SSL Unit Tests Failing
When trying to run the unit test cases with `ant clean test` on the current trunk [1] I am getting two (per connector) failures: org.apache.tomcat.util.net.openssl.ciphers.TestCipher FAILED [2] org.apache.tomcat.util.net.openssl.ciphers.TestOpenSSLCipherConfigurationParser FAILED [3] Server version: Apache Tomcat/9.0.13-dev Server built: Oct 2 2018 05:24:55 UTC Server number: 9.0.13.0 OS Name:Linux OS Version: 4.18.9-200.fc28.x86_64 Architecture: amd64 JVM Version:1.8.0_181-b13 JVM Vendor: Oracle Corporation Am I missing something? Other than the obvious "missing ciphers", that is. Thanks, Igal [1] git-svn-id: https://svn.apache.org/repos/asf/tomcat/trunk@1842498 13f79535-47bb-0310-9956-ffa450edef68 [2] Testsuite: org.apache.tomcat.util.net.openssl.ciphers.TestCipher Tests run: 3, Failures: 2, Errors: 0, Skipped: 0, Time elapsed: 0.697 sec Testcase: testNames took 0.168 sec Testcase: testAllOpenSSLCiphersMapped took 0.361 sec FAILED No mapping found in IBM's JSSE implementation for ECDHE-PSK-3DES-EDE-CBC-SHA+TLSv1 when one was expected junit.framework.AssertionFailedError: No mapping found in IBM's JSSE implementation for ECDHE-PSK-3DES-EDE-CBC-SHA+TLSv1 when one was expected at org.apache.tomcat.util.net.openssl.ciphers.TestCipher.testAllOpenSSLCiphersMapped(TestCipher.java:66) Testcase: testOpenSSLCipherAvailability took 0.06 sec FAILED ECDHE-ARIA128-GCM-SHA256+TLSv1.2 DHE-RSA-ARIA128-GCM-SHA256+TLSv1.2 DHE-DSS-ARIA256-GCM-SHA384+TLSv1.2 ECDHE-ECDSA-ARIA128-GCM-SHA256+TLSv1.2 ARIA256-GCM-SHA384+TLSv1.2 ECDHE-ARIA256-GCM-SHA384+TLSv1.2 DHE-RSA-ARIA256-GCM-SHA384+TLSv1.2 RSA-PSK-ARIA256-GCM-SHA384+TLSv1.2 ECDHE-ECDSA-ARIA256-GCM-SHA384+TLSv1.2 ARIA128-GCM-SHA256+TLSv1.2 DHE-PSK-ARIA128-GCM-SHA256+TLSv1.2 RSA-PSK-ARIA128-GCM-SHA256+TLSv1.2 DHE-DSS-ARIA128-GCM-SHA256+TLSv1.2 PSK-ARIA256-GCM-SHA384+TLSv1.2 DHE-PSK-ARIA256-GCM-SHA384+TLSv1.2 PSK-ARIA128-GCM-SHA256+TLSv1.2 expected:<0> but was:<16> junit.framework.AssertionFailedError: ECDHE-ARIA128-GCM-SHA256+TLSv1.2 DHE-RSA-ARIA128-GCM-SHA256+TLSv1.2 DHE-DSS-ARIA256-GCM-SHA384+TLSv1.2 ECDHE-ECDSA-ARIA128-GCM-SHA256+TLSv1.2 ARIA256-GCM-SHA384+TLSv1.2 ECDHE-ARIA256-GCM-SHA384+TLSv1.2 DHE-RSA-ARIA256-GCM-SHA384+TLSv1.2 RSA-PSK-ARIA256-GCM-SHA384+TLSv1.2 ECDHE-ECDSA-ARIA256-GCM-SHA384+TLSv1.2 ARIA128-GCM-SHA256+TLSv1.2 DHE-PSK-ARIA128-GCM-SHA256+TLSv1.2 RSA-PSK-ARIA128-GCM-SHA256+TLSv1.2 DHE-DSS-ARIA128-GCM-SHA256+TLSv1.2 PSK-ARIA256-GCM-SHA384+TLSv1.2 DHE-PSK-ARIA256-GCM-SHA384+TLSv1.2 PSK-ARIA128-GCM-SHA256+TLSv1.2 expected:<0> but was:<16> at org.apache.tomcat.util.net.openssl.ciphers.TestCipher.testOpenSSLCipherAvailability(TestCipher.java:100) [3] Testsuite: org.apache.tomcat.util.net.openssl.ciphers.TestOpenSSLCipherConfigurationParser Tests run: 86, Failures: 40, Errors: 0, Skipped: 1, Time elapsed: 5.473 sec - Standard Error - Error in cipher list 140015003477824:error:1410D0B9:SSL routines:SSL_CTX_set_cipher_list:no cipher match:ssl/ssl_lib.c:2193: Error in cipher list 140182557382464:error:1410D0B9:SSL routines:SSL_CTX_set_cipher_list:no cipher match:ssl/ssl_lib.c:2193: Error in cipher list 140372866819904:error:1410D0B9:SSL routines:SSL_CTX_set_cipher_list:no cipher match:ssl/ssl_lib.c:2193: Error in cipher list 139680405661504:error:1410D0B9:SSL routines:SSL_CTX_set_cipher_list:no cipher match:ssl/ssl_lib.c:2193: Error in cipher list 140699554305856:error:1410D0B9:SSL routines:SSL_CTX_set_cipher_list:no cipher match:ssl/ssl_lib.c:2193: Error in cipher list 139897177433920:error:1410D0B9:SSL routines:SSL_CTX_set_cipher_list:no cipher match:ssl/ssl_lib.c:2193: Error in cipher list 139891985295168:error:1410D0B9:SSL routines:SSL_CTX_set_cipher_list:no cipher match:ssl/ssl_lib.c:2193: Error in cipher list 140442752255808:error:1410D0B9:SSL routines:SSL_CTX_set_cipher_list:no cipher match:ssl/ssl_lib.c:2193: Error in cipher list 139855064180544:error:1410D0B9:SSL routines:SSL_CTX_set_cipher_list:no cipher match:ssl/ssl_lib.c:2193: Error in cipher list 140598129956672:error:1410D0B9:SSL routines:SSL_CTX_set_cipher_list:no cipher match:ssl/ssl_lib.c:2193: Error in cipher list 139768227612480:error:1410D0B9:SSL routines:SSL_CTX_set_cipher_list:no cipher match:ssl/ssl_lib.c:2193: Error in cipher list 139839666202432:error:1410D0B9:SSL routines:SSL_CTX_set_cipher_list:no cipher match:ssl/ssl_lib.c:2193: Error in cipher list 140216997062464:error:1410D0B9:SSL routines:SSL_CTX_set_cipher_list:no cipher match:ssl/ssl_lib.c:2193: Error in cipher list 140194450589504:error:1410D0B9:SSL routines:SSL_CTX_set_cipher_list:no cipher match:ssl/ssl_lib.c:2193: Error in cipher list 140636605155136:error:1410D0B9:SSL routines:SSL_CTX_set_cipher_list:no cipher match:ssl/ssl_lib.c:2193: Testcase: testARIA128 took 0.535 sec FAILED Expected 8 ciphers but got 0 for the specification 'ARIA128' expected:<[TLS_DHE_DSS_WITH_ARIA_128_GCM_SHA256,
[GUMP@vmgump-vm3]: Project tomcat-trunk-test-nio2 (in module tomcat-trunk) failed
To whom it may engage... This is an automated request, but not an unsolicited one. For more information please visit http://gump.apache.org/nagged.html, and/or contact the folk at gene...@gump.apache.org. Project tomcat-trunk-test-nio2 has an issue affecting its community integration. This issue affects 1 projects, and has been outstanding for 3 runs. The current state of this project is 'Failed', with reason 'Build Failed'. For reference only, the following projects are affected by this: - tomcat-trunk-test-nio2 : Tomcat 9.x, a web server implementing the Java Servlet 4.0, ... Full details are available at: http://vmgump-vm3.apache.org/tomcat-trunk/tomcat-trunk-test-nio2/index.html That said, some information snippets are provided here. The following annotations (debug/informational/warning/error messages) were provided: -DEBUG- Dependency on bnd exists, no need to add for property bndlib.jar. -INFO- Failed with reason build failed -INFO- Project Reports in: /srv/gump/public/workspace/tomcat-trunk/output/logs-NIO2 -INFO- Project Reports in: /srv/gump/public/workspace/tomcat-trunk/output/test-tmp-NIO2/logs -WARNING- No directory [/srv/gump/public/workspace/tomcat-trunk/output/test-tmp-NIO2/logs] The following work was performed: http://vmgump-vm3.apache.org/tomcat-trunk/tomcat-trunk-test-nio2/gump_work/build_tomcat-trunk_tomcat-trunk-test-nio2.html Work Name: build_tomcat-trunk_tomcat-trunk-test-nio2 (Type: Build) Work ended in a state of : Failed Elapsed: 24 mins 20 secs Command Line: /usr/lib/jvm/java-8-oracle/bin/java -Djava.awt.headless=true -Dbuild.sysclasspath=only -Dsun.zip.disableMemoryMapping=true org.apache.tools.ant.Main -Dgump.merge=/srv/gump/public/gump/work/merge.xml -Djunit.jar=/srv/gump/public/workspace/junit/target/junit-4.13-SNAPSHOT.jar -Djava.net.preferIPv4Stack=/srv/gump/public/workspace/tomcat-trunk/true -Dobjenesis.jar=/srv/gump/public/workspace/objenesis/main/target/objenesis-2.7-SNAPSHOT.jar -Dtest.reports=output/logs-NIO2 -Dexecute.test.nio2=true -Dexamples.sources.skip=true -Dbase.path=/srv/gump/public/workspace/tomcat-trunk/tomcat-build-libs -Djdt.jar=/srv/gump/packages/eclipse/plugins/R-4.7.3a-201803300640/ecj-4.7.3a.jar -Dbndlib.jar=/srv/gump/packages/bnd/bndlib-4.0.0/biz.aQute.bndlib-4.0.0.jar -Dcommons-daemon.jar=/srv/gump/public/workspace/apache-commons/daemon/target/commons-daemon-1.1.1-SNAPSHOT.jar -Dtest.openssl.path=/srv/gump/public/workspace/openssl-master/dest-20181002/bin/openssl -Dtest.temp=output/test-tmp-NIO2 -Dtest.accesslog=true -Dexecute.test.nio=false -Dbnd.jar=/srv/gump/packages/bnd/bnd-4.0.0/biz.aQute.bnd-4.0.0.jar -Dexecute.test.apr=false -Dtest.excludePerformance=true -Dtest.relaxTiming=true -Deasymock.jar=/srv/gump/public/workspace/easymock/core/target/easymock-3.7-SNAPSHOT.jar -Dhamcrest.jar=/srv/gump/packages/hamcrest/hamcrest-core-1.3.jar -Dcglib.jar=/srv/gump/packages/cglib/cglib-nodep-2.2.jar test [Working Directory: /srv/gump/public/workspace/tomcat-trunk] CLASSPATH: /usr/lib/jvm/java-8-oracle/lib/tools.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/webapps/examples/WEB-INF/classes:/srv/gump/public/workspace/tomcat-trunk/output/testclasses:/srv/gump/public/workspace/ant/dist/lib/ant.jar:/srv/gump/public/workspace/ant/dist/lib/ant-launcher.jar:/srv/gump/public/workspace/ant/dist/lib/ant-jmf.jar:/srv/gump/public/workspace/ant/dist/lib/ant-junit.jar:/srv/gump/public/workspace/ant/dist/lib/ant-junit4.jar:/srv/gump/public/workspace/ant/dist/lib/ant-swing.jar:/srv/gump/public/workspace/ant/dist/lib/ant-apache-resolver.jar:/srv/gump/public/workspace/ant/dist/lib/ant-apache-xalan2.jar:/srv/gump/public/workspace/xml-commons/java/build/resolver.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/bin/bootstrap.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/bin/tomcat-juli.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/annotations-api.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/servlet-api.ja
Re: Bugzilla permanent CC addresses
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Mark, On 10/1/18 15:10, Mark Thomas wrote: > On 01/10/18 20:04, Christopher Schultz wrote: >> All, >> >> Does anyone know why these two email addresses are CC'd every >> time a BZ message is sent? >> >> kakvi...@yahoo.co.in usma...@ieml.ru > > Because those two users have configured their accounts to be CC'd > on every Tomcat issue. > > I haven't see anything that suggests mail to those addresses is > bouncing. Have you? No errors. Just curious why they were being CC'd. Can any random person on the Internet register for that, or are those administratively-added to the Bugzilla instance/products/components? I can't imagine why anyone would want to get an email about everything in ASF Bugzilla. Just seems fishy. - -chris -BEGIN PGP SIGNATURE- Comment: Using GnuPG with Thunderbird - https://www.enigmail.net/ iQIzBAEBCAAdFiEEMmKgYcQvxMe7tcJcHPApP6U8pFgFAluyt6AACgkQHPApP6U8 pFjpug//U4GO8cyKRoIAUKhJOo9uNMjyCcgVlchepO17z/QJpWV6Ns2BGUo3+/pB pOM+5YtGW51ojGixW9LI/q4kd1vnucEyOOes5S/JdR2QtAfo8NjbTNsTkwZdzOtD 9Jd0N4eOPGTySA7zzZkg35fcDvogD5DJiKmAUFiBjoifxKLj/Akd1+89uo8RAw/w KjCw3VMJmOrjq2n0ou+jJ3gQz4mRgDAWdnD3WK9LW4UMoaat6JU1P2SXi4mQxeiy edylMmxegR01Xk5Kbvmd8Ay5FjYdIN5UpUOlTHYinEN7ed2VvQDpSP5wAAESQ1Q6 vJk5rSfsFLjoQToJVZl4Dm5sEudwluRQUw3LXrO1ZVwO9l/aMGu7L6BX1sOAYPva /t8mlB117+o/0XprQ/D2PSb4nGsiBPp99WJWA+Y7oskWBAy9hc8oQJOROfjmr7JN V+zWvwkc6mo0/4N0b4TV8PmCRUZzgs73C3vXZ84jvITpX4lBUaQkCU1dLY+GZrmb CgZNsW9S/iFrjpTg2QXwbjLTGckqWxcHAbWygReC3jzVGyDwhQUuG/fRPvBN1dDy YHs7DvCS8A3GF4ABw5CMhGIswioJWEHi90EEqV8P0ojog43naFG0HojAdlDvkm8d EiljRnzcE0fDJ8S44wKSm6mgcS6Vl3hG1H4H4PUy8+1cvtgrcDQ= =r1ux -END PGP SIGNATURE- - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 62788] New: Add explicit ".encoding=UTF-8" to FileHandler configurations in logging.properties
https://bz.apache.org/bugzilla/show_bug.cgi?id=62788 Bug ID: 62788 Summary: Add explicit ".encoding=UTF-8" to FileHandler configurations in logging.properties Product: Tomcat 9 Version: 9.0.12 Hardware: PC Status: NEW Severity: enhancement Priority: P2 Component: Catalina Assignee: dev@tomcat.apache.org Reporter: knst.koli...@gmail.com Target Milestone: - This is inspired by a StackOverflow question [1]. While most of Tomcat 8.5/9.0 uses UTF-8 by default, the default configuration of (Async)FileHandlers in logging.properties is to use the system default character set. 1. There is no configuration for the "encoding" property of those FileHandlers in the default 'logging.properties' file. 2. The default value for that property is to use the system default character set. As documented in javadoc [2]. I find this odd. My proposal is to add explicit configuration for the 'encoding' property of AsyncFileHandlers in Tomcat 9.0.x onwards to be 'UTF-8': 1catalina.org.apache.juli.AsyncFileHandler.encoding = UTF-8 etc. I think that for a ConsoleHandler [3] it is expected to use the system encoding. It is used for monitoring at development time, and should not be used on a production system. I think that a file written by a FileHandler is expected to preserve all information written to it, and UTF-8 suits better for this purpose. [1] https://stackoverflow.com/questions/52591511/how-to-set-character-encoding-to-servletcontext-logs-in-tomcat [2] http://tomcat.apache.org/tomcat-9.0-doc/api/org/apache/juli/FileHandler.html [3] https://docs.oracle.com/javase/6/docs/api/java/util/logging/ConsoleHandler.html -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 62757] JspCompilationContext is unable to compile class for JSP due to a null tagHandlerClass in Generator.TagHandlerInfo
