nginx.git/src/http, branch release-1.13.0 nginx HTTP/2: reduced difference to HTTP/1.x in reading request body. 2017-04-24T11:17:13+00:00 Valentin Bartenev vbart@nginx.com 2017-04-24T11:17:13+00:00 55b37eff8f700ea1dd279368d5a4a7b00f3c1344 Particularly, this eliminates difference in behavior for requests without body and deduplicates code. Prodded by Piotr Sikora. 
Particularly, this eliminates difference in behavior for requests without body
and deduplicates code.

Prodded by Piotr Sikora.
HTTP/2: rejecting zero WINDOW_UPDATE with PROTOCOL_ERROR. 2017-04-24T11:16:57+00:00 Valentin Bartenev vbart@nginx.com 2017-04-24T11:16:57+00:00 d35c83a3250bedaa85971ddf2cfcd9b703a256ea It's required by RFC 7540. While there is no real harm from such frames, that should help to detect broken clients. Based on a patch by Piotr Sikora. 
It's required by RFC 7540.  While there is no real harm from such frames,
that should help to detect broken clients.

Based on a patch by Piotr Sikora.
Gzip static: use an appropriate error on memory allocation failure. 2017-04-20T15:26:38+00:00 Sergey Kandaurov pluknet@nginx.com 2017-04-20T15:26:38+00:00 beaaeb9f9e642d1d153ee65569d99499eef624e9 






Cleaned up r->headers_out.headers allocation error handling.
2017-04-20T15:26:37+00:00

Sergey Kandaurov
pluknet@nginx.com

2017-04-20T15:26:37+00:00

9ecf8428645579cf66adc5ba939bf1267924c5bc

If initialization of a header failed for some reason after ngx_list_push(),
leaving the header as is can result in uninitialized memory access by
the header filter or the log module.  The fix is to clear partially
initialized headers in case of errors.

For the Cache-Control header, the fix is to postpone pushing
r->headers_out.cache_control until its value is completed.





If initialization of a header failed for some reason after ngx_list_push(),
leaving the header as is can result in uninitialized memory access by
the header filter or the log module.  The fix is to clear partially
initialized headers in case of errors.

For the Cache-Control header, the fix is to postpone pushing
r->headers_out.cache_control until its value is completed.







Sub filter: restored ngx_http_set_ctx() at the proper place.
2017-04-18T16:55:23+00:00

Sergey Kandaurov
pluknet@nginx.com

2017-04-18T16:55:23+00:00

cb7427d86ccb0483538b7d18a991e1df272167cc

Previously, ngx_http_sub_header_filter() could fail with a partially
initialized context, later accessed in ngx_http_sub_body_filter()
if called from the perl content handler.

The issue had appeared in 2c045e5b8291 (1.9.4).

A better fix would be to handle ngx_http_send_header() errors in
the perl module, though this doesn't seem to be easy enough.





Previously, ngx_http_sub_header_filter() could fail with a partially
initialized context, later accessed in ngx_http_sub_body_filter()
if called from the perl content handler.

The issue had appeared in 2c045e5b8291 (1.9.4).

A better fix would be to handle ngx_http_send_header() errors in
the perl module, though this doesn't seem to be easy enough.







SSL: added support for TLSv1.3 in ssl_protocols directive.
2017-04-18T12:12:38+00:00

Sergey Kandaurov
pluknet@nginx.com

2017-04-18T12:12:38+00:00

9a37eb3a62130473596e0e4c2e388d80bdb14956

Support for the TLSv1.3 protocol will be introduced in OpenSSL 1.1.1.





Support for the TLSv1.3 protocol will be introduced in OpenSSL 1.1.1.







Added support for the "308 Permanent Redirect" (ticket #877).
2017-04-11T01:13:46+00:00

Simon Leblanc
contact@leblanc-simon.eu

2017-04-11T01:13:46+00:00

8ee2de5e9c930273c99a03452e7336f8a393ec42












Use ngx_calloc_buf() where appropriate.
2017-04-12T19:21:04+00:00

Ruslan Ermilov
ru@nginx.com

2017-04-12T19:21:04+00:00

cac361718c741fd2bfe13d43aa2fabf23d0a2ca4












Upstream: allow recovery from "429 Too Many Requests" response.
2017-03-24T09:48:03+00:00

Piotr Sikora
piotrsikora@google.com

2017-03-24T09:48:03+00:00

ca1a5057e2a0429350ec2d07c4616a75e34424e3

This change adds "http_429" parameter to "proxy_next_upstream" for
retrying rate-limited requests, and to "proxy_cache_use_stale" for
serving stale cached responses after being rate-limited.

Signed-off-by: Piotr Sikora <piotrsikora@google.com>





This change adds "http_429" parameter to "proxy_next_upstream" for
retrying rate-limited requests, and to "proxy_cache_use_stale" for
serving stale cached responses after being rate-limited.

Signed-off-by: Piotr Sikora <piotrsikora@google.com>







Added support for "429 Too Many Requests" response (RFC6585).
2017-03-24T09:48:03+00:00

Piotr Sikora
piotrsikora@google.com

2017-03-24T09:48:03+00:00

c3ce606652aeac465895ab8eb8c6fc195d7db16b

This change adds reason phrase in status line and pretty response body
when "429" status code is used in "return", "limit_conn_status" and/or
"limit_req_status" directives.

Signed-off-by: Piotr Sikora <piotrsikora@google.com>





This change adds reason phrase in status line and pretty response body
when "429" status code is used in "return", "limit_conn_status" and/or
"limit_req_status" directives.

Signed-off-by: Piotr Sikora <piotrsikora@google.com>