Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
home:microchip
nginx
nginx.changes
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File nginx.changes of Package nginx
------------------------------------------------------------------- Tue Apr 02 19:07:00 UTC 2024 - neutrino8@opensuse.org - Update to version 1.25.5 ------------------------------------------------------------------- Wed Feb 14 18:20:00 UTC 2024 - neutrino8@opensuse.org - Update to version 1.25.4 ------------------------------------------------------------------- Tue Oct 24 16:00:00 UTC 2023 - neutrino8@opensuse.org - Update to version 1.25.3 ------------------------------------------------------------------- Tue Aug 15 18:45:00 UTC 2023 - neutrino8@opensuse.org - Update to version 1.25.2 ------------------------------------------------------------------- Tue Jun 13 17:48:00 UTC 2023 - neutrino8@opensuse.org - Update to version 1.25.1 ------------------------------------------------------------------- Tue May 23 16:40:00 UTC 2023 - neutrino8@opensuse.org - Update to version 1.25.0 ------------------------------------------------------------------- Tue Mar 28 19:10:00 UTC 2023 - neutrino8@opensuse.org - Update to version 1.23.4 ------------------------------------------------------------------- Tue Dec 13 19:20:00 UTC 2022 - neutrino8@opensuse.org - Update to version 1.23.3 * Bugfix: an error might occur when reading PROXY protocol version 2 header with large number of TLVs. * Bugfix: a segmentation fault might occur in a worker process if SSI was used to process subrequests created by other modules. Thanks to Ciel Zhao. * Workaround: when a hostname used in the "listen" directive resolves to multiple addresses, nginx now ignores duplicates within these addresses. * Bugfix: nginx might hog CPU during unbuffered proxying if SSL connections to backends were used. ------------------------------------------------------------------- Wed Oct 19 13:49:00 UTC 2022 - neutrino8@opensuse.org - Update to version 1.23.2 * Security: processing of a specially crafted mp4 file by the ngx_http_mp4_module might cause a worker process crash, worker process memory disclosure, or might have potential other impact (CVE-2022-41741, CVE-2022-41742). * Feature: the "$proxy_protocol_tlv_..." variables. * Feature: TLS session tickets encryption keys are now automatically rotated when using shared memory in the "ssl_session_cache" directive. * Change: the logging level of the "bad record type" SSL errors has been lowered from "crit" to "info". Thanks to Murilo Andrade. * Change: now when using shared memory in the "ssl_session_cache" directive the "could not allocate new session" errors are logged at the "warn" level instead of "alert" and not more often than once per second. * Bugfix: nginx/Windows could not be built with OpenSSL 3.0.x. * Bugfix: in logging of the PROXY protocol errors. Thanks to Sergey Brester. * Workaround: shared memory from the "ssl_session_cache" directive was spent on sessions using TLS session tickets when using TLSv1.3 with OpenSSL. * Workaround: timeout specified with the "ssl_session_timeout" directive did not work when using TLSv1.3 with OpenSSL or BoringSSL. ------------------------------------------------------------------- Tue Jul 19 15:19:00 UTC 2022 - neutrino8@opensuse.org - Update to version 1.23.1 * Feature: memory usage optimization in configurations with SSL proxying. * Feature: looking up of IPv4 addresses while resolving now can be disabled with the "ipv4=off" parameter of the "resolver" directive. * Change: the logging level of the "bad key share", "bad extension", "bad cipher", and "bad ecpoint" SSL errors has been lowered from "crit" to "info". * Bugfix: while returning byte ranges nginx did not remove the "Content-Range" header line if it was present in the original backend response. * Bugfix: a proxied response might be truncated during reconfiguration on Linux; the bug had appeared in 1.17.5. ------------------------------------------------------------------- Tue Jun 21 17:09:00 UTC 2022 - neutrino8@opensuse.org - Update to version 1.23.0 * Change in internal API: now header lines are represented as linked lists. * Change: now nginx combines arbitrary header lines with identical names when sending to FastCGI, SCGI, and uwsgi backends, in the $r->header_in() method of the ngx_http_perl_module, and during lookup of the "$http_...", "$sent_http_...", "$sent_trailer_...", "$upstream_http_...", and "$upstream_trailer_..." variables. * Bugfix: if there were multiple "Vary" header lines in the backend response, nginx only used the last of them when caching. * Bugfix: if there were multiple "WWW-Authenticate" header lines in the backend response and errors with code 401 were intercepted or the "auth_request" directive was used, nginx only sent the first of the header lines to the client. * Change: the logging level of the "application data after close notify" SSL errors has been lowered from "crit" to "info". * Bugfix: connections might hang if nginx was built on Linux 2.6.17 or newer, but was used on systems without EPOLLRDHUP support, notably with epoll emulation layers; the bug had appeared in 1.17.5. Thanks to Marcus Ball. * Bugfix: nginx did not cache the response if the "Expires" response header line disabled caching, but following "Cache-Control" header line enabled caching. ------------------------------------------------------------------- Tue Jan 25 17:03:00 UTC 2022 - neutrino8@opensuse.org - Update to version 1.21.6 * Bugfix: when using EPOLLEXCLUSIVE on Linux client connections were unevenly distributed among worker processes. * Bugfix: nginx returned the "Connection: keep-alive" header line in responses during graceful shutdown of old worker processes. * Bugfix: in the "ssl_session_ticket_key" when using TLSv1.3. ------------------------------------------------------------------- Tue Dec 28 16:11:00 UTC 2021 - neutrino8@opensuse.org - Update to version 1.21.5 * Change: now nginx is built with the PCRE2 library by default. * Change: now nginx always uses sendfile(SF_NODISKIO) on FreeBSD. * Feature: support for sendfile(SF_NOCACHE) on FreeBSD. * Feature: the $ssl_curve variable. * Bugfix: connections might hang when using HTTP/2 without SSL with the "sendfile" and "aio" directives. ------------------------------------------------------------------- Tue Nov 02 14:45:00 UTC 2021 - neutrino8@opensuse.org - Update to version 1.21.4 * Change: support for NPN instead of ALPN to establish HTTP/2 connections has been removed. * Change: now nginx rejects SSL connections if ALPN is used by the client, but no supported protocols can be negotiated. * Change: the default value of the "sendfile_max_chunk" directive was changed to 2 megabytes. * Feature: the "proxy_half_close" directive in the stream module. * Feature: the "ssl_alpn" directive in the stream module. * Feature: the $ssl_alpn_protocol variable. * Feature: support for SSL_sendfile() when using OpenSSL 3.0. * Feature: the "mp4_start_key_frame" directive in the ngx_http_mp4_module. Thanks to Tracey Jaquith. * Bugfix: in the $content_length variable when using chunked transfer encoding. * Bugfix: after receiving a response with incorrect length from a proxied backend nginx might nevertheless cache the connection. Thanks to Awdhesh Mathpal. * Bugfix: invalid headers from backends were logged at the "info" level instead of "error"; the bug had appeared in 1.21.1. * Bugfix: requests might hang when using HTTP/2 and the "aio_write" directive. ------------------------------------------------------------------- Tue Sep 07 15:35:00 UTC 2021 - neutrino8@opensuse.org - Update to version 1.21.3 * Change: optimization of client request body reading when using HTTP/2. * Bugfix: in request body filters internal API when using HTTP/2 and buffering of the data being processed. ------------------------------------------------------------------- Tue Aug 31 16:04:00 UTC 2021 - neutrino8@opensuse.org - Update to version 1.21.2 * Change: now nginx rejects HTTP/1.0 requests with the "Transfer-Encoding" header line. * Change: export ciphers are no longer supported. * Feature: OpenSSL 3.0 compatibility. * Feature: the "Auth-SSL-Protocol" and "Auth-SSL-Cipher" header lines are now passed to the mail proxy authentication server. Thanks to Rob Mueller. * Feature: request body filters API now permits buffering of the data being processed. * Bugfix: backend SSL connections in the stream module might hang after an SSL handshake. * Bugfix: the security level, which is available in OpenSSL 1.1.0 or newer, did not affect loading of the server certificates when set with "@SECLEVEL=N" in the "ssl_ciphers" directive. * Bugfix: SSL connections with gRPC backends might hang if selectz poll, or /dev/poll methods were used. * Bugfix: when using HTTP/2 client request body was always written to disk if the "Content-Length" header line was not present in the request. ------------------------------------------------------------------- Tue Jul 06 15:23:00 UTC 2021 - neutrino8@opensuse.org - Update to version 1.21.1 * Change: now nginx always returns an error for the CONNECT method. * Change: now nginx always returns an error if both "Content-Length" and "Transfer-Encoding" header lines are present in the request. * Change: now nginx always returns an error if spaces or control characters are used in the request line. * Change: now nginx always returns an error if spaces or control characters are used in a header name. * Change: now nginx always returns an error if spaces or control characters are used in the "Host" request header line. * Change: optimization of configuration testing when using many listening sockets. * Bugfix: nginx did not escape """, "<", ">", "\", "^", "`", "{", "|", and "}" characters when proxying with changed URI. * Bugfix: SSL variables might be empty when used in logs; the bug had appeared in 1.19.5. * Bugfix: keepalive connections with gRPC backends might not be closed after receiving a GOAWAY frame. * Bugfix: reduced memory consumption for long-lived requests when proxying with more than 64 buffers. ------------------------------------------------------------------- Tue May 25 15:42:00 UTC 2021 - neutrino8@opensuse.org - Update to version 1.21.0 * Security: 1-byte memory overwrite might occur during DNS server response processing if the "resolver" directive was used, allowing an attacker who is able to forge UDP packets from the DNS server to cause worker process crash or, potentially, arbitrary code execution (CVE-2021-23017). * Feature: variables support in the "proxy_ssl_certificate", "proxy_ssl_certificate_key" "grpc_ssl_certificate", "grpc_ssl_certificate_key", "uwsgi_ssl_certificate", and "uwsgi_ssl_certificate_key" directives. * Feature: the "max_errors" directive in the mail proxy module. * Feature: the mail proxy module supports POP3 and IMAP pipelining. * Feature: the "fastopen" parameter of the "listen" directive in the stream module. Thanks to Anbang Wen. * Bugfix: special characters were not escaped during automatic redirect with appended trailing slash. * Bugfix: connections with clients in the mail proxy module might be closed unexpectedly when using SMTP pipelining. ------------------------------------------------------------------- Tue Apr 13 15:47:00 UTC 2021 - neutrino8@opensuse.org - Update to version 1.19.10 * Change: the default value of the "keepalive_requests" directive was changed to 1000. * Feature: the "keepalive_time" directive. * Feature: the $connection_time variable. * Workaround: "gzip filter failed to use preallocated memory" alerts appeared in logs when using zlib-ng. ------------------------------------------------------------------- Tue Mar 30 15:05:00 UTC 2021 - neutrino8@opensuse.org - Update to version 1.19.9 * Bugfix: nginx could not be built with the mail proxy module, but without the ngx_mail_ssl_module; the bug had appeared in 1.19.8. * Bugfix: "upstream sent response body larger than indicated content length" errors might occur when working with gRPC backends; the bug had appeared in 1.19.1. * Bugfix: nginx might not close a connection till keepalive timeout expiration if the connection was closed by the client while discarding the request body. * Bugfix: nginx might not detect that a connection was already closed by the client when waiting for auth_delay or limit_req delay, or when working with backends. * Bugfix: in the eventport method. ------------------------------------------------------------------- Tue Mar 09 15:47:00 UTC 2021 - neutrino8@opensuse.org - Update to version 1.19.8 * Feature: flags in the "proxy_cookie_flags" directive can now contain variables. * Feature: the "proxy_protocol" parameter of the "listen" directive, the "proxy_protocol" and "set_real_ip_from" directives in mail proxy. * Bugfix: HTTP/2 connections were immediately closed when using "keepalive_timeout 0"; the bug had appeared in 1.19.7. * Bugfix: some errors were logged as unknown if nginx was built with glibc 2.32. * Bugfix: in the eventport method. ------------------------------------------------------------------- Tue Feb 16 16:50:00 UTC 2021 - neutrino8@opensuse.org - Update to version 1.19.7 * Change: connections handling in HTTP/2 has been changed to better match HTTP/1.x; the "http2_recv_timeout", "http2_idle_timeout", and "http2_max_requests" directives have been removed, the "keepalive_timeout" and "keepalive_requests" directives should be used instead. * Change: the "http2_max_field_size" and "http2_max_header_size" directives have been removed, the "large_client_header_buffers" directive should be used instead. * Feature: now, if free worker connections are exhausted, nginx starts closing not only keepalive connections, but also connections in lingering close. * Bugfix: "zero