https://bz.apache.org/bugzilla/show_bug.cgi?id=62757 --- Comment #5 from Jordi Llach --- Thanks for the feedback, I can perfectly understand the rationale of your comment As said the problem is in JspServletWrapper's loadTagFile method, it should check whether it has to reload or not by only checking the reload attribute, and not by using getReloadInternal() method. Otherwise during application startup JspRuntimeContext's checkCompile method can prevent some tag files to be loaded, because it changes the value of the flag compileCheckInProgress, as we saw in the stacktrace that comes from the TagFileProcessor. I also noticed that JspServletWrapper's getDependants and loadTagFile methods change reload attribute without proper synchronization, as JspServletWrapper's getServlet and setServletClassLastModifiedTime do, so I "fixed" it, but that was not the problem, maybe unnecessary ? Maybe I am wrong but I also realized that JspServletWrapper's getServlet method should execute always in case JspServletWrapper's attribute theServlet is null. With the previous code JspRuntimeContext's checkCompile method could prevent a first request to a jsp to initialize its JspServletWrapper's attribute theServlet because it set compileCheckInProgress to true and thus getReloadInternal method returns false About TagFileProcessor change, I just fully initialized JspServletWrapper's JspCompilationContext prior puting the former into the Map managed by JspRuntimeContext. The rationale behind this change is that given that JspRuntimeContext's checkCompile will iterate through this Map of jsp/tags I just wanted to ensure that their content is fully initialized. -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
Bug 62140 implementation question
Hi there, I'd like to resolve Bug 62140 [0]. I just wanted to gather some opinions about the implementation details. In my mind, the following solution is quite reasonable: 1. Create new help scripts, such as help.sh and help.bat. These files contain a method for each functional verb that prints some info about the verb and exits with 0. 2. Source the files in both catalina.sh and catalina.bat 3. When user enters catalina.[sh|bat] $verb help (or -h, --help?), execute one of the methods. In my mind, the above solution is quite straightforward. Any gotchas, or obvious problems? [0] https://bz.apache.org/bugzilla/show_bug.cgi?id=62140 Cheers, -- Marek Czernek JWS/JBCS Associate Quality Engineer, RHCA Find me at www.halfastack.com
[Bug 62757] JspCompilationContext is unable to compile class for JSP due to a null tagHandlerClass in Generator.TagHandlerInfo
https://bz.apache.org/bugzilla/show_bug.cgi?id=62757 --- Comment #4 from Mark Thomas --- I can't tell which part of the patch is addressing this issue and which parts are addressing other issues - or what those issues are. Given I've already managed to introduce a regression here I'm hesitant to make more changes than I need to - especially without an explanation of why those changes are required. -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
Re: Proposed patch for o.a.c.users.MemoryUserDatabase
On 10/1/2018 12:08 PM, Mark Thomas wrote: On 27/09/18 16:57, Christopher Schultz wrote: All, I have a proposed patch to MemoryUserDatabase that changes the behavior when a triggered-reload fails. Recently, markt added code to allow database reloads, but if there is an error reloading the database, the database is emptied and perhaps an administrator can no longer make e.g. calls to the manager. This patch makes an open-failure into a no-op: the user database will not be changed unless there is a successful load from the file. Seems reasonable to me. This patch changes the way that data is loaded by the Digester. Instead of modifying the role/group/user maps directly, the data are loaded into new maps and then all maps are updated atomically. This patch removes a bunch of code from this class, and I have a unit test (not attached) which demonstrates that (a) it works and (b) thread-safety is maintained. Woot for less code ;) +1 Igal Mark Thanks, -chris For review: ### Eclipse Workspace Patch 1.0 #P tomcat-trunk Index: java/org/apache/catalina/users/MemoryUserDatabase.java === --- java/org/apache/catalina/users/MemoryUserDatabase.java (revision 1842017) +++ java/org/apache/catalina/users/MemoryUserDatabase.java (working copy) @@ -31,6 +31,7 @@ import java.util.concurrent.ConcurrentHashMap; import java.util.concurrent.locks.Lock; import java.util.concurrent.locks.ReentrantReadWriteLock; +import java.util.regex.Pattern; import org.apache.catalina.Globals; import org.apache.catalina.Group; @@ -39,11 +40,10 @@ import org.apache.catalina.UserDatabase; import org.apache.juli.logging.Log; import org.apache.juli.logging.LogFactory; -import org.apache.tomcat.util.digester.AbstractObjectCreationFactory; +import org.apache.tomcat.util.digester.CallParamRule; import org.apache.tomcat.util.digester.Digester; import org.apache.tomcat.util.file.ConfigFileLoader; import org.apache.tomcat.util.res.StringManager; -import org.xml.sax.Attributes; /** * Concrete implementation of {@link UserDatabase} that loads all defined users, @@ -107,7 +107,7 @@ /** * The set of {@link Group}s defined in this database, keyed by group name. */ -protected final Map groups = new ConcurrentHashMap<>(); +protected Map groups = new ConcurrentHashMap<>(); /** * The unique global identifier of this user database. @@ -140,12 +140,12 @@ /** * The set of {@link Role}s defined in this database, keyed by role name. */ -protected final Map roles = new ConcurrentHashMap<>(); +protected Map roles = new ConcurrentHashMap<>(); /** * The set of {@link User}s defined in this database, keyed by user name. */ -protected final Map users = new ConcurrentHashMap<>(); +protected Map users = new ConcurrentHashMap<>(); private final ReentrantReadWriteLock dbLock = new ReentrantReadWriteLock(); private final Lock readLock = dbLock.readLock(); @@ -415,54 +415,139 @@ */ @Override public void open() throws Exception { +String pathName = getPathname(); +URI uri = ConfigFileLoader.getURI(pathName); +URL url = uri.toURL(); +URLConnection uConn = url.openConnection(); -writeLock.lock(); -try { -// Erase any previous groups and users -users.clear(); -groups.clear(); -roles.clear(); +try (InputStream is = uConn.getInputStream()) { +this.lastModified = uConn.getLastModified(); -String pathName = getPathname(); -URI uri = ConfigFileLoader.getURI(pathName); -URL url = uri.toURL(); -URLConnection uConn = url.openConnection(); +// Construct a digester to read the XML input file +Digester digester = new Digester(); +try { +digester.setFeature( + "http://apache.org/xml/features/allow-java-encodings;, true); +} catch (Exception e) { + log.warn(sm.getString("memoryUserDatabase.xmlFeatureEncoding"), e); +} -try (InputStream is = uConn.getInputStream()) { -this.lastModified = uConn.getLastModified(); +Bundle bundle = new Bundle(); +digester.push(bundle); +digester.addCallMethod("tomcat-users/role", "addRole", 2); +digester.addRule("tomcat-users/role", new CallParamRule(0, "rolename")); +digester.addRule("tomcat-users/role", new CallParamRule(1, "description")); +digester.addCallMethod("tomcat-users/group", "addGroup", 3); +digester.addRule("tomcat-users/group", new CallParamRule(0, "groupname")); +digester.addRule("tomcat-users/group", new CallParamRule(1, "description")); +digester.addRule("tomcat-users/group", new CallParamRule(2, "roles")); +
