nginx.git/src/event, branch release-1.7.3

SSL: logging level of "peer closed connection in SSL handshake".

2014-07-04T18:14:36+00:00

Previously, the NGX_LOG_INFO level was used unconditionally.  This is
correct for client SSL connections, but too low for connections to
upstream servers.  To resolve this, ngx_connection_error() now used
to log this error, it will select logging level appropriately.

With this change, if an upstream connection is closed during SSL
handshake, it is now properly logged at "error" level.

Upstream: p->downstream_error instead of closing connection.

2014-07-04T16:47:16+00:00

Previously, nginx closed client connection in cases when a response body
from upstream was needed to be cached or stored but shouldn't be sent to
the client.  While this is normal for HTTP, it is unacceptable for SPDY.

Fix is to use instead the p->downstream_error flag to prevent nginx from
sending anything downstream.  To make this work, the event pipe code was
modified to properly cache empty responses with the flag set.

SSL: the "ssl_password_file" directive.

2014-06-16T15:43:25+00:00

Events: use eventfd() instead of syscall(SYS_eventfd) if possible.

2014-05-23T12:37:05+00:00

This fixes --with-file-aio support on systems that lack eventfd()
syscall, notably aarch64 Linux.

The syscall(SYS_eventfd) may still be necessary on systems that
have eventfd() syscall in the kernel but lack it in glibc, e.g.
as seen in the current CentOS 5 release.

Core: output client port number when logging accept event.

2014-05-21T20:16:09+00:00

SSL: $ssl_client_fingerprint variable.

2014-05-20T10:03:03+00:00

OCSP stapling: missing OCSP request free call.

2014-04-29T20:22:38+00:00

SSL: explicit handling of empty names.

2014-04-23T16:31:31+00:00

X509_check_host() can't handle non null-terminated names with zero length,
so make sure to fail before calling it.

SSL: added explicit check for ngx_strlchr() result.

2014-04-22T10:02:45+00:00

Upstream: proxy_ssl_verify and friends.

2014-04-18T16:13:30+00:00