go to bug id or search bugs for
When multiple address listed, only work of fist call (of each child), then connection from not-first address fails.
Add a Patch
Add a Pull Request
Automatic comment on behalf of remi
Log: Fix bug #68751 listen.allowed_clients is broken
The line 40, where int_addr_t is defined, seems to be redundant after this change.
40 typedef unsigned int in_addr_t;
Or am I mistaken?
@samo: you're right.
I can confirm this now works. I no longer see any 'Connection disallowed' errors and all requests succeed.
I have a problem with PHP-FPM which seems to be connected to this bug. The detailed version is on https://github.com/gplessis/dotdeb-php5/issues/69 , the short of it is:
When multiple addresses are listed in listen.allowed_clients for just one FPM pool config, FPM terminates any further connections from any IP addresses of any pool after one request to any of the pools (as far as I can tell). Only if all pools only have one IP address in listen.allowed_clients FPM seems to work normally again.
This has lead to a complete FPM failure on all of my servers without a hint of where the problem occured, except it is somehow related to FPM, as CLI still worked.
In my opinion, PHP 5.5.20 should not be further distributed as long as this bug is contained in it, as existing configurations are likely to break - multiple IPs in listen.allowed_clients seem a common configuration choice, and mitigating this problem is not straightforward.
@iquito: so please, test the fix.
Sorry, but I have never done anything like it - that is why I use debian packages, I have never compiled anything myself and only use well-tested repositories.
I just wanted to describe the error, because I am a "regular user" of PHP who tries to be cautious with upgrading and configuration because of limited resources and in-depth knowledge, but was still stuck with this problem and it had a catastrophic effect on my web servers. That is why I have already tested for hours to somehow "isolate" what happens and make an accurate description, so somebody more experienced and familiar with PHP can find and understand the problem behind it.
@iquito : I'll try to provide (patched 5.5.20 / 5.5.21 if available) packages in the next few days, so that we can provide feedback to @remi.
FYI, a patched 5.5.20 fixes the issue.
5.5.20-2.el7.remi bug is still there. Linux 3.10.0-123.13.2.el7.x86_64 #1 SMP Thu Dec 18 14:09:13 UTC 2014 x86_64 x86_64 x86_64 GNU/Linux; CentOS Linux release 7.0.1406 (Core).
@bananoff so update to 5.5.21
@remi tnx, 5.5.21-1.el7.remi works!