[Bug 62224] SafeForkJoinWorkerThreadFactory breaks class loading on org.apache.naming.java.javaURLContextFactory

[bugzilla]

https://bz.apache.org/bugzilla/show_bug.cgi?id=62224

soheil rahsaz  changed:

   What|Removed |Added

 Status|RESOLVED|REOPENED
 Resolution|FIXED   |---

--- Comment #6 from soheil rahsaz  ---
I'm experiencing the same issue on Tomcat 9.0.21 and JDK 14.0.1.

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

Re: Question

[Mark Thomas]

On 04/02/2021 05:04, jonmcalexan...@wellsfargo.com.INVALID wrote:
> Hi Folks! Another wild and crazy question.
> 
> So, Tomcat 10.0.2. I see that it uses Jakarta EE 9, and the README states it 
> requires at least Java 8. So, will it run just fine on Java 1.8x or does the 
> Jakarta EE 1.9 have to be installed?

You only need Java 8.

There is no such thing as Jakarta EE 1.9.

Jakarta EE 9 is a collection of APIs and specifications for how those
APIs are expected to behave. Tomcat implements a subset of those
specifications and APIs (Servlet, WebSocket, EL, Server Pages,
Authentication and Annotations).

Note that you cannot take an application that works on Tomcat 9 and use
it unchanged on Tomcat 10 because in the move from Java EE 8 (Tomcat 9)
to Jakarta EE 9 (Tomcat 10) the java package name used by all the APIs
changed from javax... to jakarta...

The Tomcat community has provided a migration tool that converts
applications from Java EE 8 to Jakarta EE 9:
https://github.com/apache/tomcat-jakartaee-migration

HTH,

Mark


> 
> Thanks,
> 
> Dream * Excel * Explore * Inspire
> Jon McAlexander
> Infrastructure Engineer
> Asst Vice President
> 
> Middleware Product Engineering
> Enterprise CIO | Platform Services | Middleware | Infrastructure Solutions
> 
> 8080 Cobblestone Rd | Urbandale, IA 50322
> MAC: F4469-010
> Tel 515-988-2508 | Cell 515-988-2508
> 
> jonmcalexan...@wellsfargo.com
> 
> Upcoming PTO: 10/30/2020, 11/6/2020, 11/13/2020, 11/20/2020, 11/27/2020, 
> 12/2/2020, 12/4/2020, 12/11/2020, 12/18/2020, 12/28/2020, 12/29/2020, 
> 12/30/2020, 12/31/2020
> This message may contain confidential and/or privileged information. If you 
> are not the addressee or authorized to receive this for the addressee, you 
> must not use, copy, disclose, or take any action based on this message or any 
> information herein. If you have received this message in error, please advise 
> the sender immediately by reply e-mail and delete this message. Thank you for 
> your cooperation.
> 
> 


-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

Re: [VOTE] Release Apache Tomcat 7.0.108

[Violeta Georgieva]

На чт, 28.01.2021 г. в 11:48 ч. Violeta Georgieva 
написа:
>
> The proposed Apache Tomcat 7.0.108 release is now available for voting.
>
> It can be obtained from:
> https://dist.apache.org/repos/dist/dev/tomcat/tomcat-7/v7.0.108/
> The Maven staging repo is:
> https://repository.apache.org/content/repositories/orgapachetomcat-1295/
> The git tag is:
> https://github.com/apache/tomcat/tree/7.0.108
> b57a2ea4466a2d4ea03a0f90e3f0d6c485b3cfea
>
> The proposed 7.0.108 release is:
> [ ] Broken - do not release
> [ ] Stable - go ahead and release as 7.0.108 Stable



We need more votes here

Thanks,
Violeta

>

Question

[jonmcalexander]

Hi Folks! Another wild and crazy question.

So, Tomcat 10.0.2. I see that it uses Jakarta EE 9, and the README states it 
requires at least Java 8. So, will it run just fine on Java 1.8x or does the 
Jakarta EE 1.9 have to be installed?

Thanks,

Dream * Excel * Explore * Inspire
Jon McAlexander
Infrastructure Engineer
Asst Vice President

Middleware Product Engineering
Enterprise CIO | Platform Services | Middleware | Infrastructure Solutions

8080 Cobblestone Rd | Urbandale, IA 50322
MAC: F4469-010
Tel 515-988-2508 | Cell 515-988-2508

jonmcalexan...@wellsfargo.com

Upcoming PTO: 10/30/2020, 11/6/2020, 11/13/2020, 11/20/2020, 11/27/2020, 
12/2/2020, 12/4/2020, 12/11/2020, 12/18/2020, 12/28/2020, 12/29/2020, 
12/30/2020, 12/31/2020
This message may contain confidential and/or privileged information. If you are 
not the addressee or authorized to receive this for the addressee, you must not 
use, copy, disclose, or take any action based on this message or any 
information herein. If you have received this message in error, please advise 
the sender immediately by reply e-mail and delete this message. Thank you for 
your cooperation.

Re: Applications setting connection specific HTTP headers

[Raymond Auge]

What about an integration point that acts as a passthrough to such changes
that let you "monitor" and/or "defend" against these operations (using
whatever policy you wish).
The default would be no-op.

- Ray

On Wed, Feb 3, 2021 at 11:15 AM Romain Manni-Bucau 
wrote:

> Le mer. 3 févr. 2021 à 17:10, Mark Thomas  a écrit :
>
> > On 03/02/2021 16:06, Romain Manni-Bucau wrote:
> > > Hi,
> > >
> > > Why not just adding a tomcat-application-fixer module (a more ugly name
> > can
> > > be relevant ;)) application could add in their WEB-INF/lib through web
> > > resource definition (ie plain context.xml config or programmatic
> > > equivalent) which would have a @WebFilter(/*, asyncSupported=true)
> which
> > > would wrap the response to do the fixes you want for these apps but it
> > > wouldnt be seen in the most common case at all (or if there is only
> this
> > > small fix it can be a default filter of tomcat, depends the number of
> > fixes
> > > and related code IMHO).
> >
> > Primarily because of the risk that wrapping the request breaks the
> > application.
> >
> > While a well-behaved app should be unaffected by a Filter adding a
> > wrapped response, we already know that these applications are not
> > well-behaved - else they wouldn't be setting these headers in the first
> > place.
> >
> > Hence I am looking at solutions further down the stack in the Tomcat
> > internals.
> >
>
> So you mean the application uses tomcat internals (like casting the
> Response/Request) but does not work on Tomcat? :s
>
> Otherwise there is no real way a filter and wrapper breaks a "broken"
> application since the application will take the wrapped instance as a
> standard servlet instance - as tomcat already do with its facade layer. The
> only constraint is to ensure the filter is first which can require another
> solution than @WebFilter but web.xml solves it.
>
>
>
> >
> > Mark
> >
> >
> > >
> > > Romain Manni-Bucau
> > > @rmannibucau  |  Blog
> > >  | Old Blog
> > >  | Github <
> > https://github.com/rmannibucau> |
> > > LinkedIn  | Book
> > > <
> >
> https://www.packtpub.com/application-development/java-ee-8-high-performance
> > >
> > >
> > >
> > > Le mer. 3 févr. 2021 à 16:50, Rémy Maucherat  a
> écrit :
> > >
> > >> On Wed, Feb 3, 2021 at 1:03 PM Mark Thomas  wrote:
> > >>
> > >>> Hi all,
> > >>>
> > >>> We have an open PR related to this for HTTP/2 (#277) and I am seeing
> > >>> related issues at $work with HTTP.
> > >>>
> > >>> In short, applications are doing things like:
> > >>>
> > >>> response.setHeader("Transfer-Encoding", "chunked");
> > >>>
> > >>> which, as you'd expect is causing problems if:
> > >>> - Tomcat doesn't chunk the response
> > >>> - Tomcat does chunk the response, adds its own "chunked" value and
> the
> > >>>   user agent rightly objects to "chunked" appearing twice
> > >>>
> > >>> And so on.
> > >>>
> > >>> I'd like to put something into Tomcat to address this.
> > >>>
> > >>> I think it should be disabled by default so correctly written
> > >>> applications pay a very small penalty. Along the lines of
> > >>>
> > >>> if (someSetting != null) {
> > >>> // Do header checks
> > >>> }
> > >>>
> > >>> In terms of options I think we need:
> > >>> - something representing the current, allow anything, behaviour
> > >>> - an option to log (with a stack trace so the offending code can be
> > >>>   identified) attempts to set such headers
> > >>> - an option to ignore attempts to set such headers
> > >>>
> > >>> Do we need an option that throws an exception if there is an attempt
> to
> > >>> set such headers?
> > >>>
> > >>> Do we need an option to control which headers and which values will
> > >>> trigger this behaviour? This would make the configuration rather more
> > >>> complex. You'd need to be able to set multiple combinations of
> header,
> > >>> value and action.
> > >>>
> > >>> Is adding debug (no stacktrace) and trace (with stacktrace) logging
> to
> > >>> addHeader() sufficient? For identifying faulty code this helps but it
> > >>> doesn't provide a way to work-around the problem. For that you need
> > >>> something that blocks the adding of the header.
> > >>>
> > >>> I'm still considering what might be the best way to fix this. Hence
> the
> > >>> brain dump above. Thoughts?
> > >>>
> > >>
> > >> There has been some debate about this before, and you did add quite a
> > bit
> > >> of code to catch things that would break the protocol. So it seems
> this
> > >> would go above and beyond, and attempt to catch *anything* that could
> > make
> > >> a response non compliant with the underlying protocol ?
> > >>
> > >> Rémy
> > >>
> > >>
> > >>>
> > >>> Mark
> > >>>
> > >>>
> > >>> -
> > >>> To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
> > >>> For additional commands, 

[Bug 65124] Inefficient generated JSP code

[bugzilla]

https://bz.apache.org/bugzilla/show_bug.cgi?id=65124

Mark Thomas  changed:

   What|Removed |Added

   Severity|normal  |enhancement

--- Comment #1 from Mark Thomas  ---
Moving to enhancement to set expectations correctly about likely implementation
timescales. (We don't aim to fix every open enhancement for the next release
round.)

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

[Bug 65124] New: Inefficient generated JSP code

[bugzilla]

https://bz.apache.org/bugzilla/show_bug.cgi?id=65124

Bug ID: 65124
   Summary: Inefficient generated JSP code
   Product: Tomcat 10
   Version: unspecified
  Hardware: All
OS: All
Status: NEW
  Severity: normal
  Priority: P2
 Component: Jasper
  Assignee: dev@tomcat.apache.org
  Reporter: jeng...@amazon.com
  Target Milestone: --

Created attachment 37726
  --> https://bz.apache.org/bugzilla/attachment.cgi?id=37726=edit
Code references - examples and partial solution

Multiple of our large, publicly-facing applications contains thousands of JSPs.
 Some are executed more than others but all of the classes are loaded into
memory for the lifetime of the application.  This has stressed the JVM in
various ways and we identified several ways to improve the generated classes
(listed below).  Note that I am describing the output of the JSP compilation,
and not the compilation itself.

The impact of our in-house fix (Tomcat8) depended on the application but in
general we saw:

Output .class files decreased in size by 20 - 40%
JVM metaspace decreased by 20 - 90MB
Code cache size decreased by 5-10%
Small latency decrease (single-digit milliseconds)
Small cpu decrease (present but difficult to quantify)


Here are the issues we'd like to see addressesd:
1. Near-duplicate methods: each call to  generated its own method, even
when a single property varied.  For example

Re: Applications setting connection specific HTTP headers

[Romain Manni-Bucau]

Le mer. 3 févr. 2021 à 17:10, Mark Thomas  a écrit :

> On 03/02/2021 16:06, Romain Manni-Bucau wrote:
> > Hi,
> >
> > Why not just adding a tomcat-application-fixer module (a more ugly name
> can
> > be relevant ;)) application could add in their WEB-INF/lib through web
> > resource definition (ie plain context.xml config or programmatic
> > equivalent) which would have a @WebFilter(/*, asyncSupported=true) which
> > would wrap the response to do the fixes you want for these apps but it
> > wouldnt be seen in the most common case at all (or if there is only this
> > small fix it can be a default filter of tomcat, depends the number of
> fixes
> > and related code IMHO).
>
> Primarily because of the risk that wrapping the request breaks the
> application.
>
> While a well-behaved app should be unaffected by a Filter adding a
> wrapped response, we already know that these applications are not
> well-behaved - else they wouldn't be setting these headers in the first
> place.
>
> Hence I am looking at solutions further down the stack in the Tomcat
> internals.
>

So you mean the application uses tomcat internals (like casting the
Response/Request) but does not work on Tomcat? :s

Otherwise there is no real way a filter and wrapper breaks a "broken"
application since the application will take the wrapped instance as a
standard servlet instance - as tomcat already do with its facade layer. The
only constraint is to ensure the filter is first which can require another
solution than @WebFilter but web.xml solves it.



