Am 11.10.25 um 16:40 schrieb Christopher Schultz:
NOTE: I have freshened the release artifacts to remove the copy of
tcnative source and binaries I inadvertently included in them. The
release has been built from the existing 10.1.48 tag, but many of the
artifacts themselves have been updated, including the Maven artifacts
under a different repo number/URL.
The proposed Apache Tomcat 10.1.48 release is now available for
voting.
All committers and PMC members are kindly requested to provide a vote if
possible. ANY TOMCAT USER MAY VOTE, though only PMC members votes are
binding. We welcome non-committer votes or comments on release builds.
The notable changes compared to 10.1.47 are:
- Fix AJP regression with DELETE and PROPFIND HTTP methods.
- Ensure that changes to session IDs (typically after
authentication) are promulgated to the SSO Valve to ensure that SSO
entries are fully clean-up on session expiration.
- Deprecate the RemoteAddrFilter and RemoteAddValve in favor of the
RemoteCIDRFilter and RemoteCIDRValve.
For full details, see the change log:
https://nightlies.apache.org/tomcat/tomcat-10.1.x/docs/changelog.html
Applications that run on Tomcat 9 and earlier will not run on Tomcat 10
without changes. Java EE applications designed for Tomcat 9 and earlier
may be placed in the $CATALINA_BASE/webapps-javaee directory and Tomcat
will automatically convert them to Jakarta EE and copy them to the
webapps directory.
It can be obtained from:
https://dist.apache.org/repos/dist/dev/tomcat/tomcat-10/v10.1.48/
The Maven staging repo is:
https://repository.apache.org/content/repositories/orgapachetomcat-1567
The tag is:
https://github.com/apache/tomcat/tree/10.1.48
https://github.com/apache/tomcat/
commit/4bb27b91593ba933a8b4ec222bf33143b346d542
Please reply with a +1 for release or +0/-0/-1 with an explanation.
+1 to release.
Reproducibility of the build checked (including the Windows installer)
on Linux Mint 22.2. OK after setting LANG. Checked manually plus with
"ant verify-release".
Original Windows installer signature verified with osslsigncode.
dist file list correct, hashes OK, gpg signatures OK.
Unit tests ran on platforms
- RHEL 6, 7, 8 and 9, SLES 11, 12 and 15, Solaris 11
using
- recent patch versions of JDK 11, 17, 21, 25 and 26 (EA 16)
from
- Eclipse Adoptium, Azul Zulu, Amazon Coretto, Oracle, RedHat and
OpenJDK (for 26)
where available.
Also tested with
- tcnative 1.3.1, 2.0.9 and panama
based on
- OpenSSL 3.0.18, 3.4.3, 3.5.4 and 3.6.0.
All test runs fine, except for
- the usual sporadic crashes with tcnative during shutdown.
- sporadic, but a bit too frequent failures in
org.apache.coyote.http2.TestCancelledUpload
(no regression; for details see mail about 11.0.10)
Thanks for RM!
Best regards,
Rainer
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
