Re: [VOTE] Release Apache Meecrowave-1.2.13

2021-12-14 Thread Romain Manni-Bucau 
+1

Romain Manni-Bucau
@rmannibucau  |  Blog
 | Old Blog
 | Github  |
LinkedIn  | Book



Le mar. 14 déc. 2021 à 23:32, Mark Struberg  a
écrit :

> Good evening!
>
> I'd like to call a VOTE on Releasing Apache Meecrowave 1.2.13.
>
> The following tickets got resolved:
> Bug
>
> [MEECROWAVE-304 ] -
> upgrade to log4j2 2.16.0
> Task
>
> [MEECROWAVE-261 ] -
> upgrade to java16 ready versions
> [MEECROWAVE-300 ] -
> Upgrade to johnzon 1.2.14
> [MEECROWAVE-301 ] -
> Upgrade to tomcat 9.0.54
> [MEECROWAVE-302 ] -
> Upgrade to cxf 3.4.5
> [MEECROWAVE-303 ] -
> [jpa] extension can leak closed entity managers
> [MEECROWAVE-305 ] -
> upgrade various dependencies to latest versions
> [MEECROWAVE-306 ] -
> Update to OpenWebBeans-2.0.25
>
> Note that this release requires OWB-2.0.25 which is available in the
> staging repo as posted in the other VOTE thread.
>
>
> The staging repo can be found at:
>
> https://repository.apache.org/content/repositories/orgapacheopenwebbeans-1078/
> <
> https://repository.apache.org/content/repositories/orgapacheopenwebbeans-1078/
> >
>
> The source release is available at
>
> https://repository.apache.org/content/repositories/orgapacheopenwebbeans-1078/org/apache/meecrowave/meecrowave/1.2.13/
> <
> https://repository.apache.org/content/repositories/orgapacheopenwebbeans-1078/org/apache/meecrowave/meecrowave/1.2.13/
> >
>
> sha1 is 4619a441a8bce34e55cc2d99281089667d9d7b26
>
>
> Please VOTE:
>
> [+1] let's ship it!
> [+0] meh, don't care
> [-1] gnah, there is a ${showstopper}
>
> The VOTE is open for 72h.
>
> txs and LieGrue,
> strub

Re: [VOTE] Release Apache OpenWebBeans-2.0.25 - take 2

2021-12-14 Thread Romain Manni-Bucau 
+1

Romain Manni-Bucau
@rmannibucau  |  Blog
 | Old Blog
 | Github  |
LinkedIn  | Book



Le mar. 14 déc. 2021 à 23:24, Mark Struberg  a
écrit :

> Hi lords and ladies!
>
> I'd like to call a VOTE on releasing Apache OpenWebBeans-2.0.25.
>
> The following tickets have been resolved:
> Bug
>
> [OWB-1393 ] - OWB stops
> firing ProcessObserverMethods event, when Extension with non system event
> observer exists
> [OWB-1395 ] - Jar not
> scanned after 2.0.24 upgrade
> [OWB-1397 ] - @Scope
> scopes are NOT Bean defining annotations!
> [OWB-1398 ] - Scanner
> doesnt filter JARs by exclusions in all cases
> Task
>
> [OWB-1396 ] - upgrade to
> log4j2 2.16.0
>
>
> The staging repo is
>
> https://repository.apache.org/content/repositories/orgapacheopenwebbeans-1077
> <
> https://repository.apache.org/content/repositories/orgapacheopenwebbeans-1077
> >
>
> The source jar can be found here:
>
> https://repository.apache.org/content/repositories/orgapacheopenwebbeans-1077/org/apache/openwebbeans/openwebbeans/2.0.25/
> <
> https://repository.apache.org/content/repositories/orgapacheopenwebbeans-1077/org/apache/openwebbeans/openwebbeans/2.0.25/
> >
>
> sha1 is 3136dd1f8515487c6c8d88e77bdaca7c6066680d
>
>
> Please VOTE:
>
> [+1] let's ship it!
> [+0] meh, don't care
> [-1] gnah, there is a ${showstopper}
>
> The VOTE is open for 72h.
>
> txs and LieGrue,
> strub

[VOTE] Release Apache Meecrowave-1.2.13

2021-12-14 Thread Mark Struberg 
Good evening!

