svn commit: r1167434 - in /tomcat/site/trunk: docs/security-5.html docs/security-6.html docs/security-7.html xdocs/security-5.xml xdocs/security-6.xml xdocs/security-7.xml

2011-09-09 Thread schultz
Author: schultz Date: Sat Sep 10 01:51:49 2011 New Revision: 1167434 URL: http://svn.apache.org/viewvc?rev=1167434&view=rev Log: Committed *all* files for CVE-2011-3190 mitigation options. Modified: tomcat/site/trunk/docs/security-5.html tomcat/site/trunk/docs/security-6.html tomcat/s

svn commit: r1167433 - in /tomcat/site/trunk/docs: security-5.html security-6.html security-7.html

2011-09-09 Thread schultz
Author: schultz Date: Sat Sep 10 01:46:47 2011 New Revision: 1167433 URL: http://svn.apache.org/viewvc?rev=1167433&view=rev Log: Update description of CVE-2011-3190 to include mitigation options. Modified: tomcat/site/trunk/docs/security-5.html tomcat/site/trunk/docs/security-6.html t

Re: Mitigating AJP CPing/Forward-Request packet forgery before next releases

2011-09-09 Thread Christopher Schultz
JF, On 9/9/2011 7:02 AM, jean-frederic clere wrote: > Yep. We need a directive to set the secret in httpd, I will discuss that > in httpd dev list. Thanks for the confirmation. -chris signature.asc Description: OpenPGP digital signature

svn commit: r1167403 - /tomcat/tc6.0.x/trunk/STATUS.txt

2011-09-09 Thread kkolinko
Author: kkolinko Date: Fri Sep 9 23:44:34 2011 New Revision: 1167403 URL: http://svn.apache.org/viewvc?rev=1167403&view=rev Log: proposal Modified: tomcat/tc6.0.x/trunk/STATUS.txt Modified: tomcat/tc6.0.x/trunk/STATUS.txt URL: http://svn.apache.org/viewvc/tomcat/tc6.0.x/trunk/STATUS.txt?re

DO NOT REPLY [Bug 51758] Setting logger-specific overrides in logging.properties not working

2011-09-09 Thread bugzilla
https://issues.apache.org/bugzilla/show_bug.cgi?id=51758 --- Comment #6 from Konstantin Kolinko 2011-09-09 23:39:48 UTC --- Created attachment 27479 --> https://issues.apache.org/bugzilla/attachment.cgi?id=27479 2011-09-10_tc6_bug51758.patch Patch for 6.0.x -- Configure bugmail: https://iss

DO NOT REPLY [Bug 51758] Setting logger-specific overrides in logging.properties not working

2011-09-09 Thread bugzilla
https://issues.apache.org/bugzilla/show_bug.cgi?id=51758 --- Comment #5 from Konstantin Kolinko 2011-09-09 23:34:16 UTC --- The fix in r1164567/r1164569 was incomplete. Improved by r1167394/r1167396. Will be in 7.0.22. -- Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=

svn commit: r1167396 - in /tomcat/tc7.0.x/trunk: ./ java/org/apache/tomcat/util/digester/Digester.java java/org/apache/tomcat/util/digester/GenericParser.java java/org/apache/tomcat/util/digester/Xerc

2011-09-09 Thread kkolinko
Author: kkolinko Date: Fri Sep 9 23:29:27 2011 New Revision: 1167396 URL: http://svn.apache.org/viewvc?rev=1167396&view=rev Log: Beckport r1167394 from trunk. It is followup to r1164569, because not all occurences have been replaced. Fix https://issues.apache.org/bugzilla/show_bug.cgi?id=51758 A

svn commit: r1167394 - in /tomcat/trunk/java/org/apache/tomcat/util/digester: Digester.java GenericParser.java XercesParser.java

2011-09-09 Thread kkolinko
Author: kkolinko Date: Fri Sep 9 23:25:03 2011 New Revision: 1167394 URL: http://svn.apache.org/viewvc?rev=1167394&view=rev Log: Followup to r1164567, because not all occurences have been replaced. Fix https://issues.apache.org/bugzilla/show_bug.cgi?id=51758 Align the digester logger names with

In 7.0: sendfileInProgress flag in breakKeepAliveLoop() - difference in Nio vs. Apr

