[Bug 56669] New: StandardContext.loadOnStartup() changed its signature in 8.0.9
https://issues.apache.org/bugzilla/show_bug.cgi?id=56669 Bug ID: 56669 Summary: StandardContext.loadOnStartup() changed its signature in 8.0.9 Product: Tomcat 8 Version: trunk Hardware: PC OS: Linux Status: NEW Severity: normal Priority: P2 Component: Catalina Assignee: dev@tomcat.apache.org Reporter: david_s...@hotmail.com StandardContext.loadOnStartup() changed its signature in 8.0.9 which is very unfriendly to any apps that depend on the API, especially if they use a library that was compiled against Tomcat 8.0.9 (they break with a NoSuchMethodError at runtime). Surely such a major (binary compatibility) change should not be appearing in a point release? I suggest adding a new method if there are callers that need the new signature internally to Tomcat. -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 56670] New: Tomcat 8.0.9 embedded poms on Maven Central include dependency on ecj version that isn't resolvable
https://issues.apache.org/bugzilla/show_bug.cgi?id=56670 Bug ID: 56670 Summary: Tomcat 8.0.9 embedded poms on Maven Central include dependency on ecj version that isn't resolvable Product: Tomcat 8 Version: trunk Hardware: PC OS: Linux Status: NEW Severity: normal Priority: P2 Component: Packaging Assignee: dev@tomcat.apache.org Reporter: david_s...@hotmail.com Tomcat 8.0.9 embedded poms on Maven Central include dependency on ecj version that isn't resolvable (4.4RC4). This version is not available in Central so no project that depends on Tomcat 8.0.9 can compile without adding a repository declaration (no idea even what that would be) or a manual dependency on a good version. -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 50604] Incorrect dependency in jasper.pom for eclipse ecj
https://issues.apache.org/bugzilla/show_bug.cgi?id=50604 Violeta Georgieva violet...@apache.org changed: What|Removed |Added CC||david_s...@hotmail.com --- Comment #6 from Violeta Georgieva violet...@apache.org --- *** Bug 56670 has been marked as a duplicate of this bug. *** -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 56670] Tomcat 8.0.9 embedded poms on Maven Central include dependency on ecj version that isn't resolvable
https://issues.apache.org/bugzilla/show_bug.cgi?id=56670 Violeta Georgieva violet...@apache.org changed: What|Removed |Added Status|NEW |RESOLVED Resolution|--- |DUPLICATE --- Comment #1 from Violeta Georgieva violet...@apache.org --- *** This bug has been marked as a duplicate of bug 50604 *** -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
Re: Possible TomEE release news?
On 24/06/14 20:02, David Blevins wrote: Wonder what people's thoughts are about possibly including TomEE releases in the Tomcat news feed on occasion? Having some mention of TomEE on tomcat.apache.org would be nice -- most users still do not know it exists. However, I've never mentioned it as I personally couldn't think of a good way to do that that didn't feel obtrusive or unnatural. This might be more palatable and less permanent. I remember Rémy did this some many years ago for an OpenEJB release once and it really helped. We have a TomEE 1.7.0 release coming out soon we could try it with. Thoughts? +1 Cheers Jean-Frederic - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 56669] StandardContext.loadOnStartup() changed its signature in 8.0.9
https://issues.apache.org/bugzilla/show_bug.cgi?id=56669 Mark Thomas ma...@apache.org changed: What|Removed |Added Status|NEW |RESOLVED Resolution|--- |INVALID --- Comment #1 from Mark Thomas ma...@apache.org --- 1. Previous releases were alpha and beta releases. API changes are expected. 2. The release notes contain a section on API stability. (It needs an update to remove the alpha reference but everything else in that section of the release notes is valid). -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
svn commit: r1605293 - in /tomcat/trunk: RELEASE-NOTES webapps/docs/changelog.xml
Author: markt Date: Wed Jun 25 08:48:32 2014 New Revision: 1605293 URL: http://svn.apache.org/r1605293 Log: Update the API stability section of the release notes now that Tomcat 8 has had its first stable release. Modified: tomcat/trunk/RELEASE-NOTES tomcat/trunk/webapps/docs/changelog.xml Modified: tomcat/trunk/RELEASE-NOTES URL: http://svn.apache.org/viewvc/tomcat/trunk/RELEASE-NOTES?rev=1605293r1=1605292r2=1605293view=diff == --- tomcat/trunk/RELEASE-NOTES (original) +++ tomcat/trunk/RELEASE-NOTES Wed Jun 25 08:48:32 2014 @@ -45,17 +45,14 @@ Tomcat @VERSION_MAJOR_MINOR@ is designed API Stability: == -*** This is an alpha release. Currently no guarantees are made regarding API *** -*** stability. *** - The public interfaces for the following classes are fixed and will not be changed at all during the remaining lifetime of the @VERSION_MAJOR@.x series: -- None +- All classes in the javax namespace The public interfaces for the following classes may be added to in order to -resolve bugs and/or add new features. No existing interface will be removed or -changed although it may be deprecated. -- None +resolve bugs and/or add new features. No existing interface method will be +removed or changed although it may be deprecated. +- org.apache.catalina.* (excluding sub-packages) Note: As Tomcat @VERSION_MAJOR@ matures, the above list will be added to. The list is not considered complete at this time. Modified: tomcat/trunk/webapps/docs/changelog.xml URL: http://svn.apache.org/viewvc/tomcat/trunk/webapps/docs/changelog.xml?rev=1605293r1=1605292r2=1605293view=diff == --- tomcat/trunk/webapps/docs/changelog.xml (original) +++ tomcat/trunk/webapps/docs/changelog.xml Wed Jun 25 08:48:32 2014 @@ -94,6 +94,14 @@ /fix /changelog /subsection + subsection name=Other +changelog + update +Update the API stability section of the release notes now that Tomcat 8 +has had its first stable release. (markt) + /update +/changelog + /subsection /section section name=Tomcat 8.0.9 (markt) subsection name=Catalina - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 56669] StandardContext.loadOnStartup() changed its signature in 8.0.9
https://issues.apache.org/bugzilla/show_bug.cgi?id=56669 --- Comment #2 from Konstantin Kolinko knst.koli...@gmail.com --- (The specific change mentioned here is r1595690 changing return type s/void/boolean/) 3. This kind of a signature change cannot be reverted in a forward-compatible way. Tomcat 8.0.9 has already been voted and released. 4. Consider using CI tools to check for API changes. Such as http://gump.apache.org/ 5. All commits are public. Commit notifications are mailed to the dev@ mailing list. Review comments there are welcome. -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
Re: Possible TomEE release news?
2014-06-24 22:02 GMT+04:00 David Blevins david.blev...@gmail.com: Wonder what people's thoughts are about possibly including TomEE releases in the Tomcat news feed on occasion? Having some mention of TomEE on tomcat.apache.org would be nice -- most users still do not know it exists. However, I've never mentioned it as I personally couldn't think of a good way to do that that didn't feel obtrusive or unnatural. One good place is http://wiki.apache.org/tomcat/PoweredBy This might be more palatable and less permanent. I remember Rémy did this some many years ago for an OpenEJB release once and it really helped. We have a TomEE 1.7.0 release coming out soon we could try it with. Thoughts? +1 for TomEE and Geronimo Generally I would suggest people to subscribe to announce@ a.o, as there are many useful libraries and projects at ASF. Best regards, Konstantin Kolinko - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 56668] Restarting Tomcat fails to load versioned webapp
https://issues.apache.org/bugzilla/show_bug.cgi?id=56668 Konstantin Kolinko knst.koli...@gmail.com changed: What|Removed |Added Status|NEW |RESOLVED Resolution|--- |INVALID --- Comment #1 from Konstantin Kolinko knst.koli...@gmail.com --- Bugzilla is not a support forum. http://tomcat.apache.org/bugreport.html#Bugzilla_is_not_a_support_forum You should diagnose your issue first, e.g. asking for help on the Tomcat users list, or TomEE users list. You have not provided enough information to reproduce the issue. Consider preparing a minimal simple sample webapp that reproduces it and a step-by-step recipe. -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 50604] Incorrect dependency in jasper.pom for eclipse ecj
https://issues.apache.org/bugzilla/show_bug.cgi?id=50604 Mark Thomas ma...@apache.org changed: What|Removed |Added Status|RESOLVED|REOPENED Resolution|INVALID |--- --- Comment #7 from Mark Thomas ma...@apache.org --- This came up at work today. From this Eclipse bug: https://bugs.eclipse.org/bugs/show_bug.cgi?id=283745 it doesn't look like the necessary jar is going to be routinely published to Maven central any time soon. I also discovered that the version number of the JAR is not 4.4.RC4 but 3.10.0.v20140604-1726. I suspect that should Eclipse ever upload these JARs to central there are going to be version issues with the existing JARs that the community has uploaded. Options considered to address this: a) continue as is and let consumers of tomcat-jasper deal with this b) drop the Maven releases c) delay the release to Maven central until the ecj JAR is available - delay likely to be 1-2 weeks after upload is requested - either release manager has to arrange for upload or wait for the community to do it (longer delay) d) get Eclipse to upload JARs to central as part of their release process e) upload the JAR under the Tomcat groupId f) add the p2 repository to the pom a) is far from ideal as this is causing pain for some users b) is not a serious option as Maven releases are used too widely c) will cause problems for projects (TomEE?) that work from the zips that are released to Maven as access to the latest releases will be delayed d) looks to be unlikely given how long the current bug requesting this has been open e) could result in class loading issues if a project has a dependency on an older ecj JAR that is in central unless we package rename f) this should work in theory but I couldn't get it to work and not all build tools that use Maven central can access p2 repositories Given all of the above, the best way forward appears to be a variation of e) using jarjar to repackage the JAR (org.apache.tomact.org.eclipse.jdt.*) and then upload that to central under Tomcat's group ID. I don't really like doing this but don't see a better way forward at this point. -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