I'd like to call a VOTE on Releasing Apache Meecrowave 1.2.13.

The following tickets got resolved:
Bug

[MEECROWAVE-304 ] - 
upgrade to log4j2 2.16.0
Task

[MEECROWAVE-261 ] - 
upgrade to java16 ready versions
[MEECROWAVE-300 ] - 
Upgrade to johnzon 1.2.14
[MEECROWAVE-301 ] - 
Upgrade to tomcat 9.0.54
[MEECROWAVE-302 ] - 
Upgrade to cxf 3.4.5
[MEECROWAVE-303 ] - [jpa] 
extension can leak closed entity managers
[MEECROWAVE-305 ] - 
upgrade various dependencies to latest versions
[MEECROWAVE-306 ] - 
Update to OpenWebBeans-2.0.25

Note that this release requires OWB-2.0.25 which is available in the staging 
repo as posted in the other VOTE thread.


The staging repo can be found at:
https://repository.apache.org/content/repositories/orgapacheopenwebbeans-1078/ 


The source release is available at 
https://repository.apache.org/content/repositories/orgapacheopenwebbeans-1078/org/apache/meecrowave/meecrowave/1.2.13/
 


sha1 is 4619a441a8bce34e55cc2d99281089667d9d7b26


Please VOTE:

[+1] let's ship it!
[+0] meh, don't care
[-1] gnah, there is a ${showstopper}

The VOTE is open for 72h.

txs and LieGrue,
strub

[jira] [Resolved] (MEECROWAVE-305) upgrade various dependencies to latest versions

2021-12-14 Thread Mark Struberg (Jira) 


 [ 
https://issues.apache.org/jira/browse/MEECROWAVE-305?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Mark Struberg resolved MEECROWAVE-305.
--
Resolution: Fixed

> upgrade various dependencies to latest versions
> ---
>
> Key: MEECROWAVE-305
> URL: https://issues.apache.org/jira/browse/MEECROWAVE-305
> Project: Meecrowave
>  Issue Type: Task
>Affects Versions: 1.2.12
>Reporter: Mark Struberg
>Assignee: Mark Struberg
>Priority: Major
> Fix For: 1.2.13
>
>
> there are quite a few deps which might get bumped. E.g. tomcat and deltaspike.



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Updated] (MEECROWAVE-262) Ensure disabling tomcat scanning does not require any other customization

2021-12-14 Thread Mark Struberg (Jira) 


 [ 
https://issues.apache.org/jira/browse/MEECROWAVE-262?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Mark Struberg updated MEECROWAVE-262:
-
Fix Version/s: (was: 1.2.12)

