Timeline



12/05/15:

19:08 Ticket #834 (Nginx failing to ask for PEM SSL key password) updated by 2i@…
I have written a script as a workaround which creates as decrypted …

12/04/15:

20:50 Ticket #850 (worker process exists, prevents OCSP stapling response (?)) updated by Commenter123@…
Yup, the 3-line patch indeed seems to fix the issue. OCSP stapling now …
13:43 Ticket #850 (worker process exists, prevents OCSP stapling response (?)) closed by Maxim Dounin
duplicate: The segmentation fault looks like a duplicate of #845. As for OCSP …
13:09 Ticket #849 (proxy_cache filder no files,I think it is a bug,because in version ...) closed by Maxim Dounin
worksforme: Consider looking carefully at your backend responses. Most common …
12:37 Ticket #848 (HTTP2 domain redirect error with ssl_verify_client) updated by Maxim Dounin
Status, Owner changed
No connection reuse between different SNI-selected server{} blocks is …
10:49 Ticket #394 (gzip module doesn't handle all certain HTTP verbs/statuses) updated by caldavtest@…
(Un)fortunately, I don't have Windows or Mac OS X. However, I'd still …
10:15 Ticket #850 (worker process exists, prevents OCSP stapling response (?)) created by Commenter123@…
When using the ssllabs.com scan, I receive a lot of these messages in …
08:44 nginx.zip attached to Ticket #849 by Art-Man@…
08:42 Ticket #849 (proxy_cache filder no files,I think it is a bug,because in version ...) created by Art-Man@…
proxy_cache filder no file,Other works will config: …
00:55 Ticket #848 (HTTP2 domain redirect error with ssl_verify_client) created by Jan Trejbal
[…] ssl.conf: […] Redirect in Chrome from …

12/03/15:

19:19 Ticket #626 (Open Socket Alerts on Reload) updated by Valentin V. Bartenev
Status changed
17:06 Changeset in nginx [6314:fcbac620ae83] by Maxim Dounin <mdounin@…>
Style: NGX_PTR_SIZE replaced with sizeof(void *). The NGX_PTR_SIZE …
14:48 Ticket #846 (HTTP2 apply to all server block) closed by Maxim Dounin
invalid: The http2 parameter is a parameter of the listen directive, and it …
14:26 Ticket #394 (gzip module doesn't handle all certain HTTP verbs/statuses) updated by Maxim Dounin
Thanks for testing. It would be really useful to also check some …
14:07 Ticket #847 ($sent_http_ - empty) closed by Maxim Dounin
invalid: The fastcgi_cache_key is calculated before the response is known as …
11:06 Ticket #847 ($sent_http_ - empty) created by oleg.terashop.ru@…
Response content type is available in $sent_http_* variable. I neet …
10:36 Ticket #394 (gzip module doesn't handle all certain HTTP verbs/statuses) updated by caldavtest@…
Is there anything else I can do?
03:17 Changeset in nginx [6315:cb31017e961b] by Piotr Sikora <piotrsikora@…>
Core: fix typo in error message. Signed-off-by: Piotr Sikora …

12/02/15:

21:07 Ticket #846 (HTTP2 apply to all server block) created by Jan Trejbal
If I have this configuration: […] https://www.domain.tld use HTTP2 …
11:23 Ticket #845 (signal 11 on ssllabs test) updated by typingArtist@…
Whoa, that was fast! Great, with your patch the worker process …
10:15 Ticket #845 (signal 11 on ssllabs test) updated by Sergey Kandaurov
Thank you for the report. Please try the following patch: […]
03:48 Ticket #626 (Open Socket Alerts on Reload) updated by lowks@…
I can confirm this bug still exists even with http2. We encountered …

12/01/15:

