DO NOT REPLY [Bug 40356] - expressions in XML attributes evaluated in wrong order

2007-01-21 Thread bugzilla 
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG·
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
http://issues.apache.org/bugzilla/show_bug.cgi?id=40356.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND·
INSERTED IN THE BUG DATABASE.

http://issues.apache.org/bugzilla/show_bug.cgi?id=40356


[EMAIL PROTECTED] changed:

   What|Removed |Added

 Status|NEW |RESOLVED
 Resolution||INVALID




--- Additional Comments From [EMAIL PROTECTED]  2007-01-21 07:25 ---
There is nothing in the spec that specifies the evaluation order of the 
attributes.  The container is free to evaluate them in any order that it sees 
fit.  This means that the bug is in your application code, not Tomcat.

-- 
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
--- You are receiving this mail because: ---
You are the assignee for the bug, or are watching the assignee.

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

5.5.21?

2007-01-21 Thread Jess Holle 
I would assume that by this time there is a sufficient collection of 
fixes to 5.5.20 that may well argue for a 5.5.21 release.


I know the Tomcat development community has been largely focused on 6.0 
releases, but as one who will have to freeze upon a 5.5.x release in the 
near future, I'm searching for some visibility into the likelihood of a 
5.5.21 in the near future.


One fix of interest that I am aware of in 5.5.21 is the AJP flush 
packets fix.  We can certainly patch that into our Tomcat, but I'd 
rather be able to move to a 5.5.21 with any other collected fixes as 
well -- and avoid discrepancies between our Tomcat and standard releases 
except where necessary.


--
Jess Holle

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: 5.5.21?

2007-01-21 Thread Peter Rossbach 

+1 to build a release 5.5.21

Regards
Peter



Am 21.01.2007 um 17:43 schrieb Jess Holle:

I would assume that by this time there is a sufficient collection  
of fixes to 5.5.20 that may well argue for a 5.5.21 release.


I know the Tomcat development community has been largely focused on  
6.0 releases, but as one who will have to freeze upon a 5.5.x  
release in the near future, I'm searching for some visibility into  
the likelihood of a 5.5.21 in the near future.


One fix of interest that I am aware of in 5.5.21 is the AJP flush  
packets fix.  We can certainly patch that into our Tomcat, but I'd  
rather be able to move to a 5.5.21 with any other collected fixes  
as well -- and avoid discrepancies between our Tomcat and standard  
releases except where necessary.


--
Jess Holle

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: 5.5.21?

2007-01-21 Thread Wendy Smoak 

On 1/21/07, Jess Holle [EMAIL PROTECTED] wrote:


One fix of interest that I am aware of in 5.5.21 is the AJP flush
packets fix.  We can certainly patch that into our Tomcat, but I'd
rather be able to move to a 5.5.21 with any other collected fixes as
well -- and avoid discrepancies between our Tomcat and standard releases
except where necessary.


I'd like to see a 5.5.21 for the 'missing MailSessionFactory class' fix.

--
Wendy

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Fix for old SAX issue causing bug 40356

2007-01-21 Thread Mark Thomas 
Remy Maucherat wrote:
 Mark Thomas wrote:
 Hi,

 Can anyone remember anything about the SAX bug referred to in this
 commit?
 http://marc.theaimsgroup.com/?l=tomcat-devm=105096762802715w=2
 
 No, but there's nothing in the spec which says the attributes have to be
 called in order. People should avoid crazy hacks, I think :)

Indeed. I looked in the spec but couldn't see anything about order
either. I'll resolve it as won't fix.

