67ea12
#############
67ea12
Upgrade notes
67ea12
#############
67ea12
67ea12
To resolve numerous security flaws, the nginx package was updated to 1.10.x.
67ea12
67ea12
You should review your configuration files in /etc/nginx to determine if there
67ea12
are any incompatibilities. Below is a summary of the main incompatible changes.
67ea12
Some nginx directives have been changed or removed, so you may need to modify
67ea12
your configuration.
67ea12
67ea12
Please see upstream release notes for a complete list of new features,
67ea12
bug fixes, and changes: http://nginx.org/en/CHANGES-1.10
67ea12
One notable feature is support for HTTP/2.
67ea12
67ea12
Nginx gained support for dynamic modules. As part of this update, dynamic
67ea12
modules have been split into subpackages. For the time being these are hard
67ea12
dependencies to aid the upgrade path. When you install nginx, all of these
67ea12
modules are installed and enabled by default:
67ea12
  - nginx-mod-http-geoip
67ea12
  - nginx-mod-http-image-filter
67ea12
  - nginx-mod-http-perl
67ea12
  - nginx-mod-http-xslt-filter
67ea12
  - nginx-mod-mail
67ea12
  - nginx-mod-stream
67ea12
67ea12
Changes with nginx 1.10.x
67ea12
67ea12
    *) Change: non-idempotent requests (POST, LOCK, PATCH) are no longer
67ea12
       passed to the next server by default if a request has been sent to a
67ea12
       backend; the "non_idempotent" parameter of the "proxy_next_upstream"
67ea12
       directive explicitly allows retrying such requests.
67ea12
67ea12
    *) Change: now the "output_buffers" directive uses two buffers by
67ea12
       default.
67ea12
67ea12
    *) Change: now nginx limits subrequests recursion, not simultaneous
67ea12
       subrequests.
67ea12
67ea12
    *) Change: now nginx checks the whole cache key when returning a
67ea12
       response from cache.
67ea12
       Thanks to Gena Makhomed and Sergey Brester.
67ea12
67ea12
    *) Change: the "proxy_downstream_buffer" and "proxy_upstream_buffer"
67ea12
       directives of the stream module are replaced with the
67ea12
       "proxy_buffer_size" directive.
67ea12
67ea12
    *) Change: duplicate "http", "mail", and "stream" blocks are now
67ea12
       disallowed.
67ea12
67ea12
    *) Change: now SSLv3 protocol is disabled by default.
67ea12
67ea12
    *) Change: some long deprecated directives are not supported anymore.
67ea12
67ea12
    *) Change: obsolete aio and rtsig event methods have been removed.
67ea12
67ea12
Changes with nginx 1.8.x
67ea12
67ea12
    *) Change: the "sendfile" parameter of the "aio" directive is
67ea12
       deprecated; now nginx automatically uses AIO to pre-load data for
67ea12
       sendfile if both "aio" and "sendfile" directives are used.
67ea12
67ea12
    *) Change: now the "If-Modified-Since", "If-Range", etc. client request
67ea12
       header lines are passed to a backend while caching if nginx knows in
67ea12
       advance that the response will not be cached (e.g., when using
67ea12
       proxy_cache_min_uses).
67ea12
67ea12
    *) Change: now after proxy_cache_lock_timeout nginx sends a request to a
67ea12
       backend with caching disabled; the new directives
67ea12
       "proxy_cache_lock_age", "fastcgi_cache_lock_age",
67ea12
       "scgi_cache_lock_age", and "uwsgi_cache_lock_age" specify a time
67ea12
       after which the lock will be released and another attempt to cache a
67ea12
       response will be made.
67ea12
67ea12
    *) Change: the "log_format" directive can now be used only at http
67ea12
       level.
67ea12
67ea12
    *) Change: now nginx takes into account the "Vary" header line in a
67ea12
       backend response while caching.
67ea12
67ea12
    *) Change: the deprecated "limit_zone" directive is not supported
67ea12
       anymore.
67ea12
67ea12
    *) Change: now the "stub_status" directive does not require a parameter.
67ea12
67ea12
    *) Change: URI escaping now uses uppercase hexadecimal digits.
67ea12
       Thanks to Piotr Sikora.
67ea12