On 03/06/2025 10:16, jean-frederic clere wrote:
On 5/22/25 11:30 AM, Mark Thomas wrote:
All,
This isn't going to work for 3.5.x. We need to use a newer compiler
than the one packaged with Mladen's custom Microsoft compiler bundle.
I have been meaning to look at updating the Tomcat Native bui
On 5/22/25 11:30 AM, Mark Thomas wrote:
All,
This isn't going to work for 3.5.x. We need to use a newer compiler than
the one packaged with Mladen's custom Microsoft compiler bundle.
I have been meaning to look at updating the Tomcat Native builds so we
can use a standard Visual Studio insta
On 22/05/2025 15:27, Mark Thomas wrote:
I'm making progress. I've built Tomcat Native 2.0.x with OpenSSL 3.5.0
but it looks like I've picked up too many dependencies. I'm looking at
how to fix that now.
Thank you Mladen. He had already made the necessary changes. I just
needed to enabled t
On 22/05/2025 15:15, Christopher Schultz wrote:
Mark,
On 5/22/25 5:30 AM, Mark Thomas wrote:
All,
This isn't going to work for 3.5.x. We need to use a newer compiler
than the one packaged with Mladen's custom Microsoft compiler bundle.
I have been meaning to look at updating the Tomcat Nati
super
scalable compared to OpenSSL (the article noted some progress though
and that 3.5 is faster and more scalable than 3.0), but of course the
C bindings are "?" and there's no compatibility with OpenSSL at all.
> As I already mentioned yesterday (subject: "OpenSSL 3.5
Mark,
On 5/22/25 5:30 AM, Mark Thomas wrote:
All,
This isn't going to work for 3.5.x. We need to use a newer compiler than
the one packaged with Mladen's custom Microsoft compiler bundle.
I have been meaning to look at updating the Tomcat Native builds so we
can use a standard Visual Studio
I'm
not planning on changing the minimum OpenSSL version and these are
convenience binaries.
Any objections?
No objections as long as earlier versions are still supported. OpenSSL
has been getting better about being less incompatible with itself. :)
As I already mentioned yesterday (subjec
All,
This isn't going to work for 3.5.x. We need to use a newer compiler than
the one packaged with Mladen's custom Microsoft compiler bundle.
I have been meaning to look at updating the Tomcat Native builds so we
can use a standard Visual Studio installation. I guess it is time to
spend som
Am 22.05.25 um 09:13 schrieb Mark Thomas:
All,
The last Tomcat Native releases were in July 2024. The Windows binaries
were built with 3.0.14.
There are some low severity CVEs in 3.0.14 that we don't believe apply
to Tomcat's usage of OpenSSL but that may trigger a security scanner.
There
On 2025/05/22 07:13:49 Mark Thomas wrote:
> All,
>
> The last Tomcat Native releases were in July 2024. The Windows binaries
> were built with 3.0.14.
>
> There are some low severity CVEs in 3.0.14 that we don't believe apply
> to Tomcat's usage of OpenSSL but that may trigger a security scanne
On Thu, May 22, 2025 at 9:13 AM Mark Thomas wrote:
>
> All,
>
> The last Tomcat Native releases were in July 2024. The Windows binaries
> were built with 3.0.14.
>
> There are some low severity CVEs in 3.0.14 that we don't believe apply
> to Tomcat's usage of OpenSSL but that may trigger a securit
All,
The last Tomcat Native releases were in July 2024. The Windows binaries
were built with 3.0.14.
There are some low severity CVEs in 3.0.14 that we don't believe apply
to Tomcat's usage of OpenSSL but that may trigger a security scanner.
There is a new OpenSSL LTS branch, 3.5.x, that in
All,
FYI I just ran all the unit tests for Tomcat 11 on my aarm64 Mac against
tcnative and OpenSSL 3.5 and I saw nothing out of the ordinary.
I had previously been testing using OpenSSL 3.4.1 and I know that 3.5 is
a big change, so I figured I'd report my experience here.
-
13 matches
Mail list logo
