | |
| 	listeners := getActiveListeners()
 | |
| 
 | |
| 	// Extract the fds from the listeners.
 | |
| 	files := make([]*os.File, len(listeners))
 | |
| 	for i, l := range listeners {
 | |
| 		var err error
 | |
| 		// Now, all our listeners actually have File() functions so instead of
 | |
| 		// individually casting we just use a hacky interface
 | |
| 		files[i], err = l.(filer).File()
 | |
| 		if err != nil {
 | |
| 			return 0, err
 | |
| 		}
 | |
| 
 | |
| 		if unixListener, ok := l.(*net.UnixListener); ok {
 | |
| 			unixListener.SetUnlinkOnClose(false)
 | |
| 		}
 | |
| 		// Remember to close these at the end.
 | |
| 		defer func(i int) {
 | |
| 			_ = files[i].Close()
 | |
| 		}(i)
 | |
| 	}
 | |
| 
 | |
| 	// Use the original binary location. This works with symlinks such that if
 | |
| 	// the file it points to has been changed we will use the updated symlink.
 | |
| 	argv0, err := exec.LookPath(os.Args[0])
 | |
| 	if err != nil {
 | |
| 		return 0, err
 | |
| 	}
 | |
| 
 | |
| 	// Pass on the environment and replace the old count key with the new one.
 | |
| 	var env []string
 | |
| 	for _, v := range os.Environ() {
 | |
| 		if !strings.HasPrefix(v, listenFDsEnv+"=") {
 | |
| 			env = append(env, v)
 | |
| 		}
 | |
| 	}
 | |
| 	env = append(env, fmt.Sprintf("%s=%d", listenFDsEnv, len(listeners)))
 | |
| 
 | |
| 	if notifySocketAddr != "" {
 | |
| 		env = append(env, fmt.Sprintf("%s=%s", notifySocketEnv, notifySocketAddr))
 | |
| 	}
 | |
| 
 | |
| 	if watchdogTimeout != 0 {
 | |
| 		watchdogStr := strconv.FormatInt(int64(watchdogTimeout/time.Millisecond), 10)
 | |
| 		env = append(env, fmt.Sprintf("%s=%s", watchdogTimeoutEnv, watchdogStr))
 | |
| 	}
 | |
| 
 | |
| 	sb := &strings.Builder{}
 | |
| 	for i, unlink := range getActiveListenersToUnlink() {
 | |
| 		if !unlink {
 | |
| 			continue
 | |
| 		}
 | |
| 		_, _ = sb.WriteString(strconv.Itoa(i))
 | |
| 		_, _ = sb.WriteString(",")
 | |
| 	}
 | |
| 	unlinkStr := sb.String()
 | |
| 	if len(unlinkStr) > 0 {
 | |
| 		unlinkStr = unlinkStr[:len(unlinkStr)-1]
 | |
| 		env = append(env, fmt.Sprintf("%s=%s", unlinkFDsEnv, unlinkStr))
 | |
| 	}
 | |
| 
 | |
| 	allFiles := append([]*os.File{os.Stdin, os.Stdout, os.Stderr}, files...)
 | |
| 	process, err := os.StartProcess(argv0, os.Args, &os.ProcAttr{
 | |
| 		Dir:   originalWD,
 | |
| 		Env:   env,
 | |
| 		Files: allFiles,
 | |
| 	})
 | |
| 	if err != nil {
 | |
| 		return 0, err
 | |
| 	}
 | |
| 	processPid := process.Pid
 | |
| 	_ = process.Release() // no wait, so release
 | |
| 	return processPid, nil
 | |
| }
 |