size buf in output" alerts might appear in logs if an upstream server returned an incorrect response during unbuffered proxying; the bug had appeared in 1.19.1. * Bugfix: HEAD requests were handled incorrectly if the "return" directive was used with the "image_filter" or "xslt_stylesheet" directives. * Bugfix: in the "add_trailer" directive. ------------------------------------------------------------------- Tue Dec 15 15:18:00 UTC 2020 - neutrino8@opensuse.org - Update to version 1.19.6 * Bugfix: "no live upstreams" errors if a "server" inside "upstream" block was marked as "down". * Bugfix: a segmentation fault might occur in a worker process if HTTPS was used; the bug had appeared in 1.19.5. * Bugfix: nginx returned the 400 response on requests like "GET http://example.com?args HTTP/1.0". * Bugfix: in the ngx_http_flv_module and ngx_http_mp4_module. Thanks to Chris Newton. ------------------------------------------------------------------- Tue Nov 24 15:28:00 UTC 2020 - neutrino8@opensuse.org - Update to version 1.19.5 * Feature: the -e switch. * Feature: the same source files can now be specified in different modules while building addon modules. * Bugfix: SSL shutdown did not work when lingering close was used. * Bugfix: "upstream sent frame for closed stream" errors might occur when working with gRPC backends. * Bugfix: in request body filters internal API. ------------------------------------------------------------------- Tue Oct 27 15:30:00 UTC 2020 - neutrino8@opensuse.org - Update to version 1.19.4 * Feature: the "ssl_conf_command", "proxy_ssl_conf_command", "grpc_ssl_conf_command", and "uwsgi_ssl_conf_command" directives. * Feature: the "ssl_reject_handshake" directive. * Feature: the "proxy_smtp_auth" directive in mail proxy. ------------------------------------------------------------------- Tue Sep 29 15:45:00 UTC 2020 - neutrino8@opensuse.org - Update to version 1.19.3 * Feature: the ngx_stream_set_module. * Feature: the "proxy_cookie_flags" directive. * Feature: the "userid_flags" directive. * Bugfix: the "stale-if-error" cache control extension was erroneously applied if backend returned a response with status code 500, 502, 503, 504, 403, 404, or 429. * Bugfix: "[crit] cache file ... has too long header" messages might appear in logs if caching was used and the backend returned responses with the "Vary" header line. * Workaround: "[crit] SSL_write() failed" messages might appear in logs when using OpenSSL 1.1.1. * Bugfix: "SSL_shutdown() failed (SSL: ... bad write retry)" messages might appear in logs; the bug had appeared in 1.19.2. * Bugfix: a segmentation fault might occur in a worker process when using HTTP/2 if errors with code 400 were redirected to a proxied location using the "error_page" directive. * Bugfix: socket leak when using HTTP/2 and subrequests in the njs module. ------------------------------------------------------------------- Tue Aug 11 16:40:00 UTC 2020 - neutrino8@opensuse.org - Update to version 1.19.2 * Change: now nginx starts closing keepalive connections before all free worker connections are exhausted, and logs a warning about this to the error log. * Change: optimization of client request body reading when using chunked transfer encoding. * Bugfix: memory leak if the "ssl_ocsp" directive was used. * Bugfix: "zero size buf in output" alerts might appear in logs if a FastCGI server returned an incorrect response; the bug had appeared in 1.19.1. * Bugfix: a segmentation fault might occur in a worker process if different large_client_header_buffers sizes were used in different virtual servers. * Bugfix: SSL shutdown might not work. * Bugfix: "SSL_shutdown() failed (SSL: ... bad write retry)" messages might appear in logs. * Bugfix: in the ngx_http_slice_module. * Bugfix: in the ngx_http_xslt_filter_module. ------------------------------------------------------------------- Tue Jul 07 16:31:00 UTC 2020 - neutrino8@opensuse.org - Update to version 1.19.1 * Change: the "lingering_close", "lingering_time", and "lingering_timeout" directives now work when using HTTP/2. * Change: now extra data sent by a backend are always discarded. * Change: now after receiving a too short response from a FastCGI server nginx tries to send the available part of the response to the client, and then closes the client connection. * Change: now after receiving a response with incorrect length from a gRPC backend nginx stops response processing with an error. * Feature: the "min_free" parameter of the "proxy_cache_path", "fastcgi_cache_path", "scgi_cache_path", and "uwsgi_cache_path" directives. Thanks to Adam Bambuch. * Bugfix: nginx did not delete unix domain listen sockets during graceful shutdown on the SIGQUIT signal. * Bugfix: zero length UDP datagrams were not proxied. * Bugfix: proxying to uwsgi backends using SSL might not work. Thanks to Guanzhong Chen. * Bugfix: in error handling when using the "ssl_ocsp" directive. * Bugfix: on XFS and NFS file systems disk cache size might be calculated incorrectly. * Bugfix: "negative size buf in writer" alerts might appear in logs if a memcached server returned a malformed response. ------------------------------------------------------------------- Tue May 26 15:15:00 UTC 2020 - neutrino8@opensuse.org - Update to version 1.19.0 * Feature: client certificate validation with OCSP. * Bugfix: "upstream sent frame for closed stream" errors might occur when working with gRPC backends. * Bugfix: OCSP stapling might not work if the "resolver" directive was not specified. * Bugfix: connections with incorrect HTTP/2 preface were not logged. ------------------------------------------------------------------- Tue Apr 14 14:40:00 UTC 2020 - neutrino8@opensuse.org - Update to version 1.17.10 * Feature: the "auth_delay" directive ------------------------------------------------------------------- Tue Feb 03 15:22:00 UTC 2020 - neutrino8@opensuse.org - Update to version 1.17.9 * Change: now nginx does not allow several "Host" request header lines. * Bugfix: nginx ignored additional "Transfer-Encoding" request header lines. * Bugfix: socket leak when using HTTP/2. * Bugfix: a segmentation fault might occur in a worker process if OCSP stapling was used. * Bugfix: in the ngx_http_mp4_module. * Bugfix: nginx used status code 494 instead of 400 if errors with code 494 were redirected with the "error_page" directive. * Bugfix: socket leak whe ------------------------------------------------------------------- Tue Jan 21 15:28:00 UTC 2020 - neutrino8@opensuse.org - Update to version 1.17.8 * Feature: variables support in the "grpc_pass" directive. * Bugfix: a timeout might occur while handling pipelined requests in an SSL connection; the bug had appeared in 1.17.5. * Bugfix: in the "debug_points" directive when using HTTP/2. Thanks to Daniil Bondarev. ------------------------------------------------------------------- Tue