2011-09-09 Thread Konstantin Kolinko
Reviewing #breakKeepAliveLoop() method in Http11 implementations in 7.0.x, there is a difference between Nio and Apr: I see that Http11NioProcessor does not update AbstractHttp11Processor#sendfileInProgress flag, but Apr processor does set it to "true". Is this difference in #breakKeepAliveLoop()

svn commit: r1167369 - in /tomcat/tc7.0.x/trunk: ./ java/org/apache/coyote/http11/Http11Processor.java

2011-09-09 Thread kkolinko
Author: kkolinko Date: Fri Sep 9 21:33:13 2011 New Revision: 1167369 URL: http://svn.apache.org/viewvc?rev=1167369&view=rev Log: Merge r1167368 from trunk: Reviewing r1166576... Improve performance of Http11Processor.disableKeepAlive(): call getMaxThreads() first and do not call getCurrentThread

svn commit: r1167368 - /tomcat/trunk/java/org/apache/coyote/http11/Http11Processor.java

2011-09-09 Thread kkolinko
Author: kkolinko Date: Fri Sep 9 21:30:28 2011 New Revision: 1167368 URL: http://svn.apache.org/viewvc?rev=1167368&view=rev Log: Reviewing r1166576... Improve performance of Http11Processor.disableKeepAlive(): call getMaxThreads() first and do not call getCurrentThreadsBusy() twice, because Thre

svn commit: r1167349 - in /tomcat/tc7.0.x/trunk: ./ test/org/apache/catalina/comet/TestCometProcessor.java test/org/apache/catalina/connector/TestMaxConnections.java test/org/apache/catalina/session/B

2011-09-09 Thread kkolinko
Author: kkolinko Date: Fri Sep 9 20:18:26 2011 New Revision: 1167349 URL: http://svn.apache.org/viewvc?rev=1167349&view=rev Log: Merge r1166757 from trunk: Fix Eclipse warnings in unit tests Modified: tomcat/tc7.0.x/trunk/ (props changed) tomcat/tc7.0.x/trunk/test/org/apache/catalina/c

svn commit: r1167343 - /tomcat/tc7.0.x/trunk/webapps/docs/changelog.xml

2011-09-09 Thread kkolinko
Author: kkolinko Date: Fri Sep 9 19:57:26 2011 New Revision: 1167343 URL: http://svn.apache.org/viewvc?rev=1167343&view=rev Log: Add bug number to the issue fixed by r1166619 Modified: tomcat/tc7.0.x/trunk/webapps/docs/changelog.xml Modified: tomcat/tc7.0.x/trunk/webapps/docs/changelog.xml

DO NOT REPLY [Bug 48674] Tomcat Virtual Host Manager application doesn't persist newly created virtual hosts

2011-09-09 Thread bugzilla
https://issues.apache.org/bugzilla/show_bug.cgi?id=48674 kevin.hu changed: What|Removed |Added OS/Version|All |Linux -- Configure bugmail: https://is

DO NOT REPLY [Bug 51794] New: Race condition in NioEndpoint$Poller causes socket to not be read until selectorTimeout

2011-09-09 Thread bugzilla
https://issues.apache.org/bugzilla/show_bug.cgi?id=51794 Bug #: 51794 Summary: Race condition in NioEndpoint$Poller causes socket to not be read until selectorTimeout Product: Tomcat 6 Version: 6.0.33 Platform: PC

DO NOT REPLY [Bug 50734] 400 Bad Request when there are no web applications deployed on Tomcat 6.0.32

2011-09-09 Thread bugzilla
https://issues.apache.org/bugzilla/show_bug.cgi?id=50734 Konstantin Kolinko changed: What|Removed |Added Status|REOPENED|RESOLVED Resolution|

DO NOT REPLY [Bug 50734] 400 Bad Request when there are no web applications deployed on Tomcat 6.0.32

2011-09-09 Thread bugzilla
https://issues.apache.org/bugzilla/show_bug.cgi?id=50734 Chris changed: What|Removed |Added Status|RESOLVED|REOPENED Resolution|FIXED

Re: Mitigating AJP CPing/Forward-Request packet forgery before next releases

2011-09-09 Thread jean-frederic clere
On 09/08/2011 11:58 PM, Konstantin Kolinko wrote: 2011/9/9 Christopher Schultz: On 9/8/2011 11:47 AM, Mark Thomas wrote: On 08/09/2011 16:13, Christopher Schultz wrote: All, https://issues.apache.org/bugzilla/show_bug.cgi?id=51698 Mark's official report to the users' list indicates that setti