[GitHub] [tomcat] oopexpert edited a comment on issue #242: get a hands on ...

2020-02-14 Thread GitBox
oopexpert edited a comment on issue #242: get a hands on ...
URL: https://github.com/apache/tomcat/pull/242#issuecomment-586561346
 
 
   I do understand that there are some prequistes that I did not consider 
according to the Java 8 deps. It would be helpful to get a hint what kind of 
line of code does violate it.
   
   I also agree that performance might decrease a little bit. But you have to 
admit: Reflection in general is not fast at all. And as you also said: Here 
performance does not really matter.
   
   But what I do not understand is: what do you mean with excessive? According 
to my motivation: I like CleanCode an I wanted to help to improve the code 
base. Never thought to justify for that anywhere...
   
   Nevertheless. Thank you for the the fast feedback. Could we at least have 
one more iteration where you see the problem with java deps as I did compile it 
with Java 8. Maybe I have to adjust my local setup.


This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
 
For queries about this service, please contact Infrastructure at:
us...@infra.apache.org


With regards,
Apache Git Services

-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org



[GitHub] [tomcat] oopexpert edited a comment on issue #242: get a hands on ...

2020-02-14 Thread GitBox
oopexpert edited a comment on issue #242: get a hands on ...
URL: https://github.com/apache/tomcat/pull/242#issuecomment-586561346
 
 
   I do understand that there are some prequistes that I did not consider 
according to the Java 8 deps. It would be helpful to get a hint what kind of 
line of code does violate it.
   
   I also agree that performance might decrease a little bit. But you have to 
admit: Reflection in general is not fast at all. And as you also said: Here 
performance does not really matter.
   
   But what I do not understand is: what do you mean with excessive? According 
to my motivation: I like CleanCode an I wanted to help to improve the code 
base. Never thought to justify for that anywhere...
   
   Nevertheless. Thank you for the the fast feedback. Could we at least have 
one more iteration where you see the problem with java deps?


This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
 
For queries about this service, please contact Infrastructure at:
us...@infra.apache.org


With regards,
Apache Git Services

-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org



[GitHub] [tomcat] oopexpert commented on issue #242: get a hands on ...

2020-02-14 Thread GitBox
oopexpert commented on issue #242: get a hands on ...
URL: https://github.com/apache/tomcat/pull/242#issuecomment-586561346
 
 
   I do understand that there are some prequistes that I did not consider 
according to the Java 8 deps. It would be helpful to get a hint what kind of 
line of code does violate it.
   
   I also agree that performace might decrease a little bit. But you have to 
admit: Reflection in general is not fast at all. And as you said: Here 
performance does not really matter.
   
   But what I do not understand is: what do you mean with excessive? According 
to my motivation: I like CleanCode an I wanted to help to improve the code 
base. Never thought to justify for that anywhere...
   
   Nevertheless. Thank you for the the fast feedback. Could we at least have 
one more iteration where you see the problem with java deps.


This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
 
For queries about this service, please contact Infrastructure at:
us...@infra.apache.org


With regards,
Apache Git Services

-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org



[ANN] Apache Tomcat 7.0.100 released

2020-02-14 Thread Violeta Georgieva
The Apache Tomcat team announces the immediate availability of Apache
Tomcat 7.0.100.

Apache Tomcat is an open source software implementation of the Java
Servlet, JavaServer Pages, Java Expression Language and Java
WebSocket technologies.

This release contains a number of bug fixes and improvements compared to
version 7.0.99. The notable changes since 7.0.99 include:


- AJP defaults changed to listen the loopback address, require a secret
  and to be disabled in the sample server.xml

- The JmxRemoteLifecycleListener is now deprecated

- The HTTP Connector attribute rejectIllegalHeaderName is renamed to
  rejectIllegalHeader and expanded to include header values as well as
  names


Please refer to the change log for the complete list of changes:
http://tomcat.apache.org/tomcat-7.0-doc/changelog.html

Apache Tomcat website:
http://tomcat.apache.org

Downloads:
http://tomcat.apache.org/download-70.cgi

Migration guides from Apache Tomcat 5.5.x and 6.0.x:
http://tomcat.apache.org/migration.html

Enjoy

The Apache Tomcat team


svn commit: r38076 - /release/tomcat/tomcat-7/v7.0.99/

2020-02-14 Thread violetagg
Author: violetagg
Date: Sat Feb 15 06:28:52 2020
New Revision: 38076

Log:
Remove 7.0.99

Removed:
release/tomcat/tomcat-7/v7.0.99/


-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org



svn commit: r1874047 - in /tomcat/site/trunk: docs/migration-7.html xdocs/migration-7.xml

2020-02-14 Thread violetagg
Author: violetagg
Date: Sat Feb 15 06:25:14 2020
New Revision: 1874047

URL: http://svn.apache.org/viewvc?rev=1874047=rev
Log:
Update migration guide to mention AJP changes

Modified:
tomcat/site/trunk/docs/migration-7.html
tomcat/site/trunk/xdocs/migration-7.xml

Modified: tomcat/site/trunk/docs/migration-7.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/migration-7.html?rev=1874047=1874046=1874047=diff
==
--- tomcat/site/trunk/docs/migration-7.html (original)
+++ tomcat/site/trunk/docs/migration-7.html Sat Feb 15 06:25:14 2020
@@ -478,6 +478,32 @@ of Apache Tomcat.
 Reference: HTTP 
connector,
 AJP connector.
   
+  In 7.0.100 onwards, the default listen address of
+the AJP Connector was changed to the loopback address rather than all
+addresses.
+Reference:  AJP
+connector.
+  
+  In 7.0.100 onwards, the requiredSecret attribute
+of the AJP Connector was deprecated and replaced by the
+secret attribute.
+Reference:  AJP
+connector.
+  
+  In 7.0.100 onwards, the secretRequired attribute
+was added to the AJP Connector. If set to true, the
+default, the AJP Connector will not start unless a
+secret has been specified.
+Reference:  AJP
+connector.
+  
+  In 7.0.100 onwards, the
+allowedRequestAttributesPattern attribute was added to
+the AJP Connector. Requests with unrecognised attributes will now be
+blocked with a 403.
+Reference:  AJP
+connector.
+  
 
   
   

Modified: tomcat/site/trunk/xdocs/migration-7.xml
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/xdocs/migration-7.xml?rev=1874047=1874046=1874047=diff
==
--- tomcat/site/trunk/xdocs/migration-7.xml (original)
+++ tomcat/site/trunk/xdocs/migration-7.xml Sat Feb 15 06:25:14 2020
@@ -492,6 +492,32 @@ of Apache Tomcat.
 Reference: HTTP 
connector,
 AJP connector.
   
+  In 7.0.100 onwards, the default listen address of
+the AJP Connector was changed to the loopback address rather than all
+addresses.
+Reference:  AJP
+connector.
+  
+  In 7.0.100 onwards, the requiredSecret attribute
+of the AJP Connector was deprecated and replaced by the
+secret attribute.
+Reference:  AJP
+connector.
+  
+  In 7.0.100 onwards, the secretRequired attribute
+was added to the AJP Connector. If set to true, the
+default, the AJP Connector will not start unless a
+secret has been specified.
+Reference:  AJP
+connector.
+  
+  In 7.0.100 onwards, the
+allowedRequestAttributesPattern attribute was added to
+the AJP Connector. Requests with unrecognised attributes will now be
+blocked with a 403.
+Reference:  AJP
+connector.
+  
 
   
   



-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org



svn commit: r1874046 - in /tomcat/site/trunk/docs/tomcat-7.0-doc: ./ annotationapi/ annotationapi/javax/annotation/ annotationapi/javax/annotation/security/ annotationapi/javax/annotation/sql/ api/ ap

2020-02-14 Thread violetagg
Author: violetagg
Date: Sat Feb 15 06:15:25 2020
New Revision: 1874046

URL: http://svn.apache.org/viewvc?rev=1874046=rev
Log:
Update docs for Apache Tomcat 7.0.100 release.


[This commit notification would consist of 89 parts, 
which exceeds the limit of 50 ones, so it was shortened to the summary.]