>
> Mark
>
>
> >
> > Romain Manni-Bucau
> > @rmannibucau  |  Blog
> >  | Old Blog
> >  | Github <
> https://github.com/rmannibucau> |
> > LinkedIn  | Book
> > <
> https://www.packtpub.com/application-development/java-ee-8-high-performance
> >
> >
> >
> > Le mer. 3 févr. 2021 à 16:50, Rémy Maucherat  a écrit :
> >
> >> On Wed, Feb 3, 2021 at 1:03 PM Mark Thomas  wrote:
> >>
> >>> Hi all,
> >>>
> >>> We have an open PR related to this for HTTP/2 (#277) and I am seeing
> >>> related issues at $work with HTTP.
> >>>
> >>> In short, applications are doing things like:
> >>>
> >>> response.setHeader("Transfer-Encoding", "chunked");
> >>>
> >>> which, as you'd expect is causing problems if:
> >>> - Tomcat doesn't chunk the response
> >>> - Tomcat does chunk the response, adds its own "chunked" value and the
> >>>   user agent rightly objects to "chunked" appearing twice
> >>>
> >>> And so on.
> >>>
> >>> I'd like to put something into Tomcat to address this.
> >>>
> >>> I think it should be disabled by default so correctly written
> >>> applications pay a very small penalty. Along the lines of
> >>>
> >>> if (someSetting != null) {
> >>> // Do header checks
> >>> }
> >>>
> >>> In terms of options I think we need:
> >>> - something representing the current, allow anything, behaviour
> >>> - an option to log (with a stack trace so the offending code can be
> >>>   identified) attempts to set such headers
> >>> - an option to ignore attempts to set such headers
> >>>
> >>> Do we need an option that throws an exception if there is an attempt to
> >>> set such headers?
> >>>
> >>> Do we need an option to control which headers and which values will
> >>> trigger this behaviour? This would make the configuration rather more
> >>> complex. You'd need to be able to set multiple combinations of header,
> >>> value and action.
> >>>
> >>> Is adding debug (no stacktrace) and trace (with stacktrace) logging to
> >>> addHeader() sufficient? For identifying faulty code this helps but it
> >>> doesn't provide a way to work-around the problem. For that you need
> >>> something that blocks the adding of the header.
> >>>
> >>> I'm still considering what might be the best way to fix this. Hence the
> >>> brain dump above. Thoughts?
> >>>
> >>
> >> There has been some debate about this before, and you did add quite a
> bit
> >> of code to catch things that would break the protocol. So it seems this
> >> would go above and beyond, and attempt to catch *anything* that could
> make
> >> a response non compliant with the underlying protocol ?
> >>
> >> Rémy
> >>
> >>
> >>>
> >>> Mark
> >>>
> >>>
> >>> -
> >>> To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
> >>> For additional commands, e-mail: dev-h...@tomcat.apache.org
> >>>
> >>>
> >>
> >
>
>
> -
> To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
> For additional commands, e-mail: dev-h...@tomcat.apache.org
>
>

Re: Applications setting connection specific HTTP headers

[Mark Thomas]

On 03/02/2021 16:06, Romain Manni-Bucau wrote:
> Hi,
> 
> Why not just adding a tomcat-application-fixer module (a more ugly name can
> be relevant ;)) application could add in their WEB-INF/lib through web
> resource definition (ie plain context.xml config or programmatic
> equivalent) which would have a @WebFilter(/*, asyncSupported=true) which
> would wrap the response to do the fixes you want for these apps but it
> wouldnt be seen in the most common case at all (or if there is only this
> small fix it can be a default filter of tomcat, depends the number of fixes
> and related code IMHO).

Primarily because of the risk that wrapping the request breaks the
application.

While a well-behaved app should be unaffected by a Filter adding a
wrapped response, we already know that these applications are not
well-behaved - else they wouldn't be setting these headers in the first
place.

Hence I am looking at solutions further down the stack in the Tomcat
internals.

Mark


> 
> Romain Manni-Bucau
> @rmannibucau  |  Blog
>  | Old Blog
>  | Github  |
> LinkedIn  | Book
> 
> 
> 
> Le mer. 3 févr. 2021 à 16:50, Rémy Maucherat  a écrit :
> 
>> On Wed, Feb 3, 2021 at 1:03 PM Mark Thomas  wrote:
>>
>>> Hi all,
>>>
>>> We have an open PR related to this for HTTP/2 (#277) and I am seeing
>>> related issues at $work with HTTP.
>>>
>>> In short, applications are doing things like:
>>>
>>> response.setHeader("Transfer-Encoding", "chunked");
>>>
>>> which, as you'd expect is causing problems if:
>>> - Tomcat doesn't chunk the response
>>> - Tomcat does chunk the response, adds its own "chunked" value and the
>>>   user agent rightly objects to "chunked" appearing twice
>>>
>>> And so on.
>>>
>>> I'd like to put something into Tomcat to address this.
>>>
>>> I think it should be disabled by default so correctly written
>>> applications pay a very small penalty. Along the lines of
>>>
>>> if (someSetting != null) {
>>> // Do header checks
>>> }
>>>
>>> In terms of options I think we need:
>>> - something representing the current, allow anything, behaviour
>>> - an option to log (with a stack trace so the offending code can be
>>>   identified) attempts to set such headers
>>> - an option to ignore attempts to set such headers
>>>
>>> Do we need an option that throws an exception if there is an attempt to
>>> set such headers?
>>>
>>> Do we need an option to control which headers and which values will
>>> trigger this behaviour? This would make the configuration rather more
>>> complex. You'd need to be able to set multiple combinations of header,
>>> value and action.
>>>
>>> Is adding debug (no stacktrace) and trace (with stacktrace) logging to
>>> addHeader() sufficient? For identifying faulty code this helps but it
>>> doesn't provide a way to work-around the problem. For that you need
>>> something that blocks the adding of the header.
>>>
>>> I'm still considering what might be the best way to fix this. Hence the
>>> brain dump above. Thoughts?
>>>
>>
>> There has been some debate about this before, and you did add quite a bit
>> of code to catch things that would break the protocol. So it seems this
>> would go above and beyond, and attempt to catch *anything* that could make
>> a response non compliant with the underlying protocol ?
>>
>> Rémy
>>
>>
>>>
>>> Mark
>>>
>>>
>>> -
>>> To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
>>> For additional commands, e-mail: dev-h...@tomcat.apache.org
>>>
>>>
>>
> 


-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

Re: Applications setting connection specific HTTP headers

[Mark Thomas]

On 03/02/2021 15:50, Rémy Maucherat wrote:
> On Wed, Feb 3, 2021 at 1:03 PM Mark Thomas  wrote:



>> I'm still considering what might be the best way to fix this. Hence the
>> brain dump above. Thoughts?
> 
> There has been some debate about this before, and you did add quite a bit
> of code to catch things that would break the protocol. So it seems this
> would go above and beyond, and attempt to catch *anything* that could make
> a response non compliant with the underlying protocol ?

The stuff I added before was mostly on the input side to protect against
non-compliant user agents. The changes I am thinking about here are more
geared towards preventing apps from setting response headers they shouldn't.

How far to go is the question:
a) a few we know are definitely wrong (like TE: chunked) ?
b) any we think Tomcat should / needs to control ?
c) make it fully customisable ?
d) something else?

Maybe I need to make a list of the headers I think fall under a) and b)
and see if that helps clarify things.

Mark

-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

Re: Applications setting connection specific HTTP headers

[Romain Manni-Bucau]

Hi,

Why not just adding a tomcat-application-fixer module (a more ugly name can
be relevant ;)) application could add in their WEB-INF/lib through web
resource definition (ie plain context.xml config or programmatic
equivalent) which would have a @WebFilter(/*, asyncSupported=true) which
would wrap the response to do the fixes you want for these apps but it
wouldnt be seen in the most common case at all (or if there is only this
small fix it can be a default filter of tomcat, depends the number of fixes
and related code IMHO).

Romain Manni-Bucau
@rmannibucau  |  Blog
 | Old Blog
 | Github  |
LinkedIn  | Book



Le mer. 3 févr. 2021 à 16:50, Rémy Maucherat  a écrit :

> On Wed, Feb 3, 2021 at 1:03 PM Mark Thomas  wrote:
>
> > Hi all,
> >
> > We have an open PR related to this for HTTP/2 (#277) and I am seeing
> > related issues at $work with HTTP.
> >
> > In short, applications are doing things like:
> >
> > response.setHeader("Transfer-Encoding", "chunked");
> >
> > which, as you'd expect is causing problems if:
> > - Tomcat doesn't chunk the response
> > - Tomcat does chunk the response, adds its own "chunked" value and the
> >   user agent rightly objects to "chunked" appearing twice
> >
> > And so on.
> >
> > I'd like to put something into Tomcat to address this.
> >
> > I think it should be disabled by default so correctly written
> > applications pay a very small penalty. Along the lines of
> >
> > if (someSetting != null) {
> > // Do header checks
> > }
> >
> > In terms of options I think we need:
> > - something representing the current, allow anything, behaviour
> > - an option to log (with a stack trace so the offending code can be
> >   identified) attempts to set such headers
> > - an option to ignore attempts to set such headers
> >
> > Do we need an option that throws an exception if there is an attempt to
> > set such headers?
> >
> > Do we need an option to control which headers and which values will
> > trigger this behaviour? This would make the configuration rather more
> > complex. You'd need to be able to set multiple combinations of header,
> > value and action.
> >
> > Is adding debug (no stacktrace) and trace (with stacktrace) logging to
> > addHeader() sufficient? For identifying faulty code this helps but it
> > doesn't provide a way to work-around the problem. For that you need
> > something that blocks the adding of the header.
> >
> > I'm still considering what might be the best way to fix this. Hence the
> > brain dump above. Thoughts?
> >
>
> There has been some debate about this before, and you did add quite a bit
> of code to catch things that would break the protocol. So it seems this
> would go above and beyond, and attempt to catch *anything* that could make
> a response non compliant with the underlying protocol ?
>
> Rémy
>
>
> >
> > Mark
> >
> >
> > -
> > To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
> > For additional commands, e-mail: dev-h...@tomcat.apache.org
> >
> >
>

svn commit: r1886171 - in /tomcat/site/trunk: docs/ xdocs/

[markt]

Author: markt
Date: Wed Feb  3 16:01:25 2021
New Revision: 1886171

URL: http://svn.apache.org/viewvc?rev=1886171=rev
Log:
Update site for 8.5.63 release

Modified:
tomcat/site/trunk/docs/doap_Tomcat.rdf
tomcat/site/trunk/docs/download-80.html
tomcat/site/trunk/docs/index.html
tomcat/site/trunk/docs/migration-85.html
tomcat/site/trunk/docs/oldnews.html
tomcat/site/trunk/docs/whichversion.html
tomcat/site/trunk/xdocs/doap_Tomcat.rdf
tomcat/site/trunk/xdocs/download-80.xml
tomcat/site/trunk/xdocs/index.xml
tomcat/site/trunk/xdocs/migration-85.xml
tomcat/site/trunk/xdocs/oldnews.xml
tomcat/site/trunk/xdocs/whichversion.xml

Modified: tomcat/site/trunk/docs/doap_Tomcat.rdf
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/doap_Tomcat.rdf?rev=1886171=1886170=1886171=diff
==
--- tomcat/site/trunk/docs/doap_Tomcat.rdf (original)
+++ tomcat/site/trunk/docs/doap_Tomcat.rdf Wed Feb  3 16:01:25 2021
@@ -74,8 +74,8 @@
 
   
 Latest Stable 8.5.x Release
-2020-12-08
-8.5.61
+2021-02-03
+8.5.63
   
 
 

Modified: tomcat/site/trunk/docs/download-80.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/download-80.html?rev=1886171=1886170=1886171=diff
==
--- tomcat/site/trunk/docs/download-80.html (original)
+++ tomcat/site/trunk/docs/download-80.html Wed Feb  3 16:01:25 2021
@@ -12,7 +12,7 @@
 
   Quick Navigation
 
-[define v]8.5.61[end]
+[define v]8.5.63[end]
 https://downloads.apache.org/tomcat/tomcat-8/KEYS;>KEYS |
 [v] |
 Browse |

Modified: tomcat/site/trunk/docs/index.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/index.html?rev=1886171=1886170=1886171=diff
==
--- tomcat/site/trunk/docs/index.html (original)
+++ tomcat/site/trunk/docs/index.html Wed Feb  3 16:01:25 2021
@@ -92,37 +92,26 @@ changelog.
 
