Timeline



02/01/17:

20:58 Ticket #564 (map regex matching affects rewrite directive) updated by higuita
the nginx docs should be clear that named captures should always be …
19:36 error_debug (1).txt attached to Ticket #1194 by 13@…
debug log
19:35 Ticket #1194 (SSL_write fails with 'bad write retry' error) created by 13@…
there is noticeable periodic rate of 'SSL_write() failed (SSL: …
17:07 Changeset in nginx-tests [1123:d737d6606504] by Sergey Kandaurov <pluknet@…>
Tests: fixed server_tokens TODO version in previous change.
17:03 Changeset in nginx-tests [1122:8c0b0cfe51ef] by Sergey Kandaurov <pluknet@…>
Tests: adjusted server_tokens TODOs.

01/31/17:

23:32 Ticket #1192 (ssl configuration inherited from the wrong server block) updated by Alexey Ivanov
Patch worked great, thanks.
17:25 Ticket #1192 (ssl configuration inherited from the wrong server block) updated by Maxim Dounin
Please try the following patch: […]
16:43 Changeset in nginx_org [1921:ef3590465d67] by Konstantin Pavlov <thresh@…>
Linux packages: updated the list of supported distributions.
15:09 Ticket #368 (RFE: add a proxy_cookie_secure to override cookes to be 'Secure') updated by jan.reges.siteone.cz@…
Hi, cookies have 5 characteristics: - domain (implemented …
15:08 Changeset in nginx_org [1895:46cda296d844] by Maxim Dounin <mdounin@…>
nginx-1.10.3
15:01 Changeset in nginx [6898:43ba2bb504fb]stable-1.10 by Maxim Dounin <mdounin@…>
release-1.10.3 tag
15:01 Changeset in nginx [6897:369b74459cf2]stable-1.10release-1.10.3 by Maxim Dounin <mdounin@…>
nginx-1.10.3-RELEASE
14:55 Milestone 1.10.3 completed
Status: released Trunk: stable * Bug fixes merge from the …
13:45 Ticket #1143 (http2 and auth_request corrupts first 32 bytes of POST request bodies ...) updated by Valentin Bartenev <vbart@…>
In [changeset:"16487f9e666506baf53e6381fc20f0aaed50eee5/nginx"
13:45 Ticket #1106 (Stale workers not exiting after reload (with HTTP/2 long poll requests)) updated by Valentin Bartenev <vbart@…>
In [changeset:"09cf90250844bc4fab9fedcacc7bf277fabff100/nginx"
13:10 Changeset in nginx_org [1896:b93b0689f13b] by Sergey Kandaurov <pluknet@…>
Fixed stream nginScript module example.
13:01 Ticket #1193 (api.getbux.com error 400) closed by Maxim Dounin
invalid: This doesn't looks like a bug in nginx. If you need help with a …
12:30 Ticket #1193 (api.getbux.com error 400) created by gavi.rodriguez@…
Could you help me about the following error message: _header: …
05:15 Ticket #1192 (ssl configuration inherited from the wrong server block) created by Alexey Ivanov
I have the following configuration: […] ... its aim is to drop all …

01/30/17:

22:41 Ticket #1191 (Rewrite regexp different behavior) closed by Maxim Dounin
invalid: The regular expression of the rewrite directive is matched against a …
21:32 site.conf attached to Ticket #1191 by avinogradov@…
Sample site configuration
21:32 Ticket #1191 (Rewrite regexp different behavior) created by avinogradov@…
It looks like it's mandatory to specify page name for regexp in the …
17:06 Changeset in nginx-tests [1121:c883d3d3a3ab] by Sergey Kandaurov <pluknet@…>
Tests: server_tokens build tests.
17:06 Changeset in nginx-tests [1120:a6ffc722dfcb] by Sergey Kandaurov <pluknet@…>
Tests: refactored server_tokens tests, no functional changes.
17:06 Changeset in nginx-tests [1119:cfe1bc3162f9] by Sergey Kandaurov <pluknet@…>
Tests: fixed capturing Server header in server_tokens.t.
10:32 Changeset in nginx-tests [1118:6c27d5cab1d7] by Sergey Kandaurov <pluknet@…>
Tests: keep stream_ssl_preread.t TODO for older mainline releases.
00:27 Ticket #1190 (fastcgi_cache_path in site-available AND site-enabled cause error) closed by Maxim Dounin
invalid: The only file nginx actually reads is the nginx.conf file. In your …
00:03 Ticket #1189 (Problems with SELinux on CentOS 7/Virtualmin/Webmin) closed by Maxim Dounin
invalid

