dev

Messages by Date

2025/10/18 (tomcat) branch main updated: Remove unnecessary @SuppressWarnings markt
2025/10/18 (tomcat) branch 10.1.x updated (dee994384c -> c345241d1a) dsoumis
2025/10/18 [Bug 69839] Changing SessionId creates eternal Single Sign On sessions bugzilla
2025/10/18 Buildbot failure in on tomcat-12.0.x buildbot
2025/10/18 Re: [VOTE][RE-VOTEx2] Release Apache Tomcat 10.1.48 Igal Sapir
2025/10/18 (tomcat) branch 10.1.x updated: Treat new test password files as text files for line-endings markt
2025/10/18 svn commit: r1929002 - in tomcat/site/trunk: . docs docs/tomcat-10.1-doc docs/tomcat-10.1-doc/annotationapi docs/tomcat-10.1-doc/annotationapi/jakarta/annotation docs/tomcat-10.1-doc/annotationapi/jakarta/annotation/security docs/tomcat-10.1-doc/annota... schultz
2025/10/18 (tomcat) branch 11.0.x updated: Deprecate RemoteAddr[Filter|Valve] in favour of RemoteCIDR[Filter|Valve] markt
2025/10/18 (tomcat) branch main updated: Add back OpenSSL 1.1.1 compatibility remm
2025/10/18 (tomcat) branch 9.0.x updated: Fix BZ 69848 - Correct copy/paste error when refactoring method names markt
2025/10/18 Buildbot failure in on tomcat-10.1.x buildbot
2025/10/18 Re: Missing ASF headers in generated documentation Christopher Schultz
2025/10/18 (tomcat) branch main updated: Remove deprecated code. Internal storage for method can now use String. markt
2025/10/18 (tomcat) branch 11.0.x updated: Update version number for next development cycle markt
2025/10/18 (tomcat) branch 9.0.x updated: Fix BZ 69844 - server sending masked frames is a protocol error markt
2025/10/18 [Bug 69852] New: {MD5}, {SHA} and {SSHA} not honored with Realm/CredentialHandler bugzilla
2025/10/18 (tomcat) branch 11.0.x updated: Fix BZ 69839 - Ensure session ID changes are promulgated to SSO Valve markt
2025/10/18 (tomcat) branch main updated: Treat new test password files as text files for line-endings markt
2025/10/18 (tomcat) branch main updated: Fix race condition. markt
2025/10/18 [Bug 69837] JavaCompiler invalid compile classpath composing bugzilla
2025/10/18 Re: [VOTE] Release Apache Tomcat 11.0.13 Rainer Jung
2025/10/18 (tomcat) branch 11.0.x updated: Add missing ASF headers schultz
2025/10/18 svn commit: r1929065 - in tomcat/site/trunk: docs xdocs schultz
2025/10/18 Re: (tomcat) branch main updated: Reject requests that map to invalid Windows file names earlier. Mark Thomas
2025/10/18 [Bug 64083] JDBC pool keeps closed connection as available bugzilla
2025/10/18 [VOTE] Release Apache Tomcat 9.0.111 Rémy Maucherat
2025/10/18 Re: [PR] tomcat-jdbc check if returned connection is closed [tomcat] via GitHub
2025/10/18 (tomcat) 03/07: If we set ok=0 with errnum==X509_V_OK (0), OpenSSL emits a fatal internal_error. Tolerate V_OCSP_CERTSTATUS_UNKNOWN and let the client policy (e.g. NO_FALLBACK) decide. dsoumis
2025/10/18 Buildbot failure in on tomcat-10.1.x buildbot
2025/10/18 (tomcat) branch 11.0.x updated: Fix OCSP responses validity by extending them to 365 days in generate-ocsp-test-artifacts.sh for use in TestOcspIntegration tests dsoumis
2025/10/18 (tomcat) branch 9.0.x updated: Next is 9.0.112 remm
2025/10/18 [ANN] Apache Tomcat 11.0.12 Available Mark Thomas
2025/10/18 (tomcat) branch 11.0.x updated: Fix BZ 69844 - server sending masked frames is a protocol error markt
2025/10/18 [Bug 69849] New: OPTIONS, DELETE does not work bugzilla
2025/10/18 [Bug 69845] java.lang.IllegalStateException: Inflater has been closed bugzilla
2025/10/18 [Bug 69848] http method DELETE is converted to OPTIONS when request is sent through Apache proxy over AJP Connector bugzilla
