Am 01.09.25 um 15:02 schrieb Rémy Maucherat:
The proposed Apache Tomcat 9.0.109 release is now available for voting.
The notable changes compared to 9.0.108 are:
- Fix concurrent access issues in the session FileStore implementation
that were causing lost sessions when the store was used with the
PersistentValve. Based on pull request #882 by Aaron Ogburn.
- Fix handling of QSA and QSD flags in RewriteValve.
- Ensure keys are handed out to OpenSSL even if PEMFile fails to process
it, with appropriate logging.
- Add escaping to log formatters to align with JSON formatter.
For full details, see the changelog:
https://nightlies.apache.org/tomcat/tomcat-9.0.x/docs/changelog.html
It can be obtained from:
https://dist.apache.org/repos/dist/dev/tomcat/tomcat-9/v9.0.109/
The Maven staging repo is:
https://repository.apache.org/content/repositories/orgapachetomcat-1557
The tag is:
https://github.com/apache/tomcat/tree/9.0.109
312541e51725cdfe98d8cc6414b31d36d913fdd1
The proposed 9.0.109 release is:
[ ] -1, Broken - do not release
[ ] +1, Stable - go ahead and release as 9.0.109
Rémy
+1 to release
Reproducibility of the build checked (including the Windows installer)
on Linux Mint 22.1. OK after setting LANG. Checked manually plus with
"ant verify-release".
Original Windows installer signature verified with osslsigncode.
dist file list correct, hashes OK, gpg signatures OK.
Unit tests ran on platforms
- RHEL 6, 7, 8 and 9, SLES 11, 12 and 15, Solaris 10 and 11
using
- recent patch versions of JDK 1.8.0, 11, 17, 21, 24, 25 (Release
candidate build 25+36-3489) and 26 (EA 12)
from
- Eclipse Adoptium, Azul Zulu, Amazon Coretto, Oracle, RedHat and
OpenJDK (for 25 and 26)
where available.
Also tested with
- tcnative 1.3.1, 2.0.9 and panama
based on
- OpenSSL 3.0.17, 3.2.5, 3.4.2 and 3.5.2.
All test runs fine, except for
- the usual sporadic crashes with tcnative during shutdown.
- new sporadic failures in org.apache.coyote.http2.TestCancelledUpload
Thanks for RM!
Best regards,
Rainer
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
