Re: [PATCH] SPDY: set $scheme from scheme request header

On Jan 30, 2014, at 3:18 , Ragnar Rova wrote: > Was a bit too quick with example, meant the 443 server does not have such a > rewrite, that would mean a loop. > > server { >listen 1.2.3.4:443 ssl spdy; > > location / { ># this location is reachable using a http://

Re: [PATCH] SPDY: set $scheme from scheme request header

Was a bit too quick with example, meant the 443 server does not have such a rewrite, that would mean a loop. server { listen 1.2.3.4:443 ssl spdy; location / { # this location is reachable using a http:// url when using spdy. If so, we want a redirect to the https:// u

Re: [PATCH] SPDY: set $scheme from scheme request header

Sorry, my mistake, I was introducing a vulnerability by this. So, without the patch, how do I setup the redirect from http to https urls when a http url was visited over spdy/tls? I have server { listen 1.2.3.4:80; location ~ ^/(path1|path2)$ { rewrite ^/(.*)$ ht

Re: [PATCH] SPDY: set $scheme from scheme request header

On Wednesday 29 January 2014 23:06:40 Ragnar Rova wrote: > # HG changeset patch > # User Ragnar Rova > # Date 1391033075 -3600 > # Wed Jan 29 23:04:35 2014 +0100 > # Node ID 6654eae26c8b2a718e5ad116650faf37f7be7aa9 > # Parent 01e2a5bcdd8f65f4f7bcb23ac35911da08e5945f > SPDY: set $scheme from

[PATCH] SPDY: set $scheme from scheme request header

# HG changeset patch # User Ragnar Rova # Date 1391033075 -3600 # Wed Jan 29 23:04:35 2014 +0100 # Node ID 6654eae26c8b2a718e5ad116650faf37f7be7aa9 # Parent 01e2a5bcdd8f65f4f7bcb23ac35911da08e5945f SPDY: set $scheme from scheme request header. $scheme variable is always "https" when using s

a NGINX Summit 2/25 in San Francisco

Hello all! I’d like to invite you to join the Nginx, Inc. team for our first User Summit February 25th at Dogpatch Studios in San Francisco. The highlights include 2 formal presentations by the NGINX FOSS project and Nginx, Inc. founder, Igor Sysoev, and well known module developer in the NG

$request_time is 0.000 with gzip/chunked?

Hey folks, I get a zero $request_time in the access log for gzipped+chunked transfer requests if nothing else is running (ie. ngx_time_update() doesn't get called for another request or something else). If I don't send Accept-Encoding with my request I get the expected time. curl -v --compressed

Re: [PATCH] SSL: support ALPN (IETF's successor to NPN)

Hello! On Wed, Jan 29, 2014 at 12:28:45PM +0400, Valentin V. Bartenev wrote: > On Tuesday 28 January 2014 15:34:39 Piotr Sikora wrote: > [..] > > # HG changeset patch > > # User Piotr Sikora > > # Date 1390952029 28800 > > # Tue Jan 28 15:33:49 2014 -0800 > > # Node ID f1b9281e85396409f1c56

Re: [PATCH] SSL: support ALPN (IETF's successor to NPN)

On Tuesday 28 January 2014 15:34:39 Piotr Sikora wrote: [..] > # HG changeset patch > # User Piotr Sikora > # Date 1390952029 28800 > # Tue Jan 28 15:33:49 2014 -0800 > # Node ID f1b9281e85396409f1c56fc76637d39e6893abc8 > # Parent fdb67cfc957d110ea887961cc8c08a590df5f62c > SSL: support ALPN

[nginx] SSL: support ALPN (IETF's successor to NPN).

details: http://hg.nginx.org/nginx/rev/01e2a5bcdd8f branches: changeset: 5545:01e2a5bcdd8f user: Piotr Sikora date: Tue Jan 28 15:33:49 2014 -0800 description: SSL: support ALPN (IETF's successor to NPN). Signed-off-by: Piotr Sikora diffstat: src/http/modules/ngx_http_ssl_module

Re: [PATCH] Core: handle getsockopt(TCP_FASTOPEN) failures.

Hello! On Wed, Jan 29, 2014 at 06:28:05PM +0400, Ruslan Ermilov wrote: > On Tue, Jan 28, 2014 at 08:19:57PM -0800, Piotr Sikora wrote: > > # HG changeset patch > > # User Piotr Sikora > > # Date 1390968940 28800 > > # Tue Jan 28 20:15:40 2014 -0800 > > # Node ID ae13ab8f53fe451d2201a68091dd

Re: [PATCH] Core: handle getsockopt(TCP_FASTOPEN) failures.

On Tue, Jan 28, 2014 at 08:19:57PM -0800, Piotr Sikora wrote: > # HG changeset patch > # User Piotr Sikora > # Date 1390968940 28800 > # Tue Jan 28 20:15:40 2014 -0800 > # Node ID ae13ab8f53fe451d2201a68091ddecc3d36d582d > # Parent fdb67cfc957d110ea887961cc8c08a590df5f62c > Core: handle gets

[nginx] Mp4: fix seeks to standalone last chunk.

details: http://hg.nginx.org/nginx/rev/2f586f1684fa branches: changeset: 5544:2f586f1684fa user: Roman Arutyunyan date: Wed Jan 29 13:44:15 2014 +0400 description: Mp4: fix seeks to standalone last chunk. If seek position is within the last track chunk and that chunk is standalone (

[nginx] Mp4: skip tracks shorter than seek position (ticket #414).

details: http://hg.nginx.org/nginx/rev/5730c0193842 branches: changeset: 5543:5730c0193842 user: Roman Arutyunyan date: Wed Jan 29 13:33:45 2014 +0400 description: Mp4: skip tracks shorter than seek position (ticket #414). Mp4 module does not check movie and track durations when rea

[nginx] Mp4: fix seeks after the last key frame.

details: http://hg.nginx.org/nginx/rev/847c308917af branches: changeset: 5542:847c308917af user: Roman Arutyunyan date: Wed Jan 29 13:30:36 2014 +0400 description: Mp4: fix seeks after the last key frame. Mp4 module does not allow seeks after the last key frame. Since stss atom onl

Re: [PATCH] SSL: support ALPN (IETF's successor to NPN)

On Tuesday 28 January 2014 15:34:39 Piotr Sikora wrote: [..] > # HG changeset patch > # User Piotr Sikora > # Date 1390952029 28800 > # Tue Jan 28 15:33:49 2014 -0800 > # Node ID f1b9281e85396409f1c56fc76637d39e6893abc8 > # Parent fdb67cfc957d110ea887961cc8c08a590df5f62c > SSL: support ALPN