2025/10/18 [Bug 69845] java.lang.IllegalStateException: Inflater has been closed bugzilla
2025/10/18 [PR] Panama tweaks [tomcat] via GitHub
2025/10/18 svn commit: r1929121 - in tomcat/site/trunk: docs xdocs markt
2025/10/18 [Bug 69850] Http Delete Method is resolved as Options bugzilla
2025/10/18 [Bug 69837] JavaCompiler invalid compile classpath composing bugzilla
2025/10/18 Buildbot failure in on tomcat-9.0.x buildbot
2025/10/18 Re: [PR] Panama tweaks [tomcat] via GitHub
2025/10/18 (tomcat) branch 11.0.x updated: Fix BZ 68947 - remove remaining references to removed package markt
2025/10/18 [PR] Correctly handle optionalNoCA verification [tomcat-native] via GitHub
2025/10/18 [Bug 69848] http method DELETE is converted to OPTIONS when request is sent through Apache proxy over AJP Connector bugzilla
2025/10/18 (tomcat) branch 11.0.x updated: Use constant remm
2025/10/18 Buildbot success in on tomcat-11.0.x buildbot
2025/10/18 [Bug 69852] {MD5}, {SHA} and {SSHA} not honored with Realm/CredentialHandler bugzilla
2025/10/18 Re: [VOTE][RE-VOTE] Release Apache Tomcat 10.1.48 Christopher Schultz
2025/10/18 [Bug 69852] {MD5}, {SHA} and {SSHA} not honored with Realm/CredentialHandler bugzilla
2025/10/18 Buildbot success in on tomcat-10.1.x buildbot
2025/10/18 Buildbot failure in on tomcat-11.0.x buildbot
2025/10/18 Re: Question about packaging of Windows-x86 binary ZIP Mark Thomas
2025/10/18 (tomcat) branch main updated: Remove the deprecated RemoteAddrFilter and RemoteAddrValve markt
2025/10/18 svn commit: r1929119 - in tomcat/site/trunk: . docs xdocs markt
2025/10/18 (tomcat) branch 9.0.x updated: Re-order checks to avoid NPE. Identified by Coverity Scan. markt
2025/10/18 [PR] Parse the pem to skip the seed, like using: [tomcat] via GitHub
2025/10/18 svn commit: r79964 - in dev/tomcat/tomcat-10/v10.1.48: . bin bin/embed src schultz
2025/10/18 (tomcat) 01/07: If optionalNoCA is configured then OCSP should be disabled. dsoumis
2025/10/18 Re: [VOTE] Release Apache Tomcat 9.0.111 Christopher Schultz
2025/10/18 (tomcat) 05/07: Set specific error when V_OCSP_CERTSTATUS_REVOKED dsoumis
2025/10/18 svn commit: r1929122 - in tomcat/site/trunk: docs xdocs markt
2025/10/17 (tomcat) branch 10.1.x updated: Add missing changelog on OCSP remm
2025/10/17 (tomcat) branch 9.0.x updated (2893a36945 -> 12a260a0d2) dsoumis
2025/10/17 Re: [VOTE] Release Apache Tomcat 11.0.12 Dimitris Soumis
2025/10/17 (tomcat) branch 10.1.x updated: Use constant remm
2025/10/17 (tomcat) branch 9.0.x updated: Fix source distro line endings for new test script markt
2025/10/17 (tomcat) branch 11.0.x updated: Avoid OpenSSL X509_STORE_CTX_get0_current_issuer function remm
2025/10/17 (tomcat) branch 9.0.x updated: Fix BZ 69845 - Inflater/Deflater throw ISE rather than NPE from Java 25 markt
2025/10/17 (tomcat) branch main updated: Deprecate RemoteAddr[Filter|Valve] in favour of RemoteCIDR[Filter|Valve] markt
2025/10/17 Re: [VOTE] Release Apache Tomcat 11.0.13 Mark Thomas
2025/10/17 (tomcat) branch 11.0.x updated: Add missing entries to list of output files markt
2025/10/17 (tomcat) 04/07: If the OCSP response is null, the error is set as X509_V_ERR_APPLICATION_VERIFICATION (50). Should not pass our verification process. dsoumis
2025/10/17 Re: [VOTE] Release Apache Tomcat 10.1.48 Mark Thomas
2025/10/17 [Bug 69770] ERR_HTTP2_PROTOCOL_ERROR regression in Tomcat 10.1.43 (similar to fixed Bug 69320) bugzilla
2025/10/17 (tomcat) branch 9.0.x updated: Add GPG signature verification to verify-release schultz
2025/10/17 (tomcat) branch 10.1.x updated: Add test remm