-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org



svn commit: r1874045 - in /tomcat/site/trunk: ./ docs/ xdocs/

2020-02-14 Thread violetagg
Author: violetagg
Date: Sat Feb 15 06:04:54 2020
New Revision: 1874045

URL: http://svn.apache.org/viewvc?rev=1874045=rev
Log:
Updates (excluding docs) for 7.0.100 release

Modified:
tomcat/site/trunk/build.properties.default
tomcat/site/trunk/docs/doap_Tomcat.rdf
tomcat/site/trunk/docs/download-70.html
tomcat/site/trunk/docs/index.html
tomcat/site/trunk/docs/migration-7.html
tomcat/site/trunk/docs/oldnews.html
tomcat/site/trunk/docs/whichversion.html
tomcat/site/trunk/xdocs/doap_Tomcat.rdf
tomcat/site/trunk/xdocs/download-70.xml
tomcat/site/trunk/xdocs/index.xml
tomcat/site/trunk/xdocs/migration-7.xml
tomcat/site/trunk/xdocs/oldnews.xml
tomcat/site/trunk/xdocs/whichversion.xml

Modified: tomcat/site/trunk/build.properties.default
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/build.properties.default?rev=1874045=1874044=1874045=diff
==
--- tomcat/site/trunk/build.properties.default (original)
+++ tomcat/site/trunk/build.properties.default Sat Feb 15 06:04:54 2020
@@ -36,7 +36,7 @@ tomcat.loc=http://www.apache.org/dist/to
 
 
 # - Tomcat versions -
-tomcat70=7.0.99
+tomcat70=7.0.100
 tomcat85=8.5.51
 tomcat90=9.0.31
 

Modified: tomcat/site/trunk/docs/doap_Tomcat.rdf
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/doap_Tomcat.rdf?rev=1874045=1874044=1874045=diff
==
--- tomcat/site/trunk/docs/doap_Tomcat.rdf (original)
+++ tomcat/site/trunk/docs/doap_Tomcat.rdf Sat Feb 15 06:04:54 2020
@@ -74,8 +74,8 @@
 
   
 Latest Stable 7.0.x Release
-2019-12-17
-7.0.99
+2020-02-14
+7.0.100
   
 
 

Modified: tomcat/site/trunk/docs/download-70.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/download-70.html?rev=1874045=1874044=1874045=diff
==
--- tomcat/site/trunk/docs/download-70.html (original)
+++ tomcat/site/trunk/docs/download-70.html Sat Feb 15 06:04:54 2020
@@ -12,7 +12,7 @@
 
   Quick Navigation
 
-[define v]7.0.99[end]
+[define v]7.0.100[end]
 https://www.apache.org/dist/tomcat/tomcat-7/KEYS;>KEYS |
 [v] |
 Browse |

Modified: tomcat/site/trunk/docs/index.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/index.html?rev=1874045=1874044=1874045=diff
==
--- tomcat/site/trunk/docs/index.html (original)
+++ tomcat/site/trunk/docs/index.html Sat Feb 15 06:04:54 2020
@@ -28,6 +28,29 @@ wiki page.
 Apache Tomcat, Tomcat, Apache, the Apache feather, and the Apache Tomcat
 project logo are trademarks of the Apache Software Foundation.
 
+2020-02-14 Tomcat 7.0.100 Released
+
+The Apache Tomcat Project is proud to announce the release of version 7.0.100 
of
+Apache Tomcat. This release contains a number of bug fixes and improvements
+compared to version 7.0.99.
+
+AJP defaults changed to listen the loopback address, require a secret
+and to be disabled in the sample server.xml file. If you are using the
+AJP protocol, please refer to the Migration Guide
+and update your configuration.
+The JmxRemoteLifecycleListener is now deprecated
+The HTTP Connector attribute rejectIllegalHeaderName is renamed to
+rejectIllegalHeader and expanded to include header values as well as
+names
+
+
+Full details of these changes, and all the other changes, are available in the
+Tomcat 7 
changelog.
+
+
+
+https://tomcat.apache.org/download-70.cgi;>Download
+
 2020-02-11 Tomcat 9.0.31 Released
 
 The Apache Tomcat Project is proud to announce the release of version 9.0.31
@@ -78,20 +101,6 @@ changelog.
 
 https://tomcat.apache.org/download-80.cgi;>Download
 
-2019-12-17 Tomcat 7.0.99 Released
-
-The Apache Tomcat Project is proud to announce the release of version 7.0.99 of
-Apache Tomcat. This release contains a number of bug fixes and improvements
-compared to version 7.0.96.
-
-
-Full details of these changes, and all the other changes, are available in the
-Tomcat 7 
changelog.
-
-
-
-https://tomcat.apache.org/download-70.cgi;>Download
-
 2019-07-02 Tomcat Native 1.2.23 Released
 
 The Apache Tomcat Project is proud to announce the release of version 1.2.23 of

Modified: tomcat/site/trunk/docs/migration-7.html
URL: 
http://svn.apache.org/viewvc/tomcat/site/trunk/docs/migration-7.html?rev=1874045=1874044=1874045=diff
==
--- tomcat/site/trunk/docs/migration-7.html (original)
+++ tomcat/site/trunk/docs/migration-7.html Sat Feb 15 06:04:54 2020
@@ -582,8 +582,9 @@ of Apache Tomcat.
 7.0.92
 7.0.93
 7.0.94
-7.0.96
-7.0.99
+7.0.96
+7.0.99
+7.0.100
 , new version:
 
 7.0.0
@@ -654,7 +655,8 @@ of Apache Tomcat.
 

[CONF] Apache Tomcat > Jakarta EE Release Numbering

2020-02-14 Thread Konstantin Kolinko (Confluence)
Title: Message Title



 
 
 
There's 1 new edit on this page 
 
 
 
 
 
 
  
 
 
 
 
 
 
 
 
 
 
 
 
 
 
Jakarta EE Release Numbering 
 
 
  
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

 
 
 
 
Konstantin Kolinko edited this page 
 
 
  
 
 

 
 
 
  
 
 
  
 
 
  
 
 
 
 
 
 
 
 
 
 
Here's the version comment 
 
 
 
 
 
 
 
 
 
 
 
 
 
  
 
 
  
 
 
  
 
 
 
 
 
 
 
 
 
 
 
 
 
 

 
 
 
 
Konstantin Kolinko edited at 04:23 AM 
 
 
  
 
 

 
 
 
 
 
 
 
 
 Correct typo.  
 
 
  
 
 
  
 
 

 
 
 
  
 
 
  
 
 
  
 
 
 
 
 
 
 
 
 
 
 
 
 
 
Here's what changed: 
 
 
 
 
 
 
 
 
 
 
 ... Jakarta EE 9 will be, as far as Tomcat is concerned, identical to Java EE 8 / Jakarta EE 9 with one notable exception. The package names for many of the Jakarta EE packages will change from javax.* to jakarta.* ...  
 
 
  
 
 
  
 
 
  
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
Go to page history 
 
 
  
 
 
  
 
 
  
 
 
  
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
View page 
 
 
  
 
 
  
 
 
  
 
 
  
 
 
 
 
 
 
 
 
 
 
Stop watching space
• 
 
 
 
 
 
 
Manage notifications 
 
 
 
 
 
 
 
 
 
 
  
 
 
This message was sent by Atlassian Confluence 7.1.2  
 
 
  
 
 
 
 
 
 
 
 
 




[GitHub] [tomcat] markt-asf commented on issue #242: get a hands on ...

2020-02-14 Thread GitBox
markt-asf commented on issue #242: get a hands on ...
URL: https://github.com/apache/tomcat/pull/242#issuecomment-586525169
 
 
   Sorry, this PR cannot be applied. The Servlet API classes cannot have any 
direct dependencies other than the Java 8 API (which is  why the Tomcat 
specific hack is implemented the way it is).
   
   It would help to understand the motivation for the refactoring.
   
   There does seem to be an excessive, and unnecessarily verbose, use of one 
line methods. e.g. `optionsAllowed()`
   
   I'd be interested to see some performance numbers comparing the old and new 
code. My instinct is the new code will be slower. It probably doesn't matter 
for doOptions() but I'd still be interested.
   
   Looking at the original code, there is certainly scope for improvement 
although, again, performance isn't critical here. A simpler refactoring that 
dropped the booleans, used a StringBuilder, started with an allow header value 
of `"OPTIONS"` and added to the allow header while looping though the methods 
is probably as far as I would have gone.