svn commit: r1605402 - in /tomcat/trunk: java/org/apache/tomcat/util/descriptor/web/WebXml.java webapps/docs/changelog.xml
Author: violetagg Date: Wed Jun 25 13:48:17 2014 New Revision: 1605402 URL: http://svn.apache.org/r1605402 Log: Fix https://issues.apache.org/bugzilla/show_bug.cgi?id=56665 Correct the generation of the effective web.xml when elements contain an empty string as value. Modified: tomcat/trunk/java/org/apache/tomcat/util/descriptor/web/WebXml.java tomcat/trunk/webapps/docs/changelog.xml Modified: tomcat/trunk/java/org/apache/tomcat/util/descriptor/web/WebXml.java URL: http://svn.apache.org/viewvc/tomcat/trunk/java/org/apache/tomcat/util/descriptor/web/WebXml.java?rev=1605402r1=1605401r2=1605402view=diff == --- tomcat/trunk/java/org/apache/tomcat/util/descriptor/web/WebXml.java (original) +++ tomcat/trunk/java/org/apache/tomcat/util/descriptor/web/WebXml.java Wed Jun 25 13:48:17 2014 @@ -1299,15 +1299,24 @@ public class WebXml { private static void appendElement(StringBuilder sb, String indent, String elementName, String value) { -if (value == null || value.length() == 0) return; -sb.append(indent); -sb.append(''); -sb.append(elementName); -sb.append(''); -sb.append(escapeXml(value)); -sb.append(/); -sb.append(elementName); -sb.append(\n); +if (value == null) { +return; +} +if (value.length() == 0) { +sb.append(indent); +sb.append(''); +sb.append(elementName); +sb.append(/\n); +} else { +sb.append(indent); +sb.append(''); +sb.append(elementName); +sb.append(''); +sb.append(escapeXml(value)); +sb.append(/); +sb.append(elementName); +sb.append(\n); +} } private static void appendElement(StringBuilder sb, String indent, Modified: tomcat/trunk/webapps/docs/changelog.xml URL: http://svn.apache.org/viewvc/tomcat/trunk/webapps/docs/changelog.xml?rev=1605402r1=1605401r2=1605402view=diff == --- tomcat/trunk/webapps/docs/changelog.xml (original) +++ tomcat/trunk/webapps/docs/changelog.xml Wed Jun 25 13:48:17 2014 @@ -80,6 +80,10 @@ Remove codecontext/code and codewrapper/code fields and setters from codeRequest/code class. (kkolinko) /scode + fix +bug56665/bug: Correct the generation of the effective web.xml when +elements contain an empty string as value. (violetagg) + /fix /changelog /subsection subsection name=Web applications - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 50604] Incorrect dependency in jasper.pom for eclipse ecj
https://issues.apache.org/bugzilla/show_bug.cgi?id=50604 --- Comment #8 from Remy Maucherat r...@apache.org --- I'd vote c), then e). If Eclipse delays its releases by a couple weeks, it shouldn't be the end of the world if Tomcat does the same thing, right ? -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
svn commit: r1605405 - in /tomcat/tc7.0.x/trunk: ./ java/org/apache/catalina/deploy/WebXml.java webapps/docs/changelog.xml
Author: violetagg Date: Wed Jun 25 13:54:01 2014 New Revision: 1605405 URL: http://svn.apache.org/r1605405 Log: Fix https://issues.apache.org/bugzilla/show_bug.cgi?id=56665 Merged revision 1605402 from tomcat/trunk: Correct the generation of the effective web.xml when elements contain an empty string as value. Modified: tomcat/tc7.0.x/trunk/ (props changed) tomcat/tc7.0.x/trunk/java/org/apache/catalina/deploy/WebXml.java tomcat/tc7.0.x/trunk/webapps/docs/changelog.xml Propchange: tomcat/tc7.0.x/trunk/ -- Merged /tomcat/trunk:r1605402 Modified: tomcat/tc7.0.x/trunk/java/org/apache/catalina/deploy/WebXml.java URL: http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/java/org/apache/catalina/deploy/WebXml.java?rev=1605405r1=1605404r2=1605405view=diff == --- tomcat/tc7.0.x/trunk/java/org/apache/catalina/deploy/WebXml.java (original) +++ tomcat/tc7.0.x/trunk/java/org/apache/catalina/deploy/WebXml.java Wed Jun 25 13:54:01 2014 @@ -1247,15 +1247,24 @@ public class WebXml { private static void appendElement(StringBuilder sb, String indent, String elementName, String value) { -if (value == null || value.length() == 0) return; -sb.append(indent); -sb.append(''); -sb.append(elementName); -sb.append(''); -sb.append(escapeXml(value)); -sb.append(/); -sb.append(elementName); -sb.append(\n); +if (value == null) { +return; +} +if (value.length() == 0) { +sb.append(indent); +sb.append(''); +sb.append(elementName); +sb.append(/\n); +} else { +sb.append(indent); +sb.append(''); +sb.append(elementName); +sb.append(''); +sb.append(escapeXml(value)); +sb.append(/); +sb.append(elementName); +sb.append(\n); +} } private static void appendElement(StringBuilder sb, String indent, Modified: tomcat/tc7.0.x/trunk/webapps/docs/changelog.xml URL: http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/webapps/docs/changelog.xml?rev=1605405r1=1605404r2=1605405view=diff == --- tomcat/tc7.0.x/trunk/webapps/docs/changelog.xml (original) +++ tomcat/tc7.0.x/trunk/webapps/docs/changelog.xml Wed Jun 25 13:54:01 2014 @@ -121,6 +121,10 @@ Assert that mapping result object is empty before performing mapping work in codeMapper/code. (kkolinko) /fix + fix +bug56665/bug: Correct the generation of the effective web.xml when +elements contain an empty string as value. (violetagg) + /fix /changelog /subsection subsection name=Coyote - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 56665] XML schema validation exception for effective web.xml generated for servlet-mapping with empty url-pattern
https://issues.apache.org/bugzilla/show_bug.cgi?id=56665 Violeta Georgieva violet...@apache.org changed: What|Removed |Added Status|NEW |RESOLVED Resolution|--- |FIXED --- Comment #2 from Violeta Georgieva violet...@apache.org --- This has been fixed in trunk for 8.0.10 and in 7.0.x for 7.0.55 onwards. -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 50604] Incorrect dependency in jasper.pom for eclipse ecj
https://issues.apache.org/bugzilla/show_bug.cgi?id=50604 --- Comment #9 from Mark Thomas ma...@apache.org --- (In reply to Remy Maucherat from comment #8) I'd vote c), then e). If Eclipse delays its releases by a couple weeks, it shouldn't be the end of the world if Tomcat does the same thing, right ? The delay comes from a non-Eclipse person uploading something into the org.eclipse namespace. It has to go through some additional, manual checks. It isn't that often that we update the ECJ jar. It has happened more frequently recently because of Java 8 support. My main concern with c) at this point is that some of the JARs already uploaded have been uploaded using a different version number to the one listed in the JAR's manifest - that creates a dependency management mess that it is going to be hard to recover from. I don't want to make that worse. There are also fewer hoops to jump through for e) than c). -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
svn commit: r1605417 - /tomcat/trunk/java/org/apache/tomcat/websocket/WsFrameBase.java
Author: markt Date: Wed Jun 25 14:20:05 2014 New Revision: 1605417 URL: http://svn.apache.org/r1605417 Log: Fix copy/paste error in r1605054 Control messages should be read into the control message buffer Modified: tomcat/trunk/java/org/apache/tomcat/websocket/WsFrameBase.java Modified: tomcat/trunk/java/org/apache/tomcat/websocket/WsFrameBase.java URL: http://svn.apache.org/viewvc/tomcat/trunk/java/org/apache/tomcat/websocket/WsFrameBase.java?rev=1605417r1=1605416r2=1605417view=diff == --- tomcat/trunk/java/org/apache/tomcat/websocket/WsFrameBase.java (original) +++ tomcat/trunk/java/org/apache/tomcat/websocket/WsFrameBase.java Wed Jun 25 14:20:05 2014 @@ -300,7 +300,7 @@ public abstract class WsFrameBase { private boolean processDataControl() throws IOException { -TransformationResult tr = transformation.getMoreData(opCode, fin, rsv, messageBufferBinary); +TransformationResult tr = transformation.getMoreData(opCode, fin, rsv, controlBufferBinary); if (TransformationResult.UNDERFLOW.equals(tr)) { return false; } - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
svn commit: r1605418 - /tomcat/trunk/RELEASE-NOTES
Author: markt Date: Wed Jun 25 14:24:48 2014 New Revision: 1605418 URL: http://svn.apache.org/r1605418 Log: whitespace Modified: tomcat/trunk/RELEASE-NOTES Modified: tomcat/trunk/RELEASE-NOTES URL: http://svn.apache.org/viewvc/tomcat/trunk/RELEASE-NOTES?rev=1605418r1=1605417r2=1605418view=diff == --- tomcat/trunk/RELEASE-NOTES (original) +++ tomcat/trunk/RELEASE-NOTES Wed Jun 25 14:24:48 2014 @@ -52,7 +52,7 @@ changed at all during the remaining life The public interfaces for the following classes may be added to in order to resolve bugs and/or add new features. No existing interface method will be removed or changed although it may be deprecated. -- org.apache.catalina.* (excluding sub-packages) +- org.apache.catalina.* (excluding sub-packages) Note: As Tomcat @VERSION_MAJOR@ matures, the above list will be added to. The list is not considered complete at this time. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 50604] Incorrect dependency in jasper.pom for eclipse ecj
https://issues.apache.org/bugzilla/show_bug.cgi?id=50604 --- Comment #10 from Remy Maucherat r...@apache.org --- I have nothing against doing e), no problem. -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 56596] OpenSSL 1.0.1g is vulnerable to a man-in-the-middle attack
https://issues.apache.org/bugzilla/show_bug.cgi?id=56596 Martin Schelldorfer schelldor...@gmail.com changed: What|Removed |Added CC||schelldor...@gmail.com -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
Re: Possible TomEE release news?
