+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
+---+
| Bugzilla Bug ID |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned
Author: rjung
Date: Sun May 24 07:19:00 2015
New Revision: 1681420
URL: http://svn.apache.org/r1681420
Log:
Include header files needed for retrieving DH
params. Those headers are no longer included
by default in OpenSSL master.
Backport of r1681419 from trunk.
Modified:
tomcat/native/branch
Author: rjung
Date: Sun May 24 07:18:08 2015
New Revision: 1681419
URL: http://svn.apache.org/r1681419
Log:
Include header files needed for retrieving DH
params. Those headers are no longer included
by default in OpenSSL master.
Modified:
tomcat/native/trunk/native/include/ssl_private.h
Modi
Am 24.05.2015 um 00:57 schrieb Bill Barker:
...
/bin/bash /srv/gump/public/workspace/apr-1/dest-20150524/build-1/libtool --silent
--mode=compile gcc -g -O2 -pthread -DHAVE_CONFIG_H -DLINUX -D_REENTRANT
-D_GNU_SOURCE -g -O2 -DHAVE_OPENSSL
-I/srv/gump/public/workspace/tomcat-native
it/target/junit-4.13-SNAPSHOT.jar
-Dobjenesis.jar=/srv/gump/public/workspace/objenesis/main/target/objenesis-2.2-SNAPSHOT.jar
-Dtest.reports=output/logs-NIO2
-Dtomcat-native.tar.gz=/srv/gump/public/workspace/apache-commons/daemon/dist/bin/commons-daemon-20150524-native-src.tar.gz
-Dexamples.sources.
it-4.13-SNAPSHOT.jar
-Dobjenesis.jar=/srv/gump/public/workspace/objenesis/main/target/objenesis-2.2-SNAPSHOT.jar
-Dtest.reports=output/logs-APR
-Dtomcat-native.tar.gz=/srv/gump/public/workspace/apache-commons/daemon/dist/bin/commons-daemon-20150524-native-src.tar.gz
-Dexamples.sources.skip=true
Author: rjung
Date: Sun May 24 12:42:20 2015
New Revision: 1681441
URL: http://svn.apache.org/r1681441
Log:
Revert r1681310:
Add unmanaged pool api.
Partial backport of r1205445 from trunk.
The API is not published in any version of the
Java API so no need to add in a stable branch.
Modified:
Author: rjung
Date: Sun May 24 12:44:57 2015
New Revision: 1681442
URL: http://svn.apache.org/r1681442
Log:
Remove feature check for unused feature.
Modified:
tomcat/native/branches/1.1.x/native/configure.in
Modified: tomcat/native/branches/1.1.x/native/configure.in
URL:
http://svn.apache.o
Author: rjung
Date: Sun May 24 12:52:01 2015
New Revision: 1681443
URL: http://svn.apache.org/r1681443
Log:
Add changelog entries for all functional
changes and fixes to 1.1.
Modified:
tomcat/native/branches/1.1.x/xdocs/miscellaneous/changelog.xml
Modified: tomcat/native/branches/1.1.x/xdocs
Author: rjung
Date: Sun May 24 13:09:09 2015
New Revision: 1681446
URL: http://svn.apache.org/r1681446
Log:
First take at trunk changelog.
Modified:
tomcat/native/trunk/xdocs/miscellaneous/changelog.xml
Modified: tomcat/native/trunk/xdocs/miscellaneous/changelog.xml
URL:
http://svn.apache.o
Author: rjung
Date: Sun May 24 13:13:11 2015
New Revision: 1681447
URL: http://svn.apache.org/r1681447
Log:
Incompatible change:
SSL.generateRSATempKey() and SSL.loadDSATempKey()
had to go.
Modified:
tomcat/native/branches/1.1.x/native/src/ssl.c
tomcat/native/branches/1.1.x/xdocs/miscella
Author: rjung
Date: Sun May 24 13:14:29 2015
New Revision: 1681448
URL: http://svn.apache.org/r1681448
Log:
Note gone APIs.
Modified:
tomcat/native/trunk/xdocs/miscellaneous/changelog.xml
Modified: tomcat/native/trunk/xdocs/miscellaneous/changelog.xml
URL:
http://svn.apache.org/viewvc/tomca
Author: rjung
Date: Sun May 24 13:24:14 2015
New Revision: 1681450
URL: http://svn.apache.org/r1681450
Log:
Add info about new tcnative handling of
ephemeral DH and EC params embedded in the
certificate file.
Modified:
tomcat/trunk/webapps/docs/config/http.xml
Modified: tomcat/trunk/webapps/
I need to add some info to the tcnative docs concerning using a native
SSL connector and I'm quite uncertain where to add it. It will roughly be:
Starting with version 1.1.34 of the APR/native connector, the strength
of ephemeral keys for DH ciphers are by default chosen depending on the
key s
Author: rjung
Date: Sun May 24 13:37:17 2015
New Revision: 1681452
URL: http://svn.apache.org/r1681452
Log:
For now just in trunk.
