svn commit: r1920023 - in /tomcat/site/trunk: docs/security-model.html xdocs/security-model.xml

Author: markt Date: Mon Aug 19 11:23:05 2024 New Revision: 1920023 URL: http://svn.apache.org/viewvc?rev=1920023&view=rev Log: Add first draft of security model Added: tomcat/site/trunk/docs/security-model.html tomcat/site/trunk/xdocs/security-model.xml Added: tomcat/site/trunk/docs/secu

Re: svn commit: r1920023 - in /tomcat/site/trunk: docs/security-model.html xdocs/security-model.xml

On 19/08/2024 12:23, ma...@apache.org wrote: Author: markt Date: Mon Aug 19 11:23:05 2024 New Revision: 1920023 URL: http://svn.apache.org/viewvc?rev=1920023&view=rev Log: Add first draft of security model All, This is an attempt to document something I think we all instinctively understand.

svn commit: r1920025 - in /tomcat/site/trunk: docs/presentations.html docs/presentations/2023-10-07-cocna-Loom.pdf docs/presentations/2024-06-05-coceu-Tomcat-11-and-Jakarta-EE.pdf xdocs/presentations.

Author: markt Date: Mon Aug 19 12:31:35 2024 New Revision: 1920025 URL: http://svn.apache.org/viewvc?rev=1920025&view=rev Log: Add my most recent CoC presentations Added: tomcat/site/trunk/docs/presentations/2023-10-07-cocna-Loom.pdf (with props) tomcat/site/trunk/docs/presentations/2

(tomcat) branch 9.0.x updated: Update version numbers

This is an automated email from the ASF dual-hosted git repository. remm pushed a commit to branch 9.0.x in repository https://gitbox.apache.org/repos/asf/tomcat.git The following commit(s) were added to refs/heads/9.0.x by this push: new a0eebe5732 Update version numbers a0eebe5732 is desc

svn commit: r1920030 - in /tomcat/site/trunk: docs/presentations.html docs/presentations/2024-06-05-coceu-OpenSSL-and-FFM.pdf xdocs/presentations.xml

Author: remm Date: Mon Aug 19 13:51:08 2024 New Revision: 1920030 URL: http://svn.apache.org/viewvc?rev=1920030&view=rev Log: Add 2024 FFM presentation Added: tomcat/site/trunk/docs/presentations/2024-06-05-coceu-OpenSSL-and-FFM.pdf (with props) Modified: tomcat/site/trunk/docs/present

Buildbot failure in on tomcat-9.0.x

Build status: BUILD FAILED: failed compile (failure) Worker used: bb_worker2_ubuntu URL: https://ci2.apache.org/#builders/37/builds/1045 Blamelist: remm Build Text: failed compile (failure) Status Detected: new failure Build Source Stamp: [branch 9.0.x] a0eebe5732f3154af3db333d82d7e33690d0771d S

[Bug 69182] Tomcat doesn't seem to call SSLEngine.closeInbound when the HTTPS client disconnects

https://bz.apache.org/bugzilla/show_bug.cgi?id=69182 --- Comment #5 from Remy Maucherat --- This is a non issue for OpenSSL as closeInbound and closeOutbound are tied. For JSSE, I don't know. Reading the code shows closeInbound and closeOutbound are quite decoupled. It's obvious there's usually n

Re: Cookie parsing and upcoming updates to RFC6265

On 19/08/2024 08:38, Rémy Maucherat wrote: On Fri, Aug 16, 2024 at 5:25 PM Mark Thomas wrote: On 16/08/2024 13:40, Tim Funk wrote: How about missingEqualsCookie="allow | ignore"? The proposed options were: - ignore - name - value Ok, I think your proposed options are very good. Thanks fo