dev

Messages by Date

2025/10/29 Re: Fwd: Inquiry Regarding End of Life (EOL) Date for Apache Tomcat 9 & 10 Michael Osipov
2025/10/29 svn commit: r1929402 - in tomcat/site/trunk: docs xdocs markt
2025/10/29 Fwd: Inquiry Regarding End of Life (EOL) Date for Apache Tomcat 9 & 10 Brian Proffitt
2025/10/29 svn commit: r1929401 - in tomcat/site/trunk: docs xdocs markt
2025/10/28 svn commit: r1929395 - in tomcat/site/trunk: docs xdocs markt
2025/10/28 [Bug 69866] OpenSSLContexts leak across reload through JNI global reference when using truststore bugzilla
2025/10/28 (tomcat) branch 9.0.x updated: Update to JSign 7.4 markt
2025/10/28 (tomcat) branch 10.1.x updated: Update to JSign 7.4 markt
2025/10/28 (tomcat) branch 11.0.x updated: Update to JSign 7.4 markt
2025/10/28 (tomcat) branch main updated: Update to JSign 7.4 markt
2025/10/28 (tomcat) branch 9.0.x updated: Update to Jacoco 0.8.14 markt
2025/10/28 (tomcat) branch 10.1.x updated: Update to Jacoco 0.8.14 markt
2025/10/28 (tomcat) branch 11.0.x updated: Update to Jacoco 0.8.14 markt
2025/10/28 (tomcat) branch main updated: Update to Jacoco 0.8.14 markt
2025/10/28 (tomcat) branch 10.1.x updated: Add release date for 10.1.48 markt
2025/10/28 (tomcat) branch 9.0.x updated: Update to Checkstyle 12.1.1 markt
2025/10/28 (tomcat) branch 10.1.x updated: Update to Checkstyle 12.1.1 markt
2025/10/28 (tomcat) branch 11.0.x updated: Update to Checkstyle 12.1.1 markt
2025/10/28 (tomcat) branch main updated: Update to Checkstyle 12.1.1 markt
2025/10/28 Re: [PR] Fix BZ 69866 - Use separate CertificateVerifier class to avoid strong JNI reference to OpenSSLContexts [tomcat] via GitHub
2025/10/28 (tomcat) branch 9.0.x updated: Update to Byte Buddy 1.17.8 markt
2025/10/28 (tomcat) branch 10.1.x updated: Update to Byte Buddy 1.17.8 markt
2025/10/28 (tomcat) branch 11.0.x updated: Update to Byte Buddy 1.17.8 markt
2025/10/28 (tomcat) branch main updated: Update to Byte Buddy 1.17.8 markt
2025/10/28 (tomcat) branch 11.0.x updated: Fix back port markt
2025/10/28 (tomcat) branch 11.0.x updated: Update Eclipse JDT compiler to 4.37 (a.k.a. 3.43.0) markt
2025/10/28 (tomcat) branch main updated: Update Eclipse JDT compiler to 4.37 (a.k.a. 3.43.0) markt
2025/10/28 Re: [PR] Fix BZ 69866 - Use separate CertificateVerifier class to avoid strong JNI reference to OpenSSLContexts [tomcat] via GitHub
2025/10/28 Re: [PR] Fix BZ 69866 - Use separate CertificateVerifier class to avoid strong JNI reference to OpenSSLContexts [tomcat] via GitHub
2025/10/28 Re: [PR] Fix BZ 69866 - Use separate CertificateVerifier class to avoid strong JNI reference to OpenSSLContexts [tomcat] via GitHub
2025/10/28 Re: [PR] Fix BZ 69866 - Use separate CertificateVerifier class to avoid strong JNI reference to OpenSSLContexts [tomcat] via GitHub
2025/10/28 Re: [PR] Fix BZ 69866 - Use separate CertificateVerifier class to avoid strong JNI reference to OpenSSLContexts [tomcat] via GitHub
2025/10/28 svn commit: r80344 - in release/tomcat: tomcat-10/v10.1.47 tomcat-11/v11.0.12 tomcat-9/v9.0.110 markt
2025/10/28 svn commit: r1929388 - in tomcat/site/trunk: docs xdocs markt
2025/10/27 [Bug 69866] OpenSSLContexts leak across reload through JNI global reference when using truststore bugzilla
2025/10/27 [PR] Fix BZ 69866 - Use separate CertificateVerifier class to avoid strong JNI reference to OpenSSLContexts [tomcat] via GitHub
2025/10/27 [Bug 69866] New: OpenSSLContexts leak across reload through JNI global reference when using truststore bugzilla
2025/10/27 Re: Tomcat and JDK-25 and the fix of File.exists() Erwin Stadlbauer
2025/10/27 Re: Tomcat and JDK-25 and the fix of File.exists() Christopher Schultz