Dec 24 15:20:00 UTC 2019 - neutrino8@opensuse.org - Update to version 1.17.7 * Bugfix: a segmentation fault might occur on start or during reconfiguration if the "rewrite" directive with an empty replacement string was used in the configuration. * Bugfix: a segmentation fault might occur in a worker process if the "break" directive was used with the "alias" directive or with the "proxy_pass" directive with a URI. * Bugfix: the "Location" response header line might contain garbage if the request URI was rewritten to the one containing a null character. * Bugfix: requests with bodies were handled incorrectly when returning redirections with the "error_page" directive; the bug had appeared in 0.7.12. * Bugfix: socket leak when using HTTP/2. * Bugfix: a timeout might occur while handling pipelined requests in an SSL connection; the bug had appeared in 1.17.5. * Bugfix: in the ngx_http_dav_module. ------------------------------------------------------------------- Tue Nov 19 14:43:00 UTC 2019 - neutrino8@opensuse.org - Update to version 1.17.6 * Feature: the $proxy_protocol_server_addr and $proxy_protocol_server_port variables. * Feature: the "limit_conn_dry_run" directive. * Feature: the $limit_req_status and $limit_conn_status variables. ------------------------------------------------------------------- Tue Oct 22 15:43:00 UTC 2019 - neutrino8@opensuse.org - Update to version 1.17.5 * Feature: now nginx uses ioctl(FIONREAD), if available, to avoid reading from a fast connection for a long time. * Bugfix: incomplete escaped characters at the end of the request URI were ignored. * Bugfix: "/." and "/.." at the end of the request URI were not normalized. * Bugfix: in the "merge_slashes" directive. * Bugfix: in the "ignore_invalid_headers" directive. Thanks to Alan Kemp. * Bugfix: nginx could not be built with MinGW-w64 gcc 8.1 or newer. ------------------------------------------------------------------- Tue Sep 24 15:26:00 UTC 2019 - neutrino8@opensuse.org - Update to version 1.17.4 * Change: better detection of incorrect client behavior in HTTP/2. * Change: in handling of not fully read client request body when returning errors in HTTP/2. * Bugfix: the "worker_shutdown_timeout" directive might not work when using HTTP/2. * Bugfix: a segmentation fault might occur in a worker process when using HTTP/2 and the "proxy_request_buffering" directive. * Bugfix: the ECONNABORTED error log level was "crit" instead of "error" on Windows when using SSL. * Bugfix: nginx ignored extra data when using chunked transfer encoding. * Bugfix: nginx always returned the 500 error if the "return" directive was used and an error occurred during reading client request body. * Bugfix: in memory allocation error handling. ------------------------------------------------------------------- Tue Aug 13 17:45:00 UTC 2019 - neutrino8@opensuse.org - Update to version 1.17.3 * Security: when using HTTP/2 a client might cause excessive memory consumption and CPU usage (CVE-2019-9511, CVE-2019-9513, CVE-2019-9516). * Bugfix: "zero size buf" alerts might appear in logs when using gzipping; the bug had appeared in 1.17.2. * Bugfix: a segmentation fault might occur in a worker process if the "resolver" directive was used in SMTP proxy. ------------------------------------------------------------------- Tue Jul 23 12:31:00 UTC 2019 - neutrino8@opensuse.org - Update to version 1.17.2 * Change: minimum supported zlib version is 1.2.0.4. Thanks to Ilya Leoshkevich. * Change: the $r->internal_redirect() embedded perl method now expects escaped URIs. * Feature: it is now possible to switch to a named location using the $r->internal_redirect() embedded perl method. * Bugfix: in error handling in embedded perl. * Bugfix: a segmentation fault might occur on start or during reconfiguration if hash bucket size larger than 64 kilobytes was used in the configuration. * Bugfix: nginx might hog CPU during unbuffered proxying and when proxying WebSocket connections if the select, poll, or /dev/poll methods were used. * Bugfix: in the ngx_http_xslt_filter_module. * Bugfix: in the ngx_http_ssi_filter_module. ------------------------------------------------------------------- Tue Jun 25 12:40:00 UTC 2019 - neutrino8@opensuse.org - Update to version 1.17.1 * Feature: the "limit_req_dry_run" directive. * Feature: when using the "hash" directive inside the "upstream" block an empty hash key now triggers round-robin balancing. Thanks to Niklas Keller. * Bugfix: a segmentation fault might occur in a worker process if caching was used along with the "image_filter" directive, and errors with code 415 were redirected with the "error_page" directive; the bug had appeared in 1.11.10. * Bugfix: a segmentation fault might occur in a worker process if embedded perl was used; the bug had appeared in 1.7.3. ------------------------------------------------------------------- Tue May 21 14:46:00 UTC 2019 - neutrino8@opensuse.org - Update to version 1.17.0 * Feature: variables support in the "limit_rate" and "limit_rate_after" directives. * Feature: variables support in the "proxy_upload_rate" and "proxy_download_rate" directives in the stream module. * Change: minimum supported OpenSSL version is 0.9.8. * Change: now the postpone filter is always built. * Bugfix: the "include" directive did not work inside the "if" and "limit_except" blocks. * Bugfix: in byte ranges processing. ------------------------------------------------------------------- Tue Apr 16 15:15:00 UTC 2019 - neutrino8@opensuse.org - Update to version 1.15.12 * Bugfix: a segmentation fault might occur in a worker process if variables were used in the "ssl_certificate" or "ssl_certificate_key" directives and OCSP stapling was enabled. ------------------------------------------------------------------- Tue Apr 09 13:40:00 UTC 2019 - neutrino8@opensuse.org - Update to version 1.15.11 * Bugfix: in the "ssl_stapling_file" directive on Windows. ------------------------------------------------------------------- Tue Mar 26 14:35:00 UTC 2019 - neutrino8@opensuse.org - Update to version 1.15.10 * Change: when using a hostname in the "listen" directive nginx now creates listening sockets for all addresses the hostname resolves to (previously, only the first address was used). * Feature: port ranges in the "listen" directive. * Feature: loading of SSL certificates and secret keys from variables. * Workaround: the $ssl_server_name variable might be empty when using OpenSSL 1.1.1. * Bugfix: nginx/Windows could not be built with Visual Studio 2015 or newer; the bug had appeared in 1.15.9. ------------------------------------------------------------------- Tue Feb 26 15:58:00 UTC 2019 - neutrino8@opensuse.org - Update to version 1.15.9 * Feature: variables support in the "ssl_certificate" and "ssl_certificate_key" directives. * Feature: the "poll" method is now available on Windows when using