stable
FEDORA-EPEL-MODULAR-2021-0683a1b590 created by heffer 11 months ago for Fedora Epel 8 Modular
  • Change: support for NPN instead of ALPN to establish HTTP/2 connections has been removed.
  • Change: now nginx rejects SSL connections if ALPN is used by the client, but no supported protocols can be negotiated.
  • Change: the default value of the "sendfile_max_chunk" directive was changed to 2 megabytes.
  • Feature: the "proxy_half_close" directive in the stream module.
  • Feature: the "ssl_alpn" directive in the stream module.
  • Feature: the $ssl_alpn_protocol variable.
  • Feature: support for SSL_sendfile() when using OpenSSL 3.0.
  • Feature: the "mp4_start_key_frame" directive in the ngx_http_mp4_module. Thanks to Tracey Jaquith.
  • Bugfix: in the $content_length variable when using chunked transfer encoding.
  • Bugfix: after receiving a response with incorrect length from a proxied backend nginx might nevertheless cache the connection. Thanks to Awdhesh Mathpal.
  • Bugfix: invalid headers from backends were logged at the "info" level instead of "error"; the bug had appeared in 1.21.1.
  • Bugfix: requests might hang when using HTTP/2 and the "aio_write" directive.

  • Change: optimization of client request body reading when using HTTP/2.

  • Bugfix: in request body filters internal API when using HTTP/2 and buffering of the data being processed.


  • Change: now nginx rejects HTTP/1.0 requests with the "Transfer-Encoding" header line.

  • Change: export ciphers are no longer supported.

  • Feature: OpenSSL 3.0 compatibility.

  • Feature: the "Auth-SSL-Protocol" and "Auth-SSL-Cipher" header lines are now passed to the mail proxy authentication server. Thanks to Rob Mueller.

  • Feature: request body filters API now permits buffering of the data being processed.

  • Bugfix: backend SSL connections in the stream module might hang after an SSL handshake.

  • Bugfix: the security level, which is available in OpenSSL 1.1.0 or newer, did not affect loading of the server certificates when set with "@SECLEVEL=N" in the "ssl_ciphers" directive.

  • Bugfix: SSL connections with gRPC backends might hang if select, poll, or /dev/poll methods were used.

  • Bugfix: when using HTTP/2 client request body was always written to disk if the "Content-Length" header line was not present in the request.

This update has been submitted for testing by heffer.

11 months ago

This update's test gating status has been changed to 'ignored'.

11 months ago

This update's test gating status has been changed to 'waiting'.

11 months ago

This update has obsoleted nginx-mainline-820210908190854.9edba152, and has inherited its bugs and notes.

11 months ago

This update's test gating status has been changed to 'ignored'.

11 months ago

This update has been pushed to testing.

11 months ago

This update has been submitted for stable by bodhi.

11 months ago

This update has been pushed to stable.

11 months ago

Please login to add feedback.

Metadata
Type
unspecified
Karma
0
Signed
Content Type
Module
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
11 months ago
in testing
11 months ago
in stable
11 months ago
BZ#1964498 nginx-1.21.2 is available
0
0

Automated Test Results