nginx.git/src/http, branch release-1.8.1

SSL: only select SPDY using NPN if "spdy" is enabled.

2015-11-05T12:01:09+00:00

OpenSSL doesn't check if the negotiated protocol has been announced.
As a result, the client might force using SPDY even if it wasn't
enabled in configuration.

Upstream: fixed cache send error handling.

2015-09-03T12:09:21+00:00

The value of NGX_ERROR, returned from filter handlers, was treated as a generic
upstream error and changed to NGX_HTTP_INTERNAL_SERVER_ERROR before calling
ngx_http_finalize_request().  This resulted in "header already sent" alert
if header was already sent in filter handlers.

The problem appeared in 54e9b83d00f0 (1.7.5).

Fixed wrong URI after try_files in nested location (ticket #97).

2015-08-16T07:51:34+00:00

The following configuration with alias, nested location and try_files
resulted in wrong file being used.  Request "/foo/test.gif" tried to
use "/tmp//foo/test.gif" instead of "/tmp/test.gif":

    location /foo/ {
        alias /tmp/;
        location ~ gif {
            try_files $uri =405;
        }
    }

Additionally, rev. c985d90a8d1f introduced a regression if
the "/tmp//foo/test.gif" file was found (ticket #768).  Resulting URI
was set to "gif?/foo/test.gif", as the code used clcf->name of current
location ("location ~ gif") instead of parent one ("location /foo/").

Fix is to use r->uri instead of clcf->name in all cases in the
ngx_http_core_try_files_phase() function.  It is expected to be
already matched and identical to the clcf->name of the right
location.

Fixed segfault with try_files introduced by c985d90a8d1f.

2015-08-16T07:51:16+00:00

If alias was used in a location given by a regular expression,
nginx used to do wrong thing in try_files if a location name (i.e.,
regular expression) was an exact prefix of URI.  The following
configuration triggered a segmentation fault on a request to "/mail":

    location ~ /mail {
        alias /path/to/directory;
        try_files $uri =404;
    }

Reported by Per Hansson.

Merge proxy_protocol setting of listen directives.

2015-04-24T07:54:06+00:00

It's now enough to specify proxy_protocol option in one listen directive to
enable it in all servers listening on the same address/port.  Previously,
the setting from the first directive was always used.

Upstream: abbreviated SSL handshake may interact badly with Nagle.

2015-04-06T21:07:04+00:00

Request body: always flush buffers if request buffering is off.

2015-04-06T16:20:36+00:00

This fixes unbuffered proxying to SSL backends, since it prevents
ngx_ssl_send_chain() from accumulation of request body in the SSL
buffer.

Cache: added support for reading of the header in thread pools.

2015-04-01T00:49:17+00:00

Fixed invalid access to complex value defined as an empty string.

2015-03-31T14:45:50+00:00

Found by Valgrind.

SPDY: always push pending data.

2015-03-23T18:04:13+00:00

This helps to avoid suboptimal behavior when a client waits for a control
frame or more data to increase window size, but the frames have been delayed
in the socket buffer.

The delays can be caused by bad interaction between Nagle's algorithm on
nginx side and delayed ACK on the client side or by TCP_CORK/TCP_NOPUSH
if SPDY was working without SSL and sendfile() was used.

The pushing code is now very similar to ngx_http_set_keepalive().