01/29/17:

18:38 Ticket #1190 (fastcgi_cache_path in site-available AND site-enabled cause error) created by TheHades@…
Hello, i've setup a fastcgi_cache_path for a wordpress site, but …

01/27/17:

23:30 Ticket #1189 (Problems with SELinux on CentOS 7/Virtualmin/Webmin) reopened by bobbydeleon096@…
16:06 Changeset in nginx [6896:6a510ba580a6]stable-1.10 by Maxim Dounin <mdounin@…>
Updated OpenSSL used for win32 builds.
12:58 Ticket #1189 (Problems with SELinux on CentOS 7/Virtualmin/Webmin) closed by Maxim Dounin
invalid: This doesn't look like a problem in nginx.

01/26/17:

21:07 Ticket #1189 (Problems with SELinux on CentOS 7/Virtualmin/Webmin) created by vstoykovbg@…
Some of the problems are related to using non-standard directory …
19:19 Ticket #1188 (Send "immutable" keyword in Cache-Control when "expires max") created by fazalmajid@…
Per the documentation for ngx_http_headers_module: The max …
15:37 Ticket #1176 (nginx changes ownership of /var/log/nginx/error.log even if error_log ...) updated by Yaroslav Zhuravlev
documented: http://hg.nginx.org/nginx.org/rev/f1c18acbe785
15:29 Changeset in nginx_org [1894:d011ffde3760] by Yaroslav Zhuravlev <yar@…>
Updated zlib and PCRE versions.

01/24/17:

14:45 Changeset in nginx_org [1893:f1c18acbe785] by Yaroslav Zhuravlev <yar@…>
Added info about default log file to error_log.
14:22 Milestone 1.11.9 completed
Status: released Trunk: mainline * Bug fixes
14:12 Changeset in nginx_org [1892:0a769f5f874c] by Maxim Dounin <mdounin@…>
nginx-1.11.9
13:41 Changeset in nginx [6895:b409c77870d6]stable-1.10 by Maxim Dounin <mdounin@…>
Updated zlib and PCRE used for win32 builds.
13:07 Ticket #485 (Multiple WWW-Authenticate headers) updated by gerrieg@…
Are there any plans to support multiple WWW-Authenticate headers soon? …
13:03 Ticket #1186 (multiple add_header in multiple server blocks) closed by Maxim Dounin
invalid: Ok, closing this.
08:16 Ticket #798 (Implement http_brotli_static module) updated by cmoeke@…
The Google Brotli module should be added now to nginx. Most modern …
05:05 Ticket #1186 (multiple add_header in multiple server blocks) updated by Miroslav Shubernetskiy
When trying to reproduce an issue with a simpler config was not able …
00:17 Ticket #1187 (Can't Restart NginX Due to Socket Permissions) updated by vaultwiki@…
Thank you for the information. It pointed me in the appropriate …

01/23/17:

