mirrors
/
rspamd
mirror of https://github.com/vstakhov/rspamd.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 159 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6035 Commits
28 Branches
Tree: 8766fba694
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '8766fba694'
${ noResults }
rspamd/src/libserver/worker_util.c

worker_util.c 14KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555 
  1. /*-

  2.  * Copyright 2016 Vsevolod Stakhov

  3.  *

  4.  * Licensed under the Apache License, Version 2.0 (the "License");

  5.  * you may not use this file except in compliance with the License.

  6.  * You may obtain a copy of the License at

  7.  *

  8.  *   http://www.apache.org/licenses/LICENSE-2.0

  9.  *

  10.  * Unless required by applicable law or agreed to in writing, software

  11.  * distributed under the License is distributed on an "AS IS" BASIS,

  12.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  13.  * See the License for the specific language governing permissions and

  14.  * limitations under the License.

  15.  */

  16. #include "config.h"

  17. #include "rspamd.h"

  18. #include "message.h"

  19. #include "lua/lua_common.h"

  20. #include "worker_util.h"

  21. #include "unix-std.h"

  22. #include "utlist.h"

  23. #include "ottery.h"

  24. #include "rspamd_control.h"

  25. 

  26. #ifdef WITH_GPERF_TOOLS

  27. #include <gperftools/profiler.h>

  28. #endif

  29. /* sys/resource.h */

  30. #ifdef HAVE_SYS_RESOURCE_H

  31. #include <sys/resource.h>

  32. #endif

  33. /* pwd and grp */

  34. #ifdef HAVE_PWD_H

  35. #include <pwd.h>

  36. #endif

  37. #ifdef HAVE_GRP_H

  38. #include <grp.h>

  39. #endif

  40. #ifdef HAVE_LIBUTIL_H

  41. #include <libutil.h>

  42. #endif

  43. 

  44. /**

  45.  * Return worker's control structure by its type

  46.  * @param type

  47.  * @return worker's control structure or NULL

  48.  */

  49. worker_t *

  50. rspamd_get_worker_by_type (struct rspamd_config *cfg, GQuark type)

  51. {

  52. 	worker_t **cur;

  53. 

  54. 	cur = cfg->compiled_workers;

  55. 	while (cur && *cur) {

  56. 		if (g_quark_from_string ((*cur)->name) == type) {

  57. 			return *cur;

  58. 		}

  59. 		cur++;

  60. 	}

  61. 

  62. 	return NULL;

  63. }

  64. 

  65. sig_atomic_t wanna_die = 0;

  66. 

  67. /*

  68.  * Config reload is designed by sending sigusr2 to active workers and pending shutdown of them

  69.  */

  70. static void

  71. rspamd_worker_usr2_handler (struct rspamd_worker_signal_handler *sigh, void *arg)

  72. {

  73. 	/* Do not accept new connections, preparing to end worker's process */

  74. 	struct timeval tv;

  75. 

  76. 	if (!wanna_die) {

  77. 		tv.tv_sec = SOFT_SHUTDOWN_TIME;

  78. 		tv.tv_usec = 0;

  79. 		wanna_die = 1;

  80. 		rspamd_default_log_function (G_LOG_LEVEL_INFO,

  81. 				sigh->worker->srv->server_pool->tag.tagname,

  82. 				sigh->worker->srv->server_pool->tag.uid,

  83. 				G_STRFUNC,

  84. 				"worker's shutdown is pending in %d sec",

  85. 				SOFT_SHUTDOWN_TIME);

  86. 		event_base_loopexit (sigh->base, &tv);

  87. 		rspamd_worker_stop_accept (sigh->worker);

  88. 	}

  89. }

  90. 

  91. /*

  92.  * Reopen log is designed by sending sigusr1 to active workers and pending shutdown of them

  93.  */

  94. static void

  95. rspamd_worker_usr1_handler (struct rspamd_worker_signal_handler *sigh, void *arg)

  96. {

  97. 	rspamd_log_reopen (sigh->worker->srv->logger);

  98. }

  99. 

