Timeline



01/09/19:

16:29 Ticket #1696 (NGINX does not update cached response of POST requests) updated by Maxim Dounin
Could you please: 1. Make sure there are no 3rd party modules loaded. …
16:02 Ticket #1706 (Orphan processes after fatal signals) closed by Maxim Dounin
invalid: Thank you for your feedback. Doing anything in case of fatal signals …
15:14 Ticket #1706 (Orphan processes after fatal signals) created by jiazhouyang09@…
Hi, I'm a PhD student, and I'm studying how software handles signals. …
13:32 Ticket #1705 (Enable ssl if ssl_certificate is present) closed by Maxim Dounin
wontfix: I don't think this is a good feature. Rather, I would prefer to remove …
13:22 Ticket #1695 (Data is corrupted in static large objects (SLO swift API) when using ...) updated by greenx@…
The patch helped - it works as expected. Thank!
13:14 Ticket #1704 (Nginx should have a friendly notice when config file have same port ...) closed by Maxim Dounin
invalid: The message says: […] which clearly warns about conflicting server …
09:59 Ticket #1705 (Enable ssl if ssl_certificate is present) created by Olaf van der Spek
> If the directive is not present then either *:80 is used if nginx …
01:42 Ticket #1704 (Nginx should have a friendly notice when config file have same port ...) created by dannyZhou@…
nginx.conf to reproduce. […] Two server blocks with same listen …

01/08/19:

19:19 Ticket #1696 (NGINX does not update cached response of POST requests) updated by azhuchkov@…
I confirm the same issue for mainline version nginx/1.15.8: files of …

01/07/19:

04:31 Ticket #1701 (unable to import module ngx_http_proxy_module to secure cookies) closed by Maxim Dounin
invalid: To return cookies with the "Secure" flag set, consider instructing …
03:00 Ticket #1702 ([NGINX Plus Openid connect]:audience check failed for array type field) closed by Maxim Dounin
invalid: This Trac is for nginx. If you have issues with OpenID Connect …
02:59 Ticket #1703 ([NGINX Plus Openid Connect]: error log printing variable not value) closed by Maxim Dounin
invalid: This Trac is for nginx. If you have issues with OpenID Connect …

01/06/19:

15:49 Ticket #1702 ([NGINX Plus Openid connect]:audience check failed for array type field) updated by chunilalkukreja@…
I faced this issue with 3 legged authz code flow. And i believe this …
15:14 Ticket #1703 ([NGINX Plus Openid Connect]: error log printing variable not value) created by chunilalkukreja@…
If audience validation fails it throws error & dumps it to …
14:45 Ticket #1702 ([NGINX Plus Openid connect]:audience check failed for array type field) created by chunilalkukreja@…
With nginx plus openid connect feature, if the id_token has "aud" …

01/04/19:

09:19 Capture.PNG attached to Ticket #1701 by arvindkrbhatt@…
secure cookies screen shot
09:19 Ticket #1701 (unable to import module ngx_http_proxy_module to secure cookies) created by arvindkrbhatt@…
we are using Nginx running as container but we see cookies/session ids …
05:25 Ticket #1700 (UDP connections are terminated when updating Nginx executable file ...) closed by Maxim Dounin
wontfix: This is expected. Since there is single UDP socket to handle all …
04:37 Ticket #1699 (encoding error ssl_stapling_file) closed by Maxim Dounin
invalid: The "ssl_stapling_file" directive needs an OCSP response obtained from …

01/02/19:

12:50 Ticket #1700 (UDP connections are terminated when updating Nginx executable file ...) created by podko.andrew@…
UDP handling allow to use it for OpenVPN balancing, but Nginx isn't …

01/01/19:

19:11 Ticket #1699 (encoding error ssl_stapling_file) created by n8v8R@…
[…] nginx -t then produces: [emerg] 24249#24249: …

12/31/18:

17:30 Ticket #1698 (A minor optimization for ngx_log_debug) closed by Maxim Dounin
invalid: You are not expected to use more than one level in ngx_log_debugN() …
08:00 Ticket #1698 (A minor optimization for ngx_log_debug) updated by chronolaw@…
sorry for the wrong patch filename ,I have uploaded the right …
07:58 ngx_log.h.patch attached to Ticket #1698 by chronolaw@…
07:56 ngx_log.c.patch attached to Ticket #1698 by chronolaw@…
07:53 Ticket #1698 (A minor optimization for ngx_log_debug) created by chronolaw@…
In ngx_log_debug, it will compare log_level and level use '&',but if …

12/30/18:

20:57 Ticket #1697 (mail proxy: ManageSieve protocol support) created by muhlemmer@…
I'm representing the small FOSS community of …

12/29/18:

16:25 Ticket #1529 (Could not configure TLS1.3 ciphers in OpenSSL 1.1.1 pre4) updated by Laurence 'GreenReaper' Parry
While I sympathize with the desire not to implement an interface which …

12/27/18:

17:19 Ticket #1695 (Data is corrupted in static large objects (SLO swift API) when using ...) updated by Maxim Dounin
Thanks for checking. Corruption of the response produced by the slice …
13:09 Ticket #1696 (NGINX does not update cached response of POST requests) updated by azhuchkov@…
Sorry, forgot to put cache and backend configs. Here they are: […]
12:20 Ticket #1696 (NGINX does not update cached response of POST requests) created by azhuchkov@…
Recently I configured caching of POST requests. It's not user input, …
12:03 Ticket #1695 (Data is corrupted in static large objects (SLO swift API) when using ...) updated by greenx@…
I added an archive with a cache directory with all parts of the file.
12:01 bugceph.tar.gz attached to Ticket #1695 by greenx@…
content cache directory
11:36 Ticket #1695 (Data is corrupted in static large objects (SLO swift API) when using ...) updated by greenx@…
We reproduced it. I attach three files: two pcap files and source …
11:35 file attached to Ticket #1695 by greenx@…
11:28 nginx-client.pcap attached to Ticket #1695 by greenx@…
trafic from nginx to client
11:28 ceph-nginx.pcap attached to Ticket #1695 by greenx@…
trafic from ceph to nginx
08:23 Ticket #1533 (Some news about "support configure TLS1.3-Only ciphers") updated by rbaranauskas@…
Just FYI, there are no plans to fix the approach on the OpenSSL side, …
06:26 Ticket #1695 (Data is corrupted in static large objects (SLO swift API) when using ...) updated by greenx@…
I changed the logging level from error to warn. Now I see this …

12/26/18:

19:36 Ticket #1695 (Data is corrupted in static large objects (SLO swift API) when using ...) updated by Maxim Dounin
The message should be there unless you are using higher logging level. …
18:34 Ticket #1695 (Data is corrupted in static large objects (SLO swift API) when using ...) updated by greenx@…
The statement is true, but the error log is empty. Maybe it is not …
16:18 Ticket #1695 (Data is corrupted in static large objects (SLO swift API) when using ...) updated by Maxim Dounin
Priority, Keywords changed
So, the backend returns a 206 response with: 1. Content-Range
11:52 range-bug-with-SLO.png attached to Ticket #1695 by greenx@…
11:52 Ticket #1695 (Data is corrupted in static large objects (SLO swift API) when using ...) created by greenx@…
We found that data is corrupted in static large objects (SLO swift …

12/25/18:

15:09 Milestone nginx-1.15.8 completed
Status: scheduled Trunk: mainline * Bug fixes
08:54 Milestone njs-0.2.7 completed
Planned features: * Object.entries() and values() methods * Rest …

12/24/18:

09:43 Ticket #1661 (Nginx repository for ubuntu has no Release file for cosmic (18.10)) closed by thresh
fixed: Correct, both stable and mainline now carry cosmic versions.

12/23/18:

11:23 Ticket #1661 (Nginx repository for ubuntu has no Release file for cosmic (18.10)) updated by Laurence 'GreenReaper' Parry
This seems to be done, at least in mainline! Unfortunately with i386 …
11:22 Ticket #1654 (nginx does not honor ssl_protocols for TLSv1.3) updated by Laurence 'GreenReaper' Parry
Replying to yura3d@…: > I think the solution suggested by …

12/21/18:

13:26 Ticket #1694 (Prefer SNI name to Host header when selecting server block) closed by Maxim Dounin
invalid: In theory, you are right. SNI was designed to be used with the only …
04:28 Ticket #1694 (Prefer SNI name to Host header when selecting server block) created by cHYzZQo@…
Let's say I have a config file that looks like this. […] If I …

12/20/18:

22:32 Ticket #1693 (Documentation bug: Redirects without localization end up insecure) created by guardrex@…
Redirects without localization end up insecure The secure link ... …
17:10 Milestone unit-1.7 completed
Planned features: * nodejs support improvements
14:36 Ticket #1533 (Some news about "support configure TLS1.3-Only ciphers") updated by rbaranauskas@…
Got it, thanks for the explanation!
14:35 Ticket #1533 (Some news about "support configure TLS1.3-Only ciphers") updated by Maxim Dounin
The status is correct. We may, however, consider introducing a …
14:15 Ticket #1533 (Some news about "support configure TLS1.3-Only ciphers") updated by rbaranauskas@…
So the status of #1529 as "won't fix" is wrong, and you are
14:10 Ticket #1533 (Some news about "support configure TLS1.3-Only ciphers") updated by Maxim Dounin
This ticket is closed because it is duplicate of #1529 (the "planned …
12:41 Ticket #1533 (Some news about "support configure TLS1.3-Only ciphers") updated by rbaranauskas@…
I don't really get the situation - #1533 (this one) is closed, …

12/18/18:

15:37 Ticket #1692 (Zero level domain) updated by Maxim Dounin
> "The example.com and example.com. domains are syntactically …
08:02 Ticket #1692 (Zero level domain) updated by Highter87@…
"The example.com and example.com. domains are syntactically …

12/17/18:

16:31 Ticket #816 (Allow h2c and HTTP/1.1 support on the same listening socket) updated by AlekSi@…
It would be great to have that feature.