David, On 6/24/14, 2:02 PM, David Blevins wrote: Wonder what people's thoughts are about possibly including TomEE releases in the Tomcat news feed on occasion? Having some mention of TomEE on tomcat.apache.org would be nice -- most users still do not know it exists. However, I've never mentioned it as I personally couldn't think of a good way to do that that didn't feel obtrusive or unnatural. This might be more palatable and less permanent. I remember Rémy did this some many years ago for an OpenEJB release once and it really helped. We have a TomEE 1.7.0 release coming out soon we could try it with. Thoughts? +1 I think it would be a good idea to mention TomEE in our documentation, too (e.g. If you need more EE APIs with Tomcat, check out aTomEE/a). Posting some release announcements on our home page seems reasonable to me. -chris signature.asc Description: OpenPGP digital signature
[Bug 56143] Allow service.bat install to be used in an non-UAC cmd.exe session
https://issues.apache.org/bugzilla/show_bug.cgi?id=56143 --- Comment #4 from Abdul Wahid aalaud...@ebix.com --- Hi Konstantin, I am getting permission issue only for tomcat service while installing TOMCAT 7 on windows 2000 server. I logged into the server with Administrator privileges. Please update with your feedback. Thanks, Abdul Wahid -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
svn commit: r1605427 - in /tomcat/site/trunk: ./ docs/ xdocs/
Author: markt Date: Wed Jun 25 14:43:12 2014 New Revision: 1605427 URL: http://svn.apache.org/r1605427 Log: Update for 8.0.9 release (excluding docs) Modified: tomcat/site/trunk/build.properties.default tomcat/site/trunk/docs/doap_Tomcat.rdf tomcat/site/trunk/docs/download-80.html tomcat/site/trunk/docs/index.html tomcat/site/trunk/docs/migration-8.html tomcat/site/trunk/docs/oldnews.html tomcat/site/trunk/docs/whichversion.html tomcat/site/trunk/xdocs/doap_Tomcat.rdf tomcat/site/trunk/xdocs/download-80.xml tomcat/site/trunk/xdocs/index.xml tomcat/site/trunk/xdocs/migration-8.xml tomcat/site/trunk/xdocs/oldnews.xml tomcat/site/trunk/xdocs/whichversion.xml Modified: tomcat/site/trunk/build.properties.default URL: http://svn.apache.org/viewvc/tomcat/site/trunk/build.properties.default?rev=1605427r1=1605426r2=1605427view=diff == --- tomcat/site/trunk/build.properties.default (original) +++ tomcat/site/trunk/build.properties.default Wed Jun 25 14:43:12 2014 @@ -38,7 +38,7 @@ tomcat.loc=http://www.apache.org/dist/to # - Tomcat versions - tomcat60=6.0.41 tomcat70=7.0.54 -tomcat80=8.0.8 +tomcat80=8.0.9 # - Download destination - Modified: tomcat/site/trunk/docs/doap_Tomcat.rdf URL: http://svn.apache.org/viewvc/tomcat/site/trunk/docs/doap_Tomcat.rdf?rev=1605427r1=1605426r2=1605427view=diff == --- tomcat/site/trunk/docs/doap_Tomcat.rdf (original) +++ tomcat/site/trunk/docs/doap_Tomcat.rdf Wed Jun 25 14:43:12 2014 @@ -56,9 +56,9 @@ /maintainer release Version -nameLatest 8.0.x Release (Non-stable)/name -created2014-05-21/created -revision8.0.8 (beta)/revision +nameLatest 8.0.x Release/name +created2014-06-24/created +revision8.0.9/revision /Version /release release Modified: tomcat/site/trunk/docs/download-80.html URL: http://svn.apache.org/viewvc/tomcat/site/trunk/docs/download-80.html?rev=1605427r1=1605426r2=1605427view=diff == --- tomcat/site/trunk/docs/download-80.html (original) +++ tomcat/site/trunk/docs/download-80.html Wed Jun 25 14:43:12 2014 @@ -204,8 +204,8 @@ div class=text a href=https://www.apache.org/dist/tomcat/tomcat-8/KEYS;KEYS/a | -a href=#8.0.88.0.8/a | -a href=[preferred]tomcat/tomcat-8/v8.0.8 rel=nofollowBrowse/a | +a href=#8.0.98.0.9/a | +a href=[preferred]tomcat/tomcat-8/v8.0.9 rel=nofollowBrowse/a | a href=http://archive.apache.org/dist/tomcat/tomcat-8;Archives/a /div @@ -251,12 +251,12 @@ /div -h3 id=8.0.88.0.8/h3 +h3 id=8.0.98.0.9/h3 div class=text p Please see the - a href=[preferred]tomcat/tomcat-8/v8.0.8/README.html rel=nofollowREADME/a + a href=[preferred]tomcat/tomcat-8/v8.0.9/README.html rel=nofollowREADME/a file for packaging information. It explains what every distribution contains. /p @@ -272,44 +272,44 @@ li -a href=[preferred]tomcat/tomcat-8/v8.0.8/bin/apache-tomcat-8.0.8.zip rel=nofollowzip/a -(a href=https://www.apache.org/dist/tomcat/tomcat-8/v8.0.8/bin/apache-tomcat-8.0.8.zip.asc;pgp/a, -a href=https://www.apache.org/dist/tomcat/tomcat-8/v8.0.8/bin/apache-tomcat-8.0.8.zip.md5;md5/a) +a href=[preferred]tomcat/tomcat-8/v8.0.9/bin/apache-tomcat-8.0.9.zip rel=nofollowzip/a +(a href=https://www.apache.org/dist/tomcat/tomcat-8/v8.0.9/bin/apache-tomcat-8.0.9.zip.asc;pgp/a, +a href=https://www.apache.org/dist/tomcat/tomcat-8/v8.0.9/bin/apache-tomcat-8.0.9.zip.md5;md5/a) /li li -a href=[preferred]tomcat/tomcat-8/v8.0.8/bin/apache-tomcat-8.0.8.tar.gz rel=nofollowtar.gz/a -(a href=https://www.apache.org/dist/tomcat/tomcat-8/v8.0.8/bin/apache-tomcat-8.0.8.tar.gz.asc;pgp/a, -a href=https://www.apache.org/dist/tomcat/tomcat-8/v8.0.8/bin/apache-tomcat-8.0.8.tar.gz.md5;md5/a) +a href=[preferred]tomcat/tomcat-8/v8.0.9/bin/apache-tomcat-8.0.9.tar.gz rel=nofollowtar.gz/a +(a href=https://www.apache.org/dist/tomcat/tomcat-8/v8.0.9/bin/apache-tomcat-8.0.9.tar.gz.asc;pgp/a, +a href=https://www.apache.org/dist/tomcat/tomcat-8/v8.0.9/bin/apache-tomcat-8.0.9.tar.gz.md5;md5/a) /li li -a href=[preferred]tomcat/tomcat-8/v8.0.8/bin/apache-tomcat-8.0.8-windows-x86.zip rel=nofollow32-bit Windows zip/a -(a href=https://www.apache.org/dist/tomcat/tomcat-8/v8.0.8/bin/apache-tomcat-8.0.8-windows-x86.zip.asc;pgp/a, -a href=https://www.apache.org/dist/tomcat/tomcat-8/v8.0.8/bin/apache-tomcat-8.0.8-windows-x86.zip.md5;md5/a) +a
svn commit: r5674 - /release/tomcat/tomcat-8/v8.0.8/
Author: markt Date: Wed Jun 25 14:43:59 2014 New Revision: 5674 Log: Drop the 8.0.8 release Removed: release/tomcat/tomcat-8/v8.0.8/ - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
Re: Possible TomEE release news?
