Commit Graph

69 Commits

Author SHA256 Message Date
45241f9ffe Accepting request 809722 from home:13ilya:branches:server:http
- Update to 1.19.0
  * https://nginx.org/en/CHANGES
  * Client certificate validation with OCSP.
  * "upstream sent frame for closed stream" errors might occur
    when working with gRPC backends.
  * OCSP stapling might not work if the "resolver" directive
    was not specified.
  * Connections with incorrect HTTP/2 preface were not logged.

OBS-URL: https://build.opensuse.org/request/show/809722
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=170
2020-05-29 11:32:50 +00:00
Lars Vogdt
4e4facd3f8 Accepting request 801322 from home:elvigia:branches:server:http
- Do not arbitrarily limit the default listen backlog  
 (NGX_LISTEN_BACKLOG) to 511, instead use -1 to choose the
 system's default (sysctl net.core.somaxconn)

OBS-URL: https://build.opensuse.org/request/show/801322
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=168
2020-05-14 21:21:47 +00:00
0cdd64823c Accepting request 796314 from home:13ilya:branches:server:http
- Update to 1.18.0
  * 1.18.x stable branch.

OBS-URL: https://build.opensuse.org/request/show/796314
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=166
2020-04-27 13:27:42 +00:00
Marguerite Su
2c38ca9f0e Accepting request 794934 from home:kukuk:container
- Use sysusers.d to create the nginx user and group
- Remove self-conflict

OBS-URL: https://build.opensuse.org/request/show/794934
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=164
2020-04-20 09:55:41 +00:00
Marguerite Su
7f63fdb070 Accepting request 794195 from home:13ilya:branches:server:http
- Update to 1.17.10
  * https://nginx.org/en/CHANGES
  * The "auth_delay" directive.

OBS-URL: https://build.opensuse.org/request/show/794195
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=162
2020-04-16 04:36:56 +00:00
Marguerite Su
0c4317dd6d Accepting request 783312 from home:vitezslav_cizek:branches:server:http
- Replace obsolete GeoIP module with MaxMinDB-based GeoIP2
  (bsc#1156202)

OBS-URL: https://build.opensuse.org/request/show/783312
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=160
2020-03-12 09:25:10 +00:00
Marguerite Su
887ffcf191 Accepting request 781491 from home:13ilya:branches:server:http
- Update to 1.17.9
  * https://nginx.org/en/CHANGES
  * Now nginx does not allow several "Host" request header lines.
  * nginx ignored additional "Transfer-Encoding" request header lines.
  * Socket leak when using HTTP/2.
  * A segmentation fault might occur in a worker process if OCSP
    stapling was used.
  * In the ngx_http_mp4_module.
  * nginx used status code 494 instead of 400 if errors with code
    494 were redirected with the "error_page" directive.
  * Socket leak when using subrequests in the njs module and the
    "aio" directive.

OBS-URL: https://build.opensuse.org/request/show/781491
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=158
2020-03-04 14:49:39 +00:00
9cc4b61e19 - Update to 1.17.8
* Feature: variables support in the "grpc_pass" directive.
  * Bugfix: a timeout might occur while handling pipelined requests
    in an SSL connection; the bug had appeared in 1.17.5.
  * Bugfix: in the "debug_points" directive when using HTTP/2.
    Thanks to Daniil Bondarev.

OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=156
2020-02-02 01:07:00 +00:00
Marguerite Su
97fb313681 Accepting request 766199 from home:kukuk:container
Don't pull systemd into containers, we don't need it there and it does not work there.

OBS-URL: https://build.opensuse.org/request/show/766199
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=154
2020-01-23 10:09:30 +00:00
Marguerite Su
253ce7a887 Accepting request 759769 from home:13ilya
- Refresh spec-file via spec-cleaner.
- Add in service-file Wants=network-online.target (boo#1155690)
- Update to 1.17.7
  * https://nginx.org/en/CHANGES
  * A segmentation fault might occur on start or during
    reconfiguration if the "rewrite" directive with an empty
    replacement string was used in the configuration.
  * A segmentation fault might occur in a worker process if the
    "break" directive was used with the "alias" directive or with
    the "proxy_pass" directive with a URI.
  * The "Location" response header line might contain garbage if
    the request URI was rewritten to the one containing a null character.
  * Requests with bodies were handled incorrectly when returning redirections
    with the "error_page" directive; the bug had appeared in 0.7.12.
  * Socket leak when using HTTP/2.
  * A timeout might occur while handling pipelined requests in an
    SSL connection; the bug had appeared in 1.17.5.
  * Bugfix in the ngx_http_dav_module.