2025/10/17 (tomcat) branch 11.0.x updated: Fix BZ 69848 - Correct copy/paste error when refactoring method names markt
2025/10/17 [Bug 69852] {MD5}, {SHA} and {SSHA} not honored with Realm/CredentialHandler bugzilla
2025/10/17 Re: [PROPOSAL] Change embedded ZIP packaging to put zipped files into a subdirectory Mark Thomas
2025/10/17 Buildbot success in on tomcat-12.0.x buildbot
2025/10/17 (tomcat) 03/07: If we set ok=0 with errnum==X509_V_OK (0), OpenSSL emits a fatal internal_error. Tolerate V_OCSP_CERTSTATUS_UNKNOWN and let the client policy (e.g. NO_FALLBACK) decide. dsoumis
2025/10/17 (tomcat) 02/07: CAs may not issue CRLs. dsoumis
2025/10/17 Buildbot failure in on tomcat-9.0.x buildbot
2025/10/17 [Bug 69850] New: Http Delete Method is resolved as Options bugzilla
2025/10/17 [Bug 69848] http method DELETE is converted to OPTIONS when request is sent through Apache proxy over AJP Connector bugzilla
2025/10/17 (tomcat) branch 10.1.x updated: Remove unnecessary @SuppressWarnings markt
2025/10/17 Re: Question about packaging of Windows-x86 binary ZIP Coty Sutherland
2025/10/17 (tomcat) branch 10.1.x updated: Reject requests that map to invalid Windows file names earlier. markt
2025/10/17 Re: [VOTE] Release Apache Tomcat 9.0.111 Mark Thomas
2025/10/17 (tomcat) branch 9.0.x updated: Use constant remm
2025/10/17 (tomcat) branch 9.0.x updated: Relax file name check since input can include paths markt
2025/10/17 (tomcat) 06/07: Ehnance tests and fix various issues in TestOcspIntegration tests dsoumis
2025/10/17 (tomcat) branch 9.0.x updated: Add release date remm
2025/10/17 Re: [VOTE] Release Apache Tomcat 10.1.47 Rainer Jung
2025/10/17 Buildbot success in on tomcat-9.0.x buildbot
2025/10/17 svn commit: r79963 - in dev/tomcat/tomcat-9/v9.0.111: . bin bin/embed src remm
2025/10/17 Re: [VOTE] Release Apache Tomcat 9.0.111 Igal Sapir
2025/10/17 (tomcat) branch main updated: Remove deprecated code scheduled for removal in Tomcat 12. markt
2025/10/17 (tomcat) branch main updated: Align with the other TLS tests remm
2025/10/17 (tomcat) branch 10.1.x updated: Re-order checks to avoid NPE. Identified by Coverity Scan. markt
2025/10/17 (tomcat) 04/07: If the OCSP response is null, the error is set as X509_V_ERR_APPLICATION_VERIFICATION (50). Should not pass our verification process. dsoumis
2025/10/17 (tomcat) branch 9.0.x updated: Retrieve correct principal markt
2025/10/17 Re: Buildbot failure in on tomcat-12.0.x Rémy Maucherat
2025/10/17 (tomcat) branch 10.1.x updated: Formatting remm
2025/10/17 Missing ASF headers in generated documentation Christopher Schultz
2025/10/17 (tomcat) branch main updated: Modify fix for BZ69836 remm
2025/10/17 svn commit: r80031 - dev/tomcat/tomcat-9/v9.0.111 release/tomcat/tomcat-9/v9.0.111 remm
2025/10/17 [Bug 69848] http method DELETE is converted to OPTIONS when request is sent through Apache proxy over AJP Connector bugzilla
2025/10/17 svn commit: r1929132 - in tomcat/site/trunk: . docs xdocs remm
2025/10/17 (tomcat) 01/07: If optionalNoCA is configured then OCSP should be disabled. dsoumis
2025/10/17 Re: [VOTE][RESULT] Release Apache Tomcat 10.1.47 Dimitris Soumis
2025/10/17 (tomcat) 07/07: Refactor multiple instances of same code block in TestOcspIntegration dsoumis
2025/10/17 (tomcat) branch 9.0.x updated: Disable Tomcat Native tests until release is available with the fix markt
2025/10/17 svn commit: r79850 - dev/tomcat/tomcat-11/v11.0.12 release/tomcat/tomcat-11/v11.0.12 markt
2025/10/17 (tomcat) branch 11.0.x updated: Test OCSP with BoringSSL and LibreSSL remm
2025/10/17 [VOTE][RESULT] Release Apache Tomcat 11.0.13 Mark Thomas