2014-06-24 20:02 GMT+02:00 David Blevins david.blev...@gmail.com: Wonder what people's thoughts are about possibly including TomEE releases in the Tomcat news feed on occasion? Having some mention of TomEE on tomcat.apache.org would be nice -- most users still do not know it exists. However, I've never mentioned it as I personally couldn't think of a good way to do that that didn't feel obtrusive or unnatural. This might be more palatable and less permanent. I remember Rémy did this some many years ago for an OpenEJB release once and it really helped. We have a TomEE 1.7.0 release coming out soon we could try it with. Thoughts? +1 for TomEE specifically, which looks a lot like Tomcat and is from the ASF. However, -1 for the others like Geronimo (as proposed by Konstantin) which are very different from Tomcat. There's little relationship besides some embedding, while the idea would be to point somewhere for Tomcat users asking for Tomcat + CDI, JSF, etc. Rémy
[Bug 56672] New: Error 503 while restarting any Tomcat node (load balanced)
https://issues.apache.org/bugzilla/show_bug.cgi?id=56672 Bug ID: 56672 Summary: Error 503 while restarting any Tomcat node (load balanced) Product: Tomcat Connectors Version: 1.2.40 Hardware: PC Status: NEW Severity: critical Priority: P2 Component: isapi Assignee: dev@tomcat.apache.org Reporter: mg.scan...@gmail.com I have structure like this (IIS with tomcat connectors in the front) * tomcat1 - app A * tomcat2 - app B * tomcat3 - app C * tomcat4 - app C * tomcat5 - app C * tomcat6 - app C Now I restart e.g. tomcat4 (actually it's JBoss 5.1 with Tomcat so it takes some time to boot) the whole IIS goes down - all apps and I see page from IIS - http error 503. It takes a lot of time to recover, restarts of IIS, restarting pool and website. Event log is empty, jk logs as well. -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
buildbot success in ASF Buildbot on tomcat-7-trunk
The Buildbot has detected a restored build on builder tomcat-7-trunk while building ASF Buildbot. Full details are available at: http://ci.apache.org/builders/tomcat-7-trunk/builds/157 Buildbot URL: http://ci.apache.org/ Buildslave for this Build: bb-vm_ubuntu Build Reason: scheduler Build Source Stamp: [branch tomcat/tc7.0.x/trunk] 1605405 Blamelist: violetagg Build succeeded! sincerely, -The Buildbot - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
svn commit: r1605449 - in /tomcat/site/trunk/docs/tomcat-8.0-doc: ./ api/ api/org/apache/catalina/ api/org/apache/catalina/ant/ api/org/apache/catalina/ant/jmx/ api/org/apache/catalina/authenticator/
Author: markt Date: Wed Jun 25 15:25:09 2014 New Revision: 1605449 URL: http://svn.apache.org/r1605449 Log: Update docs for 8.0.9 release [This commit notification would consist of 251 parts, which exceeds the limit of 50 ones, so it was shortened to the summary.] - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 56596] OpenSSL 1.0.1g is vulnerable to a man-in-the-middle attack
https://issues.apache.org/bugzilla/show_bug.cgi?id=56596 --- Comment #2 from jeffrey.jan...@polydyne.com --- This is CVE-2014-0224. It's caused my rating on Qualys SSL test to drop from an A+ to an F. Is there any way to mitigate the vulnerability? Mladen? Any chance you could roll us out a new version pretty quickly? Pretty please? In the meantime, I'll see what I can do about building my own. I currently do not have the toolset required. -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 56672] Error 503 while restarting any Tomcat node (load balanced)
https://issues.apache.org/bugzilla/show_bug.cgi?id=56672 Mark Thomas ma...@apache.org changed: What|Removed |Added Status|NEW |RESOLVED Resolution|--- |INVALID OS||All --- Comment #1 from Mark Thomas ma...@apache.org --- Bugzilla is not a support forum. Please take this to the Tomcat users mailing list. -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
svn commit: r1605454 - in /tomcat/trunk: java/org/apache/tomcat/websocket/ java/org/apache/tomcat/websocket/server/ webapps/docs/
Author: markt Date: Wed Jun 25 15:52:29 2014 New Revision: 1605454 URL: http://svn.apache.org/r1605454 Log: Handle preference selection for multiple extension headers with the same name Tighten up parameter validation for permessage-deflate Modified: tomcat/trunk/java/org/apache/tomcat/websocket/LocalStrings.properties tomcat/trunk/java/org/apache/tomcat/websocket/PerMessageDeflate.java tomcat/trunk/java/org/apache/tomcat/websocket/TransformationFactory.java tomcat/trunk/java/org/apache/tomcat/websocket/server/UpgradeUtil.java tomcat/trunk/webapps/docs/changelog.xml Modified: tomcat/trunk/java/org/apache/tomcat/websocket/LocalStrings.properties URL: http://svn.apache.org/viewvc/tomcat/trunk/java/org/apache/tomcat/websocket/LocalStrings.properties?rev=1605454r1=1605453r2=1605454view=diff == --- tomcat/trunk/java/org/apache/tomcat/websocket/LocalStrings.properties (original) +++ tomcat/trunk/java/org/apache/tomcat/websocket/LocalStrings.properties Wed Jun 25 15:52:29 2014 @@ -29,6 +29,7 @@ asyncChannelWrapperSecure.wrongStateWrit backgroundProcessManager.processFailed=A background process failed perMessageDeflate.deflateFailed=Failed to decompress a compressed WebSocket frame +perMessageDeflate.duplicateParameter=Duplicate definition of the [{0}] extension parameter perMessageDeflate.invalidWindowSize=An invalid windows of [{1}] size was specified for [{0}]. Valid values are whole numbers from 8 to 15 inclusive. perMessageDeflate.unknownParameter=An unknown extension parameter [{0}] was defined Modified: tomcat/trunk/java/org/apache/tomcat/websocket/PerMessageDeflate.java URL: http://svn.apache.org/viewvc/tomcat/trunk/java/org/apache/tomcat/websocket/PerMessageDeflate.java?rev=1605454r1=1605453r2=1605454view=diff == --- tomcat/trunk/java/org/apache/tomcat/websocket/PerMessageDeflate.java (original) +++ tomcat/trunk/java/org/apache/tomcat/websocket/PerMessageDeflate.java Wed Jun 25 15:52:29 2014 @@ -41,54 +41,118 @@ public class PerMessageDeflate implement public static final String NAME = permessage-deflate; -private boolean serverContextTakeover = true; -private boolean clientContextTakeover = true; - -private final Inflater inflator; +private final boolean serverContextTakeover; +private final int serverMaxWindowBits; +private final boolean clientContextTakeover; +private final int clientMaxWindowBits; +private final Inflater inflator = new Inflater(true); private final ByteBuffer readBuffer = ByteBuffer.allocate(8192); private Transformation next; private boolean skipDecompression = false; -PerMessageDeflate(ListParameter params) { +static PerMessageDeflate negotiate(ListListParameter preferences) { -for (Parameter param : params) { -if (SERVER_NO_CONTEXT_TAKEOVER.equals(param.getName())) { -serverContextTakeover = false; -} else if (CLIENT_NO_CONTEXT_TAKEOVER.equals(param.getName())) { -clientContextTakeover = false; -} else if (SERVER_MAX_WINDOW_BITS.equals(param.getName())) { -int bits = Integer.parseInt(param.getValue()); -if (bits 8 || bits 15) { -throw new IllegalArgumentException(sm.getString( -perMessageDeflate.invalidWindowSize, -SERVER_MAX_WINDOW_BITS, Integer.valueOf(bits))); -} -// Java SE API (as of Java 8) does not expose the API to control -// the Window size so decline this option by not including it in -// the response -} else if (CLIENT_MAX_WINDOW_BITS.equals(param.getName())) { -if (param.getValue() != null) { -int bits = Integer.parseInt(param.getValue()); -if (bits 8 || bits 15) { + +// Accept the first preference that the server is able to support +for (ListParameter preference : preferences) { +boolean ok = true; +boolean serverContextTakeover = true; +int serverMaxWindowBits = -1; +boolean clientContextTakeover = true; +int clientMaxWindowBits = -1; + +for (Parameter param : preference) { +if (SERVER_NO_CONTEXT_TAKEOVER.equals(param.getName())) { +if (serverContextTakeover) { +serverContextTakeover = false; +} else { +// Duplicate definition +throw new IllegalArgumentException(sm.getString( +perMessageDeflate.duplicateParameter, +SERVER_NO_CONTEXT_TAKEOVER )); +} +} else if
[Bug 56027] Unable to use TCN on RHEL6 boxes if box is booted in fips mode
