Re: Supported signature algorithms in Tomcat 8.5

2021-09-22 Thread Christopher Schultz
Sreevidya, On 9/22/21 12:25, Mandava, Sreevidya wrote: Tomcat version : 8.5.70 Attached my self -signed client cert(ecdsatestclient.crt_txt), self signed CA (rsatestca_original.crt_txt)output from openssl (defaultciphersuite.txt) my connector configuration(connector.txt) Your attachment

Re: Tomcat SSL - Issue

2021-09-22 Thread Christopher Schultz
, Sep 21, 2021 at 5:25 PM Christopher Schultz < ch...@christopherschultz.net> wrote: Priyanka, On 9/21/21 13:52, Kumawat, Priyanka wrote: Hello Team , Please find the error details as below - The site can’t provide a secure connection . xmotam01.phl.com uses an unsupported pr

Re: Tomcat 9.0 async read becomes blocking

2021-09-21 Thread Christopher Schultz
Andrew, On 9/21/21 13:54, Javateck wrote: Hi, With NIO connector with Servlet 3.1 support, I’m registering with a ReadListener, while it got the first read signal from tomcat container (I tried 9.0.19 and 9.0.53), the read call is blocked after isReady returns true if

Re: Tomcat SSL - Issue

2021-09-21 Thread Christopher Schultz
Priyanka, On 9/21/21 13:52, Kumawat, Priyanka wrote: Hello Team , Please find the error details as below - The site can’t provide a secure connection . xmotam01.phl.com uses an unsupported protocol ERR_SSL_VERSION or CIPHER MISMATCH Unsupported protocol – The client and server don;t

ApacheCon 2021 @Home Kicks off today 13:00 UTC

2021-09-21 Thread Christopher Schultz
All, ApacheCon @Home starts today at 13:00 UTC (15 minutes from now, as I write this). Please join us for opening keynotes followed by the Apache Tomcat presentation track featuring the following topics: - Apache Tomcat: New and Upcoming - HTTP/2, HTTP/3, and TLS Start of the Art in our

Re: JASPIC AuthConfigProvider packaged with the web application not found

2021-09-18 Thread Christopher Schultz
Bernd, On 9/17/21 03:52, Bernd Schatz wrote: Hi Matthias, Am 17.09.21 um 09:39 schrieb bernd.sch...@daimler.com: From: "Keil, Matthias (ORISA Software GmbH)" To: users@tomcat.apache.org Subject: JASPIC AuthConfigProvider packaged with the web application not found I would like to

ApacheCon 2021 @Home is Next Week!

2021-09-17 Thread Christopher Schultz
All, ApacheCon is coming back to your living room / bed room / home office next week, Tuesday - Thursday, mostly centered on the US-Eastern time zone. There is *zero cost* to attend the conference. https://www.apachecon.com/acah2021/ The Tomcat track is only happening on Tuesday, including

Re: #tomcat on Freenode?

2021-09-15 Thread Christopher Schultz
, I'll just update the reference. +1 to updating the reference to point to Libra.Chat. -chris On Tue, May 25, 2021 at 9:19 AM Coty Sutherland wrote: On Thu, May 20, 2021 at 1:03 PM Christopher Schultz < ch...@christopherschultz.net> wrote: Coty, On 5/19/21 15:28, Coty Sutherland wrot

[ANN] Tomcat 8.5.71 Released

2021-09-14 Thread Christopher Schultz
The Apache Tomcat team announces the immediate availability of Apache Tomcat 8.5.71. Apache Tomcat 8 is an open source software implementation of the Java Servlet, JavaServer Pages, Java Unified Expression Language, Java WebSocket and Java Authentication Service Provider Interface for Containers

Re: FW: 403 Errors for REST Web Services after upgrade from 8.5.30 to 8.5.58

2021-09-14 Thread Christopher Schultz
Mike, On 9/13/21 10:56, Mike Webb wrote: I manage a web application that uses REST Web Services. After upgrading from 8.5.30 to 8.5.58, the web services return 403 messages. Commenting out the and sections below allows the web services to run again, but it does remove the security

Re: Tomcat Virtual Host to prevent Improper-Input-Handling attack

2021-09-13 Thread Christopher Schultz
Pradeep, On 9/13/21 09:35, Pradeep wrote: I am using Tomcat 7.0.57, I can't change the Tomcat version now. Running my previous "forge" file (with GET http://www.microsoft.com/, the the forged Host header) against Tomcat 7.0.57: $ nc localhost 8080 < forge HTTP/1.1 200 OK Server:

Re: Tomcat Virtual Host to prevent Improper-Input-Handling attack

2021-09-13 Thread Christopher Schultz
reproduce this "attack">? -chris On Mon, 13 Sep 2021, 2:28 pm Christopher Schultz, < ch...@christopherschultz.net> wrote: Pradeep, On 9/10/21 17:38, Pradeep wrote: My application is HTTPS not HTTP and now one of the application security platforms WhitHatSec raised this v

