Mercurial > hg > nginx-vendor-0-7
comparison src/http/ngx_http_parse.c @ 502:89dc5654117c NGINX_0_7_63
nginx 0.7.63
*) Security: now "/../" are disabled in "Destination" request header
line.
*) Change: minimum supported OpenSSL version is 0.9.7.
*) Change: the "ask" parameter of the "ssl_verify_client" directive was
changed to the "optional" parameter and now it checks a client
certificate if it was offered.
Thanks to Brice Figureau.
*) Feature: now the "-V" switch shows TLS SNI support.
*) Feature: the $ssl_client_verify variable.
Thanks to Brice Figureau.
*) Feature: the "ssl_crl" directive.
Thanks to Brice Figureau.
*) Bugfix: the $ssl_client_cert variable usage corrupted memory; the
bug had appeared in 0.7.7.
Thanks to Sergey Zhuravlev.
*) Feature: now the start cache loader runs in a separate process; this
should improve large caches handling.
*) Feature: now temporary files and permanent storage area may reside
at different file systems.
*) Bugfix: nginx counted incorrectly disk cache size.
*) Change: now directive "gzip_disable msie6" does not disable gzipping
for MSIE 6.0 SV1.
*) Bugfix: nginx always added "Vary: Accept-Encoding" response header
line, if both "gzip_static" and "gzip_vary" were on.
*) Feature: the "proxy" parameter of the "geo" directive.
*) Feature: the ngx_http_geoip_module.
*) Feature: the "limit_rate_after" directive.
Thanks to Ivan Debnar.
*) Feature: the "limit_req_log_level" and "limit_conn_log_level"
directives.
*) Bugfix: now "limit_req" directive conforms to the leaky bucket
algorithm.
Thanks to Maxim Dounin.
*) Bugfix: in ngx_http_limit_req_module.
Thanks to Maxim Dounin.
*) Bugfix: now nginx allows underscores in a request method.
*) Bugfix: "proxy_pass_header" and "fastcgi_pass_header" directives did
not pass to a client the "X-Accel-Redirect", "X-Accel-Limit-Rate",
"X-Accel-Buffering", and "X-Accel-Charset" lines from backend
response header.
Thanks to Maxim Dounin.
*) Bugfix: in handling "Last-Modified" and "Accept-Ranges" backend
response header lines; the bug had appeared in 0.7.44.
Thanks to Maxim Dounin.
*) Feature: the "image_filter_transparency" directive.
*) Feature: the "image_filter" directive supports variables for setting
size.
*) Bugfix: in PNG alpha-channel support in the
ngx_http_image_filter_module.
*) Bugfix: in transparency support in the ngx_http_image_filter_module.
*) Feature: now several "perl_modules" directives may be used.
*) Bugfix: ngx_http_perl_module responses did not work in subrequests.
*) Bugfix: nginx sent '\0' in a "Location" response header line on
MKCOL request.
Thanks to Xie Zhenye.
*) Bugfix: an "error_page" directive did not redirect a 413 error; the
bug had appeared in 0.6.10.
*) Bugfix: in memory allocation error handling.
Thanks to Maxim Dounin and Kirill A. Korinskiy.
author | Igor Sysoev <http://sysoev.ru> |
---|---|
date | Mon, 26 Oct 2009 00:00:00 +0300 |
parents | ed3d382670c7 |
children | 68c0ae0a4959 |
comparison
equal
deleted
inserted
replaced
501:dc87c92181c7 | 502:89dc5654117c |
---|---|
141 | 141 |
142 if (ch == CR || ch == LF) { | 142 if (ch == CR || ch == LF) { |
143 break; | 143 break; |
144 } | 144 } |
145 | 145 |
146 if (ch < 'A' || ch > 'Z') { | 146 if ((ch < 'A' || ch > 'Z') && ch != '_') { |
147 return NGX_HTTP_PARSE_INVALID_METHOD; | 147 return NGX_HTTP_PARSE_INVALID_METHOD; |
148 } | 148 } |
149 | 149 |
150 state = sw_method; | 150 state = sw_method; |
151 break; | 151 break; |
255 | 255 |
256 state = sw_spaces_before_uri; | 256 state = sw_spaces_before_uri; |
257 break; | 257 break; |
258 } | 258 } |
259 | 259 |
260 if (ch < 'A' || ch > 'Z') { | 260 if ((ch < 'A' || ch > 'Z') && ch != '_') { |
261 return NGX_HTTP_PARSE_INVALID_METHOD; | 261 return NGX_HTTP_PARSE_INVALID_METHOD; |
262 } | 262 } |
263 | 263 |
264 break; | 264 break; |
265 | 265 |
1320 | 1320 |
1321 return NGX_OK; | 1321 return NGX_OK; |
1322 | 1322 |
1323 unsafe: | 1323 unsafe: |
1324 | 1324 |
1325 ngx_log_error(NGX_LOG_ERR, r->connection->log, 0, | 1325 if (*flags & NGX_HTTP_LOG_UNSAFE) { |
1326 "unsafe URI \"%V\" was detected", uri); | 1326 ngx_log_error(NGX_LOG_ERR, r->connection->log, 0, |
1327 "unsafe URI \"%V\" was detected", uri); | |
1328 } | |
1327 | 1329 |
1328 return NGX_ERROR; | 1330 return NGX_ERROR; |
1329 } | 1331 } |
1330 | 1332 |
1331 | 1333 |