This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
 
For queries about this service, please contact Infrastructure at:
us...@infra.apache.org


With regards,
Apache Git Services

-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org



[GitHub] [tomcat] oopexpert opened a new pull request #242: get a hands on ...

2020-02-14 Thread GitBox
oopexpert opened a new pull request #242: get a hands on ...
URL: https://github.com/apache/tomcat/pull/242
 
 
   First commits. Did some refactoring. I'll be happy to get some feedback if 
the process is correct. So don't be too mean if smth went wrong.


This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
 
For queries about this service, please contact Infrastructure at:
us...@infra.apache.org


With regards,
Apache Git Services

-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org



[tomcat] branch master updated: Add jakarta attributes to the map

2020-02-14 Thread remm
This is an automated email from the ASF dual-hosted git repository.

remm pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/tomcat.git


The following commit(s) were added to refs/heads/master by this push:
 new 4bca1ff  Add jakarta attributes to the map
4bca1ff is described below

commit 4bca1ff80d6da1b042a2192d041f47d989ca2a2f
Author: remm 
AuthorDate: Fri Feb 14 23:29:54 2020 +0100

Add jakarta attributes to the map

Otherwise only javax attributes converted to jakarta would be accepted.
I suppose the AJP client is not going to use jakarta for now but this
doesn't really feel right to not do it.
---
 java/org/apache/coyote/ajp/AjpProcessor.java | 4 
 webapps/docs/changelog.xml   | 8 
 2 files changed, 12 insertions(+)

diff --git a/java/org/apache/coyote/ajp/AjpProcessor.java 
b/java/org/apache/coyote/ajp/AjpProcessor.java
index 28f8c25..ebe1353 100644
--- a/java/org/apache/coyote/ajp/AjpProcessor.java
+++ b/java/org/apache/coyote/ajp/AjpProcessor.java
@@ -129,6 +129,10 @@ public class AjpProcessor extends AbstractProcessor {
 
 // Build Map of Java Servlet to Jakarta Servlet attribute names
 Map m = new HashMap<>();
+m.put("jakarta.servlet.request.cipher_suite", 
"jakarta.servlet.request.cipher_suite");
+m.put("jakarta.servlet.request.key_size", 
"jakarta.servlet.request.key_size");
+m.put("jakarta.servlet.request.ssl_session", 
"jakarta.servlet.request.ssl_session");
+m.put("jakarta.servlet.request.X509Certificate", 
"jakarta.servlet.request.X509Certificate");
 m.put("javax.servlet.request.cipher_suite", 
"jakarta.servlet.request.cipher_suite");
 m.put("javax.servlet.request.key_size", 
"jakarta.servlet.request.key_size");
 m.put("javax.servlet.request.ssl_session", 
"jakarta.servlet.request.ssl_session");
diff --git a/webapps/docs/changelog.xml b/webapps/docs/changelog.xml
index 713b05b..753fb4c 100644
--- a/webapps/docs/changelog.xml
+++ b/webapps/docs/changelog.xml
@@ -45,6 +45,14 @@
   issues do not "pop up" wrt. others).
 -->
 
+  
+
+  
+Fix support of native jakarta servlet attributes in AJP connector.
+(remm)
+  
+
+  
 
 
   


-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org



Re: [VOTE] Release Apache Tomcat 10.0.0-M1

2020-02-14 Thread Coty Sutherland
On Fri, Feb 14, 2020 at 9:49 AM Mark Thomas  wrote:

> The proposed Apache Tomcat 10.0.0-M1 release is now available for
> voting. This is the first release of 10.0.x and is based on 9.0.31.
>
> The major changes compared to 9.0.31  are:
>
> - Complete the javax to jakarta package rename
>
> - Remove duplication of configuration between HTTP/1.1 and HTTP/2.
>   HTTP/2 will now inherit values from HTTP/1.1.
>
> - Remove deprecated code
>
> Along with lots of other bug fixes and improvements.
>
> For full details, see the changelog:
> https://ci.apache.org/projects/tomcat/tomcat10/docs/changelog.html
>
> It can be obtained from:
> https://dist.apache.org/repos/dist/dev/tomcat/tomcat-10/v10.0.0-M1/
> The Maven staging repo is:
> https://repository.apache.org/content/repositories/orgapachetomcat-1249/
> The tag is:
> https://github.com/apache/tomcat/tree/10.0.0-M1
> b0b074b683ed2e09ff9e9755825bfce83d303a93
>
> The proposed 10.0.0-M1 release is:
> [ ] Broken - do not release
> [x] Alpha  - go ahead and release as 10.0.0-M1
>

+1


>
> I opted to only include alpha here as there are still some potentially
> significant changes on the TOMCAT-NEXT list.
>
> -
> To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
> For additional commands, e-mail: dev-h...@tomcat.apache.org
>
>


[tomcat] branch 7.0.x updated: Update Tomcat 7.0.100 release date

2020-02-14 Thread violetagg
This is an automated email from the ASF dual-hosted git repository.

violetagg pushed a commit to branch 7.0.x
in repository https://gitbox.apache.org/repos/asf/tomcat.git


The following commit(s) were added to refs/heads/7.0.x by this push:
 new 53d1c1f  Update Tomcat 7.0.100 release date
53d1c1f is described below

commit 53d1c1f417587cca18c58d3fe152e85eba24dbf3
Author: Violeta Georgieva 
AuthorDate: Fri Feb 14 18:18:41 2020 +0200

Update Tomcat 7.0.100 release date
---
 webapps/docs/changelog.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/webapps/docs/changelog.xml b/webapps/docs/changelog.xml
index a5b4071..b41e0d2 100644
--- a/webapps/docs/changelog.xml
+++ b/webapps/docs/changelog.xml
@@ -70,7 +70,7 @@
 
   
 
-
+
   
 
   


-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org



svn commit: r38060 - /dev/tomcat/tomcat-7/v7.0.100/ /release/tomcat/tomcat-7/v7.0.100/

2020-02-14 Thread violetagg
Author: violetagg
Date: Fri Feb 14 16:01:45 2020
New Revision: 38060

Log:
Release Tomcat 7.0.100

Added:
release/tomcat/tomcat-7/v7.0.100/
  - copied from r38059, dev/tomcat/tomcat-7/v7.0.100/
Removed:
dev/tomcat/tomcat-7/v7.0.100/


