New stable release available for nginx, version 1.4.5 (mga4 current is 1.4.4). Change Notes: http://nginx.org/en/CHANGES-1.4 *) Bugfix: the $ssl_session_id variable contained full session serialized instead of just a session id. Thanks to Ivan RistiÄ. *) Bugfix: client connections might be immediately closed if deferred accept was used; the bug had appeared in 1.3.15. *) Bugfix: alerts "zero size buf in output" might appear in logs while proxying; the bug had appeared in 1.3.9. *) Bugfix: a segmentation fault might occur in a worker process if the ngx_http_spdy_module was used. *) Bugfix: proxied WebSocket connections might hang right after handshake if the select, poll, or /dev/poll methods were used. *) Bugfix: a timeout might occur while reading client request body in an SSL connection using chunked transfer encoding. *) Bugfix: memory leak in nginx/Windows. Reproducible: Steps to Reproduce:
Hi Sam, I noticed you're building this update. I just wanted to point out to please build any updates in Cauldron *before* stable releases. Thanks.
I have uploaded a patched/updated package for Mageia 4. You can test this by installing/upgrading the nginx package from updates_testing and validating access via a browser to http://localhost/. I've tested upgrading on x86_64 successfully. Updated packages in core/updates_testing: ======================== nginx-1.4.5-1.mga4 Source RPMs: nginx-1.4.5-1.mga4.src.rpm
Status: NEW => ASSIGNED
Thanks David, I'm about to upload to cauldron v1.5.10. Just hit go on this one first. I'll do them in the opposite order in future.
Cool. Don't forget to assign the bug to qa-bugs@ml.mageia.org when it's ready for testing and release.
Thanks again David. Assigned now.
Assignee: sam => qa-bugs
Please write an advisory too, saying what's the problem and why we are updating. We could use also some basic step to test that the package works.
CC: (none) => stormi
Not sure how best to write an advisory. Bugfix release only (not security fixes). The relevant bugfixes for mga4 are: *) Bugfix: the $ssl_session_id variable contained full session serialized instead of just a session id. Thanks to Ivan RistiÄ. *) Bugfix: client connections might be immediately closed if deferred accept was used; the bug had appeared in 1.3.15. *) Bugfix: alerts "zero size buf in output" might appear in logs while proxying; the bug had appeared in 1.3.9. *) Bugfix: a segmentation fault might occur in a worker process if the ngx_http_spdy_module was used. *) Bugfix: proxied WebSocket connections might hang right after handshake if the select, poll, or /dev/poll methods were used. *) Bugfix: a timeout might occur while reading client request body in an SSL connection using chunked transfer encoding. All are usefull fixes but the SSL, WebSocket and spdy modules fixes are the highlights. Steps to test upgrading: 1. Install the current nginx-1.4.4.mga4 package. 2. Starts autotmatically 3. Go to http://localhost/ in a browser - should show the "Welcome to nginx 1.4.4 on Mageia!" page 4. Install the updated nginx-1.4.5.mga4 package. 5. Service will be automatically reload. 6. Go the http://localhost/ in a browser - should now show the "Welcome to nginx 1.4.5 on Mageia!" page. 7. Success
Suggested advisory: ======================== Updated nginx package to latest stable v1.4.5 to fix several bugs, particulary in SSL, SPDY and WebSocket proxying. References: http://nginx.org/en/CHANGES-1.4
Tested on MGA4-64 and based on suggested verification it is working as expected. For completness I did need to start the nginx service. I am unable to test SSL, WebSockets and Spdy specifically though I don't see any errors within logs when starting nginx.
CC: (none) => dpremyWhiteboard: (none) => MGA4-64-OK
Whiteboard: MGA4-64-OK => MGA4-64-OK has_procedure
Testing complete on Mageia 4 i586. This can be validated once the advisory is uploaded.
Whiteboard: MGA4-64-OK has_procedure => has_procedure MGA4-64-OK MGA4-32-OK
Validating update, advisory has been uploaded. Please push to 4 core/updates.
Keywords: (none) => validated_updateWhiteboard: has_procedure MGA4-64-OK MGA4-32-OK => has_procedure MGA4-64-OK MGA4-32-OK advisoryCC: (none) => remi, sysadmin-bugs
Update pushed: http://advisories.mageia.org/MGAA-2014-0046.html
Status: ASSIGNED => RESOLVEDCC: (none) => tmbResolution: (none) => FIXED