https://bz.apache.org/bugzilla/show_bug.cgi?id=60632
Jeff Turner changed:
What|Removed |Added
Resolution|FIXED |---
Status|RESOLVED
To whom it may engage...
This is an automated request, but not an unsolicited one. For
more information please visit http://gump.apache.org/nagged.html,
and/or contact the folk at gene...@gump.apache.org.
Project tomcat-tc8.0.x-test-nio2 has an issue affecting its community
integration
https://bz.apache.org/bugzilla/show_bug.cgi?id=60702
--- Comment #4 from mgrigorov ---
Hi,
8.0.39 is released and if it has this problem then it cannot be fixed in
8.0.39!
It can be fixed in the next release!
But Violeta already said that there is no such issue in 8.0.41 so there is
nothing to b
https://bz.apache.org/bugzilla/show_bug.cgi?id=60702
--- Comment #3 from M. Manna ---
(In reply to Mark Thomas from comment #2)
> This works for me as well with a clean 8.0.x build.
>
> All the indications are that this is a configuration problem. The users list
> is the place to seek further h
Hi,
2017-02-10 11:07 GMT+02:00 Mark Thomas :
>
> On 09/02/17 22:08, Violeta Georgieva wrote:
>>
>> 2017-02-08 11:25 GMT+02:00 Violeta Georgieva :
>>>
>>> 2017-02-08 1:51 GMT+02:00 Mark Thomas :
>
>
>
>
I guess that makes me reluctantly in favour of it in principle but I'd
>>
>> very much pre
https://bz.apache.org/bugzilla/show_bug.cgi?id=60718
--- Comment #5 from Brett Kail ---
Tomcat doesn't appear to call AsyncListener for these scenarios either.
FWIW, I agree with the "in scope" interpretation. I was expecting
requestDestroyed to be called only after the request is no longer "in
https://bz.apache.org/bugzilla/show_bug.cgi?id=60716
--- Comment #6 from Christopher Schultz ---
(In reply to Mark Thomas from comment #3)
> I think the simplest solution is a new JSSE property on SSLHostConfig -
> revocationEnabled.
That's a confusing configuration attribute: it implies that re
https://bz.apache.org/bugzilla/show_bug.cgi?id=60718
--- Comment #4 from Remy Maucherat ---
I think it's not going to "work" unless AsyncContextImpl.fireOnComplete calls
context.fireRequestDestroyEvent(request). Or something like that.
The Tomcat code is based on the thinking that the request re
ump/public/workspace/objenesis/main/target/objenesis-2.6-SNAPSHOT.jar
-Dexamples.sources.skip=true
-Dcommons-daemon.jar=/srv/gump/public/workspace/apache-commons/daemon/dist/commons-daemon-20170214.jar
-Dtest.openssl.path=/srv/gump/public/workspace/openssl-1.0.2/dest-20170214/bin/openssl
-Dex
https://bz.apache.org/bugzilla/show_bug.cgi?id=60716
--- Comment #5 from Kirill ---
(In reply to Mark Thomas from comment #3)
> Another example of why configuration via system property is just wrong. Sigh.
>
> The call to setRevocationEnabled(false) is necessary when no revocation is
> configure
https://bz.apache.org/bugzilla/show_bug.cgi?id=60716
Mark Thomas changed:
What|Removed |Added
Resolution|--- |FIXED
Status|NEW
Author: markt
Date: Tue Feb 14 12:51:36 2017
New Revision: 1782957
URL: http://svn.apache.org/viewvc?rev=1782957&view=rev
Log:
Fix https://bz.apache.org/bugzilla/show_bug.cgi?id=60716
Add a new JSSE specific attribute, revocationEnabled, to SSLHostConfig to
permit JSSE provider revocation checks
Author: markt
Date: Tue Feb 14 12:50:05 2017
New Revision: 1782956
URL: http://svn.apache.org/viewvc?rev=1782956&view=rev
Log:
Fix https://bz.apache.org/bugzilla/show_bug.cgi?id=60716
Add a new JSSE specific attribute, revocationEnabled, to SSLHostConfig to
permit JSSE provider revocation checks
Author: markt
Date: Tue Feb 14 12:38:48 2017
New Revision: 1782954
URL: http://svn.apache.org/viewvc?rev=1782954&view=rev
Log:
Correct Apache id
Modified:
tomcat/trunk/webapps/docs/changelog.xml
Modified: tomcat/trunk/webapps/docs/changelog.xml
URL:
http://svn.apache.org/viewvc/tomcat/trunk
https://bz.apache.org/bugzilla/show_bug.cgi?id=60716
--- Comment #3 from Mark Thomas ---
Another example of why configuration via system property is just wrong. Sigh.