19:42 Ticket #1187 (Can't Restart NginX Due to Socket Permissions) closed by Maxim Dounin
duplicate: Looks like duplicate of #753. As a workaround, try the following: - …
19:28 Ticket #1187 (Can't Restart NginX Due to Socket Permissions) created by vaultwiki@…
I use unix sockets to proxy_pass requests to another server block for …
14:46 Ticket #1186 (multiple add_header in multiple server blocks) updated by Maxim Dounin
Please provide full configuration which demonstrates the problem.
14:29 Changeset in nginx-tests [1117:3e2af4dedd9c] by Sergey Kandaurov <pluknet@…>
Tests: ssl_verify_depth.t cleanup. Run only basic tests that don't …
14:17 Ticket #1186 (multiple add_header in multiple server blocks) created by Miroslav Shubernetskiy
Hi. It seems that when nginx configuration has multiple server …
13:20 Ticket #1185 (http response header ends with \0x00\0x0d\0x0a cause 502) updated by Valentin V. Bartenev
Replying to beikezcs@…: > i think, NUL bytes attacks are …
03:13 Ticket #1185 (http response header ends with \0x00\0x0d\0x0a cause 502) updated by beikezcs@…
Replying to mdounin: > This is intentional. NUL bytes are …
03:13 Ticket #1185 (http response header ends with \0x00\0x0d\0x0a cause 502) updated by beikezcs@…
i think, NUL bytes attacks are used in http request, when handle http …
02:42 Ticket #1185 (http response header ends with \0x00\0x0d\0x0a cause 502) closed by Maxim Dounin
wontfix: This is intentional. NUL bytes are not allowed by nginx in headers, as …
02:30 nginx.png attached to Ticket #1185 by beikezcs@…
tcp dump result
02:29 Ticket #1185 (http response header ends with \0x00\0x0d\0x0a cause 502) created by beikezcs@…
we use nginx as reverse proxy,recently,we has a website, when navigate …

01/20/17:

18:14 Changeset in nginx [6894:2204d71e88e5]stable-1.10 by Maxim Dounin <mdounin@…>
Upstream: fixed cache corruption and socket leaks with aio_write. The …
18:12 Changeset in nginx [6893:a3e6d660b179]stable-1.10 by Maxim Dounin <mdounin@…>
Fixed trailer construction with limit on FreeBSD and macOS. The …
17:39 Ticket #1184 (WebSocket forwarding doesn't work) closed by Maxim Dounin
duplicate: The "gcc 4.9.2 (Raspbian 4.9.2-10)" compiler is know to miscompile …
15:55 Changeset in nginx-tests [1116:8ef51dbb5d69] by Sergey Kandaurov <pluknet@…>
Tests: reduced OpenSSL default key length to 1024. This allows to …
15:44 Ticket #1184 (WebSocket forwarding doesn't work) created by oakkitten@…
Nginx 1.11.4 and 1.11.8, the two versions I tried, seem to be abruptly …
11:13 Changeset in nginx-tests [1115:54e07593713a] by Sergey Kandaurov <pluknet@…>
Tests: ssl_verify_depth tests.

01/19/17:

13:59 Changeset in nginx-tests [1114:c5df4742ad40] by Sergey Kandaurov <pluknet@…>
Tests: more http/stream ssl_verify_client tests borrowed from mail. …
13:08 Ticket #1181 ("Vary: X-Forwarded-Proto" should be removed) updated by Maxim Dounin
Multiple variables in the resulting value in map can be used …
10:01 Ticket #1181 ("Vary: X-Forwarded-Proto" should be removed) updated by shaula@…
Thanks for your great support and pointing out the …

01/18/17:

16:34 Changeset in nginx-tests [1113:41690e007ad8] by Sergey Kandaurov <pluknet@…>
Tests: run proxy.t ipv6 test on mainline built without --with-ipv6.
15:25 Ticket #1183 (Add support for variables (or pool) inside ssl_certificate / ...) created by sunnybear@…
Nginx directives ssl_certificate / ssl_certificate_key leak variables …
15:09 Ticket #1176 (nginx changes ownership of /var/log/nginx/error.log even if error_log ...) updated by Yaroslav Zhuravlev
Thanks for the patch, currently in the queue for adding to nginx.org
12:55 Ticket #1181 ("Vary: X-Forwarded-Proto" should be removed) updated by Maxim Dounin
Replying to shaula@…: > Unfortunately Varnish and other …
12:35 Changeset in nginx_org [1891:6225d50b3cba] by Yaroslav Zhuravlev <yar@…>
Replaced semicolon with dot in health_check.
12:33 Changeset in nginx_org [1890:82ef6dd12534] by Yaroslav Zhuravlev <yar@…>
Supported scopes, functions hoisting, cycle "for" with var in njs.
12:33 Changeset in nginx_org [1889:52e6eb31f3fc] by Yaroslav Zhuravlev <yar@…>
Updated nginScript link on the "About" page.
12:30 Changeset in nginx_org [1888:3ed02f21146b] by Yaroslav Zhuravlev <yar@…>
Merged notes about versions in error_log.
09:53 Ticket #1181 ("Vary: X-Forwarded-Proto" should be removed) updated by shaula@…
Thanks for the hint with …
00:05 Ticket #1182 (Responses with "no-cache" or "max-age=0" should be cached) created by geoff.addepar.com@…
I know the summary sounds contradictory, but I believe that caching …