  100. static void

  101. rspamd_worker_term_handler (struct rspamd_worker_signal_handler *sigh, void *arg)

  102. {

  103. 	struct timeval tv;

  104. 

  105. 	if (!wanna_die) {

  106. 		rspamd_default_log_function (G_LOG_LEVEL_INFO,

  107. 				sigh->worker->srv->server_pool->tag.tagname,

  108. 				sigh->worker->srv->server_pool->tag.uid,

  109. 				G_STRFUNC,

  110. 				"terminating after receiving signal %s",

  111. 				g_strsignal (sigh->signo));

  112. 		wanna_die = 1;

  113. 		tv.tv_sec = 0;

  114. 		tv.tv_usec = 0;

  115. 

  116. 		event_base_loopexit (sigh->base, &tv);

  117. #ifdef WITH_GPERF_TOOLS

  118. 		ProfilerStop ();

  119. #endif

  120. 		rspamd_worker_stop_accept (sigh->worker);

  121. 	}

  122. }

  123. 

  124. static void

  125. rspamd_worker_signal_handler (int fd, short what, void *arg)

  126. {

  127. 	struct rspamd_worker_signal_handler *sigh =

  128. 			(struct rspamd_worker_signal_handler *) arg;

  129. 	struct rspamd_worker_signal_cb *cb;

  130. 

  131. 	cb = sigh->cb;

  132. 

  133. 	/* Call all signal handlers registered */

  134. 	while (cb) {

  135. 		cb->handler (sigh, cb->handler_data);

  136. 		cb = cb->next;

  137. 	}

  138. }

  139. 

  140. static void

  141. rspamd_worker_ignore_signal (int signo)

  142. {

  143. 	struct sigaction sig;

  144. 

  145. 	sigemptyset (&sig.sa_mask);

  146. 	sigaddset (&sig.sa_mask, signo);

  147. 	sig.sa_handler = SIG_IGN;

  148. 	sig.sa_flags = 0;

  149. 	sigaction (signo, &sig, NULL);

  150. }

  151. 

  152. void

  153. rspamd_worker_set_signal_handler (int signo, struct rspamd_worker *worker,

  154. 		struct event_base *base,

  155. 		void (*handler)(struct rspamd_worker_signal_handler *sigh, void *),

  156. 		void *handler_data)

  157. {

  158. 	struct rspamd_worker_signal_handler *sigh;

  159. 	struct rspamd_worker_signal_cb *cb;

  160. 

  161. 	sigh = g_hash_table_lookup (worker->signal_events, GINT_TO_POINTER (signo));

  162. 

  163. 	if (sigh == NULL) {

  164. 		sigh = g_malloc0 (sizeof (*sigh));

  165. 		sigh->signo = signo;

  166. 		sigh->worker = worker;

  167. 		sigh->base = base;

  168. 		sigh->enabled = TRUE;

  169. 

  170. 		signal_set (&sigh->ev, signo, rspamd_worker_signal_handler, sigh);

  171. 		event_base_set (base, &sigh->ev);

  172. 		signal_add (&sigh->ev, NULL);

  173. 

  174. 		g_hash_table_insert (worker->signal_events,

  175. 				GINT_TO_POINTER (signo),

  176. 				sigh);

  177. 	}

  178. 

  179. 	cb = g_malloc0 (sizeof (*cb));

  180. 	cb->handler = handler;

  181. 	cb->handler_data = handler_data;

  182. 	DL_APPEND (sigh->cb, cb);

  183. }

  184. 

  185. static void

  186. rspamd_worker_init_signals (struct rspamd_worker *worker, struct event_base *base)

  187. {

  188. 	struct sigaction signals;

  189. 	/* We ignore these signals in the worker */

  190. 	rspamd_worker_ignore_signal (SIGPIPE);

  191. 	rspamd_worker_ignore_signal (SIGALRM);

  192. 	rspamd_worker_ignore_signal (SIGCHLD);

  193. 