12/16/18:

22:41 Ticket #1654 (nginx does not honor ssl_protocols for TLSv1.3) closed by Maxim Dounin
fixed: We cannot selectively enable or disable TLSv1.3 without relying on the …
19:30 Ticket #1654 (nginx does not honor ssl_protocols for TLSv1.3) reopened by yura3d@…
I think the solution suggested by @mdounin above is strange. I have …

12/15/18:

14:16 Ticket #1690 (Add MITM detection) updated by Fabian Franz BSc
I got it working in njs: …

12/14/18:

17:18 Ticket #1684 (documentation for ngx_http_geo_module is inconsistent with the ...) closed by Maxim Dounin
fixed: Fix committed, thanks.
16:55 Ticket #1684 (documentation for ngx_http_geo_module is inconsistent with the ...) updated by Maxim Dounin <mdounin@…>
In [changeset:"286ae954009dd9249ba9652cb53461de908d9f10/nginx"

12/13/18:

14:27 Ticket #1692 (Zero level domain) closed by Maxim Dounin
invalid: The example.com and example.com. domains are syntactically …
12:53 Ticket #1692 (Zero level domain) updated by Highter87@…
Sorry... This […] to redirect example.com, but i can access …
12:48 Ticket #1692 (Zero level domain) created by Highter87@…
Why is open domain: "nginx.org." - point at the end of the line? I …

12/12/18:

17:58 Ticket #1690 (Add MITM detection) updated by Fabian Franz BSc
njs sounds like a good solution so i think it may work as the …
15:32 text.txt attached to Ticket #1689 by Nar
nginx -T
15:08 Ticket #68 (Include larger speed units for HttpLimitReqModule) updated by Maxim Dounin
The patch is wrong, it does not take into account that rates use fixed …
15:03 Ticket #1691 (ngx_http_browser_module treats amazon web service health checker as ...) updated by malarres@…
Thank you very much for the clarification
14:46 Ticket #1691 (ngx_http_browser_module treats amazon web service health checker as ...) closed by Maxim Dounin
invalid: The ancient_browser directive …
14:18 Ticket #1690 (Add MITM detection) updated by Maxim Dounin
I see at least two problems with this: 1. Detection of various TLS …
13:03 Ticket #1691 (ngx_http_browser_module treats amazon web service health checker as ...) created by malarres@…
Amazon Load Balancer performs a series of Health checks, and as user …
10:32 Ticket #68 (Include larger speed units for HttpLimitReqModule) updated by xdmitry@…
can we give it a go please? change is straightforward: […]
00:15 Ticket #1687 (Overrides system default minimum TLS version) updated by Kurt Roeckx
The nginx documentation currently says you can enable SSLv2 and SSLv3, …

12/11/18:

19:45 Ticket #1690 (Add MITM detection) created by Fabian Franz BSc
Caddy has a feature to detect TLS MITM attacks by comparing …
17:24 Ticket #1689 (Writing connections leak with http/2) updated by Maxim Dounin
Ok, so you observe open socket ... left in connection ... alerts on …
16:33 Ticket #1689 (Writing connections leak with http/2) created by Nar
Writing connections counter is gradually grow up as shown on munin …
15:29 Ticket #714 (Writing connection leak while SPDY enabled) closed by Maxim Dounin
duplicate: For most recent tickets about HTTP/2 issues, please refer to #1610, …
14:54 Ticket #1688 (want to get the socket port which use in nginx and upstream servers) updated by Maxim Dounin
Priority, Type changed
How do you expect to use such a variable?
03:11 Ticket #1688 (want to get the socket port which use in nginx and upstream servers) created by liutanrong@…
i can not log the backend_source_port,why nginx doesn't have a …

12/10/18:

22:04 Ticket #714 (Writing connection leak while SPDY enabled) reopened by Nar
Have same issue with nginx 1.15.7 [[Image(...)]] uname -a …
22:03 nginx_leak.jpg attached to Ticket #714 by Nar
14:54 Ticket #1687 (Overrides system default minimum TLS version) updated by Maxim Dounin
In theory. In practice, there are number of problems with this …
Note: See TracTimeline for information about the timeline view.