The call to setRevocationEnabled(false) is necessary when no revocation is
configured since the default is true. Without it, all
https://bz.apache.org/bugzilla/show_bug.cgi?id=60632
--- Comment #5 from Konstantin Kolinko ---
Re: r1782805
+if [ -n "${CATALINA_EXIT_DELAY:-}" ]; then
+trap 'sleep ${CATALINA_EXIT_DELAY}' INT EXIT TERM
+fi
1. I suspect that "trap" won't see the value of CATALINA_EXIT_DELAY variable.
I th
https://bz.apache.org/bugzilla/show_bug.cgi?id=60702
Mark Thomas changed:
What|Removed |Added
Status|NEEDINFO|RESOLVED
Resolution|---
https://bz.apache.org/bugzilla/show_bug.cgi?id=60578
--- Comment #4 from Mark Thomas ---
Note the root cause of this in Debian, Ubuntu etc. was back-porting the
security fix for CVE-2016-6816 without back-porting the 57544 fix. This made it
trivial to trigger the loop described in bug 57544.
Wit
https://bz.apache.org/bugzilla/show_bug.cgi?id=60697
Mark Thomas changed:
What|Removed |Added
Status|NEW |RESOLVED
Resolution|---
Author: markt
Date: Tue Feb 14 11:07:17 2017
New Revision: 1782951
URL: http://svn.apache.org/viewvc?rev=1782951&view=rev
Log:
Fix https://bz.apache.org/bugzilla/show_bug.cgi?id=60697
Correct OPTIONS response for custom servlets so TRACE is not included when it
is disabled
Modified:
tomcat/t
Author: markt
Date: Tue Feb 14 11:05:47 2017
New Revision: 1782950
URL: http://svn.apache.org/viewvc?rev=1782950&view=rev
Log:
Correct OPTIONS response for WebDAV so TRACE is not included when it is disabled
Modified:
tomcat/tc7.0.x/trunk/ (props changed)
tomcat/tc7.0.x/trunk/java/org/a
Author: markt
Date: Tue Feb 14 11:04:00 2017
New Revision: 1782949
URL: http://svn.apache.org/viewvc?rev=1782949&view=rev
Log:
Correct OPTIONS response for WebDAV so TRACE is not included when it is disabled
Modified:
tomcat/tc8.0.x/trunk/ (props changed)
tomcat/tc8.0.x/trunk/java/org/a
Author: markt
Date: Tue Feb 14 11:03:19 2017
New Revision: 1782948
URL: http://svn.apache.org/viewvc?rev=1782948&view=rev
Log:
Correct OPTIONS response for WebDAV so TRACE is not included when it is disabled
Modified:
tomcat/tc8.5.x/trunk/ (props changed)
tomcat/tc8.5.x/trunk/java/org/a
Author: markt
Date: Tue Feb 14 11:01:35 2017
New Revision: 1782947
URL: http://svn.apache.org/viewvc?rev=1782947&view=rev
Log:
Fix https://bz.apache.org/bugzilla/show_bug.cgi?id=60697
Correct OPTIONS response for custom servlets so TRACE is not included when it
is disabled
Modified:
tomcat/t
Author: markt
Date: Tue Feb 14 11:00:18 2017
New Revision: 1782946
URL: http://svn.apache.org/viewvc?rev=1782946&view=rev
Log:
Correct OPTIONS response for WebDAV so TRACE is not included when it is disabled
Modified:
tomcat/trunk/java/org/apache/catalina/servlets/WebdavServlet.java
tomca
https://bz.apache.org/bugzilla/show_bug.cgi?id=60697
--- Comment #1 from Mark Thomas ---
This has been looked at before which is why the DefaultServlet handles this
correctly. Requests for "OPTIONS *" are also handled correctly.
It is difficult to do this for custom servlets since the code that
https://bz.apache.org/bugzilla/show_bug.cgi?id=60694
Mark Thomas changed:
What|Removed |Added
Status|NEW |RESOLVED
Resolution|---
Author: markt
Date: Tue Feb 14 09:28:36 2017
New Revision: 1782936
URL: http://svn.apache.org/viewvc?rev=1782936&view=rev
Log:
Fix https://bz.apache.org/bugzilla/show_bug.cgi?id=60694
Prevent NPE during authentication when no JASPIC AuthConfigFactory is available.
Modified:
tomcat/tc8.5.x/tru
Author: markt
Date: Tue Feb 14 09:23:57 2017
New Revision: 1782934
URL: http://svn.apache.org/viewvc?rev=1782934&view=rev
Log:
Fix https://bz.apache.org/bugzilla/show_bug.cgi?id=60694
Prevent NPE during authentication when no JASPIC AuthConfigFactory is available.
Modified:
tomcat/trunk/java/
29 matches
Mail list logo