Re: Aw: Re: tomcat hangs

2021-09-13 Thread Christopher Schultz
Peter, On 9/13/21 04:12, Peter Rader wrote: Chris, Gesendet: Donnerstag, 09. September 2021 um 22:15 Uhr Von: "Christopher Schultz" An: users@tomcat.apache.org Betreff: Re: Aw: tomcat hangs Peter, On 9/9/21 08:21, Peter Rader wrote: I might noticed a simmilar issue: I r

Re: Server redirected too many times (20)

2021-09-13 Thread Christopher Schultz
Barry, On 9/12/21 12:59, Barry Kimelman wrote: I just installed tomcat 9.0.52 on my linux ubuntu 20.04 LTS system. I was successfully able to run the manager app as a test. Now I am trying to build an application that I had worked on quite a while ago in an older version of tomcat. I have a

Re: Tomcat Virtual Host to prevent Improper-Input-Handling attack

2021-09-13 Thread Christopher Schultz
the RemoteAddrValve[1]. The valve enforces client identity, not the host the client is trying to access. It also works on IP addresses, not hostnames. I'm surprised you were able to access anything at all. -chris [1] http://tomcat.apache.org/tomcat-9.0-doc/config/valve.html#Remote_Address_Valve On Fri,

Re: Tomcat Virtual Host to prevent Improper-Input-Handling attack

2021-09-10 Thread Christopher Schultz
Pradeep, On 9/10/21 06:19, Pradeep wrote: Hi Team, I need your help to fix HTTP Host header attacks. I'm currently in the process of trying to fix a site vulnerability, basically it is one type of the "Improper Input Handling" attack. Let's say my website is www.mywebsite.com and there is

Re: Aw: tomcat hangs

2021-09-09 Thread Christopher Schultz
Peter, On 9/9/21 08:21, Peter Rader wrote: I might noticed a simmilar issue: I ran the JVM in a linux OS on a VM (in virtualbox btw). The jdk for some reason request a random number. The JDK asks the LinuxOS for a new random number (maybe in the hope to use a hardware-based TRNG). Since this

Re: Http TRACE method headers in response body

2021-09-09 Thread Christopher Schultz
Mark, On 9/9/21 03:05, Mark Thomas wrote: On 08/09/2021 20:50, Christopher Schultz wrote: Mark, On 9/8/21 11:28, Mark Thomas wrote: On 08/09/2021 16:15, Gilles Robert wrote: My issue is that even though TRACE is disabled, we see the "malicious" header in the response. You ne

Re: Http TRACE method headers in response body

2021-09-08 Thread Christopher Schultz
Mark, On 9/8/21 11:28, Mark Thomas wrote: On 08/09/2021 16:15, Gilles Robert wrote: My issue is that even though TRACE is disabled, we see the "malicious" header in the response. You need to talk to the Spring folks then. Default Tomcat behaviour is to return a 405 with an error message in

Re: BasicDataSource restart()

2021-09-07 Thread Christopher Schultz
Jerry, On 9/7/21 15:49, Jerry Malcolm wrote: On 9/7/2021 2:35 PM, Christopher Schultz wrote: Jerry, Rémy, On 9/3/21 07:15, Rémy Maucherat wrote: On Fri, Sep 3, 2021 at 2:46 AM Jerry Malcolm wrote: I have a requirement to start a new log database on the first of every month.  I still need

Re: BasicDataSource restart()

2021-09-07 Thread Christopher Schultz
Jerry, Rémy, On 9/3/21 07:15, Rémy Maucherat wrote: On Fri, Sep 3, 2021 at 2:46 AM Jerry Malcolm wrote: I have a requirement to start a new log database on the first of every month. I still need to have access to older monthly log databases. I do not want to create a bunch of hardcoded

Re: Debug apache-tomcat-8.5.59 open sockets on Linux 8

2021-08-31 Thread Christopher Schultz
are pointing to. Are you sure you are running out of files with many database connections, or is it just a suspicion? You can probably also ask the database how many connections are open. -chris -Original Message- From: Christopher Schultz Sent: Tuesday, August 31, 2021 11:50 AM To: users

Re: Debug apache-tomcat-8.5.59 open sockets on Linux 8

2021-08-31 Thread Christopher Schultz
Yeggy, On 8/31/21 11:22, Yeggy Javadi wrote: Please indicate if there is any debug option and log that can trace sockets open by tomcat to identify when and by which application function a socket is open. Do you mean a web application? Tomcat manages incoming HTTP/2/Websocket/APR connections

Re: HttpNIO error

2021-08-31 Thread Christopher Schultz
Rinilnath, On 8/31/21 09:54, rinilnath r wrote: Hi Chris, Java : 1.8.0_45 OS : Windows 7 Also, can you please post the full stack trace of the UnsupportedOperationException? -chris - To unsubscribe, e-mail:

Re: HttpNIO error

2021-08-31 Thread Christopher Schultz
Rinilnath, On 8/31/21 09:54, rinilnath r wrote: On 8/31/21 09:23, rinilnath r wrote: I am using tomcat Http11nio2protocol. I configured it in server XML. When I start the server it failed to start UnsupportedOperationException. SO_LINGER not supported Any help please? Please post: 1.