https://issues.apache.org/bugzilla/show_bug.cgi?id=56027 Simon Mijolovic smijolo...@nutanix.com changed: What|Removed |Added Status|RESOLVED|REOPENED Version|1.1.29 |1.1.30 Resolution|FIXED |--- --- Comment #19 from Simon Mijolovic smijolo...@nutanix.com --- Still running into this issue where the APR library won't load when in fips mode using the FIPS validated OpenSSL library. CentOS 6.5 with OpenSSL 1.0.1e-16..el6_5.x86_64, and /boot/grub/grub.conf has fips=1 (prelink disabled, dracut -f, reboot shows cat /proc/sys/crypto/fips_enabled = 1) Tomcat 7.0.54 running, and compiled the tcnative APR lib with: ./configure --with-apr=`which apr-1-config` --with-java-home=/usr/java/jdk1.8.0_05 --with-ssl=yes --prefix=/usr/share/apache-tomcat-7.0.54 Setenv.sh: #!/bin/bash umask 0026 LD_LIBRARY_PATH=/usr/share/apache-tomcat-7.0.54/lib:$LD_LIBRARY_PATH export LD_LIBRARY_PATH Server.xml: Listener className=org.apache.catalina.core.AprLifecycleListener SSLEngine=on / Connector.xml: Connector clientAuth=false port=9443 protocol=HTTP/1.1 SSLEnabled=true scheme=https secure=true SSLCertificateFile=/etc/private/rsacert.pem SSLCertificateKeyFile=/etc/private/rsakey.pem SSLCipherSuite=ECDH+AESGCM:ECDH+AES256:ECDH+AES128:RSA+AES:!aNULL:!MD5:!DSS SSLDisableCompression=true SSLHonorCipherOrder=true SSLVerifyClient=optional SSLProtocol=TLSv1 server=Prism Server connectionTimeout=6 keepAliveTimeout=6 maxKeepAliveRequests=100 maxThreads=150 maxPostSize=2097152 maxHeaderCount=50 maxHttpHeaderSize=8190 allowTrace=false / Starting services: service tomcat start Using CATALINA_BASE: /usr/share/apache-tomcat-7.0.54 Using CATALINA_HOME: /usr/share/apache-tomcat-7.0.54 Using CATALINA_TMPDIR: /usr/share/apache-tomcat-7.0.54/temp Using JRE_HOME:/usr/java/jdk1.8.0_05/jre Using CLASSPATH: /usr/share/apache-tomcat-7.0.54/bin/bootstrap.jar:/usr/share/apache-tomcat-7.0.54/bin/tomcat-juli.jar Tomcat started. logs/catalina.2014-06-12.log: Jun 12, 2014 1:30:20 PM org.apache.catalina.core.AprLifecycleListener init INFO: Loaded APR based Apache Tomcat Native library 1.1.30 using APR version 1.3.9. Jun 12, 2014 1:30:20 PM org.apache.catalina.core.AprLifecycleListener init INFO: APR capabilities: IPv6 [true], sendfile [true], accept filters [false], random [true ]. Jun 12, 2014 1:30:20 PM org.apache.catalina.core.AprLifecycleListener lifecycleEvent SEVERE: Failed to initialize the SSLEngine. org.apache.tomcat.jni.Error: 70023: This function has not been implemented on this platform at org.apache.tomcat.jni.SSL.initialize(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.ja va:43) at java.lang.reflect.Method.invoke(Method.java:483) at org.apache.catalina.core.AprLifecycleListener.initializeSSL(AprLifecycleListene r.java:270) at org.apache.catalina.core.AprLifecycleListener.lifecycleEvent(AprLifecycleListen er.java:124) at org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.j ava:117) at org.apache.catalina.util.LifecycleBase.fireLifecycleEvent(LifecycleBase.java:90 ) at org.apache.catalina.util.LifecycleBase.setStateInternal(LifecycleBase.java:402) at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:99) at org.apache.catalina.startup.Catalina.load(Catalina.java:638) at org.apache.catalina.startup.Catalina.load(Catalina.java:663) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.ja va:43) at java.lang.reflect.Method.invoke(Method.java:483) at org.apache.catalina.startup.Bootstrap.load(Bootstrap.java:280) at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:454) Jun 12, 2014 1:30:20 PM org.apache.coyote.AbstractProtocol init INFO: Initializing ProtocolHandler [http-apr-9443] Jun 12, 2014 1:30:20 PM org.apache.coyote.AbstractProtocol init SEVERE: Failed to initialize end point associated with ProtocolHandler [http-apr-9443] java.lang.Exception: Unable to create SSLContext. Check that SSLEngine is enabled in the AprLifecycleListener, the AprLifecycleListener has initialised correctly and that a valid SSLProtocol has been specified at org.apache.tomcat.util.net.AprEndpoint.bind(AprEndpoint.java:503) at org.apache.tomcat.util.net.AbstractEndpoint.init(AbstractEndpoint.java:640) at org.apache.coyote.AbstractProtocol.init(AbstractProtocol.java:434) at
[Bug 56027] Unable to use TCN on RHEL6 boxes if box is booted in fips mode
https://issues.apache.org/bugzilla/show_bug.cgi?id=56027 Simon Mijolovic smijolo...@nutanix.com changed: What|Removed |Added CC||smijolo...@nutanix.com -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
svn commit: r1605528 - in /tomcat/trunk: ./ res/ide-support/eclipse/ res/ide-support/netbeans/ res/maven/ webapps/docs/
Author: violetagg Date: Wed Jun 25 18:02:49 2014 New Revision: 1605528 URL: http://svn.apache.org/r1605528 Log: Fix https://issues.apache.org/bugzilla/show_bug.cgi?id=56543 Update to the Eclipse JDT Compiler 4.4 Modified: tomcat/trunk/build.properties.default tomcat/trunk/res/ide-support/eclipse/eclipse.classpath tomcat/trunk/res/ide-support/netbeans/nb-tomcat-build.properties tomcat/trunk/res/ide-support/netbeans/project.xml tomcat/trunk/res/maven/tomcat-embed-jasper.pom tomcat/trunk/res/maven/tomcat-jasper.pom tomcat/trunk/webapps/docs/changelog.xml Modified: tomcat/trunk/build.properties.default URL: http://svn.apache.org/viewvc/tomcat/trunk/build.properties.default?rev=1605528r1=1605527r2=1605528view=diff == --- tomcat/trunk/build.properties.default (original) +++ tomcat/trunk/build.properties.default Wed Jun 25 18:02:49 2014 @@ -128,15 +128,14 @@ wsdl4j-lib.home=${base.path}/wsdl4j-${ws wsdl4j-lib.loc=${base-maven.loc}/wsdl4j/wsdl4j/${wsdl4j-lib.version}/wsdl4j-${wsdl4j-lib.version}.jar wsdl4j-lib.jar=${wsdl4j-lib.home}/wsdl4j-${wsdl4j-lib.version}.jar -# - Eclipse JDT, version 4.4RC4 or later -# -jdt.version=4.4RC4 -jdt.release=S-4.4RC4-201406061215 +# - Eclipse JDT, version 4.4 or later -# +jdt.version=4.4 +jdt.release=R-4.4-201406061215 jdt.home=${base.path}/ecj-${jdt.version} jdt.jar=${jdt.home}/ecj-${jdt.version}.jar # The download will be moved to the archive area eventually. We are taking care of that in advance. jdt.loc.1=http://archive.eclipse.org/eclipse/downloads/drops4/${jdt.release}/ecj-${jdt.version}.jar jdt.loc.2=http://download.eclipse.org/eclipse/downloads/drops4/${jdt.release}/ecj-${jdt.version}.jar - # NPN support npn.version=8.1.2.v20120308 npn.home=${base.path}/npn-${npn.version} Modified: tomcat/trunk/res/ide-support/eclipse/eclipse.classpath URL: http://svn.apache.org/viewvc/tomcat/trunk/res/ide-support/eclipse/eclipse.classpath?rev=1605528r1=1605527r2=1605528view=diff == --- tomcat/trunk/res/ide-support/eclipse/eclipse.classpath (original) +++ tomcat/trunk/res/ide-support/eclipse/eclipse.classpath Wed Jun 25 18:02:49 2014 @@ -24,7 +24,7 @@ classpathentry kind=var path=ANT_HOME/lib/ant.jar/ classpathentry kind=var path=TOMCAT_LIBS_BASE/jaxrpc-1.1-rc4/geronimo-spec-jaxrpc-1.1-rc4.jar/ classpathentry kind=var path=TOMCAT_LIBS_BASE/wsdl4j-1.6.2/wsdl4j-1.6.2.jar/ -classpathentry kind=var path=TOMCAT_LIBS_BASE/ecj-4.4RC4/ecj-4.4RC4.jar/ +classpathentry kind=var path=TOMCAT_LIBS_BASE/ecj-4.4/ecj-4.4.jar/ classpathentry kind=var path=TOMCAT_LIBS_BASE/easymock-3.2/easymock-3.2.jar/ classpathentry kind=output path=.settings/output/ /classpath Modified: tomcat/trunk/res/ide-support/netbeans/nb-tomcat-build.properties URL: http://svn.apache.org/viewvc/tomcat/trunk/res/ide-support/netbeans/nb-tomcat-build.properties?rev=1605528r1=1605527r2=1605528view=diff == --- tomcat/trunk/res/ide-support/netbeans/nb-tomcat-build.properties (original) +++ tomcat/trunk/res/ide-support/netbeans/nb-tomcat-build.properties Wed Jun 25 18:02:49 2014 @@ -37,7 +37,7 @@ nb-test.io-method=org.apache.coyote.http # it is not possible to retrieve the classpaths from the build to # use in the NetBeans targets, so they must be explicitly declared -nb-test.classpath=${test.classes}:${tomcat.build}/webapps/examples/WEB-INF/classes:${base.path}/junit-4.11/junit-4.11.jar:${base.path}/easymock-3.2/easymock-3.2.jar:${base.path}/hamcrest-1.3/hamcrest-core-1.3.jar:${base.path}/ecj-4.4RC4/ecj-4.4RC4.jar:${tomcat.classes} +nb-test.classpath=${test.classes}:${tomcat.build}/webapps/examples/WEB-INF/classes:${base.path}/junit-4.11/junit-4.11.jar:${base.path}/easymock-3.2/easymock-3.2.jar:${base.path}/hamcrest-1.3/hamcrest-core-1.3.jar:${base.path}/ecj-4.4/ecj-4.4.jar:${tomcat.classes} # Extra properties used by the Tomcat project additional NetBeans targets. Modified: tomcat/trunk/res/ide-support/netbeans/project.xml URL: http://svn.apache.org/viewvc/tomcat/trunk/res/ide-support/netbeans/project.xml?rev=1605528r1=1605527r2=1605528view=diff == --- tomcat/trunk/res/ide-support/netbeans/project.xml (original) +++ tomcat/trunk/res/ide-support/netbeans/project.xml Wed Jun 25 18:02:49 2014 @@ -178,7 +178,7 @@ -- compilation-unit package-rootjava/package-root -classpath mode=compile${base.path}/jaxrpc-1.1-rc4/geronimo-spec-jaxrpc-1.1-rc4.jar:${base.path}/wsdl4j-1.6.2/wsdl4j-1.6.2.jar:${base.path}/ecj-4.4RC4/ecj-4.4RC4.jar:${ant.includes}//classpath +classpath
svn commit: r1605534 - in /tomcat/tc7.0.x/trunk: ./ build.properties.default res/ide-support/eclipse/eclipse.classpath res/maven/tomcat-embed-jasper.pom res/maven/tomcat-jasper.pom webapps/docs/change
