Author: markt
Date: Fri Aug 1 09:42:32 2014
New Revision: 1615058
URL: http://svn.apache.org/r1615058
Log:
Don't execute OpenSSL related tests if the expected version of OpenSSL is not
available
Modified:
Author: markt
Date: Fri Aug 1 10:32:50 2014
New Revision: 1615067
URL: http://svn.apache.org/r1615067
Log:
The ECDH alias is for cipher suites using ECDH key exchange, including
anonymous, ephemeral and fixed ECDH. Ephemeral was missing.
Modified:
On 31/07/2014 22:50, Mark Thomas wrote:
I'm beginning to think that this feature is more effort than it is worth.
snip/
The expected behaviour of this code is that for any given specification:
- passing it through OpenSSL and mapping the resulting ciphers to those
supported by the current
Author: markt
Date: Fri Aug 1 10:48:28 2014
New Revision: 1615068
URL: http://svn.apache.org/r1615068
Log:
The AECDH alias is for anonymous Elliptic Curve Diffie Hellman cipher suites.
Parser was returning non-anonymous ECDH cipher suites.
Modified:
Author: markt
Date: Fri Aug 1 10:51:24 2014
New Revision: 1615069
URL: http://svn.apache.org/r1615069
Log:
More alias checks for the parser
Modified:
tomcat/trunk/test/org/apache/tomcat/util/net/jsse/openssl/TestOpenSSLCipherConfigurationParser.java
Modified:
Author: markt
Date: Fri Aug 1 11:35:54 2014
New Revision: 1615071
URL: http://svn.apache.org/r1615071
Log:
Add the remaining tests for the individual aliases with some commented out as
they fail.
Modified:
The Buildbot has detected a build exception on builder tomcat-trunk while
building ASF Buildbot.
Full details are available at:
http://ci.apache.org/builders/tomcat-trunk/builds/309
Buildbot URL: http://ci.apache.org/
Buildslave for this Build: bb-vm_ubuntu
Build Reason: scheduler
Build
2014-08-01 12:34 GMT+02:00 Mark Thomas ma...@apache.org:
On 31/07/2014 22:50, Mark Thomas wrote:
I'm beginning to think that this feature is more effort than it is worth.
snip/
The expected behaviour of this code is that for any given specification:
- passing it through OpenSSL and
Author: markt
Date: Fri Aug 1 13:06:46 2014
New Revision: 1615089
URL: http://svn.apache.org/r1615089
Log:
DEFAULT alias also excludes SSLv2 although the OpenSSL docs don't mention this.
COMPLEMENTOFDEFAULT should be those ciphers in ALL that aren't in DEFAULT
although the OpenSSL appears to be
Author: markt
Date: Fri Aug 1 13:08:51 2014
New Revision: 1615090
URL: http://svn.apache.org/r1615090
Log:
Fix wrong alias name for TLS1.2
Modified:
tomcat/trunk/java/org/apache/tomcat/util/net/jsse/openssl/OpenSSLCipherConfigurationParser.java
The Buildbot has detected a new failure on builder tomcat-trunk while building
ASF Buildbot.
Full details are available at:
http://ci.apache.org/builders/tomcat-trunk/builds/310
Buildbot URL: http://ci.apache.org/
Buildslave for this Build: bb-vm_ubuntu
Build Reason: scheduler
Build Source
https://issues.apache.org/bugzilla/show_bug.cgi?id=56802
Bug ID: 56802
Summary: WebSocket - socket set keep alive should be exposed
Product: Tomcat 8
Version: trunk
Hardware: PC
OS: Linux
Status: NEW
Author: markt
Date: Fri Aug 1 15:11:25 2014
New Revision: 1615134
URL: http://svn.apache.org/r1615134
Log:
Under the covers OpenSSL treats SSLv3 and TLSv1 as the same.
Modified:
tomcat/trunk/java/org/apache/tomcat/util/net/jsse/openssl/OpenSSLCipherConfigurationParser.java
The Buildbot has detected a build exception on builder tomcat-trunk while
building ASF Buildbot.