> Ensure disabling tomcat scanning does not require any other customization
> -
>
> Key: MEECROWAVE-262
> URL: https://issues.apache.org/jira/browse/MEECROWAVE-262
> Project: Meecrowave
>  Issue Type: Bug
>Reporter: Romain Manni-Bucau
>Assignee: Romain Manni-Bucau
>Priority: Major
>
> Currently it fails with:
>  
> {code:java}
> java.lang.IllegalStateException: Error starting 
> childjava.lang.IllegalStateException: Error starting child
>  at 
> org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:720)
>  at org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:690) 
> at org.apache.catalina.core.StandardHost.addChild(StandardHost.java:706) at 
> org.apache.meecrowave.Meecrowave.deployWebapp(Meecrowave.java:409) at 
> org.apache.meecrowave.Meecrowave.deployClasspath(Meecrowave.java:190) at 
> org.apache.meecrowave.Meecrowave.deployClasspath(Meecrowave.java:209) at 
> org.apache.meecrowave.Meecrowave.bake(Meecrowave.java:431) at 
> org.apache.meecrowave.Meecrowave.bake(Meecrowave.java:426) at 
> org.apache.meecrowave.MeecrowaveTest.noTomcatScanning(MeecrowaveTest.java:64) 
> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at 
> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) 
> at 
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>  at java.lang.reflect.Method.invoke(Method.java:498) at 
> org.junit.runners.model.FrameworkMethod$1.runReflectiveCall(FrameworkMethod.java:59)
>  at 
> org.junit.internal.runners.model.ReflectiveCallable.run(ReflectiveCallable.java:12)
>  at 
> org.junit.runners.model.FrameworkMethod.invokeExplosively(FrameworkMethod.java:56)
>  at 
> org.junit.internal.runners.statements.InvokeMethod.evaluate(InvokeMethod.java:17)
>  at org.junit.runners.ParentRunner$3.evaluate(ParentRunner.java:306) at 
> org.junit.runners.BlockJUnit4ClassRunner$1.evaluate(BlockJUnit4ClassRunner.java:100)
>  at org.junit.runners.ParentRunner.runLeaf(ParentRunner.java:366) at 
> org.junit.runners.BlockJUnit4ClassRunner.runChild(BlockJUnit4ClassRunner.java:103)
>  at 
> org.junit.runners.BlockJUnit4ClassRunner.runChild(BlockJUnit4ClassRunner.java:63)
>  at org.junit.runners.ParentRunner$4.run(ParentRunner.java:331) at 
> org.junit.runners.ParentRunner$1.schedule(ParentRunner.java:79) at 
> org.junit.runners.ParentRunner.runChildren(ParentRunner.java:329) at 
> org.junit.runners.ParentRunner.access$100(ParentRunner.java:66) at 
> org.junit.runners.ParentRunner$2.evaluate(ParentRunner.java:293) at 
> org.junit.runners.ParentRunner$3.evaluate(ParentRunner.java:306) at 
> org.junit.runners.ParentRunner.run(ParentRunner.java:413) at 
> org.junit.runner.JUnitCore.run(JUnitCore.java:137) at 
> com.intellij.junit4.JUnit4IdeaTestRunner.startRunnerWithArgs(JUnit4IdeaTestRunner.java:68)
>  at 
> com.intellij.rt.junit.IdeaTestRunner$Repeater.startRunnerWithArgs(IdeaTestRunner.java:33)
>  at 
> com.intellij.rt.junit.JUnitStarter.prepareStreamsAndStart(JUnitStarter.java:230)
>  at com.intellij.rt.junit.JUnitStarter.main(JUnitStarter.java:58)Caused by: 
> org.apache.catalina.LifecycleException: Failed to start component 
> [StandardEngine[Tomcat].StandardHost[localhost].[]] at 
> org.apache.catalina.util.LifecycleBase.handleSubClassException(LifecycleBase.java:440)
>  at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:198) at 
> org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:717)
>  ... 33 moreCaused by: java.lang.NullPointerException at 
> org.apache.meecrowave.tomcat.OWBJarScanner.scan(OWBJarScanner.java:52) at 
> org.apache.catalina.startup.ContextConfig.processJarsForWebFragments(ContextConfig.java:2137)
>  at 
> org.apache.catalina.startup.ContextConfig.webConfig(ContextConfig.java:1288) 
> at 
> org.apache.meecrowave.tomcat.MeecrowaveContextConfig.webConfig(MeecrowaveContextConfig.java:96)
>  at 
> org.apache.catalina.startup.ContextConfig.configureStart(ContextConfig.java:985)
>  at 
> org.apache.catalina.startup.ContextConfig.lifecycleEvent(ContextConfig.java:303)
>  at 
> org.apache.meecrowave.tomcat.MeecrowaveContextConfig.lifecycleEvent(MeecrowaveContextConfig.java:170)
>  at 
> org.apache.catalina.util.LifecycleBase.fireLifecycleEvent(LifecycleBase.java:123)
>  at 
> org.apache.catalina.core.StandardContext.startInternal(StandardContext.java:5082)
>  at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:183) ... 
> 34 more
> [09:16:44.112][INFO ][owave-stop-hook][oyote.http11.Http11NioProtocol] 
> Pausing ProtocolHandler ["http-nio-43463"][09:

[jira] [Updated] (MEECROWAVE-289) Add Jakarta version of specs-api bundle

2021-12-14 Thread Mark Struberg (Jira) 


 [ 
https://issues.apache.org/jira/browse/MEECROWAVE-289?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Mark Struberg updated MEECROWAVE-289:
-
Fix Version/s: 1.2.14
   (was: 1.2.12)

> Add Jakarta version of specs-api bundle
> ---
>
> Key: MEECROWAVE-289
> URL: https://issues.apache.org/jira/browse/MEECROWAVE-289
> Project: Meecrowave
>  Issue Type: Improvement
>Affects Versions: 1.2.11
>Reporter: Benjamin Marwell
>Priority: Major
> Fix For: 1.2.14
>
>
> Same what Romain did for -core.
> Added a shaded archive with relocation from javax to jakarta.



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Updated] (MEECROWAVE-262) Ensure disabling tomcat scanning does not require any other customization

2021-12-14 Thread Mark Struberg (Jira) 


 [ 
https://issues.apache.org/jira/browse/MEECROWAVE-262?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Mark Struberg updated MEECROWAVE-262:
-
Fix Version/s: 1.2.14

> Ensure disabling tomcat scanning does not require any other customization
> -
>
> Key: MEECROWAVE-262
> URL: https://issues.apache.org/jira/browse/MEECROWAVE-262
> Project: Meecrowave
>  Issue Type: Bug
>Reporter: Romain Manni-Bucau
>Assignee: Romain Manni-Bucau
>Priority: Major
> Fix For: 1.2.14
>
>
> Currently it fails with:
>  
> {code:java}
> java.lang.IllegalStateException: Error starting 
> childjava.lang.IllegalStateException: Error starting child
>  at 
> org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:720)
>  at org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:690) 
> at org.apache.catalina.core.StandardHost.addChild(StandardHost.java:706) at 
> org.apache.meecrowave.Meecrowave.deployWebapp(Meecrowave.java:409) at 
> org.apache.meecrowave.Meecrowave.deployClasspath(Meecrowave.java:190) at 
> org.apache.meecrowave.Meecrowave.deployClasspath(Meecrowave.java:209) at 
> org.apache.meecrowave.Meecrowave.bake(Meecrowave.java:431) at 
> org.apache.meecrowave.Meecrowave.bake(Meecrowave.java:426) at 
> org.apache.meecrowave.MeecrowaveTest.noTomcatScanning(MeecrowaveTest.java:64) 
> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at 
> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) 
> at 
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
>  at java.lang.reflect.Method.invoke(Method.java:498) at 
> org.junit.runners.model.FrameworkMethod$1.runReflectiveCall(FrameworkMethod.java:59)
>  at 
> org.junit.internal.runners.model.ReflectiveCallable.run(ReflectiveCallable.java:12)
>  at 
> org.junit.runners.model.FrameworkMethod.invokeExplosively(FrameworkMethod.java:56)
>  at 
> org.junit.internal.runners.statements.InvokeMethod.evaluate(InvokeMethod.java:17)
>  at org.junit.runners.ParentRunner$3.evaluate(ParentRunner.java:306) at 
> org.junit.runners.BlockJUnit4ClassRunner$1.evaluate(BlockJUnit4ClassRunner.java:100)
>  at org.junit.runners.ParentRunner.runLeaf(ParentRunner.java:366) at 
> org.junit.runners.BlockJUnit4ClassRunner.runChild(BlockJUnit4ClassRunner.java:103)
>  at 
> org.junit.runners.BlockJUnit4ClassRunner.runChild(BlockJUnit4ClassRunner.java:63)
>  at org.junit.runners.ParentRunner$4.run(ParentRunner.java:331) at 
> org.junit.runners.ParentRunner$1.schedule(ParentRunner.java:79) at 
> org.junit.runners.ParentRunner.runChildren(ParentRunner.java:329) at 
> org.junit.runners.ParentRunner.access$100(ParentRunner.java:66) at 
> org.junit.runners.ParentRunner$2.evaluate(ParentRunner.java:293) at 
> org.junit.runners.ParentRunner$3.evaluate(ParentRunner.java:306) at 
> org.junit.runners.ParentRunner.run(ParentRunner.java:413) at 
> org.junit.runner.JUnitCore.run(JUnitCore.java:137) at 
> com.intellij.junit4.JUnit4IdeaTestRunner.startRunnerWithArgs(JUnit4IdeaTestRunner.java:68)
>  at 
> com.intellij.rt.junit.IdeaTestRunner$Repeater.startRunnerWithArgs(IdeaTestRunner.java:33)
>  at 
> com.intellij.rt.junit.JUnitStarter.prepareStreamsAndStart(JUnitStarter.java:230)
>  at com.intellij.rt.junit.JUnitStarter.main(JUnitStarter.java:58)Caused by: 
> org.apache.catalina.LifecycleException: Failed to start component 
> [StandardEngine[Tomcat].StandardHost[localhost].[]] at 
> org.apache.catalina.util.LifecycleBase.handleSubClassException(LifecycleBase.java:440)
>  at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:198) at 
> org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:717)
>  ... 33 moreCaused by: java.lang.NullPointerException at 
> org.apache.meecrowave.tomcat.OWBJarScanner.scan(OWBJarScanner.java:52) at 
> org.apache.catalina.startup.ContextConfig.processJarsForWebFragments(ContextConfig.java:2137)
>  at 
> org.apache.catalina.startup.ContextConfig.webConfig(ContextConfig.java:1288) 
> at 
> org.apache.meecrowave.tomcat.MeecrowaveContextConfig.webConfig(MeecrowaveContextConfig.java:96)
>  at 
> org.apache.catalina.startup.ContextConfig.configureStart(ContextConfig.java:985)
>  at 
> org.apache.catalina.startup.ContextConfig.lifecycleEvent(ContextConfig.java:303)
>  at 
> org.apache.meecrowave.tomcat.MeecrowaveContextConfig.lifecycleEvent(MeecrowaveContextConfig.java:170)
>  at 
> org.apache.catalina.util.LifecycleBase.fireLifecycleEvent(LifecycleBase.java:123)
>  at 
> org.apache.catalina.core.StandardContext.startInternal(StandardContext.java:5082)
>  at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:183) ... 
> 34 more
> [09:16:44.112][INFO ][owave-stop-hook][oyote.http11.Http11NioProtocol] 
> Pausing ProtocolHandler [

