nginx.git/src/http, branch release-1.13.1 nginx Fixed background requests with asynchronous operations. 2017-05-29T20:33:38+00:00 Roman Arutyunyan arut@nginx.com 2017-05-29T20:33:38+00:00 d1d48ed8448e24ef5297bb37387544ad241591fe If the main request was finalized while a background request performed an asynchronous operation, the main request ended up in ngx_http_writer() and was not finalized until a network event or a timeout. For example, cache background update with aio enabled made nginx unable to process further client requests or close the connection, keeping it open until client closes it. Now regular finalization of the main request is not suspended because of an asynchronous operation in another request. If a background request was terminated while an asynchronous operation was in progress, background request's write event handler was changed to ngx_http_request_finalizer() and never called again. Now, whenever a request is terminated while an asynchronous operation is in progress, connection error flag is set to make further finalizations of any request with this connection lead to termination. These issues appeared in 1aeaae6e9446 (not yet released). 
If the main request was finalized while a background request performed an
asynchronous operation, the main request ended up in ngx_http_writer() and was
not finalized until a network event or a timeout.  For example, cache
background update with aio enabled made nginx unable to process further client
requests or close the connection, keeping it open until client closes it.

Now regular finalization of the main request is not suspended because of an
asynchronous operation in another request.

If a background request was terminated while an asynchronous operation was in
progress, background request's write event handler was changed to
ngx_http_request_finalizer() and never called again.

Now, whenever a request is terminated while an asynchronous operation is in
progress, connection error flag is set to make further finalizations of any
request with this connection lead to termination.

These issues appeared in 1aeaae6e9446 (not yet released).
SSL: set TCP_NODELAY on SSL connections before handshake. 2017-05-29T13:34:29+00:00 Maxim Dounin mdounin@mdounin.ru 2017-05-29T13:34:29+00:00 2db69fed2c200a4f4017e82bc9239f22dfac846f With OpenSSL 1.1.0+, the workaround for handshake buffer size as introduced in a720f0b0e083 (ticket #413) no longer works, as OpenSSL no longer exposes handshake buffers, see https://github.com/openssl/openssl/commit/2e7dc7cd688. Moreover, it is no longer possible to adjust handshake buffers at all now. To avoid additional RTT if handshake uses more than 4k we now set TCP_NODELAY on SSL connections before handshake. While this still results in sub-optimal network utilization due to incomplete packets being sent, it seems to be better than nothing. 
With OpenSSL 1.1.0+, the workaround for handshake buffer size as introduced
in a720f0b0e083 (ticket #413) no longer works, as OpenSSL no longer exposes
handshake buffers, see https://github.com/openssl/openssl/commit/2e7dc7cd688.
Moreover, it is no longer possible to adjust handshake buffers at all now.

To avoid additional RTT if handshake uses more than 4k we now set TCP_NODELAY
on SSL connections before handshake.  While this still results in sub-optimal
network utilization due to incomplete packets being sent, it seems to be
better than nothing.
Introduced ngx_tcp_nodelay(). 2017-05-26T19:52:48+00:00 Ruslan Ermilov ru@nginx.com 2017-05-26T19:52:48+00:00 b66c18d2d50c53b063cd14a2c3e4c8ff8b1b22a5 






Background subrequests for cache updates.
2017-05-25T12:57:59+00:00

Roman Arutyunyan
arut@nginx.com

2017-05-25T12:57:59+00:00

8644d9491ad3c0eb16bcda1d452aba326e1f4dae

Previously, cache background update might not work as expected, making client
wait for it to complete before receiving the final part of a stale response.
This could happen if the response could not be sent to the client socket in one
filter chain call.

Now background cache update is done in a background subrequest.  This type of
subrequest does not block any other subrequests or the main request.





Previously, cache background update might not work as expected, making client
wait for it to complete before receiving the final part of a stale response.
This could happen if the response could not be sent to the client socket in one
filter chain call.

Now background cache update is done in a background subrequest.  This type of
subrequest does not block any other subrequests or the main request.







HTTP/2: fixed segfault when memory allocation failed.
2017-05-23T17:19:39+00:00

Valentin Bartenev
vbart@nginx.com

2017-05-23T17:19:39+00:00

cce39344610ce83956379d369cf42a514d5bc258

If allocation of cleanup handler in the HTTP/2 header filter failed, then
a stream might be freed with a HEADERS frame left in the output queue.

Now the HEADERS frame is accounted in the queue before trying to allocate
the cleanup handler.





If allocation of cleanup handler in the HTTP/2 header filter failed, then
a stream might be freed with a HEADERS frame left in the output queue.

Now the HEADERS frame is accounted in the queue before trying to allocate
the cleanup handler.







Cache: ignore long locked entries during forced expire.
2017-05-18T15:39:16+00:00

Dmitry Volyntsev
xeioex@nginx.com

2017-05-18T15:39:16+00:00

c6df6bf9239a54655525b7871a66dd35744692c2

Abnormally exited workers may leave locked cache entries, this can
result in the cache size on disk exceeding max_size and shared memory
exhaustion.

This change mitigates the issue by ignoring locked entries during forced
expire.  It also increases the visibility of the problem by logging such
entries.





Abnormally exited workers may leave locked cache entries, this can
result in the cache size on disk exceeding max_size and shared memory
exhaustion.

This change mitigates the issue by ignoring locked entries during forced
expire.  It also increases the visibility of the problem by logging such
entries.







Upstream: fixed u->headers_in.headers allocation error handling.
2017-05-18T11:17:00+00:00

Sergey Kandaurov
pluknet@nginx.com

2017-05-18T11:17:00+00:00

9359155b2fb443ac3c2cf0d897d5db668585235b

Previously, an allocation error resulted in uninitialized memory access
when evaluating $upstream_http_ variables.

On a related note, see r->headers_out.headers cleanup work in 0cdee26605f3.





Previously, an allocation error resulted in uninitialized memory access
when evaluating $upstream_http_ variables.

On a related note, see r->headers_out.headers cleanup work in 0cdee26605f3.







Realip: allow hostnames in set_real_ip_from (ticket #1180).
2017-05-15T14:17:01+00:00

Ruslan Ermilov
ru@nginx.com

2017-05-15T14:17:01+00:00

a464d07f0a3fd8afd37ce7135e7c678e3604a30c












Access: simplified rule parser code.
2017-05-15T14:16:32+00:00

Ruslan Ermilov
ru@nginx.com

2017-05-15T14:16:32+00:00

b313bc4bd3a61fe8bf9fccbf14ef75ddbd25160b












Added missing "fall through" comments (ticket #1259).
2017-04-27T13:57:18+00:00

Maxim Dounin
mdounin@mdounin.ru

2017-04-27T13:57:18+00:00

8449f750e62cd229026e9df3bd023ec7e073a7d4

Found by gcc7 (-Wimplicit-fallthrough).





Found by gcc7 (-Wimplicit-fallthrough).