Mark


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

DO NOT REPLY [Bug 41428] New: - org.apache.tomcat.dbcp.dbcp.BasicDataSourceFactory URL Parsing Bug

2007-01-21 Thread bugzilla 
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG·
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
http://issues.apache.org/bugzilla/show_bug.cgi?id=41428.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND·
INSERTED IN THE BUG DATABASE.

http://issues.apache.org/bugzilla/show_bug.cgi?id=41428

   Summary: org.apache.tomcat.dbcp.dbcp.BasicDataSourceFactory URL
Parsing Bug
   Product: Tomcat 5
   Version: 5.5.20
  Platform: Other
OS/Version: other
Status: NEW
  Severity: normal
  Priority: P2
 Component: Catalina:Modules
AssignedTo: tomcat-dev@jakarta.apache.org
ReportedBy: [EMAIL PROTECTED]


Hello,

I think there's a bug at the 
org.apache.tomcat.dbcp.dbcp.BasicDataSourceFactory at the time of parsing a 
certain MySQL url. When the connection url contains the sessionVariables 
property alone, everything works ok. However, when other properties are 
specified in addition to sessionVariables, then an Exception is thrown when 
trying to establish a new connection. If the same url is specified using a 
Connection object inside my code, then NO error is thrown. It only happens 
when that same url is set at the Resource config of the server.xml file. I 
include some examples to reproduce the error:

Everything goes fine when this is the config of the resource (note that the 
important part is the url):

Resource name=jdbc/starnum auth=Container type=javax.sql.DataSource
 factory=org.apache.tomcat.dbcp.dbcp.BasicDataSourceFactory
 maxActive=15
 maxIdle=5
 validationQuery=SELECT 1
 testOnBorrow=false
 testWhileIdle=true
 timeBetweenEvictionRunsMillis=1
 minEvictableIdleTimeMillis=6
 username=user
 password=pass
 driverClassName=com.mysql.jdbc.Driver
 url=jdbc:mysql://localhost:3316/db?
[EMAIL PROTECTED]'0',@version='1.0';
/

However, if we set this other url, an error will be printed on the tomcat's 
log file:

jdbc:mysql://localhost:3316/db?
transformedBitIsBoolean=true[EMAIL PROTECTED]
te='0',@version='1.0';

It seems to be a bug when sessionVariables is specified in addition to other
properties, like transformedBitIsBoolean in the previous example.

As I mentioned above, when this same url is set using a Connection object 
inside my application, no Exception is thrown, so I think the bug is located 
at the BasicDataSourceFactory class.

Thank you!

-- 
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
--- You are receiving this mail because: ---
You are the assignee for the bug, or are watching the assignee.

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

DO NOT REPLY [Bug 37869] - Cannot obtain client certificate with SSL / client certificate authentication using APR components

2007-01-21 Thread bugzilla 
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG·
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
http://issues.apache.org/bugzilla/show_bug.cgi?id=37869.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND·
INSERTED IN THE BUG DATABASE.