Author: violetagg Date: Wed Jun 25 18:14:35 2014 New Revision: 1605534 URL: http://svn.apache.org/r1605534 Log: Fix https://issues.apache.org/bugzilla/show_bug.cgi?id=56543 Merged revision 1605528 from tomcat/trunk: Update to the Eclipse JDT Compiler 4.4 Modified: tomcat/tc7.0.x/trunk/ (props changed) tomcat/tc7.0.x/trunk/build.properties.default tomcat/tc7.0.x/trunk/res/ide-support/eclipse/eclipse.classpath tomcat/tc7.0.x/trunk/res/maven/tomcat-embed-jasper.pom tomcat/tc7.0.x/trunk/res/maven/tomcat-jasper.pom tomcat/tc7.0.x/trunk/webapps/docs/changelog.xml Propchange: tomcat/tc7.0.x/trunk/ -- Merged /tomcat/trunk:r1605528 Modified: tomcat/tc7.0.x/trunk/build.properties.default URL: http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/build.properties.default?rev=1605534r1=1605533r2=1605534view=diff == --- tomcat/tc7.0.x/trunk/build.properties.default (original) +++ tomcat/tc7.0.x/trunk/build.properties.default Wed Jun 25 18:14:35 2014 @@ -127,9 +127,9 @@ wsdl4j-lib.home=${base.path}/wsdl4j-${ws wsdl4j-lib.loc=${base-maven.loc}/wsdl4j/wsdl4j/${wsdl4j-lib.version}/wsdl4j-${wsdl4j-lib.version}.jar wsdl4j-lib.jar=${wsdl4j-lib.home}/wsdl4j-${wsdl4j-lib.version}.jar -# - Eclipse JDT, version 3.2 or later -# -jdt.version=P20140317-1600 -jdt.release=P20140317-1600 +# - Eclipse JDT, version 4.4 or later -# +jdt.version=4.4 +jdt.release=R-4.4-201406061215 jdt.home=${base.path}/ecj-${jdt.version} jdt.jar=${jdt.home}/ecj-${jdt.version}.jar # The download will be moved to the archive area eventually. We are taking care of that in advance. Modified: tomcat/tc7.0.x/trunk/res/ide-support/eclipse/eclipse.classpath URL: http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/res/ide-support/eclipse/eclipse.classpath?rev=1605534r1=1605533r2=1605534view=diff == --- tomcat/tc7.0.x/trunk/res/ide-support/eclipse/eclipse.classpath (original) +++ tomcat/tc7.0.x/trunk/res/ide-support/eclipse/eclipse.classpath Wed Jun 25 18:14:35 2014 @@ -25,6 +25,6 @@ classpathentry kind=var path=TOMCAT_LIBS_BASE/tomcat7-deps/dbcp/tomcat-dbcp.jar sourcepath=/TOMCAT_LIBS_BASE/tomcat7-deps/dbcp/src/java/ classpathentry kind=var path=TOMCAT_LIBS_BASE/jaxrpc-1.1-rc4/geronimo-spec-jaxrpc-1.1-rc4.jar/ classpathentry kind=var path=TOMCAT_LIBS_BASE/wsdl4j-1.6.2/wsdl4j-1.6.2.jar/ -classpathentry kind=var path=TOMCAT_LIBS_BASE/ecj-P20140317-1600/ecj-P20140317-1600.jar/ +classpathentry kind=var path=TOMCAT_LIBS_BASE/ecj-4.4/ecj-4.4.jar/ classpathentry kind=output path=.settings/output/ /classpath Modified: tomcat/tc7.0.x/trunk/res/maven/tomcat-embed-jasper.pom URL: http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/res/maven/tomcat-embed-jasper.pom?rev=1605534r1=1605533r2=1605534view=diff == --- tomcat/tc7.0.x/trunk/res/maven/tomcat-embed-jasper.pom (original) +++ tomcat/tc7.0.x/trunk/res/maven/tomcat-embed-jasper.pom Wed Jun 25 18:14:35 2014 @@ -45,7 +45,7 @@ dependency groupIdorg.eclipse.jdt.core.compiler/groupId artifactIdecj/artifactId - versionP20140317-1600/version + version4.4/version /dependency /dependencies /project Modified: tomcat/tc7.0.x/trunk/res/maven/tomcat-jasper.pom URL: http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/res/maven/tomcat-jasper.pom?rev=1605534r1=1605533r2=1605534view=diff == --- tomcat/tc7.0.x/trunk/res/maven/tomcat-jasper.pom (original) +++ tomcat/tc7.0.x/trunk/res/maven/tomcat-jasper.pom Wed Jun 25 18:14:35 2014 @@ -57,7 +57,7 @@ dependency groupIdorg.eclipse.jdt.core.compiler/groupId artifactIdecj/artifactId - versionP20140317-1600/version + version4.4/version /dependency dependency groupIdorg.apache.tomcat/groupId Modified: tomcat/tc7.0.x/trunk/webapps/docs/changelog.xml URL: http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/webapps/docs/changelog.xml?rev=1605534r1=1605533r2=1605534view=diff == --- tomcat/tc7.0.x/trunk/webapps/docs/changelog.xml (original) +++ tomcat/tc7.0.x/trunk/webapps/docs/changelog.xml Wed Jun 25 18:14:35 2014 @@ -179,6 +179,9 @@ follows a whitespace. (kkolinko/markt) /fix fix +bug56543/bug: Update to the Eclipse JDT Compiler 4.4. (violetagg) + /fix + fix bug56561/bug: Avoid codeNoSuchElementException/code while handling attributes with empty string value. (violetagg) /fix - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For
[Bug 56543] Jasper fails to compile JSP pages when running with JDK 1.8
https://issues.apache.org/bugzilla/show_bug.cgi?id=56543 Violeta Georgieva violet...@apache.org changed: What|Removed |Added Status|NEW |RESOLVED Resolution|--- |FIXED --- Comment #8 from Violeta Georgieva violet...@apache.org --- JDT has been updated to version 4.4 in trunk for 8.0.10 and in 7.0.x for 7.0.55 onwards. -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
svn commit: r1605561 - in /tomcat/trunk: build.xml java/org/apache/tomcat/buildutil/SignCode.java
Author: markt Date: Wed Jun 25 19:11:03 2014 New Revision: 1605561 URL: http://svn.apache.org/r1605561 Log: Add the initial hooks to get the Windows binaries signed by Symantec's code signing service. This work is still at the evaluation stage. Added: tomcat/trunk/java/org/apache/tomcat/buildutil/SignCode.java (with props) Modified: tomcat/trunk/build.xml Modified: tomcat/trunk/build.xml URL: http://svn.apache.org/viewvc/tomcat/trunk/build.xml?rev=1605561r1=1605560r2=1605561view=diff == --- tomcat/trunk/build.xml (original) +++ tomcat/trunk/build.xml Wed Jun 25 19:11:03 2014 @@ -2088,8 +2088,25 @@ Apache Tomcat ${version} native binaries /antcall /target + target name=sign-windows-binaries depends=installer + +taskdef name=signcode + classname=org.apache.tomcat.buildutil.SignCode + classpath=${tomcat.classes} / + +signcode + fileset dir=${tomcat.release} +filename name=v${version}/bin/${final.name}.exe/ + /fileset + fileset dir=${tomcat.dist}/bin +include name=**/*.exe/ + /fileset +/signcode + + /target + target name=release - depends=clean,release-init,dist-deployer,installer,package-zip,package-winzip,package-tgz,package-deployer-zip,package-deployer-tgz,javadoc,package-docs-tgz,package-src-zip,package-src-tgz,package-src-jar + depends=clean,release-init,dist-deployer,sign-windows-binaries,package-zip,package-winzip,package-tgz,package-deployer-zip,package-deployer-tgz,javadoc,package-docs-tgz,package-src-zip,package-src-tgz,package-src-jar description=Create a Tomcat packaged distribution copy file=KEYS Added: tomcat/trunk/java/org/apache/tomcat/buildutil/SignCode.java URL: http://svn.apache.org/viewvc/tomcat/trunk/java/org/apache/tomcat/buildutil/SignCode.java?rev=1605561view=auto == --- tomcat/trunk/java/org/apache/tomcat/buildutil/SignCode.java (added) +++ tomcat/trunk/java/org/apache/tomcat/buildutil/SignCode.java Wed Jun 25 19:11:03 2014 @@ -0,0 +1,61 @@ +/* +* Licensed to the Apache Software Foundation (ASF) under one or more +* contributor license agreements. See the NOTICE file distributed with +* this work for additional information regarding copyright ownership. +* The ASF licenses this file to You under the Apache License, Version 2.0 +* (the License); you may not use this file except in compliance with +* the License. You may obtain a copy of the License at +* +* http://www.apache.org/licenses/LICENSE-2.0 +* +* Unless required by applicable law or agreed to in writing, software +* distributed under the License is distributed on an AS IS BASIS, +* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +* See the License for the specific language governing permissions and +* limitations under the License. +*/ +package org.apache.tomcat.buildutil; + +import java.io.File; +import java.util.ArrayList; +import java.util.List; + +import org.apache.tools.ant.BuildException; +import org.apache.tools.ant.DirectoryScanner; +import org.apache.tools.ant.Task; +import org.apache.tools.ant.types.FileSet; + +/** + * Ant task that submits a file to the Symantec code-signing service. + */ +public class SignCode extends Task { + +private final ListFileSet filesets = new ArrayList(); + + +public void addFileset(FileSet fileset) { +filesets.add(fileset); +} + + +@Override +public void execute() throws BuildException { + +ListFile filesToSign = new ArrayList(); + +// Process the filesets and populate the list of files that need to be +// signed. +for (FileSet fileset : filesets) { +DirectoryScanner ds = fileset.getDirectoryScanner(getProject()); +File basedir = ds.getBasedir(); +String[] files = ds.getIncludedFiles(); +if (files.length 0) { +for (int i = 0; i files.length; i++) { +File file = new File(basedir, files[i]); +filesToSign.add(file); +log(TODO: Sign + file.getAbsolutePath()); +} +} +} +} +} Propchange: tomcat/trunk/java/org/apache/tomcat/buildutil/SignCode.java -- svn:eol-style = native - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 50604] Incorrect dependency in jasper.pom for eclipse ecj