Re: HttpNIO error

2021-08-31 Thread Christopher Schultz
Rinilnath, On 8/31/21 09:23, rinilnath r wrote: I am using tomcat Http11nio2protocol. I configured it in server XML. When I start the server it failed to start UnsupportedOperationException. SO_LINGER not supported Any help please? Please post: 1. Your Java version 2. Your OS and version

Re: Timestamp Error

2021-08-30 Thread Christopher Schultz
Terrence and Jerry, On 8/27/21 21:33, Terence M. Bandoian wrote: On 8/27/2021 2:31 PM, Jerry Malcolm wrote: On 8/27/2021 1:30 PM, Mark Eggers wrote: On 8/27/2021 11:16 AM, Jerry Malcolm wrote: On 8/27/2021 11:55 AM, Christopher Schultz wrote: Mark and Jerry, On 8/26/21 22:03, Mark Eggers

Re: Apache Tomcat 9 | Tomcat starting issue

2021-08-30 Thread Christopher Schultz
Piyush, On 8/24/21 23:47, Piyush Sharma wrote: On Mon, Aug 23, 2021 at 8:29 PM Christopher Schultz < ch...@christopherschultz.net> wrote: Piyush, On 8/22/21 03:54, Piyush Sharma wrote: On Fri, Aug 20, 2021 at 10:40 PM Christopher Schultz < ch...@christopherschultz.net> wro

Re: Timestamp Error

2021-08-27 Thread Christopher Schultz
Jerry, On 8/27/21 14:16, Jerry Malcolm wrote: On 8/27/2021 11:55 AM, Christopher Schultz wrote: Mark and Jerry, On 8/26/21 22:03, Mark Eggers wrote: Jerry, On 8/26/2021 6:35 PM, Jerry Malcolm wrote: I am encountering a weird problem. I'm getting the following SQL error on an INSERT

Re: Timestamp Error

2021-08-27 Thread Christopher Schultz
Jerry, On 8/27/21 14:16, Jerry Malcolm wrote: On 8/27/2021 11:55 AM, Christopher Schultz wrote: Mark and Jerry, On 8/26/21 22:03, Mark Eggers wrote: Jerry, On 8/26/2021 6:35 PM, Jerry Malcolm wrote: I am encountering a weird problem. I'm getting the following SQL error on an INSERT

Re: Improve logging in org.apache.catalina.filters.RestCsrfPreventionFilter ?

2021-08-27 Thread Christopher Schultz
Polina, On 8/26/21 10:48, Polina Georgieva wrote: Currently the RestCsrfPreventionFilter is responding with 403 response when the csrf token sent in the request is different from the one stored in the session. However except the 403 response code visible in the http access log file, there’s no

Re: Query regarding maxConnections attribute

2021-08-27 Thread Christopher Schultz
Srijith, On 8/27/21 06:50, Srijith Kochunni wrote: We have a project requirement that we need to scale up to accept very high number of connections. I understand that setting maxConnections to -1 will disable the counting of the connections. I just wanted to know whether there are any

Re: Timestamp Error

2021-08-27 Thread Christopher Schultz
Mark and Jerry, On 8/26/21 22:03, Mark Eggers wrote: Jerry, On 8/26/2021 6:35 PM, Jerry Malcolm wrote: I am encountering a weird problem. I'm getting the following SQL error on an INSERT command. com.mysql.cj.jdbc.exceptions.MysqlDataTruncation: Data truncation: Incorrect datetime value:

Re: 200 response and redirect for ".../test.jsp"

2021-08-26 Thread Christopher Schultz
Mark, James, On 8/24/21 20:40, Mark Eggers wrote: Folks, On 8/24/2021 3:55 PM, Christopher Schultz wrote: James, On 8/24/21 17:20, James H. H. Lampert wrote: I could have sworn I asked about this over a year ago, but I can't find any record of having done so. We've got a low-priority

Re: UserDatabaseRealm and DIGEST

2021-08-26 Thread Christopher Schultz
Jon, On 8/24/21 19:51, jonmcalexan...@wellsfargo.com.INVALID wrote: Chris, -Original Message- From: Christopher Schultz Sent: Tuesday, August 24, 2021 5:52 PM To: users@tomcat.apache.org Subject: Re: UserDatabaseRealm and DIGEST Jon, On 8/24/21 12:53, jonmcalexan

Re: 200 response and redirect for ".../test.jsp"

2021-08-24 Thread Christopher Schultz
James, On 8/24/21 17:20, James H. H. Lampert wrote: I could have sworn I asked about this over a year ago, but I can't find any record of having done so. We've got a low-priority complaint about a security scan looking for "test.jsp" on one of our installations, expecting a 404 response, and

Re: UserDatabaseRealm and DIGEST

2021-08-24 Thread Christopher Schultz
Jon, On 8/24/21 12:53, jonmcalexan...@wellsfargo.com.INVALID wrote: -Original Message- From: Mark Thomas Sent: Tuesday, August 24, 2021 11:41 AM To: users@tomcat.apache.org Subject: Re: UserDatabaseRealm and DIGEST On 24/08/2021 17:28, jonmcalexan...@wellsfargo.com.INVALID wrote: Ok,

