Timeline



05/25/20:

19:53 Ticket #1986 (Proxy SSL Verify) updated by sakshamnsit66@…
Description changed
19:52 Ticket #1986 (Proxy SSL Verify) closed by Maxim Dounin
invalid: For questions, please use [http://nginx.org/en/support.html support …
19:50 Ticket #1986 (Proxy SSL Verify) created by sakshamnsit66@…
What are the verification steps involved in the …
17:39 Ticket #1330 (OCSP stapling non-functional on IPv6-only host) updated by Roman Arutyunyan
In 7652:7cffd81015e7/nginx: OCSP stapling: iterate over all responder …
17:37 Ticket #1534 (OCSP client certificate validation) closed by Roman Arutyunyan
fixed: Fix committed.
17:36 Ticket #1534 (OCSP client certificate validation) updated by Roman Arutyunyan
In 7653:8409f9df6219/nginx: SSL: client certificate validation with …

05/23/20:

14:15 Ticket #1535 (proxy_bind and resolver IP version mismatch) updated by poige@…
Replying to [comment:4

05/22/20:

17:17 Ticket #196 (Inconsistent behavior on uri's with unencoded spaces followed by H) updated by Maxim Dounin
uname -a changed
See also #1985.
17:17 Ticket #1985 (No header response in 400 Bad Request) closed by Maxim Dounin
duplicate: As already explained in …
15:29 Ticket #1985 (No header response in 400 Bad Request) created by Seena Fallah
When sending bad requests like […] Nginx will response 400 Bad …
14:06 Ticket #1984 (Nginx module installation issue) closed by Sergey Kandaurov
wontfix: nginx-0.8.54 is an old enough version, you'd need at least nginx-1.5.2.
13:41 Ticket #1984 (Nginx module installation issue) created by amit000790@…
- When I want to install the Nginx module that time accrued issue. …
11:18 Ticket #1808 (Inconsistent encoding in rewrites) updated by wknapik@…
See https://github.com/kubernetes/ingress-nginx/issues/5576 for a …
11:14 Ticket #1535 (proxy_bind and resolver IP version mismatch) updated by https://stackoverflow.com/users/9252236/mayank-j
Hi! Been there done that ! proxy_bind does randomly behave weird …
09:47 Ticket #1808 (Inconsistent encoding in rewrites) updated by wknapik@…
You can do this for redirects: […] and this for proxying […] …

05/21/20:

12:11 Ticket #1982 (Zero length UDP packets aren't forwarded to upstreams but a lack of ...) updated by vl
Status changed
Yes, indeed such packets aren't forwarded currently. Did you hit the …
11:53 Ticket #1808 (Inconsistent encoding in rewrites) updated by zingaburga@…
Bug still exists in 1.18.0. It seems that it's only the first …

05/20/20:

14:06 Ticket #724 (Init script does not check config on reload for Ubuntu mainline packages) updated by Maxim Dounin
See also #1983.
14:06 Ticket #1983 (nginx.service unit-file in rpm (CentOS 7,8)) closed by Maxim Dounin
duplicate: The "nginx -s reload" does not have an exit code either, it's just a …
13:32 Ticket #1983 (nginx.service unit-file in rpm (CentOS 7,8)) created by aleksandr.yakimov@…
Hi In an unit-file nginx.server (from RPM packages for CentOS 7,8) I …
07:00 Ticket #1982 (Zero length UDP packets aren't forwarded to upstreams but a lack of ...) created by d0x2f@…
Using wireshark I can see that zero length packets aren't forwarded to …

05/19/20:

13:36 Milestone njs-0.4.1 completed
Planned features and enhancements: * headersIn and raw headers API * …

05/18/20:

19:10 Ticket #808 (Defining http2 without ssl leads to HTTP/1.1 client failure) updated by Maxim Dounin
See also #1981.
19:09 Ticket #1981 (no logging of HTTP/1.x requests to a plain text HTTP/2 listening socket) updated by Maxim Dounin
Status, Summary changed
You were given an explanation (see ticket:1979#comment:1), and …
17:49 Ticket #1981 (no logging of HTTP/1.x requests to a plain text HTTP/2 listening socket) created by Hans-Cees
Hi, two days ago you closed my ticket without offering me further …
14:11 Ticket #1980 (custom 401 error_page with auth_basic never shows the custom 401 page) updated by Maxim Dounin
Replying to mmattel@…: > One thing pop´s up. When …
11:41 Ticket #1980 (custom 401 error_page with auth_basic never shows the custom 401 page) updated by mmattel@…
Your example works. I do not know what went wrong on my side that this …
01:03 Ticket #1869 (Wrong client IP in errors logged early in request processing when ...) updated by Maxim Dounin
See also #1978, which is somewhat similar.
01:02 Ticket #1978 (Logging real client IP on invalid request) closed by Maxim Dounin
wontfix: As long as there is a syntax error in the request line, nginx does not …