01/17/17:

15:52 Ticket #1181 ("Vary: X-Forwarded-Proto" should be removed) updated by Maxim Dounin
Type changed
> While Apache sees the request header "X-Forwarded-Proto: https" it …
14:59 Ticket #1181 ("Vary: X-Forwarded-Proto" should be removed) created by shaula@…
I'm using Nginx as SSL terminator and I've got the following setup: …
14:47 Changeset in nginx-tests [1112:79f93c764353] by Sergey Kandaurov <pluknet@…>
Tests: added basic proxy cache manager watermark test.

01/16/17:

15:49 Ticket #1176 (nginx changes ownership of /var/log/nginx/error.log even if error_log ...) updated by selivan@…
I unsubscribed from nginx-devel@…, please write updates to …
13:53 Ticket #1180 (Allow use of hostnames in set_real_ip_from) created by mmitar@…
I use nginx inside Docker containers and I also use a Docker container …
12:35 Ticket #1178 (Inconsistent PID file paths cause systemctl timeout) updated by MrMYHuang@…
Replying to thresh: > Interesting. It seems something …
12:05 Ticket #1178 (Inconsistent PID file paths cause systemctl timeout) updated by thresh
Interesting. It seems something went really wrong when installing …
11:30 Ticket #1178 (Inconsistent PID file paths cause systemctl timeout) updated by MrMYHuang@…
Replying to thresh: > > because I find /var/run is not a …
11:18 Ticket #1178 (Inconsistent PID file paths cause systemctl timeout) updated by thresh
> because I find /var/run is not a symbolic link to /run in my CentOS …
10:45 Ticket #1179 (Allow upstreams to be resolved using internal ngx resolver instead of ...) created by hrak@…
ngx_http_upstream_server currently uses ngx_parse_url() to parse …
09:33 Changeset in nginx_org [1887:9af1e88e10c8] by Sergey Kandaurov <pluknet@…>
Documented SASL EXTERNAL support in mail.
02:31 Ticket #1178 (Inconsistent PID file paths cause systemctl timeout) updated by MrMYHuang@…
Replying to i.bakirov@…: > Same problem, please see …

01/15/17:

17:44 Ticket #1178 (Inconsistent PID file paths cause systemctl timeout) updated by Ilyas Bakirov
Same problem, please see 1069, 884
04:50 Ticket #1178 (Inconsistent PID file paths cause systemctl timeout) created by MrMYHuang@…
My nginx is installed from nginx official yum repo. However, when I …

01/13/17:

15:17 Ticket #1177 (Segfault - Invalid pointer in ngx_ssl_shutdown > SSL_free > CRYPTO_free) updated by Maxim Dounin
Unfortunately, the trace provided is mostly useless: it just states …
09:38 Ticket #1177 (Segfault - Invalid pointer in ngx_ssl_shutdown > SSL_free > CRYPTO_free) created by SjonHortensius@…
This is not reproducable in any way that I know of; but after months …

01/12/17:

21:50 Ticket #1174 (Partial downloads (sendfile)) updated by Valentin V. Bartenev
Replying to pokotilenko@…: > That is true for …
19:48 Ticket #1174 (Partial downloads (sendfile)) updated by pokotilenko@…
That is true for Edge-Triggered epoll mode. What is the point of …
18:39 Ticket #1174 (Partial downloads (sendfile)) updated by Maxim Dounin
Sure, this is basically what The only option with the current …
16:23 Changeset in nginx-tests [1111:6c2538ad642d] by Sergey Kandaurov <pluknet@…>
Tests: auth external in mail is explicitly enabled since 1.11.9.
15:48 sendfile_test_loop.c attached to Ticket #1174 by pokotilenko@…
Direct epoll/sendfile test with signal interruption and sendfile loop
15:46 Ticket #1174 (Partial downloads (sendfile)) updated by pokotilenko@…
I've researched docs few more times and made some tests. It seems that …
13:32 Ticket #1174 (Partial downloads (sendfile)) updated by Maxim Dounin
> Maybe it's worth posting to kernel list about sendfile() now being …
10:02 Changeset in nginx-tests [1110:b9b115a2a28d] by Sergey Kandaurov <pluknet@…>
Tests: auth external mail tests.
08:46 Changeset in nginx-tests [1109:59d5c8ca7e4d] by Sergey Kandaurov <pluknet@…>
Tests: auth cram-md5 mail tests, pop3 user/pass and apop tests.