http://issues.apache.org/bugzilla/show_bug.cgi?id=37869





--- Additional Comments From [EMAIL PROTECTED]  2007-01-21 15:49 ---
(From update of attachment 19425)
Index: 
connectors/http11/src/java/org/apache/coyote/http11/Http11AprProcessor.java
===
--- Http11AprProcessor.java(revision 496746)
+++ Http11AprProcessor.java(working copy)
@@ -1095,16 +1095,29 @@
 (AprEndpoint.CIPHER_SUITE_KEY, sslO);
 }
 // Client certificate chain if present
+//
+// CP: does not include client certificate, only CA 
certificates
+// see documentation of SSL_get_peer_cert_chain() in 
openssl and sslinfo.c in native APR code
+// SSL_get_peer_cert_chain() returns a pointer to 
STACKOF(X509) certificates forming the certificate chain of the peer.
+// If called on the client side, the stack also contains 
the peer's certificate;
+// if called on the server side, the peer's certificate 
must be obtained separately using SSL_get_peer_certificate(3).
+// If the peer did not present a certificate, NULL is 
returned.
+//
 int certLength = SSLSocket.getInfoI(socket, 
 SSL.SSL_INFO_CLIENT_CERT_CHAIN);
+// retrieve client certificate
+byte[] clientCert = SSLSocket.getInfoB(socket, 
SSL.SSL_INFO_CLIENT_CERT);
 X509Certificate[] certs = null;
-if (certLength  0) {
-certs = new X509Certificate[certLength];
+if (clientCert != null) {
+certs = new X509Certificate[certLength+1]; // add one 
for the client certificate
+
+CertificateFactory cf =
+CertificateFactory.getInstance(X.509);
+
+certs[0] = (X509Certificate) 
cf.generateCertificate(new ByteArrayInputStream(clientCert));
+
 for (int i = 0; i  certLength; i++) {
 byte[] data = SSLSocket.getInfoB(socket, 
 SSL.SSL_INFO_CLIENT_CERT_CHAIN + i);
-CertificateFactory cf =
-CertificateFactory.getInstance(X.509);
-ByteArrayInputStream stream = new 
ByteArrayInputStream(data);
-certs[i] = (X509Certificate) 
cf.generateCertificate(stream);
+certs[i+1] = (X509Certificate) 
cf.generateCertificate(new ByteArrayInputStream(data));
 }
 }
 if (certs != null) {
@@ -1142,16 +1155,29 @@
 // Renegociate certificates
 SSLSocket.renegotiate(socket);
 // Client certificate chain if present
+//
+// CP: does not include client certificate, only CA 
certificates
+// see documentation of SSL_get_peer_cert_chain() in 
openssl and sslinfo.c in native APR code
+// SSL_get_peer_cert_chain() returns a pointer to 
STACKOF(X509) certificates forming the certificate chain of the peer.
+// If called on the client side, the stack also contains 
the peer's certificate;
+// if called on the server side, the peer's certificate 
must be obtained separately using SSL_get_peer_certificate(3).
+// If the peer did not present a certificate, NULL is 
returned.
+//
 int certLength = SSLSocket.getInfoI(socket, 
 SSL.SSL_INFO_CLIENT_CERT_CHAIN);
+// retrieve client certificate
+byte[] clientCert = SSLSocket.getInfoB(socket, 
SSL.SSL_INFO_CLIENT_CERT);
 X509Certificate[] certs = null;
-if (certLength  0) {
-certs = new X509Certificate[certLength];
+if (clientCert != null) {
+certs = new X509Certificate[certLength+1]; // add one 
for the client certificate
+
+CertificateFactory cf =
+CertificateFactory.getInstance(X.509);
+
+certs[0] = (X509Certificate) 
cf.generateCertificate(new ByteArrayInputStream(clientCert));
+
 for (int i = 0; i  certLength; i++) {
 byte[] data = SSLSocket.getInfoB(socket,

DO NOT REPLY [Bug 40220] - Order of jar loading affects packaged resources

2007-01-21 Thread bugzilla 
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG·
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
http://issues.apache.org/bugzilla/show_bug.cgi?id=40220.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND·
INSERTED IN THE BUG DATABASE.

http://issues.apache.org/bugzilla/show_bug.cgi?id=40220


[EMAIL PROTECTED] changed:

   What|Removed |Added

 Status|NEW |RESOLVED
 Resolution||WORKSFORME




--- Additional Comments From [EMAIL PROTECTED]  2007-01-21 17:16 ---
I have spent some time trying to reproduce this based on the description above
and I can't. I have also reviewed the Tomcat code I believe to be relevant and I
can't see anything that would cause the behaviour described.

If you still see this issue please re-open this bug report and provide the
simplest possible test war that demonstrates it on a vanilla Tomcat install.

Unless a security manager is present and the jars are sealed, it is legal for
packages to be split across multiple jars.

-- 
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
--- You are receiving this mail because: ---
You are the assignee for the bug, or are watching the assignee.

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Fix for old SAX issue causing bug 40356

2007-01-21 Thread Dies Koper 

Hello Mark,

Thank you, and William  Remy for looking at this issue.

The JSP in question has several expressions. I thought the following in 
the JSP 2.0 spec (section JSP.1.12.3) would apply:


  Expressions are evaluated left-to-right in the JSP page.

