nginx.git/src/stream, branch release-1.21.0

Stream: the "fastopen" parameter of the "listen" directive.

2021-05-20T16:59:16+00:00

Based on a patch by Anbang Wen.

Upstream: variables support in certificates.

2021-05-05T23:22:09+00:00

Changed complex value slots to use NGX_CONF_UNSET_PTR.

2021-05-05T23:22:03+00:00

With this change, it is now possible to use ngx_conf_merge_ptr_value()
to merge complex values.  This change follows much earlier changes in
ngx_conf_merge_ptr_value() and ngx_conf_set_str_array_slot()
in 1452:cd586e963db0 (0.6.10) and 1701:40d004d95d88 (0.6.22), and the
change in ngx_conf_set_keyval_slot() (7728:485dba3e2a01, 1.19.4).

To preserve compatibility with existing 3rd party modules, both NULL
and NGX_CONF_UNSET_PTR are accepted for now.

SSL: fixed build by Sun C with old OpenSSL versions.

2021-03-05T14:16:13+00:00

Sun C complains about "statement not reached" if a "return" is followed
by additional statements.

Upstream: excluded down servers from the next_upstream tries.

2020-11-26T21:01:20+00:00

Previously, the number of next_upstream tries included servers marked
as "down", resulting in "no live upstreams" with the code 502 instead
of the code derived from an attempt to connect to the last tried "up"
server (ticket #2096).

Stream: proxy_ssl_conf_command directive.

2020-10-22T15:00:27+00:00

Similarly to ssl_conf_command, proxy_ssl_conf_command can be used to
set arbitrary OpenSSL configuration parameters as long as nginx is
compiled with OpenSSL 1.0.2 or later, when connecting to upstream
servers with SSL.  Full list of available configuration commands
can be found in the SSL_CONF_cmd manual page
(https://www.openssl.org/docs/man1.1.1/man3/SSL_CONF_cmd.html).

SSL: ssl_conf_command directive.

2020-10-22T15:00:22+00:00

With the ssl_conf_command directive it is now possible to set
arbitrary OpenSSL configuration parameters as long as nginx is compiled
with OpenSSL 1.0.2 or later.  Full list of available configuration
commands can be found in the SSL_CONF_cmd manual page
(https://www.openssl.org/docs/man1.1.1/man3/SSL_CONF_cmd.html).

In particular, this allows configuring PrioritizeChaCha option
(ticket #1445):

    ssl_conf_command Options PrioritizeChaCha;

It can be also used to configure TLSv1.3 ciphers in OpenSSL,
which fails to configure them via the SSL_CTX_set_cipher_list()
interface (ticket #1529):

    ssl_conf_command Ciphersuites TLS_CHACHA20_POLY1305_SHA256;

Configuration commands are applied after nginx own configuration
for SSL, so they can be used to override anything set by nginx.
Note though that configuring OpenSSL directly with ssl_conf_command
might result in a behaviour nginx does not expect, and should be
done with care.

Stream: set module.

2020-08-28T21:10:54+00:00

Adds 'set' directive to the stream server context.

Stream: fixed processing of zero length UDP packets (ticket #1982).

2020-06-08T08:40:34+00:00

Limit conn: added shared context.

2019-11-18T16:50:59+00:00

Previously only an rbtree was associated with a limit_conn.  To make it
possible to associate more data with a limit_conn, shared context is introduced
similar to limit_req.  Also, shared pool pointer is kept in a way similar to
limit_req.