[jira] [Resolved] (MEECROWAVE-261) upgrade to java16 ready versions

2021-12-14 Thread Mark Struberg (Jira) 


 [ 
https://issues.apache.org/jira/browse/MEECROWAVE-261?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Mark Struberg resolved MEECROWAVE-261.
--
Resolution: Fixed

> upgrade to java16 ready versions
> 
>
> Key: MEECROWAVE-261
> URL: https://issues.apache.org/jira/browse/MEECROWAVE-261
> Project: Meecrowave
>  Issue Type: Task
>Affects Versions: 1.2.9
>Reporter: Mark Struberg
>Assignee: Mark Struberg
>Priority: Major
> Fix For: 1.2.13
>
>
> We've got some fixes in the chain which makes it possible to also run MW 
> under the upcoming Java16 release. This includes CXF, OpenWebBeans and 
> OpenJPA plus a few spec updates.



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Updated] (MEECROWAVE-261) upgrade to java16 ready versions

2021-12-14 Thread Mark Struberg (Jira) 


 [ 
https://issues.apache.org/jira/browse/MEECROWAVE-261?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Mark Struberg updated MEECROWAVE-261:
-
Fix Version/s: 1.2.13
   (was: 1.2.12)

> upgrade to java16 ready versions
> 
>
> Key: MEECROWAVE-261
> URL: https://issues.apache.org/jira/browse/MEECROWAVE-261
> Project: Meecrowave
>  Issue Type: Task
>Affects Versions: 1.2.9
>Reporter: Mark Struberg
>Assignee: Mark Struberg
>Priority: Major
> Fix For: 1.2.13
>
>
> We've got some fixes in the chain which makes it possible to also run MW 
> under the upcoming Java16 release. This includes CXF, OpenWebBeans and 
> OpenJPA plus a few spec updates.