This does not apply when expressions are used in attributes?

#In the next sentence it does go as far as implicitly noting the order 
within a tag that the expressions are evaluated in, but as I have only 
one expression per attribute, I think it does not apply.


  If an expression appears in more than one run-time attribute, they 
are evaluated left-to-right in the tag.


Regards,
Dies


Mark Thomas wrote:

Remy Maucherat wrote:

Mark Thomas wrote:

Hi,

Can anyone remember anything about the SAX bug referred to in this
commit?
http://marc.theaimsgroup.com/?l=tomcat-devm=105096762802715w=2

No, but there's nothing in the spec which says the attributes have to be
called in order. People should avoid crazy hacks, I think :)


Indeed. I looked in the spec but couldn't see anything about order
either. I'll resolve it as won't fix.

Mark


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]



-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

DO NOT REPLY [Bug 38198] - When using context xml definitions standalone file, tomcat wrongly uses the file name instead the context path definition

2007-01-21 Thread bugzilla 
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG·
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
http://issues.apache.org/bugzilla/show_bug.cgi?id=38198.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND·
INSERTED IN THE BUG DATABASE.

http://issues.apache.org/bugzilla/show_bug.cgi?id=38198





--- Additional Comments From [EMAIL PROTECTED]  2007-01-21 17:50 ---
(From update of attachment 17409)
--- container/webapps/docs/config/host.xml 2006-01-03 16:15:14.0 
+0100
+++ /home/mkaspar/prac/host.xml2006-01-13 09:16:53.0 +0100
@@ -272,7 +272,9 @@
 attribute of this codelt;Contextgt;/code element will typically
 be the absolute pathname to a web application directory, or the
 absolute pathname of a web application archive (WAR) file (which
-will not be expanded)./li
+will not be expanded). The path attribute wil be automatically set to
+its filename where slashes (/) are encoded as hashes (#) so
+any#path.xml will result in path=/any/path)./li
 liAny web application archive file within the application base (appBase)
 directory that does not have a corresponding
 directory of the same name (without the .war extension) will be


-- 
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
--- You are receiving this mail because: ---
You are the assignee for the bug, or are watching the assignee.

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

DO NOT REPLY [Bug 40214] - web.xml error-page malfunctions for jsf requests

2007-01-21 Thread bugzilla 
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG·
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
http://issues.apache.org/bugzilla/show_bug.cgi?id=40214.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND·
INSERTED IN THE BUG DATABASE.

http://issues.apache.org/bugzilla/show_bug.cgi?id=40214


[EMAIL PROTECTED] changed:

   What|Removed |Added

 Status|NEEDINFO|RESOLVED
 Resolution||INVALID




--- Additional Comments From [EMAIL PROTECTED]  2007-01-21 17:56 ---
This doesn't happen with a vanilla Tomcat install. Looking at the stack trace it
looks like the FacesServlet is getting involved, potentially in an inappropriate
manner. This looks like a JSF issue.

-- 
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
--- You are receiving this mail because: ---
You are the assignee for the bug, or are watching the assignee.

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Fix for old SAX issue causing bug 40356

2007-01-21 Thread Bill Barker 

Dies Koper [EMAIL PROTECTED] wrote in message 
news:[EMAIL PROTECTED]
 Hello Mark,

 Thank you, and William  Remy for looking at this issue.

 The JSP in question has several expressions. I thought the following in 
 the JSP 2.0 spec (section JSP.1.12.3) would apply:

   Expressions are evaluated left-to-right in the JSP page.

 This does not apply when expressions are used in attributes?


well, no. however section 1.14 may apply.
spec-quote version=2.0 spec=jsp section=1.14 reason=ambiguous
The interpretation of all actions start by evaluating the values given to 
its attributes left to right, and assigning the values to the attributes.
/spec-quote

A quick search didn't turn up much, but my recolection is that SAX isn't 
required to be order-preserving on attributes.

