Re: [PR] Simplify usage of custom ssl configuration [tomcat]

rmaucher commented on PR #706: URL: https://github.com/apache/tomcat/pull/706#issuecomment-2049093782 Your previous PR, which was integrated, unfortunately caused a very high number of regressions that had to be fixed over multiple Tomcat releases. This PR similarly seems uninteresting to m

Re: [PR] Simplify usage of custom ssl configuration [tomcat]

Hakky54 closed pull request #706: Simplify usage of custom ssl configuration URL: https://github.com/apache/tomcat/pull/706 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To u

Re: [PR] Simplify usage of custom ssl configuration [tomcat]

Hakky54 commented on PR #706: URL: https://github.com/apache/tomcat/pull/706#issuecomment-2049130432 Ah so your feeling is that this also might cause some regression while this wrapper does not add that much value to the project itself. I can understand that. Okay, thank you for your time f

Re: [PR] Simplify usage of custom ssl configuration [tomcat]

rmaucher commented on PR #706: URL: https://github.com/apache/tomcat/pull/706#issuecomment-2049169784 I had left the PR open since others could have been willing to go through with it (or not, I don't know). -- This is an automated message from the Apache Git Service. To respond to the me

(tomcat) branch 10.1.x updated: Fix bnd packaging for the tomcat-coyote jar

This is an automated email from the ASF dual-hosted git repository. remm pushed a commit to branch 10.1.x in repository https://gitbox.apache.org/repos/asf/tomcat.git The following commit(s) were added to refs/heads/10.1.x by this push: new cfb055095d Fix bnd packaging for the tomcat-coyote

Re: [VOTE] Release Apache Tomcat 10.1.22

On Wed, Apr 10, 2024 at 8:52 PM Christopher Schultz wrote: > > The proposed Apache Tomcat 10.1.22 release is now available for > voting. Apache Tomcat 10.1.21 was canceled due to a release-build > mistake. There are no source-level changes between 10.1.21 and 10.1.22. > > The notable changes compa

(tomcat) branch main updated: Add OpenSSL FFM classes to tomcat-embed-core

This is an automated email from the ASF dual-hosted git repository. remm pushed a commit to branch main in repository https://gitbox.apache.org/repos/asf/tomcat.git The following commit(s) were added to refs/heads/main by this push: new b33f4d4f8f Add OpenSSL FFM classes to tomcat-embed-cor

(tomcat) branch 10.1.x updated: Add OpenSSL FFM classes to tomcat-embed-core

This is an automated email from the ASF dual-hosted git repository. remm pushed a commit to branch 10.1.x in repository https://gitbox.apache.org/repos/asf/tomcat.git The following commit(s) were added to refs/heads/10.1.x by this push: new 844ec7f9f6 Add OpenSSL FFM classes to tomcat-embed

Re: [VOTE] Release Apache Tomcat 10.1.22

Rémy, On 4/11/24 05:18, Rémy Maucherat wrote: On Wed, Apr 10, 2024 at 8:52 PM Christopher Schultz wrote: The proposed Apache Tomcat 10.1.22 release is now available for voting. Apache Tomcat 10.1.21 was canceled due to a release-build mistake. There are no source-level changes between 10.1.21

Re: [VOTE] Release Apache Tomcat 10.1.22

> On Apr 11, 2024, at 02:51, Christopher Schultz > wrote: > > The proposed Apache Tomcat 10.1.22 release is now available for > voting. Apache Tomcat 10.1.21 was canceled due to a release-build mistake. > There are no source-level changes between 10.1.21 and 10.1.22. > > The notable changes

svn commit: r1916917 - /tomcat/site/trunk/tools/update-version.sh

Author: schultz Date: Thu Apr 11 14:00:23 2024 New Revision: 1916917 URL: http://svn.apache.org/viewvc?rev=1916917&view=rev Log: Remove URL-encoding of mailto: subject which apparently isn't necessary. Modified: tomcat/site/trunk/tools/update-version.sh Modified: tomcat/site/trunk/tools/upda

svn commit: r1916918 - in /tomcat/site/trunk: docs/whichversion.html xdocs/whichversion.xml

Author: schultz Date: Thu Apr 11 14:11:30 2024 New Revision: 1916918 URL: http://svn.apache.org/viewvc?rev=1916918&view=rev Log: Indicate that Tomcat 8.5.x has actually reached end-of-life. Modified: tomcat/site/trunk/docs/whichversion.html tomcat/site/trunk/xdocs/whichversion.xml Modifi

(tomcat) branch main updated: Deprecate sessionCounter and duplicates statistics

This is an automated email from the ASF dual-hosted git repository. remm pushed a commit to branch main in repository https://gitbox.apache.org/repos/asf/tomcat.git The following commit(s) were added to refs/heads/main by this push: new f8bb3601e6 Deprecate sessionCounter and duplicates sta