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[VOTE] Release Apache OpenWebBeans-2.0.25 - take 2

2021-12-14 Thread Mark Struberg 
Hi lords and ladies!

I'd like to call a VOTE on releasing Apache OpenWebBeans-2.0.25.

The following tickets have been resolved:
Bug

[OWB-1393 ] - OWB stops firing 
ProcessObserverMethods event, when Extension with non system event observer 
exists
[OWB-1395 ] - Jar not scanned 
after 2.0.24 upgrade
[OWB-1397 ] - @Scope scopes are 
NOT Bean defining annotations!
[OWB-1398 ] - Scanner doesnt 
filter JARs by exclusions in all cases
Task

[OWB-1396 ] - upgrade to log4j2 
2.16.0


The staging repo is 
https://repository.apache.org/content/repositories/orgapacheopenwebbeans-1077 


The source jar can be found here:
https://repository.apache.org/content/repositories/orgapacheopenwebbeans-1077/org/apache/openwebbeans/openwebbeans/2.0.25/
 


sha1 is 3136dd1f8515487c6c8d88e77bdaca7c6066680d


Please VOTE:

[+1] let's ship it!
[+0] meh, don't care
[-1] gnah, there is a ${showstopper}

The VOTE is open for 72h.

txs and LieGrue,
strub

[jira] [Resolved] (MEECROWAVE-306) Update to OpenWebBeans-2.0.25

2021-12-14 Thread Mark Struberg (Jira) 


 [ 
https://issues.apache.org/jira/browse/MEECROWAVE-306?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Mark Struberg resolved MEECROWAVE-306.
--
Resolution: Fixed

> Update to OpenWebBeans-2.0.25
> -
>
> Key: MEECROWAVE-306
> URL: https://issues.apache.org/jira/browse/MEECROWAVE-306
> Project: Meecrowave
>  Issue Type: Task
>Affects Versions: 1.2.12
>Reporter: Mark Struberg
>Assignee: Mark Struberg
>Priority: Major
> Fix For: 1.2.13
>
>
> Update to OpenWebBeans-2.0.25



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Updated] (MEECROWAVE-261) upgrade to java16 ready versions

2021-12-14 Thread Mark Struberg (Jira) 


 [ 
https://issues.apache.org/jira/browse/MEECROWAVE-261?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Mark Struberg updated MEECROWAVE-261:
-
Summary: upgrade to java16 ready versions  (was: upgrde to java16 ready 
versions)

> upgrade to java16 ready versions
> 
>
> Key: MEECROWAVE-261
> URL: https://issues.apache.org/jira/browse/MEECROWAVE-261
> Project: Meecrowave
>  Issue Type: Task
>Affects Versions: 1.2.9
>Reporter: Mark Struberg
>Assignee: Mark Struberg
>Priority: Major
> Fix For: 1.2.12
>
>
> We've got some fixes in the chain which makes it possible to also run MW 
> under the upcoming Java16 release. This includes CXF, OpenWebBeans and 
> OpenJPA plus a few spec updates.



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Created] (MEECROWAVE-306) Update to OpenWebBeans-2.0.25

2021-12-14 Thread Mark Struberg (Jira) 
Mark Struberg created MEECROWAVE-306:


 Summary: Update to OpenWebBeans-2.0.25
 Key: MEECROWAVE-306
 URL: https://issues.apache.org/jira/browse/MEECROWAVE-306
 Project: Meecrowave
  Issue Type: Task
Affects Versions: 1.2.12
Reporter: Mark Struberg
Assignee: Mark Struberg
 Fix For: 1.2.13


Update to OpenWebBeans-2.0.25



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Updated] (MEECROWAVE-304) upgrade to log4j2 2.16.0

2021-12-14 Thread Mark Struberg (Jira) 


 [ 
https://issues.apache.org/jira/browse/MEECROWAVE-304?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Mark Struberg updated MEECROWAVE-304:
-
Description: 
Log4j2-2.14.1 contains a CVE related but which allows code injection via JNDI 
in the log string.