2025/10/27 Re: Tomcat and JDK-25 and the fix of File.exists() Mark Thomas
2025/10/27 [SECURITY] CVE-2025-55752 Apache Tomcat - Directory traversal via rewrite with possible RCE if PUT is enabled Mark Thomas
2025/10/27 [SECURITY] CVE-2025-61795 Apache Tomcat - Delayed cleaning of multipart upload temporary files may lead to DoS Mark Thomas
2025/10/27 svn commit: r1929379 - in tomcat/site/trunk: docs xdocs markt
2025/10/27 [SECURITY] CVE-2025-55754 Apache Tomcat - Console manipulation via escape sequences in log messages Mark Thomas
2025/10/27 Re: Tomcat and JDK-25 and the fix of File.exists() Mark Thomas
2025/10/27 Re: Tomcat and JDK-25 and the fix of File.exists() Erwin Stadlbauer
2025/10/27 (tomcat) branch main updated (894f69c8e8 -> 9921a00d3f) remm
2025/10/27 (tomcat) branch dependabot/github_actions/actions/upload-artifact-5 deleted (was 8294c426a6) github-bot
2025/10/27 (tomcat) 01/01: Merge pull request #911 from apache/dependabot/github_actions/actions/upload-artifact-5 remm
2025/10/27 Re: [PR] Bump actions/upload-artifact from 4 to 5 [tomcat] via GitHub
2025/10/27 Re: Tomcat and JDK-25 and the fix of File.exists() Mark Thomas
2025/10/27 (tomcat) branch dependabot/github_actions/actions/upload-artifact-5 created (now 8294c426a6) github-bot
2025/10/27 [PR] Bump actions/upload-artifact from 4 to 5 [tomcat] via GitHub
2025/10/27 (tomcat-jakartaee-migration) branch dependabot/github_actions/actions/upload-artifact-5 deleted (was d2bfc65) github-bot
2025/10/27 (tomcat-jakartaee-migration) branch main updated: Bump actions/upload-artifact from 4 to 5 remm
2025/10/27 Re: [PR] Bump actions/upload-artifact from 4 to 5 [tomcat-jakartaee-migration] via GitHub
2025/10/26 Tomcat and JDK-25 and the fix of File.exists() Erwin Stadlbauer
2025/10/26 (tomcat-jakartaee-migration) branch dependabot/github_actions/actions/upload-artifact-5 created (now d2bfc65) github-bot
2025/10/26 [PR] Bump actions/upload-artifact from 4 to 5 [tomcat-jakartaee-migration] via GitHub
2025/10/24 [Bug 69862] NullPointerException in JspServletWrapper.handleJspException masks original exception when getRootCause() returns null bugzilla
2025/10/24 (tomcat) 01/02: Avoid NPE on Servlet exception unwrap remm
2025/10/24 (tomcat) branch 9.0.x updated (686137dd8a -> 1b338d09b7) remm
2025/10/24 (tomcat) 02/02: Java compat remm
2025/10/24 (tomcat) 01/02: Avoid NPE on Servlet exception unwrap remm
2025/10/24 (tomcat) branch 10.1.x updated (fe5ceececf -> 060df11130) remm
2025/10/24 (tomcat) 02/02: Java compat remm
2025/10/24 (tomcat) branch 11.0.x updated: Avoid NPE on Servlet exception unwrap remm
2025/10/24 (tomcat) branch main updated: Avoid NPE on Servlet exception unwrap remm
2025/10/24 [Bug 69862] New: NullPointerException in JspServletWrapper.handleJspException masks original exception when getRootCause() returns null bugzilla
2025/10/22 [Bug 69861] SPAM bugzilla
2025/10/22 [Bug 69861] SPAM bugzilla
2025/10/22 [Bug 69861] SPAM bugzilla
2025/10/22 [Bug 69861] Google Ranking bugzilla
2025/10/22 [Bug 69861] New: Google Ranking bugzilla
2025/10/21 Buildbot success in on tomcat-10.1.x buildbot
2025/10/21 (tomcat) branch 9.0.x updated: Add missing items remm
2025/10/21 (tomcat) branch 10.1.x updated: Add missing items remm
2025/10/21 (tomcat) branch 11.0.x updated: Add missing items remm
2025/10/21 (tomcat) branch main updated: Add missing items remm
2025/10/21 Buildbot failure in on tomcat-10.1.x buildbot
2025/10/21 (tomcat) branch 9.0.x updated: Fix typo in changelog rjung
2025/10/21 (tomcat) branch 10.1.x updated: Fix typo in changelog rjung
2025/10/21 (tomcat) branch 11.0.x updated: Fix typo in changelog rjung
