| Summary: | Nginx - update to stable release v1.4.5 | ||
|---|---|---|---|
| Product: | Mageia | Reporter: | Sam Bailey <sam> |
| Component: | RPM Packages | Assignee: | QA Team <qa-bugs> |
| Status: | RESOLVED FIXED | QA Contact: | |
| Severity: | normal | ||
| Priority: | Normal | CC: | dpremy, rverschelde, stormi-mageia, sysadmin-bugs, tmb |
| Version: | 4 | Keywords: | validated_update |
| Target Milestone: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | has_procedure MGA4-64-OK MGA4-32-OK advisory | ||
| Source RPM: | nginx-1.4.5-1.mga4.src.rpm | CVE: | |
| Status comment: | |||
|
Description
Sam Bailey
2014-02-11 23:40:41 CET
Hi Sam, I noticed you're building this update. I just wanted to point out to please build any updates in Cauldron *before* stable releases. Thanks. I have uploaded a patched/updated package for Mageia 4. You can test this by installing/upgrading the nginx package from updates_testing and validating access via a browser to http://localhost/. I've tested upgrading on x86_64 successfully. Updated packages in core/updates_testing: ======================== nginx-1.4.5-1.mga4 Source RPMs: nginx-1.4.5-1.mga4.src.rpm Status:
NEW =>
ASSIGNED Thanks David, I'm about to upload to cauldron v1.5.10. Just hit go on this one first. I'll do them in the opposite order in future. Cool. Don't forget to assign the bug to qa-bugs@ml.mageia.org when it's ready for testing and release. Thanks again David. Assigned now. Assignee:
sam =>
qa-bugs Please write an advisory too, saying what's the problem and why we are updating. We could use also some basic step to test that the package works. CC:
(none) =>
stormi Not sure how best to write an advisory. Bugfix release only (not security fixes).
The relevant bugfixes for mga4 are:
*) Bugfix: the $ssl_session_id variable contained full session
serialized instead of just a session id.
Thanks to Ivan RistiÄ.
*) Bugfix: client connections might be immediately closed if deferred
accept was used; the bug had appeared in 1.3.15.
*) Bugfix: alerts "zero size buf in output" might appear in logs while
proxying; the bug had appeared in 1.3.9.
*) Bugfix: a segmentation fault might occur in a worker process if the
ngx_http_spdy_module was used.
*) Bugfix: proxied WebSocket connections might hang right after
handshake if the select, poll, or /dev/poll methods were used.
*) Bugfix: a timeout might occur while reading client request body in an
SSL connection using chunked transfer encoding.
All are usefull fixes but the SSL, WebSocket and spdy modules fixes are the highlights.
Steps to test upgrading:
1. Install the current nginx-1.4.4.mga4 package.
2. Starts autotmatically
3. Go to http://localhost/ in a browser - should show the "Welcome to nginx 1.4.4 on Mageia!" page
4. Install the updated nginx-1.4.5.mga4 package.
5. Service will be automatically reload.
6. Go the http://localhost/ in a browser - should now show the "Welcome to nginx 1.4.5 on Mageia!" page.
7. Success
Suggested advisory: ======================== Updated nginx package to latest stable v1.4.5 to fix several bugs, particulary in SSL, SPDY and WebSocket proxying. References: http://nginx.org/en/CHANGES-1.4 Tested on MGA4-64 and based on suggested verification it is working as expected. For completness I did need to start the nginx service. I am unable to test SSL, WebSockets and Spdy specifically though I don't see any errors within logs when starting nginx. CC:
(none) =>
dpremy
Samuel Verschelde
2014-02-12 09:52:01 CET
Whiteboard:
MGA4-64-OK =>
MGA4-64-OK has_procedure Testing complete on Mageia 4 i586. This can be validated once the advisory is uploaded. Whiteboard:
MGA4-64-OK has_procedure =>
has_procedure MGA4-64-OK MGA4-32-OK Validating update, advisory has been uploaded. Please push to 4 core/updates. Keywords:
(none) =>
validated_update Update pushed: http://advisories.mageia.org/MGAA-2014-0046.html Status:
ASSIGNED =>
RESOLVED |