This is prevented with more recent Java JDK versions but is now also fixed in 
log4j2 directly.

Please use this MW version or update your installations by replacing the 
log4j2.jars with 2.16.0 manually.

  was:
Log4j2-2.14.1 contains a CVE related but which allows code injection via JNDI 
in the log string.

This is prevented with more recent Java JDK versions but is now also fixed in 
log4j2 directly.

Please use this MW version or update your installations by replacing the 
log4j2.jars with 2.15.0 manually.


> upgrade to log4j2 2.16.0
> 
>
> Key: MEECROWAVE-304
> URL: https://issues.apache.org/jira/browse/MEECROWAVE-304
> Project: Meecrowave
>  Issue Type: Bug
>Affects Versions: 1.2.12
>Reporter: Mark Struberg
>Assignee: Mark Struberg
>Priority: Major
> Fix For: 1.2.13
>
>
> Log4j2-2.14.1 contains a CVE related but which allows code injection via JNDI 
> in the log string.
> This is prevented with more recent Java JDK versions but is now also fixed in 
> log4j2 directly.
> Please use this MW version or update your installations by replacing the 
> log4j2.jars with 2.16.0 manually.



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Updated] (MEECROWAVE-304) upgrade to log4j2 2.16.0

2021-12-14 Thread Mark Struberg (Jira) 


 [ 
https://issues.apache.org/jira/browse/MEECROWAVE-304?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Mark Struberg updated MEECROWAVE-304:
-
Summary: upgrade to log4j2 2.16.0  (was: upgrade to log4j2 2.15.0)

> upgrade to log4j2 2.16.0
> 
>
> Key: MEECROWAVE-304
> URL: https://issues.apache.org/jira/browse/MEECROWAVE-304
> Project: Meecrowave
>  Issue Type: Bug
>Affects Versions: 1.2.12
>Reporter: Mark Struberg
>Assignee: Mark Struberg
>Priority: Major
> Fix For: 1.2.13
>
>
> Log4j2-2.14.1 contains a CVE related but which allows code injection via JNDI 
> in the log string.
> This is prevented with more recent Java JDK versions but is now also fixed in 
> log4j2 directly.
> Please use this MW version or update your installations by replacing the 
> log4j2.jars with 2.15.0 manually.



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Commented] (OWB-1396) upgrade to log4j2 2.16.0

2021-12-14 Thread Mark Struberg (Jira) 


[ 
https://issues.apache.org/jira/browse/OWB-1396?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17459483#comment-17459483
 ] 

Mark Struberg commented on OWB-1396:


Even upgrde to 2.16.0

> upgrade to log4j2 2.16.0
> 
>
> Key: OWB-1396
> URL: https://issues.apache.org/jira/browse/OWB-1396
> Project: OpenWebBeans
>  Issue Type: Task
>  Components: Core
>Affects Versions: 2.0.24
>Reporter: Mark Struberg
>Assignee: Mark Struberg
>Priority: Minor
> Fix For: 2.0.25
>
>
> We gonna bump our log4j 2 version to the CVE free 2.15.0.
> Note that we did not ship this but only used it as a provided compile time 
> dependency for compiling our optional log4j2 support against it! So this is 
> not strictly a CVE related issue but just to make sure we don't get too many 
> reports that we are using an evil version.



