nginx.git, branch release-1.13.1 nginx nginx-1.13.1-RELEASE 2017-05-30T14:55:22+00:00 Maxim Dounin mdounin@mdounin.ru 2017-05-30T14:55:22+00:00 b84e8f713de0ae517b12c675cb47b0316d46a337 






Updated OpenSSL used for win32 builds.
2017-05-30T14:14:00+00:00

Maxim Dounin
mdounin@mdounin.ru

2017-05-30T14:14:00+00:00

6cfbb1c5ae0418d7bddfc46319609ccf57c95478












Fixed background requests with asynchronous operations.
2017-05-29T20:33:38+00:00

Roman Arutyunyan
arut@nginx.com

2017-05-29T20:33:38+00:00

d1d48ed8448e24ef5297bb37387544ad241591fe

If the main request was finalized while a background request performed an
asynchronous operation, the main request ended up in ngx_http_writer() and was
not finalized until a network event or a timeout.  For example, cache
background update with aio enabled made nginx unable to process further client
requests or close the connection, keeping it open until client closes it.

Now regular finalization of the main request is not suspended because of an
asynchronous operation in another request.

If a background request was terminated while an asynchronous operation was in
progress, background request's write event handler was changed to
ngx_http_request_finalizer() and never called again.

Now, whenever a request is terminated while an asynchronous operation is in
progress, connection error flag is set to make further finalizations of any
request with this connection lead to termination.

These issues appeared in 1aeaae6e9446 (not yet released).





If the main request was finalized while a background request performed an
asynchronous operation, the main request ended up in ngx_http_writer() and was
not finalized until a network event or a timeout.  For example, cache
background update with aio enabled made nginx unable to process further client
requests or close the connection, keeping it open until client closes it.

Now regular finalization of the main request is not suspended because of an
asynchronous operation in another request.

If a background request was terminated while an asynchronous operation was in
progress, background request's write event handler was changed to
ngx_http_request_finalizer() and never called again.

Now, whenever a request is terminated while an asynchronous operation is in
progress, connection error flag is set to make further finalizations of any
request with this connection lead to termination.

These issues appeared in 1aeaae6e9446 (not yet released).







Configure: sched_setaffinity() test moved to auto/unix.
2017-05-29T13:48:30+00:00

Maxim Dounin
mdounin@mdounin.ru

2017-05-29T13:48:30+00:00

529ce100586015c75363846c372f484a3ca555fa

The sched_setaffinity() function was introduced in DragonFly BSD 4.7,
so it is no longer Linux-specific.

Prodded by Sepherosa Ziehau.





The sched_setaffinity() function was introduced in DragonFly BSD 4.7,
so it is no longer Linux-specific.

Prodded by Sepherosa Ziehau.







Style: changed checks of ngx_ssl_create_connection() to != NGX_OK.
2017-05-29T13:34:35+00:00

Maxim Dounin
mdounin@mdounin.ru

2017-05-29T13:34:35+00:00

0514e14a8bbd8e5977712c892b53aa471a91fcb5

In http these checks were changed in a6d6d762c554, though mail module
was missed at that time.  Since then, the stream module was introduced
based on mail, using "== NGX_ERROR" check.





In http these checks were changed in a6d6d762c554, though mail module
was missed at that time.  Since then, the stream module was introduced
based on mail, using "== NGX_ERROR" check.







SSL: set TCP_NODELAY on SSL connections before handshake.
2017-05-29T13:34:29+00:00

Maxim Dounin
mdounin@mdounin.ru

2017-05-29T13:34:29+00:00

2db69fed2c200a4f4017e82bc9239f22dfac846f

With OpenSSL 1.1.0+, the workaround for handshake buffer size as introduced
in a720f0b0e083 (ticket #413) no longer works, as OpenSSL no longer exposes
handshake buffers, see https://github.com/openssl/openssl/commit/2e7dc7cd688.
Moreover, it is no longer possible to adjust handshake buffers at all now.

To avoid additional RTT if handshake uses more than 4k we now set TCP_NODELAY
on SSL connections before handshake.  While this still results in sub-optimal
network utilization due to incomplete packets being sent, it seems to be
better than nothing.





With OpenSSL 1.1.0+, the workaround for handshake buffer size as introduced
in a720f0b0e083 (ticket #413) no longer works, as OpenSSL no longer exposes
handshake buffers, see https://github.com/openssl/openssl/commit/2e7dc7cd688.
Moreover, it is no longer possible to adjust handshake buffers at all now.

To avoid additional RTT if handshake uses more than 4k we now set TCP_NODELAY
on SSL connections before handshake.  While this still results in sub-optimal
network utilization due to incomplete packets being sent, it seems to be
better than nothing.







Introduced ngx_tcp_nodelay().
2017-05-26T19:52:48+00:00

Ruslan Ermilov
ru@nginx.com

2017-05-26T19:52:48+00:00

b66c18d2d50c53b063cd14a2c3e4c8ff8b1b22a5












Background subrequests for cache updates.
2017-05-25T12:57:59+00:00

Roman Arutyunyan
arut@nginx.com

2017-05-25T12:57:59+00:00

8644d9491ad3c0eb16bcda1d452aba326e1f4dae

Previously, cache background update might not work as expected, making client
wait for it to complete before receiving the final part of a stale response.
This could happen if the response could not be sent to the client socket in one
filter chain call.

Now background cache update is done in a background subrequest.  This type of
subrequest does not block any other subrequests or the main request.





Previously, cache background update might not work as expected, making client
wait for it to complete before receiving the final part of a stale response.
This could happen if the response could not be sent to the client socket in one
filter chain call.

Now background cache update is done in a background subrequest.  This type of
subrequest does not block any other subrequests or the main request.







Fixed deferred accept with EPOLLRDHUP enabled (ticket #1278).
2017-05-24T10:17:08+00:00

Roman Arutyunyan
arut@nginx.com

2017-05-24T10:17:08+00:00

c83922b18ddc83f654c1d0df48a6ca1ee9938078

Previously, the read event of the accepted connection was marked ready, but not
available.  This made EPOLLRDHUP-related code (for example, in ngx_unix_recv())
expect more data from the socket, leading to unexpected behavior.

For example, if SSL, PROXY protocol and deferred accept were enabled on a listen
socket, the client connection was aborted due to unexpected return value of
c->recv().





Previously, the read event of the accepted connection was marked ready, but not
available.  This made EPOLLRDHUP-related code (for example, in ngx_unix_recv())
expect more data from the socket, leading to unexpected behavior.

For example, if SSL, PROXY protocol and deferred accept were enabled on a listen
socket, the client connection was aborted due to unexpected return value of
c->recv().







HTTP/2: fixed segfault when memory allocation failed.
2017-05-23T17:19:39+00:00

Valentin Bartenev
vbart@nginx.com

2017-05-23T17:19:39+00:00

cce39344610ce83956379d369cf42a514d5bc258

If allocation of cleanup handler in the HTTP/2 header filter failed, then
a stream might be freed with a HEADERS frame left in the output queue.

Now the HEADERS frame is accounted in the queue before trying to allocate
the cleanup handler.





If allocation of cleanup handler in the HTTP/2 header filter failed, then
a stream might be freed with a HEADERS frame left in the output queue.

Now the HEADERS frame is accounted in the queue before trying to allocate
the cleanup handler.