 https://tomcat.apache.org/download-90.cgi;>Download
 
-2020-12-21 Tomcat Native 1.2.26 Released
-
-The Apache Tomcat Project is proud to announce the release of version 1.2.26 of
-Tomcat Native. The notable changes since 1.2.25 include:
-
-
-Windows binaries built using OpenSSL 1.1.1i
-Expose support for Unix domain sockets (bug https://bz.apache.org/bugzilla/show_bug.cgi?id=64942;>64942)
-
-
-https://tomcat.apache.org/download-native.cgi;>Download |
-ChangeLog for 1.2.26
-
-2020-12-08 Tomcat 8.5.61 Released
+2020-02-03 Tomcat 8.5.63 Released
 
-The Apache Tomcat Project is proud to announce the release of version 8.5.61
+The Apache Tomcat Project is proud to announce the release of version 8.5.63
 of Apache Tomcat. Apache Tomcat 8.5.x replaces 8.0.x and includes new features
 pulled forward from Tomcat 9.0.x. The minimum Java version and implemented
 specification versions remain unchanged. The notable changes compared
-to 8.5.60 include:
+to 8.5.61 include:
 
-Align the behaviour of ServletContext.getRealPath(String path)
-with the recent clarification from the Servlet specification project. If 
the
-path parameter does not start with / then Tomcat processes the
-call as if / is appended to the beginning of the provided 
path.
-
-Fix a potential file descriptor leak when WebSocket connections are
-attempted and fail. Patch provided by Maurizio Adami.
-Ensure that the LoadBalancerDrainingValve uses the correct setting
-for the secure attribute for any session cookies it creates. Based on
-a pull request by Andreas Kurth.
+Add a new StringInterpreter interface that allows applications
+to provide customised string attribute value to type conversion within 
JSPs.
+This allows applications to provide a conversion implementation that is
+optimised for the application.
+Add peerAddress to coyote request, which contains the IP
+address of the direct connection peer. If a reverse proxy sits in front of
+Tomcat and the RemoteIp(Valve|Filter) is used, the peerAddress is likely to
+differ from the remoteAddress. The remoteAddress is likely to contain the
+address of the client in front of the reverse proxy, not the address of the
+proxy itself.
+Escape elements in the access log that need to be escaped for the access 
log
+to be parsed unambiguously.
 
 
 Full details of these changes, and all the other changes, are available in the
@@ -133,6 +122,19 @@ changelog.
 
 https://tomcat.apache.org/download-80.cgi;>Download
 
+2020-12-21 Tomcat Native 1.2.26 Released
+
+The Apache Tomcat Project is proud to announce the release of version 1.2.26 of
+Tomcat Native. The notable changes since 1.2.25 include:
+
+
+Windows binaries built using OpenSSL 1.1.1i
+Expose support for Unix domain sockets (bug https://bz.apache.org/bugzilla/show_bug.cgi?id=64942;>64942)
+
+

svn commit: r1886170 - in /tomcat/site/trunk: ./ docs/tomcat-8.5-doc/ docs/tomcat-8.5-doc/annotationapi/ docs/tomcat-8.5-doc/annotationapi/javax/annotation/ docs/tomcat-8.5-doc/annotationapi/javax/ann

[markt]

Author: markt
Date: Wed Feb  3 15:54:01 2021
New Revision: 1886170

URL: http://svn.apache.org/viewvc?rev=1886170=rev
Log:
Update website for 8.5.63 release


[This commit notification would consist of 84 parts, 
which exceeds the limit of 50 ones, so it was shortened to the summary.]

-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

Re: Applications setting connection specific HTTP headers

[Rémy Maucherat]

On Wed, Feb 3, 2021 at 1:03 PM Mark Thomas  wrote:

> Hi all,
>
> We have an open PR related to this for HTTP/2 (#277) and I am seeing
> related issues at $work with HTTP.
>
> In short, applications are doing things like:
>
> response.setHeader("Transfer-Encoding", "chunked");
>
> which, as you'd expect is causing problems if:
> - Tomcat doesn't chunk the response
> - Tomcat does chunk the response, adds its own "chunked" value and the
>   user agent rightly objects to "chunked" appearing twice
>
> And so on.
>
> I'd like to put something into Tomcat to address this.
>
> I think it should be disabled by default so correctly written
> applications pay a very small penalty. Along the lines of
>
> if (someSetting != null) {
> // Do header checks
> }
>
> In terms of options I think we need:
> - something representing the current, allow anything, behaviour
> - an option to log (with a stack trace so the offending code can be
>   identified) attempts to set such headers
> - an option to ignore attempts to set such headers
>
> Do we need an option that throws an exception if there is an attempt to
> set such headers?
>
> Do we need an option to control which headers and which values will
> trigger this behaviour? This would make the configuration rather more
> complex. You'd need to be able to set multiple combinations of header,
> value and action.
>
> Is adding debug (no stacktrace) and trace (with stacktrace) logging to
> addHeader() sufficient? For identifying faulty code this helps but it
> doesn't provide a way to work-around the problem. For that you need
> something that blocks the adding of the header.
>
> I'm still considering what might be the best way to fix this. Hence the
> brain dump above. Thoughts?
>

There has been some debate about this before, and you did add quite a bit
of code to catch things that would break the protocol. So it seems this
would go above and beyond, and attempt to catch *anything* that could make
a response non compliant with the underlying protocol ?

Rémy


>
> Mark
>
>
> -
> To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
> For additional commands, e-mail: dev-h...@tomcat.apache.org
>
>

[ANN] Apache Tomcat 9.0.43 available

[Mark Thomas]

The Apache Tomcat team announces the immediate availability of Apache
Tomcat 9.0.43.

Apache Tomcat 9 is an open source software implementation of the Java
Servlet, JavaServer Pages, Java Unified Expression Language, Java
WebSocket and JASPIC technologies.

Apache Tomcat 9.0.43 is a bugfix and feature release. The notable
changes compared to 9.0.41 include:

- Add support for using Unix domain sockets for NIO when running on Java
  16 or later.

- Add a new StringInterpreter interface that allows applications to
  provide customised string attribute value to type conversion within
  JSPs. This allows applications to provide a conversion implementation
  that is optimised for the application.

- Add peerAddress to coyote request, which contains the IP address of
  the direct connection peer. If a reverse proxy sits in front of Tomcat
  and the RemoteIp(Valve|Filter) is used, the peerAddress is likely to
  differ from the remoteAddress. The remoteAddress is likely to contain
  the address of the client in front of the reverse proxy, not the
  address of the proxy itself.

Please refer to the change log for the complete list of changes:
http://tomcat.apache.org/tomcat-9.0-doc/changelog.html


Downloads:
http://tomcat.apache.org/download-90.cgi

Migration guides from Apache Tomcat 7.x and 8.x:
http://tomcat.apache.org/migration.html

Enjoy!

- The Apache Tomcat team


-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

svn commit: r1886166 - in /tomcat/site/trunk: docs/ xdocs/

[markt]

Author: markt
Date: Wed Feb  3 15:35:59 2021
New Revision: 1886166

URL: http://svn.apache.org/viewvc?rev=1886166=rev
Log:
Update site for 9.0.43 release

Modified:
tomcat/site/trunk/docs/doap_Tomcat.rdf
tomcat/site/trunk/docs/download-90.html
tomcat/site/trunk/docs/index.html
tomcat/site/trunk/docs/migration-9.html
tomcat/site/trunk/docs/oldnews.html
tomcat/site/trunk/docs/whichversion.html
tomcat/site/trunk/xdocs/doap_Tomcat.rdf
tomcat/site/trunk/xdocs/download-90.xml
tomcat/site/trunk/xdocs/index.xml
tomcat/site/trunk/xdocs/migration-9.xml
tomcat/site/trunk/xdocs/oldnews.xml
tomcat/site/trunk/xdocs/whichversion.xml

Modified: tomcat/site/trunk/docs/doap_Tomcat.rdf
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/doap_Tomcat.rdf?rev=1886166=1886165=1886166=diff
==
--- tomcat/site/trunk/docs/doap_Tomcat.rdf (original)
+++ tomcat/site/trunk/docs/doap_Tomcat.rdf Wed Feb  3 15:35:59 2021
@@ -67,8 +67,8 @@
 
   
 Latest Stable 9.0.x Release
-2020-12-08
-9.0.41
+2021-02-02
+9.0.43
   
 
 

Modified: tomcat/site/trunk/docs/download-90.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/download-90.html?rev=1886166=1886165=1886166=diff
==
--- tomcat/site/trunk/docs/download-90.html (original)
+++ tomcat/site/trunk/docs/download-90.html Wed Feb  3 15:35:59 2021
@@ -12,7 +12,7 @@
 
   Quick Navigation
 
-[define v]9.0.41[end]
+[define v]9.0.43[end]
 https://downloads.apache.org/tomcat/tomcat-9/KEYS;>KEYS |
 [v] |
 Browse |

Modified: tomcat/site/trunk/docs/index.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/index.html?rev=1886166=1886165=1886166=diff
==
--- tomcat/site/trunk/docs/index.html (original)
+++ tomcat/site/trunk/docs/index.html Wed Feb  3 15:35:59 2021
@@ -65,6 +65,33 @@ changelog.
 
 https://tomcat.apache.org/download-10.cgi;>Download
 
+2021-02-02 Tomcat 9.0.43 Released
+
+The Apache Tomcat Project is proud to announce the release of version 9.0.43
+of Apache Tomcat. The notable changes compared to 9.0.41 include:
+
+Add support for using Unix domain sockets for NIO when running on
+Java 16 or later.
+Add a new StringInterpreter interface that allows applications
+to provide customised string attribute value to type conversion within 
JSPs.
+This allows applications to provide a conversion implementation that is
+optimised for the application.
+Add peerAddress to coyote request, which contains the IP
+address of the direct connection peer. If a reverse proxy sits in front of
+Tomcat and the RemoteIp(Valve|Filter) is used, the peerAddress is likely to
+differ from the remoteAddress. The remoteAddress is likely to contain the
+address of the client in front of the reverse proxy, not the address of the
+proxy itself.
+
+
+Full details of these changes, and all the other changes, are available in the
+Tomcat 9
+changelog.
+
+
+
+https://tomcat.apache.org/download-90.cgi;>Download
+
 2020-12-21 Tomcat Native 1.2.26 Released
 
 The Apache Tomcat Project is proud to announce the release of version 1.2.26 of
@@ -78,31 +105,6 @@ Tomcat Native. The notable changes since
 https://tomcat.apache.org/download-native.cgi;>Download |
 ChangeLog for 1.2.26
 
-2020-12-08 Tomcat 9.0.41 Released
-
-The Apache Tomcat Project is proud to announce the release of version 9.0.41
-of Apache Tomcat. The notable changes compared to 9.0.40 include:
-
-Align the behaviour of ServletContext.getRealPath(String path)
-with the recent clarification from the Servlet specification project. If 
the
-path parameter does not start with / then Tomcat processes the
-call as if / is appended to the beginning of the provided 
path.
-
-Fix a potential file descriptor leak when WebSocket connections are
-attempted and fail. Patch provided by Maurizio Adami.
-Ensure that the LoadBalancerDrainingValve uses the correct setting
-for the secure attribute for any session cookies it creates. Based on
-a pull request by Andreas Kurth.
-
-
-Full details of these changes, and all the other changes, are available in the
-Tomcat 9
-changelog.
-
-
-
-https://tomcat.apache.org/download-90.cgi;>Download
-
 2020-12-08 Tomcat 8.5.61 Released
 
 The Apache Tomcat Project is proud to announce the release of version 8.5.61

Modified: tomcat/site/trunk/docs/migration-9.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/migration-9.html?rev=1886166=1886165=1886166=diff
==
--- tomcat/site/trunk/docs/migration-9.html (original)
+++ tomcat/site/trunk/docs/migration-9.html Wed Feb  3 15:35:59 2021
@@ -403,8 +403,9 @@ of Apache 

[Bug 65106] ConfigFileLoader cannot properly handle file url running with SecurityManager on openjdk 1.8

[bugzilla]

https://bz.apache.org/bugzilla/show_bug.cgi?id=65106

--- Comment #13 from Remy Maucherat  ---
It was fixed shortly after in 8.5.63.

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

[Bug 65106] ConfigFileLoader cannot properly handle file url running with SecurityManager on openjdk 1.8

[bugzilla]

https://bz.apache.org/bugzilla/show_bug.cgi?id=65106

--- Comment #12 from Jiri Novak  ---
Any chance it will be fixed to 8.5?

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

svn commit: r1886162 - in /tomcat/site/trunk: ./ docs/tomcat-9.0-doc/ docs/tomcat-9.0-doc/annotationapi/ docs/tomcat-9.0-doc/annotationapi/javax/annotation/ docs/tomcat-9.0-doc/annotationapi/javax/ann

[markt]

Author: markt
Date: Wed Feb  3 14:27:35 2021
New Revision: 1886162

URL: http://svn.apache.org/viewvc?rev=1886162=rev
Log:
Update docs for 9.0.43 release


[This commit notification would consist of 88 parts, 
which exceeds the limit of 50 ones, so it was shortened to the summary.]

