Timeline



05/18/17:

18:12 Ticket #1275 (php-fpm incorrectly populates PATH_INFO) closed by Maxim Dounin
invalid: PHP documentation on the ORIG_PATH_INFO variable …
16:29 fastcgi_params.txt attached to Ticket #1275 by jbusuttil@…
fastcgi_param include
16:28 nginx.conf.txt attached to Ticket #1275 by jbusuttil@…
nginx.conf
16:26 nginx-server.conf.txt attached to Ticket #1275 by jbusuttil@…
nginx server config
16:25 Ticket #1275 (php-fpm incorrectly populates PATH_INFO) created by jbusuttil@…
(domains and IPs have been anonymised throughout; config files …

05/17/17:

18:27 Ticket #990 (ssl_stapling_file does not work with multiple certificates) updated by Maxim Dounin
Replying to stackoverflow.com/users/1414715/scott-helme: > …
17:43 Ticket #990 (ssl_stapling_file does not work with multiple certificates) updated by Scott Helme
> Must-Staple is an attempt to turn OCSP Stapling into something it …
16:00 Ticket #1270 (TCP RST with SSL and HTTP Connection:close header) updated by elukey@…
I am a user and I had to spend a lot of time to figure out where that …
15:12 Ticket #1274 (nginx does not start in Windows Nano Server) closed by Maxim Dounin
wontfix: Yes, precompiled nginx windows binaries as provided at …
15:03 Ticket #990 (ssl_stapling_file does not work with multiple certificates) updated by Maxim Dounin
Type changed
So, from the above I conclude that support issues is not a concern, …
13:38 Ticket #1273 (Missing default secure configuration: proxy_ssl_verify) closed by Maxim Dounin
wontfix: The behaviour is in line with behaviour of previous nginx versions, …
12:14 Ticket #1274 (nginx does not start in Windows Nano Server) created by sandersaares@…
Attempting to start nginx in Windows Nano Server fails using …

05/16/17:

21:39 Ticket #1273 (Missing default secure configuration: proxy_ssl_verify) created by bishtspp@…
Hi, Is there a reason proxy_ssl_verify is not on by default? …
19:23 Ticket #990 (ssl_stapling_file does not work with multiple certificates) updated by jsha@…
> Always stapling OCSP responses was never a goal of OCSP stapling …
19:09 Ticket #990 (ssl_stapling_file does not work with multiple certificates) updated by Scott Helme
I know it's currently working as intended which is why I said "I'd …
13:18 Ticket #1270 (TCP RST with SSL and HTTP Connection:close header) closed by Maxim Dounin
wontfix: Replying to elukey@…: > Thanks a lot for the answer, I …
12:45 Changeset in nginx-tests [1176:eaa92d810bbb] by Sergey Kandaurov <pluknet@…>
Tests: realip tests for 'unix:' and hostname in set_real_ip_from.

05/15/17:

21:45 Ticket #1270 (TCP RST with SSL and HTTP Connection:close header) updated by elukey@…
Thanks a lot for the answer, I didn't find the comment in the code …
20:59 Ticket #868 (new variable: $remote_addr_anon) updated by Iruwen@…
The issue with the solution mentioned at stackoverflow specifically is …
18:46 Ticket #1128 (HTTP/2 with ngx_http_auth_request_module causes some JSON payloads to ...) updated by kcannon.gaikai.com@…
Looks like this was fixed in 1.10.3 …
18:05 Ticket #1261 (nginx 1.13.0/Solaris 11.3/amd64; coredump when using ssl_session_cache) closed by Maxim Dounin
fixed: Patch committed, thanks for reporting this.
17:55 Ticket #1261 (nginx 1.13.0/Solaris 11.3/amd64; coredump when using ssl_session_cache) updated by Maxim Dounin <mdounin@…>
In [changeset:"4925a6d1374649492376119f1c0b5aed6ee1bec1/nginx"
16:14 Changeset in nginx-tests [1175:717030fd5a94] by Maxim Dounin <mdounin@…>
Tests: added gzip prerequisite for "access_log ... gzip".
15:36 Ticket #1180 (Allow use of hostnames in set_real_ip_from) closed by Ruslan Ermilov
fixed
14:25 Ticket #1180 (Allow use of hostnames in set_real_ip_from) updated by Ruslan Ermilov <ru@…>
In [changeset:"df1a62c83b1b62ec1b99463cf9e5c4b661c3e57e/nginx"
13:22 Ticket #1272 (nginx don't return response body when upstream server discard request body) closed by Maxim Dounin
invalid: This is a bug in the http server you wrote, see ticket #1037 for …
12:43 Ticket #1271 ($arg_s:event:id does not work) closed by Maxim Dounin
wontfix: Variable names in nginx can only include alphabetical characters, …

