nginx.git - nginx

Age	Commit message (Collapse)	Author	Files	Lines
2015-08-13	Core: fixed style in the error message.	Sergey Kandaurov	1	-1/+1

2015-08-13	Stream: fixed potential error log buffer overrun.	Vladimir Homutov	1	-1/+3
	Found by Duan Jiong <djduanjiong@gmail.com>.
2015-08-12	Style.	Vladimir Homutov	1	-1/+1

2015-08-10	Stream: the "tcp_nodelay" directive.	Vladimir Homutov	4	-2/+52

2015-08-11	Core: idle connections now closed only once on exiting.	Valentin Bartenev	5	-35/+31
	Iterating through all connections takes a lot of CPU time, especially with large number of worker connections configured. As a result nginx processes used to consume CPU time during graceful shutdown. To mitigate this we now only do a full scan for idle connections when shutdown signal is received. Transitions of connections to idle ones are now expected to be avoided if the ngx_exiting flag is set. The upstream keepalive module was modified to follow this.
2015-08-11	Fixed typo in the error message.	Andrei Belov	1	-1/+1

2015-07-23	Workaround for "configuration file test failed" under OpenVZ.	Gena Makhomed	1	-4/+22
	If nginx was used under OpenVZ and a container with nginx was suspended and resumed, configuration tests started to fail because of EADDRINUSE returned from listen() instead of bind(): # nginx -t nginx: the configuration file /etc/nginx/nginx.conf syntax is ok nginx: [emerg] listen() to 0.0.0.0:80, backlog 511 failed (98: Address already in use) nginx: configuration file /etc/nginx/nginx.conf test failed With this change EADDRINUSE errors returned by listen() are handled similarly to errors returned by bind(), and configuration tests work fine in the same environment: # nginx -t nginx: the configuration file /etc/nginx/nginx.conf syntax is ok nginx: configuration file /etc/nginx/nginx.conf test is successful More details about OpenVZ suspend/resume bug: https://bugzilla.openvz.org/show_bug.cgi?id=2470
2015-07-30	Stream: deprecated proxy_downstream_buffer, proxy_upstream_buffer.	Roman Arutyunyan	1	-0/+23
	The directive proxy_buffer_size should be used instead.
2015-07-29	Style.	Roman Arutyunyan	1	-2/+1

2015-07-29	Stream: added proxy_buffer_size to set the size of data buffers.	Roman Arutyunyan	1	-23/+11
	Both download and upload buffers now have the same size. The old directives proxy_downstream_buffer and proxy_upstream_buffer are removed.
2015-07-16	Fixed strict aliasing warnings with old GCC versions.	Ruslan Ermilov	2	-2/+2

2015-07-15	Version bump.	Maxim Dounin	1	-2/+2

2015-07-14	Stream: renamed rate limiting directives.	Roman Arutyunyan	1	-14/+14
	The directive proxy_downstream_limit_rate is now called proxy_upload_rate. The directive proxy_upstream_limit_rate is now called proxy_download_rate.
2015-07-14	OCSP stapling: fixed segfault without nextUpdate.	Maxim Dounin	1	-5/+10
	OCSP responses may contain no nextUpdate. As per RFC 6960, this means that nextUpdate checks should be bypassed. Handle this gracefully by using NGX_MAX_TIME_T_VALUE as "valid" in such a case. The problem was introduced by 6893a1007a7c (1.9.2). Reported by Matthew Baldwin.
2015-07-07	OCSP stapling: fixed ssl_stapling_file (ticket #769).	Maxim Dounin	1	-0/+1
	Broken by 6893a1007a7c (1.9.2) during introduction of strict OCSP response validity checks. As stapling file is expected to be returned unconditionally, fix is to set its validity to the maximum supported time. Reported by Faidon Liambotis.
2015-07-02	Stream: fixed possible integer overflow in rate limiting.	Valentin Bartenev	1	-1/+1

2015-07-02	Stream: fixed MSVC compilation warning.	Roman Arutyunyan	1	-1/+1
	Thanks to itpp2012.
2015-06-25	Stream: upstream "connected" flag.	Roman Arutyunyan	2	-5/+7
	Once upstream is connected, the upstream buffer is allocated. Previously, the proxy module used the buffer allocation status to check if upstream is connected. Now it's enough to check the flag.
2015-06-23	Stream: upstream and downstream limit rates.	Roman Arutyunyan	2	-15/+111

2015-06-23	Stream: common handler for upstream and downstream.	Roman Arutyunyan	1	-25/+18