2025/10/17 (tomcat) branch 11.0.x updated: Add back OpenSSL 1.1.1 compatibility remm
2025/10/17 [Bug 69839] Changing SessionId creates eternal Single Sign On sessions bugzilla
2025/10/17 Re: [PR] add a shared, file based jar cache to improve performance of follow on runs of the tool [tomcat-jakartaee-migration] via GitHub
2025/10/17 Re: [VOTE] Release Apache Tomcat 10.1.48 Christopher Schultz
2025/10/17 Tests failing on MacOS with disconnected network Christopher Schultz
2025/10/17 [Bug 69852] {MD5}, {SHA} and {SSHA} not honored with Realm/CredentialHandler bugzilla
2025/10/17 (tomcat) branch 10.1.x updated: Fix BZ 69839 - Ensure session ID changes are promulgated to SSO Valve markt
2025/10/17 (tomcat) 01/01: Tag 10.1.48 schultz
2025/10/17 (tomcat) branch 11.0.x updated: Treat new test password files as text files for line-endings markt
2025/10/17 (tomcat-native) branch main updated: Increment version number for next development cycle markt
2025/10/17 [Bug 69848] http method DELETE is converted to OPTIONS when request is sent through Apache proxy over AJP Connector bugzilla
2025/10/17 [Bug 69839] Changing SessionId creates eternal Single Sign On sessions bugzilla
2025/10/17 (tomcat) branch 9.0.x updated: Avoid OpenSSL X509_STORE_CTX_get0_current_issuer function remm
2025/10/17 Buildbot success in on tomcat-12.0.x buildbot
2025/10/17 [Bug 69848] New: http method DELETE is converted to OPTIONS when request is sent through Apache proxy over AJP Connector bugzilla
2025/10/17 [Bug 69852] {MD5}, {SHA} and {SSHA} not honored with Realm/CredentialHandler bugzilla
2025/10/17 [VOTE][RESULT] Release Apache Tomcat 10.1.48 Christopher Schultz
2025/10/17 (tomcat) branch 9.0.x updated: Reject requests that map to invalid Windows file names earlier. markt
2025/10/17 (tomcat) 01/01: Tag 9.0.111 remm
2025/10/17 (tomcat) branch 11.0.x updated: Add a unit test for CVE-2017-15698 dsoumis
2025/10/17 Buildbot failure in on tomcat-11.0.x buildbot
2025/10/17 (tomcat) 05/07: Set specific error when V_OCSP_CERTSTATUS_REVOKED dsoumis
2025/10/17 Buildbot success in on tomcat-10.1.x buildbot
2025/10/17 [Bug 69839] Changing SessionId creates eternal Single Sign On sessions bugzilla
2025/10/17 Buildbot failure in on tomcat-9.0.x buildbot
2025/10/17 (tomcat) branch 11.0.x updated: Fix source distro line endings for new test script markt
2025/10/17 (tomcat) branch 11.0.x updated: Reject requests that map to invalid Windows file names earlier. markt
2025/10/17 [Bug 69837] JavaCompiler invalid compile classpath composing bugzilla
2025/10/17 (tomcat) branch 11.0.x updated: Align with the other TLS tests remm
2025/10/17 Re: [VOTE] Release Apache Tomcat 10.1.48 Christopher Schultz
2025/10/17 (tomcat) branch 9.0.x updated: Align with the other TLS tests remm
2025/10/17 (tomcat) 05/07: Set specific error when V_OCSP_CERTSTATUS_REVOKED dsoumis
2025/10/17 (tomcat) 04/07: If the OCSP response is null, the error is set as X509_V_ERR_APPLICATION_VERIFICATION (50). Should not pass our verification process. dsoumis
2025/10/17 (tomcat) branch 10.1.x updated: Avoid OpenSSL X509_STORE_CTX_get0_current_issuer function remm
2025/10/17 [Bug 69839] Changing SessionId creates eternal Single Sign On sessions bugzilla
2025/10/17 [ANN] Apache Tomcat 9.0.110 available Rémy Maucherat
2025/10/17 (tomcat) branch 10.1.x updated: Relax file name check since input can include paths markt
2025/10/17 [VOTE] Release Apache Tomcat 10.1.48 Christopher Schultz
2025/10/17 Buildbot success in on tomcat-12.0.x buildbot