05/14/17:

06:35 Ticket #1272 (nginx don't return response body when upstream server discard request body) created by Tevic@…
First, i write a http server without read request body and return code …

05/13/17:

22:04 Ticket #1271 ($arg_s:event:id does not work) updated by rcosnita@…
Here is a possible workaround for the problem: location …
22:02 Ticket #1271 ($arg_s:event:id does not work) updated by rcosnita@…
I know colon (:) is a reserved character but I think there are many …
21:36 Ticket #1271 ($arg_s:event:id does not work) updated by rcosnita@…
I've just reproduced the bug in the latest nginx relase: 1.13.0. The …
21:06 Ticket #1271 ($arg_s:event:id does not work) created by rcosnita@…
I try to set a variable in nginx configuration which holds the value …

05/12/17:

11:00 Ticket #1270 (TCP RST with SSL and HTTP Connection:close header) updated by Maxim Dounin
Quoting the code: […] If there are reasons to assume this comment …
10:27 Ticket #1163 (cache size grows over max_size) updated by Maxim Dounin
To obtain core dump with debug_points abort; debug level in logs is …
08:58 Ticket #1270 (TCP RST with SSL and HTTP Connection:close header) created by elukey@…
Hi everybody, we use Nginx to terminate TLS in front of a wide range …
07:27 Ticket #1163 (cache size grows over max_size) updated by turchanov@…
I did a reload and there are open socket left in connection messages …

05/11/17:

19:27 Ticket #990 (ssl_stapling_file does not work with multiple certificates) updated by Maxim Dounin
As previously explained, this is not a bug. Everything works as …
17:05 Ticket #772 (No Vary header on 304 Response.) updated by hthetiot@…
Testing nginx static from https://redbot.org result: […]
02:52 Ticket #1269 ($upstream_response_time is improperly evaluated in header filter handlers) updated by Maxim Dounin
Status, Component changed
That's expected behaviour, $upstream_response_time only make sense …
02:34 Ticket #1269 ($upstream_response_time is improperly evaluated in header filter handlers) created by Robert Paprocki
$upstream_response time is incorrectly defined as the direct …
00:19 Ticket #1268 (A regression) closed by Maxim Dounin
invalid: The problem is that port's IPv6 option defines its own --with-cc-opt

05/10/17:

23:12 Ticket #1268 (A regression) created by osokin@…
Hi, I've got a report from FreeBSD maillist about a regression in …
17:20 Ticket #1163 (cache size grows over max_size) updated by Maxim Dounin
So from (2) it is clear that the problem is locked entries in cache. …
15:12 Ticket #1267 (TLS 1.0 handshake fails on upstream when TLS1.2 is enabled) closed by Maxim Dounin
invalid: The problem is the the server in question rejects SSL handshake by …
14:40 Ticket #1267 (TLS 1.0 handshake fails on upstream when TLS1.2 is enabled) created by abarre@…
Proxification to server accepting TLSv1 fails when TLSv1.2 is …
12:13 Ticket #808 (Defining http2 without ssl leads to HTTP/1.1 client failure) updated by Maxim Dounin
See also #1266.
12:13 Ticket #1266 (nginx:1.12.0-alpine http2 responds with binary constant without headers) closed by Maxim Dounin
duplicate: It looks like you are trying to use an plain http2 listening socket …

05/09/17:

19:00 Ticket #990 (ssl_stapling_file does not work with multiple certificates) updated by jsha@…
I'm an engineer from Let's Encrypt, and I'd also like to lend my …

05/08/17:

14:18 Ticket #1266 (nginx:1.12.0-alpine http2 responds with binary constant without headers) updated by soulne4ny@…
Still not docker. It disappears when I remove http2 from server …
14:13 Ticket #1266 (nginx:1.12.0-alpine http2 responds with binary constant without headers) updated by soulne4ny@…
Sorry. It is not about nginx version. It is something else, probably …
00:38 Ticket #1266 (nginx:1.12.0-alpine http2 responds with binary constant without headers) created by soulne4ny@…
I've just tried docker's image nginx:1.12.0-alpine. With …

