[Bug 1838246] Re: Nginx 1.14.0 fails to start if ipv6 support on host is disabled

Andreas Hasenack andreas at canonical.com
Tue Jul 30 13:05:44 UTC 2019

Thanks for filing this bug in Ubuntu.

I installed nginx 1.14.0-0ubuntu1 from the release pocket of Bionic, i.e., no updates:
root at bionic-nginx:~# apt-cache policy nginx
  Installed: 1.14.0-0ubuntu1
  Candidate: 1.14.0-0ubuntu1
  Version table:
 *** 1.14.0-0ubuntu1 500
        500 http://br.archive.ubuntu.com/ubuntu bionic/main amd64 Packages

And it already has the listen configuration for ipv6:
root at bionic-nginx:~# grep listen /etc/nginx/sites-enabled/default 
	listen 80 default_server;
	listen [::]:80 default_server;
	# listen 443 ssl default_server;
	# listen [::]:443 ssl default_server;
#	listen 80;
#	listen [::]:80;

I then did a quick "git blame" on that file in the git repository, and that configuration has been there since at least 2014, if I'm reading this correctly:
10:01 $ git blame debian/conf/sites-available/default|grep listen
659cb474c (Kartik Mistry        2013-04-25 12:51:45 +0530 22) 	listen 80 default_server;
4f4fcce28 (Christos Trochalakis 2014-10-16 13:34:29 +0300 23) 	listen [::]:80 default_server;
4f4fcce28 (Christos Trochalakis 2014-10-16 13:34:29 +0300 27) 	# listen 443 ssl default_server;
4f4fcce28 (Christos Trochalakis 2014-10-16 13:34:29 +0300 28) 	# listen [::]:443 ssl default_server;
4f4fcce28 (Christos Trochalakis 2014-10-16 13:34:29 +0300 80) #	listen 80;
4f4fcce28 (Christos Trochalakis 2014-10-16 13:34:29 +0300 81) #	listen [::]:80;

Furthermore, the change introduced in 1.14.0-0ubuntu1.3 is just a
rebuild with the newer openssl library that was updated in bionic:

nginx (1.14.0-0ubuntu1.3) bionic; urgency=medium

  * No changes rebuild (to build against OpenSSL 1.1.1 in Bionic)
    (LP: #1836366)

 -- Thomas Ward <teward at ubuntu.com>  Fri, 12 Jul 2019 14:18:43 -0400

If all of a sudden ipv6 was required in an update to a stable release, I'd agree it's surprising to say the least. Are you sure your server didn't get ipv6 disabled before this update, and it was only noticed when nginx was restarted? Has the server always had ipv6 disabled?

If it wasn't failing before, and started to fail now with just the
rebuild with new openssl, that's something that has to be investigated,
but I just want to clear up that point before we dig in, given the above
details I have given.


** Changed in: nginx (Ubuntu)
       Status: New => Incomplete

You received this bug notification because you are a member of Ubuntu
Server, which is subscribed to nginx in Ubuntu.

  Nginx 1.14.0 fails to start if ipv6 support on host is disabled

To manage notifications about this bug go to:

More information about the Ubuntu-server-bugs mailing list