  194. 	/* A set of terminating signals */

  195. 	rspamd_worker_set_signal_handler (SIGTERM, worker, base,

  196. 			rspamd_worker_term_handler, NULL);

  197. 	rspamd_worker_set_signal_handler (SIGINT, worker, base,

  198. 			rspamd_worker_term_handler, NULL);

  199. 	rspamd_worker_set_signal_handler (SIGHUP, worker, base,

  200. 			rspamd_worker_term_handler, NULL);

  201. 

  202. 	/* Special purpose signals */

  203. 	rspamd_worker_set_signal_handler (SIGUSR1, worker, base,

  204. 			rspamd_worker_usr1_handler, NULL);

  205. 	rspamd_worker_set_signal_handler (SIGUSR2, worker, base,

  206. 			rspamd_worker_usr2_handler, NULL);

  207. 

  208. 	/* Unblock all signals processed */

  209. 	sigemptyset (&signals.sa_mask);

  210. 	sigaddset (&signals.sa_mask, SIGTERM);

  211. 	sigaddset (&signals.sa_mask, SIGINT);

  212. 	sigaddset (&signals.sa_mask, SIGHUP);

  213. 	sigaddset (&signals.sa_mask, SIGCHLD);

  214. 	sigaddset (&signals.sa_mask, SIGUSR1);

  215. 	sigaddset (&signals.sa_mask, SIGUSR2);

  216. 	sigaddset (&signals.sa_mask, SIGALRM);

  217. 	sigaddset (&signals.sa_mask, SIGPIPE);

  218. 

  219. 	sigprocmask (SIG_UNBLOCK, &signals.sa_mask, NULL);

  220. }

  221. 

  222. struct event_base *

  223. rspamd_prepare_worker (struct rspamd_worker *worker, const char *name,

  224. 	void (*accept_handler)(int, short, void *))

  225. {

  226. 	struct event_base *ev_base;

  227. 	struct event *accept_event;

  228. 	GList *cur;

  229. 	gint listen_socket;

  230. 

  231. #ifdef WITH_PROFILER

  232. 	extern void _start (void), etext (void);

  233. 	monstartup ((u_long) & _start, (u_long) & etext);

  234. #endif

  235. 

  236. 	gperf_profiler_init (worker->srv->cfg, name);

  237. 

  238. 	worker->srv->pid = getpid ();

  239. 	worker->signal_events = g_hash_table_new_full (g_direct_hash, g_direct_equal,

  240. 			NULL, g_free);

  241. 

  242. 	ev_base = event_init ();

  243. 

  244. 	rspamd_worker_init_signals (worker, ev_base);

  245. 	rspamd_control_worker_add_default_handler (worker, ev_base);

  246. 

  247. 	/* Accept all sockets */

  248. 	if (accept_handler) {

  249. 		cur = worker->cf->listen_socks;

  250. 		while (cur) {

  251. 			listen_socket = GPOINTER_TO_INT (cur->data);

  252. 			if (listen_socket != -1) {

  253. 				accept_event = g_slice_alloc0 (sizeof (struct event));

  254. 				event_set (accept_event, listen_socket, EV_READ | EV_PERSIST,

  255. 						accept_handler, worker);

  256. 				event_base_set (ev_base, accept_event);

  257. 				event_add (accept_event, NULL);

  258. 				worker->accept_events = g_list_prepend (worker->accept_events,

  259. 						accept_event);

  260. 			}

  261. 			cur = g_list_next (cur);

  262. 		}

  263. 	}

  264. 

  265. 	return ev_base;

  266. }

  267. 

  268. void

  269. rspamd_worker_stop_accept (struct rspamd_worker *worker)

  270. {

  271. 	GList *cur;

  272. 	struct event *event;

  273. 	GHashTableIter it;

  274. 	struct rspamd_worker_signal_handler *sigh;

  275. 	gpointer k, v;

  276. 

  277. 	/* Remove all events */

  278. 	cur = worker->accept_events;

  279. 	while (cur) {

  280. 		event = cur->data;

  281. 		event_del (event);

  282. 		cur = g_list_next (cur);

  283. 		g_slice_free1 (sizeof (struct event), event);

  284. 	}

  285. 