01/11/17:

22:41 Ticket #1174 (Partial downloads (sendfile)) updated by pokotilenko@…
BTW, turning off timer_resolution doesn't mean this issue will never …
22:06 Ticket #1174 (Partial downloads (sendfile)) updated by pokotilenko@…
Also on an older 3.2.0 kernel sendfile_test never hang in either …
21:50 sendfile_test.2.c attached to Ticket #1174 by pokotilenko@…
Direct epoll/sendfile test with signal interruption
21:43 Ticket #1174 (Partial downloads (sendfile)) updated by pokotilenko@…
Good catch! My understanding of what is happening is that: - since …
18:32 Ticket #1176 (nginx changes ownership of /var/log/nginx/error.log even if error_log ...) updated by selivan@…
Attached proposed documentation patch, also posted it to …
18:31 docs.patch attached to Ticket #1176 by selivan@…
17:09 Ticket #1174 (Partial downloads (sendfile)) updated by Maxim Dounin
Ok, thanks for testing. It looks like recent kernel changes in the …
16:27 Ticket #1174 (Partial downloads (sendfile)) updated by pokotilenko@…
Not using timer_resolution solves this issue for all tested cases: - …
15:59 Ticket #1174 (Partial downloads (sendfile)) updated by pokotilenko@…
Meantime tried different nginx versions from offsite ubuntu …
15:24 Ticket #1174 (Partial downloads (sendfile)) updated by Maxim Dounin
It looks like you are using timer_resolution. Please try without it …
14:53 Ticket #1176 (nginx changes ownership of /var/log/nginx/error.log even if error_log ...) updated by Maxim Dounin
Documentation is available in the Mercurial repo here: …
14:48 Ticket #1176 (nginx changes ownership of /var/log/nginx/error.log even if error_log ...) updated by selivan@…
Replying to mdounin: > It probably worth documenting that …
14:26 Ticket #1176 (nginx changes ownership of /var/log/nginx/error.log even if error_log ...) updated by Maxim Dounin
Component changed
As you can see from the nginx -V output, /var/log/nginx/error.log
14:21 Ticket #1174 (Partial downloads (sendfile)) updated by pokotilenko@…
Today installed kernel 4.8.0 and made tests on it. Issue persists: […]
12:10 Ticket #1176 (nginx changes ownership of /var/log/nginx/error.log even if error_log ...) created by selivan@…
nginx.conf: […] After receiving SIGUSR1 nginx changes ownership …

01/10/17:

20:33 sendfile_test.c attached to Ticket #1174 by pokotilenko@…
Direct epoll/sendfile test
20:32 location_debug.log attached to Ticket #1174 by pokotilenko@…
full debug.log (location)
20:32 main_debug.log attached to Ticket #1174 by pokotilenko@…
full debug.log (main)
20:31 Ticket #1174 (Partial downloads (sendfile)) updated by pokotilenko@…
The file in question has not been modified for a long time, it is …
14:04 Ticket #1174 (Partial downloads (sendfile)) updated by Maxim Dounin
The debug log snippet provided is not complete and doesn't contain …
13:45 Ticket #1175 (Confirmation of client_body_buffer_size specification) updated by ikuo-shimura.kccs.co.jp@…
Thanks for reply, I understood how to use Trac.
13:14 Ticket #1175 (Confirmation of client_body_buffer_size specification) closed by Maxim Dounin
invalid: This directive sets buffer size for reading client request body, see …
12:50 Ticket #1175 (Confirmation of client_body_buffer_size specification) created by ikuo-shimura.kccs.co.jp@…
Hi I want to know the specification of client_body_buffer_size. I …
11:56 Changeset in nginx-tests [1108:ff1a37f37419] by Sergey Kandaurov <pluknet@…>
Tests: removed seemingly useless and unsafe HTTP/2 RST_STREAM test.