2025/10/20 Re: [PR] Use a deep copy of query stats whose values won't change during sorting. [tomcat] via GitHub
2025/10/20 Re: [PR] Use a deep copy of query stats whose values won't change during sorting. [tomcat] via GitHub
2025/10/20 Re: [PR] Use a deep copy of query stats whose values won't change during sorting. [tomcat] via GitHub
2025/10/20 Buildbot success in on tomcat-9.0.x buildbot
2025/10/20 Re: [PR] Use a deep copy of query stats whose values won't change during sorting. [tomcat] via GitHub
2025/10/20 Re: [PR] Use a deep copy of query stats whose values won't change during sorting. [tomcat] via GitHub
2025/10/20 (tomcat) branch 9.0.x updated: Add TestStartupIPv6Connectors to verify IPv6 bind dsoumis
2025/10/20 Re: [PR] Add TestStartupIPv6Connectors to verify IPv6 bind [tomcat] via GitHub
2025/10/20 [PR] Add TestStartupIPv6Connectors to verify IPv6 bind [tomcat] via GitHub
2025/10/20 [Bug 69852] {MD5}, {SHA} and {SSHA} not honored with Realm/CredentialHandler bugzilla
2025/10/20 Re: Missing ASF headers in generated documentation Mark Thomas
2025/10/20 [Bug 69852] {MD5}, {SHA} and {SSHA} not honored with Realm/CredentialHandler bugzilla
2025/10/19 Re: [PR] Use a deep copy of query stats whose values won't change during sorting. [tomcat] via GitHub
2025/10/19 [Bug 69856] SPAM SPAM SPAM SPAM bugzilla
2025/10/19 [Bug 69856] Transform your space with Tapron’s luxury bathroom and kitchen fittings—where timeless design meets unmatched quality. bugzilla
2025/10/19 [Bug 69856] Transform your space with Tapron’s luxury bathroom and kitchen fittings—where timeless design meets unmatched quality. bugzilla
2025/10/19 [Bug 69856] New: Transform your space with Tapron’s luxury bathroom and kitchen fittings—where timeless design meets unmatched quality. bugzilla
2025/10/18 Re: [PR] add a shared, file based jar cache to improve performance of follow on runs of the tool [tomcat-jakartaee-migration] via GitHub
2025/10/18 Buildbot success in on tomcat-11.0.x buildbot
2025/10/18 (tomcat) 06/07: Ehnance tests and fix various issues in TestOcspIntegration tests dsoumis
2025/10/18 (tomcat) branch 9.0.x updated: Fix back-port markt
2025/10/18 [Bug 69837] JavaCompiler invalid compile classpath composing bugzilla
2025/10/18 [Bug 69839] Changing SessionId creates eternal Single Sign On sessions bugzilla
2025/10/18 (tomcat) branch main updated: Fix distro line endings for new llm files markt
2025/10/18 (tomcat) branch 9.0.x updated: Fix race condition. markt
2025/10/18 (tomcat) branch main updated: Remove unnecessary @SuppressWarnings markt
2025/10/18 (tomcat) branch 10.1.x updated (dee994384c -> c345241d1a) dsoumis
2025/10/18 [Bug 69839] Changing SessionId creates eternal Single Sign On sessions bugzilla
2025/10/18 Buildbot failure in on tomcat-12.0.x buildbot
2025/10/18 Re: [VOTE][RE-VOTEx2] Release Apache Tomcat 10.1.48 Igal Sapir
2025/10/18 (tomcat) branch 10.1.x updated: Treat new test password files as text files for line-endings markt
2025/10/18 svn commit: r1929002 - in tomcat/site/trunk: . docs docs/tomcat-10.1-doc docs/tomcat-10.1-doc/annotationapi docs/tomcat-10.1-doc/annotationapi/jakarta/annotation docs/tomcat-10.1-doc/annotationapi/jakarta/annotation/security docs/tomcat-10.1-doc/annota... schultz
2025/10/18 (tomcat) branch 11.0.x updated: Deprecate RemoteAddr[Filter|Valve] in favour of RemoteCIDR[Filter|Valve] markt
2025/10/18 (tomcat) branch main updated: Add back OpenSSL 1.1.1 compatibility remm
2025/10/18 (tomcat) branch 9.0.x updated: Fix BZ 69848 - Correct copy/paste error when refactoring method names markt
2025/10/18 Buildbot failure in on tomcat-10.1.x buildbot
