Latest Update on nginx Development
The main branch nginx 1.27.2 has been released, with ongoing development of new features. The stable branch 1.26.x is focused on fixing critical errors and vulnerabilities. A future stable branch 1.28 will be based on the main branch 1.27.x. The project code is written in C and distributed under the BSD license.
Among the changes in this release:
- SSL, keys, and Certificate Revocation List caching implemented during configuration start and update.
- Support added for checking customer certificate calls using the Online Certificate Status Protocol (OCSP).
- The Stream module now supports OCSP Stapling, a technique where the server serving the site transmits the OCSP response certified by the certificate without direct contact with the certificate center.
- The ngx_http_proxy_module now includes the “proxy_pass_pass_trailers” directive for transferring header fields at the end of the response from a proximate server to the client.
- The “SSL_CLIENT_CERTIFICATE” directive now supports certificates with additional information.
- The verification of client certificates with the “SSL_Client_Certificate” directive is now optional.
/Reports, release notes, official announcements.