-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

[GitHub] [tomcat] markt-asf commented on pull request #404: Update translation

[GitBox]

markt-asf commented on pull request #404:
URL: https://github.com/apache/tomcat/pull/404#issuecomment-772544869


   Many thanks. Much appreciated. The updates will be imported into Tomcat 
later this month for inclusion in the March releases.



This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

For queries about this service, please contact Infrastructure at:
us...@infra.apache.org



-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

[GitHub] [tomcat] Thihup closed pull request #404: Update translation

[GitBox]

Thihup closed pull request #404:
URL: https://github.com/apache/tomcat/pull/404


   



This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

For queries about this service, please contact Infrastructure at:
us...@infra.apache.org



-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

[GitHub] [tomcat] Thihup commented on pull request #404: Update translation

[GitBox]

Thihup commented on pull request #404:
URL: https://github.com/apache/tomcat/pull/404#issuecomment-772543034


   Sure



This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

For queries about this service, please contact Infrastructure at:
us...@infra.apache.org



-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

[ANN] Apache Tomcat 10.0.2 available

[Mark Thomas]

The Apache Tomcat team announces the immediate availability of Apache
Tomcat 10.0.2.

This release is the first stable release in the 10.0.x series and is
targeted at Jakarta EE 9.

Apache Tomcat 10 is an open source software implementation of the
Jakarta Servlet, Jakarta Server Pages, Jakarta Expression Language,
Jakarta WebSocket, Jakarta Authentication and Jakarta Annotations
specifications.

Users of Tomcat 10 onwards should be aware that, as a result of the move
from Java EE to Jakarta EE as part of the transfer of Java EE to the
Eclipse Foundation, the primary package for all implemented APIs has
changed from javax.* to jakarta.*. This will almost certainly require
code changes to enable applications to migrate from Tomcat 9 and earlier
to Tomcat 10 and later. A migration tool is under development to aid
this process.

The notable changes compared to 10.0.0 include:

- Add support for using Unix domain sockets for NIO when running on Java
  16 or later.
- Add a new StringInterpreter interface that allows applications to
  provide customised string attribute value to type conversion within
  JSPs. This allows applications to provide a conversion implementation
  that is optimised for the application.
- Add peerAddress to coyote request, which contains the IP address of
  the direct connection peer. If a reverse proxy sits in front of Tomcat
  and the RemoteIp(Valve|Filter) is used, the peerAddress is likely to
  differ from the remoteAddress. The remoteAddress is likely to contain
  the address of the client in front of the reverse proxy, not the
  address of the proxy itself.

Please refer to the change log for the complete list of changes:
http://tomcat.apache.org/tomcat-10.0-doc/changelog.html

Downloads:
http://tomcat.apache.org/download-10.cgi

Migration guides from Apache Tomcat 7.0.x, 8.5.x and 9.0.x:
http://tomcat.apache.org/migration.html

Enjoy!

- The Apache Tomcat team

-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

svn commit: r45789 - /release/tomcat/tomcat-10/v10.0.0/

[markt]

Author: markt
Date: Wed Feb  3 13:04:12 2021
New Revision: 45789

Log:
Remove 10.0.0 from mirror network

Removed:
release/tomcat/tomcat-10/v10.0.0/


-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

svn commit: r1886159 [3/7] - in /tomcat/site/trunk: docs/ xdocs/stylesheets/

[markt]

Modified: tomcat/site/trunk/docs/migration-8.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/migration-8.html?rev=1886159=1886158=1886159=diff
==
--- tomcat/site/trunk/docs/migration-8.html (original)
+++ tomcat/site/trunk/docs/migration-8.html Wed Feb  3 13:01:09 2021
@@ -1,7 +1,7 @@
 
 Apache Tomcat - Migration Guide - Tomcat 
8.0.xhttp://tomcat.apache.org/;>Apache 
Tomcathttps://www.apache.org/foundation/contributing.html; target="_blank" 
class="pull-left">https://www.apache.org/images/SupportApache-small.png; class="support-asf" 
alt="Support Apache">http://www.apache.org/; target="_blank" class="pull-left">https://www.google.com/search; method="get">GOhttps://www.apache.org/events/current-event.html;>https://www.apache.org/events/current-event-234x60.png; alt="Next ASF 
event">
   Save the date!
-Apache TomcatHomeTaglibsMaven 
PluginDownloadWhich version?https://tomcat.apache.org/download-10.cgi;>Tomcat 10 
(beta)https://tomcat.apache.org/download-90.cgi;>Tomcat 
9https://tomcat.apache.org/download-80.cgi;>Tomcat 
8https://tomcat.apache.org/download-70.cgi;>Tomcat 
7https://tomcat.apache.org/download-connectors.cgi;>Tomcat 
Connectorshttps://tomcat.apache.org/download-native.cgi;>Tomcat 
Nativehttps://tomcat.apache.org/download-taglibs.cgi;>Taglibshttps://archive.apache.org/dist/tomcat/;>ArchivesDocumentation
 Tomcat 10.0 (beta)Tomcat 
9.0Tomcat 8.5Tomcat 7.0Tomcat ConnectorsTomcat Nativehttps://cwiki.apache.org/confluence/display/TOMCAT;>WikiMigration GuidePresentationshttps://cwiki.apache.org/confluence/x/Bi8lBg;>SpecificationsProblems?Security ReportsFind helphttps://cwiki.apache.org/confluence/display/TOMCAT/FAQ;>FAQMailing ListsBug 
DatabaseIRCGet 
InvolvedOverviewSource 
codeBuildbothttps://cwiki.apache.org/confluence/x/vIPzBQ;>TranslationsToolsMediahttps://twitter.com/theapachetomcat;>Twitterhttps://www.youtube.com/c/ApacheTomcatOfficial;>YouTubehttps://blogs.apache.org/tomcat/;>BlogMiscWho We Arehttps://www.redbubble.com/people/comdev/works/30885254-apache-tomcat;>SwagHeritagehttp://www.apache.org;>Apache HomeResourcesContactLegalhttps://www.apache.org/foundation/contributing.html;>Support 
Apache<
 li>https://www.apache.org/foundation/sponsorship.html;>Sponsorshiphttp://www.apache.org/foundation/thanks.html;>Thankshttp://www.apache.org/licenses/;>LicenseContentTable of Contents
+Apache TomcatHomeTaglibsMaven 
PluginDownloadWhich version?https://tomcat.apache.org/download-10.cgi;>Tomcat 10https://tomcat.apache.org/download-90.cgi;>Tomcat 9https://tomcat.apache.org/download-80.cgi;>Tomcat 8https://tomcat.apache.org/download-70.cgi;>Tomcat 7https://tomcat.apache.org/download-connectors.cgi;>Tomcat 
Connectorshttps://tomcat.apache.org/download-native.cgi;>Tomcat 
Nativehttps://tomcat.apache.org/download-taglibs.cgi;>Taglibshttps://archive.apache.org/dist/tomcat/;>ArchivesDocumentationTomcat 
 10.0Tomcat 
9.0Tomcat 8.5Tomcat 7.0Tomcat ConnectorsTomcat Nativehttps://cwiki.apache.org/confluence/display/TOMCAT;>WikiMigration GuidePresentationshttps://cwiki.apache.org/confluence/x/Bi8lBg;>SpecificationsProblems?Security ReportsFind helphttps://cwiki.apache.org/confluence/display/TOMCAT/FAQ;>FAQMailing ListsBug 
DatabaseIRCGet 
InvolvedOverviewSource 
codeBuildbothttps://cwiki.apache.org/confluence/x/vIPzBQ;>TranslationsToolsMediahttps://twitter.com/theapachetomcat;>Twitterhttps://www.youtube.com/c/ApacheTomcatOfficial;>YouTubehttps://blogs.apache.org/tomcat/;>BlogMiscWho We Arehttps://www.redbubble.com/people/comdev/works/30885254-apache-tomcat;>SwagHeritagehttp://www.apache.org;>Apache HomeResourcesContactLegalhttps://www.apache.org/foundation/contributing.html;>Support 
ApacheSponsorshiphttp://www.apache.org/foundation/thanks.html;>Thankshttp://www.apache.org/licenses/;>LicenseContentTable of Contents
 GeneralMigrating from 7.0.x to 
8.0.xJava 7 requiredSpecification APIsServlet 3.1 APIJavaServer Pages 2.3Jar ScanningDefault connector 
implementationDefault URL 
encodingRealmsWeb application resourcesDatabase Connection PoolingClusteringDebuggingInternal 
APIsDeploymentUpgrading 8.0.xTomcat 8.0.x noteable 
 >changeshref="#Tomcat_8.0.x_configuration_file_differences">Tomcat 8.0.x 
 >configuration file differences
 General
 
@@ -508,7 +508,7 @@ of Apache Tomcat.
   
   
 
-Copyright  1999-2020, The Apache Software Foundation
+Copyright  1999-2021, The Apache Software Foundation
 
 Apache Tomcat, Tomcat, Apache, the Apache feather, and the Apache Tomcat
 project logo are either registered trademarks or trademarks of the Apache

Modified: tomcat/site/trunk/docs/migration-85.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/migration-85.html?rev=1886159=1886158=1886159=diff
==
--- tomcat/site/trunk/docs/migration-85.html (original)
+++ 

svn commit: r1886159 [7/7] - in /tomcat/site/trunk: docs/ xdocs/stylesheets/

[markt]

Modified: tomcat/site/trunk/docs/whoweare.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/whoweare.html?rev=1886159=1886158=1886159=diff
==
--- tomcat/site/trunk/docs/whoweare.html (original)
+++ tomcat/site/trunk/docs/whoweare.html Wed Feb  3 13:01:09 2021
@@ -1,7 +1,7 @@
 
 Apache Tomcat - Who We Arehttp://tomcat.apache.org/;>Apache 
Tomcathttps://www.apache.org/foundation/contributing.html; target="_blank" 
class="pull-left">https://www.apache.org/images/SupportApache-small.png; class="support-asf" 
alt="Support Apache">http://www.apache.org/; target="_blank" 
class="pull-left">https://www.google.com/search; method="get">GOhttps://www.apache.org/events/current-event.html;>https://www.apache.org/events/current-event-234x60.png; alt="Next ASF 
event">
   Save the date!
-Apache TomcatHomeTaglibsMaven 
PluginDownloadWhich version?https://tomcat.apache.org/download-10.cgi;>Tomcat 10 
(beta)https://tomcat.apache.org/download-90.cgi;>Tomcat 
9https://tomcat.apache.org/download-80.cgi;>Tomcat 
8https://tomcat.apache.org/download-70.cgi;>Tomcat 
7https://tomcat.apache.org/download-connectors.cgi;>Tomcat 
Connectorshttps://tomcat.apache.org/download-native.cgi;>Tomcat 
Nativehttps://tomcat.apache.org/download-taglibs.cgi;>Taglibshttps://archive.apache.org/dist/tomcat/;>ArchivesDocumentation
 Tomcat 10.0 (beta)Tomcat 
9.0Tomcat 8.5Tomcat 7.0Tomcat ConnectorsTomcat Nativehttps://cwiki.apache.org/confluence/display/TOMCAT;>WikiMigration GuidePresentationshttps://cwiki.apache.org/confluence/x/Bi8lBg;>SpecificationsProblems?Security ReportsFind helphttps://cwiki.apache.org/confluence/display/TOMCAT/FAQ;>FAQMailing ListsBug 
DatabaseIRCGet 
InvolvedOverviewSource 
codeBuildbothttps://cwiki.apache.org/confluence/x/vIPzBQ;>TranslationsToolsMediahttps://twitter.com/theapachetomcat;>Twitterhttps://www.youtube.com/c/ApacheTomcatOfficial;>YouTubehttps://blogs.apache.org/tomcat/;>BlogMiscWho We Arehttps://www.redbubble.com/people/comdev/works/30885254-apache-tomcat;>SwagHeritagehttp://www.apache.org;>Apache HomeResourcesContactLegalhttps://www.apache.org/foundation/contributing.html;>Support 
Apache<
 li>https://www.apache.org/foundation/sponsorship.html;>Sponsorshiphttp://www.apache.org/foundation/thanks.html;>Thankshttp://www.apache.org/licenses/;>LicenseContentWho We Are
+Apache TomcatHomeTaglibsMaven 
PluginDownloadWhich version?https://tomcat.apache.org/download-10.cgi;>Tomcat 10https://tomcat.apache.org/download-90.cgi;>Tomcat 9https://tomcat.apache.org/download-80.cgi;>Tomcat 8https://tomcat.apache.org/download-70.cgi;>Tomcat 7https://tomcat.apache.org/download-connectors.cgi;>Tomcat 
Connectorshttps://tomcat.apache.org/download-native.cgi;>Tomcat 
Nativehttps://tomcat.apache.org/download-taglibs.cgi;>Taglibshttps://archive.apache.org/dist/tomcat/;>ArchivesDocumentationTomcat 
 10.0Tomcat 
9.0Tomcat 8.5Tomcat 7.0Tomcat ConnectorsTomcat Nativehttps://cwiki.apache.org/confluence/display/TOMCAT;>WikiMigration GuidePresentationshttps://cwiki.apache.org/confluence/x/Bi8lBg;>SpecificationsProblems?Security ReportsFind helphttps://cwiki.apache.org/confluence/display/TOMCAT/FAQ;>FAQMailing ListsBug 
DatabaseIRCGet 
InvolvedOverviewSource 
codeBuildbothttps://cwiki.apache.org/confluence/x/vIPzBQ;>TranslationsToolsMediahttps://twitter.com/theapachetomcat;>Twitterhttps://www.youtube.com/c/ApacheTomcatOfficial;>YouTubehttps://blogs.apache.org/tomcat/;>BlogMiscWho We Arehttps://www.redbubble.com/people/comdev/works/30885254-apache-tomcat;>SwagHeritagehttp://www.apache.org;>Apache HomeResourcesContactLegalhttps://www.apache.org/foundation/contributing.html;>Support 
ApacheSponsorshiphttp://www.apache.org/foundation/thanks.html;>Thankshttp://www.apache.org/licenses/;>LicenseContentWho We Are
 