OBS-URL: https://build.opensuse.org/request/show/759769
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=152
2019-12-30 04:22:56 +00:00
e5eb1e9bf2 - Update to 1.17.6
- Feature: the $proxy_protocol_server_addr and
    $proxy_protocol_server_port variables.
  - Feature: the "limit_conn_dry_run" directive.
  - Feature: the $limit_req_status and $limit_conn_status
    variables.

OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=150
2019-11-23 20:15:03 +00:00
Marguerite Su
e2791af833 Accepting request 743385 from home:elvigia:branches:server:http
- remove -std=gnu99 -fstack-protector from cflags as they are
  no longer needed.

OBS-URL: https://build.opensuse.org/request/show/743385
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=148
2019-10-28 14:53:05 +00:00
Marguerite Su
ad6d5170e4 Accepting request 742233 from home:13ilya
- Update to 1.17.5
  * https://nginx.org/en/CHANGES
  * Now nginx uses ioctl(FIONREAD), if available, to avoid
    reading from a fast connection for a long time.
  * Incomplete escaped characters at the end of the request URI were ignored.
  * "/." and "/.." at the end of the request URI were not normalized.
  * In the "merge_slashes" directive.
  * In the "ignore_invalid_headers" directive.
  * nginx could not be built with MinGW-w64 gcc 8.1 or newer.

OBS-URL: https://build.opensuse.org/request/show/742233
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=146
2019-10-25 03:54:21 +00:00
Marguerite Su
c08fa7ecb9 Accepting request 741628 from home:13ilya
- Update to 1.17.4
  * https://nginx.org/en/CHANGES
  * Better detection of incorrect client behavior in HTTP/2.
  * In handling of not fully read client request body when
    returning errors in HTTP/2.
  * The "worker_shutdown_timeout" directive might not work when
    using HTTP/2.
  * A segmentation fault might occur in a worker process when
    using HTTP/2 and the "proxy_request_buffering" directive.
  * The ECONNABORTED error log level was "crit" instead of
    "error" on Windows when using SSL.
  * nginx ignored extra data when using chunked transfer
    encoding.
  * nginx always returned the 500 error if the "return" directive
    was used and an error occurred during reading client request body.
  * In memory allocation error handling.

OBS-URL: https://build.opensuse.org/request/show/741628
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=144
2019-10-23 04:04:00 +00:00
05f633b52d Accepting request 723395 from home:darix:branches:server:http
- update to 1.17.3
  - Security: when using HTTP/2 a client might cause excessive
    memory consumption and CPU usage (CVE-2019-9511, CVE-2019-9513,
    CVE-2019-9516).
  - Bugfix: "zero size buf" alerts might appear in logs when using
    gzipping; the bug had appeared in 1.17.2.
  - Bugfix: a segmentation fault might occur in a worker process if
    the "resolver" directive was used in SMTP proxy.

OBS-URL: https://build.opensuse.org/request/show/723395
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=142
2019-08-14 23:25:38 +00:00
Marguerite Su
f3eec2c3e4 Accepting request 717994 from home:stroeder:branches:server:http
update to 1.17.2

OBS-URL: https://build.opensuse.org/request/show/717994
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=140
2019-07-24 03:40:34 +00:00
8e779ce77f - update to 1.17.1
- Feature: the "limit_req_dry_run" directive.
  - Feature: when using the "hash" directive inside the "upstream"
    block an empty hash key now triggers round-robin balancing.
    Thanks to Niklas Keller.
  - Bugfix: a segmentation fault might occur in a worker process if
    caching was used along with the "image_filter" directive, and
    errors with code 415 were redirected with the "error_page"
    directive; the bug had appeared in 1.11.10.
  - Bugfix: a segmentation fault might occur in a worker process if
    embedded perl was used; the bug had appeared in 1.7.3.

OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=138
2019-07-09 12:09:34 +00:00
Marguerite Su
116772d755 Accepting request 705084 from home:seanlew:branches:server:http
Update nginx

OBS-URL: https://build.opensuse.org/request/show/705084
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=136
2019-05-24 07:27:06 +00:00
Marguerite Su
f2aa2b58c8 Accepting request 700954 from home:seanlew:branches:server:http
Update nginx

OBS-URL: https://build.opensuse.org/request/show/700954
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=134
2019-05-07 03:04:31 +00:00
Artem Chernikov
b840293921 Accepting request 692075 from home:seanlew:branches:server:http
Update nginx

OBS-URL: https://build.opensuse.org/request/show/692075
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=132
2019-04-11 05:53:31 +00:00
0aef653ed2 Accepting request 680799 from home:seanlew:branches:server:http
Update nginx

OBS-URL: https://build.opensuse.org/request/show/680799
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=131
2019-03-04 14:47:39 +00:00
Lars Vogdt
4e86f78871 Accepting request 662124 from home:seanlew:branches:server:http
Update nginx to 1.15.8

OBS-URL: https://build.opensuse.org/request/show/662124
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=129
2018-12-31 16:28:55 +00:00
Artem Chernikov
30019b1866 Accepting request 656085 from home:computersalat:devel:http
update to 1.15.7

OBS-URL: https://build.opensuse.org/request/show/656085
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=127
2018-12-18 06:43:34 +00:00
Marguerite Su
625a7b2807 Accepting request 647300 from home:alarrosa:branches:server:http
- update to 1.15.6
  - Security: when using HTTP/2 a client might cause excessive memory
    consumption (CVE-2018-16843) and CPU usage (CVE-2018-16844).
  - Security: processing of a specially crafted mp4 file with the
    ngx_http_mp4_module might result in worker process memory disclosure
    (CVE-2018-16845).
  - Feature: the "proxy_socket_keepalive", "fastcgi_socket_keepalive",
    "grpc_socket_keepalive", "memcached_socket_keepalive",
    "scgi_socket_keepalive", and "uwsgi_socket_keepalive" directives.
  - Bugfix: if nginx was built with OpenSSL 1.1.0 and used with OpenSSL
    1.1.1, the TLS 1.3 protocol was always enabled.
  - Bugfix: working with gRPC backends might result in excessive memory
    consumption.
- Fix vim-plugin-nginx rpm group.

- update to 1.15.4
  - Feature: now the "ssl_early_data" directive can be used with OpenSSL.
  - Bugfix: in the ngx_http_uwsgi_module.
  - Bugfix: connections with some gRPC backends might not be cached when
    using the "keepalive" directive.
  - Bugfix: a socket leak might occur when using the "error_page"
    directive to redirect early request processing errors, notably errors
    with code 400.
  - Bugfix: the "return" directive did not change the response code when
    returning errors if the request was redirected by the "error_page"
    directive.
  - Bugfix: standard error pages and responses of the
    ngx_http_autoindex_module module used the "bgcolor" attribute, and
    might be displayed incorrectly when using custom color settings in
    browsers.

OBS-URL: https://build.opensuse.org/request/show/647300
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=125
2018-11-10 03:30:31 +00:00
Marguerite Su
bc523e9af9 Accepting request 646203 from home:seanlew:branches:server:http
Update nginx to 1.15.5

OBS-URL: https://build.opensuse.org/request/show/646203
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=123
2018-11-08 10:34:12 +00:00
ed4ba9d2ef - update to 1.15.3
- Feature: now TLSv1.3 can be used with BoringSSL.
  - Feature: the "ssl_early_data" directive, currently available
    with BoringSSL.
  - Feature: the "keepalive_timeout" and "keepalive_requests"
    directives in the "upstream" block.
  - Bugfix: the ngx_http_dav_module did not truncate destination
    file when copying a file over an existing one with the COPY
    method.
  - Bugfix: the ngx_http_dav_module used zero access rights on the
    destination file and did not preserve file modification time
    when moving a file between different file systems with the MOVE
    method.
  - Bugfix: the ngx_http_dav_module used default access rights when
    copying a file with the COPY method.
  - Workaround: some clients might not work when using HTTP/2; the
    bug had appeared in 1.13.5.
  - Bugfix: nginx could not be built with LibreSSL 2.8.0.

OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=119
2018-09-06 13:28:56 +00:00
Lars Vogdt
8995295cbf Accepting request 626476 from home:darix:playground
- update to 1.15.2
  - Feature: the $ssl_preread_protocol variable in the
    ngx_stream_ssl_preread_module.
  - Feature: now when using the "reset_timedout_connection"
    directive nginx will reset connections being closed with the
    444 code.
  - Change: a logging level of the "http request", "https proxy
    request", "unsupported protocol", and "version too low" SSL
    errors has been lowered from "crit" to "info".
  - Bugfix: DNS requests were not resent if initial sending of a
    request failed.
  - Bugfix: the "reuseport" parameter of the "listen" directive was
    ignored if the number of worker processes was specified after
    the "listen" directive.
  - Bugfix: when using OpenSSL 1.1.0 or newer it was not possible
    to switch off "ssl_prefer_server_ciphers" in a virtual server
    if it was switched on in the default server.
  - Bugfix: SSL session reuse with upstream servers did not work
    with the TLS 1.3 protocol.