https://issues.apache.org/bugzilla/show_bug.cgi?id=50604 --- Comment #11 from Konstantin Kolinko knst.koli...@gmail.com --- (In reply to Mark Thomas from comment #7) I think e) is not possible, because Eclipse uses a different license. An additional idea: g) Remove that dependency. (At least mark it optional). First, Tomcat can be used with javac compiler from JDK. Second, if someone wants to re-bundle the ecj jar, I think they can depend on the Binary distribution bundle of Tomcat (the one that publishes zip and tar.gz) and unzip ecj.jar from within the lib/ directory there. I also discovered that the version number of the JAR is not 4.4.RC4 but 3.10.0.v20140604-1726. It is no wonder. Each component in Eclipse has its own version like that. The f) option sounds interesting. I do not know what it actually looks like. How it works? (Are there some examples, precedents?) In general, is it possible to teach Maven to download some known version of a dependency from some fixed known location (like our Ant script downloads from sourceforge.net and from eclipse.org)? -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
Re: svn commit: r1605561 - in /tomcat/trunk: build.xml java/org/apache/tomcat/buildutil/SignCode.java
2014-06-25 23:11 GMT+04:00 ma...@apache.org: Author: markt Date: Wed Jun 25 19:11:03 2014 New Revision: 1605561 URL: http://svn.apache.org/r1605561 Log: Add the initial hooks to get the Windows binaries signed by Symantec's code signing service. This work is still at the evaluation stage. Added: tomcat/trunk/java/org/apache/tomcat/buildutil/SignCode.java (with props) Modified: tomcat/trunk/build.xml Modified: tomcat/trunk/build.xml URL: http://svn.apache.org/viewvc/tomcat/trunk/build.xml?rev=1605561r1=1605560r2=1605561view=diff == --- tomcat/trunk/build.xml (original) +++ tomcat/trunk/build.xml Wed Jun 25 19:11:03 2014 @@ -2088,8 +2088,25 @@ Apache Tomcat ${version} native binaries /antcall /target + target name=sign-windows-binaries depends=installer + I think this target should be conditioned on some if property, so that it can be easily skipped if Tomcat is being rebuilt by some third party. Best regards, Konstantin Kolinko - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
RE: [Bug 56027] Unable to use TCN on RHEL6 boxes if box is booted in fips mode
I tested TCN 1_1_30 with Tomcat 6 (which our app uses) and everything appears to work just fine. I haven't updated our install to try working with Tomcat 7. This is on a CentOS 6.5 (yum updated) box with fips mode enabled at boot, and a server.xml similar to yours. Just looking quickly at your log I'm concerned about the 'Failed to initialize the SSLEngine' message near the beginning. As I recall I use to see this if I explictly tried to initialize the SSL Engine twice - which openssl throws an exception on. -R From: bugzi...@apache.org [bugzi...@apache.org] Sent: Wednesday, June 25, 2014 12:56 PM To: dev@tomcat.apache.org Subject: [Bug 56027] Unable to use TCN on RHEL6 boxes if box is booted in fips mode https://issues.apache.org/bugzilla/show_bug.cgi?id=56027 Simon Mijolovic smijolo...@nutanix.com changed: What|Removed |Added Status|RESOLVED|REOPENED Version|1.1.29 |1.1.30 Resolution|FIXED |--- --- Comment #19 from Simon Mijolovic smijolo...@nutanix.com --- Still running into this issue where the APR library won't load when in fips mode using the FIPS validated OpenSSL library. CentOS 6.5 with OpenSSL 1.0.1e-16..el6_5.x86_64, and /boot/grub/grub.conf has fips=1 (prelink disabled, dracut -f, reboot shows cat /proc/sys/crypto/fips_enabled = 1) Tomcat 7.0.54 running, and compiled the tcnative APR lib with: ./configure --with-apr=`which apr-1-config` --with-java-home=/usr/java/jdk1.8.0_05 --with-ssl=yes --prefix=/usr/share/apache-tomcat-7.0.54 Setenv.sh: #!/bin/bash umask 0026 LD_LIBRARY_PATH=/usr/share/apache-tomcat-7.0.54/lib:$LD_LIBRARY_PATH export LD_LIBRARY_PATH Server.xml: Listener className=org.apache.catalina.core.AprLifecycleListener SSLEngine=on / Connector.xml: Connector clientAuth=false port=9443 protocol=HTTP/1.1 SSLEnabled=true scheme=https secure=true SSLCertificateFile=/etc/private/rsacert.pem SSLCertificateKeyFile=/etc/private/rsakey.pem SSLCipherSuite=ECDH+AESGCM:ECDH+AES256:ECDH+AES128:RSA+AES:!aNULL:!MD5:!DSS SSLDisableCompression=true SSLHonorCipherOrder=true SSLVerifyClient=optional SSLProtocol=TLSv1 server=Prism Server connectionTimeout=6 keepAliveTimeout=6 maxKeepAliveRequests=100 maxThreads=150 maxPostSize=2097152 maxHeaderCount=50 maxHttpHeaderSize=8190 allowTrace=false / Starting services: service tomcat start Using CATALINA_BASE: /usr/share/apache-tomcat-7.0.54 Using CATALINA_HOME: /usr/share/apache-tomcat-7.0.54 Using CATALINA_TMPDIR: /usr/share/apache-tomcat-7.0.54/temp Using JRE_HOME:/usr/java/jdk1.8.0_05/jre Using CLASSPATH: /usr/share/apache-tomcat-7.0.54/bin/bootstrap.jar:/usr/share/apache-tomcat-7.0.54/bin/tomcat-juli.jar Tomcat started. logs/catalina.2014-06-12.log: Jun 12, 2014 1:30:20 PM org.apache.catalina.core.AprLifecycleListener init INFO: Loaded APR based Apache Tomcat Native library 1.1.30 using APR version 1.3.9. Jun 12, 2014 1:30:20 PM org.apache.catalina.core.AprLifecycleListener init INFO: APR capabilities: IPv6 [true], sendfile [true], accept filters [false], random [true ]. Jun 12, 2014 1:30:20 PM org.apache.catalina.core.AprLifecycleListener lifecycleEvent SEVERE: Failed to initialize the SSLEngine. org.apache.tomcat.jni.Error: 70023: This function has not been implemented on this platform at org.apache.tomcat.jni.SSL.initialize(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.ja va:43) at java.lang.reflect.Method.invoke(Method.java:483) at org.apache.catalina.core.AprLifecycleListener.initializeSSL(AprLifecycleListene r.java:270) at org.apache.catalina.core.AprLifecycleListener.lifecycleEvent(AprLifecycleListen er.java:124) at org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.j ava:117) at org.apache.catalina.util.LifecycleBase.fireLifecycleEvent(LifecycleBase.java:90 ) at org.apache.catalina.util.LifecycleBase.setStateInternal(LifecycleBase.java:402) at org.apache.catalina.util.LifecycleBase.init(LifecycleBase.java:99) at org.apache.catalina.startup.Catalina.load(Catalina.java:638) at org.apache.catalina.startup.Catalina.load(Catalina.java:663) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.ja va:43) at java.lang.reflect.Method.invoke(Method.java:483) at org.apache.catalina.startup.Bootstrap.load(Bootstrap.java:280) at
[Bug 56596] OpenSSL 1.0.1g is vulnerable to a man-in-the-middle attack
https://issues.apache.org/bugzilla/show_bug.cgi?id=56596 --- Comment #3 from Klemen Novak klemen.no...@mikrocop.com --- Is there anyone working on this problem? Please fix the issue as soon as possible. Thank you. -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 50604] Incorrect dependency in jasper.pom for eclipse ecj
https://issues.apache.org/bugzilla/show_bug.cgi?id=50604 --- Comment #12 from Mark Thomas ma...@apache.org --- (In reply to Konstantin Kolinko from comment #11) (In reply to Mark Thomas from comment #7) I think e) is not possible, because Eclipse uses a different license. The license looks OK as long as we only ship the package renamed binary. I don't think we'd be able to ship the source. Keep in mind we used to do some major re-packaging of Eclipse JARs and that wasn't an issue. An additional idea: g) Remove that dependency. (At least mark it optional). First, Tomcat can be used with javac compiler from JDK. Second, if someone wants to re-bundle the ecj jar, I think they can depend on the Binary distribution bundle of Tomcat (the one that publishes zip and tar.gz) and unzip ecj.jar from within the lib/ directory there. That is about the same level of pain that folks see at the moment (and what I'd like to avoid). I also discovered that the version number of the JAR is not 4.4.RC4 but 3.10.0.v20140604-1726. It is no wonder. Each component in Eclipse has its own version like that. The f) option sounds interesting. I do not know what it actually looks like. How it works? (Are there some examples, precedents?) I experimented with the tycho plugin but couldn't get it to use the p2 repo. The issue remains with that option of buidl tools other than Maven that use maven central and can't talk to p2 repositories. In general, is it possible to teach Maven to download some known version of a dependency from some fixed known location (like our Ant script downloads from sourceforge.net and from eclipse.org)? As far as my research shows, no. -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