Re: clearReferencesThreads issues warning about 2 threads, spawned by JDK in printing components

2021-08-23 Thread Christopher Schultz
Mark, On 8/23/21 04:05, Mark Thomas wrote: On 23/08/2021 08:10, Thomas Hoffmann (Speed4Trade GmbH) wrote: Is there anything, the application can prevent this? Yes. Call Thread.setContextClassLoader(ClassLoader) before calling the code that creates those threads, passing the common class

Re: Apache Tomcat 9 | Tomcat starting issue

2021-08-23 Thread Christopher Schultz
Piyush, On 8/22/21 03:54, Piyush Sharma wrote: On Fri, Aug 20, 2021 at 10:40 PM Christopher Schultz < ch...@christopherschultz.net> wrote: Piyush, On 8/20/21 06:36, Piyush Sharma wrote: Hello, I am using Apache Tomcat 9.0.46 version on docker container. There is a problem, where th

Re: Apache Tomcat 9 | Tomcat starting issue

2021-08-20 Thread Christopher Schultz
Piyush, On 8/20/21 06:36, Piyush Sharma wrote: Hello, I am using Apache Tomcat 9.0.46 version on docker container. There is a problem, where the base path was wrongly set by automation script due to which it starts for few seconds, listen port 8080 and then stop, due to that container exit

Re: how to tune cacheMaxSize

2021-08-20 Thread Christopher Schultz
Michael, On 8/19/21 21:34, Michael Richardson wrote: Aha. Well, I left it running after the last email and went on to more important things. Then the window just jumped: The previous log line: 20-Aug-2021 01:02:42.315 INFO [main] org.apache.catalina.core.AprLifecycleListener.initializeSSL

Re: how to tune cacheMaxSize

2021-08-20 Thread Christopher Schultz
Michael, On 8/19/21 20:35, Michael Richardson wrote: try #1. Now rebooting VM. Christopher Schultz wrote: > 1. Stop Tomcat, clear all logs, delete your oscar.war file and the exploded > directory in CATALINA_BASE/webapps/oscar (or wherever your appBase points > to).

Re: how to tune cacheMaxSize

2021-08-20 Thread Christopher Schultz
Michael, On 8/19/21 21:37, Michael Richardson wrote: Let's deploy the oscar.war, what's the worst that can happen? 20-Aug-2021 01:36:10.129 WARNING [Catalina-utility-1] org.apache.catalina.webresources.Cache.getResource Unable to add the resource at

Re: Help Needed

2021-08-18 Thread Christopher Schultz
Mohan, On 8/8/21 08:45, Mohan T wrote: There is no specific upgrade to the environment. Did you see the reply to your message I sent on August 6th? We are introducing new components and the permission is being set for them in catalina.policy file. Are your JAR files signed? The error says

Re: how to tune cacheMaxSize

2021-08-18 Thread Christopher Schultz
Michael, On 8/17/21 12:31, Michael Richardson wrote: Christopher Schultz wrote: > Not at all. EC2 is entirely reasonable for such purposes. Amazon will > even grant you a signed BAA if you ask for one. Canada is not the US, and OHIP has rules differently than others.

Re: how to tune cacheMaxSize

2021-08-17 Thread Christopher Schultz
Michael, On 8/16/21 16:14, Michael Richardson wrote: Christopher Schultz wrote: > Okay, all that looks fine to me, except the "9.0.16" part. That version > is *very/8 old. I see you are running Ubuntu: are you running the > latest release? That 9.0.16 numbe

Re: Getting some peculiar TLS results in Tomcat 7

2021-08-16 Thread Christopher Schultz
Mark, On 8/13/21 21:13, Mark Eggers wrote: On 8/13/2021 5:27 PM, James H. H. Lampert wrote: While we've been systematically updating our customer boxes, a few of our customer boxes are still on Tomcat 7. I've got the following Connector tag set up in server.xml:

Re: trying to deploy oscar (was Re: how to tune cacheMaxSize )

2021-08-16 Thread Christopher Schultz
Michael, On 8/14/21 16:05, Michael Richardson wrote: <#secure method=pgpmime mode=sign> Extracts of log, full log at URL below. 18k. 14-Aug-2021 17:16:43.821 INFO [Catalina-utility-1] org.apache.catalina.startup.HostConfig.deployWAR Deploying web application archive

Re: how to tune cacheMaxSize

2021-08-16 Thread Christopher Schultz
Michael, On 8/14/21 11:56, Michael Richardson wrote: > > Thank you for the reply. > > Christopher Schultz wrote: > > On 8/12/21 11:05, Michael Richardson wrote: > >> I am trying to deploy OSCAR-EMR > Wow, that still exists? I remember more than a decade

Re: Error loading PKCS12 keystore, java.io.IOException: DerInputStream.getLength(): lengthTag=109, too big.

2021-08-16 Thread Christopher Schultz
All, On 8/16/21 10:32, Christopher Schultz wrote: All, Anyone ever seen this before? I'm using an older Tomcat (7.0.x) on an older Java (1.7.0_80) along with a certificate from Let's Encrypt. This was the server I used to initially develop my "Let's Encrypt Apache Tomcat" pr

Error loading PKCS12 keystore, java.io.IOException: DerInputStream.getLength(): lengthTag=109, too big.