Modified:
tomcat/native/trunk/xdocs/miscellaneous/changelog.xml
Modified: tomcat/native/trunk/xdocs/miscellaneous/changelog.xml
URL:
http://svn.apache.org/viewv
Author: rjung
Date: Sun May 24 13:53:56 2015
New Revision: 1681454
URL: http://svn.apache.org/r1681454
Log:
Update tcnative trunk docs stub.
Added:
tomcat/native/trunk/xdocs/news/2015.xml
- copied, changed from r1681419, tomcat/native/trunk/xdocs/news/2010.xml
Removed:
tomcat/native
Author: rjung
Date: Sun May 24 14:41:47 2015
New Revision: 1681468
URL: http://svn.apache.org/r1681468
Log:
No longer true.
Modified:
tomcat/native/branches/1.1.x/TODO.txt
Modified: tomcat/native/branches/1.1.x/TODO.txt
URL:
http://svn.apache.org/viewvc/tomcat/native/branches/1.1.x/TODO.txt
Author: rjung
Date: Sun May 24 14:42:20 2015
New Revision: 1681469
URL: http://svn.apache.org/r1681469
Log:
Add TODO copied over from 1.1.
Added:
tomcat/native/trunk/TODO.txt (with props)
Added: tomcat/native/trunk/TODO.txt
URL:
http://svn.apache.org/viewvc/tomcat/native/trunk/TODO.txt?re
Author: rjung
Date: Sun May 24 15:00:32 2015
New Revision: 1681471
URL: http://svn.apache.org/r1681471
Log:
Release script update:
- rename TCTRUNK_SVNBASE to TCJAVA_SVNBASE
There are so many trunks and this is about
where the Java classes come from
- Move internal variable initialization belo
Author: rjung
Date: Sun May 24 15:19:18 2015
New Revision: 1681473
URL: http://svn.apache.org/r1681473
Log:
More release script indentation plus one missing
exit (abort).
Modified:
tomcat/native/branches/1.1.x/jnirelease.sh
Modified: tomcat/native/branches/1.1.x/jnirelease.sh
URL:
http://sv
Author: rjung
Date: Sun May 24 15:22:45 2015
New Revision: 1681474
URL: http://svn.apache.org/r1681474
Log:
Sync release scrpt with 1.1.
Biggest change ist that we drop the jni
intermediate directory in the release tarball.
In addition we simply export everything ad remove
two unwanted files inst
Author: rjung
Date: Sun May 24 15:31:15 2015
New Revision: 1681477
URL: http://svn.apache.org/r1681477
Log:
Sync with 1.1.
Modified:
tomcat/native/trunk/native/BUILDING
Modified: tomcat/native/trunk/native/BUILDING
URL:
http://svn.apache.org/viewvc/tomcat/native/trunk/native/BUILDING?rev=16
Author: rjung
Date: Sun May 24 15:34:02 2015
New Revision: 1681478
URL: http://svn.apache.org/r1681478
Log:
TC 8 better default version now.
Modified:
tomcat/native/branches/1.1.x/README.txt
Modified: tomcat/native/branches/1.1.x/README.txt
URL:
http://svn.apache.org/viewvc/tomcat/native/br
Author: rjung
Date: Sun May 24 15:34:17 2015
New Revision: 1681479
URL: http://svn.apache.org/r1681479
Log:
Sync with 1.1.
Modified:
tomcat/native/trunk/README.txt
Modified: tomcat/native/trunk/README.txt
URL:
http://svn.apache.org/viewvc/tomcat/native/trunk/README.txt?rev=1681479&r1=168147
Author: rjung
Date: Sun May 24 15:38:34 2015
New Revision: 1681480
URL: http://svn.apache.org/r1681480
Log:
Add missing PrintPath script.
Copied over from the APR build directory.
Only used in pre release platform checking
(buildcheck.sh).
Added:
tomcat/native/branches/1.1.x/native/build/Prin
Author: rjung
Date: Sun May 24 15:39:50 2015
New Revision: 1681481
URL: http://svn.apache.org/r1681481
Log:
Add missing PrintPath script.
Copied over from the APR build directory.
Only used in pre release platform checking
(buildcheck.sh).
Added:
tomcat/native/trunk/native/build/PrintPath (
On 23 May 2015 17:03:21 BST, Rainer Jung wrote:
>mod_ssl dropped support for EXPORT ciphers in Apache 2.4 some time ago
>and will also drop it in Apache 2.2 in the sonn to be released next
>version.
>
>I applied a similar change to tcnative trunk and would also like to
>apply it to 1.1.
