stable

nginx-mainline-820211102232012.9edba152

FEDORA-EPEL-MODULAR-2021-0683a1b590 created by heffer 2 years ago for Fedora Epel 8 Modular
  • Change: support for NPN instead of ALPN to establish HTTP/2 connections has been removed.
  • Change: now nginx rejects SSL connections if ALPN is used by the client, but no supported protocols can be negotiated.
  • Change: the default value of the "sendfile_max_chunk" directive was changed to 2 megabytes.
  • Feature: the "proxy_half_close" directive in the stream module.
  • Feature: the "ssl_alpn" directive in the stream module.
  • Feature: the $ssl_alpn_protocol variable.
  • Feature: support for SSL_sendfile() when using OpenSSL 3.0.
  • Feature: the "mp4_start_key_frame" directive in the ngx_http_mp4_module. Thanks to Tracey Jaquith.
  • Bugfix: in the $content_length variable when using chunked transfer encoding.
  • Bugfix: after receiving a response with incorrect length from a proxied backend nginx might nevertheless cache the connection. Thanks to Awdhesh Mathpal.
  • Bugfix: invalid headers from backends were logged at the "info" level instead of "error"; the bug had appeared in 1.21.1.
  • Bugfix: requests might hang when using HTTP/2 and the "aio_write" directive.

  • Change: optimization of client request body reading when using HTTP/2.

  • Bugfix: in request body filters internal API when using HTTP/2 and buffering of the data being processed.


  • Change: now nginx rejects HTTP/1.0 requests with the "Transfer-Encoding" header line.

  • Change: export ciphers are no longer supported.

  • Feature: OpenSSL 3.0 compatibility.

  • Feature: the "Auth-SSL-Protocol" and "Auth-SSL-Cipher" header lines are now passed to the mail proxy authentication server. Thanks to Rob Mueller.

  • Feature: request body filters API now permits buffering of the data being processed.

  • Bugfix: backend SSL connections in the stream module might hang after an SSL handshake.

  • Bugfix: the security level, which is available in OpenSSL 1.1.0 or newer, did not affect loading of the server certificates when set with "@SECLEVEL=N" in the "ssl_ciphers" directive.

  • Bugfix: SSL connections with gRPC backends might hang if select, poll, or /dev/poll methods were used.

  • Bugfix: when using HTTP/2 client request body was always written to disk if the "Content-Length" header line was not present in the request.

This update has been submitted for testing by heffer.

2 years ago

This update's test gating status has been changed to 'ignored'.

2 years ago

This update's test gating status has been changed to 'waiting'.

2 years ago

This update has obsoleted nginx-mainline-820210908190854.9edba152, and has inherited its bugs and notes.

2 years ago

This update's test gating status has been changed to 'ignored'.

2 years ago

This update has been pushed to testing.

2 years ago

This update has been submitted for stable by bodhi.

2 years ago

This update has been pushed to stable.

2 years ago

Please login to add feedback.

Metadata
Type
unspecified
Karma
0
Signed
Content Type
Module
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
2 years ago
in testing
2 years ago
in stable
2 years ago
BZ#1964498 nginx-1.21.2 is available
0
0

Automated Test Results