 #In the next sentence it does go as far as implicitly noting the order 
 within a tag that the expressions are evaluated in, but as I have only one 
 expression per attribute, I think it does not apply.

   If an expression appears in more than one run-time attribute, they are 
 evaluated left-to-right in the tag.

 Regards,
 Dies


 Mark Thomas wrote:
 Remy Maucherat wrote:
 Mark Thomas wrote:
 Hi,

 Can anyone remember anything about the SAX bug referred to in this
 commit?
 http://marc.theaimsgroup.com/?l=tomcat-devm=105096762802715w=2
 No, but there's nothing in the spec which says the attributes have to be
 called in order. People should avoid crazy hacks, I think :)

 Indeed. I looked in the spec but couldn't see anything about order
 either. I'll resolve it as won't fix.

 Mark


 -
 To unsubscribe, e-mail: [EMAIL PROTECTED]
 For additional commands, e-mail: [EMAIL PROTECTED] 




-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Bug report for Tomcat 3 [2007/01/21]

2007-01-21 Thread bugzilla 
+---+
| Bugzilla Bug ID   |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned|
| | OPN=ReopenedVER=Verified(Skipped Closed/Resolved)   |
| |   +-+
| |   | Severity: BLK=Blocker CRI=CriticalMAJ=Major |
| |   |   MIN=Minor   NOR=Normal  ENH=Enhancement   |
| |   |   +-+
| |   |   | Date Posted |
| |   |   |  +--+
| |   |   |  | Description  |
| |   |   |  |  |
| 2350|Ver|Nor|2001-06-27|ServletConfig.getInitParameter() requires url-patt|
| 5331|Ass|Nor|2001-12-09|getPathInfo vs URL normalization  |
| 6027|Inf|Maj|2002-01-25|Tomcat  Automatically shuts down as service   |
| 6488|Ver|Maj|2002-02-15|Error: 304. Apparent bug in default ErrorHandler c|
| 7785|Inf|Blk|2002-04-06|tomcat bug in context reloading   |
| 7863|Inf|Maj|2002-04-09|I have a problem when running Tomcat with IIS |
| 8187|Inf|Cri|2002-04-17|Errors when Tomcat used with MS Access database   |
| 9737|Ver|Nor|2002-06-10|ArrayIndexOutOfBoundsException when sending just p|
|10047|Ass|Cri|2002-06-20|IllegalStateException |
|10406|Ass|Cri|2002-07-02|IllegalStateException |
|11087|Inf|Blk|2002-07-23|IllegalStateException |
|12156|Inf|Cri|2002-08-29|Apache and Tomcat 3.3.1 Interworking problem  |
|16363|Ass|Cri|2003-01-23|Stack Overflow accessing compiled JSP - Tomcat 3.2|
|39250|Inf|Cri|2006-04-07|Tomcat 3.2.1 + JDK 1.4|
+-+---+---+--+--+
| Total   14 bugs   |
+---+

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Bug report for Watchdog [2007/01/21]

