Releases: Ran-snow/docker-nginx
Releases · Ran-snow/docker-nginx
v1.27.4
Changes with freenginx 1.27.4 03 Sep 2024
*) Feature: the $ssl_client_fingerprint_sha256 variable.
*) Feature: the "Auth-SSL-Fingerprint-SHA256 header line is now passed
to the mail proxy authentication server.
*) Change: MIME type for the "js" extension has been changed to
"text/javascript", the "mjs" extension now uses the "text/javascript"
MIME type, and the "md" and "markdown" extensions now use the
"text/markdown" MIME type; the default value of the "charset_types"
directive now includes "text/javascript" and "text/markdown".
*) Bugfix: a segmentation fault might occur in a worker process if the
ngx_http_mp4_module was used; the bug had appeared in 1.5.13.
*) Bugfix: a segmentation fault might occur in a worker process when
handling requests with the "Expect: 100-continue" request header
line; the bug had appeared in 1.27.0.
v1.27.3
Changes with freenginx 1.27.3 13 Aug 2024
*) Change: now the "Age" backend response header line is taken into
account when caching.
Thanks to Hiroaki Nakamura.
*) Feature: the $upstream_cache_age variable.
*) Change: during graceful shutdown of old worker processes keepalive
connections are now closed only after timeout specified with the
"lingering_timeout" directive expires.
*) Feature: improvements in building on Windows.
v1.27.2
Changes with freenginx 1.27.2 09 Jul 2024
*) Feature: now maximum error logging rate can be limited with the
"rate" parameter of the "error_log" directive; by default the limit
is 1000 messages per second.
*) Bugfix: in resolver.
Thanks to Kirill A. Korinsky.
*) Bugfix: the "proxy_no_cache" directive was not checked when caching
errors.
*) Bugfix: a block used in the "stub" parameter of the "include" SSI
directive might be sent twice.
v1.27.1
Changes with freenginx 1.27.1 04 Jun 2024
*) Feature: the "max_headers" directive.
Thanks to Maksim Yevmenkin.
*) Feature: the $upstream_cache_key variable.
Thanks to Kirill A. Korinsky.
*) Feature: XOAUTH2 and OAUTHBEARER authentication mechanisms support in
the mail proxy module.
Thanks to Rob Mueller.
*) Bugfix: graceful shutdown of old worker processes might be delayed
when using HTTP/2.
Thanks to Kasei Wang.
*) Bugfix: a segmentation fault might occur in a worker process when
using HTTP/3.
*) Bugfix: in HTTP/3.
*) Bugfix: in the mail proxy module.
Full Changelog: 1.27.0...1.27.1
v1.27.0
*) Feature: updated descriptions of HTTP status codes.
Thanks to Michiel W. Beijen.
*) Change: now, if an error occurs during reading a request body, the
request body is automatically discarded, and for complex error
processing, such as proxying, it is no longer needed to explicitly
disable passing of the request body to the proxied server.
*) Change: the logging level of the "SSL alert number N" and "invalid
alert" SSL errors has been lowered from "crit" to "info".
*) Change: now freenginx always returns an error if a header name is not
followed by a colon.
Thanks to Maksim Yevmenkin.
*) Feature: the "off" parameter of the "pid" directive.
*) Feature: now during reconfiguration no attempt to recreate the PID
file is made if the name in the "pid" directive was changed, but
points to the same file via symlinks.
*) Workaround: "PID file ... not readable (yet?) after start" and
"Failed to parse PID from file..." errors might appear when starting
with systemd.
*) Bugfix: no error was written to the error log when a timeout occurred
during reading a request body.
*) Bugfix: redirecting errors with code 413 with the "error_page"
directive worked incorrectly when using HTTP/2 and HTTP/3.
*) Bugfix: freenginx could not be built on NetBSD 10.0.
*) Bugfix: in HTTP/3.
v1.26.0
v1.25.5
Changes with freenginx 1.25.5 02 Apr 2024
*) Change: MIME type for the "bmp" extension has been changed to
"image/bmp", for the "rar" extension to "application/vnd.rar", and
the "deb" and "udeb" extensions now use the
"application/vnd.debian.binary-package" MIME type.
Thanks to Yuriy Izorkin.
*) Change: the "client_max_body_size" directive is now used to limit
total size of ignored chunk extensions and trailer headers when
reading a request body using chunked transfer encoding.
Thanks to Bartek Nowotarski.
*) Change: now at most one empty line is allowed before a request.
*) Feature: logging to syslog errors are now reported at most once per
second.
*) Feature: the "max_commands" directive in the mail proxy module.
*) Bugfix: incorrect server name might be returned in responses when
using the "server_tokens off" directive.
Thanks to Tatsuya Kaneko and Antanas Patašius.
*) Bugfix: when reading a request body from a fast connection reading
for a long time was possible.
v1.25.4
Changes with nginx 1.25.4 14 Feb 2024
*) Security: when using HTTP/3 a segmentation fault might occur in a
worker process while processing a specially crafted QUIC session
(CVE-2024-24989, CVE-2024-24990).
*) Bugfix: connections with pending AIO operations might be closed
prematurely during graceful shutdown of old worker processes.
*) Bugfix: socket leak alerts no longer logged when fast shutdown was
requested after graceful shutdown of old worker processes.
*) Bugfix: a socket descriptor error, a socket leak, or a segmentation
fault in a worker process (for SSL proxying) might occur if AIO was
used in a subrequest.
*) Bugfix: a segmentation fault might occur in a worker process if SSL
proxying was used along with the "image_filter" directive and errors
with code 415 were redirected with the "error_page" directive.
*) Bugfixes and improvements in HTTP/3.