./www/nginx-devel, Lightweight HTTP server and mail proxy server

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 1.15.8, Package name: nginx-1.15.8, Maintainer: imil

Nginx (pronounced engine-x) is a free, open-source, high-performance HTTP
server and reverse proxy, as well as an IMAP/POP3 proxy server. Igor Sysoev
started development of Nginx in 2002, with the first public release in 2004.
Nginx now hosts nearly 12.18% (22.2M) of active sites across all domains.
Nginx is known for its high performance, stability, rich feature set, simple
configuration, and low resource consumption.

Nginx is one of a handful of servers written to address the C10K problem.
Unlike traditional servers, Nginx doesn't rely on threads to handle requests.
Instead it uses a much more scalable event-driven (asynchronous) architecture.
This architecture uses small, but more importantly, predictable amounts of
memory under load.
Even if you don't expect to handle thousands of simultaneous requests, you can
still benefit from Nginx's high-performance and small memory footprint.
Nginx scales in all directions: from the smallest VPS all the way up to
clusters of servers.

Nginx powers several high-visibility sites, such as Netflix, Hulu, Pinterest,
CloudFlare, Airbnb, WordPress.com, GitHub, SoundCloud, Zynga, Eventbrite,
Zappos, Media Temple, Heroku, RightScale, Engine Yard and NetDNA.


Required to run:
[devel/pcre]

Required to build:
[pkgtools/cwrappers]

Package options: inet6, pcre, ssl

Master sites:

SHA1: 1816c7e3e96c7c76e1224d88436faf1b29ceb14b
RMD160: 7df9e8b52a009011c0821acd076e91a356ac325d
Filesize: 1003.771 KB

Version history: (Expand)


CVS history: (Expand)


   2019-01-04 11:42:05 by Adam Ciarcinski | Files touched by this commit (2) | Package updated
Log message:
nginx-devel: updated to 1.15.8

Changes with nginx 1.15.8:
*) Feature: the $upstream_bytes_sent variable.
*) Feature: new directives in vim syntax highlighting scripts.
*) Bugfix: in the "proxy_cache_background_update" directive.
*) Bugfix: in the "geo" directive when using unix domain listen sockets.
*) Workaround: the "ignoring stale global SSL error ... bad length"
   alerts might appear in logs when using the "ssl_early_data" directive
   with OpenSSL.
*) Bugfix: in nginx/Windows.
*) Bugfix: in the ngx_http_autoindex_module on 32-bit platforms.
   2018-12-16 00:28:52 by Adam Ciarcinski | Files touched by this commit (2) | Package updated
Log message:
nginx-devel: updated to 1.15.7

Changes with nginx 1.15.7:
*) Feature: the "proxy_requests" directive in the stream module.
*) Feature: the "delay" parameter of the "limit_req" directive.
*) Bugfix: memory leak on errors during reconfiguration.
*) Bugfix: in the $upstream_response_time, $upstream_connect_time, and
   $upstream_header_time variables.
*) Bugfix: a segmentation fault might occur in a worker process if the
   ngx_http_mp4_module was used on 32-bit platforms.
   2018-11-19 12:05:14 by Adam Ciarcinski | Files touched by this commit (2) | Package updated
Log message:
nginx-devel: updated to 1.15.6

Changes with nginx 1.15.6:

*) Security: when using HTTP/2 a client might cause excessive memory
   consumption (CVE-2018-16843) and CPU usage (CVE-2018-16844).

*) Security: processing of a specially crafted mp4 file with the
   ngx_http_mp4_module might result in worker process memory disclosure
   (CVE-2018-16845).

*) Feature: the "proxy_socket_keepalive", \ 
"fastcgi_socket_keepalive",
   "grpc_socket_keepalive", "memcached_socket_keepalive",
   "scgi_socket_keepalive", and "uwsgi_socket_keepalive" \ 
directives.

*) Bugfix: if nginx was built with OpenSSL 1.1.0 and used with OpenSSL
   1.1.1, the TLS 1.3 protocol was always enabled.

*) Bugfix: working with gRPC backends might result in excessive memory
   consumption.
   2018-10-03 12:19:02 by Adam Ciarcinski | Files touched by this commit (2) | Package updated
Log message:
nginx-devel: updated to 1.15.5

Changes with nginx 1.15.5:

*) Bugfix: a segmentation fault might occur in a worker process when
   using OpenSSL 1.1.0h or newer; the bug had appeared in 1.15.4.

*) Bugfix: of minor potential bugs.

Changes with nginx 1.15.4:

*) Feature: now the "ssl_early_data" directive can be used with OpenSSL.

*) Bugfix: in the ngx_http_uwsgi_module.
   Thanks to Chris Caputo.

*) Bugfix: connections with some gRPC backends might not be cached when
   using the "keepalive" directive.

*) Bugfix: a socket leak might occur when using the "error_page"
   directive to redirect early request processing errors, notably errors
   with code 400.

*) Bugfix: the "return" directive did not change the response code when
   returning errors if the request was redirected by the "error_page"
   directive.