- update to 1.15.1

OBS-URL: https://build.opensuse.org/request/show/626476
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=117
2018-07-30 14:50:16 +00:00
Lars Vogdt
0c3dd01a3f Accepting request 624609 from home:darix:playground
- update 1.15.1

OBS-URL: https://build.opensuse.org/request/show/624609
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=115
2018-07-24 20:17:53 +00:00
Artem Chernikov
948da87c36 Accepting request 612832 from home:mrostecki:branches:server:http
- Add nginx-source package

OBS-URL: https://build.opensuse.org/request/show/612832
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=113
2018-06-06 10:16:19 +00:00
Marguerite Su
aec280d998 Accepting request 607649 from home:elvigia:branches:server:http
- Do not require insserv on systemd-only releases.

OBS-URL: https://build.opensuse.org/request/show/607649
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=111
2018-05-29 02:27:54 +00:00
Artem Chernikov
48aa050d06 - update to 1.14.0
* 1.14.x stable branch.
- includes changes from 1.13.12
 * bugfix connections with gRPC backends might be closed unexpectedly
   when returning a large response.

OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=109
2018-05-07 10:27:40 +00:00
Artem Chernikov
8486509534 Accepting request 595111 from home:AndreasStieger:branches:server:http
nginx 1.13.11
- Use %license (bsc#1082318)

OBS-URL: https://build.opensuse.org/request/show/595111
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=107
2018-04-10 08:44:34 +00:00
175edd096e - update rmtp module to 1.2.1
- just commenting all places where we fallthrough conditionals

- update headers more to 0.33
  - feature: add wildcard match support for
    more_clear_input_headers.

- update fancyindex module to 0.4.2
  This release contains an important fix which can cause Nginx to
  crash when a directory contains zero-sized (empty) files. This
  bug has been present in all previous releases, and all users are
  strongly encouraged to update to version 0.4.2.
  https://github.com/aperezdc/ngx-fancyindex/releases/tag/v0.4.2

OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=103
2018-02-21 13:35:09 +00:00
597fc4b85d - changes from 1.13.9
- Feature: HTTP/2 server push support; the "http2_push" and
    "http2_push_preload" directives.
  - Bugfix: "header already sent" alerts might appear in logs when
    using cache; the bug had appeared in 1.9.13.
  - Bugfix: a segmentation fault might occur in a worker process if
    the "ssl_verify_client" directive was used and no SSL
    certificate was specified in a virtual server.
  - Bugfix: in the ngx_http_v2_module.
  - Bugfix: in the ngx_http_dav_module.
- updates from 1.13.8
  - Feature: now nginx automatically preserves the CAP_NET_RAW
    capability in worker processes when using the "transparent"
    parameter of the "proxy_bind", "fastcgi_bind",
    "memcached_bind", "scgi_bind", and "uwsgi_bind" directives.
  - Feature: improved CPU cache line size detection. Thanks to
    Debayan Ghosh.
  - Feature: new directives in vim syntax highlighting scripts.
    Thanks to Gena Makhomed.
  - Bugfix: binary upgrade refused to work if nginx was re-parented
    to a process with PID different from 1 after its parent process
    has finished.
  - Bugfix: the ngx_http_autoindex_module incorrectly handled
    requests with bodies.
  - Bugfix: in the "proxy_limit_rate" directive when used with the
    "keepalive" directive.
  - Bugfix: some parts of a response might be buffered when using
    "proxy_buffering off" if the client connection used SSL.
    Thanks to Patryk Lesiewicz.
  - Bugfix: in the "proxy_cache_background_update" directive.
  - Bugfix: it was not possible to start a parameter with a
    variable in the "${name}" form with the name in curly brackets
    without enclosing the parameter into single or double quotes.

OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=102
2018-02-21 13:26:47 +00:00
Artem Chernikov
477548018f - Install /etc/nginx/conf.d directory for custom user configuration
files

OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=100
2018-02-07 15:44:02 +00:00
Artem Chernikov
f43fc9eb7b - Install /etc/nginx/vhosts.d directory for default installation
to house custom virtual hosts configuration files

OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=99
2018-02-07 15:08:41 +00:00
Marguerite Su
f4825dda39 Accepting request 557896 from home:avindra
- update to version 1.13.7
  - Bugfix: in the $upstream_status variable.
  - Bugfix: a segmentation fault might occur in a worker process
    if a backend returned a "101 Switching Protocols" response to
    a subrequest.
  - Bugfix: a segmentation fault occurred in a master process if a
    shared memory zone size was changed during a reconfiguration
    and the reconfiguration failed.
  - Bugfix: in the ngx_http_fastcgi_module.
  - Bugfix: nginx returned the 500 error if parameters without
    variables were specified in the "xslt_stylesheet" directive.
  - Workaround: "gzip filter failed to use preallocated memory"
    alerts appeared in logs when using a zlib library variant
    from Intel.
  - Bugfix: the "worker_shutdown_timeout" directive did not work
    when using mail proxy and when proxying WebSocket connections.
- partial cleanup with spec-cleaner

OBS-URL: https://build.opensuse.org/request/show/557896
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=97
2017-12-18 11:45:45 +00:00
ea19562b98 - update to 1.13.6
- Bugfix: switching to the next upstream server in the stream
    module did not work when using the "ssl_preread" directive.
  - Bugfix: in the ngx_http_v2_module.  Thanks to Piotr Sikora.
  - Bugfix: nginx did not support dates after the year 2038 on
    32-bit platforms with 64-bit time_t.
  - Bugfix: in handling of dates prior to the year 1970 and after
    the year 10000.
  - Bugfix: in the stream module timeouts waiting for UDP datagrams
    from upstream servers were not logged or logged at the "info"
    level instead of "error".
  - Bugfix: when using HTTP/2 nginx might return the 400 response
    without logging the reason.
  - Bugfix: in processing of corrupted cache files.
  - Bugfix: cache control headers were ignored when caching errors
    intercepted by error_page.
  - Bugfix: when using HTTP/2 client request body might be
    corrupted.
  - Bugfix: in handling of client addresses when using unix domain
    sockets.
  - Bugfix: nginx hogged CPU when using the "hash ... consistent"
    directive in the upstream block if large weights were used and
    all or most of the servers were unavailable.

OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=95
2017-10-12 15:43:26 +00:00
7caca16a8c - extra modules were enabled on sles due to a typo
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=93
2017-10-06 13:34:27 +00:00
26980a8705 - disable extra modules on sle
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=90
2017-09-22 09:40:30 +00:00
08d8396090 - update to 1.13.5
- Feature: the $ssl_client_escaped_cert variable.
  - Bugfix: the "ssl_session_ticket_key" directive and the
    "include" parameter of the "geo" directive did not work on
    Windows.
  - Bugfix: incorrect response length was returned on 32-bit
    platforms when requesting more than 4 gigabytes with multiple
    ranges.
  - Bugfix: the "expires modified" directive and processing of the
    "If-Range" request header line did not use the response last
    modification time if proxying without caching was used.
- changes from 1.13.4
  - Feature: the ngx_http_mirror_module.
  - Bugfix: client connections might be dropped during
    configuration testing when using the "reuseport" parameter of
    the "listen" directive on Linux.
  - Bugfix: request body might not be available in subrequests if
    it was saved to a file and proxying was used.
  - Bugfix: cleaning cache based on the "max_size" parameter did
    not work on Windows.
  - Bugfix: any shared memory allocation required 4096 bytes on
    Windows.
  - Bugfix: nginx worker might be terminated abnormally when using
    the "zone" directive inside the "upstream" block on Windows.

OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=89
2017-09-16 20:20:12 +00:00
f5e11b279a Accepting request 522270 from home:AndreasStieger:branches:server:http
- add upstream signing key and verify source tarball signature

OBS-URL: https://build.opensuse.org/request/show/522270
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=88
2017-09-16 20:15:46 +00:00
1b47925421 - update to 1.13.3 (boo#1048265)
- Security: a specially crafted request might result in an
    integer overflow and incorrect processing of ranges in the
    range filter, potentially resulting in sensitive information
    leak (CVE-2017-7529).
- changes from 1.13.2
  - Change: nginx now returns 200 instead of 416 when a range
    starting with 0 is requested from an empty file.
  - Feature: the "add_trailer" directive.  Thanks to Piotr Sikora.
  - Bugfix: nginx could not be built on Cygwin and NetBSD; the bug
    had appeared in 1.13.0.
  - Bugfix: nginx could not be built under MSYS2 / MinGW 64-bit.
    Thanks to Orgad Shaneh.
  - Bugfix: a segmentation fault might occur in a worker process
    when using SSI with many includes and proxy_pass with
    variables.
  - Bugfix: in the ngx_http_v2_module.  Thanks to Piotr Sikora.
- update nginx-rtmp-module to 1.2.0:
  - DASH improvements
  - OpenSSL 1.1 compatibility

OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=86
2017-07-17 11:02:44 +00:00
97e5b065db - update to 1.13.1
- Feature: now a hostname can be used as the "set_real_ip_from"
    directive parameter.
  - Feature: vim syntax highlighting scripts improvements.
  - Feature: the "worker_cpu_affinity" directive now works on
    DragonFly BSD.  Thanks to Sepherosa Ziehau.
  - Bugfix: SSL renegotiation on backend connections did not work
    when using OpenSSL before 1.1.0.
  - Workaround: nginx could not be built with Oracle Developer
    Studio 12.5.
  - Workaround: now cache manager ignores long locked cache entries
    when cleaning cache based on the "max_size" parameter.
  - Bugfix: client SSL connections were immediately closed if
    deferred accept and the "proxy_protocol" parameter of the
    "listen" directive were used.
  - Bugfix: in the "proxy_cache_background_update" directive.
  - Workaround: now the "tcp_nodelay" directive sets the
    TCP_NODELAY option before an SSL handshake.
- changes from 1.13.0
  - Change: SSL renegotiation is now allowed on backend
    connections.
  - Feature: the "rcvbuf" and "sndbuf" parameters of the "listen"
    directives of the mail proxy and stream modules.
  - Feature: the "return" and "error_page" directives can now be
    used to return 308 redirections.  Thanks to Simon Leblanc.
  - Feature: the "TLSv1.3" parameter of the "ssl_protocols"
    directive.
  - Feature: when logging signals nginx now logs PID of the process
    which sent the signal.
  - Bugfix: in memory allocation error handling.
  - Bugfix: if a server in the stream module listened on a wildcard
    address, the source address of a response UDP datagram could
    differ from the original datagram destination address.

D    nginx-1.12.0.tar.gz
A    nginx-1.13.1.tar.gz
M    nginx.changes
M    nginx.spec

Diff for working copy: .
Index: nginx.changes
===================================================================

--- nginx.changes	(revision 5e264311bbc34e3b63efb8fa4753db55)
+++ nginx.changes	(working copy)
@@ -1,3 +1,40 @@
+-------------------------------------------------------------------
+Thu Jun  1 10:05:49 UTC 2017 - mrueckert@suse.de
+
+- update to 1.13.1
+  - Feature: now a hostname can be used as the "set_real_ip_from"
+    directive parameter.
+  - Feature: vim syntax highlighting scripts improvements.
+  - Feature: the "worker_cpu_affinity" directive now works on
+    DragonFly BSD.  Thanks to Sepherosa Ziehau.
+  - Bugfix: SSL renegotiation on backend connections did not work
+    when using OpenSSL before 1.1.0.
+  - Workaround: nginx could not be built with Oracle Developer
+    Studio 12.5.
+  - Workaround: now cache manager ignores long locked cache entries
+    when cleaning cache based on the "max_size" parameter.
+  - Bugfix: client SSL connections were immediately closed if
+    deferred accept and the "proxy_protocol" parameter of the
+    "listen" directive were used.
+  - Bugfix: in the "proxy_cache_background_update" directive.
+  - Workaround: now the "tcp_nodelay" directive sets the
+    TCP_NODELAY option before an SSL handshake.
+- changes from 1.13.0
+  - Change: SSL renegotiation is now allowed on backend
+    connections.
+  - Feature: the "rcvbuf" and "sndbuf" parameters of the "listen"
+    directives of the mail proxy and stream modules.
+  - Feature: the "return" and "error_page" directives can now be
+    used to return 308 redirections.  Thanks to Simon Leblanc.
+  - Feature: the "TLSv1.3" parameter of the "ssl_protocols"
+    directive.
+  - Feature: when logging signals nginx now logs PID of the process
+    which sent the signal.
+  - Bugfix: in memory allocation error handling.
+  - Bugfix: if a server in the stream module listened on a wildcard
+    address, the source address of a response UDP datagram could
+    differ from the original datagram destination address.
+
 -------------------------------------------------------------------
 Sun Apr  9 13:15:49 UTC 2017 - michael@stroeder.com
 

Index: nginx.spec
===================================================================

--- nginx.spec	(revision 5e264311bbc34e3b63efb8fa4753db55)
+++ nginx.spec	(working copy)
@@ -64,7 +64,7 @@
 %define ngx_doc_dir    %{_datadir}/doc/packages/%{name}
 #
 Name:           nginx
-Version:        1.12.0
+Version:        1.13.1
 Release:        0
 %define ngx_fancyindex_version 0.4.1
 %define ngx_fancyindex_module_path ngx-fancyindex-%{ngx_fancyindex_version}

Index: nginx-1.13.1.tar.gz
===================================================================
Binary file 'nginx-1.13.1.tar.gz' added.