-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org



Nexus: Promotion Completed

2020-02-14 Thread Nexus Repository Manager
Message from: https://repository.apache.orgDeployer properties:"userAgent" = "maven-artifact/2.2.1 (Java 1.7.0_80; Windows 8.1 6.3)""userId" = "violetagg""ip" = "78.83.99.114"Details:The following artifacts have been promoted to the "Releases" [id=releases] repository/org/apache/tomcat/tomcat-i18n-de/7.0.100/tomcat-i18n-de-7.0.100.pom(SHA1: 0bceb09c6a57581f6d8d13a45846b9a940eac11d)/org/apache/tomcat/tomcat-i18n-de/7.0.100/tomcat-i18n-de-7.0.100.pom.asc(SHA1: c58ade19db04c6021c1fa7228be2aea5d274fa83)/org/apache/tomcat/tomcat-i18n-de/7.0.100/tomcat-i18n-de-7.0.100.jar.asc(SHA1: f768ed11bcefb6baac432674373b4d6115a53ccb)/org/apache/tomcat/tomcat-i18n-de/7.0.100/tomcat-i18n-de-7.0.100.jar(SHA1: fffa33704550da69a20c717d85c66846cdae9960)/org/apache/tomcat/tomcat-juli/7.0.100/tomcat-juli-7.0.100.jar.asc(SHA1: 06c4048213429be24bc82b576bfe3387683c2189)/org/apache/tomcat/tomcat-juli/7.0.100/tomcat-juli-7.0.100.pom(SHA1: bb2b1ea348b5f8370b1ea6315cfdc82153861849)/org/apache/tomcat/tomcat-juli/7.0.100/tomcat-juli-7.0.100.jar(SHA1: 1f25b594981bb00d113ca67d3d4e6ad0be5d1de4)/org/apache/tomcat/tomcat-juli/7.0.100/tomcat-juli-7.0.100-sources.jar.asc(SHA1: 4bd1b4f1948bbc8f5b2314f603eb434ed69bb7f8)/org/apache/tomcat/tomcat-juli/7.0.100/tomcat-juli-7.0.100-sources.jar(SHA1: 281c30ebb51327611cb2533848a2c91a71c1644f)/org/apache/tomcat/tomcat-juli/7.0.100/tomcat-juli-7.0.100.pom.asc(SHA1: dfb7bbdbafdf107836b93cbc1c1b20bc56f09496)/org/apache/tomcat/tomcat-util/7.0.100/tomcat-util-7.0.100-sources.jar.asc(SHA1: 96073d783a3bc7c299b3666874dd84c1cd1b8022)/org/apache/tomcat/tomcat-util/7.0.100/tomcat-util-7.0.100-sources.jar(SHA1: cb0da867bb09eb16485f4d8bc6c9343006680694)/org/apache/tomcat/tomcat-util/7.0.100/tomcat-util-7.0.100.pom(SHA1: 0ada8c476934d745be70e1915e4b5603807d952a)/org/apache/tomcat/tomcat-util/7.0.100/tomcat-util-7.0.100.jar.asc(SHA1: 9bed2946f35499cf9d0b0e5d1f36213889b3347b)/org/apache/tomcat/tomcat-util/7.0.100/tomcat-util-7.0.100.pom.asc(SHA1: 0a33d56205c7d2d714d2ab0a68c40747893f53bd)/org/apache/tomcat/tomcat-util/7.0.100/tomcat-util-7.0.100.jar(SHA1: b618dde85875ceadc165bb8b6ae2efa276af6df6)/org/apache/tomcat/tomcat-catalina/7.0.100/tomcat-catalina-7.0.100-sources.jar.asc(SHA1: 6db9576e15cff31a334b0d500b1383fdfc340308)/org/apache/tomcat/tomcat-catalina/7.0.100/tomcat-catalina-7.0.100.jar.asc(SHA1: bfb134110932dae85d4499c28a32b316fcc8cf40)/org/apache/tomcat/tomcat-catalina/7.0.100/tomcat-catalina-7.0.100.jar(SHA1: 74d5e3edc692ac7eacfd1e4ec313dd6466fb471c)/org/apache/tomcat/tomcat-catalina/7.0.100/tomcat-catalina-7.0.100.pom(SHA1: f11dcfa167fada23d1fe1328f1c04cd2dedc30c9)/org/apache/tomcat/tomcat-catalina/7.0.100/tomcat-catalina-7.0.100-sources.jar(SHA1: 90d2d9aca01663692dd6e568a85ff800dc9943f4)/org/apache/tomcat/tomcat-catalina/7.0.100/tomcat-catalina-7.0.100.pom.asc(SHA1: 484e5162d68f50ebdba302068c20f7aacd5bd83d)/org/apache/tomcat/tomcat-catalina-ws/7.0.100/tomcat-catalina-ws-7.0.100.jar.asc(SHA1: 069a73cc86e4eadd5cb06014a5a5fbede2243e44)/org/apache/tomcat/tomcat-catalina-ws/7.0.100/tomcat-catalina-ws-7.0.100-sources.jar.asc(SHA1: 2c02c918cb2e442264b6639d6f50eaf5daae3c17)/org/apache/tomcat/tomcat-catalina-ws/7.0.100/tomcat-catalina-ws-7.0.100.pom.asc(SHA1: 588f407457250d8a3097404d03e65d9aec30eb51)/org/apache/tomcat/tomcat-catalina-ws/7.0.100/tomcat-catalina-ws-7.0.100.pom(SHA1: b1f5df96137fa3694f0789a3a3c7d0722e61d6ee)/org/apache/tomcat/tomcat-catalina-ws/7.0.100/tomcat-catalina-ws-7.0.100.jar(SHA1: 779a6350dae8c6e8b6a2aeb72d3035c77498bd7a)/org/apache/tomcat/tomcat-catalina-ws/7.0.100/tomcat-catalina-ws-7.0.100-sources.jar(SHA1: a0e7804a46e72b670f8d9f003f02d5c0afb1f083)/org/apache/tomcat/tomcat-i18n-fr/7.0.100/tomcat-i18n-fr-7.0.100.pom.asc(SHA1: 14a92fc5967d4127eeb9f210bed4aad942ba32e3)/org/apache/tomcat/tomcat-i18n-fr/7.0.100/tomcat-i18n-fr-7.0.100.jar.asc(SHA1: f83999c8da408ec689c0e91e3cac2c31ba6b48eb)/org/apache/tomcat/tomcat-i18n-fr/7.0.100/tomcat-i18n-fr-7.0.100.jar(SHA1: d9d8559af73215049703e997820738e2e7ac1c84)/org/apache/tomcat/tomcat-i18n-fr/7.0.100/tomcat-i18n-fr-7.0.100.pom(SHA1: 2978fd2723357fedf989df34a0e74104c4e50bdd)/org/apache/tomcat/tomcat-jdbc/7.0.100/tomcat-jdbc-7.0.100.jar(SHA1: 7b5f20536826567fdbea52081cf37ea101e65656)/org/apache/tomcat/tomcat-jdbc/7.0.100/tomcat-jdbc-7.0.100-sources.jar.asc(SHA1: 06db9e3bb3d1b88ae0f920158f3ff1fe2d14541c)/org/apache/tomcat/tomcat-jdbc/7.0.100/tomcat-jdbc-7.0.100.pom(SHA1: 9d437ae195d0d33889c984dc837d9c9358032e11)/org/apache/tomcat/tomcat-jdbc/7.0.100/tomcat-jdbc-7.0.100-sources.jar(SHA1: 189f4a645f42f11bb28afbca1ca026c0c878603c)/org/apache/tomcat/tomcat-jdbc/7.0.100/tomcat-jdbc-7.0.100.pom.asc(SHA1: 537a18bfcd4ece77cd6f6baebcd6fdd873c145f9)/org/apache/tomcat/tomcat-jdbc/7.0.100/tomcat-jdbc-7.0.100.jar.asc(SHA1: b895a1dd242021335f1457f5cafc83de9a78942b)/org/apache/tomcat/embed/tomcat-embed-logging-log4j/7.0.100/tomcat-embed-logging-log4j-7.0.100.pom(SHA1: 

Re: [VOTE] Release Apache Tomcat 10.0.0-M1

2020-02-14 Thread Rémy Maucherat
On Fri, Feb 14, 2020 at 3:49 PM Mark Thomas  wrote:

> The proposed Apache Tomcat 10.0.0-M1 release is now available for
> voting. This is the first release of 10.0.x and is based on 9.0.31.
>
> The major changes compared to 9.0.31  are:
>
> - Complete the javax to jakarta package rename
>
> - Remove duplication of configuration between HTTP/1.1 and HTTP/2.
>   HTTP/2 will now inherit values from HTTP/1.1.
>
> - Remove deprecated code
>
> Along with lots of other bug fixes and improvements.
>
> For full details, see the changelog:
> https://ci.apache.org/projects/tomcat/tomcat10/docs/changelog.html
>
> It can be obtained from:
> https://dist.apache.org/repos/dist/dev/tomcat/tomcat-10/v10.0.0-M1/
> The Maven staging repo is:
> https://repository.apache.org/content/repositories/orgapachetomcat-1249/
> The tag is:
> https://github.com/apache/tomcat/tree/10.0.0-M1
> b0b074b683ed2e09ff9e9755825bfce83d303a93
>
> The proposed 10.0.0-M1 release is:
> [ ] Broken - do not release
> [X] Alpha  - go ahead and release as 10.0.0-M1
>
> Rémy


Re: [RESULT][VOTE] Release Apache Tomcat 7.0.100

2020-02-14 Thread Violeta Georgieva
На вт, 11.02.2020 г. в 11:08 Violeta Georgieva 
написа:
>
> The proposed Apache Tomcat 7.0.100 release is now available for voting.
>
> It can be obtained from:
> https://dist.apache.org/repos/dist/dev/tomcat/tomcat-7/v7.0.100/
> The Maven staging repo is:
> https://repository.apache.org/content/repositories/orgapachetomcat-1247/
> The git tag is:
> https://github.com/apache/tomcat/tree/7.0.100
> a1ea109bf367ad32361396348845ffd6e524d115
>
> The proposed 7.0.100 release is:
> [ ] Broken - do not release
> [ ] Stable - go ahead and release as 7.0.100 Stable

+1 (binding):remm, kkolinko, csutherl, violetagg

No other voters were cast.