2021-08-16 Thread Christopher Schultz
All, Anyone ever seen this before? I'm using an older Tomcat (7.0.x) on an older Java (1.7.0_80) along with a certificate from Let's Encrypt. This was the server I used to initially develop my "Let's Encrypt Apache Tomcat" presentation and scripts, so I am familiar with the process and

Re: [OT] Other connection may not see updated date immediately

2021-08-13 Thread Christopher Schultz
W, On 8/11/21 11:48, W wrote: On Wednesday, August 11, 2021, 07:00:22 AM PDT, Christopher Schultz wrote: W, On 8/9/21 12:04, W wrote:>> Hi,I have a web application. It is a java-jsp-tomcat-mysql. It is working, but sometimes, it is slow. For each data update statement, it is no

Re: how to tune cacheMaxSize

2021-08-13 Thread Christopher Schultz
Michael, On 8/12/21 11:05, Michael Richardson wrote: I am trying to deploy OSCAR-EMR Wow, that still exists? I remember more than a decade ago being asked to integrate a product at $work with that thing as a demo. We never did, because the market seemed not to really exist. I see you are in

Re: Clarification on behaviour after pool exhaustion happen in tomcat jdbc pool 9.0.16

2021-08-13 Thread Christopher Schultz
t you pool size to "exactly 1" in development, you would have caught this problem long ago. -chris On Wed, Aug 11, 2021 at 7:25 PM Christopher Schultz < ch...@christopherschultz.net> wrote: Sampath, On 8/9/21 01:45, Sampath Rajapakshe wrote: In our case, we know the rea

Re: [OT] Other connection may not see updated date immediately

2021-08-11 Thread Christopher Schultz
W, On 8/9/21 12:04, W wrote: Hi,I have a web application. It is a java-jsp-tomcat-mysql. It is working, but sometimes, it is slow. For each data update statement, it is not slow: the next jsp page shows promptly. But the next page does not see updated data. I wait a coupe seconds, refresh

Re: Clarification on behaviour after pool exhaustion happen in tomcat jdbc pool 9.0.16

2021-08-11 Thread Christopher Schultz
ement in your web application's META-INF/context.xml file: https://commons.apache.org/proper/commons-dbcp/configuration.html I recommend looking at the "abandoned"-related configuration options. -chris On Sat, Aug 7, 2021 at 3:43 AM Christopher Schultz < ch...@christopherschultz

Re: Clarification on behaviour after pool exhaustion happen in tomcat jdbc pool 9.0.16

2021-08-06 Thread Christopher Schultz
Sampath, On 8/6/21 08:37, Sampath Rajapakshe wrote: Hi All, In my local setup before pool exhaustion exception is thrown, all the connections seem to be in freezed and when checking processList in mysql, those connections are in sleep state and doesn't execute any queries. After waiting for

Re: Help Needed

2021-08-05 Thread Christopher Schultz
Mohan, On 8/5/21 23:51, Mohan T wrote: Dear All, We are using Tomcat 8.5 on Suse LINUX. We enabled JAvA security in tomcat and invoking the Catalina.sh. We are facing some permission issues in the environment. We could see the below error messages. access: access allowed

Re: More information, Re: Tomcat 8.5.68 failing on takeoff!

2021-08-05 Thread Christopher Schultz
James, On 8/5/21 18:33, James H. H. Lampert wrote: I finally had a chance to switch the customer back to the failing Tomcat 8.5.68, and this is what the browser error page shows (with a 500 error): Type Exception Report Message AuthConfigFactory error:

Re: reloading tls configuration programmatically

2021-08-04 Thread Christopher Schultz
Ivano, On 8/4/21 18:22, Ivano Luberti wrote: Hello, in order to improve management of our servers I would like to implement the ability to timely reload Tomcat TLS configuration so to make tomcat aware of renewed certificates Do you want to do this from script or something else? I have seen

Re: Tomcat 8.5.68 failing on takeoff!

2021-08-03 Thread Christopher Schultz
James, On 8/3/21 08:42, Christopher Schultz wrote: James, On 8/2/21 19:31, James H. H. Lampert wrote: This is beyond my pay grade, I'm afraid. Hopefully somebody here has a clue what went wrong. I installed Tomcat 8.5.68 on an AS/400 with Java 8, that had been running Tomcat 7 for years

Re: Tomcat 8.5.68 failing on takeoff!

2021-08-03 Thread Christopher Schultz
Konstantin, On 8/3/21 04:07, Konstantin Kolinko wrote: вт, 3 авг. 2021 г. в 02:31, James H. H. Lampert : This is beyond my pay grade, I'm afraid. Hopefully somebody here has a clue what went wrong. I installed Tomcat 8.5.68 on an AS/400 with Java 8, that had been running Tomcat 7 for years

Re: Tomcat 8.5.68 failing on takeoff!