[Bug 62739] Tomcat should allow blank Host header
https://bz.apache.org/bugzilla/show_bug.cgi?id=62739 --- Comment #3 from Mark Thomas --- Is there an ETA on your fix? We have reached the start of the month and I expect we'll want to tag a new version with this fix included in the next few days. -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
Re: Bugzilla permanent CC addresses
On 01/10/18 20:04, Christopher Schultz wrote: > All, > > Does anyone know why these two email addresses are CC'd every time a > BZ message is sent? > > kakvi...@yahoo.co.in > usma...@ieml.ru Because those two users have configured their accounts to be CC'd on every Tomcat issue. I haven't see anything that suggests mail to those addresses is bouncing. Have you? Mark - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
Re: Proposed patch for o.a.c.users.MemoryUserDatabase
On 27/09/18 16:57, Christopher Schultz wrote: > All, > > I have a proposed patch to MemoryUserDatabase that changes the > behavior when a triggered-reload fails. Recently, markt added code to > allow database reloads, but if there is an error reloading the > database, the database is emptied and perhaps an administrator can no > longer make e.g. calls to the manager. > > This patch makes an open-failure into a no-op: the user database will > not be changed unless there is a successful load from the file. Seems reasonable to me. > This patch changes the way that data is loaded by the Digester. > Instead of modifying the role/group/user maps directly, the data are > loaded into new maps and then all maps are updated atomically. > > This patch removes a bunch of code from this class, and I have a unit > test (not attached) which demonstrates that (a) it works and (b) > thread-safety is maintained. Woot for less code ;) Mark > > Thanks, > -chris > > For review: > > ### Eclipse Workspace Patch 1.0 > #P tomcat-trunk > Index: java/org/apache/catalina/users/MemoryUserDatabase.java > === > --- java/org/apache/catalina/users/MemoryUserDatabase.java(revision > 1842017) > +++ java/org/apache/catalina/users/MemoryUserDatabase.java(working copy) > @@ -31,6 +31,7 @@ > import java.util.concurrent.ConcurrentHashMap; > import java.util.concurrent.locks.Lock; > import java.util.concurrent.locks.ReentrantReadWriteLock; > +import java.util.regex.Pattern; > > import org.apache.catalina.Globals; > import org.apache.catalina.Group; > @@ -39,11 +40,10 @@ > import org.apache.catalina.UserDatabase; > import org.apache.juli.logging.Log; > import org.apache.juli.logging.LogFactory; > -import org.apache.tomcat.util.digester.AbstractObjectCreationFactory; > +import org.apache.tomcat.util.digester.CallParamRule; > import org.apache.tomcat.util.digester.Digester; > import org.apache.tomcat.util.file.ConfigFileLoader; > import org.apache.tomcat.util.res.StringManager; > -import org.xml.sax.Attributes; > > /** > * Concrete implementation of {@link UserDatabase} that loads all > defined users, > @@ -107,7 +107,7 @@ > /** > * The set of {@link Group}s defined in this database, keyed by > group name. > */ > -protected final Map groups = new > ConcurrentHashMap<>(); > +protected Map groups = new ConcurrentHashMap<>(); > > /** > * The unique global identifier of this user database. > @@ -140,12 +140,12 @@ > /** > * The set of {@link Role}s defined in this database, keyed by > role name. > */ > -protected final Map roles = new ConcurrentHashMap<>(); > +protected Map roles = new ConcurrentHashMap<>(); > > /** > * The set of {@link User}s defined in this database, keyed by > user name. > */ > -protected final Map users = new ConcurrentHashMap<>(); > +protected Map users = new ConcurrentHashMap<>(); > > private final ReentrantReadWriteLock dbLock = new > ReentrantReadWriteLock(); > private final Lock readLock = dbLock.readLock(); > @@ -415,54 +415,139 @@ > */ > @Override > public void open() throws Exception { > +String pathName = getPathname(); > +URI uri = ConfigFileLoader.getURI(pathName); > +URL url = uri.toURL(); > +URLConnection uConn = url.openConnection(); > > -writeLock.lock(); > -try { > -// Erase any previous groups and users > -users.clear(); > -groups.clear(); > -roles.clear(); > +try (InputStream is = uConn.getInputStream()) { > +this.lastModified = uConn.getLastModified(); > > -String pathName = getPathname(); > -URI uri = ConfigFileLoader.getURI(pathName); > -URL url = uri.toURL(); > -URLConnection uConn = url.openConnection(); > +// Construct a digester to read the XML input file > +Digester digester = new Digester(); > +try { > +digester.setFeature( > + > "http://apache.org/xml/features/allow-java-encodings;, true); > +} catch (Exception e) { > + > log.warn(sm.getString("memoryUserDatabase.xmlFeatureEncoding"), e); > +} > > -try (InputStream is = uConn.getInputStream()) { > -this.lastModified = uConn.getLastModified(); > +Bundle bundle = new Bundle(); > +digester.push(bundle); > +digester.addCallMethod("tomcat-users/role", "addRole", 2); > +digester.addRule("tomcat-users/role", new > CallParamRule(0, "rolename")); > +digester.addRule("tomcat-users/role", new > CallParamRule(1, "description")); > +digester.addCallMethod("tomcat-users/group", "addGroup", 3); > +digester.addRule("tomcat-users/group", new > CallParamRule(0, "groupname")); > +
Bugzilla permanent CC addresses
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 All, Does anyone know why these two email addresses are CC'd every time a BZ message is sent? kakvi...@yahoo.co.in usma...@ieml.ru Thanks, - -chris -BEGIN PGP SIGNATURE- Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Thunderbird - https://www.enigmail.net/ iQIzBAEBCAAdFiEEMmKgYcQvxMe7tcJcHPApP6U8pFgFAluyb7gACgkQHPApP6U8 pFiNJQ//eRBlcPNioLXiOFtmGrdScOcRTuT3hBEGrECmXWQw6wMI5KMNZD+YM9vM 7pC/OCVFd8Cl2qqWfs+NtitoLANyvlknYZfvQU05n4qGDHgvpEFaqWHCdWhd1GTo 8rxaFe0/5ZU2cFAci4Z8AyyGjxHCtJrhHY81IZ0E3l60XIWooUwIGMmBxlow15td 6814uvNbO28X76pmKyW5X3a9s4L62Pb8hFRtNaprijsUj6U9CvT7HI/S0MkaUiGD npNgDmWlUmo0MY9b40mPPAaoyBRWg6+nsdKtV31tosU9R3IqXwjK/HMmvJDyPy1R vskGlsp28jDYp4xbGPDQ8ZETaCryJCrreJ3wpNirYM66DnKYTksJbDDkGHome0+k S60w/JdBHir7GlGmlDSb0bmSmYFT9vYc+E2J3x+1T1hFwnWRBJ+rGycUctqQa4zR G3TfNzWrMr0R/0YTbz3zpu90cmgwyi64BqOPe9FR9TWo+lGo4rhidIg8esFvUgX2 gTOkXOH+3UvEqJHiABYjmQtv5oUFgac4oduGVE+BOi7v5+pXu/7EibIiVk0IszPV /JLp/sAJYfI8LhFlUWPmZhFFf0k+KgUBY6LKMzsVpqHwbOQUTxtbFSITfSPr01Oy GucdT9WkEOy9Fd0KkPdPSFHn4owg+21gVh04f6BFOCNyKZjZMMI= =fEhz -END PGP SIGNATURE- - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 62748] Add support for TLS 1.3 (RFC 8446)
