This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/tomcat-native.git
The following commit(s) were added to refs/heads/main by this push:
new 92aefff80 Better wording for BZ 67818
92aefff80 is described below
commit 92aefff803e009f4cb71f0204a37878ebf97f2e4
Author: Mark Thomas <ma...@apache.org>
AuthorDate: Wed Nov 1 11:40:29 2023 +0000
Better wording for BZ 67818
---
xdocs/miscellaneous/changelog.xml | 17 ++++++++++-------
1 file changed, 10 insertions(+), 7 deletions(-)
diff --git a/xdocs/miscellaneous/changelog.xml
b/xdocs/miscellaneous/changelog.xml
index 0aedd8212..8ed614b72 100644
--- a/xdocs/miscellaneous/changelog.xml
+++ b/xdocs/miscellaneous/changelog.xml
@@ -34,18 +34,19 @@
<section name="Changes in 2.0.7">
<changelog>
<add>
- <bug>67538</bug>: Make use of Ant's <code><javaversion /></code>
task
- to enfore the mininum Java build version. (michaelo)
+ <bug>67538</bug>: Make use of Ant's <code><javaversion /></code>
+ task to enfore the mininum Java build version. (michaelo)
</add>
<fix>
- <bug>67615</bug>: Windows binary for version 2 has incorrect version
suffix
- compared to the GNU autoconf version. (michaelo)
+ <bug>67615</bug>: Windows binary for version 2 has incorrect version
+ suffix compared to the GNU autoconf version. (michaelo)
</fix>
<update>
Align default pass phrase prompt with HTTPd on Windows as well.
(michaelo)
</update>
<fix>
- <bug>67616</bug>: o.a.tomcat.jni.SSL contains useless check for old
OpenSSL version. (michaelo)
+ <bug>67616</bug>: o.a.tomcat.jni.SSL contains useless check for old
+ OpenSSL version. (michaelo)
</fix>
<update>
Drop useless <code>compile.optimize</code> option. (michaelo)
@@ -60,8 +61,10 @@
Remove an unreachable if condition around CRLs in sslcontext.c.
(michaelo)
</update>
<fix>
- <bug>67818</bug>:
<code>SSL.setVerify()</code>/<code>SSLContext.setVerify()</code>
- silently set undocumented default verify paths. (michaelo)
+ <bug>67818</bug>: When calling <code>SSL.setVerify()</code> or
+ <code>SSLContext.setVerify()</code>, the default verify paths are no
+ longer set. Only the explicitly configured trust store, if any, will be
+ used to verify client certificates. (michaelo)
</fix>
</changelog>
</section>
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