*) Bugfix: standard error pages and responses of the
   ngx_http_autoindex_module module used the "bgcolor" attribute, and
   might be displayed incorrectly when using custom color settings in
   browsers.
   Thanks to Nova DasSarma.

*) Change: the logging level of the "no suitable key share" and "no
   suitable signature algorithm" SSL errors has been lowered from \ 
"crit"
   to "info".
   2018-08-29 09:35:53 by Adam Ciarcinski | Files touched by this commit (2) | Package updated
Log message:
nginx-devel: updated to 1.15.3

Changes with nginx 1.15.3:
*) Feature: now TLSv1.3 can be used with BoringSSL.
*) Feature: the "ssl_early_data" directive, currently available with
   BoringSSL.
*) Feature: the "keepalive_timeout" and "keepalive_requests" \ 
directives
   in the "upstream" block.
*) Bugfix: the ngx_http_dav_module did not truncate destination file
   when copying a file over an existing one with the COPY method.
*) Bugfix: the ngx_http_dav_module used zero access rights on the
   destination file and did not preserve file modification time when
   moving a file between different file systems with the MOVE method.
*) Bugfix: the ngx_http_dav_module used default access rights when
   copying a file with the COPY method.
*) Workaround: some clients might not work when using HTTP/2; the bug
   had appeared in 1.13.5.
*) Bugfix: nginx could not be built with LibreSSL 2.8.0.
   2018-08-24 20:27:08 by Adam Ciarcinski | Files touched by this commit (5) | Package updated
Log message:
nginx-devel: updated to 1.15.2

Changes with nginx 1.15.2:
*) Feature: the $ssl_preread_protocol variable in the
   ngx_stream_ssl_preread_module.
*) Feature: now when using the "reset_timedout_connection" directive
   nginx will reset connections being closed with the 444 code.
*) Change: a logging level of the "http request", "https proxy \ 
request",
   "unsupported protocol", and "version too low" SSL errors \ 
has been
   lowered from "crit" to "info".
*) Bugfix: DNS requests were not resent if initial sending of a request
   failed.
*) Bugfix: the "reuseport" parameter of the "listen" \ 
directive was
   ignored if the number of worker processes was specified after the
   "listen" directive.
*) Bugfix: when using OpenSSL 1.1.0 or newer it was not possible to
   switch off "ssl_prefer_server_ciphers" in a virtual server if it was
   switched on in the default server.
*) Bugfix: SSL session reuse with upstream servers did not work with the
   TLS 1.3 protocol.

Changes with nginx 1.15.1:
*) Feature: the "random" directive inside the "upstream" block.
*) Feature: improved performance when using the "hash" and \ 
"ip_hash"
   directives with the "zone" directive.
*) Feature: the "reuseport" parameter of the "listen" \ 
directive now uses
   SO_REUSEPORT_LB on FreeBSD 12.
*) Bugfix: HTTP/2 server push did not work if SSL was terminated by a
   proxy server in front of nginx.
*) Bugfix: the "tcp_nopush" directive was always used on backend
   connections.
*) Bugfix: sending a disk-buffered request body to a gRPC backend might
   fail.

Changes with nginx 1.15.0:
*) Change: the "ssl" directive is deprecated; the "ssl" \ 
parameter of the
   "listen" directive should be used instead.
*) Change: now nginx detects missing SSL certificates during
   configuration testing when using the "ssl" parameter of the \ 
"listen"
   directive.
*) Feature: now the stream module can handle multiple incoming UDP
   datagrams from a client within a single session.
*) Bugfix: it was possible to specify an incorrect response code in the
   "proxy_cache_valid" directive.
*) Bugfix: nginx could not be built by gcc 8.1.
*) Bugfix: logging to syslog stopped on local IP address changes.
*) Bugfix: nginx could not be built by clang with CUDA SDK installed;
   the bug had appeared in 1.13.8.
*) Bugfix: "getsockopt(TCP_FASTOPEN) ... failed" messages might appear
   in logs during binary upgrade when using unix domain listen sockets
   on FreeBSD.
*) Bugfix: nginx could not be built on Fedora 28 Linux.
*) Bugfix: request processing rate might exceed configured rate when
   using the "limit_req" directive.
*) Bugfix: in handling of client addresses when using unix domain listen
   sockets to work with datagrams on Linux.
*) Bugfix: in memory allocation error handling.
   2018-05-16 09:46:43 by Adam Ciarcinski | Files touched by this commit (2)
Log message:
nginx-devel: sync modules with nginx/Makefile.common
   2018-04-12 08:49:39 by Adam Ciarcinski | Files touched by this commit (3) | Package updated
Log message:
nginx-devel: updated to 1.13.12

Changes with nginx 1.13.12:
*) Bugfix: connections with gRPC backends might be closed unexpectedly
   when returning a large response.

Changes with nginx 1.13.11:
*) Feature: the "proxy_protocol" parameter of the "listen" \ 
directive now
   supports the PROXY protocol version 2.
*) Bugfix: nginx could not be built with OpenSSL 1.1.1 statically on
   Linux.
*) Bugfix: in the "http_404", "http_500", etc. parameters of the
   "proxy_next_upstream" directive.