  286. 	if (worker->accept_events != NULL) {

  287. 		g_list_free (worker->accept_events);

  288. 	}

  289. 

  290. 	g_hash_table_iter_init (&it, worker->signal_events);

  291. 	while (g_hash_table_iter_next (&it, &k, &v)) {

  292. 		sigh = (struct rspamd_worker_signal_handler *)v;

  293. 		g_hash_table_iter_steal (&it);

  294. 		if (sigh->enabled) {

  295. 			event_del (&sigh->ev);

  296. 		}

  297. 		g_free (sigh);

  298. 	}

  299. 	g_hash_table_unref (worker->signal_events);

  300. }

  301. 

  302. void

  303. rspamd_controller_send_error (struct rspamd_http_connection_entry *entry,

  304. 	gint code, const gchar *error_msg, ...)

  305. {

  306. 	struct rspamd_http_message *msg;

  307. 	va_list args;

  308. 

  309. 	msg = rspamd_http_new_message (HTTP_RESPONSE);

  310. 

  311. 	va_start (args, error_msg);

  312. 	msg->status = rspamd_fstring_new ();

  313. 	rspamd_vprintf_fstring (&msg->status, error_msg, args);

  314. 	va_end (args);

  315. 

  316. 	msg->date = time (NULL);

  317. 	msg->code = code;

  318. 	msg->body = rspamd_fstring_new ();

  319. 	rspamd_printf_fstring (&msg->body, "{\"error\":\"%V\"}", msg->status);

  320. 	rspamd_http_connection_reset (entry->conn);

  321. 	rspamd_http_connection_write_message (entry->conn,

  322. 		msg,

  323. 		NULL,

  324. 		"application/json",

  325. 		entry,

  326. 		entry->conn->fd,

  327. 		entry->rt->ptv,

  328. 		entry->rt->ev_base);

  329. 	entry->is_reply = TRUE;

  330. }

  331. 

  332. void

  333. rspamd_controller_send_string (struct rspamd_http_connection_entry *entry,

  334. 	const gchar *str)

  335. {

  336. 	struct rspamd_http_message *msg;

  337. 

  338. 	msg = rspamd_http_new_message (HTTP_RESPONSE);

  339. 	msg->date = time (NULL);

  340. 	msg->code = 200;

  341. 	msg->status = rspamd_fstring_new_init ("OK", 2);

  342. 	msg->body = rspamd_fstring_new_init (str, strlen (str));

  343. 	rspamd_http_connection_reset (entry->conn);

  344. 	rspamd_http_connection_write_message (entry->conn,

  345. 		msg,

  346. 		NULL,

  347. 		"application/json",

  348. 		entry,

  349. 		entry->conn->fd,

  350. 		entry->rt->ptv,

  351. 		entry->rt->ev_base);

  352. 	entry->is_reply = TRUE;

  353. }

  354. 

  355. void

  356. rspamd_controller_send_ucl (struct rspamd_http_connection_entry *entry,

  357. 	ucl_object_t *obj)

  358. {

  359. 	struct rspamd_http_message *msg;

  360. 

  361. 	msg = rspamd_http_new_message (HTTP_RESPONSE);

  362. 	msg->date = time (NULL);

  363. 	msg->code = 200;

  364. 	msg->status = rspamd_fstring_new_init ("OK", 2);

  365. 	msg->body = rspamd_fstring_sized_new (BUFSIZ);

  366. 	rspamd_ucl_emit_fstring (obj, UCL_EMIT_JSON_COMPACT, &msg->body);

  367. 	rspamd_http_connection_reset (entry->conn);

  368. 	rspamd_http_connection_write_message (entry->conn,

  369. 		msg,

  370. 		NULL,

  371. 		"application/json",

  372. 		entry,

  373. 		entry->conn->fd,

  374. 		entry->rt->ptv,

  375. 		entry->rt->ev_base);

  376. 	entry->is_reply = TRUE;

  377. }

  378. 