05/07/17:

05:28 Ticket #1265 (I keep getting 502 bad way error while I was configuring proxy_pass) closed by Ruslan Ermilov
invalid

05/06/17:

16:42 Ticket #990 (ssl_stapling_file does not work with multiple certificates) reopened by Scott Helme
I'd like to open this ticket again to look at updating the …
16:20 Ticket #1257 (Some nginx TLS tests started failing with LibreSSL 2.5.3) updated by hdatma@…
16:02 Ticket #1265 (I keep getting 502 bad way error while I was configuring proxy_pass) updated by ddwolf@…
close it please. I've found out the problem, It's not nginx's error
14:56 Ticket #1265 (I keep getting 502 bad way error while I was configuring proxy_pass) created by ddwolf@…
here is the config file: […]
01:50 Ticket #1261 (nginx 1.13.0/Solaris 11.3/amd64; coredump when using ssl_session_cache) updated by Maxim Dounin
It looks like there is more than one problem here. Oracle Developer …

05/05/17:

05:49 Ticket #1163 (cache size grows over max_size) updated by turchanov@…
1) I configured "error_log logs/error.log notice;" and verified that I …

05/04/17:

16:19 Changeset in nginx-tests [1174:ec9ddfed9b63] by Sergey Kandaurov <pluknet@…>
Tests: handled SIGPIPE in h2.t.
16:05 Changeset in nginx-tests [1173:1a54d45d5587] by Sergey Kandaurov <pluknet@…>
Tests: handled SIGPIPE in ssl_sni_reneg.t.
11:40 Changeset in nginx-tests [1172:7e81d47faa07] by Sergey Kandaurov <pluknet@…>
Tests: enabled test with IPv6 in proxy_ssl_name.t.
11:31 Changeset in nginx-tests [1171:cdbdb75cf194] by Sergey Kandaurov <pluknet@…>
Tests: dropped try_run() checks for hosts without IPv6 support. Tests …
11:31 Changeset in nginx-tests [1170:cf14cfe9ec8c] by Sergey Kandaurov <pluknet@…>
Tests: dropped obsolete ipv6 prerequisite.
11:27 Ticket #1264 (proxy_set_header directives unable to be set in condition blocks) closed by Maxim Dounin
invalid: The "if" directive is a block directive and creates a separate context …
11:07 Ticket #1264 (proxy_set_header directives unable to be set in condition blocks) created by rigrassm@…
Nginx will not allow the proxy_set_header directive to be used inside …
08:52 Ticket #1261 (nginx 1.13.0/Solaris 11.3/amd64; coredump when using ssl_session_cache) updated by skrueger8@…
The root cause seems to be that nginx thinks it can use GCC atomics …

05/03/17:

16:38 Ticket #1263 (Segmentation Fault when SSI is used in sub-request) updated by Maxim Dounin
Status changed
Thanks for the report, looks like a generic problem in the SSI module. …
16:05 Ticket #1263 (Segmentation Fault when SSI is used in sub-request) created by peter.magdina.sk@…
Hi, nginx worker process crashes with segfault when SSI is used in a …
10:36 Changeset in nginx-tests [1169:518d1c865812] by Sergey Kandaurov <pluknet@…>
Tests: avoid illegal dereference on errors in h2_headers.t.

05/02/17:

11:38 Ticket #1248 (syslog UDP sockets growing until 28230 connections.) closed by Maxim Dounin
invalid: Ok, this perfectly explains observed behaviour. With 1024 worker …
11:27 Ticket #1246 (proxy_pass does not form correct URI when declared with $scheme variable) closed by Maxim Dounin
invalid: Quoting the proxy_pass directive description: A server name, its …
11:18 Ticket #1207 (Distinguish between 301 and 302 redirects when proxy_redirect off) updated by Maxim Dounin
If you need help with configuring nginx, consider asking for help in …

05/01/17:

05:57 Ticket #1262 (connect_(timeout|error) option in proxy_next_upstream) created by CAFxX@…
Currently proxy_next_upstream supports only "error" or "timeout", that …

