Am 06.02.26 um 23:32 schrieb Mark Thomas:
The key differences in version 2.0.13 compared to 2.0.12 are:
- The windows binaries in this release have been built with OpenSSL
3.5.5 and APR 1.7.6
- Fix a crash with compiled with OpenSSL 3.0.x when a certificate PEM
file does not contain explicit DH parameters.
- Refactor the setting of OCSP defaults so they always apply, even
when using older versions of Tomcat
The 2.0.x branch is primarily intended for use with Tomcat 10.1.x
onwards but can be used with earlier versions as long as the APR/native
connector is not used.
The proposed release artifacts can be found at [1],
and the build was done using tag [2].
The Apache Tomcat Native 2.0.12 release is
[X] Stable, go ahead and release
[ ] Broken because of ...
+1 for release
- checked artefacts for completeness
- checked artefact gpg signatures and sha512 hashes
- compared source tarballs against git sources
- checked OpenSSL version in Windows binaries
- checked some consistencies against own jnirelease.sh results
- built it against OpenSSL 3.6.1, 3.5.5 and 3.0.19, each the Platforms
SLES 12 and 15 and RHEL 7, 8, 9 and 10 (all x86_64). APR was 1.7.6.
OK
- no deprecation warnings
- tested via TC unit tests with tcnative/OpenSSL but only the SSL/TLS
related tests on the above platforms using TC 11.0.18, 10.1.52 and
9.0.115 with latest patch levels of JDK 8, 11, 17, 21, 25, 26 and 27
from Adoptium Temurin, Amazon Corretto, Azul Zulu, Oracle, RedHat and
OpenJDK where applicable.
- Only few crashes, most of them for RHEL 10
- Some failures for org.apache.tomcat.util.net.ocsp.TestOcspSoftFail
only for JDK 2[567]. Will report separately.
- Permission in the source tarball fine
Thanks for RM!
Best Regards,
Rainer
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
