first release of the new master branch , within which the development of new features will continue. In a parallel supported stable only changes related to the elimination of serious errors and vulnerabilities are made. Next year, the 1.19 stable branch will be formed from the 1.20.x main branch.
All :
- Added the ability to verify client certificates with the involvement of external services based on the OCSP protocol (Online Certificate Status Protocol). To enable validation ssl_ocsp directive, to set the cache size - ssl_ocsp_cache, to redefine the URL , specified in the certificate - ssl_ocsp_responder.
- Fixed the "upstream sent frame for closed stream" error that occurred during the operation of gRPC backends when sending frames to a closed stream.
- Fixed problem with non-functioning , if the "resolver" directive is not specified.
- Fixed a bug that caused HTTP/2 connections with an incorrect start sequence to not be reflected in the logs ().
Source: opennet.ru