2025/10/18 Re: Missing ASF headers in generated documentation Christopher Schultz
2025/10/18 (tomcat) branch main updated: Remove deprecated code. Internal storage for method can now use String. markt
2025/10/18 (tomcat) branch 11.0.x updated: Update version number for next development cycle markt
2025/10/18 (tomcat) branch 9.0.x updated: Fix BZ 69844 - server sending masked frames is a protocol error markt
2025/10/18 [Bug 69852] New: {MD5}, {SHA} and {SSHA} not honored with Realm/CredentialHandler bugzilla
2025/10/18 (tomcat) branch 11.0.x updated: Fix BZ 69839 - Ensure session ID changes are promulgated to SSO Valve markt
2025/10/18 (tomcat) branch main updated: Treat new test password files as text files for line-endings markt
2025/10/18 (tomcat) branch main updated: Fix race condition. markt
2025/10/18 [Bug 69837] JavaCompiler invalid compile classpath composing bugzilla
2025/10/18 Re: [VOTE] Release Apache Tomcat 11.0.13 Rainer Jung
2025/10/18 (tomcat) branch 11.0.x updated: Add missing ASF headers schultz
2025/10/18 svn commit: r1929065 - in tomcat/site/trunk: docs xdocs schultz
2025/10/18 Re: (tomcat) branch main updated: Reject requests that map to invalid Windows file names earlier. Mark Thomas
2025/10/18 [Bug 64083] JDBC pool keeps closed connection as available bugzilla
2025/10/18 [VOTE] Release Apache Tomcat 9.0.111 Rémy Maucherat
2025/10/18 Re: [PR] tomcat-jdbc check if returned connection is closed [tomcat] via GitHub
2025/10/18 (tomcat) 03/07: If we set ok=0 with errnum==X509_V_OK (0), OpenSSL emits a fatal internal_error. Tolerate V_OCSP_CERTSTATUS_UNKNOWN and let the client policy (e.g. NO_FALLBACK) decide. dsoumis
2025/10/18 Buildbot failure in on tomcat-10.1.x buildbot
2025/10/18 (tomcat) branch 11.0.x updated: Fix OCSP responses validity by extending them to 365 days in generate-ocsp-test-artifacts.sh for use in TestOcspIntegration tests dsoumis
2025/10/18 (tomcat) branch 9.0.x updated: Next is 9.0.112 remm
2025/10/18 [ANN] Apache Tomcat 11.0.12 Available Mark Thomas
2025/10/18 (tomcat) branch 11.0.x updated: Fix BZ 69844 - server sending masked frames is a protocol error markt
2025/10/18 [Bug 69849] New: OPTIONS, DELETE does not work bugzilla
2025/10/18 [Bug 69845] java.lang.IllegalStateException: Inflater has been closed bugzilla
2025/10/18 [Bug 69848] http method DELETE is converted to OPTIONS when request is sent through Apache proxy over AJP Connector bugzilla
2025/10/18 [Bug 69845] java.lang.IllegalStateException: Inflater has been closed bugzilla
2025/10/18 [PR] Panama tweaks [tomcat] via GitHub
2025/10/18 svn commit: r1929121 - in tomcat/site/trunk: docs xdocs markt
2025/10/18 [Bug 69850] Http Delete Method is resolved as Options bugzilla
2025/10/18 [Bug 69837] JavaCompiler invalid compile classpath composing bugzilla
2025/10/18 Buildbot failure in on tomcat-9.0.x buildbot
2025/10/18 Re: [PR] Panama tweaks [tomcat] via GitHub
2025/10/18 (tomcat) branch 11.0.x updated: Fix BZ 68947 - remove remaining references to removed package markt
2025/10/18 [PR] Correctly handle optionalNoCA verification [tomcat-native] via GitHub
2025/10/18 [Bug 69848] http method DELETE is converted to OPTIONS when request is sent through Apache proxy over AJP Connector bugzilla
2025/10/18 (tomcat) branch 11.0.x updated: Use constant remm
2025/10/18 Buildbot success in on tomcat-11.0.x buildbot
2025/10/18 [Bug 69852] {MD5}, {SHA} and {SSHA} not honored with Realm/CredentialHandler bugzilla
2025/10/18 Re: [VOTE][RE-VOTE] Release Apache Tomcat 10.1.48 Christopher Schultz
2025/10/18 [Bug 69852] {MD5}, {SHA} and {SSHA} not honored with Realm/CredentialHandler bugzilla
2025/10/18 Buildbot success in on tomcat-10.1.x buildbot