 The Apache Tomcat Project operates on a meritocracy: the more you do,
 the more responsibility you will obtain. This page lists all of the
@@ -220,7 +220,7 @@ Emeritus is defined in the Apache gl
 
 
 
-Copyright  1999-2020, The Apache Software Foundation
+Copyright  1999-2021, The Apache Software Foundation
 
 Apache Tomcat, Tomcat, Apache, the Apache feather, and the Apache Tomcat
 project logo are either registered trademarks or trademarks of the Apache

Modified: tomcat/site/trunk/xdocs/stylesheets/tomcat-site.xsl
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/xdocs/stylesheets/tomcat-site.xsl?rev=1886159=1886158=1886159=diff
==
--- tomcat/site/trunk/xdocs/stylesheets/tomcat-site.xsl (original)
+++ tomcat/site/trunk/xdocs/stylesheets/tomcat-site.xsl Wed Feb  3 13:01:09 2021
@@ -147,7 +147,7 @@
 
   
   
-Copyright © 1999-2020, The Apache Software Foundation
+Copyright © 1999-2021, The Apache Software Foundation
 
 Apache Tomcat, Tomcat, Apache, the Apache feather, and the Apache Tomcat
 

svn commit: r1886159 [6/7] - in /tomcat/site/trunk: docs/ xdocs/stylesheets/

[markt]

Modified: tomcat/site/trunk/docs/security-native.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/security-native.html?rev=1886159=1886158=1886159=diff
==
--- tomcat/site/trunk/docs/security-native.html (original)
+++ tomcat/site/trunk/docs/security-native.html Wed Feb  3 13:01:09 2021
@@ -1,7 +1,7 @@
 
 Apache Tomcat - Apache Tomcat APR/native Connector 
vulnerabilitieshttp://tomcat.apache.org/;>Apache 
Tomcathttps://www.apache.org/foundation/contributing.html; target="_blank" 
class="pull-left">https://www.apache.org/images/SupportApache-small.png; class="support-asf" 
alt="Suppo
 rt Apache">http://www.apache.org/; target="_blank" 
class="pull-left">https://www.google.com/search; method="get">GOhttps://www.apache.org/events/current-event.html;>https://www.apache.org/events/current-event-234x60.png; alt="Next ASF 
event">
   Save the date!
-Apache TomcatHomeTaglibsMaven 
PluginDownloadWhich version?https://tomcat.apache.org/download-10.cgi;>Tomcat 10 
(beta)https://tomcat.apache.org/download-90.cgi;>Tomcat 
9https://tomcat.apache.org/download-80.cgi;>Tomcat 
8https://tomcat.apache.org/download-70.cgi;>Tomcat 
7https://tomcat.apache.org/download-connectors.cgi;>Tomcat 
Connectorshttps://tomcat.apache.org/download-native.cgi;>Tomcat 
Nativehttps://tomcat.apache.org/download-taglibs.cgi;>Taglibshttps://archive.apache.org/dist/tomcat/;>ArchivesDocumentation
 Tomcat 10.0 (beta)Tomcat 
9.0Tomcat 8.5Tomcat 7.0Tomcat ConnectorsTomcat Nativehttps://cwiki.apache.org/confluence/display/TOMCAT;>WikiMigration GuidePresentationshttps://cwiki.apache.org/confluence/x/Bi8lBg;>SpecificationsProblems?Security ReportsFind helphttps://cwiki.apache.org/confluence/display/TOMCAT/FAQ;>FAQMailing ListsBug 
DatabaseIRCGet 
InvolvedOverviewSource 
codeBuildbothttps://cwiki.apache.org/confluence/x/vIPzBQ;>TranslationsToolsMediahttps://twitter.com/theapachetomcat;>Twitterhttps://www.youtube.com/c/ApacheTomcatOfficial;>YouTubehttps://blogs.apache.org/tomcat/;>BlogMiscWho We Arehttps://www.redbubble.com/people/comdev/works/30885254-apache-tomcat;>SwagHeritagehttp://www.apache.org;>Apache HomeResourcesContactLegalhttps://www.apache.org/foundation/contributing.html;>Support 
Apache<
 li>https://www.apache.org/foundation/sponsorship.html;>Sponsorshiphttp://www.apache.org/foundation/thanks.html;>Thankshttp://www.apache.org/licenses/;>LicenseContentTable of Contents
+Apache TomcatHomeTaglibsMaven 
PluginDownloadWhich version?https://tomcat.apache.org/download-10.cgi;>Tomcat 10https://tomcat.apache.org/download-90.cgi;>Tomcat 9https://tomcat.apache.org/download-80.cgi;>Tomcat 8https://tomcat.apache.org/download-70.cgi;>Tomcat 7https://tomcat.apache.org/download-connectors.cgi;>Tomcat 
Connectorshttps://tomcat.apache.org/download-native.cgi;>Tomcat 
Nativehttps://tomcat.apache.org/download-taglibs.cgi;>Taglibshttps://archive.apache.org/dist/tomcat/;>ArchivesDocumentationTomcat 
 10.0Tomcat 
9.0Tomcat 8.5Tomcat 7.0Tomcat ConnectorsTomcat Nativehttps://cwiki.apache.org/confluence/display/TOMCAT;>WikiMigration GuidePresentationshttps://cwiki.apache.org/confluence/x/Bi8lBg;>SpecificationsProblems?Security ReportsFind helphttps://cwiki.apache.org/confluence/display/TOMCAT/FAQ;>FAQMailing ListsBug 
DatabaseIRCGet 
InvolvedOverviewSource 
codeBuildbothttps://cwiki.apache.org/confluence/x/vIPzBQ;>TranslationsToolsMediahttps://twitter.com/theapachetomcat;>Twitterhttps://www.youtube.com/c/ApacheTomcatOfficial;>YouTubehttps://blogs.apache.org/tomcat/;>BlogMiscWho We Arehttps://www.redbubble.com/people/comdev/works/30885254-apache-tomcat;>SwagHeritagehttp://www.apache.org;>Apache HomeResourcesContactLegalhttps://www.apache.org/foundation/contributing.html;>Support 
ApacheSponsorshiphttp://www.apache.org/foundation/thanks.html;>Thankshttp://www.apache.org/licenses/;>LicenseContentTable of Contents
 Apache 
Tomcat APR/native Connector vulnerabilitiesFixed in Apache Tomcat 
Native Connector 1.2.17Fixed in Apache Tomcat 
Native Connector 1.2.16Not a 
vulnerability in the Apache Tomcat APR/native Connector
 Apache 
Tomcat APR/native Connector vulnerabilities
 This page lists all security vulnerabilities fixed in released versions
@@ -111,7 +111,7 @@
 
 Affects: OpenSSL 1.0.1-1.0.1f, tcnative 1.1.24-1.1.29
   
-Copyright  1999-2020, The Apache Software Foundation
+Copyright  1999-2021, The Apache Software Foundation
 
 Apache Tomcat, Tomcat, Apache, the Apache feather, and the Apache Tomcat
 project logo are either registered trademarks or trademarks of the Apache

Modified: tomcat/site/trunk/docs/security-taglibs.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/security-taglibs.html?rev=1886159=1886158=1886159=diff
==
--- tomcat/site/trunk/docs/security-taglibs.html (original)
+++ 

svn commit: r1886159 [4/7] - in /tomcat/site/trunk: docs/ xdocs/stylesheets/

[markt]

Modified: tomcat/site/trunk/docs/oldnews-2015.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/oldnews-2015.html?rev=1886159=1886158=1886159=diff
==
--- tomcat/site/trunk/docs/oldnews-2015.html (original)
+++ tomcat/site/trunk/docs/oldnews-2015.html Wed Feb  3 13:01:09 2021
@@ -1,7 +1,7 @@
 
 Apache Tomcat - Old news!http://tomcat.apache.org/;>Apache 
Tomcathttps://www.apache.org/foundation/contributing.html; target="_blank" 
class="pull-left">https://www.apache.org/images/SupportApache-small.png; class="support-asf" 
alt="Support Apache">http://www.apache
 .org/" target="_blank" class="pull-left">https://www.google.com/search; method="get">GOhttps://www.apache.org/events/current-event.html;>https://www.apache.org/events/current-event-234x60.png; alt="Next ASF 
event">
   Save the date!
-Apache TomcatHomeTaglibsMaven 
PluginDownloadWhich version?https://tomcat.apache.org/download-10.cgi;>Tomcat 10 
(beta)https://tomcat.apache.org/download-90.cgi;>Tomcat 
9https://tomcat.apache.org/download-80.cgi;>Tomcat 
8https://tomcat.apache.org/download-70.cgi;>Tomcat 
7https://tomcat.apache.org/download-connectors.cgi;>Tomcat 
Connectorshttps://tomcat.apache.org/download-native.cgi;>Tomcat 
Nativehttps://tomcat.apache.org/download-taglibs.cgi;>Taglibshttps://archive.apache.org/dist/tomcat/;>ArchivesDocumentation
 Tomcat 10.0 (beta)Tomcat 
9.0Tomcat 8.5Tomcat 7.0Tomcat ConnectorsTomcat Nativehttps://cwiki.apache.org/confluence/display/TOMCAT;>WikiMigration GuidePresentationshttps://cwiki.apache.org/confluence/x/Bi8lBg;>SpecificationsProblems?Security ReportsFind helphttps://cwiki.apache.org/confluence/display/TOMCAT/FAQ;>FAQMailing ListsBug 
DatabaseIRCGet 
InvolvedOverviewSource 
codeBuildbothttps://cwiki.apache.org/confluence/x/vIPzBQ;>TranslationsToolsMediahttps://twitter.com/theapachetomcat;>Twitterhttps://www.youtube.com/c/ApacheTomcatOfficial;>YouTubehttps://blogs.apache.org/tomcat/;>BlogMiscWho We Arehttps://www.redbubble.com/people/comdev/works/30885254-apache-tomcat;>SwagHeritagehttp://www.apache.org;>Apache HomeResourcesContactLegalhttps://www.apache.org/foundation/contributing.html;>Support 
Apache<
 li>https://www.apache.org/foundation/sponsorship.html;>Sponsorshiphttp://www.apache.org/foundation/thanks.html;>Thankshttp://www.apache.org/licenses/;>LicenseContentOther news
+Apache TomcatHomeTaglibsMaven 
PluginDownloadWhich version?https://tomcat.apache.org/download-10.cgi;>Tomcat 10https://tomcat.apache.org/download-90.cgi;>Tomcat 9https://tomcat.apache.org/download-80.cgi;>Tomcat 8https://tomcat.apache.org/download-70.cgi;>Tomcat 7https://tomcat.apache.org/download-connectors.cgi;>Tomcat 
Connectorshttps://tomcat.apache.org/download-native.cgi;>Tomcat 
Nativehttps://tomcat.apache.org/download-taglibs.cgi;>Taglibshttps://archive.apache.org/dist/tomcat/;>ArchivesDocumentationTomcat 
 10.0Tomcat 
9.0Tomcat 8.5Tomcat 7.0Tomcat ConnectorsTomcat Nativehttps://cwiki.apache.org/confluence/display/TOMCAT;>WikiMigration GuidePresentationshttps://cwiki.apache.org/confluence/x/Bi8lBg;>SpecificationsProblems?Security ReportsFind helphttps://cwiki.apache.org/confluence/display/TOMCAT/FAQ;>FAQMailing ListsBug 
DatabaseIRCGet 
InvolvedOverviewSource 
codeBuildbothttps://cwiki.apache.org/confluence/x/vIPzBQ;>TranslationsToolsMediahttps://twitter.com/theapachetomcat;>Twitterhttps://www.youtube.com/c/ApacheTomcatOfficial;>YouTubehttps://blogs.apache.org/tomcat/;>BlogMiscWho We Arehttps://www.redbubble.com/people/comdev/works/30885254-apache-tomcat;>SwagHeritagehttp://www.apache.org;>Apache HomeResourcesContactLegalhttps://www.apache.org/foundation/contributing.html;>Support 
ApacheSponsorshiphttp://www.apache.org/foundation/thanks.html;>Thankshttp://www.apache.org/licenses/;>LicenseContentOther news
 Announcements from other years can be found here:
 
   year 2020
@@ -633,7 +633,7 @@ Full details of these changes, and all t
 https://tomcat.apache.org/download-80.cgi;>Download
 