05/17/20:

16:17 Ticket #1980 (custom 401 error_page with auth_basic never shows the custom 401 page) closed by Maxim Dounin
worksforme: Works fine here. Example configuration: […] Test request: […] …
16:02 Ticket #808 (Defining http2 without ssl leads to HTTP/1.1 client failure) updated by Maxim Dounin
See also #1979.
16:02 Ticket #1979 (listen 80 http2; combined with proxy_pass http:// brakes website) closed by Maxim Dounin
duplicate: Using listen ... http2; without ssl configures listening socket to …
13:28 Ticket #1980 (custom 401 error_page with auth_basic never shows the custom 401 page) updated by mmattel@…
Not a documentation ticket -> core
13:16 Ticket #1980 (custom 401 error_page with auth_basic never shows the custom 401 page) created by mmattel@…
When using auth_basic (works great) and defining a custom 401 error …

05/16/20:

20:42 Ticket #1979 (listen 80 http2; combined with proxy_pass http:// brakes website) updated by Hans-Cees
thank you for your wonderful server and hope I am not wasting your time.
20:40 guth-nginx.txt attached to Ticket #1979 by Hans-Cees
config
20:40 Ticket #1979 (listen 80 http2; combined with proxy_pass http:// brakes website) created by Hans-Cees
Hi, I do not know if this is how nginx should behave, but it …
16:36 Ticket #1535 (proxy_bind and resolver IP version mismatch) updated by poige@…
Hi! Adding support for several IPs would solve the whole issue. When …
06:51 Ticket #1978 (Logging real client IP on invalid request) created by miika.kankare.ocllo.fi@…
We run nginx behind a proxy, which sets the X-Forwarded-For header …

05/14/20:

18:04 Ticket #1971 (Invalid 200 (OK) response code to range request) updated by Maxim Dounin
Any valid client is expected to handle 200 anyway, as servers are not …
17:39 Ticket #1971 (Invalid 200 (OK) response code to range request) updated by topoden@…
Frankly, this is a weird approach to use "...may ignore..." clause …
15:34 Ticket #1977 (Implement TLS 1.3 random record padding to mitigate BREACH) updated by Maxim Dounin
Priority changed
I believe it was demonstrated more than once that padding cannot …
00:58 Ticket #1977 (Implement TLS 1.3 random record padding to mitigate BREACH) updated by Craig Andrews
Description changed
00:56 Ticket #1977 (Implement TLS 1.3 random record padding to mitigate BREACH) created by Craig Andrews
The TLS specification (RFC 8446) section 5.4 defines optional Record …

05/13/20:

21:17 Ticket #698 (Add an option to proxy_cache_path that allows to set group permissions) closed by Maxim Dounin
wontfix: Permissions are set on the cache directory and files in a such way …
10:01 Ticket #1888 (Nginx cache has multiple formats, and many of them are invalid during ...) updated by yunoasgit@…
It is hoped that the cache file can be deleted through del, and key …

05/12/20:

14:54 Ticket #972 (Clarify $arg_name and $args in embedded variables documentation) closed by Maxim Dounin
wontfix: The $arg, also known as $query_string, represents query string as …

05/10/20:

17:32 Ticket #1970 (ssl_ecdh_curve avoid 0-RTT) closed by Maxim Dounin
duplicate: Duplicate of #1969.
17:32 Ticket #1969 (ssl_ecdh_curve avoid 0-RTT) closed by Maxim Dounin
invalid: This does not look like a bug in nginx, but rather a question about …
17:11 Ticket #1975 (Certificates in ssl_trusted_certificate doesn't have to be CA, docs ...) closed by Maxim Dounin
wontfix: While strictly speaking you are right, and this can be used as a …
16:46 Ticket #1976 (Nginx DNS cache issue. ngx_http_core_module valid config is not working.) closed by Maxim Dounin
invalid: Domain names used in nginx configuration are normally resolved during …
16:25 Ticket #1974 (Custom variable not written to access_log when nginx.status is 400) closed by Maxim Dounin
invalid: When a 400 error occurs before request processing starts - for …
16:17 Ticket #1384 (request body may be corrupted when content-length is not set in ...) updated by Maxim Dounin
See also #1973.
16:17 Ticket #1973 (Intermittent form body loss with concurrent HTTP2 POST requests) closed by Maxim Dounin
duplicate: The 1.10.3 is the version obsolete more than 3 years ago. Further, in …
15:48 Ticket #1972 (Use of IRIs in redirect responses causes nginx to violate HTTP RFCs) closed by Maxim Dounin
wontfix: It certainly shouldn't auto-punycode. The return directive return …