https://bz.apache.org/bugzilla/show_bug.cgi?id=62748 --- Comment #9 from Christopher Schultz --- (In reply to Azat from comment #5) > I did patch both tomcat7 src and tomcat-native with the patches you provided. > Results are kind of strange. Patching Tomcat 7 would indeed be strange. The patches are for Tomcat 9 trunk. Assuming we can get them to work, they will be back-ported to 8.5.x and 7.0.x in that order. Could you try testing with Tomcat 9 by any chance? > sslabs test (which now supports RFC 8446 version ) > and htbridge SSLServer test [work] That's probably because they are only performing the TLS handshake. When I try with openssl s_client, the handshake is successful, but issuing a "GET /" request fails. > chrome 70 Beta with final > version of TLS version enabled I wasn't able to connect to my site.Chrome > beta showed me ERR_CONNECTION_ABORTED message I think this is the same thing I saw with s_client, as you did as well: > read R BLOCK > read:errno=0 I think this is a bug in Tomcat which is triggered by something unique to TLS 1.3. -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[GUMP@vmgump-vm3]: Project tomcat-trunk-test-nio2 (in module tomcat-trunk) failed
To whom it may engage... This is an automated request, but not an unsolicited one. For more information please visit http://gump.apache.org/nagged.html, and/or contact the folk at gene...@gump.apache.org. Project tomcat-trunk-test-nio2 has an issue affecting its community integration. This issue affects 1 projects. The current state of this project is 'Failed', with reason 'Build Failed'. For reference only, the following projects are affected by this: - tomcat-trunk-test-nio2 : Tomcat 9.x, a web server implementing the Java Servlet 4.0, ... Full details are available at: http://vmgump-vm3.apache.org/tomcat-trunk/tomcat-trunk-test-nio2/index.html That said, some information snippets are provided here. The following annotations (debug/informational/warning/error messages) were provided: -DEBUG- Dependency on bnd exists, no need to add for property bndlib.jar. -INFO- Failed with reason build failed -INFO- Project Reports in: /srv/gump/public/workspace/tomcat-trunk/output/logs-NIO2 -INFO- Project Reports in: /srv/gump/public/workspace/tomcat-trunk/output/test-tmp-NIO2/logs -WARNING- No directory [/srv/gump/public/workspace/tomcat-trunk/output/test-tmp-NIO2/logs] The following work was performed: http://vmgump-vm3.apache.org/tomcat-trunk/tomcat-trunk-test-nio2/gump_work/build_tomcat-trunk_tomcat-trunk-test-nio2.html Work Name: build_tomcat-trunk_tomcat-trunk-test-nio2 (Type: Build) Work ended in a state of : Failed Elapsed: 24 mins 8 secs Command Line: /usr/lib/jvm/java-8-oracle/bin/java -Djava.awt.headless=true -Dbuild.sysclasspath=only -Dsun.zip.disableMemoryMapping=true org.apache.tools.ant.Main -Dgump.merge=/srv/gump/public/gump/work/merge.xml -Djunit.jar=/srv/gump/public/workspace/junit/target/junit-4.13-SNAPSHOT.jar -Djava.net.preferIPv4Stack=/srv/gump/public/workspace/tomcat-trunk/true -Dobjenesis.jar=/srv/gump/public/workspace/objenesis/main/target/objenesis-2.7-SNAPSHOT.jar -Dtest.reports=output/logs-NIO2 -Dexecute.test.nio2=true -Dexamples.sources.skip=true -Dbase.path=/srv/gump/public/workspace/tomcat-trunk/tomcat-build-libs -Djdt.jar=/srv/gump/packages/eclipse/plugins/R-4.7.3a-201803300640/ecj-4.7.3a.jar -Dbndlib.jar=/srv/gump/packages/bnd/bndlib-4.0.0/biz.aQute.bndlib-4.0.0.jar -Dcommons-daemon.jar=/srv/gump/public/workspace/apache-commons/daemon/target/commons-daemon-1.1.1-SNAPSHOT.jar -Dtest.openssl.path=/srv/gump/public/workspace/openssl-master/dest-20181001/bin/openssl -Dtest.temp=output/test-tmp-NIO2 -Dtest.accesslog=true -Dexecute.test.nio=false -Dbnd.jar=/srv/gump/packages/bnd/bnd-4.0.0/biz.aQute.bnd-4.0.0.jar -Dexecute.test.apr=false -Dtest.excludePerformance=true -Dtest.relaxTiming=true -Deasymock.jar=/srv/gump/public/workspace/easymock/core/target/easymock-3.7-SNAPSHOT.jar -Dhamcrest.jar=/srv/gump/packages/hamcrest/hamcrest-core-1.3.jar -Dcglib.jar=/srv/gump/packages/cglib/cglib-nodep-2.2.jar test [Working Directory: /srv/gump/public/workspace/tomcat-trunk] CLASSPATH: /usr/lib/jvm/java-8-oracle/lib/tools.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/webapps/examples/WEB-INF/classes:/srv/gump/public/workspace/tomcat-trunk/output/testclasses:/srv/gump/public/workspace/ant/dist/lib/ant.jar:/srv/gump/public/workspace/ant/dist/lib/ant-launcher.jar:/srv/gump/public/workspace/ant/dist/lib/ant-jmf.jar:/srv/gump/public/workspace/ant/dist/lib/ant-junit.jar:/srv/gump/public/workspace/ant/dist/lib/ant-junit4.jar:/srv/gump/public/workspace/ant/dist/lib/ant-swing.jar:/srv/gump/public/workspace/ant/dist/lib/ant-apache-resolver.jar:/srv/gump/public/workspace/ant/dist/lib/ant-apache-xalan2.jar:/srv/gump/public/workspace/xml-commons/java/build/resolver.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/bin/bootstrap.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/bin/tomcat-juli.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/annotations-api.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/servlet-api.ja r:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/jsp-api.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/el-api.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/websocket-api.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/jaspic-api.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/catalina.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/catalina-ant.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/catalina-storeconfig.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/tomcat-coyote.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/jasper.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/jasper-el.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/catalina-tribes.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/catalina-ha.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/tomcat-api.jar:/srv/gump/public/workspace/tomcat-trunk/output/bu ild/lib
[VOTE] Release JK 1.2.46
Tag: http://svn.apache.org/viewvc/tomcat/jk/tags/JK_1_2_46/ Source: https://dist.apache.org/repos/dist/dev/tomcat/tomcat-connectors/jk/ This is a maintenance release with a handful of bug fixes (compared to 1.2.44) and some clean-up. It also includes Windows binaries for IIS. The proposed JK 1.2.46 release is: [ ] Broken - do not release [ ] Stable - go ahead and release as 1.2.46 - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[VOTE][CANCELLED] Release JK 1.2.45