The vote has passed.

I'll do the release shortly and announce it once the mirrors catch up.

Regards,
Violeta


Re: [VOTE] Release Apache Tomcat 7.0.100

2020-02-14 Thread Violeta Georgieva
На вт, 11.02.2020 г. в 11:08 Violeta Georgieva 
написа:
>
> The proposed Apache Tomcat 7.0.100 release is now available for voting.
>
> It can be obtained from:
> https://dist.apache.org/repos/dist/dev/tomcat/tomcat-7/v7.0.100/
> The Maven staging repo is:
> https://repository.apache.org/content/repositories/orgapachetomcat-1247/
> The git tag is:
> https://github.com/apache/tomcat/tree/7.0.100
> a1ea109bf367ad32361396348845ffd6e524d115
>
> The proposed 7.0.100 release is:
> [ ] Broken - do not release
> [X] Stable - go ahead and release as 7.0.100 Stable

+1

 Regards,
 Violeta

>


[tomcat] 02/02: Fix TLS 1.3 tests after removing deprecated Connector setters

2020-02-14 Thread markt
This is an automated email from the ASF dual-hosted git repository.

markt pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/tomcat.git

commit 6732d6aca2c9d84480e7a9d2a2a1f1a1d08430e6
Author: Mark Thomas 
AuthorDate: Fri Feb 14 15:32:44 2020 +

Fix TLS 1.3 tests after removing deprecated Connector setters
---
 test/org/apache/tomcat/util/net/TestClientCertTls13.java | 11 +--
 1 file changed, 9 insertions(+), 2 deletions(-)

diff --git a/test/org/apache/tomcat/util/net/TestClientCertTls13.java 
b/test/org/apache/tomcat/util/net/TestClientCertTls13.java
index 19f2e5e..7444ae2 100644
--- a/test/org/apache/tomcat/util/net/TestClientCertTls13.java
+++ b/test/org/apache/tomcat/util/net/TestClientCertTls13.java
@@ -75,9 +75,16 @@ public class TestClientCertTls13 extends TomcatBaseTest {
 
 TesterSupport.configureClientCertContext(tomcat);
 // Need to override some of the previous settings
-
Assert.assertTrue(tomcat.getConnector().setProperty("sslEnabledProtocols", 
Constants.SSL_PROTO_TLSv1_3));
+SSLHostConfig[] sslHostConfigs = connector.findSslHostConfigs();
+Assert.assertNotNull(sslHostConfigs);
+Assert.assertEquals(1, sslHostConfigs.length);
+
+SSLHostConfig sslHostConfig = sslHostConfigs[0];
+
+// TLS 1.3 support
+sslHostConfig.setProtocols(Constants.SSL_PROTO_TLSv1_3);
 // And add force authentication to occur on the initial handshake
-Assert.assertTrue(tomcat.getConnector().setProperty("clientAuth", 
"required"));
+sslHostConfig.setCertificateVerification("required");
 
 TesterSupport.configureClientSsl();
 }


-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org



[tomcat] 01/02: Increment version for next dev cycle

2020-02-14 Thread markt
This is an automated email from the ASF dual-hosted git repository.

markt pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/tomcat.git

commit 75ecd18fdaf4860faa0878bac0b91ad3d42a058a
Author: Mark Thomas 
AuthorDate: Fri Feb 14 15:32:19 2020 +

Increment version for next dev cycle
---
 build.properties.default | 2 +-
 res/maven/mvn.properties.default | 2 +-
 webapps/docs/changelog.xml   | 4 +++-
 3 files changed, 5 insertions(+), 3 deletions(-)

diff --git a/build.properties.default b/build.properties.default
index 8986247..58688ec 100644
--- a/build.properties.default
+++ b/build.properties.default
@@ -27,7 +27,7 @@ version.major=10
 version.minor=0
 version.build=0
 version.patch=0
-version.suffix=-dev
+version.suffix=-M2-dev
 
 # - Source control flags -
 git.branch=master
diff --git a/res/maven/mvn.properties.default b/res/maven/mvn.properties.default
index 66a4ee3..e294888 100644
--- a/res/maven/mvn.properties.default
+++ b/res/maven/mvn.properties.default
@@ -39,7 +39,7 @@ 
maven.asf.release.repo.url=https://repository.apache.org/service/local/staging/d
 maven.asf.release.repo.repositoryId=apache.releases.https
 
 # Release version info
-maven.asf.release.deploy.version=10.0.0
+maven.asf.release.deploy.version=10.0.0-M2
 
 #Where do we load the libraries from
 tomcat.lib.path=../../output/build/lib
diff --git a/webapps/docs/changelog.xml b/webapps/docs/changelog.xml
index cb08195..713b05b 100644
--- a/webapps/docs/changelog.xml
+++ b/webapps/docs/changelog.xml
@@ -44,7 +44,9 @@
   They eventually become mixed with the numbered issues (i.e., numbered
   issues do not "pop up" wrt. others).
 -->
-
+
+
+
   
 
   This release contains all of the changes upto and including those in


-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org



[tomcat] branch master updated (892353a -> 6732d6a)

2020-02-14 Thread markt
This is an automated email from the ASF dual-hosted git repository.

markt pushed a change to branch master
in repository https://gitbox.apache.org/repos/asf/tomcat.git.


from 892353a  A couple of places where the 10.0.x version style needs to be 
restored
 new 75ecd18  Increment version for next dev cycle
 new 6732d6a  Fix TLS 1.3 tests after removing deprecated Connector setters

The 2 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "add" were already present in the repository and have only
been added to this reference.


Summary of changes:
 build.properties.default |  2 +-
 res/maven/mvn.properties.default |  2 +-
 test/org/apache/tomcat/util/net/TestClientCertTls13.java | 11 +--
 webapps/docs/changelog.xml   |  4 +++-
 4 files changed, 14 insertions(+), 5 deletions(-)


-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org



[tomcat] branch 7.0.x updated: Javadoc clean-up

2020-02-14 Thread markt
This is an automated email from the ASF dual-hosted git repository.

markt pushed a commit to branch 7.0.x
in repository https://gitbox.apache.org/repos/asf/tomcat.git


The following commit(s) were added to refs/heads/7.0.x by this push:
 new de9af5b  Javadoc clean-up
de9af5b is described below

commit de9af5bca96f28c7ecbb76a1eaba36db85afebd1
Author: Mark Thomas 
AuthorDate: Fri Feb 14 15:19:15 2020 +

Javadoc clean-up
---
 java/org/apache/catalina/connector/Connector.java|  6 +++---
 .../org/apache/catalina/connector/CoyoteAdapter.java |  1 +
 .../apache/catalina/connector/MapperListener.java|  4 
 java/org/apache/catalina/connector/OutputBuffer.java |  7 +--
 java/org/apache/catalina/connector/Response.java | 11 +++
 java/org/apache/coyote/Adapter.java  |  3 +++
 java/org/apache/jasper/compiler/ServletWriter.java   | 20 +---
 java/org/apache/jasper/compiler/SmapUtil.java|  1 +
 .../apache/jasper/compiler/TldLocationsCache.java| 10 ++
 9 files changed, 51 insertions(+), 12 deletions(-)

diff --git a/java/org/apache/catalina/connector/Connector.java 
b/java/org/apache/catalina/connector/Connector.java
index dc1c4e3..7d7d11d 100644
--- a/java/org/apache/catalina/connector/Connector.java
+++ b/java/org/apache/catalina/connector/Connector.java
@@ -420,7 +420,7 @@ public class Connector extends LifecycleMBeanBase  {
 
 
 /**
- * Return descriptive information about this Connector implementation.
+ * @return descriptive information about this Connector implementation.
  */
 public String getInfo() {
 
@@ -430,7 +430,7 @@ public class Connector extends LifecycleMBeanBase  {
 
 
 /**
- * Return the mapper.
+ * @return the mapper.
  */
 public Mapper getMapper() {
 return (mapper);
@@ -438,7 +438,7 @@ public class Connector extends LifecycleMBeanBase  {
 