05/09/20:

11:19 Ticket #1976 (Nginx DNS cache issue. ngx_http_core_module valid config is not working.) created by aswin020@…
Setup: Ec2 instance with Nginx 1.12.2 behind an AWS Load balancer. …
07:38 Ticket #1975 (Certificates in ssl_trusted_certificate doesn't have to be CA, docs ...) created by Forkest@…
http://nginx.org/en/docs/http/ngx_http_ssl_module.html

05/08/20:

13:46 Ticket #1974 (Custom variable not written to access_log when nginx.status is 400) created by bxn-ts@…
TL;DR: A custom variable is not written to my access log file when the …
02:24 Ticket #1971 (Invalid 200 (OK) response code to range request) closed by Maxim Dounin
invalid: As per [https://tools.ietf.org/html/rfc7233#section-3.1 RFC 7233, …

05/07/20:

17:51 Ticket #1973 (Intermittent form body loss with concurrent HTTP2 POST requests) created by mitaylor.mozilla.com@…
This was originally reported here: …
17:14 Ticket #1972 (Use of IRIs in redirect responses causes nginx to violate HTTP RFCs) created by Avamander
For example when you do this in a server block: ` return 301 …
08:22 Ticket #1971 (Invalid 200 (OK) response code to range request) created by topoden@…
Observed behaviour: nginx responds with 200 (OK) to 0-10 ranged …
00:08 Ticket #972 (Clarify $arg_name and $args in embedded variables documentation) reopened by Eccenux@…
I respectfully disagree. It's not only the question of how HTTP …

05/06/20:

11:22 Ticket #1970 (ssl_ecdh_curve avoid 0-RTT) created by long76@…
if i set ssl_ecdh_curve secp521r1:secp384r1; ssllabs show 0-RTT No if …
11:20 Ticket #1969 (ssl_ecdh_curve avoid 0-RTT) created by long76@…
if i set ssl_ecdh_curve secp521r1:secp384r1; ssllabs show 0-RTT No if …

05/05/20:

21:04 Ticket #676 (Different ssl_protocols per server won`t work) updated by Maxim Dounin
See also #1967, #1968.
21:04 Ticket #1968 (Cannot use different SSL protocols in different server blocks) closed by Maxim Dounin
duplicate
21:04 Ticket #1967 (Cannot use different SSL protocols in different server blocks) closed by Maxim Dounin
duplicate
21:03 Ticket #1968 (Cannot use different SSL protocols in different server blocks) updated by Maxim Dounin
Duplicate of #676.
21:03 Ticket #1967 (Cannot use different SSL protocols in different server blocks) updated by Maxim Dounin
Duplicate of #676.
21:01 Ticket #1123 (Include timezone in error logs) closed by Maxim Dounin
wontfix: The access log format uses time with timezone by default for …
20:44 Ticket #1966 (MKCOL refuses creation without trailing slash) closed by Maxim Dounin
duplicate: Ok, thanks for your feedback. The clarifying text is available in the …
17:50 Ticket #1123 (Include timezone in error logs) updated by Artem Russakovskii
Just found this to be the case, similar to apache. Kind of dumbfounded …
10:43 Ticket #1968 (Cannot use different SSL protocols in different server blocks) created by jr3074@…
Nginx cannot use different ssl_protocols in different server blocks …
10:40 Ticket #1967 (Cannot use different SSL protocols in different server blocks) created by jr3074@…
Nginx cannot use different ssl_protocols in different server blocks …
07:47 Ticket #1966 (MKCOL refuses creation without trailing slash) updated by chrysn
If nginx wants to be strict here I'm perfectly fine with it and …

05/04/20:

22:34 Ticket #604 (WebDAV: мелкие косяки) updated by Maxim Dounin
See also #1966.
22:29 Ticket #1966 (MKCOL refuses creation without trailing slash) updated by Maxim Dounin
This was previously discussed in #604 (mostly in Russian, …
12:20 Ticket #698 (Add an option to proxy_cache_path that allows to set group permissions) updated by Krzysztof Grządziel
Hi, I revived patch. You can review it here …
10:37 Ticket #1966 (MKCOL refuses creation without trailing slash) created by chrysn
Some WebDAV clients that create collections do that without including …

04/30/20:

19:03 Ticket #1955 (Ubuntu 20.04 (Focal) support) updated by Vinayak Kulkarni
Replying to Andrei Belov: > We do not maintain those ppas. …
18:32 Ticket #1955 (Ubuntu 20.04 (Focal) support) updated by Andrei Belov
We do not maintain those ppas. We do maintain our own repositories, …
07:55 Ticket #753 (Nginx leaves UNIX domain sockets after SIGQUIT) updated by davehope@…
Just a further comment to try and raise the profile of this issue. …
07:24 Ticket #1955 (Ubuntu 20.04 (Focal) support) updated by Vinayak Kulkarni
http://ppa.launchpad.net/nginx/stable/ubuntu/dists/

04/29/20:

18:41 Ticket #1678 (limit_rate and proxy_limit_rate broken from 1.14) updated by Maxim Dounin
See also #1965.
18:41 Ticket #1965 ($request_time less than $upstream_response_time) updated by Maxim Dounin
Status changed
That's because $upstream_response_time uses monotonic time as …
08:47 Ticket #1955 (Ubuntu 20.04 (Focal) support) closed by Andrei Belov
fixed: Latest mainline (1.17.10) and stable (1.18.0) versions built for …
05:35 Ticket #1965 ($request_time less than $upstream_response_time) updated by learn0208@…
Description changed
05:33 Ticket #1965 ($request_time less than $upstream_response_time) created by learn0208@…
nginx logformat: log_format main escape=json '{ …

04/28/20:

10:15 Ticket #1955 (Ubuntu 20.04 (Focal) support) updated by Andrei Belov
Yes, we're already working on this. Thanks for your attention.

04/27/20:

20:19 Ticket #1955 (Ubuntu 20.04 (Focal) support) updated by bompus@…
Ubuntu 20.04 has been released. Can you revisit this request?
14:23 Ticket #1964 (Bugs in compiling nginx with OpenSSL 3.0 Alpha1) closed by Maxim Dounin
wontfix: There are two issues in the build log referenced: 1. The bug in …
06:17 Ticket #1950 (nginx/1.17.9 randomly truncating some large proxy responses) updated by Artem Russakovskii
To clarify our config, proxy_temp_path isn't even set so it's whatever …
05:43 Ticket #1964 (Bugs in compiling nginx with OpenSSL 3.0 Alpha1) created by kirin10000@…
I meet some bugs when compiling nginx with OpenSSL 3.0 Alpha1. I …

04/26/20:

17:58 Ticket #431 (directory redirect ex: try_files $uri $uri/ @backend;) closed by Maxim Dounin
fixed: The port_in_redirect directive …
16:55 Ticket #1900 (Nginx starting more worker processes when modsec rules are enabled) closed by Maxim Dounin
invalid: Feedback timeout. Likely a bug in modsecurity.
16:19 Ticket #1926 (resolver should not cache failures) closed by Maxim Dounin
worksforme: Feedback timeout.
16:18 Ticket #1950 (nginx/1.17.9 randomly truncating some large proxy responses) closed by Maxim Dounin
worksforme: Feedback timeout.

04/25/20:

23:19 Ticket #798 (Implement http_brotli_static module) updated by Maxim Dounin
See also #1961.
23:18 Ticket #1961 (Extend gzip_static module to handle more accept-encodings) closed by Maxim Dounin
duplicate: > This Trac does not know yet of version 1.18.x. Fixed, thanks. …
23:11 Ticket #1506 (bind() in configuration test is too cautious) updated by Maxim Dounin
See also #1960.
23:11 Ticket #1960 (nginx -t tries to bind to ports) closed by Maxim Dounin
duplicate: The nginx -t is expected to test the configuration, and this what it …
22:34 Ticket #1963 (Documentation does not mention important info about named locations at ...) closed by Maxim Dounin
invalid: The documentation clearly says: …
17:15 Ticket #1963 (Documentation does not mention important info about named locations at ...) created by KES777@…
The full post is [here](In short there is no info about how to use …
15:08 Ticket #936 (For security purposes it is necessary to remove or change the "server" ...) updated by Maxim Dounin
See also #1644.
14:09 Ticket #1962 (proxy_hide_header don't work, why?) closed by Maxim Dounin
invalid: The proxy_hide_headers is to hide headers from the response of a …
14:07 Ticket #936 (For security purposes it is necessary to remove or change the "server" ...) updated by Maxim Dounin
See also #1717, #1962.
14:06 Ticket #1717 (server info) closed by Maxim Dounin
duplicate: Duplicate of #936.
14:06 Ticket #1717 (server info) reopened by Maxim Dounin
07:56 Ticket #1962 (proxy_hide_header don't work, why?) created by lubocheng@…
i want to hide some headers,like Server as below,but find it don't …
Note: See TracTimeline for information about the timeline view.