2025/10/17 [PR] add a shared, file based jar cache to improve performance of follow on runs of the tool [tomcat-jakartaee-migration] via GitHub
2025/10/17 [Bug 69852] {MD5}, {SHA} and {SSHA} not honored with Realm/CredentialHandler bugzilla
2025/10/17 (tomcat) branch 9.0.x updated: Add missing ASF headers schultz
2025/10/17 (tomcat) branch main updated: Update baseline to 11.0.13 markt
2025/10/17 (tomcat) branch 11.0.x updated (556b14745b -> 3af0d10a5a) markt
2025/10/17 (tomcat) tag 9.0.111 created (now b816e34f82) remm
2025/10/17 Buildbot failure in on tomcat-9.0.x buildbot
2025/10/17 (tomcat) branch 11.0.x updated: Formatting remm
2025/10/17 (tomcat) branch 11.0.x updated: Add missing changelog on OCSP remm
2025/10/17 (tomcat) branch main updated: Fix BZ 69844 - server sending masked frames is a protocol error markt
2025/10/17 Re: [PR] Add support for CIDR notation in RemoteIpFilter(#632) [tomcat] via GitHub
2025/10/17 (tomcat) branch 9.0.x updated: Add missing changelog on OCSP remm
2025/10/17 (tomcat) 01/01: Tag 11.0.13 markt
2025/10/17 (tomcat-tck) branch main updated: Update to latest EL API (not used by default) markt
2025/10/17 (tomcat) branch main updated: Fix BZ 69845 - Inflater/Deflater throw ISE rather than NPE from Java 25 markt
2025/10/17 [Bug 69845] java.lang.IllegalStateException: Inflater has been closed bugzilla
2025/10/17 (tomcat) branch 10.1.x updated: Add missing ASF headers schultz
2025/10/17 Buildbot success in on tomcat-9.0.x buildbot
2025/10/17 Buildbot success in on tomcat-12.0.x buildbot
2025/10/17 (tomcat) 06/07: Ehnance tests and fix various issues in TestOcspIntegration tests dsoumis
2025/10/17 [Bug 69844] WebSocket client does not validate that data sent from the server is unmasked bugzilla
2025/10/16 Re: [PROPOSAL] Change embedded ZIP packaging to put zipped files into a subdirectory Coty Sutherland
2025/10/16 Re: Proposal for additional ant test targets Coty Sutherland
2025/10/15 Re: Missing ASF headers in generated documentation Mark Thomas
2025/10/15 [PR] fix : method name typo [tomcat] via GitHub
2025/10/15 Question about packaging of Windows-x86 binary ZIP Christopher Schultz
2025/10/15 [PROPOSAL] Change embedded ZIP packaging to put zipped files into a subdirectory Christopher Schultz
2025/10/15 (tomcat) branch main updated: Add missing ASF headers schultz
2025/10/15 [Bug 69852] {MD5}, {SHA} and {SSHA} not honored with Realm/CredentialHandler bugzilla
2025/10/15 (tomcat) branch main updated: Avoid OpenSSL X509_STORE_CTX_get0_current_issuer function remm
2025/10/14 (tomcat) branch 9.0.x updated: Add back OpenSSL 1.1.1 compatibility remm
2025/10/14 (tomcat) branch 10.1.x updated: Add back OpenSSL 1.1.1 compatibility remm
2025/10/14 Buildbot failure in on tomcat-12.0.x buildbot
2025/10/14 (tomcat) branch 10.1.x updated: Fix BZ 69845 - Inflater/Deflater throw ISE rather than NPE from Java 25 markt
2025/10/14 (tomcat) branch 11.0.x updated (4baad529fd -> 61f76458d9) dsoumis
2025/10/14 [Bug 69845] java.lang.IllegalStateException: Inflater has been closed bugzilla
2025/10/14 (tomcat) branch main updated: Add GPG signature verification to verify-release schultz
2025/10/14 [ANN] Apache Tomcat 11.0.13 Available Mark Thomas
2025/10/13 (tomcat) branch 11.0.x updated: Keep directory and directoryFile in sync markt
2025/10/13 (tomcat) branch 9.0.x updated: Keep directory and directoryFile in sync markt
2025/10/13 (tomcat) branch 10.1.x updated: Keep directory and directoryFile in sync markt
2025/10/13 (tomcat) branch main updated: Keep directory and directoryFile in sync markt
2025/10/13 [Bug 69845] java.lang.IllegalStateException: Inflater has been closed bugzilla