  379. static void

  380. rspamd_worker_drop_priv (struct rspamd_main *rspamd_main)

  381. {

  382. 	if (rspamd_main->is_privilleged) {

  383. 		if (setgid (rspamd_main->workers_gid) == -1) {

  384. 			msg_err_main ("cannot setgid to %d (%s), aborting",

  385. 					(gint) rspamd_main->workers_gid,

  386. 					strerror (errno));

  387. 			exit (-errno);

  388. 		}

  389. 		if (rspamd_main->cfg->rspamd_user &&

  390. 				initgroups (rspamd_main->cfg->rspamd_user, rspamd_main->workers_gid) ==

  391. 						-1) {

  392. 			msg_err_main ("initgroups failed (%s), aborting", strerror (errno));

  393. 			exit (-errno);

  394. 		}

  395. 		if (setuid (rspamd_main->workers_uid) == -1) {

  396. 			msg_err_main ("cannot setuid to %d (%s), aborting",

  397. 					(gint) rspamd_main->workers_uid,

  398. 					strerror (errno));

  399. 			exit (-errno);

  400. 		}

  401. 	}

  402. }

  403. 

  404. static void

  405. rspamd_worker_set_limits (struct rspamd_main *rspamd_main,

  406. 		struct rspamd_worker_conf *cf)

  407. {

  408. 	struct rlimit rlmt;

  409. 

  410. 	if (cf->rlimit_nofile != 0) {

  411. 		rlmt.rlim_cur = (rlim_t) cf->rlimit_nofile;

  412. 		rlmt.rlim_max = (rlim_t) cf->rlimit_nofile;

  413. 

  414. 		if (setrlimit (RLIMIT_NOFILE, &rlmt) == -1) {

  415. 			msg_warn_main ("cannot set files rlimit: %d, %s",

  416. 					cf->rlimit_nofile,

  417. 					strerror (errno));

  418. 		}

  419. 	}

  420. 

  421. 	if (rspamd_main->cores_throttling) {

  422. 		msg_info_main ("disable core files for the new worker, as limits are reached");

  423. 		rlmt.rlim_cur = 0;

  424. 		rlmt.rlim_max = 0;

  425. 

  426. 		if (setrlimit (RLIMIT_CORE, &rlmt) == -1) {

  427. 			msg_warn_main ("cannot disable core: %s",

  428. 					strerror (errno));

  429. 		}

  430. 	}

  431. 	else {

  432. 		if (cf->rlimit_maxcore != 0) {

  433. 			rlmt.rlim_cur = (rlim_t) cf->rlimit_maxcore;

  434. 			rlmt.rlim_max = (rlim_t) cf->rlimit_maxcore;

  435. 

  436. 			if (setrlimit (RLIMIT_CORE, &rlmt) == -1) {

  437. 				msg_warn_main ("cannot set max core rlimit: %d, %s",

  438. 						cf->rlimit_maxcore,

  439. 						strerror (errno));

  440. 			}

  441. 		}

  442. 	}

  443. }

  444. 

  445. struct rspamd_worker *

  446. rspamd_fork_worker (struct rspamd_main *rspamd_main,

  447. 		struct rspamd_worker_conf *cf,

  448. 		guint index,

  449. 		struct event_base *ev_base)

  450. {

  451. 	struct rspamd_worker *wrk;

  452. 	gint rc;

  453. 	/* Starting worker process */

  454. 	wrk = (struct rspamd_worker *) g_malloc0 (sizeof (struct rspamd_worker));

  455. 

  456. 	if (!rspamd_socketpair (wrk->control_pipe)) {

  457. 		msg_err ("socketpair failure: %s", strerror (errno));

  458. 		exit (-errno);

  459. 	}

  460. 

  461. 	if (!rspamd_socketpair (wrk->srv_pipe)) {

  462. 		msg_err ("socketpair failure: %s", strerror (errno));

  463. 		exit (-errno);

  464. 	}

  465. 

  466. 	wrk->srv = rspamd_main;

  467. 	wrk->type = cf->type;

  468. 	wrk->cf = g_malloc (sizeof (struct rspamd_worker_conf));

  469. 	memcpy (wrk->cf, cf, sizeof (struct rspamd_worker_conf));

  470. 	wrk->index = index;

  471. 	wrk->ctx = cf->ctx;

  472. 