 
 /**
- * Return the maximum number of headers that are allowed by the container. 
A
+ * @return the maximum number of headers that are allowed by the 
container. A
  * value of less than 0 means no limit.
  */
 public int getMaxHeaderCount() {
diff --git a/java/org/apache/catalina/connector/CoyoteAdapter.java 
b/java/org/apache/catalina/connector/CoyoteAdapter.java
index 724eaa3..fc0fdd0 100644
--- a/java/org/apache/catalina/connector/CoyoteAdapter.java
+++ b/java/org/apache/catalina/connector/CoyoteAdapter.java
@@ -1112,6 +1112,7 @@ public class CoyoteAdapter implements Adapter {
 /**
  * Parse session id in Cookie.
  *
+ * @param req The Coyote request object
  * @param request The Servlet request object
  */
 protected void parseSessionCookiesId(org.apache.coyote.Request req, 
Request request) {
diff --git a/java/org/apache/catalina/connector/MapperListener.java 
b/java/org/apache/catalina/connector/MapperListener.java
index 5b0e9f9..a5f2dda 100644
--- a/java/org/apache/catalina/connector/MapperListener.java
+++ b/java/org/apache/catalina/connector/MapperListener.java
@@ -80,6 +80,10 @@ public class MapperListener extends LifecycleMBeanBase
 
 /**
  * Create mapper listener.
+ *
+ * @param mapperThe Mapper with which this listener will be associated
+ * @param connector The Connector with which this listener will be
+ *associated
  */
 public MapperListener(Mapper mapper, Connector connector) {
 this.mapper = mapper;
diff --git a/java/org/apache/catalina/connector/OutputBuffer.java 
b/java/org/apache/catalina/connector/OutputBuffer.java
index 2a5f63c..b70cf22 100644
--- a/java/org/apache/catalina/connector/OutputBuffer.java
+++ b/java/org/apache/catalina/connector/OutputBuffer.java
@@ -338,6 +338,7 @@ public class OutputBuffer extends Writer
 /**
  * Flush bytes or chars contained in the buffer.
  *
+ * @param realFlush true if this should also cause a real 
network flush
  * @throws IOException An underlying IOException occurred
  */
 protected void doFlush(boolean realFlush) throws IOException {
@@ -645,8 +646,10 @@ public class OutputBuffer extends Writer
 }
 
 /**
- * True if this buffer hasn't been used ( since recycle() ) -
- * i.e. no chars or bytes have been added to the buffer.
+ * Has this buffer been used at all?
+ *
+ * @return true if no chars or bytes have been added to the buffer since 
the
+ * last call to {@link #recycle()}
  */
 public boolean isNew() {
 return (bytesWritten == 0) && (charsWritten == 0);
diff --git a/java/org/apache/catalina/connector/Response.java 
b/java/org/apache/catalina/connector/Response.java
index ad197a6..14182f1 100644
--- a/java/org/apache/catalina/connector/Response.java
+++ b/java/org/apache/catalina/connector/Response.java
@@ -113,7 +113,7 @@ public class Response implements HttpServletResponse {
 protected Connector connector;
 
 /**
- * Return the Connector 

[VOTE] Release Apache Tomcat 10.0.0-M1

2020-02-14 Thread Mark Thomas
The proposed Apache Tomcat 10.0.0-M1 release is now available for
voting. This is the first release of 10.0.x and is based on 9.0.31.

The major changes compared to 9.0.31  are:

- Complete the javax to jakarta package rename

- Remove duplication of configuration between HTTP/1.1 and HTTP/2.
  HTTP/2 will now inherit values from HTTP/1.1.

- Remove deprecated code

Along with lots of other bug fixes and improvements.

For full details, see the changelog:
https://ci.apache.org/projects/tomcat/tomcat10/docs/changelog.html

It can be obtained from:
https://dist.apache.org/repos/dist/dev/tomcat/tomcat-10/v10.0.0-M1/
The Maven staging repo is:
https://repository.apache.org/content/repositories/orgapachetomcat-1249/
The tag is:
https://github.com/apache/tomcat/tree/10.0.0-M1
b0b074b683ed2e09ff9e9755825bfce83d303a93

The proposed 10.0.0-M1 release is:
[ ] Broken - do not release
[ ] Alpha  - go ahead and release as 10.0.0-M1

I opted to only include alpha here as there are still some potentially
significant changes on the TOMCAT-NEXT list.