>
>Note
Author: rjung
Date: Sun May 24 16:36:26 2015
New Revision: 1681485
URL: http://svn.apache.org/r1681485
Log:
Followon to r1658646 and r1658728: the modern
APIs we need to use because OpenSSL master hides
internals are not available for older OpenSSL.
Restore compatibility with 0.9.8 by accessing
in
Author: rjung
Date: Sun May 24 16:43:57 2015
New Revision: 1681488
URL: http://svn.apache.org/r1681488
Log:
New API SSL.clearOptions() introduced by
r1437082 in 2013 needs OpenSSL 0.9.8m.
Modified:
tomcat/native/branches/1.1.x/native/build/rpm/tcnative.spec.in
tomcat/native/branches/1.1.x
Author: rjung
Date: Sun May 24 16:49:14 2015
New Revision: 1681490
URL: http://svn.apache.org/r1681490
Log:
Partial sync with trunk.
Modified:
tomcat/native/branches/1.1.x/native/build/tcnative.m4
Modified: tomcat/native/branches/1.1.x/native/build/tcnative.m4
URL:
http://svn.apache.org/vie
Author: rjung
Date: Sun May 24 16:51:23 2015
New Revision: 1681491
URL: http://svn.apache.org/r1681491
Log:
Follown to r1681490.
Name of variable has changed. Original name
now has another meaning.
Modified:
tomcat/native/branches/1.1.x/native/configure.in
Modified: tomcat/native/branches/1.
Author: rjung
Date: Sun May 24 17:05:36 2015
New Revision: 1681494
URL: http://svn.apache.org/r1681494
Log:
Sync Windows build files with 1.1:
- remove TCN_DECLARE_EXPORT. it had been axed in
r1292841
- use same srclib path for apr and openssl like
in 1.1
Modified:
tomcat/native/trunk/nat
Author: rjung
Date: Sun May 24 17:08:57 2015
New Revision: 1681495
URL: http://svn.apache.org/r1681495
Log:
Sync Windows makefile with 1.1.
The historic difference because of sslext.c
is no longer needed, the file is gone.
Modified:
tomcat/native/trunk/native/NMAKEmakefile
Modified: tomcat/n
Author: rjung
Date: Sun May 24 17:11:41 2015
New Revision: 1681496
URL: http://svn.apache.org/r1681496
Log:
Sync with 1.1: the patch file there was newer
(although probably also outdated).
Modified:
tomcat/native/trunk/native/srclib/openssl/openssl-msvcrt.patch
Modified: tomcat/native/trunk/
Author: rjung
Date: Sun May 24 17:52:23 2015
New Revision: 1681505
URL: http://svn.apache.org/r1681505
Log:
Read DH params only from first certificate in
case multiple certificates are configured.
Modified:
tomcat/native/trunk/native/src/sslcontext.c
Modified: tomcat/native/trunk/native/src/
Author: rjung
Date: Sun May 24 17:53:19 2015
New Revision: 1681506
URL: http://svn.apache.org/r1681506
Log:
Read DH params only from first certificate in
case multiple certificates are configured.
Backport of r1681505 from trunk.
Modified:
tomcat/native/branches/1.1.x/ (props changed)
Author: rjung
Date: Sun May 24 17:58:51 2015
New Revision: 1681507
URL: http://svn.apache.org/r1681507
Log:
Drop some unused constants.
Modified:
tomcat/native/trunk/native/include/ssl_private.h
Modified: tomcat/native/trunk/native/include/ssl_private.h
URL:
http://svn.apache.org/viewvc/tom
Rainer,
On 5/22/15 3:54 PM, rj...@apache.org wrote:
> Author: rjung
> Date: Fri May 22 19:54:09 2015
> New Revision: 1681218
>
> URL: http://svn.apache.org/r1681218
> Log:
> Port mod_ssl improvements to tcnative/ssl:
>
> r1605827 | jorton | 2014-06-26 17:49:49 +0200 (Thu, 26 Jun 2014) | 6 lines
Rainer,
On 5/23/15 7:17 AM, rj...@apache.org wrote:
> Author: rjung
> Date: Sat May 23 11:17:11 2015
> New Revision: 1681321
>
> URL: http://svn.apache.org/r1681321
> Log:
> Forward port 1.1 changes to trunk:
Thanks for doing this: trunk really needs to get back in shape.
-chris
signature.as
https://bz.apache.org/bugzilla/show_bug.cgi?id=57946
--- Comment #1 from Christopher Schultz ---
Patches are always welcome, especially documentation patches.
Please note that there are plenty of users still using Apache 2.0, and so
configuration samples that will still work there will be apprec
mod_ssl supports multiple certificates for the same host, one with RSA
key, one with DSA key and one with EC key. They can be configured at the
same time.