(tomcat) branch 10.1.x updated: Deprecate sessionCounter and duplicates statistics

This is an automated email from the ASF dual-hosted git repository. remm pushed a commit to branch 10.1.x in repository https://gitbox.apache.org/repos/asf/tomcat.git The following commit(s) were added to refs/heads/10.1.x by this push: new 0eafa69cb7 Deprecate sessionCounter and duplicates

(tomcat) branch 9.0.x updated: Deprecate sessionCounter and duplicates statistics

This is an automated email from the ASF dual-hosted git repository. remm pushed a commit to branch 9.0.x in repository https://gitbox.apache.org/repos/asf/tomcat.git The following commit(s) were added to refs/heads/9.0.x by this push: new a41afc8e80 Deprecate sessionCounter and duplicates s

(tomcat) branch dependabot/maven/modules/stuffed/org.apache.tomcat-tomcat-websocket-11.0.0-M17 created (now 24b73e3ed1)

This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/maven/modules/stuffed/org.apache.tomcat-tomcat-websocket-11.0.0-M17 in repository https://gitbox.apache.org/repos/asf/tomcat.git at 24b73e3ed1 Bump org.apache.tomcat:tomcat-

[PR] Bump org.apache.tomcat:tomcat-websocket from 11.0.0-M16 to 11.0.0-M17 in /modules/stuffed [tomcat]

dependabot[bot] opened a new pull request, #714: URL: https://github.com/apache/tomcat/pull/714 Bumps org.apache.tomcat:tomcat-websocket from 11.0.0-M16 to 11.0.0-M17. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-

(tomcat) branch dependabot/maven/modules/openssl-java21/org.apache.tomcat-tomcat-coyote-9.0.86 created (now 1879f32982)

This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/maven/modules/openssl-java21/org.apache.tomcat-tomcat-coyote-9.0.86 in repository https://gitbox.apache.org/repos/asf/tomcat.git at 1879f32982 Bump org.apache.tomcat:tomcat-

(tomcat) branch dependabot/maven/modules/openssl-java17/org.apache.tomcat-tomcat-coyote-9.0.86 created (now 20771292ee)

This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/maven/modules/openssl-java17/org.apache.tomcat-tomcat-coyote-9.0.86 in repository https://gitbox.apache.org/repos/asf/tomcat.git at 20771292ee Bump org.apache.tomcat:tomcat-

[PR] Bump org.apache.tomcat:tomcat-coyote from 11.0.0-M14 to 11.0.0-M17 in /modules/openssl-foreign [tomcat]

dependabot[bot] opened a new pull request, #715: URL: https://github.com/apache/tomcat/pull/715 Bumps org.apache.tomcat:tomcat-coyote from 11.0.0-M14 to 11.0.0-M17. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-nam

(tomcat) branch dependabot/maven/modules/openssl-foreign/org.apache.tomcat-tomcat-coyote-11.0.0-M17 created (now 4dcea8621f)

This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/maven/modules/openssl-foreign/org.apache.tomcat-tomcat-coyote-11.0.0-M17 in repository https://gitbox.apache.org/repos/asf/tomcat.git at 4dcea8621f Bump org.apache.tomcat:to

[PR] Bump org.apache.tomcat:tomcat-coyote from 9.0.83 to 9.0.86 in /modules/openssl-java21 [tomcat]

dependabot[bot] opened a new pull request, #716: URL: https://github.com/apache/tomcat/pull/716 Bumps org.apache.tomcat:tomcat-coyote from 9.0.83 to 9.0.86. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.ap

[PR] Bump org.apache.tomcat:tomcat-coyote from 9.0.83 to 9.0.86 in /modules/openssl-java17 [tomcat]

dependabot[bot] opened a new pull request, #717: URL: https://github.com/apache/tomcat/pull/717 Bumps org.apache.tomcat:tomcat-coyote from 9.0.83 to 9.0.86. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.ap

Re: (tomcat) branch 10.1.x updated: Add native access to the scripts

Hi Rémy, I think this breaks 10.1 on Java 11, since --enable-native-access was introduced later. Best regards, Rainer Am 22.03.24 um 14:13 schrieb r...@apache.org: This is an automated email from the ASF dual-hosted git repository. remm pushed a commit to branch 10.1.x in repository https:

Re: [VOTE] Release Apache Tomcat 10.1.22

Am 10.04.24 um 20:51 schrieb Christopher Schultz: The proposed Apache Tomcat 10.1.22 release is now available for voting. Apache Tomcat 10.1.21 was canceled due to a release-build mistake. There are no source-level changes between 10.1.21 and 10.1.22. The notable changes compared to 10.1.20 ar

