nginx.git/auto, branch release-1.27.3

Configure: MSVC compatibility with PCRE2 10.43.

2024-10-15T14:18:33+00:00

SSL: object caching.

2024-10-01T13:59:24+00:00

Added ngx_openssl_cache_module, which indexes a type-aware object cache.
It maps an id to a unique instance, and provides references to it, which
are dropped when the cycle's pool is destroyed.

The cache will be used in subsequent patches.

Based on previous work by Mini Hawthorne.

Configure: fixed building libatomic test.

2024-05-16T09:15:10+00:00

Using "long *" instead of "AO_t *" leads either to -Wincompatible-pointer-types
or -Wpointer-sign warnings, depending on whether long and size_t are compatible
types (e.g., ILP32 versus LP64 data models).  Notably, -Wpointer-sign warnings
are enabled by default in Clang only, and -Wincompatible-pointer-types is an
error starting from GCC 14.

Signed-off-by: Edgar Bonet

Configure: allow cross-compiling to Windows using Clang.

2024-02-26T20:00:48+00:00

Signed-off-by: Piotr Sikora

Configure: fixed "make install" when cross-compiling to Windows.

2024-02-26T20:00:46+00:00

Signed-off-by: Piotr Sikora

Configure: added support for Homebrew on Apple Silicon.

2024-02-26T20:00:43+00:00

Signed-off-by: Piotr Sikora

Configure: set cache line size for more architectures.

2024-03-27T15:36:51+00:00

Based on a patch by Piotr Sikora.

Configure: fixed Linux crypt_r() test to add libcrypt.

2024-02-26T20:00:38+00:00

Previously, the resulting binary was successfully linked
because libcrypt was added in a separate test for crypt().

Patch by Piotr Sikora.

Stream: ngx_stream_pass_module.

2024-02-21T13:36:02+00:00

The module allows to pass connections from Stream to other modules such as HTTP
or Mail, as well as back to Stream.  Previously, this was only possible with
proxying.  Connections with preread buffer read out from socket cannot be
passed.

The module allows selective SSL termination based on SNI.

    stream {
        server {
            listen 8000 default_server;
            ssl_preread on;
            ...
        }

        server {
            listen 8000;
            server_name foo.example.com;
            pass 127.0.0.1:8001; # to HTTP
        }

        server {
            listen 8000;
            server_name bar.example.com;
            ...
        }
    }

    http {
        server {
            listen 8001 ssl;
            ...

            location / {
                root html;
            }
        }
    }

SSL: avoid using OpenSSL config in build directory (ticket #2404).

2023-06-20T22:29:53+00:00

With this change, the NGX_OPENSSL_NO_CONFIG macro is defined when nginx
is asked to build OpenSSL itself.  And with this macro automatic loading
of OpenSSL configuration (from the build directory) is prevented unless
the OPENSSL_CONF environment variable is explicitly set.

Note that not loading configuration is broken in OpenSSL 1.1.1 and 1.1.1a
(fixed in OpenSSL 1.1.1b, see https://github.com/openssl/openssl/issues/7350).
If nginx is used to compile these OpenSSL versions, configuring nginx with
NGX_OPENSSL_NO_CONFIG explicitly set to 0 might be used as a workaround.