Altough tcnative has the code to handle that, we currently do not wire
it. We would need an way to express in the ssl config, that multiple
Rainer,
On 5/23/15 12:03 PM, Rainer Jung wrote:
> mod_ssl dropped support for EXPORT ciphers in Apache 2.4 some time ago
> and will also drop it in Apache 2.2 in the soon to be released next
> version.
>
> I applied a similar change to tcnative trunk and would also like to
> apply it to 1.1.
+1
Am 24.05.2015 um 18:33 schrieb Mark Thomas:
On 23 May 2015 17:03:21 BST, Rainer Jung wrote:
mod_ssl dropped support for EXPORT ciphers in Apache 2.4 some time ago
and will also drop it in Apache 2.2 in the sonn to be released next
version.
I applied a similar change to tcnative trunk and would
Author: rjung
Date: Sun May 24 18:16:01 2015
New Revision: 1681509
URL: http://svn.apache.org/r1681509
Log:
Drop unused structure members.
Prepare for ECC certificates.
Modified:
tomcat/native/trunk/native/include/ssl_private.h
Modified: tomcat/native/trunk/native/include/ssl_private.h
URL:
Author: rjung
Date: Sun May 24 18:17:46 2015
New Revision: 1681512
URL: http://svn.apache.org/r1681512
Log:
Drop some unused constants.
Backport of r1681507 from trunk.
Modified:
tomcat/native/branches/1.1.x/ (props changed)
tomcat/native/branches/1.1.x/native/include/ssl_private.h
Pr
Author: rjung
Date: Sun May 24 18:18:46 2015
New Revision: 1681515
URL: http://svn.apache.org/r1681515
Log:
Drop unused structure members.
Prepare for ECC certificates.
Backport of r1681509 from trunk.
Modified:
tomcat/native/branches/1.1.x/ (props changed)
tomcat/native/branches/1.1.x
Author: rjung
Date: Sun May 24 19:34:43 2015
New Revision: 1681520
URL: http://svn.apache.org/r1681520
Log:
Allow to disable the export cipher filtering
using the configure flag
--enable-insecure-export-ciphers.
Of course the SSL toolkit must have support
for them as well to be able to use them.
Author: rjung
Date: Sun May 24 19:42:58 2015
New Revision: 1681522
URL: http://svn.apache.org/r1681522
Log:
Remove backported item.
Modified:
tomcat/native/trunk/xdocs/miscellaneous/changelog.xml
Modified: tomcat/native/trunk/xdocs/miscellaneous/changelog.xml
URL:
http://svn.apache.org/view
Author: rjung
Date: Sun May 24 19:45:21 2015
New Revision: 1681523
URL: http://svn.apache.org/r1681523
Log:
Port mod_ssl improvements to tcnative/ssl:
Partial backport of r1526168 from httpd/mod_ssl:
- unconditionally disable null and export-grade ciphers by always
prepending "!aNULL:!eNULL:!E
Am 24.05.2015 um 20:10 schrieb Christopher Schultz:
Rainer,
On 5/23/15 12:03 PM, Rainer Jung wrote:
mod_ssl dropped support for EXPORT ciphers in Apache 2.4 some time ago
and will also drop it in Apache 2.2 in the soon to be released next
version.
I applied a similar change to tcnative trunk a
Am 24.05.2015 um 20:04 schrieb Christopher Schultz:
Rainer,
On 5/22/15 3:54 PM, rj...@apache.org wrote:
Author: rjung
Date: Fri May 22 19:54:09 2015
New Revision: 1681218
URL: http://svn.apache.org/r1681218
Log:
Port mod_ssl improvements to tcnative/ssl:
r1605827 | jorton | 2014-06-26 17:49:4
Just a short explanation: triggered by logjam I wanted to improve DH
ephemeral key handling in tcnative. I had the BZ issue on my watch list
and knew that mod_ssl had already improved a lot in that area.
When looking at tcnative I noticed, that trunk now is no longer just an
old fork one could
Author: rjung
Date: Sun May 24 20:21:47 2015
New Revision: 1681524
URL: http://svn.apache.org/r1681524
Log:
This is only a warning, not a fatal
configure error.
Modified:
tomcat/native/branches/1.1.x/native/build/tcnative.m4
Modified: tomcat/native/branches/1.1.x/native/build/tcnative.m4
URL
When testing tcnative I observed a strange 1000 seconds timeout. The
occurrence of the timeout was likely due to using an old OpenSSL version
(0.9.8m) in combination with the unit tests that want a newer one, but I
found the long duration of 1000 seconds strange.
It happens in TestSsl.testSimp
To whom it may engage...
This is an automated request, but not an unsolicited one. For
more information please visit http://gump.apache.org/nagged.html,
and/or contact the folk at gene...@gump.apache.org.
Project tomcat-trunk-test-nio has an issue affecting its community integration.
Th
62 matches
Mail list logo