22:06 Changeset in nginx [6313:be3aed17689c] by Maxim Dounin <mdounin@…>
Style.
20:17 Ticket #690 (nginx + mod_security segfaults) closed by Maxim Dounin
invalid: The ngx_http_upstream_copy_allow_ranges() function is a handler called …
17:39 Ticket #394 (gzip module doesn't handle all certain HTTP verbs/statuses) updated by caldavtest@…
I have compiled nginx 1.9.7 with this patch and can confirm that it …
17:07 Ticket #690 (nginx + mod_security segfaults) reopened by driehuis@…
The ngx_http_upstream_copy_allow_ranges blindly dives into a a …
14:56 Ticket #845 (signal 11 on ssllabs test) updated by Sergey Kandaurov
Status, Owner changed
I'll look at it.
14:02 Ticket #812 (Fetch OCSP responses on startup, and store across restarts) updated by robstradling@…
TLS Feature landed a few weeks ago. https://tools.ietf.org/html/rfc7633
13:36 Ticket #843 (Add checking modify date in ngx_http_gzip_static_module + variable ...) updated by Maxim Dounin
It doesn't check if an uncompressed version exist if a client accepts …
13:17 Ticket #845 (signal 11 on ssllabs test) created by typingArtist@…
Starting a ssllabs.com test to one of my virtual servers does work, …
12:47 Ticket #844 (Allow support for different protocols on different hosts (same machine)) closed by Maxim Dounin
wontfix: This is not something nginx can fix: OpenSSL selects the protocol to …
12:09 Ticket #843 (Add checking modify date in ngx_http_gzip_static_module + variable ...) updated by Mikhail
But nginx already check for gzipped version exists, what is the …
12:06 Ticket #844 (Allow support for different protocols on different hosts (same machine)) created by Commenter123@…
So I have multiple hosts set up on one nginx installation: - …

11/30/15:

16:01 Changeset in nginx [6307:2c8874c22073] by Ruslan Ermilov <ru@…>
Configure: removed comment obsolete in 3b763d36e055.
15:30 Ticket #843 (Add checking modify date in ngx_http_gzip_static_module + variable ...) closed by Maxim Dounin
wontfix: The gzip_static isn't expected to check anything, it merely returns a …
13:27 Changeset in nginx [6309:ea3ba1ce7014] by Valentin Bartenev <vbart@…>
Increased the default "connection_pool_size" on 64-bit platforms. The …
12:34 Ticket #843 (Add checking modify date in ngx_http_gzip_static_module + variable ...) created by Mikhail
http://nginx.org/en/docs/http/ngx_http_gzip_static_module.html#gzip_sta
09:54 Changeset in nginx [6312:1d696c646d81] by Ruslan Ermilov <ru@…>
Stop emulating a space character after r->method_name. This is an API …
09:19 Ticket #842 (php not working on nginx when using ssl) updated by Valentin V. Bartenev
Please, provide your configuration.
09:04 Changeset in nginx [6310:9d00576252aa] by Ruslan Ermilov <ru@…>
Reduced the number of GET method constants.
09:04 Changeset in nginx [6308:7e241b36819d] by Ruslan Ermilov <ru@…>
Configure: improved workaround for system perl on OS X. The …

11/29/15:

23:37 Ticket #842 (php not working on nginx when using ssl) created by stackoverflow.com/users/4084546/stan-s-lee
I am having a problem that nginx is not serving php files when ssl is …

11/28/15:

12:36 Ticket #394 (gzip module doesn't handle all certain HTTP verbs/statuses) reopened by caldavtest@…
I'm looking forward to test this patch.

11/27/15:

14:32 Ticket #394 (gzip module doesn't handle all certain HTTP verbs/statuses) updated by Maxim Dounin
See also #841.
14:32 Ticket #841 (ngx_http_gzip_filter_module doesn't compress 207 multi-status responses) closed by Maxim Dounin
duplicate: An experimental patch in ticket #394 is waiting for someone to do some …
14:26 Ticket #841 (ngx_http_gzip_filter_module doesn't compress 207 multi-status responses) created by caldavtest@…
When using WebDAV/CalDAV/CardDAV, there is the 207 multi-status …

11/26/15:

14:06 Ticket #840 (HTTP2 over plaintext (port 80) returns a file download containing gibberish) closed by Maxim Dounin
duplicate: Duplicate of #808.
13:44 Ticket #840 (HTTP2 over plaintext (port 80) returns a file download containing gibberish) created by Andrew Sun
The following configuration: […] returns a file download …

11/24/15:

23:22 Ticket #839 (nginx applies transfer-encoding chunked to scgi response already encoded) closed by Maxim Dounin
invalid: It's not a bug, at least not in nginx. Chunked encoding is a part of …
19:40 Ticket #839 (nginx applies transfer-encoding chunked to scgi response already encoded) created by nascheme@…
I think this is a bug but I'm not sure. I notice that newer versions …
17:52 patch-838.diff attached to Ticket #838 by elektro-wolle@…
Patch to enable compare operators
17:51 Ticket #838 (enable compare operators within if directive) created by elektro-wolle@…
It would be nice to have string comparison operators within the if …
07:15 Ticket #635 (include directive not allowed within upstream context) closed by Ruslan Ermilov
fixed