2025/10/18 Buildbot failure in on tomcat-11.0.x buildbot
2025/10/18 Re: Question about packaging of Windows-x86 binary ZIP Mark Thomas
2025/10/18 (tomcat) branch main updated: Remove the deprecated RemoteAddrFilter and RemoteAddrValve markt
2025/10/18 svn commit: r1929119 - in tomcat/site/trunk: . docs xdocs markt
2025/10/18 (tomcat) branch 9.0.x updated: Re-order checks to avoid NPE. Identified by Coverity Scan. markt
2025/10/18 [PR] Parse the pem to skip the seed, like using: [tomcat] via GitHub
2025/10/18 svn commit: r79964 - in dev/tomcat/tomcat-10/v10.1.48: . bin bin/embed src schultz
2025/10/18 (tomcat) 01/07: If optionalNoCA is configured then OCSP should be disabled. dsoumis
2025/10/18 Re: [VOTE] Release Apache Tomcat 9.0.111 Christopher Schultz
2025/10/18 (tomcat) 05/07: Set specific error when V_OCSP_CERTSTATUS_REVOKED dsoumis
2025/10/18 svn commit: r1929122 - in tomcat/site/trunk: docs xdocs markt
2025/10/17 (tomcat) branch 10.1.x updated: Add missing changelog on OCSP remm
2025/10/17 (tomcat) branch 9.0.x updated (2893a36945 -> 12a260a0d2) dsoumis
2025/10/17 Re: [VOTE] Release Apache Tomcat 11.0.12 Dimitris Soumis
2025/10/17 (tomcat) branch 10.1.x updated: Use constant remm
2025/10/17 (tomcat) branch 9.0.x updated: Fix source distro line endings for new test script markt
2025/10/17 (tomcat) branch 11.0.x updated: Avoid OpenSSL X509_STORE_CTX_get0_current_issuer function remm
2025/10/17 (tomcat) branch 9.0.x updated: Fix BZ 69845 - Inflater/Deflater throw ISE rather than NPE from Java 25 markt
2025/10/17 (tomcat) branch main updated: Deprecate RemoteAddr[Filter|Valve] in favour of RemoteCIDR[Filter|Valve] markt
2025/10/17 Re: [VOTE] Release Apache Tomcat 11.0.13 Mark Thomas
2025/10/17 (tomcat) branch 11.0.x updated: Add missing entries to list of output files markt
2025/10/17 (tomcat) 04/07: If the OCSP response is null, the error is set as X509_V_ERR_APPLICATION_VERIFICATION (50). Should not pass our verification process. dsoumis
2025/10/17 Re: [VOTE] Release Apache Tomcat 10.1.48 Mark Thomas
2025/10/17 [Bug 69770] ERR_HTTP2_PROTOCOL_ERROR regression in Tomcat 10.1.43 (similar to fixed Bug 69320) bugzilla
2025/10/17 (tomcat) branch 9.0.x updated: Add GPG signature verification to verify-release schultz
2025/10/17 (tomcat) branch 10.1.x updated: Add test remm
2025/10/17 (tomcat) branch 11.0.x updated: Fix BZ 69848 - Correct copy/paste error when refactoring method names markt
2025/10/17 [Bug 69852] {MD5}, {SHA} and {SSHA} not honored with Realm/CredentialHandler bugzilla
2025/10/17 Re: [PROPOSAL] Change embedded ZIP packaging to put zipped files into a subdirectory Mark Thomas
2025/10/17 Buildbot success in on tomcat-12.0.x buildbot
2025/10/17 (tomcat) 03/07: If we set ok=0 with errnum==X509_V_OK (0), OpenSSL emits a fatal internal_error. Tolerate V_OCSP_CERTSTATUS_UNKNOWN and let the client policy (e.g. NO_FALLBACK) decide. dsoumis
2025/10/17 (tomcat) 02/07: CAs may not issue CRLs. dsoumis
2025/10/17 Buildbot failure in on tomcat-9.0.x buildbot
2025/10/17 [Bug 69850] New: Http Delete Method is resolved as Options bugzilla
2025/10/17 [Bug 69848] http method DELETE is converted to OPTIONS when request is sent through Apache proxy over AJP Connector bugzilla
2025/10/17 (tomcat) branch 10.1.x updated: Remove unnecessary @SuppressWarnings markt
2025/10/17 Re: Question about packaging of Windows-x86 binary ZIP Coty Sutherland
2025/10/17 (tomcat) branch 10.1.x updated: Reject requests that map to invalid Windows file names earlier. markt
2025/10/17 Re: [VOTE] Release Apache Tomcat 9.0.111 Mark Thomas
2025/10/17 (tomcat) branch 9.0.x updated: Use constant remm