#2071 |
ssl_reject_handshake on introduced in nginx 1.19.4 works but disables TLSv1.3?
|
|
defect
|
closed
|
minor
|
|
#2643 |
ssl_reject_handshake not working as expected
|
|
defect
|
new
|
minor
|
|
#2463 |
ssl_reject_handshake allows some connections through
|
|
defect
|
closed
|
minor
|
|
#2645 |
SSL_read bad length error when uploading large files over HTTPS
|
|
defect
|
closed
|
minor
|
|
#344 |
SSL proxy - CRL verification error
|
|
defect
|
closed
|
minor
|
|
#1310 |
SSL proxy - CRL verification error
|
|
defect
|
closed
|
minor
|
|
#108 |
ssl_protocols needs warning if only unsupported protocols are enabled
|
somebody
|
defect
|
closed
|
minor
|
|
#1470 |
ssl_protocols is not overwrited by specific "per-server" value
|
|
defect
|
closed
|
minor
|
|
#2305 |
ssl_protocols directive in server { } doesn't work
|
|
defect
|
closed
|
minor
|
|
#766 |
ssl_protocols directive doesn't work in server context
|
|
defect
|
closed
|
minor
|
|
#2347 |
ssl_protocol and ssl_cipher are hyphens
|
|
defect
|
closed
|
major
|
|
#1616 |
ssl_preread_alpn_protocols not safe
|
|
defect
|
closed
|
minor
|
|
#610 |
SSL parser bug while parsing SSL key/pem/crt file with BOM in windows system version
|
|
defect
|
closed
|
minor
|
1.6.2
|
#1905 |
SSL ON; Problem
|
|
defect
|
closed
|
critical
|
|
#2132 |
ssl_ocsp / ssl_stapling for ngx_mail_ssl_module
|
|
enhancement
|
new
|
minor
|
|
#837 |
SSL has poor/inconsistent performance
|
|
defect
|
closed
|
blocker
|
|
#342 |
ssl hash of subject and issuer dn
|
|
enhancement
|
closed
|
major
|
|
#2318 |
SSL handshaking SSL_shutdown after 24h
|
|
defect
|
closed
|
blocker
|
nginx-1.21
|
#1829 |
ssl: fail gracefully on Alert instead of ClientHello
|
|
defect
|
closed
|
minor
|
|
#444 |
SSL error with Internet explorer clients
|
|
defect
|
closed
|
minor
|
|
#1361 |
SSL: error:14077102:SSL routines:SSL23_GET_SERVER_HELLO:unsupported protocol
|
|
defect
|
closed
|
minor
|
|
#1089 |
ssl_ecdh_curve not honored in server block
|
|
defect
|
closed
|
minor
|
1.11.5
|
#2542 |
ssl_ecdh_curve is sometimes ignored in server blocks
|
|
defect
|
new
|
minor
|
|
#1969 |
ssl_ecdh_curve avoid 0-RTT
|
|
defect
|
closed
|
major
|
|
#1970 |
ssl_ecdh_curve avoid 0-RTT
|
|
defect
|
closed
|
major
|
|
#2205 |
SSL_do_handshake() failed (SSL: error:1408F10B:SSL routines:ssl3_get_record:wrong version number) while SSL handshaking to upstream
|
|
defect
|
closed
|
major
|
|
#39 |
SSL_do_handshake failed on verified certificate chain
|
somebody
|
defect
|
closed
|
major
|
|
#1601 |
ssl default server must have a cert even if it's not being accessed
|
|
defect
|
closed
|
minor
|
|
#215 |
SSL: decryption failed or bad record mac with upstream servers
|
somebody
|
defect
|
closed
|
major
|
|
#1192 |
ssl configuration inherited from the wrong server block
|
|
defect
|
closed
|
minor
|
|
#472 |
ssl_client_verify fails in Safari
|
|
defect
|
closed
|
major
|
|
#301 |
SSL: client certificate verification not working with intermediate certificates
|
|
defect
|
closed
|
minor
|
|
#987 |
ssl_ciphers default value incompatible with HTTP/2 when ssl_prefer_server_ciphers=on