-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org



Nexus: Staging Completed

2020-02-14 Thread Nexus Repository Manager
Message from: https://repository.apache.orgDeployer properties:"userAgent" = "maven-artifact/2.2.1 (Java 1.8.0_232; Windows 10 10.0)""userId" = "markt""ip" = "109.149.198.114"Details:The following artifacts have been staged/org/apache/tomcat/tomcat-i18n-de/10.0.0-M1/tomcat-i18n-de-10.0.0-M1.jar(SHA1: 8906d3458329052b579cfcda1a8e9dc5a47bfb58)/org/apache/tomcat/tomcat-i18n-de/10.0.0-M1/tomcat-i18n-de-10.0.0-M1.pom(SHA1: 50468a3911caace7c37745ebdc6f7adc8233ac7e)/org/apache/tomcat/tomcat-i18n-de/10.0.0-M1/tomcat-i18n-de-10.0.0-M1.jar.asc(SHA1: 7bd0e55ce3233c5cebd743d0d9270565d82536fd)/org/apache/tomcat/tomcat-i18n-de/10.0.0-M1/tomcat-i18n-de-10.0.0-M1.pom.asc(SHA1: cbde5607393fc8ec3ed838721376535ff77dccef)/org/apache/tomcat/tomcat-jni/10.0.0-M1/tomcat-jni-10.0.0-M1-sources.jar(SHA1: 0e13514932cd6986c661db74406d559645266f95)/org/apache/tomcat/tomcat-jni/10.0.0-M1/tomcat-jni-10.0.0-M1-sources.jar.asc(SHA1: afeebdd59b7ff510f38145f1a78432df70e9b029)/org/apache/tomcat/tomcat-jni/10.0.0-M1/tomcat-jni-10.0.0-M1.jar(SHA1: 65f8246bb96f5b0f1cea5f3d9cef8d9415521df6)/org/apache/tomcat/tomcat-jni/10.0.0-M1/tomcat-jni-10.0.0-M1.pom(SHA1: 297100425b0f5ff2438a50cbbf6e460c87a5a30d)/org/apache/tomcat/tomcat-jni/10.0.0-M1/tomcat-jni-10.0.0-M1.pom.asc(SHA1: a050178cb067b9dcd38bbd4e329ea97dfa69da32)/org/apache/tomcat/tomcat-jni/10.0.0-M1/tomcat-jni-10.0.0-M1.jar.asc(SHA1: 0560403fed305a0d3f4ea51cfe9d7812d1c6bdcf)/org/apache/tomcat/tomcat-juli/10.0.0-M1/tomcat-juli-10.0.0-M1.pom.asc(SHA1: 7eaeaba26be22ebabf351c4507e0dbaf03cf4c84)/org/apache/tomcat/tomcat-juli/10.0.0-M1/tomcat-juli-10.0.0-M1-sources.jar(SHA1: b61bc6e6d6e87ddabc7ed7840fe880631773c3b5)/org/apache/tomcat/tomcat-juli/10.0.0-M1/tomcat-juli-10.0.0-M1.jar.asc(SHA1: e9015b4aec43e9bbd3467d65f1740083f229a1cb)/org/apache/tomcat/tomcat-juli/10.0.0-M1/tomcat-juli-10.0.0-M1-sources.jar.asc(SHA1: 96209c4a99fe30cbb2dada4f8c545ddc82647197)/org/apache/tomcat/tomcat-juli/10.0.0-M1/tomcat-juli-10.0.0-M1.jar(SHA1: 11e03b7fb680b76841626f102a0b8d62bab03a3e)/org/apache/tomcat/tomcat-juli/10.0.0-M1/tomcat-juli-10.0.0-M1.pom(SHA1: 4307826f8d2546b79f8085cc7c1787e11183be0a)/org/apache/tomcat/tomcat-util/10.0.0-M1/tomcat-util-10.0.0-M1-sources.jar.asc(SHA1: c3edf35e4c563237abcda3ff3ac01a4d0d17ba29)/org/apache/tomcat/tomcat-util/10.0.0-M1/tomcat-util-10.0.0-M1.pom.asc(SHA1: 70b37231e1dc8a4a508b9d006c2e1a759d697e44)/org/apache/tomcat/tomcat-util/10.0.0-M1/tomcat-util-10.0.0-M1-sources.jar(SHA1: 28c296c4cdb82296759d77de99a2b03f3fef3062)/org/apache/tomcat/tomcat-util/10.0.0-M1/tomcat-util-10.0.0-M1.pom(SHA1: 761a7762bd4d1a95cd83361924aaad1459104bcc)/org/apache/tomcat/tomcat-util/10.0.0-M1/tomcat-util-10.0.0-M1.jar.asc(SHA1: b1de7897df3fdabc7a23e08efb4d337ce03d6080)/org/apache/tomcat/tomcat-util/10.0.0-M1/tomcat-util-10.0.0-M1.jar(SHA1: 5d11c75c6e58f9c8d8514e4fc57192ec431b1f7a)/org/apache/tomcat/tomcat-catalina/10.0.0-M1/tomcat-catalina-10.0.0-M1.pom(SHA1: 9c18ad2d38bbe25578cdc1757ecbde1cb201a95a)/org/apache/tomcat/tomcat-catalina/10.0.0-M1/tomcat-catalina-10.0.0-M1-sources.jar(SHA1: 79037874ae80cc16b04295ffdc1ef19bfd8024e6)/org/apache/tomcat/tomcat-catalina/10.0.0-M1/tomcat-catalina-10.0.0-M1.jar.asc(SHA1: c7a1a5559b22eb75b14dc271889212136d3ae3df)/org/apache/tomcat/tomcat-catalina/10.0.0-M1/tomcat-catalina-10.0.0-M1-sources.jar.asc(SHA1: f559cd8b42a989a11de2298cf503682a2679e124)/org/apache/tomcat/tomcat-catalina/10.0.0-M1/tomcat-catalina-10.0.0-M1.pom.asc(SHA1: 7ad6cd9cbe0c9c90072c1231d1f6ce1071b2ecd5)/org/apache/tomcat/tomcat-catalina/10.0.0-M1/tomcat-catalina-10.0.0-M1.jar(SHA1: 22ef4643dfe72d3072337b302c1d295dd58388a2)/org/apache/tomcat/tomcat-i18n-fr/10.0.0-M1/tomcat-i18n-fr-10.0.0-M1.jar(SHA1: 8983cffe5f1bfda6368a983a6d5112975d210bd9)/org/apache/tomcat/tomcat-i18n-fr/10.0.0-M1/tomcat-i18n-fr-10.0.0-M1.pom(SHA1: c833e28d69b6eeb0b82953bf8ccd55d4bedee224)/org/apache/tomcat/tomcat-i18n-fr/10.0.0-M1/tomcat-i18n-fr-10.0.0-M1.pom.asc(SHA1: 6206acf193f454c8a975b9da8674facc106183e1)/org/apache/tomcat/tomcat-i18n-fr/10.0.0-M1/tomcat-i18n-fr-10.0.0-M1.jar.asc(SHA1: 187da1884919b79c1660c6fa442415d042fdba87)/org/apache/tomcat/tomcat-i18n-cs/10.0.0-M1/tomcat-i18n-cs-10.0.0-M1.pom.asc(SHA1: 3764bd91a14d4d2df2cc91671dc936bc36591e8f)/org/apache/tomcat/tomcat-i18n-cs/10.0.0-M1/tomcat-i18n-cs-10.0.0-M1.jar(SHA1: 890de88aba7e772abe1609e8d004d5d0ba2a0afc)/org/apache/tomcat/tomcat-i18n-cs/10.0.0-M1/tomcat-i18n-cs-10.0.0-M1.jar.asc(SHA1: 35c5621d12d91336fbe264830b1c1d91c23e104d)/org/apache/tomcat/tomcat-i18n-cs/10.0.0-M1/tomcat-i18n-cs-10.0.0-M1.pom(SHA1: d609c3466d3779199a16e936caa96364f724dde5)/org/apache/tomcat/tomcat-jdbc/10.0.0-M1/tomcat-jdbc-10.0.0-M1.jar(SHA1: 97d1b4f34eeda0323871328b76c46f3ff009)/org/apache/tomcat/tomcat-jdbc/10.0.0-M1/tomcat-jdbc-10.0.0-M1-sources.jar(SHA1: e89e3204acdc0a69dae93d5d4616dae141a34a62)/org/apache/tomcat/tomcat-jdbc/10.0.0-M1/tomcat-jdbc-10.0.0-M1.pom(SHA1: 41e612fe3a6f83802d261f1c0c45d987c70f4ba6)/org/apache/tomcat/tomcat-jdbc/10.0.0-M1/tomcat-jdbc-10.0.0-M1.pom.asc(SHA1: 

svn commit: r38059 - in /dev/tomcat/tomcat-10/v10.0.0-M1: ./ bin/ bin/embed/ src/

2020-02-14 Thread markt
Author: markt
Date: Fri Feb 14 14:22:31 2020
New Revision: 38059

Log:
Upload Tomcat 10.0.0-M1 for voting

Added:
dev/tomcat/tomcat-10/v10.0.0-M1/
dev/tomcat/tomcat-10/v10.0.0-M1/KEYS
dev/tomcat/tomcat-10/v10.0.0-M1/README.html
dev/tomcat/tomcat-10/v10.0.0-M1/RELEASE-NOTES
dev/tomcat/tomcat-10/v10.0.0-M1/bin/
dev/tomcat/tomcat-10/v10.0.0-M1/bin/README.html
dev/tomcat/tomcat-10/v10.0.0-M1/bin/apache-tomcat-10.0.0-M1-deployer.tar.gz 
  (with props)

dev/tomcat/tomcat-10/v10.0.0-M1/bin/apache-tomcat-10.0.0-M1-deployer.tar.gz.asc

dev/tomcat/tomcat-10/v10.0.0-M1/bin/apache-tomcat-10.0.0-M1-deployer.tar.gz.sha512
dev/tomcat/tomcat-10/v10.0.0-M1/bin/apache-tomcat-10.0.0-M1-deployer.zip   
(with props)
dev/tomcat/tomcat-10/v10.0.0-M1/bin/apache-tomcat-10.0.0-M1-deployer.zip.asc

dev/tomcat/tomcat-10/v10.0.0-M1/bin/apache-tomcat-10.0.0-M1-deployer.zip.sha512
dev/tomcat/tomcat-10/v10.0.0-M1/bin/apache-tomcat-10.0.0-M1-fulldocs.tar.gz 
  (with props)

dev/tomcat/tomcat-10/v10.0.0-M1/bin/apache-tomcat-10.0.0-M1-fulldocs.tar.gz.asc

dev/tomcat/tomcat-10/v10.0.0-M1/bin/apache-tomcat-10.0.0-M1-fulldocs.tar.gz.sha512
dev/tomcat/tomcat-10/v10.0.0-M1/bin/apache-tomcat-10.0.0-M1-windows-x64.zip 
  (with props)

dev/tomcat/tomcat-10/v10.0.0-M1/bin/apache-tomcat-10.0.0-M1-windows-x64.zip.asc

dev/tomcat/tomcat-10/v10.0.0-M1/bin/apache-tomcat-10.0.0-M1-windows-x64.zip.sha512
dev/tomcat/tomcat-10/v10.0.0-M1/bin/apache-tomcat-10.0.0-M1-windows-x86.zip 
  (with props)

