52d0d3
#############
52d0d3
Upgrade notes
52d0d3
#############
52d0d3
52d0d3
To resolve numerous security flaws, the nginx package was updated to 1.10.x.
52d0d3
52d0d3
You should review your configuration files in /etc/nginx to determine if there
52d0d3
are any incompatibilities. Below is a summary of the main incompatible changes.
52d0d3
Some nginx directives have been changed or removed, so you may need to modify
52d0d3
your configuration.
52d0d3
52d0d3
Please see upstream release notes for a complete list of new features,
52d0d3
bug fixes, and changes: http://nginx.org/en/CHANGES-1.10
52d0d3
One notable feature is support for HTTP/2.
52d0d3
52d0d3
Nginx gained support for dynamic modules. As part of this update, dynamic
52d0d3
modules have been split into subpackages. For the time being these are hard
52d0d3
dependencies to aid the upgrade path. When you install nginx, all of these
52d0d3
modules are installed and enabled by default:
52d0d3
  - nginx-mod-http-geoip
52d0d3
  - nginx-mod-http-image-filter
52d0d3
  - nginx-mod-http-perl
52d0d3
  - nginx-mod-http-xslt-filter
52d0d3
  - nginx-mod-mail
52d0d3
  - nginx-mod-stream
52d0d3
52d0d3
Changes with nginx 1.10.x
52d0d3
52d0d3
    *) Change: non-idempotent requests (POST, LOCK, PATCH) are no longer
52d0d3
       passed to the next server by default if a request has been sent to a
52d0d3
       backend; the "non_idempotent" parameter of the "proxy_next_upstream"
52d0d3
       directive explicitly allows retrying such requests.
52d0d3
52d0d3
    *) Change: now the "output_buffers" directive uses two buffers by
52d0d3
       default.
52d0d3
52d0d3
    *) Change: now nginx limits subrequests recursion, not simultaneous
52d0d3
       subrequests.
52d0d3
52d0d3
    *) Change: now nginx checks the whole cache key when returning a
52d0d3
       response from cache.
52d0d3
       Thanks to Gena Makhomed and Sergey Brester.
52d0d3
52d0d3
    *) Change: the "proxy_downstream_buffer" and "proxy_upstream_buffer"
52d0d3
       directives of the stream module are replaced with the
52d0d3
       "proxy_buffer_size" directive.
52d0d3
52d0d3
    *) Change: duplicate "http", "mail", and "stream" blocks are now
52d0d3
       disallowed.
52d0d3
52d0d3
    *) Change: now SSLv3 protocol is disabled by default.
52d0d3
52d0d3
    *) Change: some long deprecated directives are not supported anymore.
52d0d3
52d0d3
    *) Change: obsolete aio and rtsig event methods have been removed.
52d0d3
52d0d3
Changes with nginx 1.8.x
52d0d3
52d0d3
    *) Change: the "sendfile" parameter of the "aio" directive is
52d0d3
       deprecated; now nginx automatically uses AIO to pre-load data for
52d0d3
       sendfile if both "aio" and "sendfile" directives are used.
52d0d3
52d0d3
    *) Change: now the "If-Modified-Since", "If-Range", etc. client request
52d0d3
       header lines are passed to a backend while caching if nginx knows in
52d0d3
       advance that the response will not be cached (e.g., when using
52d0d3
       proxy_cache_min_uses).
52d0d3
52d0d3
    *) Change: now after proxy_cache_lock_timeout nginx sends a request to a
52d0d3
       backend with caching disabled; the new directives
52d0d3
       "proxy_cache_lock_age", "fastcgi_cache_lock_age",
52d0d3
       "scgi_cache_lock_age", and "uwsgi_cache_lock_age" specify a time
52d0d3
       after which the lock will be released and another attempt to cache a
52d0d3
       response will be made.
52d0d3
52d0d3
    *) Change: the "log_format" directive can now be used only at http
52d0d3
       level.
52d0d3
52d0d3
    *) Change: now nginx takes into account the "Vary" header line in a
52d0d3
       backend response while caching.
52d0d3
52d0d3
    *) Change: the deprecated "limit_zone" directive is not supported
52d0d3
       anymore.
52d0d3
52d0d3
    *) Change: now the "stub_status" directive does not require a parameter.
52d0d3
52d0d3
    *) Change: URI escaping now uses uppercase hexadecimal digits.
52d0d3
       Thanks to Piotr Sikora.
52d0d3