Full details are available at:
http://ci.apache.org/builders/tomcat-trunk/builds/311
Buildbot URL: http://ci.apache.org/
Buildslave for this Build: bb-vm_ubuntu
Build Reason: scheduler
Build
Author: markt
Date: Fri Aug 1 19:01:49 2014
New Revision: 1615205
URL: http://svn.apache.org/r1615205
Log:
Fix the parsing of the SSLv2 alias
This required changes to how the ciphers were read from OpenSSL in the unit
tests to differentiate those ciphers with the same name but different
Author: markt
Date: Fri Aug 1 19:11:28 2014
New Revision: 1615206
URL: http://svn.apache.org/r1615206
Log:
The DEFAULT alias has a specific, expected meaning. Don't make it configurable.
Modified:
tomcat/trunk/conf/catalina.properties
Author: markt
Date: Fri Aug 1 19:12:02 2014
New Revision: 1615207
URL: http://svn.apache.org/r1615207
Log:
Remove unintended change from previous commit
Modified:
tomcat/trunk/java/org/apache/tomcat/util/net/jsse/openssl/OpenSSLCipherConfigurationParser.java
Modified:
Author: markt
Date: Fri Aug 1 19:35:49 2014
New Revision: 1615209
URL: http://svn.apache.org/r1615209
Log:
Fix COMPLEMENTOFDEFAULT alias
Modified:
tomcat/trunk/java/org/apache/tomcat/util/net/jsse/openssl/OpenSSLCipherConfigurationParser.java
Author: markt
Date: Fri Aug 1 19:39:05 2014
New Revision: 1615210
URL: http://svn.apache.org/r1615210
Log:
Restore the required default ciphers after the removal of the system property
Modified:
tomcat/trunk/java/org/apache/tomcat/util/net/AbstractEndpoint.java
On 01/08/2014 13:57, Rémy Maucherat wrote:
Well, it can be disabled easily by reverting back to the old default in
the endpoint. Sorry for all the defects, the code that was submitted was
supposed to be fine ;)
Thanks. I appreciate that.
If you think the feature is too complex and doesn't
https://issues.apache.org/bugzilla/show_bug.cgi?id=56798
--- Comment #1 from Bertrand Renuart brenu...@gmail.com ---
Created attachment 31866
-- https://issues.apache.org/bugzilla/attachment.cgi?id=31866action=edit
TestCase to show that the pool will fail to shrink
--
You are receiving this
https://issues.apache.org/bugzilla/show_bug.cgi?id=56785
--- Comment #6 from Juergen Sussner juergen.suss...@gmail.com ---
Sure, it would be great if you could provide a replacement class so i would
patch the class in our tomcat having this effect to verrify the fix.
I assume there are no class
https://issues.apache.org/bugzilla/show_bug.cgi?id=56801
--- Comment #1 from Christopher Schultz ch...@christopherschultz.net ---
I think the real question is whether or not the String.toCharArray even belongs
here. Back in the dark days, only fools used String.charAt and instead used
Mark,
On 8/1/14, 3:48 PM, Mark Thomas wrote:
On 01/08/2014 13:57, Rémy Maucherat wrote:
Well, it can be disabled easily by reverting back to the old default in
the endpoint. Sorry for all the defects, the code that was submitted was
supposed to be fine ;)
Thanks. I appreciate that.
If
https://issues.apache.org/bugzilla/show_bug.cgi?id=56798
--- Comment #2 from Christopher Schultz ch...@christopherschultz.net ---
Nice analysis. I think you're on to something, here. The depth of the pool
should end up, over time, being roughly equal to the number of connections
actually required
https://issues.apache.org/bugzilla/show_bug.cgi?id=56785
--- Comment #7 from Christopher Schultz ch...@christopherschultz.net ---
(In reply to Konstantin Kolinko from comment #5)
(In reply to Christopher Schultz from comment #2)
(In reply to Juergen Sussner from comment #0)
1)
Je serai absent(e) du 02/08/2014 au 25/08/2014.
Je répondrai à votre message dès mon retour.
En cas d'urgence, vous pouvez contacter le BIJ au 05 61 02 86 10
-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For
27 matches
Mail list logo