Re: [VOTE] Release Apache Tomcat 10.1.22

+1 (non binding), mainly tested downstream tomcat embedded cases (but using plain artifacts not embed ones). Romain Manni-Bucau @rmannibucau | Blog | Old Blog | Github

Re: (tomcat) branch 10.1.x updated: Add native access to the scripts

On Thu, Apr 11, 2024 at 7:21 PM Rainer Jung wrote: > > Hi Rémy, > > I think this breaks 10.1 on Java 11, since --enable-native-access was > introduced later. I was certain I tested it properly with 11, it worked and I thought it was added as a noop to a later build. Actually, it seems I made a du

(tomcat) branch 10.1.x updated: Revert option that breaks on Java 11

This is an automated email from the ASF dual-hosted git repository. remm pushed a commit to branch 10.1.x in repository https://gitbox.apache.org/repos/asf/tomcat.git The following commit(s) were added to refs/heads/10.1.x by this push: new 86b7beeb8e Revert option that breaks on Java 11 86

(tomcat) branch main updated: Bump version numbers

This is an automated email from the ASF dual-hosted git repository. remm pushed a commit to branch main in repository https://gitbox.apache.org/repos/asf/tomcat.git The following commit(s) were added to refs/heads/main by this push: new 3972a030b4 Bump version numbers 3972a030b4 is describe

Re: [PR] Bump org.apache.tomcat:tomcat-websocket from 11.0.0-M16 to 11.0.0-M17 in /modules/stuffed [tomcat]

dependabot[bot] commented on PR #714: URL: https://github.com/apache/tomcat/pull/714#issuecomment-2050326037 Looks like org.apache.tomcat:tomcat-websocket is up-to-date now, so this is no longer needed. -- This is an automated message from the Apache Git Service. To respond to the message

Re: [PR] Bump org.apache.tomcat:tomcat-websocket from 11.0.0-M16 to 11.0.0-M17 in /modules/stuffed [tomcat]

dependabot[bot] closed pull request #714: Bump org.apache.tomcat:tomcat-websocket from 11.0.0-M16 to 11.0.0-M17 in /modules/stuffed URL: https://github.com/apache/tomcat/pull/714 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub a

Re: [PR] Bump org.apache.tomcat:tomcat-coyote from 9.0.83 to 9.0.86 in /modules/openssl-java17 [tomcat]

dependabot[bot] closed pull request #717: Bump org.apache.tomcat:tomcat-coyote from 9.0.83 to 9.0.86 in /modules/openssl-java17 URL: https://github.com/apache/tomcat/pull/717 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and us

Re: [PR] Bump org.apache.tomcat:tomcat-coyote from 11.0.0-M14 to 11.0.0-M17 in /modules/openssl-foreign [tomcat]

dependabot[bot] commented on PR #715: URL: https://github.com/apache/tomcat/pull/715#issuecomment-2050326108 Looks like org.apache.tomcat:tomcat-coyote is up-to-date now, so this is no longer needed. -- This is an automated message from the Apache Git Service. To respond to the message, p

(tomcat) branch dependabot/maven/modules/stuffed/org.apache.tomcat-tomcat-websocket-11.0.0-M17 deleted (was 24b73e3ed1)

This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/maven/modules/stuffed/org.apache.tomcat-tomcat-websocket-11.0.0-M17 in repository https://gitbox.apache.org/repos/asf/tomcat.git was 24b73e3ed1 Bump org.apache.tomcat:tomcat-

Re: [PR] Bump org.apache.tomcat:tomcat-coyote from 9.0.83 to 9.0.86 in /modules/openssl-java21 [tomcat]

dependabot[bot] commented on PR #716: URL: https://github.com/apache/tomcat/pull/716#issuecomment-2050326279 Looks like org.apache.tomcat:tomcat-coyote is up-to-date now, so this is no longer needed. -- This is an automated message from the Apache Git Service. To respond to the message, p

Re: [PR] Bump org.apache.tomcat:tomcat-coyote from 9.0.83 to 9.0.86 in /modules/openssl-java21 [tomcat]

dependabot[bot] closed pull request #716: Bump org.apache.tomcat:tomcat-coyote from 9.0.83 to 9.0.86 in /modules/openssl-java21 URL: https://github.com/apache/tomcat/pull/716 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and us

(tomcat) branch dependabot/maven/modules/openssl-foreign/org.apache.tomcat-tomcat-coyote-11.0.0-M17 deleted (was 4dcea8621f)

This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/maven/modules/openssl-foreign/org.apache.tomcat-tomcat-coyote-11.0.0-M17 in repository https://gitbox.apache.org/repos/asf/tomcat.git was 4dcea8621f Bump org.apache.tomcat:to