2021-08-03 Thread Christopher Schultz
James, On 8/2/21 19:31, James H. H. Lampert wrote: This is beyond my pay grade, I'm afraid. Hopefully somebody here has a clue what went wrong. I installed Tomcat 8.5.68 on an AS/400 with Java 8, that had been running Tomcat 7 for years with no problems. On launching Tomcat 8, if I try to

Re: JDBCRealm driver location 9.0.24

2021-08-01 Thread Christopher Schultz
Stephane, On 8/1/21 11:17, Stephane wrote: I'm trying to distinguish catalina_home from catalina_base and I use a JDBCRealm and soon will probably use other realms. Don't use JDBCRealm. Instead, use DataSourceRealm. It's a long story, but DataSourceRealm is what you want for production and

Re: Load balancing websockets

2021-08-01 Thread Christopher Schultz
Sridar, On 7/28/21 20:16, Sridhar Rao wrote: We are using the tomcat8.5 app nodes behind an Nginx Load Balancer. Whenever the LB takes out an app node from the pool, "existing" WebSocket connections are still staying with the app node. Also, if a new app node is added to the pool, WS

Re: Ho to upgrade to newest version in tomcat 9

2021-08-01 Thread Christopher Schultz
W, On 7/28/21 04:08, Olaf Kock wrote: On 27.07.21 19:01, W wrote: Hi, I am on Ubuntu with tomcat 9.0.16I tried    sudo apt-get update    sudo apt-get upgradeBut did not work. How to do it? The distribution packages (here: Debian) typically pick one version and keep it stable, optionally

Re: Tomcat Usage Data Interest

2021-07-26 Thread Christopher Schultz
Coty, On 7/26/21 07:13, Coty Sutherland wrote: Hi all, I'm curious about whether or not we have/can get some information about the usage of Tomcat out in the wild. Things like download count across various versions (including archived version downloads) for the last few years, svn history and

Re: Strange incomplete response/truncation with Tomcat 9.0.48 AND 9.0.50 [OT]

2021-07-26 Thread Christopher Schultz
All, On 7/23/21 11:27, Mark Thomas wrote: On 23/07/2021 15:49, jonmcalexan...@wellsfargo.com.INVALID wrote: Is there an estimated target date for release of 9.0.51 Normally I'd say early August, some time in the first 2 weeks. But as we are entering vacation season it might slip. It largely

Re: tomcat 8.5.57 stops killing sessions after some time

2021-07-26 Thread Christopher Schultz
Ivano, On 7/23/21 02:20, Ivano Luberti wrote: I have found the issue: one of the webapps has several thread locked on a MultiThreadedHttpConnectionManager during sessionUnbound and unboundEvents. So the background process killing the sessions is stuck as well. This is a very easy problem

Re: Request for suggestion

2021-07-16 Thread Christopher Schultz
Mohan, On 7/11/21 01:41, Mohan T wrote: We are using tomcat 8.5 on Suse linux. We would like to know the way to load a property file. I put the file in tomcat / lib folder. Still I am getting the error DEBUG 2021-07-11 07:56:15,108 [http-nio-8081-exec-8] control.CompositeCacheManager -

Re: Internals of setMaxInactiveInterval

2021-07-14 Thread Christopher Schultz
Saurav, On 7/12/21 23:33, Saurav Sarkar wrote: Hi All, I would like to understand the internals of Session~setMaxInactiveInterval in tomcat. I understand that if HTTP requests are not received within the said interval then the session is cleared. All the objects belonging to the session will

Re: Mixing Root Context webapp with other webapps

2021-07-09 Thread Christopher Schultz
Jerry, On 7/9/21 01:58, Jerry Malcolm wrote: I have one webapp that processes REST-style url paths and therefore needs to run in the ROOT context. I'm not sure the conclusion follows from the premise, here. You can certainly use REST-style URL paths and not have a context at the top-level.

[ANN] Apache Tomcat 8.5.69 available

2021-07-06 Thread Christopher Schultz
The Apache Tomcat team announces the immediate availability of Apache Tomcat 8.5.69. Apache Tomcat 8 is an open source software implementation of the Java Servlet, JavaServer Pages, Java Unified Expression Language, Java WebSocket and Java Authentication Service Provider Interface for Containers

[ANN] Apache Tomcat 8.5.68 available

2021-07-06 Thread Christopher Schultz
The Apache Tomcat team announces the immediate availability of Apache Tomcat 8.5.69. Apache Tomcat 8 is an open source software implementation of the Java Servlet, JavaServer Pages, Java Unified Expression Language, Java WebSocket and Java Authentication Service Provider Interface for Containers

Re: CVE-2021-25329, was Re: Most recent security-related update to 8.5

2021-07-02 Thread Christopher Schultz
James, On 7/2/21 11:44, James H. H. Lampert wrote: On 7/2/21 12:02 AM, Mark Thomas wrote: It is an alternative session manager that persists session data via a configured Store. There are two Store implementations provided by default - File and DataSource. You would know if you were using

Re: Question about directory listing sorting ..

