-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
All,
This issue is apparently trivially reproducible in my dev environment.
Do I have to get a protocol-trace to get any more helpful information?
Thanks,
- -chris
On 6/24/20 10:46, Christopher Schultz wrote:
> All,
>
> On 6/24/20 10:29,
Chris,
Was just thinking if the file descriptors belonged to nginx why do they
disappear as soon as I restart tomcat ? I tried restarting nginx and the
open file descriptors don't disappear.
When I execute lsof -p I do not see file descriptors in close
wait state
On Wed, 24 Jun 2020, 20:32
Thanks.
I've looked at the code and I have tried various tests but I am unable
to re-create a memory leak.
The code used to (before I made a few changes this afternoon) retain a
lot more memory per Stream and it is possible that what you are seeing
is a system that doesn't have enough memory to
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Ayub,
On 6/25/20 11:06, Ayub Khan wrote:
> Was just thinking if the file descriptors belonged to nginx why do
> they disappear as soon as I restart tomcat ? I tried restarting
> nginx and the open file descriptors don't disappear.
When you restart
Chris,
What do you suggest now to debug this issue ? Check with Nginx support if
they can verify it ?
On Thu, Jun 25, 2020 at 8:17 PM Christopher Schultz <
ch...@christopherschultz.net> wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
>
> Ayub,
>
> On 6/25/20 11:06, Ayub Khan wrote:
Mark,
Thanks for your explanation.
Fabian
On Thu, Jun 25, 2020 at 3:29 PM Mark Thomas wrote:
> Fabian,
>
> Tomcat's behaviour is as expected and as per spec.
>
> The content-length header is used to determine the end of the request
> body. HTTP/1.1 allows pipe-linign requests. Whatever bytes
Hi All,
I wanted to check if tomcat 9.0.36 supports open jdk 13/14.
I created a simple spring boot war file and compiled/built it with openjdk
13/14. After running maven install , I deployed the war file from the
target directory to tomcat webapps using tomcat manager. It did not work
and gave
Fabian,
Tomcat's behaviour is as expected and as per spec.
The content-length header is used to determine the end of the request
body. HTTP/1.1 allows pipe-linign requests. Whatever bytes on the wire
are seen next will be treated as the next request.
Mark
On 25/06/2020 23:08, Fabian Morgan
CVE-2020-11996 Apache Tomcat HTTP/2 Denial of Service
Severity: Important
Vendor: The Apache Software Foundation
Versions Affected:
Apache Tomcat 10.0.0-M1 to 10.0.0-M5
Apache Tomcat 9.0.0.M1 to 9.0.35
Apache Tomcat 8.5.0 to 8.5.55
Description:
A specially crafted sequence of HTTP/2 requests
Hi --
While testing various scenarios in Tomcat 9.0.30, I’ve found Tomcat returns
different responses when the same request is issued twice in a row. I have
three such scenarios (all related) to illustrate. I used Postman to issue
the requests.
First, here is some environment information:
Le 24/06/2020 à 03:33, Brian a écrit :
> To be honest with you, I'm happy about the catalina.out file finally getting
> created and I really appreciate your kind help, I really do. But I'm not
> really happy about having to restart rsyslog before every time I need to
> restart Tomcat. It is
I have a developer that is asking WHY the following policies were set to read
only. The Change Log doesn't illuminate why.
// The cookie code needs these.
permission java.util.PropertyPermission
"org.apache.catalina.STRICT_SERVLET_COMPLIANCE", "read";
permission
On 25/06/2020 07:44, Julian Reschke wrote:
> On 24.06.2020 17:35, Julian Reschke wrote:
>> ... > So it does set "Trailer" (so the response was not committed
>> yet), but it
>> doesn't switch to chunked encoding.
>>
>> There must be something that I'm doing wrong...
>> ...
>
> Found the issue.
>
On 24.06.2020 17:35, Julian Reschke wrote:
... > So it does set "Trailer" (so the response was not committed yet), but it
doesn't switch to chunked encoding.
There must be something that I'm doing wrong...
...
Found the issue.
I was using a HttpServletResponse object that *delegates* to the
Thanks for the quick check Mark.
These are the images I tried referring to:
https://ibb.co/LzKtRgh
https://ibb.co/2s7hqRL
https://ibb.co/KmKj590
The last one is the MAT screenshot showing many RequestInfo objects.
Thanks,
Chirag
On Wed, Jun 24, 2020 at 8:30 PM Mark Thomas wrote:
> On
I'm trying to configure the header x-frame-options in tomcat8
web.xml:
httpHeaderSecurity
org.apache.catalina.filters.HttpHeaderSecurityFilter
true
antiClickJackingOption
SAMEORIGIN
httpHeaderSecurity
/*
REQUEST
On 25/06/2020 11:00, Chirag Dewan wrote:
> Thanks for the quick check Mark.
>
> These are the images I tried referring to:
>
> https://ibb.co/LzKtRgh
>
> https://ibb.co/2s7hqRL
>
> https://ibb.co/KmKj590
>
>
> The last one is the MAT screenshot showing many RequestInfo objects.
Thanks. That
Hi Mark,
Its the default APR connector with 150 Threads.
Chirag
On Thu, 25 Jun, 2020, 7:30 pm Mark Thomas, wrote:
> On 25/06/2020 11:00, Chirag Dewan wrote:
> > Thanks for the quick check Mark.
> >
> > These are the images I tried referring to:
> >
> > https://ibb.co/LzKtRgh
> >
> >
18 matches
Mail list logo