 
-Copyright  1999-2020, The Apache Software Foundation
+Copyright  1999-2021, The Apache Software Foundation
 
 Apache Tomcat, Tomcat, Apache, the Apache feather, and the Apache Tomcat
 project logo are either registered trademarks or trademarks of the Apache

Modified: tomcat/site/trunk/docs/oldnews-2016.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/oldnews-2016.html?rev=1886159=1886158=1886159=diff
==
--- tomcat/site/trunk/docs/oldnews-2016.html (original)
+++ tomcat/site/trunk/docs/oldnews-2016.html Wed Feb  3 13:01:09 2021
@@ -1,7 +1,7 @@
 
 Apache Tomcat - Old news!http://tomcat.apache.org/;>Apache 
Tomcathttps://www.apache.org/foundation/contributing.html; target="_blank" 
class="pull-left">https://www.apache.org/images/SupportApache-small.png; class="support-asf" 
alt="Support Apache">http://www.apache
 

svn commit: r1886159 [5/7] - in /tomcat/site/trunk: docs/ xdocs/stylesheets/

[markt]

Modified: tomcat/site/trunk/docs/security-5.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/security-5.html?rev=1886159=1886158=1886159=diff
==
--- tomcat/site/trunk/docs/security-5.html (original)
+++ tomcat/site/trunk/docs/security-5.html Wed Feb  3 13:01:09 2021
@@ -1,7 +1,7 @@
 
 Apache Tomcat - Apache Tomcat 5 
vulnerabilitieshttp://tomcat.apache.org/;>Apache 
Tomcathttps://www.apache.org/foundation/contributing.html; target="_blank" 
class="pull-left">https://www.apache.org/images/SupportApache-small.png; class="support-asf" 
alt="Support Apache">http://www.apache.org/; target="_blank" class="pull-left">https://www.google.com/search; method="get">GOhttps://www.apache.org/events/current-event.html;>https://www.apache.org/events/current-event-234x60.png; alt="Next ASF 
event">
   Save the date!
-Apache TomcatHomeTaglibsMaven 
PluginDownloadWhich version?https://tomcat.apache.org/download-10.cgi;>Tomcat 10 
(beta)https://tomcat.apache.org/download-90.cgi;>Tomcat 
9https://tomcat.apache.org/download-80.cgi;>Tomcat 
8https://tomcat.apache.org/download-70.cgi;>Tomcat 
7https://tomcat.apache.org/download-connectors.cgi;>Tomcat 
Connectorshttps://tomcat.apache.org/download-native.cgi;>Tomcat 
Nativehttps://tomcat.apache.org/download-taglibs.cgi;>Taglibshttps://archive.apache.org/dist/tomcat/;>ArchivesDocumentation
 Tomcat 10.0 (beta)Tomcat 
9.0Tomcat 8.5Tomcat 7.0Tomcat ConnectorsTomcat Nativehttps://cwiki.apache.org/confluence/display/TOMCAT;>WikiMigration GuidePresentationshttps://cwiki.apache.org/confluence/x/Bi8lBg;>SpecificationsProblems?Security ReportsFind helphttps://cwiki.apache.org/confluence/display/TOMCAT/FAQ;>FAQMailing ListsBug 
DatabaseIRCGet 
InvolvedOverviewSource 
codeBuildbothttps://cwiki.apache.org/confluence/x/vIPzBQ;>TranslationsToolsMediahttps://twitter.com/theapachetomcat;>Twitterhttps://www.youtube.com/c/ApacheTomcatOfficial;>YouTubehttps://blogs.apache.org/tomcat/;>BlogMiscWho We Arehttps://www.redbubble.com/people/comdev/works/30885254-apache-tomcat;>SwagHeritagehttp://www.apache.org;>Apache HomeResourcesContactLegalhttps://www.apache.org/foundation/contributing.html;>Support 
Apache<
 li>https://www.apache.org/foundation/sponsorship.html;>Sponsorshiphttp://www.apache.org/foundation/thanks.html;>Thankshttp://www.apache.org/licenses/;>LicenseContentTable of Contents
+Apache TomcatHomeTaglibsMaven 
PluginDownloadWhich version?https://tomcat.apache.org/download-10.cgi;>Tomcat 10https://tomcat.apache.org/download-90.cgi;>Tomcat 9https://tomcat.apache.org/download-80.cgi;>Tomcat 8https://tomcat.apache.org/download-70.cgi;>Tomcat 7https://tomcat.apache.org/download-connectors.cgi;>Tomcat 
Connectorshttps://tomcat.apache.org/download-native.cgi;>Tomcat 
Nativehttps://tomcat.apache.org/download-taglibs.cgi;>Taglibshttps://archive.apache.org/dist/tomcat/;>ArchivesDocumentationTomcat 
 10.0Tomcat 
9.0Tomcat 8.5Tomcat 7.0Tomcat ConnectorsTomcat Nativehttps://cwiki.apache.org/confluence/display/TOMCAT;>WikiMigration GuidePresentationshttps://cwiki.apache.org/confluence/x/Bi8lBg;>SpecificationsProblems?Security ReportsFind helphttps://cwiki.apache.org/confluence/display/TOMCAT/FAQ;>FAQMailing ListsBug 
DatabaseIRCGet 
InvolvedOverviewSource 
codeBuildbothttps://cwiki.apache.org/confluence/x/vIPzBQ;>TranslationsToolsMediahttps://twitter.com/theapachetomcat;>Twitterhttps://www.youtube.com/c/ApacheTomcatOfficial;>YouTubehttps://blogs.apache.org/tomcat/;>BlogMiscWho We Arehttps://www.redbubble.com/people/comdev/works/30885254-apache-tomcat;>SwagHeritagehttp://www.apache.org;>Apache HomeResourcesContactLegalhttps://www.apache.org/foundation/contributing.html;>Support 
ApacheSponsorshiphttp://www.apache.org/foundation/thanks.html;>Thankshttp://www.apache.org/licenses/;>LicenseContentTable of Contents
 Apache Tomcat 5.x 
vulnerabilitiesFixed in 
Apache Tomcat 5.5.36Fixed 
in Apache Tomcat 5.5.35Fixed in Apache Tomcat 
5.5.34Fixed in Apache 
Tomcat 5.5.32Fixed in 
Apache Tomcat 5.5.30Fixed 
in Apache Tomcat 5.5.29Fixed in Apache Tomcat 
5.5.28Fixed in Apache 
Tomcat 5.5.27Fixed in 
Apache Tomcat 5.5.26Fixed in Apache Tomcat 5.5.25, 
5.0.SVN
 Fixed in Apache Tomcat 5.5.24, 5.0.SVNFixed in Apache Tomcat 5.5.23, 
5.0.SVNFixed in 
Apache Tomcat 5.5.22, 5.0.SVNFixed in Apache Tomcat 5.5.21, 
5.0.SVNFixed in Apache 
Tomcat 5.5.21Fixed in Apache Tomcat 5.5.18, 
5.0.SVNFixed in 
Apache Tomcat 5.5.17, 5.0.SVNFixed in Apache Tomcat 5.5.16, 
5.0.SVNFixed in 
Apache Tomcat 5.5.13, 5.0.SVNFixed in Apache Tomcat 5.5.7, 
5.0.SVNFixed in Apache T
 omcat 5.5.1Not a 
vulnerability in Tomcat
 Apache Tomcat 5.x 
vulnerabilities
 This page lists all security vulnerabilities fixed in released versions
@@ -914,7 +914,7 @@
rather than in Tomcat.
 
   
-Copyright  1999-2020, The Apache Software Foundation
+Copyright  1999-2021, The Apache Software Foundation
 
 Apache 

svn commit: r1886159 [2/7] - in /tomcat/site/trunk: docs/ xdocs/stylesheets/

[markt]

Modified: tomcat/site/trunk/docs/findhelp.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/findhelp.html?rev=1886159=1886158=1886159=diff
==
--- tomcat/site/trunk/docs/findhelp.html (original)
+++ tomcat/site/trunk/docs/findhelp.html Wed Feb  3 13:01:09 2021
@@ -1,7 +1,7 @@
 
 Apache Tomcat - Find Helphttp://tomcat.apache.org/;>Apache 
Tomcathttps://www.apache.org/foundation/contributing.html; target="_blank" 
class="pull-left">https://www.apache.org/images/SupportApache-small.png; class="support-asf" 
alt="Support Apache">http://www.apache.org/; target="_blank" 
class="pull-left">https://www.google.com/search; method="get">GOhttps://www.apache.org/events/current-event.html;>https://www.apache.org/events/current-event-234x60.png; alt="Next ASF 
event">
   Save the date!
-Apache TomcatHomeTaglibsMaven 
PluginDownloadWhich version?https://tomcat.apache.org/download-10.cgi;>Tomcat 10 
(beta)https://tomcat.apache.org/download-90.cgi;>Tomcat 
9https://tomcat.apache.org/download-80.cgi;>Tomcat 
8https://tomcat.apache.org/download-70.cgi;>Tomcat 
7https://tomcat.apache.org/download-connectors.cgi;>Tomcat 
Connectorshttps://tomcat.apache.org/download-native.cgi;>Tomcat 
Nativehttps://tomcat.apache.org/download-taglibs.cgi;>Taglibshttps://archive.apache.org/dist/tomcat/;>ArchivesDocumentation
 Tomcat 10.0 (beta)Tomcat 
9.0Tomcat 8.5Tomcat 7.0Tomcat ConnectorsTomcat Nativehttps://cwiki.apache.org/confluence/display/TOMCAT;>WikiMigration GuidePresentationshttps://cwiki.apache.org/confluence/x/Bi8lBg;>SpecificationsProblems?Security ReportsFind helphttps://cwiki.apache.org/confluence/display/TOMCAT/FAQ;>FAQMailing ListsBug 
DatabaseIRCGet 
InvolvedOverviewSource 
codeBuildbothttps://cwiki.apache.org/confluence/x/vIPzBQ;>TranslationsToolsMediahttps://twitter.com/theapachetomcat;>Twitterhttps://www.youtube.com/c/ApacheTomcatOfficial;>YouTubehttps://blogs.apache.org/tomcat/;>BlogMiscWho We Arehttps://www.redbubble.com/people/comdev/works/30885254-apache-tomcat;>SwagHeritagehttp://www.apache.org;>Apache HomeResourcesContactLegalhttps://www.apache.org/foundation/contributing.html;>Support 
Apache<
 li>https://www.apache.org/foundation/sponsorship.html;>Sponsorshiphttp://www.apache.org/foundation/thanks.html;>Thankshttp://www.apache.org/licenses/;>LicenseContentFind help
+Apache TomcatHomeTaglibsMaven 
PluginDownloadWhich version?https://tomcat.apache.org/download-10.cgi;>Tomcat 10https://tomcat.apache.org/download-90.cgi;>Tomcat 9https://tomcat.apache.org/download-80.cgi;>Tomcat 8https://tomcat.apache.org/download-70.cgi;>Tomcat 7https://tomcat.apache.org/download-connectors.cgi;>Tomcat 
Connectorshttps://tomcat.apache.org/download-native.cgi;>Tomcat 
Nativehttps://tomcat.apache.org/download-taglibs.cgi;>Taglibshttps://archive.apache.org/dist/tomcat/;>ArchivesDocumentationTomcat 
 10.0Tomcat 
9.0Tomcat 8.5Tomcat 7.0Tomcat ConnectorsTomcat Nativehttps://cwiki.apache.org/confluence/display/TOMCAT;>WikiMigration GuidePresentationshttps://cwiki.apache.org/confluence/x/Bi8lBg;>SpecificationsProblems?Security ReportsFind helphttps://cwiki.apache.org/confluence/display/TOMCAT/FAQ;>FAQMailing ListsBug 
DatabaseIRCGet 
InvolvedOverviewSource 
codeBuildbothttps://cwiki.apache.org/confluence/x/vIPzBQ;>TranslationsToolsMediahttps://twitter.com/theapachetomcat;>Twitterhttps://www.youtube.com/c/ApacheTomcatOfficial;>YouTubehttps://blogs.apache.org/tomcat/;>BlogMiscWho We Arehttps://www.redbubble.com/people/comdev/works/30885254-apache-tomcat;>SwagHeritagehttp://www.apache.org;>Apache HomeResourcesContactLegalhttps://www.apache.org/foundation/contributing.html;>Support 
ApacheSponsorshiphttp://www.apache.org/foundation/thanks.html;>Thankshttp://www.apache.org/licenses/;>LicenseContentFind help
 
 Apache Tomcat support is provided by the community, for the community, on a
 purely volunteer basis. This page has been written to help you find the help 
you
@@ -60,7 +60,7 @@ is maintained on the
 Wiki.
 