2007-01-21 Thread bugzilla 
+---+
| Bugzilla Bug ID   |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned|
| | OPN=ReopenedVER=Verified(Skipped Closed/Resolved)   |
| |   +-+
| |   | Severity: BLK=Blocker CRI=CriticalMAJ=Major |
| |   |   MIN=Minor   NOR=Normal  ENH=Enhancement   |
| |   |   +-+
| |   |   | Date Posted |
| |   |   |  +--+
| |   |   |  | Description  |
| |   |   |  |  |
|  278|Unc|Nor|2000-12-04|Bug in GetParameterValuesTestServlet.java file Bug|
|  279|Unc|Nor|2000-12-04|Logical Error in GetParameterValuesTestServlet Bug|
|  469|Unc|Nor|2001-01-17|in example-taglib.tld urn should be uri BugRat|
|  470|Unc|Nor|2001-01-17|FAIL positiveForward.jsp and positiveInclude.jsp B|
| 9634|New|Enh|2002-06-05|No tests exist for ServletContext.getResourcePaths|
|10703|New|Enh|2002-07-11|Need to test getRequestURI after RequestDispatcher|
|11336|New|Enh|2002-07-31|Test wrapped path methods with RD.foward()|
|11663|New|Maj|2002-08-13|JSP precompile tests rely on Jasper specific behav|
|11664|New|Maj|2002-08-13|A sweep is needed of all Watchdog 4.0 tag librarie|
|11665|New|Maj|2002-08-13|ServletToJSPErrorPageTest and ServletToServletErro|
|11666|New|Maj|2002-08-13|SetBufferSize_1TestServlet is invalid.|
|14004|New|Maj|2002-10-28|Incorrent behaviour of all attribute-related lifec|
|15504|New|Nor|2002-12-18|JSP positiveGetValues test relies on order preserv|
|24649|New|Nor|2003-11-12|getRemoteHost fails when agent has uppercase chara|
|29398|New|Nor|2004-06-04|Update site and note current status   |
+-+---+---+--+--+
| Total   15 bugs   |
+---+

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Bug report for Tomcat 4 [2007/01/21]

2007-01-21 Thread bugzilla 
+---+
| Bugzilla Bug ID   |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned|
| | OPN=ReopenedVER=Verified(Skipped Closed/Resolved)   |
| |   +-+
| |   | Severity: BLK=Blocker CRI=CriticalMAJ=Major |
| |   |   MIN=Minor   NOR=Normal  ENH=Enhancement   |
| |   |   +-+
| |   |   | Date Posted |
| |   |   |  +--+
| |   |   |  | Description  |
| |   |   |  |  |
| 3839|Opn|Enh|2001-09-26|Problem bookmarking login page|
| 4227|Opn|Enh|2001-10-17|Invalid CGI path  |
| 5329|New|Enh|2001-12-08|NT Service exits startup before Tomcat is finished|
| 5795|New|Enh|2002-01-10|Catalina Shutdown relies on localhost causing prob|
| 5829|New|Enh|2002-01-13|StandardManager needs to cope with sessions throwi|
| 5985|New|Enh|2002-01-23|Tomcat should perform a more restrictive validatio|
| 6600|Opn|Enh|2002-02-20|enodeURL adds 'jsession' when 'isRequestedSessionI|
| 6614|New|Enh|2002-02-21|Have Bootstrap and StandardClassLoader use the sam|
| 6671|New|Enh|2002-02-25|Simple custom tag example uses old declaration sty|
| 7043|New|Enh|2002-03-12|database user and password for JDBC Based Store   |
| 7374|New|Enh|2002-03-22|Apache Tomcat/4.0.1 message on standard output|