dev/tomcat/tomcat-10/v10.0.0-M1/bin/apache-tomcat-10.0.0-M1-windows-x86.zip.asc

dev/tomcat/tomcat-10/v10.0.0-M1/bin/apache-tomcat-10.0.0-M1-windows-x86.zip.sha512
dev/tomcat/tomcat-10/v10.0.0-M1/bin/apache-tomcat-10.0.0-M1.exe   (with 
props)
dev/tomcat/tomcat-10/v10.0.0-M1/bin/apache-tomcat-10.0.0-M1.exe.asc
dev/tomcat/tomcat-10/v10.0.0-M1/bin/apache-tomcat-10.0.0-M1.exe.sha512
dev/tomcat/tomcat-10/v10.0.0-M1/bin/apache-tomcat-10.0.0-M1.tar.gz   (with 
props)
dev/tomcat/tomcat-10/v10.0.0-M1/bin/apache-tomcat-10.0.0-M1.tar.gz.sha512
dev/tomcat/tomcat-10/v10.0.0-M1/bin/apache-tomcat-10.0.0-M1.zip   (with 
props)
dev/tomcat/tomcat-10/v10.0.0-M1/bin/apache-tomcat-10.0.0-M1.zip.sha512
dev/tomcat/tomcat-10/v10.0.0-M1/bin/embed/

dev/tomcat/tomcat-10/v10.0.0-M1/bin/embed/apache-tomcat-10.0.0-M1-embed.tar.gz  
 (with props)

dev/tomcat/tomcat-10/v10.0.0-M1/bin/embed/apache-tomcat-10.0.0-M1-embed.tar.gz.asc

dev/tomcat/tomcat-10/v10.0.0-M1/bin/embed/apache-tomcat-10.0.0-M1-embed.tar.gz.sha512
dev/tomcat/tomcat-10/v10.0.0-M1/bin/embed/apache-tomcat-10.0.0-M1-embed.zip 
  (with props)

dev/tomcat/tomcat-10/v10.0.0-M1/bin/embed/apache-tomcat-10.0.0-M1-embed.zip.asc

dev/tomcat/tomcat-10/v10.0.0-M1/bin/embed/apache-tomcat-10.0.0-M1-embed.zip.sha512
dev/tomcat/tomcat-10/v10.0.0-M1/src/
dev/tomcat/tomcat-10/v10.0.0-M1/src/apache-tomcat-10.0.0-M1-src.tar.gz   
(with props)
dev/tomcat/tomcat-10/v10.0.0-M1/src/apache-tomcat-10.0.0-M1-src.tar.gz.asc

dev/tomcat/tomcat-10/v10.0.0-M1/src/apache-tomcat-10.0.0-M1-src.tar.gz.sha512
dev/tomcat/tomcat-10/v10.0.0-M1/src/apache-tomcat-10.0.0-M1-src.zip   (with 
props)
dev/tomcat/tomcat-10/v10.0.0-M1/src/apache-tomcat-10.0.0-M1-src.zip.asc
dev/tomcat/tomcat-10/v10.0.0-M1/src/apache-tomcat-10.0.0-M1-src.zip.sha512

Added: dev/tomcat/tomcat-10/v10.0.0-M1/KEYS
==
--- dev/tomcat/tomcat-10/v10.0.0-M1/KEYS (added)
+++ dev/tomcat/tomcat-10/v10.0.0-M1/KEYS Fri Feb 14 14:22:31 2020
@@ -0,0 +1,676 @@
+This file contains the PGP keys of various Apache developers.
+Please don't use them for email unless you have to. Their main
+purpose is code signing.
+
+Apache users: pgp < KEYS
+Apache developers:
+(pgpk -ll  && pgpk -xa ) >> this file.
+  or
+(gpg --fingerprint --list-sigs 
+ && gpg --armor --export ) >> this file.
+
+Apache developers: please ensure that your key is also available via the
+PGP keyservers (such as pgpkeys.mit.edu).
+
+
+Type Bits/KeyIDDate   User ID
+pub  2048/F22C4FED 2001/07/02 Andy Armstrong 
+
+-BEGIN PGP PUBLIC KEY BLOCK-
+Version: PGPfreeware 7.0.3 for non-commercial use 
+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Nexus: Staging Repository Dropped

2020-02-14 Thread Nexus Repository Manager
Message from: https://repository.apache.orgDeployer properties:"userAgent" = "maven-artifact/2.2.1 (Java 1.8.0_232; Windows 10 10.0)""userId" = "markt""ip" = "109.149.198.114"Details:The orgapachetomcat-1248 staging repository has been dropped.Action performed by Mark Thomas (markt)

[Bug 64144] Add an option for rejecting requests that have both CL and TE

2020-02-14 Thread bugzilla
https://bz.apache.org/bugzilla/show_bug.cgi?id=64144

Violeta Georgieva  changed:

   What|Removed |Added

   Severity|normal  |enhancement

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org



[Bug 64144] New: Add an option for rejecting requests that have both CL and TE

2020-02-14 Thread bugzilla
https://bz.apache.org/bugzilla/show_bug.cgi?id=64144

Bug ID: 64144
   Summary: Add an option for rejecting requests that have both CL
and TE
   Product: Tomcat 9
   Version: 9.0.x
  Hardware: PC
OS: Mac OS X 10.1
Status: NEW
  Severity: normal
  Priority: P2
 Component: Connectors
  Assignee: dev@tomcat.apache.org
  Reporter: violet...@apache.org
  Target Milestone: -

According https://tools.ietf.org/html/rfc7230#section-3.3.3
If a message is received with both a TE and a CL header field, the TE overrides
the CL. Such a message might indicate an attempt to perform an attack and ought
to be handled as an error.
This feature request is for adding an option for rejecting requests that have
both CL and TE so that Tomcat is protected against misbehaving third-party
components.

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org



[Bug 64141] APR SSL: Required certificate verification uses -Djavax.net.ssl.trustStore instead of caCertificateFile

2020-02-14 Thread bugzilla
https://bz.apache.org/bugzilla/show_bug.cgi?id=64141

--- Comment #5 from Remy Maucherat  ---
(In reply to Martin Wegner from comment #4)
> I checked the source code and you are right. When the JSSE only parameters
> truststoreFile and truststorePassword are set, then the caCertificateFile
> would be ignored and the provided truststore would be used. If this is
> intended, then the documentation should be updated.

This is by accident right now, so we need to decide if this is labelled as
"intended" [I hope you don't have a problem with retcons if your shows, because
we do it here as well :) ] or if it should be fixed. The two attributes
caCertificateFile and truststoreFile could reset the other to null (if it not
null) and WARN about it since they are mutually exclusive.

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org



[Bug 64141] APR SSL: Required certificate verification uses -Djavax.net.ssl.trustStore instead of caCertificateFile

2020-02-14 Thread bugzilla
https://bz.apache.org/bugzilla/show_bug.cgi?id=64141

--- Comment #4 from Martin Wegner  ---
(In reply to Remy Maucherat from comment #2)
> The configuration looks ok to me in theory as APR will use caCertificateFile.
> 
> However, if you look at SSLHostConfig, you can notice that:
> private String truststoreFile =
> System.getProperty("javax.net.ssl.trustStore");
> So the system property sets truststoreFile, which is then used to get the
> trust managers (and caCertificateFile is then not used at all).
> 
> IMO: bad luck, this may be a WONTFIX.
> 
> The workaround mentioned by Chris by creating a keystore is correct, since
> setting truststoreFile will override the value from the system property.

I checked the source code and you are right. When the JSSE only parameters
truststoreFile and truststorePassword are set, then the caCertificateFile would
be ignored and the provided truststore would be used. If this is intended, then
the documentation should be updated.

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org



[Bug 64141] APR SSL: Required certificate verification uses -Djavax.net.ssl.trustStore instead of caCertificateFile

2020-02-14 Thread bugzilla
https://bz.apache.org/bugzilla/show_bug.cgi?id=64141

--- Comment #3 from Martin Wegner  ---
(In reply to Christopher Schultz from comment #1)
> Are you using OpenSSL? The caCertificateFile configuration option is only
> applicable if you are using the OpenSSL crypto engine.
> 
> From your description, I believe you have an incorrect configuration. You
> want to set:
> 
> truststoreFile="D:\Program Files\Apache Software
> Foundation\Tomcat8_BackEnd_Test\cert\ca.pem" (but convert this file into a
> keystore)

I use the Windows binaries, so it is Tomcat Native APR and OpenSSL.
This is the reason why I only use OpenSSL configuration parameters and no JSSE
configuration parameters. truststoreFile is a JSSE only configuration parameter
(https://tomcat.apache.org/tomcat-8.5-doc/config/http.html).

-- 
You are receiving this mail because:
You are the assignee for the bug.
-
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org