 
-Copyright  1999-2020, The Apache Software Foundation
+Copyright  1999-2021, The Apache Software Foundation
 
 Apache Tomcat, Tomcat, Apache, the Apache feather, and the Apache Tomcat
 project logo are either registered trademarks or trademarks of the Apache

Modified: tomcat/site/trunk/docs/getinvolved.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/getinvolved.html?rev=1886159=1886158=1886159=diff
==
--- tomcat/site/trunk/docs/getinvolved.html (original)
+++ tomcat/site/trunk/docs/getinvolved.html Wed Feb  3 13:01:09 2021
@@ -1,7 +1,7 @@
 
 Apache Tomcat - Get 
Involvedhttp://tomcat.apache.org/;>Apache 
Tomcathttps://www.apache.org/foundation/contributing.html; target="_blank" 
class="pull-left">https://www.apache.org/images/SupportApache-small.png; class="support-asf" 
alt="Support 

svn commit: r1886159 [1/7] - in /tomcat/site/trunk: docs/ xdocs/stylesheets/

[markt]

Author: markt
Date: Wed Feb  3 13:01:09 2021
New Revision: 1886159

URL: http://svn.apache.org/viewvc?rev=1886159=rev
Log:
Update copyright to 2021

Modified:
tomcat/site/trunk/docs/bugreport.html
tomcat/site/trunk/docs/ci.html
tomcat/site/trunk/docs/conference.html
tomcat/site/trunk/docs/contact.html
tomcat/site/trunk/docs/download-10.html
tomcat/site/trunk/docs/download-70.html
tomcat/site/trunk/docs/download-80.html
tomcat/site/trunk/docs/download-90.html
tomcat/site/trunk/docs/download-connectors.html
tomcat/site/trunk/docs/download-native.html
tomcat/site/trunk/docs/download-taglibs.html
tomcat/site/trunk/docs/findhelp.html
tomcat/site/trunk/docs/getinvolved.html
tomcat/site/trunk/docs/heritage.html
tomcat/site/trunk/docs/index.html
tomcat/site/trunk/docs/irc.html
tomcat/site/trunk/docs/legal.html
tomcat/site/trunk/docs/lists.html
tomcat/site/trunk/docs/maven-plugin.html
tomcat/site/trunk/docs/migration-10.html
tomcat/site/trunk/docs/migration-6.html
tomcat/site/trunk/docs/migration-7.html
tomcat/site/trunk/docs/migration-8.html
tomcat/site/trunk/docs/migration-85.html
tomcat/site/trunk/docs/migration-9.html
tomcat/site/trunk/docs/migration.html
tomcat/site/trunk/docs/oldnews-2010.html
tomcat/site/trunk/docs/oldnews-2011.html
tomcat/site/trunk/docs/oldnews-2012.html
tomcat/site/trunk/docs/oldnews-2013.html
tomcat/site/trunk/docs/oldnews-2014.html
tomcat/site/trunk/docs/oldnews-2015.html
tomcat/site/trunk/docs/oldnews-2016.html
tomcat/site/trunk/docs/oldnews-2017.html
tomcat/site/trunk/docs/oldnews-2018.html
tomcat/site/trunk/docs/oldnews-2019.html
tomcat/site/trunk/docs/oldnews.html
tomcat/site/trunk/docs/presentations.html
tomcat/site/trunk/docs/resources.html
tomcat/site/trunk/docs/security-10.html
tomcat/site/trunk/docs/security-3.html
tomcat/site/trunk/docs/security-4.html
tomcat/site/trunk/docs/security-5.html
tomcat/site/trunk/docs/security-6.html
tomcat/site/trunk/docs/security-7.html
tomcat/site/trunk/docs/security-8.html
tomcat/site/trunk/docs/security-9.html
tomcat/site/trunk/docs/security-impact.html
tomcat/site/trunk/docs/security-jk.html
tomcat/site/trunk/docs/security-native.html
tomcat/site/trunk/docs/security-taglibs.html
tomcat/site/trunk/docs/security.html
tomcat/site/trunk/docs/source.html
tomcat/site/trunk/docs/taglibs.html
tomcat/site/trunk/docs/tomcat-55-eol.html
tomcat/site/trunk/docs/tomcat-60-eol.html
tomcat/site/trunk/docs/tomcat-70-eol.html
tomcat/site/trunk/docs/tomcat-80-eol.html
tomcat/site/trunk/docs/tools.html
tomcat/site/trunk/docs/whichversion.html
tomcat/site/trunk/docs/whoweare.html
tomcat/site/trunk/xdocs/stylesheets/tomcat-site.xsl

Modified: tomcat/site/trunk/docs/bugreport.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/bugreport.html?rev=1886159=1886158=1886159=diff
==
--- tomcat/site/trunk/docs/bugreport.html (original)
+++ tomcat/site/trunk/docs/bugreport.html Wed Feb  3 13:01:09 2021
@@ -441,7 +441,7 @@ See Security Rep
 
 
 
-Copyright  1999-2020, The Apache Software Foundation
+Copyright  1999-2021, The Apache Software Foundation
 
 Apache Tomcat, Tomcat, Apache, the Apache feather, and the Apache Tomcat
 project logo are either registered trademarks or trademarks of the Apache

Modified: tomcat/site/trunk/docs/ci.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/ci.html?rev=1886159=1886158=1886159=diff
==
--- tomcat/site/trunk/docs/ci.html (original)
+++ tomcat/site/trunk/docs/ci.html Wed Feb  3 13:01:09 2021
@@ -295,7 +295,7 @@ prepared and published by ASF Buildbot,
 
 
 
-Copyright  1999-2020, The Apache Software Foundation
+Copyright  1999-2021, The Apache Software Foundation
 
 Apache Tomcat, Tomcat, Apache, the Apache feather, and the Apache Tomcat
 project logo are either registered trademarks or trademarks of the Apache

Modified: tomcat/site/trunk/docs/conference.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/conference.html?rev=1886159=1886158=1886159=diff
==
--- tomcat/site/trunk/docs/conference.html (original)
+++ tomcat/site/trunk/docs/conference.html Wed Feb  3 13:01:09 2021
@@ -1,7 +1,7 @@
 
 Apache Tomcat - TomcatConhttp://tomcat.apache.org/;>Apache 
Tomcathttps://www.apache.org/foundation/contributing.html; target="_blank" 
class="pull-left">https://www.apache.org/images/SupportApache-small.png; class="support-asf" 
alt="Support Apache">http://www.apache.org/; target="_blank" 
class="pull-left">https://www.google.com/search; 

svn commit: r1886158 [2/2] - in /tomcat/site/trunk: docs/ xdocs/ xdocs/stylesheets/

[markt]

Modified: tomcat/site/trunk/docs/security-10.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/security-10.html?rev=1886158=1886157=1886158=diff
==
--- tomcat/site/trunk/docs/security-10.html (original)
+++ tomcat/site/trunk/docs/security-10.html Wed Feb  3 12:58:43 2021
@@ -1,7 +1,7 @@
 
 Apache Tomcat - Apache Tomcat 10 
vulnerabilitieshttp://tomcat.apache.org/;>Apache 
Tomcathttps://www.apache.org/foundation/contributing.html; target="_blank" 
class="pull-left">https://www.apache.org/images/SupportApache-small.png; class="support-asf" 
alt="Support Apache">http://www.apache.org/; target="_blank" class="pull-left">https://www.google.com/search; method="get">GOhttps://www.apache.org/events/current-event.html;>https://www.apache.org/events/current-event-234x60.png; alt="Next ASF 
event">
   Save the date!
-Apache TomcatHomeTaglibsMaven 
PluginDownloadWhich version?https://tomcat.apache.org/download-10.cgi;>Tomcat 10 
(beta)https://tomcat.apache.org/download-90.cgi;>Tomcat 
9https://tomcat.apache.org/download-80.cgi;>Tomcat 
8https://tomcat.apache.org/download-70.cgi;>Tomcat 
7https://tomcat.apache.org/download-connectors.cgi;>Tomcat 
Connectorshttps://tomcat.apache.org/download-native.cgi;>Tomcat 
Nativehttps://tomcat.apache.org/download-taglibs.cgi;>Taglibshttps://archive.apache.org/dist/tomcat/;>ArchivesDocumentation
 Tomcat 10.0 (beta)Tomcat 
9.0Tomcat 8.5Tomcat 7.0Tomcat ConnectorsTomcat Nativehttps://cwiki.apache.org/confluence/display/TOMCAT;>WikiMigration GuidePresentationshttps://cwiki.apache.org/confluence/x/Bi8lBg;>SpecificationsProblems?Security ReportsFind helphttps://cwiki.apache.org/confluence/display/TOMCAT/FAQ;>FAQMailing ListsBug 
DatabaseIRCGet 
InvolvedOverviewSource 
codeBuildbothttps://cwiki.apache.org/confluence/x/vIPzBQ;>TranslationsToolsMediahttps://twitter.com/theapachetomcat;>Twitterhttps://www.youtube.com/c/ApacheTomcatOfficial;>YouTubehttps://blogs.apache.org/tomcat/;>BlogMiscWho We Arehttps://www.redbubble.com/people/comdev/works/30885254-apache-tomcat;>SwagHeritagehttp://www.apache.org;>Apache HomeResourcesContactLegalhttps://www.apache.org/foundation/contributing.html;>Support 
Apache<
 li>https://www.apache.org/foundation/sponsorship.html;>Sponsorshiphttp://www.apache.org/foundation/thanks.html;>Thankshttp://www.apache.org/licenses/;>LicenseContentTable of Contents
+Apache TomcatHomeTaglibsMaven 
PluginDownloadWhich version?https://tomcat.apache.org/download-10.cgi;>Tomcat 10https://tomcat.apache.org/download-90.cgi;>Tomcat 9https://tomcat.apache.org/download-80.cgi;>Tomcat 8https://tomcat.apache.org/download-70.cgi;>Tomcat 7https://tomcat.apache.org/download-connectors.cgi;>Tomcat 
Connectorshttps://tomcat.apache.org/download-native.cgi;>Tomcat 
Nativehttps://tomcat.apache.org/download-taglibs.cgi;>Taglibshttps://archive.apache.org/dist/tomcat/;>ArchivesDocumentationTomcat 
 10.0Tomcat 
9.0Tomcat 8.5Tomcat 7.0Tomcat ConnectorsTomcat Nativehttps://cwiki.apache.org/confluence/display/TOMCAT;>WikiMigration GuidePresentationshttps://cwiki.apache.org/confluence/x/Bi8lBg;>SpecificationsProblems?Security ReportsFind helphttps://cwiki.apache.org/confluence/display/TOMCAT/FAQ;>FAQMailing ListsBug 
DatabaseIRCGet 
InvolvedOverviewSource 
codeBuildbothttps://cwiki.apache.org/confluence/x/vIPzBQ;>TranslationsToolsMediahttps://twitter.com/theapachetomcat;>Twitterhttps://www.youtube.com/c/ApacheTomcatOfficial;>YouTubehttps://blogs.apache.org/tomcat/;>BlogMiscWho We Arehttps://www.redbubble.com/people/comdev/works/30885254-apache-tomcat;>SwagHeritagehttp://www.apache.org;>Apache HomeResourcesContactLegalhttps://www.apache.org/foundation/contributing.html;>Support 
ApacheSponsorshiphttp://www.apache.org/foundation/thanks.html;>Thankshttp://www.apache.org/licenses/;>LicenseContentTable of Contents
 Apache Tomcat 10.x 
vulnerabilitiesFixed 
in Apache Tomcat 10.0.0-M10Fixed in Apache Tomcat 
10.0.0-M8Fixed in 
Apache Tomcat 10.0.0-M7Fixed in Apache Tomcat 
10.0.0-M6Fixed in 
Apache Tomcat 10.0.0-M5
 Apache Tomcat 10.x 
vulnerabilities
 This page lists all security vulnerabilities fixed in released versions
@@ -18,7 +18,7 @@
 