04/30/17:

07:52 Ticket #1209 (Weird net::ERR_SPDY_PROTOCOL_ERROR errors when http2 emabled) updated by WarriorXK@…
Since chrome 58 i get the same error, IE, Safari and Firefox work fine …

04/29/17:

14:14 Ticket #1261 (nginx 1.13.0/Solaris 11.3/amd64; coredump when using ssl_session_cache) created by Slarky@…
Hi, nginx 1.13 dumps core on Solaris 11.3 with Oracle Developer Studio …
05:49 Ticket #1207 (Distinguish between 301 and 302 redirects when proxy_redirect off) updated by melihusa2016@…
I didn't fix my problem.Please help me. Restart didn't solve my …

04/28/17:

19:35 Ticket #1179 (Allow upstreams to be resolved using internal ngx resolver instead of ...) updated by Ruslan Ermilov
Resolvers are configured as part of the configuration process. Even …
19:25 Ticket #1188 (Send "immutable" keyword in Cache-Control when "expires max") updated by Ruslan Ermilov
What's wrong with add_header Cache-Control immutable;?
11:45 Ticket #1246 (proxy_pass does not form correct URI when declared with $scheme variable) updated by Ruslan Ermilov
Try proxy_pass $scheme://127.0.0.1/hu$request_uri;.
09:16 Ticket #1248 (syslog UDP sockets growing until 28230 connections.) updated by olivier.gondouin@…
In this configuraiton, there are 1024 workers to manage burst usage. …
07:58 Ticket #1260 (Regex Location fails resolver DNS lookup) closed by Ruslan Ermilov
invalid: Hostname in proxy_pass without variables is resolved on start-up …
00:00 Ticket #1260 (Regex Location fails resolver DNS lookup) updated by hulu1522@…
Sorry, the location that did not work has an error in it from our …

04/27/17:

23:57 Ticket #1260 (Regex Location fails resolver DNS lookup) created by hulu1522@…
We are developing with Kubernetes and came across an interesting issue …
18:35 Ticket #1094 (CRL check for Estonian ID cards fails) updated by jyrno42@…
Adding the response i got from SK.ee for future wanderers. Translated …
14:11 Ticket #1259 (nginx build fails when using gcc7 compiler) closed by Maxim Dounin
fixed: Fix committed, thanks.
14:05 Ticket #1259 (nginx build fails when using gcc7 compiler) updated by Maxim Dounin <mdounin@…>
In [changeset:"f38647c651a8d5c884b5aacc9f9a5b1af196309b/nginx"
13:57 Changeset in nginx [7136:d409ab1e8e4d]stable-1.12 by Maxim Dounin <mdounin@…>
Added missing "fall through" comments (ticket #1259). Found by gcc7 …
08:23 Ticket #1250 (Connection reset with low http2_max_requests) updated by Lisio@…
Tried to find browser that works normally with current nginx but …
08:02 Ticket #1259 (nginx build fails when using gcc7 compiler) updated by Dariusz Bogdanski
Thank you for the explanation.

04/26/17:

19:24 Ticket #1259 (nginx build fails when using gcc7 compiler) updated by Maxim Dounin
Thanks for testing. Without -Werror it is very easy to miss …
18:20 Ticket #1259 (nginx build fails when using gcc7 compiler) updated by Dariusz Bogdanski
Thanks. With your patch it compiles without any issues with gcc7 Just …
17:50 Ticket #1057 (Google QUIC - statement) updated by stackoverflow.com/users/625349/clint-priest
https://blog.brave.com/quic-in-the-wild-for-google-ad-advantage/
17:13 Ticket #1257 (Some nginx TLS tests started failing with LibreSSL 2.5.3) updated by jirutka@…
Replying to mdounin: Thanks for clarification! We have …
16:52 Ticket #1259 (nginx build fails when using gcc7 compiler) updated by Maxim Dounin
Try the following patch: […]
15:49 Ticket #1250 (Connection reset with low http2_max_requests) updated by Valentin V. Bartenev
There are known issues in browsers: …
15:39 Ticket #1250 (Connection reset with low http2_max_requests) updated by sunnybear@…
Confirm this issue on slow connections (detect very rarely, on slow …
13:57 Ticket #1259 (nginx build fails when using gcc7 compiler) created by Dariusz Bogdanski
Nginx build fails when using gcc7 compiler. I have experienced it on …
13:51 Ticket #1258 (Network error when download file by using HTTP/2) closed by Maxim Dounin
invalid: The problem is that throttling implementation in Chrome introduces …
12:45 Ticket #1257 (Some nginx TLS tests started failing with LibreSSL 2.5.3) updated by Maxim Dounin
Yes, and this is exactly what nginx wants to happen. It then uses …
12:09 Ticket #1257 (Some nginx TLS tests started failing with LibreSSL 2.5.3) updated by jirutka@…
Please read also the rest of the documentation: If verify_callback …
09:59 Ticket #1257 (Some nginx TLS tests started failing with LibreSSL 2.5.3) closed by Sergey Kandaurov
invalid: As previously noted, this is not a problem in nginx.
09:58 Ticket #1257 (Some nginx TLS tests started failing with LibreSSL 2.5.3) updated by Sergey Kandaurov
Replying to jirutka@…: > However, it also seems that the …
08:51 Ticket #1258 (Network error when download file by using HTTP/2) updated by cangmingh@…
There is my nginx config. https://p.ngx.cc/c2
08:34 Ticket #1258 (Network error when download file by using HTTP/2) updated by Ilyas Bakirov
Could you please share nginx configuration file?
08:06 Ticket #1258 (Network error when download file by using HTTP/2) created by cangmingh@…
Download file with slow speed by using HTTP/2. The network error will …
01:08 Ticket #1257 (Some nginx TLS tests started failing with LibreSSL 2.5.3) updated by jirutka@…
So, Duncaen from VoidLinux has identified potential cause in LibreSSL …

04/25/17:

21:16 Milestone 1.13.0 completed
Status: released Trunk: mainline * HTTP/2 bugfixes * TLS …
21:06 Ticket #1257 (Some nginx TLS tests started failing with LibreSSL 2.5.3) updated by jirutka@…
VoidLinux guys started investigating it more and according to them the …
17:50 Ticket #1257 (Some nginx TLS tests started failing with LibreSSL 2.5.3) updated by jirutka@…
LibreSSL bug report: …
17:47 nginx-tests.log attached to Ticket #1257 by jirutka@…
nginx-tests log
17:47 Ticket #1257 (Some nginx TLS tests started failing with LibreSSL 2.5.3) created by jirutka@…
After we updated LibreSSL from 2.4.4. to 2.5.3 in Alpine Linux, we …
13:15 Ticket #1163 (cache size grows over max_size) updated by Maxim Dounin
The fact that it doesn't happen without HTTP/2 may mean that this is a …
13:10 Ticket #1093 (Support http_429 in *_cache_use_stale) closed by Maxim Dounin
fixed
13:10 Ticket #977 (ngx_http_special_response.c: Add "429 Too Many Requests") closed by Maxim Dounin
fixed
09:02 Ticket #1093 (Support http_429 in *_cache_use_stale) updated by piotrsikora.google.com@…
Fixed in 3ef4cadfad7f, …
09:02 Ticket #977 (ngx_http_special_response.c: Add "429 Too Many Requests") updated by piotrsikora.google.com@…
Fixed in 3ef4cadfad7f, …
02:41 Ticket #1163 (cache size grows over max_size) updated by turchanov@…
I will check you suggestions but, bear with me, aren't you missing the …

04/24/17:

15:08 Ticket #1163 (cache size grows over max_size) updated by Maxim Dounin
Again, to clarify: growing cache you are seeing is just a symptom. It …
13:23 Ticket #1163 (cache size grows over max_size) reopened by turchanov@…
I beg to differ! There were no segfaults and I do not use in my setup …
12:42 Ticket #1163 (cache size grows over max_size) closed by Maxim Dounin
invalid: The fact that the problem happens only with HTTP/2 indicate that the …
02:18 Ticket #1163 (cache size grows over max_size) updated by turchanov@…
I see the problem with current version 1.12.0, btw.
02:16 Ticket #1163 (cache size grows over max_size) reopened by turchanov@…
This bug still happens even when I do not kill workers or even not …

04/23/17:

23:09 Ticket #1256 (match-all regex server name not always matching) closed by Maxim Dounin
invalid
22:32 Ticket #1256 (match-all regex server name not always matching) updated by namazso@…
Oops, sorry, it turned out that it was a result of a misconfiguration. …
21:37 Ticket #1256 (match-all regex server name not always matching) updated by Maxim Dounin
Please show listen directives from the server blocks in question. …

04/22/17:

19:45 Ticket #1256 (match-all regex server name not always matching) created by namazso@…
I have a server, with the name […] that is supposed to catch any …
07:12 Ticket #1255 (map regexp fail to match) updated by Ruslan Ermilov
Status, Component changed

04/21/17:

22:08 Ticket #1255 (map regexp fail to match) updated by higuita
humm... that makes sense! i was fooled by the log so probably using …
20:33 Ticket #1255 (map regexp fail to match) updated by Ruslan Ermilov
In you case, the $http_incap_* variables do not exist and as such …
19:38 Ticket #1255 (map regexp fail to match) created by higuita
I have this code: map …
19:28 Ticket #1005 (client_body_timeout does not send 408 as advertised) updated by lr1980@…
we have a load balancer - haproxy. haproxy is forwarding to nginx …
17:15 Ticket #1254 (nginx leaks Basic Auth password through timing side channel when ...) updated by Leon Klingele
Then why do you still support it / mention it in the docs? Using the …
16:06 Tickets #1199,​913,​1099,​1118,​1217,​1254,​313,​390,​487,​570,​828,​1223,​1240,​296,​338,​346,​388,​398,​411,​546,​610,​893 batch updated by Maxim Dounin
Sensitive changed
09:30 Ticket #1254 (nginx leaks Basic Auth password through timing side channel when ...) closed by Ruslan Ermilov
wontfix: Quote from the docs (http://nginx.org/r/auth_basic_user_file): …

04/20/17:

21:45 Ticket #1254 (nginx leaks Basic Auth password through timing side channel when ...) updated by Leon Klingele
Your issue tracker is broken. I explicitly checked the "Sensitive" …
21:42 Ticket #1254 (nginx leaks Basic Auth password through timing side channel when ...) created by Leon Klingele
When using a {PLAIN} password inside the …
14:03 Ticket #1253 (cookies are not send if location contains trailing slash) closed by Maxim Dounin
invalid: Quoting the location directive …
13:44 Ticket #1252 (Multiplexing different hosts into one HTTP/2 connection leads to 421) updated by Oleg Davydov
Thank you, will wait for this fix appears in chrome stable.
13:43 Ticket #1022 (Nginx graceful shutdown doesn't inform clients to close "keep-alive" ...) updated by Valentin V. Bartenev
IMHO introducing timeout here doesn't solve the problem. Client can …
13:29 Changeset in nginx-tests [1168:8821e405b91e] by Sergey Kandaurov <pluknet@…>
Tests: handled SSL negotiation errors.
13:05 Changeset in nginx-tests [1167:1e79a9613813] by Sergey Kandaurov <pluknet@…>
Tests: handled SIGPIPE in fastcgi tests.
13:03 Changeset in nginx-tests [1166:2b8523bd4988] by Sergey Kandaurov <pluknet@…>
Tests: handled broken connections in http_keepalive.t.
13:03 Changeset in nginx-tests [1165:ba26845f53ff] by Sergey Kandaurov <pluknet@…>
Tests: reduced the number of UDP streams in stream_udp_upstream.t.
07:22 Ticket #1253 (cookies are not send if location contains trailing slash) created by bbrand84@…
We had the issue that cookies were not send when a location path has a …

04/19/17:

23:35 Ticket #1252 (Multiplexing different hosts into one HTTP/2 connection leads to 421) closed by Maxim Dounin
invalid: The 421 Misdirected Request status code is a special code introduced …
23:01 Ticket #1252 (Multiplexing different hosts into one HTTP/2 connection leads to 421) created by Oleg Davydov
Quote from https://tools.ietf.org/html/rfc7540: […] That means …
19:19 Ticket #1022 (Nginx graceful shutdown doesn't inform clients to close "keep-alive" ...) updated by westse@…
You are right about the misinterpretation - "graceful" likely means …
15:00 Ticket #1022 (Nginx graceful shutdown doesn't inform clients to close "keep-alive" ...) closed by Maxim Dounin
wontfix: Your interpretation of "graceful close on the transport connection" is …
Note: See TracTimeline for information about the timeline view.