Wrong version. I'll start a new vote thread. Mark On 01/10/18 12:21, Mark Thomas wrote: > Tag: > http://svn.apache.org/viewvc/tomcat/jk/tags/JK_1_2_45/ > > Source: > https://dist.apache.org/repos/dist/dev/tomcat/tomcat-connectors/jk/ > > > This is a maintenance release with a handful of bug fixes (compared to > 1.2.43) and some clean-up. It also includes Windows binaries for IIS. > > > The proposed JK 1.2.45 release is: > [ ] Broken - do not release > [ ] Stable - go ahead and release as 1.2.45 > > - > To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org > For additional commands, e-mail: dev-h...@tomcat.apache.org > - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
Re: [VOTE] Release JK 1.2.45
On 01/10/18 13:05, Rainer Jung wrote: > s/1.2.45/1.2.46/g ? Yep. That is what I get for doing stuff in a hurry. I'll fix this shortly. Mark - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
svn commit: r1842498 - /tomcat/trunk/TOMCAT-NEXT.txt
Author: remm Date: Mon Oct 1 13:32:46 2018 New Revision: 1842498 URL: http://svn.apache.org/viewvc?rev=1842498=rev Log: Add new features I'll try to work on. Modified: tomcat/trunk/TOMCAT-NEXT.txt Modified: tomcat/trunk/TOMCAT-NEXT.txt URL: http://svn.apache.org/viewvc/tomcat/trunk/TOMCAT-NEXT.txt?rev=1842498=1842497=1842498=diff == --- tomcat/trunk/TOMCAT-NEXT.txt (original) +++ tomcat/trunk/TOMCAT-NEXT.txt Mon Oct 1 13:32:46 2018 @@ -28,7 +28,6 @@ Items carried over from the 9.0.x list: 3. Consider wrapping the SocketWrapper with a facade to detect / prevent components retaining references longer than they should. - New items for 10.0.x onwards: 1. Remove APR connector. @@ -38,3 +37,7 @@ New items for 10.0.x onwards: 3. Remove the ExtensionValidator and associated classes (assuming that the minimum Java version is Java 9 or later). + +4. New builder style alternate embedded API (likely also for 9.x). + +5. Cloud aware cluster membership provider(s) (likely also for 9.x). - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 62786] New: Post Resources ignored in server.xml when Resources tag present in context.xml
https://bz.apache.org/bugzilla/show_bug.cgi?id=62786 Bug ID: 62786 Summary: Post Resources ignored in server.xml when Resources tag present in context.xml Product: Tomcat 8 Version: 8.5.x-trunk Hardware: PC Status: NEW Severity: normal Priority: P2 Component: Catalina Assignee: dev@tomcat.apache.org Reporter: steeve.bero...@orchestranetworks.com Target Milestone: Hello, We have noticed that when "Resources" tag is declared in context.xml, it hides PostResources declaration in a given context in server.xml. When we copy the same context and put it in a separated file (under [engine]/[host]/[context].xml, everything runs correctly so I guess that this is a bug because we don't have the same behaviour for a given context. We have reproduced this on all Tomcat 8.0.x and 8.5.x so far. -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 62748] Add support for TLS 1.3 (RFC 8446)
https://bz.apache.org/bugzilla/show_bug.cgi?id=62748 --- Comment #8 from Azat --- Created attachment 36179 --> https://bz.apache.org/bugzilla/attachment.cgi?id=36179=edit screenshots from latest mozilla beta build with an error I've added screenshots from the latest Mozilla beta where the error (secure connection failed) is shown when trying to access the website in question (debug.ieml.ru) after applying the patches -- You are receiving this mail because: You are the assignee for the bug. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
Re: [VOTE] Release JK 1.2.45
s/1.2.45/1.2.46/g ? - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[VOTE] Release JK 1.2.45
Tag: http://svn.apache.org/viewvc/tomcat/jk/tags/JK_1_2_45/ Source: https://dist.apache.org/repos/dist/dev/tomcat/tomcat-connectors/jk/ This is a maintenance release with a handful of bug fixes (compared to 1.2.43) and some clean-up. It also includes Windows binaries for IIS. The proposed JK 1.2.45 release is: [ ] Broken - do not release [ ] Stable - go ahead and release as 1.2.45 - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[GUMP@vmgump-vm3]: Project tomcat-trunk-test-nio2 (in module tomcat-trunk) failed
To whom it may engage... This is an automated request, but not an unsolicited one. For more information please visit http://gump.apache.org/nagged.html, and/or contact the folk at gene...@gump.apache.org. Project tomcat-trunk-test-nio2 has an issue affecting its community integration. This issue affects 1 projects. The current state of this project is 'Failed', with reason 'Build Failed'. For reference only, the following projects are affected by this: - tomcat-trunk-test-nio2 : Tomcat 9.x, a web server implementing the Java Servlet 4.0, ... Full details are available at: http://vmgump-vm3.apache.org/tomcat-trunk/tomcat-trunk-test-nio2/index.html That said, some information snippets are provided here. The following annotations (debug/informational/warning/error messages) were provided: -DEBUG- Dependency on bnd exists, no need to add for property bndlib.jar. -INFO- Failed with reason build failed -INFO- Project Reports in: /srv/gump/public/workspace/tomcat-trunk/output/logs-NIO2 -INFO- Project Reports in: /srv/gump/public/workspace/tomcat-trunk/output/test-tmp-NIO2/logs -WARNING- No directory [/srv/gump/public/workspace/tomcat-trunk/output/test-tmp-NIO2/logs] The following work was performed: http://vmgump-vm3.apache.org/tomcat-trunk/tomcat-trunk-test-nio2/gump_work/build_tomcat-trunk_tomcat-trunk-test-nio2.html Work Name: build_tomcat-trunk_tomcat-trunk-test-nio2 (Type: Build) Work ended in a state of : Failed Elapsed: 23 mins 48 secs Command Line: /usr/lib/jvm/java-8-oracle/bin/java -Djava.awt.headless=true -Dbuild.sysclasspath=only -Dsun.zip.disableMemoryMapping=true org.apache.tools.ant.Main -Dgump.merge=/srv/gump/public/gump/work/merge.xml -Djunit.jar=/srv/gump/public/workspace/junit/target/junit-4.13-SNAPSHOT.jar -Djava.net.preferIPv4Stack=/srv/gump/public/workspace/tomcat-trunk/true -Dobjenesis.jar=/srv/gump/public/workspace/objenesis/main/target/objenesis-2.7-SNAPSHOT.jar -Dtest.reports=output/logs-NIO2 -Dexecute.test.nio2=true -Dexamples.sources.skip=true -Dbase.path=/srv/gump/public/workspace/tomcat-trunk/tomcat-build-libs -Djdt.jar=/srv/gump/packages/eclipse/plugins/R-4.7.3a-201803300640/ecj-4.7.3a.jar -Dbndlib.jar=/srv/gump/packages/bnd/bndlib-4.0.0/biz.aQute.bndlib-4.0.0.jar -Dcommons-daemon.jar=/srv/gump/public/workspace/apache-commons/daemon/target/commons-daemon-1.1.1-SNAPSHOT.jar -Dtest.openssl.path=/srv/gump/public/workspace/openssl-master/dest-20181001/bin/openssl -Dtest.temp=output/test-tmp-NIO2 -Dtest.accesslog=true -Dexecute.test.nio=false -Dbnd.jar=/srv/gump/packages/bnd/bnd-4.0.0/biz.aQute.bnd-4.0.0.jar -Dexecute.test.apr=false -Dtest.excludePerformance=true -Dtest.relaxTiming=true -Deasymock.jar=/srv/gump/public/workspace/easymock/core/target/easymock-3.7-SNAPSHOT.jar -Dhamcrest.jar=/srv/gump/packages/hamcrest/hamcrest-core-1.3.jar -Dcglib.jar=/srv/gump/packages/cglib/cglib-nodep-2.2.jar test [Working Directory: /srv/gump/public/workspace/tomcat-trunk] CLASSPATH: /usr/lib/jvm/java-8-oracle/lib/tools.