 Please note that binary patches are never provided. If you need to
apply a source code patch, use the building instructions for the
-   Apache Tomcat version that you are using. For Tomcat 10.0.x 
beta those are
+   Apache Tomcat version that you are using. For Tomcat 10.0.x those are
building.html 
and
BUILDING.txt.
Both files can be found in the webapps/docs subdirectory

Modified: tomcat/site/trunk/docs/source.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/source.html?rev=1886158=1886157=1886158=diff
==
--- tomcat/site/trunk/docs/source.html (original)
+++ tomcat/site/trunk/docs/source.html Wed Feb  3 

svn commit: r1886158 [1/2] - in /tomcat/site/trunk: docs/ xdocs/ xdocs/stylesheets/

[markt]

Author: markt
Date: Wed Feb  3 12:58:43 2021
New Revision: 1886158

URL: http://svn.apache.org/viewvc?rev=1886158=rev
Log:
Update site for 10.0.2 release

Modified:
tomcat/site/trunk/docs/bugreport.html
tomcat/site/trunk/docs/ci.html
tomcat/site/trunk/docs/doap_Tomcat.rdf
tomcat/site/trunk/docs/download-10.html
tomcat/site/trunk/docs/index.html
tomcat/site/trunk/docs/migration-10.html
tomcat/site/trunk/docs/migration.html
tomcat/site/trunk/docs/oldnews.html
tomcat/site/trunk/docs/security-10.html
tomcat/site/trunk/docs/source.html
tomcat/site/trunk/docs/whichversion.html
tomcat/site/trunk/xdocs/bugreport.xml
tomcat/site/trunk/xdocs/ci.xml
tomcat/site/trunk/xdocs/doap_Tomcat.rdf
tomcat/site/trunk/xdocs/download-10.xml
tomcat/site/trunk/xdocs/index.xml
tomcat/site/trunk/xdocs/migration-10.xml
tomcat/site/trunk/xdocs/migration.xml
tomcat/site/trunk/xdocs/oldnews.xml
tomcat/site/trunk/xdocs/security-10.xml
tomcat/site/trunk/xdocs/source.xml
tomcat/site/trunk/xdocs/stylesheets/project.xml
tomcat/site/trunk/xdocs/whichversion.xml

Modified: tomcat/site/trunk/docs/bugreport.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/bugreport.html?rev=1886158=1886157=1886158=diff
==
--- tomcat/site/trunk/docs/bugreport.html (original)
+++ tomcat/site/trunk/docs/bugreport.html Wed Feb  3 12:58:43 2021
@@ -1,7 +1,7 @@
 
 Apache Tomcat - Reporting Bugshttp://tomcat.apache.org/;>Apache 
Tomcathttps://www.apache.org/foundation/contributing.html; target="_blank" 
class="pull-left">https://www.apache.org/images/SupportApache-small.png; class="support-asf" 
alt="Support Apache">http://www.apache
 .org/" target="_blank" class="pull-left">https://www.google.com/search; method="get">GOhttps://www.apache.org/events/current-event.html;>https://www.apache.org/events/current-event-234x60.png; alt="Next ASF 
event">
   Save the date!
-Apache TomcatHomeTaglibsMaven 
PluginDownloadWhich version?https://tomcat.apache.org/download-10.cgi;>Tomcat 10 
(beta)https://tomcat.apache.org/download-90.cgi;>Tomcat 
9https://tomcat.apache.org/download-80.cgi;>Tomcat 
8https://tomcat.apache.org/download-70.cgi;>Tomcat 
7https://tomcat.apache.org/download-connectors.cgi;>Tomcat 
Connectorshttps://tomcat.apache.org/download-native.cgi;>Tomcat 
Nativehttps://tomcat.apache.org/download-taglibs.cgi;>Taglibshttps://archive.apache.org/dist/tomcat/;>ArchivesDocumentation
 Tomcat 10.0 (beta)Tomcat 
9.0Tomcat 8.5Tomcat 7.0Tomcat ConnectorsTomcat Nativehttps://cwiki.apache.org/confluence/display/TOMCAT;>WikiMigration GuidePresentationshttps://cwiki.apache.org/confluence/x/Bi8lBg;>SpecificationsProblems?Security ReportsFind helphttps://cwiki.apache.org/confluence/display/TOMCAT/FAQ;>FAQMailing ListsBug 
DatabaseIRCGet 
InvolvedOverviewSource 
codeBuildbothttps://cwiki.apache.org/confluence/x/vIPzBQ;>TranslationsToolsMediahttps://twitter.com/theapachetomcat;>Twitterhttps://www.youtube.com/c/ApacheTomcatOfficial;>YouTubehttps://blogs.apache.org/tomcat/;>BlogMiscWho We Arehttps://www.redbubble.com/people/comdev/works/30885254-apache-tomcat;>SwagHeritagehttp://www.apache.org;>Apache HomeResourcesContactLegalhttps://www.apache.org/foundation/contributing.html;>Support 
Apache<
 li>https://www.apache.org/foundation/sponsorship.html;>Sponsorshiphttp://www.apache.org/foundation/thanks.html;>Thankshttp://www.apache.org/licenses/;>LicenseContentTable of Contents
+Apache TomcatHomeTaglibsMaven 
PluginDownloadWhich version?https://tomcat.apache.org/download-10.cgi;>Tomcat 10https://tomcat.apache.org/download-90.cgi;>Tomcat 9https://tomcat.apache.org/download-80.cgi;>Tomcat 8https://tomcat.apache.org/download-70.cgi;>Tomcat 7https://tomcat.apache.org/download-connectors.cgi;>Tomcat 
Connectorshttps://tomcat.apache.org/download-native.cgi;>Tomcat 
Nativehttps://tomcat.apache.org/download-taglibs.cgi;>Taglibshttps://archive.apache.org/dist/tomcat/;>ArchivesDocumentationTomcat 
 10.0Tomcat 
9.0Tomcat 8.5Tomcat 7.0Tomcat ConnectorsTomcat Nativehttps://cwiki.apache.org/confluence/display/TOMCAT;>WikiMigration GuidePresentationshttps://cwiki.apache.org/confluence/x/Bi8lBg;>SpecificationsProblems?Security ReportsFind helphttps://cwiki.apache.org/confluence/display/TOMCAT/FAQ;>FAQMailing ListsBug 
DatabaseIRCGet 
InvolvedOverviewSource 
codeBuildbothttps://cwiki.apache.org/confluence/x/vIPzBQ;>TranslationsToolsMediahttps://twitter.com/theapachetomcat;>Twitterhttps://www.youtube.com/c/ApacheTomcatOfficial;>YouTubehttps://blogs.apache.org/tomcat/;>BlogMiscWho We Arehttps://www.redbubble.com/people/comdev/works/30885254-apache-tomcat;>SwagHeritagehttp://www.apache.org;>Apache HomeResourcesContactLegalhttps://www.apache.org/foundation/contributing.html;>Support 

svn commit: r1886157 - in /tomcat/site/trunk: ./ docs/tomcat-10.0-doc/ docs/tomcat-10.0-doc/annotationapi/ docs/tomcat-10.0-doc/annotationapi/jakarta/annotation/ docs/tomcat-10.0-doc/annotationapi/jak

[markt]

Author: markt
Date: Wed Feb  3 12:46:18 2021
New Revision: 1886157

URL: http://svn.apache.org/viewvc?rev=1886157=rev
Log:
Update docs to 10.0.2


[This commit notification would consist of 88 parts, 
which exceeds the limit of 50 ones, so it was shortened to the summary.]

-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

[tomcat] branch 8.5.x updated: Add release date for 8.5.63

[markt]

This is an automated email from the ASF dual-hosted git repository.

markt pushed a commit to branch 8.5.x
in repository https://gitbox.apache.org/repos/asf/tomcat.git


The following commit(s) were added to refs/heads/8.5.x by this push:
 new 7ecb714  Add release date for 8.5.63
7ecb714 is described below

commit 7ecb7141f05d22047ae39f10a3f13340ea698064
Author: Mark Thomas 
AuthorDate: Wed Feb 3 12:32:16 2021 +

Add release date for 8.5.63
---
 webapps/docs/changelog.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/webapps/docs/changelog.xml b/webapps/docs/changelog.xml
index 3aa302c..83b5fcb 100644
--- a/webapps/docs/changelog.xml
+++ b/webapps/docs/changelog.xml
@@ -121,7 +121,7 @@
 
   
 
-
+
   
 
   


-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

svn commit: r45787 - /dev/tomcat/tomcat-8/v8.5.63/ /release/tomcat/tomcat-8/v8.5.63/

[markt]

Author: markt
Date: Wed Feb  3 12:31:38 2021
New Revision: 45787

Log:
Release Apache Tomcat 8.5.63

Added:
release/tomcat/tomcat-8/v8.5.63/
  - copied from r45786, dev/tomcat/tomcat-8/v8.5.63/
Removed:
dev/tomcat/tomcat-8/v8.5.63/


-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

[VOTE][RESULT] Release Apache Tomcat 8.5.63

[Mark Thomas]

The following votes were cast:

Binding:
+1: remm, fhanik, mgrigorov, markt

No other votes were cast.

The vote therefore passes.

Thanks to everyone who contributed to this release.

Mark

-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

Re: [VOTE] Release Apache Tomcat 8.5.63

[Mark Thomas]

On 29/01/2021 11:43, Mark Thomas wrote:

> The proposed 8.5.63 release is:
> [ ] Broken - do not release
> [X] Stable - go ahead and release as 8.5.63

Mark

-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

Applications setting connection specific HTTP headers

[Mark Thomas]

Hi all,

We have an open PR related to this for HTTP/2 (#277) and I am seeing
related issues at $work with HTTP.

In short, applications are doing things like:

response.setHeader("Transfer-Encoding", "chunked");

which, as you'd expect is causing problems if:
- Tomcat doesn't chunk the response
- Tomcat does chunk the response, adds its own "chunked" value and the
  user agent rightly objects to "chunked" appearing twice

And so on.

I'd like to put something into Tomcat to address this.

I think it should be disabled by default so correctly written
applications pay a very small penalty. Along the lines of

if (someSetting != null) {
// Do header checks
}

In terms of options I think we need:
- something representing the current, allow anything, behaviour
- an option to log (with a stack trace so the offending code can be
  identified) attempts to set such headers
- an option to ignore attempts to set such headers

Do we need an option that throws an exception if there is an attempt to
set such headers?

Do we need an option to control which headers and which values will
trigger this behaviour? This would make the configuration rather more
complex. You'd need to be able to set multiple combinations of header,
value and action.

Is adding debug (no stacktrace) and trace (with stacktrace) logging to
addHeader() sufficient? For identifying faulty code this helps but it
doesn't provide a way to work-around the problem. For that you need
something that blocks the adding of the header.

I'm still considering what might be the best way to fix this. Hence the
brain dump above. Thoughts?

Mark


-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

Re: Ignoring test failures

[Mark Thomas]

On 02/02/2021 21:29, Emmanuel Bourg wrote:
> Hi all,
> 
> I'd like to add a mechanism to the Tomcat build to ignore the test
> failures, something similar to the Maven testFailureIgnore property.
> 
> In Debian Tomcat is built in an offline container and the tribes tests
> fail due to the lack of multicast. So build.xml has been patched to
> remove the  tasks, but it would be easier to set a build property
> instead.
> 
> Do you think we could add something like this:
> 
>   

Why not use the test.exclude property to exclude the tribes tests? See
BUILDING.txt for usage.

Better to exclude tests you know are not relevant for your test
environment rather than ignoring all failures.

Mark

-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

[GitHub] [tomcat] markt-asf commented on pull request #404: Update translation

[GitBox]

markt-asf commented on pull request #404:
URL: https://github.com/apache/tomcat/pull/404#issuecomment-772374465


   Tomcat manages translations via POEditor. See 
https://cwiki.apache.org/confluence/display/TOMCAT/Managing+translations
   
   If you could make these corrections at POEditor and then close this PR that 
would be very helpful.



This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

For queries about this service, please contact Infrastructure at:
us...@infra.apache.org



-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

[GitHub] [tomcat-maven-plugin] ccronemberger closed pull request #18: fix for https://issues.apache.org/jira/browse/MTOMCAT-299

[GitBox]

ccronemberger closed pull request #18:
URL: https://github.com/apache/tomcat-maven-plugin/pull/18


   



This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

For queries about this service, please contact Infrastructure at:
us...@infra.apache.org



-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org