2021-07-02 Thread Christopher Schultz
Konstantin, On 7/2/21 05:28, Konstantin Kolinko wrote: пт, 2 июл. 2021 г. в 04:04, John Dale (DB2DOM) : Doesn't seem to work for me on 9.0.41 (it's an older development box). I found these interesting: ow with patch v3: 1. "s=NA" name=asc 2. "s=ND" name=dsc 3. "s=SA" size=asc 4. "s=SD"

Re: JSESSION ID

2021-07-02 Thread Christopher Schultz
Mohan, On 7/1/21 07:27, Mohan T wrote: Dear All, We are using tomcat 8.5.35 on Linux. We are getting two session ID for the same Http request.. Similar session ID is marked in yellow This is the session ID in startup JSESSIONID=FFE8F98C012CDB4461FC8E68C109298E This is the session ID in

Re: Strange error with JSP

2021-07-02 Thread Christopher Schultz
Konstantin, On 7/1/21 04:17, Konstantin Kolinko wrote: вт, 29 июн. 2021 г. в 19:35, Christopher Schultz : Konstantin, On 6/29/21 10:21, Konstantin Kolinko wrote: ср, 2 июн. 2021 г. в 23:16, Christopher Schultz : [...] Has the page been compiled once, or its modification time is being

Re: Issue while launching the applicaion

2021-06-30 Thread Christopher Schultz
Mohan, On 6/30/21 10:28, Mohan T wrote: Dear All, I am getting this error while launching the application. We are using tomcat 8.5.35 on linux . 30-Jun-2021 18:37:16.194 INFO [main] org.apache.coyote.AbstractProtocol.start Starting ProtocolHandler ["ajp-nio-8009"] 30-Jun-2021 18:37:16.207

Re: 500 instances of tomcat on the same server

2021-06-29 Thread Christopher Schultz
Eric, On 6/28/21 13:08, Eric Robinson wrote: -Original Message- From: Christopher Schultz Sent: Monday, June 28, 2021 8:54 AM To: users@tomcat.apache.org Subject: Re: 500 instances of tomcat on the same server Eric, On 6/25/21 22:58, Eric Robinson wrote: We can run 75 to 125

Re: 500 instances of tomcat on the same server

2021-06-29 Thread Christopher Schultz
All, On 6/29/21 11:33, Eric Robinson wrote: -Original Message- From: Berneburg, Cris J. - US Sent: Tuesday, June 29, 2021 7:16 AM To: users@tomcat.apache.org Subject: RE: 500 instances of tomcat on the same server Eric and Mark Just curious... Eric> We can run 75 to 125 instances of

Re: Strange error with JSP

2021-06-29 Thread Christopher Schultz
Konstantin, On 6/29/21 10:21, Konstantin Kolinko wrote: ср, 2 июн. 2021 г. в 23:16, Christopher Schultz : All, On 6/2/21 13:52, Christopher Schultz wrote: All, I don't do too much work with JSPs, but I do have a few quick-and-dirty administrative things including one called the "se

Re: TLSv1.3 Support in Tomcat

2021-06-29 Thread Christopher Schultz
with Cipher suites? Regards, Abirami.S -Original Message- From: Christopher Schultz Sent: Monday, June 28, 2021 7:27 PM To: users@tomcat.apache.org Subject: Re: TLSv1.3 Support in Tomcat Abirami, On 6/28/21 07:16, S Abirami wrote: TLSv1.3 support is available in Tomcat. I tried

Re: 500 instances of tomcat on the same server

2021-06-28 Thread Christopher Schultz
Mark, On 6/28/21 10:04, Mark Thomas wrote: On 28/06/2021 14:53, Christopher Schultz wrote: Eric, On 6/25/21 22:58, Eric Robinson wrote: We can run 75 to 125 instances of tomcat on a single Linux server with 12 cores and 128GB RAM. It works great. CPU is around 25%, our JVMs are not throwing

Re: TLSv1.3 Support in Tomcat

2021-06-28 Thread Christopher Schultz
Abirami, On 6/28/21 07:16, S Abirami wrote: TLSv1.3 support is available in Tomcat. I tried just updating server.xml[sslEnabledProtocols=TLSv1.3] and restarted tomcat. It doesn't work. [We are using Tomcat 9.0.46 and JDK 8u291] Please let me know any other configuration also needs to be

Re: 500 instances of tomcat on the same server

2021-06-28 Thread Christopher Schultz
Eric, On 6/25/21 22:58, Eric Robinson wrote: We can run 75 to 125 instances of tomcat on a single Linux server with 12 cores and 128GB RAM. It works great. CPU is around 25%, our JVMs are not throwing OOMEs, iowait is minimal, and network traffic is about 30Mbps. We're happy with the results.

Re: Re-Use TCP Source Ports if the Socket is Unique?

2021-06-28 Thread Christopher Schultz
Eric, On 6/25/21 22:09, Eric Robinson wrote: -Original Message- From: Olaf Kock Sent: Friday, June 25, 2021 8:07 AM To: users@tomcat.apache.org Subject: Re: Re-Use TCP Source Ports if the Socket is Unique? On 25.06.21 14:46, Eric Robinson wrote: Olaf and Scott -- Thanks to both

Re: Re-Use TCP Source Ports if the Socket is Unique?

