nginx.git/src/http, branch release-1.11.10

Gzip: free chain links on the hot path (ticket #1046).

2017-02-13T18:45:01+00:00

Upstream: read handler cleared on upstream finalization.

2017-02-10T17:24:26+00:00

With "proxy_ignore_client_abort off" (the default), upstream module changes
r->read_event_handler to ngx_http_upstream_rd_check_broken_connection().
If the handler is not cleared during upstream finalization, it can be
triggered later, causing unexpected effects, if, for example, a request
was redirected to a different location using error_page or X-Accel-Redirect.
In particular, it makes "proxy_ignore_client_abort on" non-working after
a redirection in a configuration like this:

    location = / {
        error_page 502 = /error;
        proxy_pass http://127.0.0.1:8082;
    }

    location /error {
        proxy_pass http://127.0.0.1:8083;
        proxy_ignore_client_abort on;
    }

It is also known to cause segmentation faults with aio used, see
http://mailman.nginx.org/pipermail/nginx-ru/2015-August/056570.html.

Fix is to explicitly set r->read_event_handler to ngx_http_block_reading()
during upstream finalization, similar to how it is done in the request body
reading code and in the limit_req module.

Cache: increased cache header Vary and ETag lengths to 128.

2017-02-10T14:49:19+00:00

This allows to store larger ETag values for proxy_cache_revalidate,
including ones generated as SHA256, and cache responses with longer
Vary (ticket #826).

In particular, this fixes caching of Amazon S3 responses with CORS
enabled, which now use "Vary: Origin, Access-Control-Request-Headers,
Access-Control-Request-Method".

Cache version bumped accordingly.

Slice filter: fetch slices in cloned subrequests.

2017-02-10T13:33:12+00:00

Previously, slice subrequest location was selected based on request URI.
If request is then redirected to a new location, its context array is cleared,
making the slice module loose current slice range information.  This lead to
broken output.  Now subrequests with the NGX_HTTP_SUBREQUEST_CLONE flag are
created for slices.  Such subrequests stay in the same location as the parent
request and keep the right slice context.

Upstream: proxy_cache_background_update and friends.

2017-02-10T12:13:41+00:00

The directives enable cache updates in subrequests.

Cache: support for stale-while-revalidate and stale-if-error.

2016-12-22T11:25:34+00:00

Previously, there was no way to enable the proxy_cache_use_stale behavior by
reading the backend response.  Now, stale-while-revalidate and stale-if-error
Cache-Control extensions (RFC 5861) are supported.  They specify, how long a
stale response can be used when a cache entry is being updated, or in case of
an error.

Request body: commented out debug printing of old buffers.

2017-02-08T16:36:03+00:00

This is not really needed in practice, and causes excessive debug output
in some of our tests.

Request body: c->error on "100 Continue" errors (ticket #1194).

2017-02-08T16:35:31+00:00

SSL: fixed ssl_buffer_size on SNI virtual hosts (ticket #1192).

2017-02-02T17:29:16+00:00

Previously, buffer size was not changed from the one saved during
initial ngx_ssl_create_connection(), even if the buffer itself was not
yet created.  Fix is to change c->ssl->buffer_size in the SNI callback.

Note that it should be also possible to update buffer size even in non-SNI
virtual hosts as long as the buffer is not yet allocated.  This looks
like an overcomplication though.

Variables: generic prefix variables.

2017-01-31T18:19:58+00:00