Re: svn commit: r1605561 - in /tomcat/trunk: build.xml java/org/apache/tomcat/buildutil/SignCode.java
On 25/06/2014 20:26, Konstantin Kolinko wrote: 2014-06-25 23:11 GMT+04:00 ma...@apache.org: Author: markt Date: Wed Jun 25 19:11:03 2014 New Revision: 1605561 URL: http://svn.apache.org/r1605561 Log: Add the initial hooks to get the Windows binaries signed by Symantec's code signing service. This work is still at the evaluation stage. Added: tomcat/trunk/java/org/apache/tomcat/buildutil/SignCode.java (with props) Modified: tomcat/trunk/build.xml Modified: tomcat/trunk/build.xml URL: http://svn.apache.org/viewvc/tomcat/trunk/build.xml?rev=1605561r1=1605560r2=1605561view=diff == --- tomcat/trunk/build.xml (original) +++ tomcat/trunk/build.xml Wed Jun 25 19:11:03 2014 @@ -2088,8 +2088,25 @@ Apache Tomcat ${version} native binaries /antcall /target + target name=sign-windows-binaries depends=installer + I think this target should be conditioned on some if property, so that it can be easily skipped if Tomcat is being rebuilt by some third party. +1. Mark - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 56673] New: Tomcat Websocket 8.0.8 Java Standalone Client Session.getId() returns 0
https://issues.apache.org/bugzilla/show_bug.cgi?id=56673 Bug ID: 56673 Summary: Tomcat Websocket 8.0.8 Java Standalone Client Session.getId() returns 0 Product: Tomcat 8 Version: 8.0.8 Hardware: PC Status: NEW Severity: major Priority: P2 Component: WebSocket Assignee: dev@tomcat.apache.org Reporter: tellercapi...@gmail.com I'm currently testing various Java websocket standalone client containers with a simple test application where the standalone Java client app makes a websocket connection to a Wildfly 8.0.0.Final app server running on the same machine. For the Tomcat client container, the client app uses the following Maven dependencies: dependency groupIdjavax.websocket/groupId artifactIdjavax.websocket-api/artifactId version1.0/version /dependency dependency groupIdorg.apache.tomcat/groupId artifactIdtomcat-websocket/artifactId version8.0.8/version /dependency dependency groupIdorg.apache.tomcat/groupId artifactIdtomcat-coyote/artifactId version8.0.8/version /dependency Everything works fine: the client is able to successfully connect to the server, send messages and receive messages. The only problem that I've encountered is that on each of the callback methods on the client, the Session parameter doesn't contain the correct Session id, i.e. calling session.getId() returns 0. On the server side, the callback session params contain the session id, so I know that it being created correctly on the server, just not sent to the client. ** CLIENT CODE: @ClientEndpoint() public class MyClientEndpoint { private static CountDownLatch latch; public void connect(URI endpointURI) { try { WebSocketContainer container = ContainerProvider.getWebSocketContainer(); System.out.println(container = + container); container.connectToServer(MyClientEndpoint.class, endpointURI); } catch (Exception e) { System.out.println(Exception trying to connect); latch.countDown(); throw new RuntimeException(e); } } @OnMessage public void onMessage(Session pSession, String message) { System.out.println(Received message: + message + from Session: + pSession.getId()); if (message.equalsIgnoreCase(goodbye)) { try { pSession.close(); } catch (IOException e) { e.printStackTrace(); } } } @OnOpen public void onOpen(Session pSession) { System.out.println(Session Opened Successfully: + pSession.getId()); System.out.println(Session class = + pSession.getClass().getName()); try { pSession.getBasicRemote().sendText(Hello!); } catch (IOException e) { e.printStackTrace(); } } @OnClose public void onClose(Session pSession) { System.out.println(Session Closed: + pSession.getId()); latch.countDown(); } @OnError public void onError(Session pSession, Throwable pThrowable) { System.out.println(Received Error: ); try { pSession.close(); } catch (IOException e) { } latch.countDown(); pThrowable.printStackTrace(); } public static void main(String[] args) { latch = new CountDownLatch(1); String uriString = ws://localhost/test; try { URI uri = new URI(uriString); SampleClientEndpoint client = new SampleClientEndpoint(); client.connect(uri); latch.await(); } catch (URISyntaxException | InterruptedException e) { throw new RuntimeException(e); } } } ** SERVER CODE: @ServerEndpoint(/test) public class MyServerEndpoint { @OnMessage public void onMessage(Session pSession, String message) { System.out.println(Received message: + message + from Session: + pSession.getId()); } @OnOpen public void onOpen(Session pSession) { System.out.println(Session Opened Successfully: + pSession.getId()); try { for (int i = 1; i 5; i++) { pSession.getBasicRemote().sendText(hello + i); } pSession.getBasicRemote().sendText(goodbye); } catch (IOException e) { e.printStackTrace(); } } @OnClose public void onClose(Session pSession) { System.out.println(Session Closed: + pSession.getId()); } @OnError public void onError(Session pSession,
[Bug 56596] OpenSSL 1.0.1g is vulnerable to a man-in-the-middle attack
https://issues.apache.org/bugzilla/show_bug.cgi?id=56596 --- Comment #4 from Konstantin Kolinko knst.koli...@gmail.com --- (In reply to Klemen Novak from comment #3) Is there anyone working on this problem? One person, and it looks that it is not going very well. The progress is discussed in issue 56363 and on dev mailing list. Help is welcome. -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 56143] Allow service.bat install to be used in an non-UAC cmd.exe session
https://issues.apache.org/bugzilla/show_bug.cgi?id=56143 --- Comment #5 from Konstantin Kolinko knst.koli...@gmail.com --- (In reply to Abdul Wahid from comment #4) You are asking on a different topic. Your question cannot be answered here. -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 56596] OpenSSL 1.0.1g is vulnerable to a man-in-the-middle attack
https://issues.apache.org/bugzilla/show_bug.cgi?id=56596 --- Comment #5 from jeffrey.jan...@polydyne.com --- I went ahead and downloaded MS Visual Studio Express today in hopes of trying to do my own build based on Mladen's instructions in Bug 56363. Unfortunately, I'm juggling a half-dozen other time-critical projects right now, and that's as far as I've gotten. Again, does anyone know if there is a way to mitigate the problem? Perhaps limit the cipher list to strongest ciphers only? -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 56673] Tomcat Websocket 8.0.8 Java Standalone Client Session.getId() returns 0
https://issues.apache.org/bugzilla/show_bug.cgi?id=56673 Konstantin Kolinko knst.koli...@gmail.com changed: What|Removed |Added Status|NEW |RESOLVED Resolution|--- |INVALID OS||All --- Comment #1 from Konstantin Kolinko knst.koli...@gmail.com --- (In reply to John Teller from comment #0) dependency groupIdjavax.websocket/groupId artifactIdjavax.websocket-api/artifactId version1.0/version /dependency 1. You should use the API jar provided by Tomcat instead of the above one. That would be dependency groupIdorg.apache.tomcat/groupId artifactIdtomcat-websocket-api/artifactId version8.0.8/version /dependency 2. Your expectations are wrong. There is no error here. There is no session in WebSocket protocol (RFC6455). A Session is just a way to represent an established connection in Java API. If both ends of the connection are implemented in Java, each end has its own implementation of Session with its own ID. The Session ID is not transmitted across the wire. Tomcat uses a counter that starts with 0. // WsSession.java this.id = Long.toHexString(ids.getAndIncrement()); 3. Bugzilla is not a support forum. -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 56649] Concurrent issue of TagFileProcessor
https://issues.apache.org/bugzilla/show_bug.cgi?id=56649 --- Comment #4 from Daniel Koh howeverk...@gmail.com --- (In reply to Mark Thomas from comment #2) The JSP servlet is not designed to support more than one instance per web application. Before this gets resolved as invalid (possibly with an update to the docs to make the single instance point clear) what is your use case for configuring more than one JSP servlet? different Jsp options to be applied to different url-mappings. (for instance, an option like genStringAsCharArray to be applied to to specific Jsps with a large String) allowing to register multiple Jsps will give users an impression that configuring as above is possible. What about throwing an exception when multiple JspServlets are registered in web.xml to make it clear that multiple Jsps are not allowed? -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org