(tomcat) branch dependabot/maven/modules/openssl-java17/org.apache.tomcat-tomcat-coyote-9.0.86 deleted (was 20771292ee)

This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/maven/modules/openssl-java17/org.apache.tomcat-tomcat-coyote-9.0.86 in repository https://gitbox.apache.org/repos/asf/tomcat.git was 20771292ee Bump org.apache.tomcat:tomcat-

Re: [PR] Bump org.apache.tomcat:tomcat-coyote from 9.0.83 to 9.0.86 in /modules/openssl-java17 [tomcat]

dependabot[bot] commented on PR #717: URL: https://github.com/apache/tomcat/pull/717#issuecomment-2050326077 Looks like org.apache.tomcat:tomcat-coyote is up-to-date now, so this is no longer needed. -- This is an automated message from the Apache Git Service. To respond to the message, p

Re: [PR] Bump org.apache.tomcat:tomcat-coyote from 11.0.0-M14 to 11.0.0-M17 in /modules/openssl-foreign [tomcat]

dependabot[bot] closed pull request #715: Bump org.apache.tomcat:tomcat-coyote from 11.0.0-M14 to 11.0.0-M17 in /modules/openssl-foreign URL: https://github.com/apache/tomcat/pull/715 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitH

(tomcat) branch dependabot/maven/modules/openssl-java21/org.apache.tomcat-tomcat-coyote-9.0.86 deleted (was 1879f32982)

This is an automated email from the ASF dual-hosted git repository. github-bot pushed a change to branch dependabot/maven/modules/openssl-java21/org.apache.tomcat-tomcat-coyote-9.0.86 in repository https://gitbox.apache.org/repos/asf/tomcat.git was 1879f32982 Bump org.apache.tomcat:tomcat-

Re: (tomcat) branch 10.1.x updated: Add native access to the scripts

Thanks Rémy. Things happen, at least we found it before it hit the street. Am 11.04.24 um 20:52 schrieb Rémy Maucherat: On Thu, Apr 11, 2024 at 7:21 PM Rainer Jung wrote: Hi Rémy, I think this breaks 10.1 on Java 11, since --enable-native-access was introduced later. I was certain I tested

[Bug 68884] New: Delayed HTTP Traffic Processing After Mass Websocket Disconnect/Reconnect

https://bz.apache.org/bugzilla/show_bug.cgi?id=68884 Bug ID: 68884 Summary: Delayed HTTP Traffic Processing After Mass Websocket Disconnect/Reconnect Product: Tomcat 9 Version: 9.0.75 Hardware: All OS: Linux

[Bug 68884] Delayed HTTP Traffic Processing After Mass Websocket Disconnect/Reconnect

https://bz.apache.org/bugzilla/show_bug.cgi?id=68884 Matt M changed: What|Removed |Added CC||inconceiva...@gmail.com --- Comment #1 from M

[Bug 68884] Delayed HTTP Traffic Processing After Mass Websocket Disconnect/Reconnect

https://bz.apache.org/bugzilla/show_bug.cgi?id=68884 Oded Brilon changed: What|Removed |Added CC||oded.bri...@servicenow.com -- You are r

[PR] fix CVE-2024-23672 [tomcat]

achibear opened a new pull request, #718: URL: https://github.com/apache/tomcat/pull/718 Tomcat 8 fixed the CVE-2024-23672 vulnerability through commit [3631adb1](https://github.com/apache/tomcat/commit/3631adb1342d8bbd8598802a12b63ad02c37d591). However, we have discovered similar unpatched

Re: [PR] fix CVE-2024-23672 [tomcat]

hazendaz commented on PR #718: URL: https://github.com/apache/tomcat/pull/718#issuecomment-2050846843 Not speaking for team but as onlooker, Tomcat 7 is end of life since March 2021. There are no further updates. So it wouldn't make sense to patch it. It wouldn't be released anyways. On

Re: [PR] fix CVE-2024-23672 [tomcat]

aooohan closed pull request #718: fix CVE-2024-23672 URL: https://github.com/apache/tomcat/pull/718 -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-

Re: [PR] fix CVE-2024-23672 [tomcat]

aooohan commented on PR #718: URL: https://github.com/apache/tomcat/pull/718#issuecomment-2050851432 Tomcat 7 is end of life since March 2021, so we won't merge this change, thanks. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to Gi

Re: [PR] fix CVE-2024-23672 [tomcat]

> On Apr 11, 2024, at 21:18, hazendaz (via GitHub) wrote: > > hazendaz commented on PR #718: > URL: https://github.com/apache/tomcat/pull/718#issuecomment-2050846843 > > Not speaking for team but as onlooker, Tomcat 7 is end of life since March > 2021. There are no further updates. So it