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/webapps/examples/WEB-INF/classes:/srv/gump/public/workspace/tomcat-trunk/output/testclasses:/srv/gump/public/workspace/ant/dist/lib/ant.jar:/srv/gump/public/workspace/ant/dist/lib/ant-launcher.jar:/srv/gump/public/workspace/ant/dist/lib/ant-jmf.jar:/srv/gump/public/workspace/ant/dist/lib/ant-junit.jar:/srv/gump/public/workspace/ant/dist/lib/ant-junit4.jar:/srv/gump/public/workspace/ant/dist/lib/ant-swing.jar:/srv/gump/public/workspace/ant/dist/lib/ant-apache-resolver.jar:/srv/gump/public/workspace/ant/dist/lib/ant-apache-xalan2.jar:/srv/gump/public/workspace/xml-commons/java/build/resolver.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/bin/bootstrap.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/bin/tomcat-juli.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/annotations-api.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/servlet-api.ja r:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/jsp-api.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/el-api.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/websocket-api.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/jaspic-api.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/catalina.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/catalina-ant.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/catalina-storeconfig.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/tomcat-coyote.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/jasper.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/jasper-el.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/catalina-tribes.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/catalina-ha.jar:/srv/gump/public/workspace/tomcat-trunk/output/build/lib/tomcat-api.jar:/srv/gump/public/workspace/tomcat-trunk/output/bu ild
svn commit: r29812 - in /dev/tomcat/tomcat-connectors/jk: ./ binaries/windows/ binaries/windows/symbols/
Author: markt Date: Mon Oct 1 08:45:35 2018 New Revision: 29812 Log: Upload 1.2.46 for voting Added: dev/tomcat/tomcat-connectors/jk/binaries/windows/symbols/tomcat-connectors-1.2.46-windows-i386-symbols.zip (with props) dev/tomcat/tomcat-connectors/jk/binaries/windows/symbols/tomcat-connectors-1.2.46-windows-i386-symbols.zip.asc dev/tomcat/tomcat-connectors/jk/binaries/windows/symbols/tomcat-connectors-1.2.46-windows-i386-symbols.zip.sha512 dev/tomcat/tomcat-connectors/jk/binaries/windows/symbols/tomcat-connectors-1.2.46-windows-x86_64-symbols.zip (with props) dev/tomcat/tomcat-connectors/jk/binaries/windows/symbols/tomcat-connectors-1.2.46-windows-x86_64-symbols.zip.asc dev/tomcat/tomcat-connectors/jk/binaries/windows/symbols/tomcat-connectors-1.2.46-windows-x86_64-symbols.zip.sha512 dev/tomcat/tomcat-connectors/jk/binaries/windows/tomcat-connectors-1.2.46-windows-i386-iis.zip (with props) dev/tomcat/tomcat-connectors/jk/binaries/windows/tomcat-connectors-1.2.46-windows-i386-iis.zip.asc dev/tomcat/tomcat-connectors/jk/binaries/windows/tomcat-connectors-1.2.46-windows-i386-iis.zip.sha512 dev/tomcat/tomcat-connectors/jk/binaries/windows/tomcat-connectors-1.2.46-windows-x86_64-iis.zip (with props) dev/tomcat/tomcat-connectors/jk/binaries/windows/tomcat-connectors-1.2.46-windows-x86_64-iis.zip.asc dev/tomcat/tomcat-connectors/jk/binaries/windows/tomcat-connectors-1.2.46-windows-x86_64-iis.zip.sha512 dev/tomcat/tomcat-connectors/jk/tomcat-connectors-1.2.46-src.tar.gz (with props) dev/tomcat/tomcat-connectors/jk/tomcat-connectors-1.2.46-src.tar.gz.asc dev/tomcat/tomcat-connectors/jk/tomcat-connectors-1.2.46-src.tar.gz.sha512 dev/tomcat/tomcat-connectors/jk/tomcat-connectors-1.2.46-src.zip (with props) dev/tomcat/tomcat-connectors/jk/tomcat-connectors-1.2.46-src.zip.asc dev/tomcat/tomcat-connectors/jk/tomcat-connectors-1.2.46-src.zip.sha512 Modified: dev/tomcat/tomcat-connectors/jk/README.html dev/tomcat/tomcat-connectors/jk/binaries/windows/README.html Modified: dev/tomcat/tomcat-connectors/jk/README.html == --- dev/tomcat/tomcat-connectors/jk/README.html (original) +++ dev/tomcat/tomcat-connectors/jk/README.html Mon Oct 1 08:45:35 2018 @@ -47,13 +47,13 @@ nearest mirror site! % pgpk -a KEYS -% pgpv tomcat-connectors-1.2.45-src.tar.gz.asc +% pgpv tomcat-connectors-1.2.46-src.tar.gz.asc or, % pgp -ka KEYS -% pgp tomcat-connectors-1.2.45-src.tar.gz.asc +% pgp tomcat-connectors-1.2.46-src.tar.gz.asc or, % gpg --import KEYS -% gpg --verify tomcat-connectors-1.2.45-src.tar.gz.asc +% gpg --verify tomcat-connectors-1.2.46-src.tar.gz.asc We offer SHA1 and SHA512 hashes as alternatives to validate the integrity Modified: dev/tomcat/tomcat-connectors/jk/binaries/windows/README.html == --- dev/tomcat/tomcat-connectors/jk/binaries/windows/README.html (original) +++ dev/tomcat/tomcat-connectors/jk/binaries/windows/README.html Mon Oct 1 08:45:35 2018 @@ -22,7 +22,7 @@ connector to fail. -The current stable release is 1.2.45 +The current stable release is 1.2.46 See the Apache Tomcat Connectors http://tomcat.apache.org/connectors-doc/miscellaneous/changelog.html;>changelog Added: dev/tomcat/tomcat-connectors/jk/binaries/windows/symbols/tomcat-connectors-1.2.46-windows-i386-symbols.zip == Binary file - no diff available. Propchange: dev/tomcat/tomcat-connectors/jk/binaries/windows/symbols/tomcat-connectors-1.2.46-windows-i386-symbols.zip -- svn:executable = * Propchange: dev/tomcat/tomcat-connectors/jk/binaries/windows/symbols/tomcat-connectors-1.2.46-windows-i386-symbols.zip -- svn:mime-type = application/octet-stream Added: dev/tomcat/tomcat-connectors/jk/binaries/windows/symbols/tomcat-connectors-1.2.46-windows-i386-symbols.zip.asc == --- dev/tomcat/tomcat-connectors/jk/binaries/windows/symbols/tomcat-connectors-1.2.46-windows-i386-symbols.zip.asc (added) +++ dev/tomcat/tomcat-connectors/jk/binaries/windows/symbols/tomcat-connectors-1.2.46-windows-i386-symbols.zip.asc Mon Oct 1 08:45:35 2018 @@ -0,0 +1,17 @@ +-BEGIN PGP SIGNATURE- +Comment: GPGTools - http://gpgtools.org + +iQIzBAABCgAdFiEEqcXfTSLpmZjZh1pREMAcWi9gWecFAlux2ZUACgkQEMAcWi9g +WeeYeBAA8a6GR8fWXFxv1ejGhL/RDv2GdP9p7lBKNiH2pdYhu5MpOdJjkjQc/DC/ +9/DB6JCnpvw/WyC/GduMUyTgsaXR/Zum1DdgmBepU+XX7f7xnw2vcAiB9IE6k7WW +y/1LNxh6C+2qyz+mcMxQ/4BskzyxpKjIWo2/l5NSDywCeQ7JOx7pkOM6i/MJSkHB +8lDpCITcS71Q7XrVFXYW70oSk/ZksamkwC7UlvQZpS6RLh9dBOb+wHlcyb5k3Gja
svn commit: r29811 - in /dev/tomcat/tomcat-connectors/jk: ./ binaries/windows/ binaries/windows/symbols/
