nginx.git, branch release-1.3.12 nginx nginx-1.3.12-RELEASE 2013-02-05T14:06:41+00:00 Maxim Dounin mdounin@mdounin.ru 2013-02-05T14:06:41+00:00 a24e00fbbce8a07b61b771103aad9f134f2c98d1 






Updated OpenSSL used for win32 builds.
2013-02-05T13:41:48+00:00

Maxim Dounin
mdounin@mdounin.ru

2013-02-05T13:41:48+00:00

94bee544a09a67a22b7f6dbbc548dd7b50f63696












GeoIP: removed pseudo-support of "proxy" and "netspeed" databases.
2013-02-04T16:44:22+00:00

Ruslan Ermilov
ru@nginx.com

2013-02-04T16:44:22+00:00

75e5d13ec6b900ea01c044cb4147126bf237a5c9












FastCGI: proper handling of split fastcgi end request.
2013-02-01T14:41:50+00:00

Maxim Dounin
mdounin@mdounin.ru

2013-02-01T14:41:50+00:00

aad0a1dba6e05766005a60b893c53e52fb056795

If fastcgi end request record was split between several network packets,
with fastcgi_keep_conn it was possible that connection was saved in incorrect
state (e.g. with padding bytes not yet read).





If fastcgi end request record was split between several network packets,
with fastcgi_keep_conn it was possible that connection was saved in incorrect
state (e.g. with padding bytes not yet read).







FastCGI: unconditional state transitions.
2013-02-01T14:41:07+00:00

Maxim Dounin
mdounin@mdounin.ru

2013-02-01T14:41:07+00:00

e8efec0e5e154fc21ba3d1d8b08a94c2eba6e757

Checks for f->padding before state transitions make code hard to follow,
remove them and make sure we always do another loop iteration after
f->state is set to ngx_http_fastcgi_st_padding.





Checks for f->padding before state transitions make code hard to follow,
remove them and make sure we always do another loop iteration after
f->state is set to ngx_http_fastcgi_st_padding.







FastCGI: fixed wrong connection close with fastcgi_keep_conn.
2013-02-01T14:40:19+00:00

Maxim Dounin
mdounin@mdounin.ru

2013-02-01T14:40:19+00:00

1c5fce75186ae792b76d055223cd0a70ac7370b0

With fastcgi_keep_conn it was possible that connection was closed after
FCGI_STDERR record with zero padding and without any further data read yet.
This happended as f->state was set to ngx_http_fastcgi_st_padding and then
"break" happened, resulting in p->length being set to f->padding, i.e. 0
(which in turn resulted in connection close).

Fix is to make sure we continue the loop after f->state is set.





With fastcgi_keep_conn it was possible that connection was closed after
FCGI_STDERR record with zero padding and without any further data read yet.
This happended as f->state was set to ngx_http_fastcgi_st_padding and then
"break" happened, resulting in p->length being set to f->padding, i.e. 0
(which in turn resulted in connection close).

Fix is to make sure we continue the loop after f->state is set.







Request body: fixed client_body_in_file_only.
2013-02-01T14:38:18+00:00

Maxim Dounin
mdounin@mdounin.ru

2013-02-01T14:38:18+00:00

e97e4124e372d2db118d984988632d28f8966130

After introduction of chunked request body reading support in 1.3.9 (r4931),
the rb->bufs wasn't set if request body was fully preread while calling the
ngx_http_read_client_request_body() function.

Reported by Yichun Zhang (agentzh).





After introduction of chunked request body reading support in 1.3.9 (r4931),
the rb->bufs wasn't set if request body was fully preread while calling the
ngx_http_read_client_request_body() function.

Reported by Yichun Zhang (agentzh).







SSL: fixed ngx_ssl_handshake() with level-triggered event methods.
2013-02-01T14:37:43+00:00

Maxim Dounin
mdounin@mdounin.ru

2013-02-01T14:37:43+00:00

2887c06fdecbb4eccaf69a9e7fbef55f1b49c2b5

Missing calls to ngx_handle_write_event() and ngx_handle_read_event()
resulted in a CPU hog during SSL handshake if an level-triggered event
method (e.g. select) was used.





Missing calls to ngx_handle_write_event() and ngx_handle_read_event()
resulted in a CPU hog during SSL handshake if an level-triggered event
method (e.g. select) was used.







SSL: take into account data in the buffer while limiting output.
2013-01-28T15:41:12+00:00

Valentin Bartenev
vbart@nginx.com

2013-01-28T15:41:12+00:00

733e6d2ac6c544aa1a3f42dbc93c9e6d4adf7122

In some rare cases this can result in a more smooth sending rate.





In some rare cases this can result in a more smooth sending rate.







SSL: avoid calling SSL_write() with zero data size.
2013-01-28T15:40:25+00:00

Valentin Bartenev
vbart@nginx.com

2013-01-28T15:40:25+00:00

0f0fac70a14fc489eab91888772073ed1259b633

According to documentation, calling SSL_write() with num=0 bytes to be sent
results in undefined behavior.

We don't currently call ngx_ssl_send_chain() with empty chain and buffer.
This check handles the case of a chain with total data size that is
a multiple of NGX_SSL_BUFSIZE, and with the special buffer at the end.

In practice such cases resulted in premature connection close and critical
error "SSL_write() failed (SSL:)" in the error log.





According to documentation, calling SSL_write() with num=0 bytes to be sent
results in undefined behavior.

We don't currently call ngx_ssl_send_chain() with empty chain and buffer.
This check handles the case of a chain with total data size that is
a multiple of NGX_SSL_BUFSIZE, and with the special buffer at the end.

In practice such cases resulted in premature connection close and critical
error "SSL_write() failed (SSL:)" in the error log.