Windows Vista or newer. * Bugfix: if the "select" method was used on Windows and an error occurred while establishing a backend connection, nginx waited for the connection establishment timeout to expire. * Bugfix: the "proxy_upload_rate" and "proxy_download_rate" directives in the stream module worked incorrectly when proxying UDP datagrams. ------------------------------------------------------------------- Tue Dec 25 16:20:00 UTC 2018 - neutrino8@opensuse.org - Update to version 1.15.8 * Feature: the $upstream_bytes_sent variable. Thanks to Piotr Sikora. * Feature: new directives in vim syntax highlighting scripts. Thanks to Gena Makhomed. * Bugfix: in the "proxy_cache_background_update" directive. * Bugfix: in the "geo" directive when using unix domain listen sockets. * Workaround: the "ignoring stale global SSL error ... bad length" alerts might appear in logs when using the "ssl_early_data" directive with OpenSSL. * Bugfix: in nginx/Windows. * Bugfix: in the ngx_http_autoindex_module on 32-bit platforms. ------------------------------------------------------------------- Tue Nov 27 15:06:00 UTC 2018 - neutrino8@opensuse.org - Update to version 1.15.7 * Feature: the "proxy_requests" directive in the stream module. * Feature: the "delay" parameter of the "limit_req" directive. Thanks to Vladislav Shabanov and Peter Shchuchkin. * Bugfix: memory leak on errors during reconfiguration. * Bugfix: in the $upstream_response_time, $upstream_connect_time, and $upstream_header_time variables. * Bugfix: a segmentation fault might occur in a worker process if the ngx_http_mp4_module was used on 32-bit platforms. ------------------------------------------------------------------- Tue Nov 06 16:20:00 UTC 2018 - neutrino8@opensuse.org - Update to version 1.15.6 * Security: when using HTTP/2 a client might cause excessive memory consumption (CVE-2018-16843) and CPU usage (CVE-2018-16844). * Security: processing of a specially crafted mp4 file with the ngx_http_mp4_module might result in worker process memory disclosure (CVE-2018-16845). * Feature: the "proxy_socket_keepalive", "fastcgi_socket_keepalive", "grpc_socket_keepalive", "memcached_socket_keepalive", "scgi_socket_keepalive", and "uwsgi_socket_keepalive" directives. * Bugfix: if nginx was built with OpenSSL 1.1.0 and used with OpenSSL 1.1.1, the TLS 1.3 protocol was always enabled. * Bugfix: working with gRPC backends might result in excessive memory consumption. ------------------------------------------------------------------- Tue Oct 02 17:10:00 UTC 2018 - neutrino8@opensuse.org - Update to version 1.15.5 * Bugfix: a segmentation fault might occur in a worker process when using OpenSSL 1.1.0h or newer; the bug had appeared in 1.15.4. * Bugfix: of minor potential bugs. ------------------------------------------------------------------- Tue Sep 25 15:30:00 UTC 2018 - neutrino8@opensuse.org - Update to version 1.15.4 * Feature: now the "ssl_early_data" directive can be used with OpenSSL. * Bugfix: in the ngx_http_uwsgi_module. Thanks to Chris Caputo. * Bugfix: connections with some gRPC backends might not be cached when using the "keepalive" directive. * Bugfix: a socket leak might occur when using the "error_page" directive to redirect early request processing errors, notably errors with code 400. * Bugfix: the "return" directive did not change the response code when returning errors if the request was redirected by the "error_page" directive. * Bugfix: standard error pages and responses of the ngx_http_autoindex_module module used the "bgcolor" attribute, and might be displayed incorrectly when using custom color settings in browsers. Thanks to Nova DasSarma. * Change: the logging level of the "no suitable key share" and "no suitable signature algorithm" SSL errors has been lowered from "crit" to "info". ------------------------------------------------------------------- Tue Aug 28 19:30:00 UTC 2018 - neutrino8@opensuse.org - Update to versoion 1.15.3 * Feature: now TLSv1.3 can be used with BoringSSL. * Feature: the "ssl_early_data" directive, currently available with BoringSSL. * Feature: the "keepalive_timeout" and "keepalive_requests" directives in the "upstream" block. * Bugfix: the ngx_http_dav_module did not truncate destination file when copying a file over an existing one with the COPY method. * Bugfix: the ngx_http_dav_module used zero access rights on the destination file and did not preserve file modification time when moving a file between different file systems with the MOVE method. * Bugfix: the ngx_http_dav_module used default access rights when copying a file with the COPY method. * Workaround: some clients might not work when using HTTP/2; the bug had appeared in 1.13.5. * Bugfix: nginx could not be built with LibreSSL 2.8.0. ------------------------------------------------------------------- Tue Jul 24 13:32:00 UTC 2018 - neutrino8@opensuse.org - Update to version 1.15.2 * Feature: the $ssl_preread_protocol variable in the ngx_stream_ssl_preread_module. * Feature: now when using the "reset_timedout_connection" directive nginx will reset connections being closed with the 444 code. * Change: a logging level of the "http request", "https proxy request", "unsupported protocol", and "version too low" SSL errors has been lowered from "crit" to "info". * Bugfix: DNS requests were not resent if initial sending of a request failed. * Bugfix: the "reuseport" parameter of the "listen" directive was ignored if the number of worker processes was specified after the "listen" directive. * Bugfix: when using OpenSSL 1.1.0 or newer it was not possible to switch off "ssl_prefer_server_ciphers" in a virtual server if it was switched on in the default server. * Bugfix: SSL session reuse with upstream servers did not work with the TLS 1.3 protocol. ------------------------------------------------------------------- Tue Jul 03 17:40:00 UTC 2018 - neutrino8@opensuse.org - Update to version 1.15.1 * Feature: the "random" directive inside the "upstream" block. * Feature: improved performance when using the "hash" and "ip_hash" directives with the "zone" directive. * Feature: the "reuseport" parameter of the "listen" directive now uses SO_REUSEPORT_LB on FreeBSD 12. * Bugfix: HTTP/2 server push did not work if SSL was terminated by a proxy server in front of nginx. * Bugfix: the "tcp_nopush" directive was always used on backend connections. * Bugfix: sending a disk-buffered request body to a gRPC backend might fail. ------------------------------------------------------------------- Wed Jun 06 06:05:00 UTC 2018 - neutrino8@opensuse.org - Update to version 1.15.0 * Change: the "ssl" directive is deprecated; the "ssl" parameter of the "listen" directive should be used instead. * Change: now nginx detects missing SSL certificates during configuration testing when using the "ssl" parameter of the "listen" directive. * Feature: now the