2021-06-25 Thread Christopher Schultz
Eric, On 6/24/21 21:14, Eric Robinson wrote: I guess I may have answered this question for myself. At least I can simulate it with ncat. Note that I have two ncat sessions open to the same remote server using the same source port, but with different source IPs. [root@testserver ~]# netstat

Re: Urgent Help

2021-06-23 Thread Christopher Schultz
Mohan, On 6/23/21 07:20, Mark Thomas wrote: On 23/06/2021 11:32, Mohan T wrote: Attaching the Catalina.out file also Nearly all attachments to this mailing list are blocked. MY manifest info is as under. Manifest-Version: 1.0 Ant-Version: Apache Ant 1.9.9 Created-By: 1.7.0_80-b15 (Oracle

Re: DB Max Connections with Auto-Scaling Group

2021-06-22 Thread Christopher Schultz
Jerry, On 6/21/21 14:54, Jerry Malcolm wrote: I have a TC instance running on an EC2 in an AWS Autoscaling group.  I have a database with 500 max connections.  The default EC2 count is 2 instances in the autoscaling group.  I guess that means that I should set the Tomcat resource config for

Re: Most recent security-related update to 8.5? And setting up access to Manager?

2021-06-21 Thread Christopher Schultz
James, On 6/19/21 11:31, James H. H. Lampert wrote: We are finally migrating customer installations from 7 to 8.5. Would anybody happen to know, off the top of his or her head, what the most recent security-related update to 8.5 is? I know that 68 is the most recent release, but what's the

Re: [OT] Trouble with HTTP/2 during concurrent bulk data transfer (server -> client)

2021-06-18 Thread Christopher Schultz
Peter, On 6/17/21 17:34, logo wrote: Magic Mark, > > [snip] I think he's "Magic Mark XXL", now, pictured here: https://en.wikipedia.org/wiki/Magic_Mike_XXL#/media/File:Magic_mike_xxl.jpg -chris - To unsubscribe, e-mail:

Re: Archive or package install

2021-06-18 Thread Christopher Schultz
Thomas, On 6/18/21 14:36, tomcat-li...@thomas.freit.ag wrote: > [snip] > I would only stick to the distro-provided packages, if it is a small (in other words not that important) application running in Tomcat. Just for reference: With Ubuntu 18.04, you would end up with 9.0.16 vs. 9.0.48 (Tomcat

Re: Archive or package install

2021-06-18 Thread Christopher Schultz
Onno, On 6/18/21 01:07, Sugar Moose wrote: Hi, I am using Ansible role robertdebock.tomcat to install Tomcat. This role uses archives from the Tomcat site to install Tomcat. I have always thought that this is a fine approach but the customer has pointed out that a package install is

Re: [OT] Trouble with HTTP/2 during concurrent bulk data transfer (server -> client)

2021-06-16 Thread Christopher Schultz
Mark, On 6/16/21 17:02, Mark Thomas wrote: On 16/06/2021 19:42, Deshmukh, Kedar wrote: Thanks Mark for the quick update. Can you please provide how useAsyncIO="false" makes impact in terms of performance, scalability (number of connections to the server) and reliability ? Well, if you set

[ANN] Apache Tomcat 8.5.68 available

2021-06-16 Thread Christopher Schultz
The Apache Tomcat team announces the immediate availability of Apache Tomcat 8.5.68. Apache Tomcat 8 is an open source software implementation of the Java Servlet, JavaServer Pages, Java Unified Expression Language, Java WebSocket and Java Authentication Service Provider Interface for Containers

Re: [ANN] Apache Tomcat 8.5.68 available

2021-06-16 Thread Christopher Schultz
All, Apologies for the repeated messages. I'm getting bounces from the cross-posted announce@ mailing lists because I'm not emailing from @apache.org source. I think I just need one last try... -chris On 6/16/21 16:53, Christopher Schultz wrote: The Apache Tomcat team announces

[ANN] Apache Tomcat 8.5.68 available

2021-06-16 Thread Christopher Schultz
The Apache Tomcat team announces the immediate availability of Apache Tomcat 8.5.68. Apache Tomcat 8 is an open source software implementation of the Java Servlet, JavaServer Pages, Java Unified Expression Language, Java WebSocket and Java Authentication Service Provider Interface for Containers

Re: Trouble with HTTP/2 during concurrent bulk data transfer (server -> client)

2021-06-16 Thread Christopher Schultz
Mark, On 6/16/21 14:10, Mark Thomas wrote: On 16/06/2021 18:47, Rémy Maucherat wrote: On Wed, Jun 16, 2021 at 7:36 PM Mark Thomas wrote: On 16/06/2021 18:01, Deshmukh, Kedar wrote: I have one additional question at this point. How easy is this issue to reproduce? Does it happen every

Re: CATALINA_OPTS vs JAVA_OPTS

2021-06-16 Thread Christopher Schultz
with environment variables. -chris -Original Message- From: Christopher Schultz Sent: Wednesday, June 16, 2021 11:14 AM To: users@tomcat.apache.org Subject: Re: CATALINA_OPTS vs JAVA_OPTS Noelette, On 6/16/21 11:29, Noelette Stout wrote: Thanks! I was mostly trying to figure out

  1   2   3   4   5   6   7   8   9   10   >