OpenResty® 通过 Lua 扩展 NGINX 实现的可伸缩的 Web 平台

最新! OpenResty 已发布。
最新! 新博客文章 新增针对 Debian 11 的 OpenResty 官方安装包仓库 已发表。
最新! 新博客文章 让机器从电影剧本自动生成百度搜索的演示视频 已发表。

OpenResty Released

Johnny Wang , 02 Jun 2021 (created 02 Jun 2021)

OpenResty is a patch release addressing a security vulnerability in the NGINX resolver that may allow an attacker who is able to forge UDP packets from the specified DNS server to cause a 1-byte memory overwrite, resulting in a worker process crash or other unspecified impact. (CVE-2021-23017)

NGINX cores from 0.6.18 to 1.20.0 (included) are affected by this issue. If you are using resolver directive with any previous OpenResty release, upgrade to

Download this version here.

The (portable) source code distribution, the Win32/Win64 binary distributions, and the pre-built binary Linux packages for Ubuntu, Debian, Fedora, CentOS, RHEL, OpenSUSE, Amazon Linux are provided on this Download page.

This is the second OpenResty release based on the nginx 1.19.3 core.

Version highlights

  • Upgraded openssl to 1.1.1k for Win32/Win64.
  • Applied the patch for security advisory to NGINX cores >= 0.6.18 and <= 1.20.0 (CVE-2021-23017).

Full Change logs

Complete change logs since the last (formal) release,, can be browsed in the page Change Log for 1.19.3.x.


We have run extensive testing on our Amazon EC2 test cluster and ensured that all the components (including the Nginx core) play well together. The latest test report can always be found here:

We also always run our OpenResty Edge commercial software based on the latest open source version of OpenResty in our own global CDN network (dubbed "mini CDN") powering our and websites. See for more details.

Community Support

See the Community Page.

Commercial Support

Commercial technical support and real-time noninvasive online monitoring and profiling solution is provided through the official OpenResty XRay product.


Feedback on this release is more than welcome. Feel free to create new GitHub issues or send emails to one of our mailing lists.