| 7676|New|Enh|2002-04-02|Allow name property to use match experssions in h|
| 7723|New|Enh|2002-04-03|[patch] additional factory for org.apache.naming.f|
| 8026|New|Enh|2002-04-12|Exceptions in StandardHostDeployer.addChild are lo|
| 8323|New|Enh|2002-04-20|No support for running the 64 bit JVM |
| 8343|New|Enh|2002-04-21|adding a absorber logger class to org.apache.ca|
| 8441|New|Enh|2002-04-23|Command line files for NetWare|
| 8705|New|Enh|2002-05-01|SessionListener should extend EventListener   |
| 8744|New|Enh|2002-05-02|No way to configure/extend runtime classloaders.  |
| 8776|New|Enh|2002-05-03|The session url encoding under somce circumstances|
| 9227|New|Enh|2002-05-19|Allow an empty value of a pathname in the Standard|
| 9456|New|Enh|2002-05-28|Problem saving server.xml file: invalid XML markup|
| 9511|New|Enh|2002-05-30|Object instantiation optimization in StandardSessi|
| 9629|New|Enh|2002-06-05|Fix ServletContext.getResourcePaths to match spec |
| 9745|New|Enh|2002-06-10|extern cache mgt bug for conditionally dynamic pag|
| 9852|New|Enh|2002-06-13|Odd Digest and Realm Behaviour|
|10021|New|Enh|2002-06-19|Include upgrade option in installer   |
|10060|New|Enh|2002-06-20|Make the common and shared class loaders look in c|
|10120|New|Enh|2002-06-21|Custom realm and shared instalation.  |
|10225|New|Enh|2002-06-25|ANT Tasks Error Situation |
|10335|New|Enh|2002-06-28|[RFE,patch] Make JAASRealm more flexible  |
|10457|New|Enh|2002-07-03|Patch submission for DefaultServlet/WebdavServlet |
|10526|New|Enh|2002-07-06|Authenticators do not always cache the Principal  |
|10565|Opn|Enh|2002-07-08|shutdown hook problem:  java.lang.NoClassDefFoundE|
|10691|Ass|Enh|2002-07-11|staring tomcat gives indication that tomcat is sta|
|10699|New|Enh|2002-07-11|Apache SOAP 2.3 will not operate properly |
|10972|New|Enh|2002-07-19|Realm without className in server.xml produces N|
|11069|Opn|Enh|2002-07-23|Tomcat not flag error if tld is outside of /WEB-IN|
|11129|New|Enh|2002-07-24|New valve for putting the sessionIDs in the reques|
|11248|New|Enh|2002-07-29|DefaultServlet doesn't send expires header|
|11754|Opn|Enh|2002-08-15|Synchronous shutdown script - shutdown.sh should w|
|12069|New|Enh|2002-08-27|Creation of more HttpSession objects for one previ|
|12658|New|Enh|2002-09-15|a proxy host and port at the Host element level |
|12766|New|Enh|2002-09-18|Tomcat should use tld files in /WEB-INF/ over vers|
|13309|Opn|Enh|2002-10-04|Catalina calls System.exit()  |
|13634|New|Enh|2002-10-15|Allowing system properties to be substituted in co|
|13689|Opn|Enh|2002-10-16|Classloader paths for 'Common' classes and librari|
|13731|New|Enh|2002-10-17|Final request, response, session and other variabl|
|13941|New|Enh|2002-10-24|reload is VERY slow   |
|13965|New|Enh|2002-10-25|Catalina.sh correction request for Tru64 Unix |
|14097|New|Enh|2002-10-30|hardcoded registry value for vm lets tomcat servic|

Bug report for Tomcat 5 [2007/01/21]

2007-01-21 Thread bugzilla 
+---+
| Bugzilla Bug ID   |
| +-+
| | Status: UNC=Unconfirmed NEW=New ASS=Assigned|
| | OPN=ReopenedVER=Verified(Skipped Closed/Resolved)   |
| |   +-+
| |   | Severity: BLK=Blocker CRI=CriticalMAJ=Major |
| |   |   MIN=Minor   NOR=Normal  ENH=Enhancement   |
| |   |   +-+
| |   |   | Date Posted |
| |   |   |  +--+
| |   |   |  | Description  |
| |   |   |  |  |
|22679|Ver|Enh|2003-08-24|how to access ssl session ID out of tomcat to prev|
|28039|New|Enh|2004-03-30|Cluster Support for SingleSignOn  |
|28634|Ass|Enh|2004-04-27|Extend StandardManager/StandardSession for DeltaMa|
|29160|Ver|Enh|2004-05-23|precompile problem: _jspx_meth_* (javax.servlet.js|
|29494|Inf|Enh|2004-06-10|No way to set PATH when running as a service on Wi|
|30241|Ver|Enh|2004-07-21|Enhance build script to use branch argument when c|
|33262|Inf|Enh|2005-01-27|Service Manager autostart should check for adminis|
|33453|Opn|Enh|2005-02-08|Jasper should recompile JSP files whose datestamps|
|33650|Inf|Enh|2005-02-19|Jasper performance for multiple files processing  |
|33671|Opn|Enh|2005-02-21|Manual Windows service installation with custom na|
|34801|New|Enh|2005-05-08|PATCH: CGIServlet does not terminate child after a|
|34805|Ass|Enh|2005-05-08|warn about invalid security constraint url pattern|
|34868|Ass|Enh|2005-05-11|allow to register a trust store for a session that|
|35054|Inf|Enh|2005-05-25|warn if appBase is not existing as a File or direc|
|35079|Inf|Enh|2005-05-26|Should be able to specify DNS lookup timeout  |
|35229|Opn|Enh|2005-06-05|alert user about expired certificates in client ce|
|35552|Inf|Enh|2005-06-29|JMS destination under Context   |
|35746|Inf|Enh|2005-07-14|session manager should be immune to system clock t|
|35765|New|Enh|2005-07-16|make the SSL cipher config in server.xml fail safe|
|35869|Inf|Enh|2005-07-26|Can't run as a service on Windows Server 2003 64-B|
|36133|Inf|Enh|2005-08-10|Support JSS SSL implementation|
|36169|New|Enh|2005-08-12|[PATCH] Enable chunked encoding for IIS JK connect|
|36362|New|Enh|2005-08-25|missing check for Java reserved keywords in tag fi|
|36365|Opn|Nor|2005-08-26|IIS5.1-isapi_redirector.dll (1.2.14) plugin issue |
|36540|Inf|Enh|2005-09-07|pooled cluster replication does not seem ensure sy|
|36569|Inf|Enh|2005-09-09|Redirects produce illegal URL's   |
|36630|Opn|Maj|2005-09-13|Error instantiating servlet class |
|36837|Inf|Enh|2005-09-28|Looking for ProxyHandler implementation of Http re|
|36922|Inf|Enh|2005-10-04|setup.sh file mis-advertised and missing  |
|36923|New|Nor|2005-10-05|Deactivated EL expressions are not parsed for jsp |
|37018|Ass|Enh|2005-10-11|Document how to use tomcat-SSL with a pkcs11 token|
|37072|New|Nor|2005-10-13|Encoding mismatch in error condition  |
|37084|Opn|   |2005-10-14|JspC from ant fails on JSPs that use custom taglib|
|37138|New|Enh|2005-10-18|Allow to specify a security provider (priority lis|
|37326|Ass|Nor|2005-11-01|No error reported when jsp:include has non-exist|
|37334|Inf|Enh|2005-11-02|Realm digest property not aligned with the adminis|
|37449|Opn|Enh|2005-11-10|Two UserDatabaseRealm break manager user  |
|37485|Inf|Enh|2005-11-14|I'd like to run init SQL after JDBC Connection cre|
|37498|Inf|Nor|2005-11-14|[PATCH] NPE in org.apache.catalina.core.ContainerB|
|37515|Inf|Nor|2005-11-15|smap not generated by JspC when used from Ant for |
|37627|Opn|Nor|2005-11-24|Slow and incomplete dynamic content generation aft|
|37674|New|Nor|2005-11-29|Windows EXE fails to pass spaces in JVMTI -javaage|
|37785|Inf|Nor|2005-12-05|Changing startup type via Tomcat Monitor does not |
|37797|Inf|Maj|2005-12-05|Configure Tomcat utility truncates classpath to 96|
|37822|Opn|Nor|2005-12-07|WebappClassLoader interfering with Catalina core c|
|37834|Ass|Nor|2005-12-08|compressableMimeTypes not working properly|
|37847|Ass|Enh|2005-12-09|Allow User To Optionally Specify Catalina Output F|
|37869|Opn|Nor|2005-12-12|Cannot obtain client certificate with SSL / client|
|37918|Ass|Nor|2005-12-15|EL cannot find valid getter from object when using|
|37956|Opn|Enh|2005-12-18|Make 'set static fields to null' ClassLoader leak |
|37984|New|Nor|2005-12-21|JNDIRealm.java not able to handle MD5 password|