Index: nginx-1.12.0.tar.gz
===================================================================
Binary file 'nginx-1.12.0.tar.gz' deleted.

OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=84
2017-06-01 10:08:55 +00:00
Marguerite Su
b1aefe5ffb Accepting request 488095 from home:stroeder:branches:server:http
update to 1.12.0

OBS-URL: https://build.opensuse.org/request/show/488095
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=82
2017-04-18 14:49:34 +00:00
Marguerite Su
6b5e3aeaf9 Accepting request 483335 from home:darix:playground
- update to 1.11.12
  - Bugfix: nginx might hog CPU; the bug had appeared in 1.11.11.
- update to 1.11.11
  - Feature: the "worker_shutdown_timeout" directive.
  - Feature: vim syntax highlighting scripts improvements.  Thanks
    to Wei-Ko Kao.
  - Bugfix: a segmentation fault might occur in a worker process if
    the $limit_rate variable was set to an empty string.
  - Bugfix: the "proxy_cache_background_update",
    "fastcgi_cache_background_update",
    "scgi_cache_background_update", and
    "uwsgi_cache_background_update" directives might work
    incorrectly if the "if" directive was used.
  - Bugfix: a segmentation fault might occur in a worker process if
    number of large_client_header_buffers in a virtual server was
    different from the one in the default server.
  - Bugfix: in the mail proxy server.

OBS-URL: https://build.opensuse.org/request/show/483335
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=80
2017-03-30 11:58:17 +00:00
Marguerite Su
2951a1882e Accepting request 461005 from home:darix:playground
- update to 1.11.10
  - Change: cache header format has been changed, previously cached
    responses will be invalidated.
  - Feature: support of "stale-while-revalidate" and
    "stale-if-error" extensions in the "Cache-Control" backend
    response header line.
  - Feature: the "proxy_cache_background_update",
    "fastcgi_cache_background_update",
    "scgi_cache_background_update", and
    "uwsgi_cache_background_update" directives.
  - Feature: nginx is now able to cache responses with the "Vary"
    header line up to 128 characters long (instead of 42 characters
    in previous versions).
  - Feature: the "build" parameter of the "server_tokens"
    directive.  Thanks to Tom Thorogood.
  - Bugfix: "[crit] SSL_write() failed" messages might appear in
    logs when handling requests with the "Expect: 100-continue"
    request header line.
  - Bugfix: the ngx_http_slice_module did not work in named
    locations.
  - Bugfix: a segmentation fault might occur in a worker process
    when using AIO after an "X-Accel-Redirect" redirection.
  - Bugfix: reduced memory consumption for long-lived requests
    using gzipping.

OBS-URL: https://build.opensuse.org/request/show/461005
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=78
2017-03-01 08:57:55 +00:00
2d75f9304b - update to 1.11.9
- Bugfix: nginx might hog CPU when using the stream module; the
    bug had appeared in 1.11.5.
  - Bugfix: EXTERNAL authentication mechanism in mail proxy was
    accepted even if it was not enabled in the configuration.
  - Bugfix: a segmentation fault might occur in a worker process if
    the "ssl_verify_client" directive of the stream module was
    used.
  - Bugfix: the "ssl_verify_client" directive of the stream module
    might not work.
  - Bugfix: closing keepalive connections due to no free worker
    connections might be too aggressive.  Thanks to Joel
    Cunningham.
  - Bugfix: an incorrect response might be returned when using the
    "sendfile" directive on FreeBSD and macOS; the bug had appeared
    in 1.7.8.
  - Bugfix: a truncated response might be stored in cache when
    using the "aio_write" directive.
  - Bugfix: a socket leak might occur when using the "aio_write"
    directive.

OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=76
2017-01-30 14:10:51 +00:00
Marguerite Su
daf9eab557 Accepting request 449045 from home:darix:playground
- update to 1.11.8
- update headers-more-nginx-module 0.32
- update nginx-rtmp-module 1.1.10
- update patches to apply cleanly again

OBS-URL: https://build.opensuse.org/request/show/449045
OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=74
2017-01-07 08:16:09 +00:00
e577b6dc17 - update to 11.4
- Feature: the $upstream_bytes_received variable.
  - Feature: the $bytes_received, $session_time, $protocol,
    $status, $upstream_addr, $upstream_bytes_sent,
    $upstream_bytes_received, $upstream_connect_time,
    $upstream_first_byte_time, and $upstream_session_time variables
    in the stream module.
  - Feature: the ngx_stream_log_module.
  - Feature: the "proxy_protocol" parameter of the "listen"
    directive, the $proxy_protocol_addr and $proxy_protocol_port
    variables in the stream module.
  - Feature: the ngx_stream_realip_module.
  - Bugfix: nginx could not be built with the stream module and the
    ngx_http_ssl_module, but without ngx_stream_ssl_module; the bug
    had appeared in 1.11.3.
  - Feature: the IP_BIND_ADDRESS_NO_PORT socket option was not
    used; the bug had appeared in 1.11.2.
  - Bugfix: in the "ranges" parameter of the "geo" directive.
  - Bugfix: an incorrect response might be returned when using the
    "aio threads" and "sendfile" directives; the bug had appeared
    in 1.9.13.
- drop nginx-1.11.3_ssl_stream.patch again
- refreshed the following patches to apply cleanly again
  check_1.9.2+.patch
  nginx-1.11.2-html.patch
  nginx-1.11.2-no_Werror.patch
  nginx-aio.patch

- update to 1.11.3
  - Change: now the "accept_mutex" directive is turned off by
    default.
  - Feature: now nginx uses EPOLLEXCLUSIVE on Linux.
  - Feature: the ngx_stream_geo_module.
  - Feature: the ngx_stream_geoip_module.
  - Feature: the ngx_stream_split_clients_module.
  - Feature: variables support in the "proxy_pass" and
    "proxy_ssl_name" directives in the stream module.
  - Bugfix: socket leak when using HTTP/2.
  - Bugfix: in configure tests.  Thanks to Piotr Sikora.
- backport nginx-1.11.3_ssl_stream.patch from hg
- refresh patches to apply cleanly again:
  - check_1.9.2+.patch
  - nginx-1.11.2-html.patch
  - nginx-1.11.2-no_Werror.patch
  - nginx-aio.patch
- enable a few new upstream modules and move some from 1.11.x to
  dynamic:
  - stream_geoip_module
  - mail_ssl_module
  - stream_ssl_module
- build fancyindex unconditionally and update it to 0.4.1
  - New `fancyindex_directories_first` configuration directive
    (enabled by default), which allows setting whether directories
    are sorted before other files.
    (Patch by Luke Zapart <<luke@zapart.org>>.)
  - Fix index files not working when the fancyindex module is in
    use (#46).
  - The module can now be built as a [dynamic
    module](https://www.nginx.com/resources/wiki/extending/converting/).
    (Patch by Róbert Nagy <<vrnagy@gmail.com>>.)
  - New configuration directive `fancyindex_show_path`, which
    allows hiding the `<h1>` header which contains the current
    path.  (Patch by Thomas P.  <<tpxp@live.fr>>.)
  - Directory and file links in listings now have a title="..."
    attribute.  (Patch by `@janglapuk` <<trusdi.agus@gmail.com>>.)
  - Fix for hung requests when the module is used along with
    `ngx_pagespeed`.
    (Patch by Otto van der Schaaf <<oschaaf@we-amp.com>>.)
  - New feature: Allow filtering out symbolic links using the
    `fancyindex_hide_symlinks` configuration directive. (Idea and
    prototype patch by Thomas Wemm.)
  - New feature: Allow specifying the format of timestamps using
    the `fancyindex_time_format` configuration directive. (Idea
    suggested by Xiao Meng <<novoreorx@gmail.com>>).
  - Listings in top-level directories will not generate a "Parent
    Directory" link as first element of the listing.
    (Patch by Thomas P.)
  - Fix propagation and overriding of the `fancyindex_css_href`
    setting inside nested locations.
  - Minor changes in the code to allow building cleanly under
    Windows with Visual Studio 2013.
    (Patch by Y. Yuan <<yzwduck@gmail.com>>).
- added nginx-rtmp-module
- make all modules dynamic that support it:
  - ngx-fancyindex
  - headers_more_nginx-module
  - nginx-rtmp-module
- manually install the docs instead of using %doc
- unify how we install documentation for the modules
- restructure contrib file handling
  - moved vim files into the normal vim paths so we can use them
    directly
    - new BR/R: vim
  - split out vim files into a subpackage vim-plugin-nginx so we
    dont have the vim requires on the main package
  - perl scripts are moved to /usr/share/nginx/

OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=70
2016-09-29 11:13:50 +00:00