Author: markt Date: Mon Oct 1 08:19:34 2018 New Revision: 29811 Log: Drop 1.2.45 Removed: dev/tomcat/tomcat-connectors/jk/binaries/windows/symbols/tomcat-connectors-1.2.45-windows-i386-symbols.zip dev/tomcat/tomcat-connectors/jk/binaries/windows/symbols/tomcat-connectors-1.2.45-windows-i386-symbols.zip.asc dev/tomcat/tomcat-connectors/jk/binaries/windows/symbols/tomcat-connectors-1.2.45-windows-i386-symbols.zip.sha512 dev/tomcat/tomcat-connectors/jk/binaries/windows/symbols/tomcat-connectors-1.2.45-windows-x86_64-symbols.zip dev/tomcat/tomcat-connectors/jk/binaries/windows/symbols/tomcat-connectors-1.2.45-windows-x86_64-symbols.zip.asc dev/tomcat/tomcat-connectors/jk/binaries/windows/symbols/tomcat-connectors-1.2.45-windows-x86_64-symbols.zip.sha512 dev/tomcat/tomcat-connectors/jk/binaries/windows/tomcat-connectors-1.2.45-windows-i386-iis.zip dev/tomcat/tomcat-connectors/jk/binaries/windows/tomcat-connectors-1.2.45-windows-i386-iis.zip.asc dev/tomcat/tomcat-connectors/jk/binaries/windows/tomcat-connectors-1.2.45-windows-i386-iis.zip.sha512 dev/tomcat/tomcat-connectors/jk/binaries/windows/tomcat-connectors-1.2.45-windows-x86_64-iis.zip dev/tomcat/tomcat-connectors/jk/binaries/windows/tomcat-connectors-1.2.45-windows-x86_64-iis.zip.asc dev/tomcat/tomcat-connectors/jk/binaries/windows/tomcat-connectors-1.2.45-windows-x86_64-iis.zip.sha512 dev/tomcat/tomcat-connectors/jk/tomcat-connectors-1.2.45-src.tar.gz dev/tomcat/tomcat-connectors/jk/tomcat-connectors-1.2.45-src.tar.gz.asc dev/tomcat/tomcat-connectors/jk/tomcat-connectors-1.2.45-src.tar.gz.sha512 dev/tomcat/tomcat-connectors/jk/tomcat-connectors-1.2.45-src.zip dev/tomcat/tomcat-connectors/jk/tomcat-connectors-1.2.45-src.zip.asc dev/tomcat/tomcat-connectors/jk/tomcat-connectors-1.2.45-src.zip.sha512 - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
svn commit: r1842432 - /tomcat/jk/trunk/xdocs/news/20180301.xml
Author: markt Date: Mon Oct 1 07:55:34 2018 New Revision: 1842432 URL: http://svn.apache.org/viewvc?rev=1842432=rev Log: 1.2.46 slipped Modified: tomcat/jk/trunk/xdocs/news/20180301.xml Modified: tomcat/jk/trunk/xdocs/news/20180301.xml URL: http://svn.apache.org/viewvc/tomcat/jk/trunk/xdocs/news/20180301.xml?rev=1842432=1842431=1842432=diff == --- tomcat/jk/trunk/xdocs/news/20180301.xml (original) +++ tomcat/jk/trunk/xdocs/news/20180301.xml Mon Oct 1 07:55:34 2018 @@ -31,7 +31,7 @@ - + The Apache Tomcat team is proud to announce the immediate availability of Tomcat Connectors 1.2.46. This is a maintenance release. - To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
[Bug 62748] Add support for TLS 1.3 (RFC 8446)
https://bz.apache.org/bugzilla/show_bug.cgi?id=62748 --- Comment #7 from Azat --- the same thing happens with win 10 chrome 70 beta client, connection fails with ERR_EMPTY_RESPONSE at the same time ssl_connect show no obvious error openssl s_client -CAfile /etc/pki/tls/certs/ca-bundle.crt -connect de bug.ieml.ru:443 -debug CONNECTED(0005) write to 0x24e4ad0 [0x25ac450] (315 bytes => 315 (0x13B)) - 16 03 01 01 36 01 00 01-32 03 03 98 de ab ab cd 6...2... 0010 - 05 75 3f 43 93 c4 4f 5b-a3 6b 7d cb 89 ca 23 bc .u?C..O[.k}...#. 0020 - 3f 47 f3 eb 0b c6 a0 a9-c3 19 82 20 29 00 2e ca ?G. )... 0030 - ed ce fe ce 3a 42 5e 96-0b 9d df f7 78 57 4b 7e :B^.xWK~ 0040 - 25 08 12 5c d0 0d 52 3d-3e eb 50 98 00 3e 13 02 %..\..R=>.P..>.. 0050 - 13 03 13 01 c0 2c c0 30-00 9f cc a9 cc a8 cc aa .,.0 0060 - c0 2b c0 2f 00 9e c0 24-c0 28 00 6b c0 23 c0 27 .+./...$.(.k.#.' 0070 - 00 67 c0 0a c0 14 00 39-c0 09 c0 13 00 33 00 9d .g.9.3.. 0080 - 00 9c 00 3d 00 3c 00 35-00 2f 00 ff 01 00 00 ab ...=.<.5./.. 0090 - 00 00 00 12 00 10 00 00-0d 64 65 62 75 67 2e 69 .debug.i 00a0 - 65 6d 6c 2e 72 75 00 0b-00 04 03 00 01 02 00 0a eml.ru.. 00b0 - 00 0c 00 0a 00 1d 00 17-00 1e 00 19 00 18 00 23 ...# 00c0 - 00 00 00 16 00 00 00 17-00 00 00 0d 00 30 00 2e .0.. 00d0 - 04 03 05 03 06 03 08 07-08 08 08 09 08 0a 08 0b 00e0 - 08 04 08 05 08 06 04 01-05 01 06 01 03 03 02 03 00f0 - 03 01 02 01 03 02 02 02-04 02 05 02 06 02 00 2b ...+ 0100 - 00 09 08 03 04 03 03 03-02 03 01 00 2d 00 02 01 -... 0110 - 01 00 33 00 26 00 24 00-1d 00 20 a2 a3 36 41 f4 ..3.&.$... ..6A. 0120 - 7b 11 b9 5d 92 ec 2e 00-48 3f cd 36 8b 5a a4 ba {..]H?.6.Z.. 0130 - eb d9 e0 9f bd b7 c0 84-84 07 7b ..{ read from 0x24e4ad0 [0x25a3233] (5 bytes => 5 (0x5)) - 16 03 03 00 7az read from 0x24e4ad0 [0x25a3238] (122 bytes => 122 (0x7A)) - 02 00 00 76 03 03 ca 58-7e 45 44 89 37 b3 f0 c3 ...v...X~ED.7... 0010 - 69 87 1f d6 e2 1d ec 43-92 39 84 5b b3 f3 c1 6a i..C.9.[...j 0020 - 3c 94 4f 29 57 f9 20 29-00 2e ca ed ce fe ce 3a <.O)W. )...: 0030 - 42 5e 96 0b 9d df f7 78-57 4b 7e 25 08 12 5c d0 B^.xWK~%..\. 0040 - 0d 52 3d 3e eb 50 98 13-02 00 00 2e 00 2b 00 02 .R=>.P...+.. 0050 - 03 04 00 33 00 24 00 1d-00 20 94 2d bf f2 97 00 ...3.$... .- 0060 - 03 f2 8a 3e 86 f9 1b e4-aa 17 cd a2 98 fb d3 1c ...> 0070 - 50 0d a8 84 dc df 51 53-9a 20 P.QS. read from 0x24e4ad0 [0x25a3233] (5 bytes => 5 (0x5)) - 14 03 03 00 01. read from 0x24e4ad0 [0x25a3238] (1 bytes => 1 (0x1)) - 01. read from 0x24e4ad0 [0x25a3233] (5 bytes => 5 (0x5)) - 17 03 03 00 1b. read from 0x24e4ad0 [0x25a3238] (27 bytes => 27 (0x1B)) - 25 19 8f 8a 2b a7 d8 aa-1c bb ed 0a cd 5a de e5 %...+Z.. 0010 - 68 39 a2 88 8c fb bc e7-ac 05 1f h9. read from 0x24e4ad0 [0x25a3233] (5 bytes => 5 (0x5)) - 17 03 03 10 f3. read from 0x24e4ad0 [0x25a3238] (4339 bytes => 3926 (0xF56)) - da c7 cf 80 eb e8 17 f9-4b 2f ad 1c 13 32 9a df K/...2.. 0010 - b0 f6 df 53 96 09 1b d2-c7 73 77 d2 10 32 cb c2 ...S.sw..2.. 0020 - 45 cd 66 cc ed 36 1b 0e-4f c0 9a 4b 5d 52 29 fa E.f..6..O..K]R). 0030 - 5e 1c 11 f2 5f 0b 24 e8-ee c7 1c b1 2b ad bd ea ^..._.$.+... 0040 - 0e ee e7 ff d9 53 c9 1f-56 70 c7 71 64 5b 1a b2 .S..Vp.qd[.. 0050 - 0b 01 6c f0 bf cc 6d 8b-e3 1a 1c a0 d9 9f 16 a6 ..l...m. 0060 - 7e 76 0a 34 5b 70 00 f8-fa c7 c0 2c 8a 85 5d 9d ~v.4[p.,..]. 0070 - 01 4d da cc 66 ed 08 8d-1a 7a 77 a0 3f e2 8c f5 .M..fzw.?... 0080 - ca 77 df e2 e3 b0 65 2e-6c 04 0f ab ef 7c 3a 21 .we.l|:! 0090 - c1 e1 03 d4 d1 64 7f c2-6c e5 50 f9 0a ee cc 3e .d..l.P> 00a0 - 1b 51 cf 40 4c 10 fc 76-22 fa 96 5d 83 a1 35 fc .Q.@L..v"..]..5. 00b0 - 68 61 9e f1 2a a3 fd 4c-0b bd df ab d7 ac 0a 18 ha..*..L 00c0 - e2 97 35 da 26 e6 dc 1e-e5 8a 0b c8 d4 cd f4 a7 ..5.&... 00d0 - f9 41 6c 89 92 b2 c9 18-b2 f8 95 62 54 7f 2f 99 .AlbT./. 00e0 - 9d 65 c1 82 cb 60 95 64-1b e8 2c b8 44 96 30 2c .e...`.d..,.D.0, 00f0 - 42 28 bc c4 e1 23 7d 0a-20 3c 90 4a 8e 2c 13 45 B(...#}. <.J.,.E 0100 - ee 4d ff 40 49 38 96 7f-45 ba 06 da cd d3 06 e6 .M.@I8..E... 0110 - 24 8e 49 f6 f4 6a c8 e8-09 3e ff 53 26 d2 13 12 $.I..j...>.S&... 0120 - 6c bf 37 6a b3 af 45 d6-c4 73 23 70 51 ea 76 86 l.7j..E..s#pQ.v. 0130 - 29 fa 42 ed 37 79 e3 23-66 a7 0c 20 1d b9 20 ba ).B.7y.#f.. .. .