nginx.git/src/http/v3, branch release-1.29.2 nginx Updated ngx_http_process_multi_header_lines() comments. 2025-08-03T06:07:07+00:00 Sergey Kandaurov pluknet@nginx.com 2025-07-31T17:31:27+00:00 f4005126d78d19f1efd4f8fb4cad916d8976d97a Missed in fcf4331a0. 
Missed in fcf4331a0.
HTTP/3: improved invalid ":authority" error message. 2025-08-03T06:07:07+00:00 Sergey Kandaurov pluknet@nginx.com 2025-07-30T13:43:44+00:00 372659114ed9b7a406093890ec2bdf437925ce64 






HTTP/3: fixed handling of :authority and Host with port.
2025-07-24T16:15:55+00:00

Roman Arutyunyan
arut@nginx.com

2025-06-26T16:19:59+00:00

4da771108282cd233ddc37f83ba8bd01981beeb7

RFC 9114, Section 4.3.1. specifies a restriction for :authority and Host
coexistence in an HTTP/3 request:

: If both fields are present, they MUST contain the same value.

Previously, this restriction was correctly enforced only for portless
values.  When Host contained a port, the request failed as if :authority
and Host were different, regardless of :authority presence.

This happens because the value of r->headers_in.server used for :authority
has port stripped.  The fix is to use r->host_start / r->host_end instead.





RFC 9114, Section 4.3.1. specifies a restriction for :authority and Host
coexistence in an HTTP/3 request:

: If both fields are present, they MUST contain the same value.

Previously, this restriction was correctly enforced only for portless
values.  When Host contained a port, the request failed as if :authority
and Host were different, regardless of :authority presence.

This happens because the value of r->headers_in.server used for :authority
has port stripped.  The fix is to use r->host_start / r->host_end instead.







HTTP/3: fixed potential type overflow in string literal parser.
2025-07-23T13:24:43+00:00

Sergey Kandaurov
pluknet@nginx.com

2024-09-05T15:35:43+00:00

3739fe94d1c3c844708b219776f1921bff16b56f

This might happen for Huffman encoded string literals as the result
of length expansion.  Notably, the maximum length of string literals
is already limited with the "large_client_header_buffers" directive,
so this was only possible with nonsensically large configured limits.





This might happen for Huffman encoded string literals as the result
of length expansion.  Notably, the maximum length of string literals
is already limited with the "large_client_header_buffers" directive,
so this was only possible with nonsensically large configured limits.







HTTP/3: indexed field line encoding for "103 Early Hints".
2025-06-21T06:36:28+00:00

Sergey Kandaurov
pluknet@nginx.com

2025-06-20T14:46:17+00:00

ba917b1360c6df3dda312325daccf714a3145718












Upstream: early hints support.
2025-06-19T06:19:57+00:00

Roman Arutyunyan
arut@nginx.com

2024-11-15T04:23:53+00:00

662c1dd2a97afd6c7ca09b8f5a74347ee017b86b

The change implements processing upstream early hints response in
ngx_http_proxy_module and ngx_http_grpc_module.  A new directive
"early_hints" enables sending early hints to the client.  By default,
sending early hints is disabled.

Example:

    map $http_sec_fetch_mode $early_hints {
        navigate $http2$http3;
    }

    early_hints $early_hints;

    proxy_pass http://example.com;





The change implements processing upstream early hints response in
ngx_http_proxy_module and ngx_http_grpc_module.  A new directive
"early_hints" enables sending early hints to the client.  By default,
sending early hints is disabled.

Example:

    map $http_sec_fetch_mode $early_hints {
        navigate $http2$http3;
    }

    early_hints $early_hints;

    proxy_pass http://example.com;







HTTP/3: fixed NGX_HTTP_V3_VARLEN_INT_LEN value.
2025-04-18T11:28:00+00:00

Roman Arutyunyan
arut@nginx.com

2025-04-18T07:16:57+00:00

0f9f43b79eed64ab1a876be76ff0f49d499784fc

After fixing ngx_http_v3_encode_varlen_int() in 400eb1b628,
NGX_HTTP_V3_VARLEN_INT_LEN retained the old value of 4, which is
insufficient for the values over 1073741823 (1G - 1).

The NGX_HTTP_V3_VARLEN_INT_LEN macro is used in ngx_http_v3_uni.c to
format stream and frame types.  Old buffer size is enough for formatting
this data.  Also, the macro is used in ngx_http_v3_filter_module.c to
format output chunks and trailers.  Considering output_buffers and
proxy_buffer_size are below 1G in all realistic scenarios, the old buffer
size is enough here as well.





After fixing ngx_http_v3_encode_varlen_int() in 400eb1b628,
NGX_HTTP_V3_VARLEN_INT_LEN retained the old value of 4, which is
insufficient for the values over 1073741823 (1G - 1).

The NGX_HTTP_V3_VARLEN_INT_LEN macro is used in ngx_http_v3_uni.c to
format stream and frame types.  Old buffer size is enough for formatting
this data.  Also, the macro is used in ngx_http_v3_filter_module.c to
format output chunks and trailers.  Considering output_buffers and
proxy_buffer_size are below 1G in all realistic scenarios, the old buffer
size is enough here as well.







HTTP/3: graceful shutdown on keepalive timeout expiration.
2025-04-15T15:01:36+00:00

Roman Arutyunyan
arut@nginx.com

2025-01-07T17:14:58+00:00

3a97111adfb6e538ddef1828bbf04a35a8915c1f

Previously, the expiration caused QUIC connection finalization even if
there are application-terminated streams finishing sending data.  Such
finalization terminated these streams.

An easy way to trigger this is to request a large file from HTTP/3 over
a small MTU.  In this case keepalive timeout expiration may abruptly
terminate the request stream.





Previously, the expiration caused QUIC connection finalization even if
there are application-terminated streams finishing sending data.  Such
finalization terminated these streams.

An easy way to trigger this is to request a large file from HTTP/3 over
a small MTU.  In this case keepalive timeout expiration may abruptly
terminate the request stream.







HTTP/3: fixed handling of zero-length literal field line.
2024-05-28T13:20:45+00:00

Sergey Kandaurov
pluknet@nginx.com

2024-05-28T13:20:45+00:00

34bd899287e2e00cbd00e2f60e5013b12e7b95b0

Previously, st->value was passed with NULL data pointer to header handlers.





Previously, st->value was passed with NULL data pointer to header handlers.







HTTP/3: fixed dynamic table overflow.
2024-05-28T13:18:50+00:00

Roman Arutyunyan
arut@nginx.com

2024-05-28T13:18:50+00:00

cca5655dd9ba349817946a0db14f8b1f633f700a

While inserting a new entry into the dynamic table, first the entry is added,
and then older entries are evicted until table size is within capacity.  After
the first step, the number of entries may temporarily exceed the maximum
calculated from capacity by one entry, which previously caused table overflow.

The easiest way to trigger the issue is to keep adding entries with empty names
and values until first eviction.

The issue was introduced by 987bee4363d1.





While inserting a new entry into the dynamic table, first the entry is added,
and then older entries are evicted until table size is within capacity.  After
the first step, the number of entries may temporarily exceed the maximum
calculated from capacity by one entry, which previously caused table overflow.

The easiest way to trigger the issue is to keep adding entries with empty names
and values until first eviction.

The issue was introduced by 987bee4363d1.