01/09/17:

22:11 debug.log attached to Ticket #1174 by pokotilenko@…
portion of debug.log
22:08 Ticket #1174 (Partial downloads (sendfile)) created by pokotilenko@…
I'm seeing partial downloads. Investigation come to nginx closing …

01/08/17:

22:58 Ticket #915 ("Upgrade" header should not be proxied over h2) updated by jan.reges.siteone.cz@…
Hi, this issue with "Upgrade" header in Nginx vs. Safari took me …

01/07/17:

21:15 Ticket #1172 (Please consider pre-built package for Debian jessie-backports) closed by Sergey Budnevitch
wontfix: It will force to upgrade openssl to 1.0.2 all nginx mainline package …
20:21 Ticket #1173 ("client sent invalid request" when proxy protocol destination is 0.0.0.0) updated by Roman Arutyunyan
The error suggests that your listen directive does not have the …
02:24 Ticket #1173 ("client sent invalid request" when proxy protocol destination is 0.0.0.0) created by tmeagher.thumbtack.com@…
I recieve the following message in nginx error logs: 373 client sent …

01/06/17:

13:18 Ticket #318 (Change response behavior when SSL client certificate won't validate) updated by s.jaranowski@…
Do you have some plans for this issue?

01/05/17:

20:06 Ticket #1172 (Please consider pre-built package for Debian jessie-backports) created by plinss@…
I've been running Nginx from jessie-backports to get OpenSSL 1.0.2 for …
17:16 Ticket #1135 (Connections timing out after upgrading to 1.10.2) updated by juan.brein.breins.net@…
I've been hit by this as well. Disabling the nchan module worked for …
00:59 Ticket #195 (Close connection if SSL not enabled for vhost) updated by Maxim Dounin
Replying to BertrandBordage@…: > Is this reasonable to use …
00:50 Ticket #1171 (Clarify $server_name variable with regex server_name directive) closed by Maxim Dounin
wontfix: The [[http://nginx.org/r/server_name|server_name directive …

01/04/17:

23:58 Ticket #1169 (TLS works without supplying the ssl parameter without a WARN) updated by Maxim Dounin
There can be a lot of listening options, and requiring users to …
21:04 Ticket #1169 (TLS works without supplying the ssl parameter without a WARN) updated by spleefer90@…
Annoying people who use this on purpose could be solved by setting …
12:08 Changeset in nginx-tests [1107:d42cc683970d] by Sergey Kandaurov <pluknet@…>
Tests: skip unsafe HTTP/2 tests.
11:59 Changeset in nginx-tests [1106:4b0b10e39a08] by Sergey Kandaurov <pluknet@…>
Tests: fixed implicitly declared njs variables after 4337ed48d6d6.
01:46 Ticket #1171 (Clarify $server_name variable with regex server_name directive) created by davidjb
The documentation for $server_name mentions the following: […] …

01/03/17:

22:39 Ticket #1169 (TLS works without supplying the ssl parameter without a WARN) updated by mnordhoff@…
Logging a warning wouldn't break backwards compatibility, and …
17:27 Ticket #1170 (implement keepalive timeout for upstream) created by gadall@…
Microsoft's IIS, when its keepalive idle timeout expires (by default …
15:24 Ticket #195 (Close connection if SSL not enabled for vhost) updated by BertrandBordage@…
Is this reasonable to use the snakeoil certificate generated by …

01/02/17:

22:31 Ticket #1169 (TLS works without supplying the ssl parameter without a WARN) closed by Maxim Dounin
wontfix: This behaviour is intentional. Listening sockets can be shared between …
08:46 Ticket #1169 (TLS works without supplying the ssl parameter without a WARN) created by spleefer90@…
If there is a server block for the same port/IP that already has the …
Note: See TracTimeline for information about the timeline view.