On 09/12/2022 07:03, Vivek Naruka (EXT-NSB) wrote:
Hi,
Please find attachment of Image.
Images get removed before messages are posted to the list.
During study on changelog.txt
Tomcat projects all have changelogs but none of them are named
changelog.txt in either source or published form.
we could see support of OpenSSL 3.0. for tomcat native.
Yes, both Tomcat Native 1.2.x and 2.0.x can be compiled with OpenSSL
3.0.0. Tomcat Native 2.0.x requires OpenSSL 3.0.x as a minimum.
The current minimum OpenSSL version for Tomcat Native 1.2.x is OpenSSL
1.0.2 although that OpenSSL version is no longer supported.
The supported versions of OpenSSL are generally driven not by the
OpenSSL project but the versions supported by the downstream Linux
distributions (we look at Debian and Ubuntu) and is tracked in this file:
https://github.com/apache/tomcat-native/blob/1.2.x/native/srclib/VERSIONS
It looks like we could switch to Tomcat Native 1.3.0 with minimum
versions of:
- OpenSSL 1.1.1
- APR 1.6.3
but there is no particular rush to do that.
Please do let us know if Tomcat can provide extended support of OpenSSL1.1.1
beyond the EOL(End of life cycle) i.e after September 2023?
The best I can say is that it is the current intention of the Tomcat
committers that Tomcat Native 1.x will continue to support (i.e. it will
be possible to build a working library with) OpenSSL 1.1.1 as long as
that is the version of OpenSSL used by a supported version of Debian
and/or Ubuntu.
Mark
-----Original Message-----
From: Mark Thomas <ma...@apache.org>
Sent: 07 December 2022 19:01
To: users@tomcat.apache.org
Subject: Re: Regarding Compilation Steps for Tomcat version 9 on RHEL8
On 07/12/2022 09:36, Vivek Naruka (EXT-NSB) wrote:
Hi,
We have downloaded Tomcat version 9 "apache-tomcat-9.0.70.tar.gz" from
https://tomcat.apache.org/download-90.cgi.
To check the compatibility of Tomcat version 9.0 with OpenSSL 3.0, we need to
compile source code of Tomcat version 9 on RHEL-8 with OpenSSL3.0.
We require compilation steps to compile Tomcat source code on RHEL8.
Tomcat 9.0.x does not require OpenSSL to compile. What makes you think it does?
Could you please help to share the compilation steps?
Try looking in the BUILDING.txt file in the root of the source tarball.
The build should be fully reproducible, providing you follow the additional
instructions for reproducible builds.
Getting back to the OpenSSL 3.0 question.
Tomcat Native, which does have a dependency on OpenSSL, is compatible
with OpenSSL in both the 1.2.x and 2.0.x branches. What makes you think
that it is not?
You can use Tomcat Native 1.2.x or 2.0.x with Tomcat 9.0.x but if you
use Tomcat Native 2.0.x, you can't use the APR/native connectors - you
must use NIO or NIO2.
Mark
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
