K 10
svn:author
V 9
junovitch
K 8
svn:date
V 27
2016-06-05T17:44:02.177075Z
K 7
svn:log
V 1479
MFH: r412446 r412447 r412449 r412450 r412534 r412535 r412555 r412588 r412645
     r412858 r412862 r413165 r413379 r413380 r413662

Apply CVE-2016-4450 patches to www/nginx and www/nginx-devel following a sync
with r413662 from head before the major release updates to 1.10.x and 1.11.x
and configuration change requirement brought about by dynamic module support.

- Enable several vendor's modules to be in sync with vendor's
  original packages for some linux distros, please see
  http://nginx.org/en/linux_packages.html for details.
- Upgrade nginx-devel from 1.9.12 to 1.9.15; remove needless vendor patches.

Add/upgrade third-party modules:
o) Upgrade third-party brotli module from 86998c6 to 2fc6f12.
o) Add AWS proxy third-party module.
o) Change the third-party http_auth_digest module location and upgrade it.
   Previous location no longer supported by developers.
o) Upgrade third-party nchan (formerly http_push) module from 0.99.8 to 0.99.11.
o) Enable vendor's http_realip module by default.
o) Upgrade third-party njs module from 50fbb3b to c4a5f2b.
o) Upgrade third-party tarantool module from 966f2f5 to 3599ba0.
o) Add third-party upstream check module.
o) Upgrade push from 0.99.11 to 0.99.12;
o) Upgrade lua from 7410339 to d44f8e0;
o) Upgrade shibboleth from 20150121 to 4f1119b.

PR:		208499 203967 208380
Security:	CVE-2016-4450
Security:	https://vuxml.FreeBSD.org/freebsd/36cf7670-2774-11e6-af29-f0def16c5c1b.html
Approved by:	ports-secteam (with hat)

END