|
|
defect
|
closed
|
minor
|
|
#2134 |
ssl cipher logging for mail
|
|
enhancement
|
closed
|
minor
|
|
#1896 |
SSL certificate password - startup
|
|
defect
|
closed
|
minor
|
|
#302 |
SSI stop working with SPDY patch
|
|
defect
|
closed
|
minor
|
|
#303 |
SSI stop working with SPDY patch
|
|
defect
|
closed
|
critical
|
|
#1140 |
ssi module ignores "default" parameter of echo
|
|
defect
|
closed
|
minor
|
|
#2660 |
SSI is included twice when empty response is loaded from proxy cache
|
|
defect
|
new
|
major
|
|
#585 |
SSI include subrequests fails in big POST reply
|
|
defect
|
closed
|
minor
|
|
#1807 |
SSI include subrequests are not logged
|
|
defect
|
closed
|
minor
|
|
#197 |
src/http/modules/ngx_http_ssl_module.c:239: error: ‘SSL_TLSEXT_ERR_NOACK’ undeclared (first use in this function)
|
somebody
|
defect
|
closed
|
blocker
|
|
#587 |
src/core/ngx_crypt.c:82:5: error: 'MD5_Init' is deprecated: first deprecated in OS X 10.7
|
|
defect
|
closed
|
minor
|
|
#2341 |
Sporadic "502 Bad Gateway" with reverse proxy
|
|
defect
|
closed
|
major
|
|
#136 |
Spelling error in src/http/modules/ngx_http_ssi_filter_module.c
|
somebody
|
defect
|
closed
|
trivial
|
|
#1767 |
Spelling error in `ngx_stream_ssl_preread_module` document
|
|
defect
|
closed
|
trivial
|
|
#1447 |
Specific IP(v4) listen directives cause "address already in use" when using ipv6only=off
|
|
defect
|
closed
|
minor
|
|
#2657 |
Specail redirect in location does not resolve upstream names
|
|
defect
|
new
|
minor
|
|
#30 |
SPDY support
|
Valentin V. Bartenev
|
enhancement
|
closed
|
minor
|
1.3
|
#725 |
spdy + return <code> "some text" = Could not parse Spdy Control Frame Header
|
|
defect
|
closed
|
blocker
|
1.7.10
|
#785 |
SPDY not supporting domain sharding
|
|
defect
|
closed
|
minor
|
|
#403 |
SPDY: image requests to same host but different domain very slow
|
|
defect
|
closed
|
major
|
|
#363 |
SPDY configuration inheritance issue
|
|
defect
|
closed
|
minor
|
|
#566 |
SPDY bug in Nginx 1.7.0
|
|
defect
|
closed
|
major
|
|
#428 |
SPDY and Proxy Cache prematurely closes connections
|
Valentin V. Bartenev
|
defect
|
closed
|
major
|
|
#675 |
spdy after a single connect send data big than 65535 , last frame size is invalid
|
|
defect
|
closed
|
minor
|
|
#1796 |
spam
|
|
defect
|
closed
|
minor
|
|
#1930 |
Space in URL %20 is decoded space causing an invalid URL
|
|
defect
|
closed
|
minor
|
|
#1071 |
space H in curl request return 400 bad request from nginx
|
|
defect
|
closed
|
blocker
|
|
#2219 |
Space escaping in unquoted strings
|
|
defect
|
new
|
minor
|
|
#531 |
source port logging
|
|
enhancement
|
closed
|
major
|
|
#432 |
Source code release date is incorrect on install instructions (web)
|
|
defect
|
closed
|
minor
|
|
#1371 |
some url contains space will be treated as invalid
|
|
defect
|
closed
|
minor
|
|
#2651 |
Some QUIC connections lost domain header in nginx H3
|
|
defect
|
closed
|
major
|
|
#2652 |
Some QUIC connections lost domain header in nginx H3
|
|
defect
|
closed
|
major
|
|
#1645 |
Some questions about slab_stat module?