  473. 	wrk->pid = fork ();

  474. 

  475. 	switch (wrk->pid) {

  476. 	case 0:

  477. 		/* Update pid for logging */

  478. 		rspamd_log_update_pid (cf->type, rspamd_main->logger);

  479. 		/* Remove the inherited event base */

  480. 		event_reinit (rspamd_main->ev_base);

  481. 		event_base_free (rspamd_main->ev_base);

  482. 		/* Lock statfile pool if possible XXX */

  483. 		/* Init PRNG after fork */

  484. 		rc = ottery_init (rspamd_main->cfg->libs_ctx->ottery_cfg);

  485. 		if (rc != OTTERY_ERR_NONE) {

  486. 			msg_err_main ("cannot initialize PRNG: %d", rc);

  487. 			g_assert (0);

  488. 		}

  489. 

  490. 		g_random_set_seed (ottery_rand_uint32 ());

  491. 		/* Drop privilleges */

  492. 		rspamd_worker_drop_priv (rspamd_main);

  493. 		/* Set limits */

  494. 		rspamd_worker_set_limits (rspamd_main, cf);

  495. 		setproctitle ("%s process", cf->worker->name);

  496. 		rspamd_pidfile_close (rspamd_main->pfh);

  497. 		/* Do silent log reopen to avoid collisions */

  498. 		rspamd_log_close (rspamd_main->logger);

  499. 		rspamd_log_open (rspamd_main->logger);

  500. 		wrk->start_time = rspamd_get_calendar_ticks ();

  501. 

  502. #if ((GLIB_MAJOR_VERSION == 2) && (GLIB_MINOR_VERSION <= 30))

  503. # if (GLIB_MINOR_VERSION > 20)

  504. 		/* Ugly hack for old glib */

  505. 		if (!g_thread_get_initialized ()) {

  506. 			g_thread_init (NULL);

  507. 		}

  508. # else

  509. 		g_thread_init (NULL);

  510. # endif

  511. #endif

  512. 		msg_info_main ("starting %s process %P", cf->worker->name, getpid ());

  513. 		/* Close parent part of socketpair */

  514. 		close (wrk->control_pipe[0]);

  515. 		close (wrk->srv_pipe[0]);

  516. 		rspamd_socket_nonblocking (wrk->control_pipe[1]);

  517. 		rspamd_socket_nonblocking (wrk->srv_pipe[1]);

  518. 		/* Execute worker */

  519. 		cf->worker->worker_start_func (wrk);

  520. 		exit (EXIT_FAILURE);

  521. 		break;

  522. 	case -1:

  523. 		msg_err_main ("cannot fork main process. %s", strerror (errno));

  524. 		rspamd_pidfile_remove (rspamd_main->pfh);

  525. 		exit (-errno);

  526. 		break;

  527. 	default:

  528. 		/* Close worker part of socketpair */

  529. 		close (wrk->control_pipe[1]);

  530. 		close (wrk->srv_pipe[1]);

  531. 		rspamd_socket_nonblocking (wrk->control_pipe[0]);

  532. 		rspamd_socket_nonblocking (wrk->srv_pipe[0]);

  533. 		rspamd_srv_start_watching (wrk, ev_base);

  534. 		/* Insert worker into worker's table, pid is index */

  535. 		g_hash_table_insert (rspamd_main->workers, GSIZE_TO_POINTER (

  536. 				wrk->pid), wrk);

  537. 		break;

  538. 	}

  539. 

  540. 	return wrk;

  541. }

  542. 

  543. void

  544. rspamd_worker_block_signals (void)

  545. {

  546. 	sigset_t set;

  547. 

  548. 	sigemptyset (&set);

  549. 	sigaddset (&set, SIGTERM);

  550. 	sigaddset (&set, SIGINT);

  551. 	sigaddset (&set, SIGHUP);

  552. 	sigaddset (&set, SIGUSR1);

  553. 	sigaddset (&set, SIGUSR2);

  554. 	sigprocmask (SIG_BLOCK, &set, NULL);

  555. }