2015-06-18	Stream: avoid SSL_CTX_set_tmp_rsa_callback() call with LibreSSL.	Piotr Sikora	1	-0/+2
	Signed-off-by: Piotr Sikora <piotr@cloudflare.com>
2015-06-16	Upstream: fixed shared upstreams on win32.	Ruslan Ermilov	4	-24/+64

2015-06-18	Stream: connection limiting module.	Vladimir Homutov	3	-0/+642
	stream { limit_conn_zone $binary_remote_addr zone=perip:1m; limit_conn_log_level error; server { ... limit_conn perip 1; } }
2015-06-17	Resolver: canceled resend timer on empty resend queues.	Sergey Kandaurov	1	-0/+20
	This is specifically useful on graceful shutdown.
2015-06-16	Disabled duplicate http, mail, and stream blocks.	Vladimir Homutov	3	-0/+12
	Such configurations have very limited use, introduce various problems and are not officially supported.
2015-06-16	Version bump.	Vladimir Homutov	1	-2/+2

2015-05-14	Core: store and dump processed configuration.	Vladimir Homutov	5	-4/+88
	If the -T option is passed, additionally to configuration test, configuration files are output to stdout. In the debug mode, configuration files are kept in memory and can be accessed using a debugger.
2015-06-16	Core: added support for writing to stdout.	Vladimir Homutov	3	-0/+9

2015-06-16	Core: renamed ngx_proxy_protocol_parse to ngx_proxy_protocol_read.	Roman Arutyunyan	4	-5/+5
	The new name is consistent with the ngx_proxy_protocol_write function.
2015-06-16	Stream: client-side PROXY protocol.	Roman Arutyunyan	4	-2/+170
	The new directive "proxy_protocol" toggles sending out PROXY protocol header to upstream once connection is established.
2015-06-16	Stream: the "proxy_bind" directive.	Vladimir Homutov	1	-0/+57

2015-06-11	OCSP stapling: avoid sending expired responses (ticket #425).	Maxim Dounin	1	-6/+62

2015-06-11	Moved ngx_http_parse_time() to core, renamed accordingly.	Maxim Dounin	10	-15/+34
	The function is now called ngx_parse_http_time(), and can be used by any code to parse HTTP-style date and time. In particular, it will be used for OCSP stapling. For compatibility, a macro to map ngx_http_parse_time() to the new name provided for a while.
2015-06-11	Removed unused ngx_http_get_time() declaration.	Maxim Dounin	1	-2/+0

2015-06-04	Stream: access module.	Vladimir Homutov	3	-12/+480
	stream { server { ... allow 127.0.0.1; deny all; } }
2015-06-09	Stream: added postconfiguration method to stream modules.	Vladimir Homutov	9	-0/+30

2015-06-08	Mail: listen backlog=.	Ruslan Ermilov	3	-0/+17

2015-06-08	Stream: listen backlog=.	Ruslan Ermilov	3	-0/+17

2015-06-08	Mail: embed ngx_mail_listen_t into ngx_mail_conf_addr_t.	Ruslan Ermilov	3	-68/+48

2015-06-08	Stream: embed ngx_stream_listen_t into ngx_stream_conf_addr_t.	Ruslan Ermilov	3	-75/+49

2015-06-05	Stream: fixed "reuseport" to actually work.	Ruslan Ermilov	2	-0/+10

2015-06-04	Upstream keepalive: reduced diffs to the plus version of nginx.	Roman Arutyunyan	1	-39/+42

2015-06-05	Style.	Maxim Dounin	1	-1/+2

2015-06-03	Event pipe: call ngx_handle_read_event() with a proper flags type.	Sergey Kandaurov	1	-1/+1
	The change was missed in f69d1aab6a0f.
2015-06-01	Fixed excessive memory usage while parsing configuration.	Valentin Bartenev	1	-1/+1
	The b->pos points to the next symbol here. Reported by ilexshen.
2015-05-29	Fixed bullying style of comments.	Ruslan Ermilov	1	-4/+4

2015-05-29	Version bump.	Ruslan Ermilov	1	-2/+2

2015-05-25	Disabled SSLv3 by default (ticket #653).	Maxim Dounin	6	-12/+9

2015-05-25	Configure: GNU Hurd properly recognized.	Maxim Dounin	1	-0/+8
	With this change it's no longer needed to pass -D_GNU_SOURCE manually, and -D_FILE_OFFSET_BITS=64 is set to use 64-bit off_t. Note that nginx currently fails to work properly with master process enabled on GNU Hurd, as fcntl(F_SETOWN) returns EOPNOTSUPP for sockets as of GNU Hurd 0.6. Additionally, our strerror() preloading doesn't work well with GNU Hurd, as it uses large numbers for most errors.
2015-05-21	Fixed reuseport with accept_mutex.	Maxim Dounin	1	-1/+6