|
|
defect
|
closed
|
minor
|
|
#2554 |
Some of the requests getting stuck after reload.
|
|
defect
|
new
|
major
|
|
#1257 |
Some nginx TLS tests started failing with LibreSSL 2.5.3
|
|
defect
|
closed
|
critical
|
|
#1533 |
Some news about "support configure TLS1.3-Only ciphers"
|
|
task
|
closed
|
minor
|
nginx-1.15
|
#1876 |
Some access log variables leak memory on HTTP/2 client connections
|
|
defect
|
closed
|
major
|
|
#1053 |
socket regression from 1.7.4
|
|
defect
|
closed
|
minor
|
|
#1100 |
Socket leakage after ngx_http_read_client_request_body
|
|
defect
|
closed
|
minor
|
|
#1023 |
SNI problem with nginx and apache httpclient
|
|
defect
|
closed
|
major
|
|
#805 |
small new optional feature for unixes
|
|
enhancement
|
closed
|
minor
|
|
#1560 |
Slow response on wrong request
|
|
defect
|
closed
|
minor
|
|
#2057 |
$slice_range variable does not work in set directive.
|
|
enhancement
|
closed
|
minor
|
|
#1550 |
Slice module closes connection unexpectedly
|
|
defect
|
closed
|
minor
|
|
#2052 |
Slice module closes connection on upstream error codes 4xx and 5xx other than 416
|
|
defect
|
closed
|
major
|
|
#1357 |
slice+if_range problem
|
|
defect
|
closed
|
minor
|
|
#864 |
SLES 12 repo metadata should be signed
|
|
defect
|
closed
|
minor
|
|
#71 |
skip 404 process for fastcgi_intercept_errors
|
somebody
|
enhancement
|
closed
|
minor
|
|
#1115 |
Skeleton for dynamic module's config file shows invalid example
|
|
defect
|
closed
|
major
|
|
#134 |
sizeof(NGX_INT32_LEN) triggers out of memory
|
somebody
|
defect
|
closed
|
major
|
1.2.0
|
#2538 |
Site has TLS 1.2 connection despite being configured with TLS 1.3 only
|
|
defect
|
closed
|
minor
|
|
#718 |
Simultaneous xslt and gzip_static yields error 500
|
|
defect
|
closed
|
minor
|
|
#2636 |
SIGSEGV on https access
|
|
defect
|
closed
|
major
|
|
#934 |
SIGSEGV http2 close stream
|
|
defect
|
closed
|
minor
|
|
#527 |
"+" sign is encoded by rewrite as %2B
|
|
defect
|
closed
|
major
|
|
#2018 |
Significant amount of "zero size buf in writer t:1 r:0 f:0... 0000000000000000 0-0 while sending to client"
|
|
defect
|
closed
|
minor
|
|
#732 |
Signed integer overflows
|
|
defect
|
closed
|
minor
|
|
#2654 |
Signature on Ubuntu Focal Repo expired.
|
|
defect
|
closed
|
critical
|
|
#845 |
signal 11 on ssllabs test
|
Sergey Kandaurov
|
defect
|
closed
|
major
|
|
#153 |
SIGCHLD + SIGIO после обновления с 1.1.17 на 1.1.19
|
somebody
|
defect
|
closed
|
major
|
|
#2536 |
should we discard initial packet with zero-length odcid?
|
|
defect
|
closed
|
minor
|
|
#765 |
should not perform consistent hash on empty string
|
|
defect
|
closed
|
major
|
|
#1407 |
Should application/javascript be text/javascript in mime.types
|
|
enhancement
|
reopened
|
minor
|
|
#2429 |
Ship FHS compliant packages (/var/run > /run)
|
|
defect
|
new
|
minor
|
|
#511 |
Shared Memory Add Segfaults on Small Sizes
|
|
defect
|
closed
|
minor
|
|
#128 |
Sharding support in memcache
|
somebody
|
enhancement
|
closed
|
minor
|
|
#2342 |
Setting a very high max-age value for Cache-Control causes int overflow
|
|
defect
|
closed
|
minor
|
|