11/23/15:

21:45 Ticket #635 (include directive not allowed within upstream context) updated by Ruslan Ermilov <ru@…>
In [changeset:"18428f775b2cb30106c3083a72dabc346402b819/nginx"
19:48 Changeset in nginx [6304:520ec1917f1d] by Maxim Dounin <mdounin@…>
Configure: fixed using OpenSSL include paths.
09:40 Changeset in nginx [6305:18428f775b2c] by Ruslan Ermilov <ru@…>
Core: enabled "include" inside http upstreams (ticket #635). The …
00:25 Ticket #837 (SSL has poor/inconsistent performance) closed by Maxim Dounin
invalid: Proper microbenchmarking requires a bit of tuning. In particular, …

11/22/15:

12:34 Ticket #837 (SSL has poor/inconsistent performance) updated by clarkk@…
I forgot to say I use the same SSL chipers on both Apache and Nginx
12:32 nginx-ssl.png attached to Ticket #837 by clarkk@…
12:32 Ticket #837 (SSL has poor/inconsistent performance) created by clarkk@…
I have just made some benchmarking Apache vs Nginx and of course Nginx …

11/21/15:

07:44 Changeset in nginx [6303:a93345ee8f52] by Ruslan Ermilov <ru@…>
Upstream: fixed "no port" detection in evaluated upstreams. If an …

11/20/15:

13:30 Ticket #629 (Nginx as a reverse proxy will not pass headers that contain a period.) closed by Maxim Dounin
invalid: By default nginx ignores headers it considers invalid as per rules …
12:40 Ticket #629 (Nginx as a reverse proxy will not pass headers that contain a period.) reopened by efge@…
12:40 Ticket #629 (Nginx as a reverse proxy will not pass headers that contain a period.) updated by efge@…
(I'm not the original submitter) I'm asking for this to be reopened …

11/19/15:

16:55 Ticket #836 (the file existence check fails if permission is denied) closed by Maxim Dounin
worksforme: Works fine for me here. Note though: 1. Argument of -e is a file …
02:27 Ticket #836 (the file existence check fails if permission is denied) created by galaxy4public@…
I'm using the following block to check for the file existence: […] …

11/18/15:

20:52 Ticket #830 (400 Bad Request - No required SSL certificate was sent occurs randomly ...) updated by Maxim Dounin
The problem is that tcpdump file doesn't contain dumps of any …
18:32 Ticket #830 (400 Bad Request - No required SSL certificate was sent occurs randomly ...) updated by Jeffrey
Maxim, I'm not sure what you mean. I can create a new debug log with a …
15:19 Ticket #834 (Nginx failing to ask for PEM SSL key password) updated by Maxim Dounin
Replying to lakarjail@…: > 1) I am not about to remove …
14:02 Ticket #835 (Gzip module doesn't handle application/javascript mime type.) closed by Valentin V. Bartenev
worksforme: Please, check the gzip_types directive in your configuration. …
10:49 Ticket #835 (Gzip module doesn't handle application/javascript mime type.) created by maurocolella@…
See this thread for a description of the problem: …
05:35 Ticket #834 (Nginx failing to ask for PEM SSL key password) updated by Ilyas Bakirov
Replying to lakarjail@…: > 2) What I fail to …

11/17/15:

19:54 Ticket #834 (Nginx failing to ask for PEM SSL key password) updated by lakarjail@…
Maybe I mis-explained my issue. I am sorry if I posted my question at …
18:43 Ticket #834 (Nginx failing to ask for PEM SSL key password) closed by Maxim Dounin
invalid: The problem here is that a) your SSL keys are password-protected, so …
18:12 Ticket #834 (Nginx failing to ask for PEM SSL key password) updated by lakarjail@…
I failed to give the proper -V output : nginx version: nginx/1.6.2 …
18:08 Ticket #834 (Nginx failing to ask for PEM SSL key password) created by lakarjail@…
While starting/restarting nginx with "service nginx start", no …
17:50 Ticket #833 (Variables on proxy_pass set incorrect request) closed by Maxim Dounin
invalid: This is expected behaviour. When variables are used in the proxy_pass …
17:13 Ticket #833 (Variables on proxy_pass set incorrect request) created by hvelarde@…
module: ngx_http_proxy_module upstream plone { server …
16:41 Changeset in nginx [6302:bec5b3093337] by Maxim Dounin <mdounin@…>
Missing "variable" word added.
16:01 Changeset in nginx [6301:b5a87b51be24] by Valentin Bartenev <vbart@…>
Used the pwritev() syscall for writing files where possible. It is …
16:01 Changeset in nginx [6300:be6af0906a4d] by Valentin Bartenev <vbart@…>
Moved file writev() handling code to a separate function. No …
16:01 Changeset in nginx [6299:5170c3040ce1] by Valentin Bartenev <vbart@…>
Handled EINTR from write() and pwrite() syscalls. This is in addition …
16:01 Changeset in nginx [6298:8f6d753c1953] by Valentin Bartenev <vbart@…>
Adjusted file->sys_offset after the write() syscall. This fixes …
16:01 Changeset in nginx [6297:92482faf5d8a] by Valentin Bartenev <vbart@…>
Version bump.
15:50 Ticket #829 (Drupal 8 and Nginx Configuration) closed by Maxim Dounin
wontfix
15:27 Ticket #829 (Drupal 8 and Nginx Configuration) updated by maxim
Milestone changed
Ticket retargeted after milestone closed
15:27 Milestone 1.9.7 completed
Status: released Trunk: mainline
14:50 Changeset in nginx [6296:4221623f2e46] by Maxim Dounin <mdounin@…>
release-1.9.7 tag
14:50 Changeset in nginx [6295:54117529e40b]release-1.9.7 by Maxim Dounin <mdounin@…>
nginx-1.9.7-RELEASE

11/16/15:

16:22 Ticket #830 (400 Bad Request - No required SSL certificate was sent occurs randomly ...) updated by Maxim Dounin
Unfortunately, there are no interceptions between "client sent no …
13:02 Changeset in nginx [6294:cebe43bace93] by Ruslan Ermilov <ru@…>
Realip: the $realip_remote_addr variable.

11/13/15:

17:20 Ticket #831 (Possible incorrect handling of invalid headers with HTTP/2.0 and ...) closed by Valentin V. Bartenev
fixed: A different version of the patch has been committed after review. It …
17:15 Ticket #831 (Possible incorrect handling of invalid headers with HTTP/2.0 and ...) updated by Valentin Bartenev <vbart@…>
In [changeset:"932a465537ef8462c480dc664b1503e248db1bef/nginx"
17:10 Changeset in nginx [6293:ec6b07be88a5] by Valentin Bartenev <vbart@…>
HTTP/2: reused HEADERS and CONTINUATION frames buffers.
17:10 Changeset in nginx [6292:f72d3129cd35] by Valentin Bartenev <vbart@…>
HTTP/2: fixed handling of output HEADERS frames. The HEADERS frame is …
17:10 Changeset in nginx [6291:932a465537ef] by Valentin Bartenev <vbart@…>
HTTP/2: fixed invalid headers handling (ticket #831). The …
16:33 tcpdump-wiresharp-server-client.7z attached to Ticket #830 by Jeffrey
dump for client and server
16:13 debug-log-2054.7z attached to Ticket #830 by Jeffrey
debug log (see 2015/11/11 20:54:32)

11/12/15:

21:36 Ticket #831 (Possible incorrect handling of invalid headers with HTTP/2.0 and ...) updated by Brian Stanback
I've applied your patch to my copy of the 1.9.6 source and did some …
19:44 Ticket #832 (OCSP_basic_verify : unable to get certificate CRL) closed by Maxim Dounin
wontfix: When ssl_crl is used, it applies to OCSP verifications as well, …
16:43 Ticket #832 (OCSP_basic_verify : unable to get certificate CRL) created by mttcr@…
Hello, I am configuring a server with OCSP stapling. I have the …
15:09 Ticket #831 (Possible incorrect handling of invalid headers with HTTP/2.0 and ...) updated by Valentin V. Bartenev
The side-effect is cased by ignoring Content-Length in that case.
15:01 Ticket #831 (Possible incorrect handling of invalid headers with HTTP/2.0 and ...) updated by Valentin V. Bartenev
Status changed
Thank you for the report. Please try the following patch: […]

11/11/15:

22:14 Ticket #831 (Possible incorrect handling of invalid headers with HTTP/2.0 and ...) updated by Brian Stanback
For what it's worth, the issue was actually happening to me on …
22:12 Ticket #831 (Possible incorrect handling of invalid headers with HTTP/2.0 and ...) created by Brian Stanback
When an invalid header is encountered, it appears that all subsequent …
19:39 Ticket #830 (400 Bad Request - No required SSL certificate was sent occurs randomly ...) updated by Jeffrey
Thanks, I've recompile with OpenSSL 1.0.2d, unfortunately that did not …
15:36 Ticket #830 (400 Bad Request - No required SSL certificate was sent occurs randomly ...) updated by Maxim Dounin
Note that OpenSSL used (1.0.1e) is rather old and has lots of known …
13:20 debug.txt attached to Ticket #830 by Jeffrey
debug log
13:20 Ticket #830 (400 Bad Request - No required SSL certificate was sent occurs randomly ...) created by Jeffrey
What is wrong? Subdomains are protected with a client …
12:47 Changeset in nginx [6290:4d5ac1a31d44] by Roman Arutyunyan <arut@…>
Upstream: proxy_cache_convert_head directive. The directive toggles …

11/10/15:

18:19 Ticket #829 (Drupal 8 and Nginx Configuration) updated by Ilyas Bakirov
https://www.nginx.com/resources/wiki/start/topics/recipes/drupal/
15:55 Ticket #829 (Drupal 8 and Nginx Configuration) created by iraneagle@…
Hi, Please create documentation about Drupal 8 and Nginx …
14:23 Ticket #828 (HTTP2 POST requests seg faulting) closed by Valentin V. Bartenev
duplicate: Everything indicates that it's a duplicate of #822.
11:37 bt.txt attached to Ticket #828 by leev@…
11:37 error.log attached to Ticket #828 by leev@…
11:37 Ticket #828 (HTTP2 POST requests seg faulting) created by leev@…
When upgrading from 1.9.5 to 1.9.6 all HTTP2 POST requests fail. GET …

11/09/15:

19:26 Ticket #827 (proxy_cache bug when using custom error pages) created by stackoverflow.com/users/220086/denis-pshenov
Hi, I have a very simple proxy config: http { proxy_cache_path …
12:36 Ticket #195 (Close connection if SSL not enabled for vhost) updated by Maxim Dounin
Sensitive changed
Readily available workaround is to use unsatisfiable cipher …
07:53 Ticket #195 (Close connection if SSL not enabled for vhost) updated by ghprince@…
Hi, it's been 3 years, any update on this?

11/06/15:

12:22 Changeset in nginx [6306:b1858fc47e3b] by Ruslan Ermilov <ru@…>
Style: unified request method checks.
12:21 Changeset in nginx [6311:44122bddd9a1] by Ruslan Ermilov <ru@…>
Proxy: improved code readability. Do not assume that space character …
10:03 Ticket #825 (NTLM option in upstream module allows authentication bypass) updated by nick
pantsman0, You need to activate your NGINX Plus Support as described …

11/05/15:

19:58 Ticket #825 (NTLM option in upstream module allows authentication bypass) updated by Roman Arutyunyan
Use logs to figure out if the second request belongs to the same nginx …
14:41 Ticket #826 (Add config option for NGX_HTTP_CACHE_VARY_LEN) updated by Maxim Dounin
There are no plans to add configurable option, this is an overkill and …
12:06 Ticket #822 (Worker process crashing (exit, signal 11)) closed by Valentin V. Bartenev
fixed
12:05 Ticket #822 (Worker process crashing (exit, signal 11)) updated by Valentin Bartenev <vbart@…>
In [changeset:"0f4b7800e681cd82dfb55ae72fc38a366a33d755/nginx"
12:01 Changeset in nginx [6345:5ae5142d39a3]stable-1.8 by Valentin Bartenev <vbart@…>
SSL: only select SPDY using NPN if "spdy" is enabled. OpenSSL doesn't …
12:01 Changeset in nginx [6289:909b5b191f25] by Valentin Bartenev <vbart@…>
SSL: only select HTTP/2 using NPN if "http2" is enabled. OpenSSL …
12:01 Changeset in nginx [6288:0f4b7800e681] by Valentin Bartenev <vbart@…>
HTTP/2: backed out 16905ecbb49e (ticket #822). It caused …
10:13 Ticket #825 (NTLM option in upstream module allows authentication bypass) updated by pantsman0@…
arut: I have updated the sample configuration file to remove the typos …
09:51 Ticket #825 (NTLM option in upstream module allows authentication bypass) updated by nick
NGINX Plus is fully supported software. You can receive very quick …
02:49 sample_ntlm_upstream.conf attached to Ticket #825 by pantsman0@…
sample configuration file
Note: See TracTimeline for information about the timeline view.