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Updated] (OWB-1396) upgrade to log4j2 2.16.0

2021-12-14 Thread Mark Struberg (Jira) 


 [ 
https://issues.apache.org/jira/browse/OWB-1396?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Mark Struberg updated OWB-1396:
---
Summary: upgrade to log4j2 2.16.0  (was: upgrade to log4j2 2.15.0)

> upgrade to log4j2 2.16.0
> 
>
> Key: OWB-1396
> URL: https://issues.apache.org/jira/browse/OWB-1396
> Project: OpenWebBeans
>  Issue Type: Task
>  Components: Core
>Affects Versions: 2.0.24
>Reporter: Mark Struberg
>Assignee: Mark Struberg
>Priority: Minor
> Fix For: 2.0.25
>
>
> We gonna bump our log4j 2 version to the CVE free 2.15.0.
> Note that we did not ship this but only used it as a provided compile time 
> dependency for compiling our optional log4j2 support against it! So this is 
> not strictly a CVE related issue but just to make sure we don't get too many 
> reports that we are using an evil version.



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

Re: [VOTE] [CANCELLED] Release Apache OpenWebBeans-2.0.25

2021-12-14 Thread Mark Struberg 
gonna do the OWB and MW release later tonight.

txs and LieGrue,
strub


> Am 13.12.2021 um 19:26 schrieb Thomas Andraschko 
> :
> 
> Yep, +1 from my side
> 
> Mark Struberg  schrieb am Mo., 13. Dez. 2021,
> 18:09:
> 
>> Hi Thomas!
>> 
>> Did the commit solve your issue at least well enough?
>> Can I run the release steps?
>> 
>> txs and LieGrue,
>> strub
>> 
>>> Am 13.12.2021 um 11:03 schrieb Thomas Andraschko <
>> andraschko.tho...@gmail.com>:
>>> 
>>> not fixed yet, will investigate
>>> 
>>> Am Mo., 13. Dez. 2021 um 10:53 Uhr schrieb Mark Struberg
>>> :
>>> 
 done, can you try it out please?
 
 txs and LieGrue,
 strub
 
 
> Am 13.12.2021 um 09:05 schrieb Thomas Andraschko <
 andraschko.tho...@gmail.com>:
> 
> also PF integration tests are currently not working, please let me know
 if
> i can try a newer snapshot after your fix
> 
> Am Mo., 13. Dez. 2021 um 00:31 Uhr schrieb Mark Struberg
> :
> 
>> I found a glitch with implicit bean archives. gonna do a full retest
>> and
>> ship a new version tomorrow.
>> 
>> LieGrue,
>> strub
>> 
>>> Am 12.12.2021 um 21:21 schrieb Mark Struberg
>> >> :
>>> 
>>> Hi lords and ladies!
>>> 
>>> I'd like to call a VOTE on releasing Apache OpenWebBeans-2.0.25.
>>> 
>>> The following tickets have been resolved:
>>> 
>>> Bug
>>> 
>>> [OWB-1393 ] - OWB
 stops
>> firing ProcessObserverMethods event, when Extension with non system
 event
>> observer exists
>>> [OWB-1395 ] - Jar
>> not
>> scanned after 2.0.24 upgrade
>>> Task
>>> 
>>> [OWB-1396 ] -
>> upgrade
>> to log4j2 2.15.0
>>> 
>>> The staging repo is
>>> 
>> 
 
>> https://repository.apache.org/content/repositories/orgapacheopenwebbeans-1075
>> <
>> 
 
>> https://repository.apache.org/content/repositories/orgapacheopenwebbeans-1075
>>> 
>>> 
>>> The source jar can be found here:
>>> 
>> 
 
>> https://repository.apache.org/content/repositories/orgapacheopenwebbeans-1075/org/apache/openwebbeans/openwebbeans/2.0.25/
>> <
>> 
 
>> https://repository.apache.org/content/repositories/orgapacheopenwebbeans-1075/org/apache/openwebbeans/openwebbeans/2.0.25/
>>> 
>>> sha1 is 7262707440ba70d28ff777e5b1741885441f06f7
>>> 
>>> 
>>> Please VOTE:
>>> 
>>> [+1] let's ship it!
>>> [+0] meh, don't care
>>> [-1] gnah, there is a ${showstopper}
>>> 
>>> The VOTE is open for 72h.
>>> 
>>> txs and LieGrue,
>>> strub
>>> 
>> 
>> 
 
 
>> 
>>