stream module can handle multiple incoming UDP datagrams from a client within a single session. * Bugfix: it was possible to specify an incorrect response code in the "proxy_cache_valid" directive. * Bugfix: nginx could not be built by gcc 8.1. * Bugfix: logging to syslog stopped on local IP address changes. * Bugfix: nginx could not be built by clang with CUDA SDK installed; the bug had appeared in 1.13.8. * Bugfix: "getsockopt(TCP_FASTOPEN) ... failed" messages might appear in logs during binary upgrade when using unix domain listen sockets on FreeBSD. * Bugfix: nginx could not be built on Fedora 28 Linux. * Bugfix: request processing rate might exceed configured rate when using the "limit_req" directive. * Bugfix: in handling of client addresses when using unix domain listen sockets to work with datagrams on Linux. * Bugfix: in memory allocation error handling. ------------------------------------------------------------------- Tue Apr 10 14:30:00 UTC 2018 - neutrino8@opensuse.org - Update to version 1.13.12 * Bugfix: connections with gRPC backends might be closed unexpectedly when returning a large response. ------------------------------------------------------------------- Tue Apr 03 17:43:00 UTC 2018 - neutrino8@opensuse.org - Update to version 1.13.11 * Feature: the "proxy_protocol" parameter of the "listen" directive now supports the PROXY protocol version 2. * Bugfix: nginx could not be built with OpenSSL 1.1.1 statically on Linux. * Bugfix: in the "http_404", "http_500", etc. parameters of the "proxy_next_upstream" directive. ------------------------------------------------------------------- Tue Mar 20 16:15:00 UTC 2018 - neutrino8@opensuse.org - Update to version 1.13.10 * Feature: the "set" parameter of the "include" SSI directive now allows writing arbitrary responses to a variable; the "subrequest_output_buffer_size" directive defines maximum response size. * Feature: now nginx uses clock_gettime(CLOCK_MONOTONIC) if available, to avoid timeouts being incorrectly triggered on system time changes. * Feature: the "escape=none" parameter of the "log_format" directive. Thanks to Johannes Baiter and Calin Don. * Feature: the $ssl_preread_alpn_protocols variable in the ngx_stream_ssl_preread_module. * Feature: the ngx_http_grpc_module. * Bugfix: in memory allocation error handling in the "geo" directive. * Bugfix: when using variables in the "auth_basic_user_file" directive a null character might appear in logs. Thanks to Vadim Filimonov. ------------------------------------------------------------------- Tue Feb 20 14:29:00 UTC 2018 - neutrino8@opensuse.org - Update to version 1.13.9 * Feature: HTTP/2 server push support; the "http2_push" and "http2_push_preload" directives. * Bugfix: "header already sent" alerts might appear in logs when using cache; the bug had appeared in 1.9.13. * Bugfix: a segmentation fault might occur in a worker process if the "ssl_verify_client" directive was used and no SSL certificate was specified in a virtual server. * Bugfix: in the ngx_http_v2_module. * Bugfix: in the ngx_http_dav_module. ------------------------------------------------------------------- Tue Dec 26 16:17:00 UTC 2017 - neutrino8@opensuse.org - Update to version 1.13.8 * Feature: now nginx automatically preserves the CAP_NET_RAW capability in worker processes when using the "transparent" parameter of the "proxy_bind", "fastcgi_bind", "memcached_bind", "scgi_bind", and "uwsgi_bind" directives. * Feature: improved CPU cache line size detection. Thanks to Debayan Ghosh. * Feature: new directives in vim syntax highlighting scripts. Thanks to Gena Makhomed. * Bugfix: binary upgrade refused to work if nginx was re-parented to a process with PID different from 1 after its parent process has finished. * Bugfix: the ngx_http_autoindex_module incorrectly handled requests with bodies. * Bugfix: in the "proxy_limit_rate" directive when used with the "keepalive" directive. * Bugfix: some parts of a response might be buffered when using "proxy_buffering off" if the client connection used SSL. Thanks to Patryk Lesiewicz. * Bugfix: in the "proxy_cache_background_update" directive. * Bugfix: it was not possible to start a parameter with a variable in the "${name}" form with the name in curly brackets without enclosing the parameter into single or double quotes. ------------------------------------------------------------------- Tue Nov 21 15:30:00 UTC 2017 - neutrino8@opensuse.org - Update to version 1.13.7 * Bugfix: in the $upstream_status variable. * Bugfix: a segmentation fault might occur in a worker process if a backend returned a "101 Switching Protocols" response to a subrequest. * Bugfix: a segmentation fault occurred in a master process if a shared memory zone size was changed during a reconfiguration and the reconfiguration failed. * Bugfix: in the ngx_http_fastcgi_module. * Bugfix: nginx returned the 500 error if parameters without variables were specified in the "xslt_stylesheet" directive. * Workaround: "gzip filter failed to use preallocated memory" alerts appeared in logs when using a zlib library variant from Intel. * Bugfix: the "worker_shutdown_timeout" directive did not work when using mail proxy and when proxying WebSocket connections. ------------------------------------------------------------------- Tue Oct 10 17:20:00 UTC 2017 - neutrino8@opensuse.org - Update to version 1.13.6 * Bugfix: switching to the next upstream server in the stream module did not work when using the "ssl_preread" directive. * Bugfix: in the ngx_http_v2_module. Thanks to Piotr Sikora. * Bugfix: nginx did not support dates after the year 2038 on 32-bit platforms with 64-bit time_t. * Bugfix: in handling of dates prior to the year 1970 and after the year 10000. * Bugfix: in the stream module timeouts waiting for UDP datagrams from upstream servers were not logged or logged at the "info" level instead of "error". * Bugfix: when using HTTP/2 nginx might return the 400 response without logging the reason. * Bugfix: in processing of corrupted cache files. * Bugfix: cache control headers were ignored when caching errors intercepted by error_page. * Bugfix: when using HTTP/2 client request body might be corrupted. * Bugfix: in handling of client addresses when using unix domain sockets. * Bugfix: nginx hogged CPU when using the "hash ... consistent" directive in the upstream block if large weights were used and all or most of the servers were unavailable. ------------------------------------------------------------------- Tue Sep 05 15:53:00 UTC 2017 - neutrino8@opensuse.org - Update to version 1.13.5 * Feature: the $ssl_client_escaped_cert variable. * Bugfix: the "ssl_session_ticket_key" directive and the "include" parameter of the "geo" directive did not work on Windows. * Bugfix: incorrect response length was returned on 32-bit platforms when requesting more than 4 gigabytes with multiple ranges. * Bugfix: the "expires modified" directive and processing of the "If-Range" request header line did not use the response last modification time if proxying without caching was used. ------------------------------------------------------------------- Tue Aug 08 15:25:00 UTC 2017 - neutrino8@opensuse.org - Update to version 1.13.4 * Feature: the ngx_http_mirror_module. * Bugfix: client connections might be dropped during configuration testing when using the "reuseport" parameter of the "listen" directive on Linux. * Bugfix: request body might not be available in subrequests if it was saved to a file and proxying was used. * Bugfix: cleaning cache based on the "max_size" parameter did not work on Windows. * Bugfix: any shared memory allocation required 4096 bytes on Windows. * Bugfix: nginx worker might be terminated abnormally when using the "zone" directive inside the "upstream" block on Windows. ------------------------------------------------------------------- Tue Jul 11 15:51:00 UTC 2017 - neutrino8@opensuse.org - Update to version 1.13.3 * Security: a specially crafted request might result in an integer overflow and incorrect processing of ranges in the range filter, potentially resulting in sensitive information leak (CVE-2017-7529). ------------------------------------------------------------------- Tue Jun 27 15:06:00 UTC 2017 - neutrino8@opensuse.org - Update to version 1.13.2 * Change: nginx now returns 200 instead of 416 when a range starting with 0 is requested from an empty file. * Feature: the "add_trailer" directive. Thanks to Piotr Sikora. * Bugfix: nginx could not be built on Cygwin and NetBSD; the bug had appeared in 1.13.0. * Bugfix: nginx could not be built under MSYS2 / MinGW 64-bit. Thanks to Orgad Shaneh. * Bugfix: a segmentation fault might occur in a worker process when using SSI with many includes and proxy_pass with variables. * Bugfix: in the ngx_http_v2_module. Thanks to Piotr Sikora. ------------------------------------------------------------------- Tue May 30 15:17:00 UTC 2017 - neutrino8@opensuse.org - Update to version 1.13.1 * Feature: now a hostname can be used as the "set_real_ip_from" directive parameter. * Feature: vim syntax highlighting scripts improvements. * Feature: the "worker_cpu_affinity" directive now works on DragonFly BSD. Thanks to Sepherosa Ziehau. * Bugfix: SSL renegotiation on backend connections did not work when using OpenSSL before 1.1.0. * Workaround: nginx could not be built with Oracle Developer Studio 12.5. * Workaround: now cache manager ignores long locked cache entries when cleaning cache based on the "max_size" parameter. * Bugfix: client SSL connections were immediately closed if deferred accept and the "proxy_protocol" parameter of the "listen" directive were used. * Bugfix: in the "proxy_cache_background_update" directive. * Workaround: now the "tcp_nodelay" directive sets the TCP_NODELAY option before an SSL handshake. ------------------------------------------------------------------- Tue Apr 25 16:28:00 UTC 2017 - neutrino8@opensuse.org - Update to version 1.13.0 * Change: SSL renegotiation is now allowed on backend connections. * Feature: the "rcvbuf" and "sndbuf" parameters of the "listen" directives of the mail proxy and stream modules. * Feature: the "return" and "error_page" directives can now be used to return 308 redirections. Thanks to Simon Leblanc. * Feature: the "TLSv1.3" parameter of the "ssl_protocols" directive. * Feature: when logging signals nginx now logs PID of the process which sent the signal. * Bugfix: in memory allocation error handling. * Bugfix: if a server in the stream module listened on a wildcard address, the source address of a response UDP datagram could differ from the original datagram destination address. ------------------------------------------------------------------- Wed Apr 12 15:26:00 UTC 2017 - neutrino8@opensuse.org - Update to version 1.12.0 ------------------------------------------------------------------- Tue Apr 04 15:20:00 UTC 2017 - neutrino8@opensuse.org - Update to version 1.11.13 * Feature: the "http_429" parameter of the "proxy_next_upstream", "fastcgi_next_upstream", "scgi_next_upstream", and "uwsgi_next_upstream" directives. Thanks to Piotr Sikora. * Bugfix: in memory allocation error handling. * Bugfix: requests might hang when using the "sendfile" and "timer_resolution" directives on Linux. * Bugfix: requests might hang when using the "sendfile" and "aio_write" directives with subrequests. * Bugfix: in the ngx_http_v2_module. Thanks to Piotr Sikora. * Bugfix: a segmentation fault might occur in a worker process when using HTTP/2. * Bugfix: requests might hang when using the "limit_rate", "sendfile_max_chunk", "limit_req" directives, or the $r->sleep() embedded perl method with subrequests. * Bugfix: in the ngx_http_slice_module. ------------------------------------------------------------------- Fri Mar 24 16:22:00 UTC 2017 - neutrino8@opensuse.org - Update to version 1.11.12 * Bugfix: nginx might hog CPU; the bug had appeared in 1.11.11. ------------------------------------------------------------------- Tue Mar 21 17:15:00 UTC 2017 - neutrino8@opensuse.org - Update to version 1.11.11 * Feature: the "worker_shutdown_timeout" directive. * Feature: vim syntax highlighting scripts improvements. Thanks to Wei-Ko Kao. * Bugfix: a segmentation fault might occur in a worker process if the $limit_rate variable was set to an empty string. * Bugfix: the "proxy_cache_background_update", "fastcgi_cache_background_update", "scgi_cache_background_update", and "uwsgi_cache_background_update" directives might work incorrectly if the "if" directive was used. * Bugfix: a segmentation fault might occur in a worker process if number of large_client_header_buffers in a virtual server was different from the one in the default server. * Bugfix: in the mail proxy server. ------------------------------------------------------------------- Tue Feb 14 16:00:00 UTC 2017 - neutrino8@opensuse.org - Update to version 1.11.10 * Change: cache header format has been changed, previously cached responses will be invalidated. * Feature: support of "stale-while-revalidate" and "stale-if-error" extensions in the "Cache-Control" backend response header line. * Feature: the "proxy_cache_background_update", "fastcgi_cache_background_update", "scgi_cache_background_update", and "uwsgi_cache_background_update" directives. * Feature: nginx is now able to cache responses with the "Vary" header line up to 128 characters long (instead of 42 characters in previous versions). * Feature: the "build" parameter of the "server_tokens" directive. Thanks to Tom Thorogood. * Bugfix: "[crit] SSL_write() failed" messages might appear in logs when handling requests with the "Expect: 100-continue" request header line. * Bugfix: the ngx_http_slice_module did not work in named locations. * Bugfix: a segmentation fault might occur in a worker process when using AIO after an "X-Accel-Redirect" redirection. * Bugfix: reduced memory consumption for long-lived requests using gzipping. ------------------------------------------------------------------- Tue Jan 24 16:27:00 UTC 2017 - neutrino8@opensuse.org - Update to version 1.11.9 * Bugfix: nginx might hog CPU when using the stream module; the bug had appeared in 1.11.5. * Bugfix: EXTERNAL authentication mechanism in mail proxy was accepted even if it was not enabled in the configuration. * Bugfix: a segmentation fault might occur in a worker process if the "ssl_verify_client" directive of the stream module was used. * Bugfix: the "ssl_verify_client" directive of the stream module might not work. * Bugfix: closing keepalive connections due to no free worker connections might be too aggressive. Thanks to Joel Cunningham. * Bugfix: an incorrect response might be returned when using the "sendfile" directive on FreeBSD and macOS; the bug had appeared in 1.7.8. * Bugfix: a truncated response might be stored in cache when using the "aio_write" directive. * Bugfix: a socket leak might occur when using the "aio_write" directive. ------------------------------------------------------------------- Tue Dec 27 19:03:00 UTC 2016 - neutrino8@opensuse.org - Update to version 1.11.8 * Feature: the "absolute_redirect" directive. * Feature: the "escape" parameter of the "log_format" directive. * Feature: client SSL certificates verification in the stream module. * Feature: the "ssl_session_ticket_key" directive supports AES256 encryption of TLS session tickets when used with 80-byte keys. * Feature: vim-commentary support in vim scripts. Thanks to Armin Grodon. * Bugfix: recursion when evaluating variables was not limited. * Bugfix: in the ngx_stream_ssl_preread_module. * Bugfix: if a server in an upstream in the stream module failed, it was considered alive only when a test connection sent to it after fail_timeout was closed; now a successfully established connection is enough. * Bugfix: nginx/Windows could not be built with 64-bit Visual Studio. * Bugfix: nginx/Windows could not be built with OpenSSL 1.1.0. ------------------------------------------------------------------- Tue Dec 13 15:38:00 UTC 2016 - neutrino8@opensuse.org - Update to version 1.11.7 * Change: now in case of a client certificate verification error the $ssl_client_verify variable contains a string with the failure reason, for example, "FAILED:certificate has expired". * Feature: the $ssl_ciphers, $ssl_curves, $ssl_client_v_start, $ssl_client_v_end, and $ssl_client_v_remain variables. * Feature: the "volatile" parameter of the "map" directive. * Bugfix: dependencies specified for a module were ignored while building dynamic modules. * Bugfix: when using HTTP/2 and the "limit_req" or "auth_request" directives client request body might be corrupted; the bug had appeared in 1.11.0. * Bugfix: a segmentation fault might occur in a worker process when using HTTP/2; the bug had appeared in 1.11.3. * Bugfix: in the ngx_http_mp4_module. Thanks to Congcong Hu. * Bugfix: in the ngx_http_perl_module. ------------------------------------------------------------------- Tue Nov 15 16:06:00 UTC 2016 - neutrino8@opensuse.org - Update to version 1.11.6 * Change: format of the $ssl_client_s_dn and $ssl_client_i_dn variables has been changed to follow RFC 2253 (RFC 4514); values in the old format are available in the $ssl_client_s_dn_legacy and $ssl_client_i_dn_legacy variables. * Change: when storing temporary files in a cache directory they will be stored in the same subdirectories as corresponding cache files instead of a separate subdirectory for temporary files. * Feature: EXTERNAL authentication mechanism support in mail proxy. Thanks to Robert Norris. * Feature: WebP support in the ngx_http_image_filter_module. * Feature: variables support in the "proxy_method" directive. Thanks to Dmitry Lazurkin. * Feature: the "http2_max_requests" directive in the ngx_http_v2_module. * Feature: the "proxy_cache_max_range_offset", "fastcgi_cache_max_range_offset", "scgi_cache_max_range_offset", and "uwsgi_cache_max_range_offset" directives. * Bugfix: graceful shutdown of old worker processes might require infinite time when using HTTP/2. * Bugfix: in the ngx_http_mp4_module. * Bugfix: "ignore long locked inactive cache entry" alerts might appear in logs when proxying WebSocket connections with caching enabled. * Bugfix: nginx did not write anything to log and returned a response with code 502 instead of 504 when a timeout occurred during an SSL handshake to a backend. ------------------------------------------------------------------- Mon Oct 31 21:37:00 UTC 2016 - neutrino8@gmail.com - Clean ups to spec file - Add sign keys ------------------------------------------------------------------- Thu Oct 27 13:37:00 UTC 2016 - neutrino8@gmail.com - Optimize the %files section of the spec file ------------------------------------------------------------------- Wed Oct 26 18:09:00 UTC 2016 - neutrino8@gmail.com - Don't overwrite logrotate file ------------------------------------------------------------------- Tue Oct 18 17:55:00 UTC 2016 - neutrino8@gmail.com - Add man page ------------------------------------------------------------------- Tue Oct 18 17:45:00 UTC 2016 - neutrino8@gmail.com - Update logrotate file ------------------------------------------------------------------- Tue Oct 18 11:59:00 UTC 2016 - neutrino8@gmail.com - Don't put config files in doc dir ------------------------------------------------------------------- Tue Oct 18 11:54:00 UTC 2016 - neutrino8@gmail.com - Update to version 1.11.5 * Change: the --with-ipv6 configure option was removed, now IPv6 support is configured automatically. * Change: now if there are no available servers in an upstream, nginx will not reset number of failures of all servers as it previously did, but will wait for fail_timeout to expire. * Feature: the ngx_stream_ssl_preread_module. * Feature: the --with-compat configure option. * Feature: "manager_files", "manager_threshold", and "manager_sleep" parameters of the "proxy_cache_path", "fastcgi_cache_path", "scgi_cache_path", and "uwsgi_cache_path" directives. * Bugfix: flags passed by the --with-ld-opt configure option were not used while building perl module. * Bugfix: in the "add_after_body" directive when used with the "sub_filter" directive. * Bugfix: in the $realip_remote_addr variable. * Bugfix: the "dav_access", "proxy_store_access", "fastcgi_store_access", "scgi_store_access", and "uwsgi_store_access" directives ignored permissions specified for user. * Bugfix: unix domain listen sockets might not be inherited during binary upgrade on Linux. * Bugfix: nginx returned the 400 response on requests with the "-" character in the HTTP method.
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor