Re: Tomcat upgrade from 9.0.80 to 9.0.81

2023-10-13 Thread Zdeněk Henek 
Thank you.

That is what I was about to ask :). I was using the dev release of 9.0.82.
Our QA is testing our application with Tomcat 9.0.82. So far it looks good.

Regards,
Zdenek Henek

On Thu, Oct 12, 2023 at 9:08 PM Christopher Schultz <
ch...@christopherschultz.net> wrote:

> All,
>
> On 10/11/23 08:06, i...@flyingfischer.ch wrote:
> >
> > Am 11.10.23 um 14:02 schrieb Alexander Veit:
> >>> Caused by: org.apache.http.ConnectionClosedException: Premature end
> >>> of Content-Length delimited message body (expected: 4,999; received:
> >>> 3,040)
> >>> at
> >>> org.apache.http.impl.io
> .ContentLengthInputStream.read(ContentLengthInputStream.java:178)
> >>> at
> >>> io.restassured.internal.util.IOUtils.toByteArray(IOUtils.java:30)
> >>> at
> >>>
> io.restassured.internal.http.GZIPEncoding$GZIPDecompressingEntity.getContent(GZIPEncoding.java:69)
> >>> at
> >>>
> org.apache.http.conn.BasicManagedEntity.getContent(BasicManagedEntity.java:85)
> >>> at
> >>>
> io.restassured.internal.http.HTTPBuilder.parseResponse(HTTPBuilder.java:546)
> >>> at
> >>>
> io.restassured.internal.RequestSpecificationImpl$RestAssuredHttpBuilder.super$2$parseResponse(RequestSpecificationImpl.groovy)
> >>> at sun.reflect.GeneratedMethodAccessor129.invoke(Unknown
> Source)
> >>> at
> >>>
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
> >>> at java.lang.reflect.Method.invoke(Method.java:498)
> >>> at
> >>>
> org.codehaus.groovy.reflection.CachedMethod.invoke(CachedMethod.java:107)
> >>> at groovy.lang.MetaMethod.doMethodInvoke(MetaMethod.java:323)
> >>> at
> >>> groovy.lang.MetaClassImpl.invokeMethod(MetaClassImpl.java:1268)
> >>> at
> >>>
> org.codehaus.groovy.runtime.ScriptBytecodeAdapter.invokeMethodOnSuperN(ScriptBytecodeAdapter.java:144)
> >>>
> >>> Has anyone seen this? I will keep everyone posted after debugging more.
> >>
> >> We have experienced the same problem with Tomcat 8.5.94.
> >>
> >> -
> >> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
> >> For additional commands, e-mail: users-h...@tomcat.apache.org
> >>
> >
> > Seems to be reported multiple times as this is blocking bug for
> > upgrading to the last Tomcat version:
> >
> >
> > https://bz.apache.org/bugzilla/show_bug.cgi?id=67670
>
> We understand that it is blocking, but if you re using h2, especially
> exposed directly to the internet, you should upgrade to the broken
> release and use Konstantin's recommended workarounds.
>
> Both the h2 Rapid Reset and HTTP Trailer / possible request smuggling
> CVEs are both very important.
>
> We apologize for the regressions. Release votes appear to be going well;
> we will have a new set of releases for everyone very shortly.
>
> Although they are not "official" releases, you are welcome to deploy the
> release-candidates themselves. Assuming they are voted stable, they will
> be identical to the upcoming "official" releases.
>
> See the dev@ list [VOTE] emails for where to get those release-candidate
> artifacts.
>
> -chris
>
> -
> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
> For additional commands, e-mail: users-h...@tomcat.apache.org
>
>

Migrating from TC9 to TC10. Can the jakartaConverter log problem cases?

2023-10-13 Thread Martin Knoblauch 
Hi,

 I am in the process of migrating a large application from Tomcat9 to
Tomcat10. While we have fixed the javax->jakarta issues in our code
directly, we still need to specify jakartaConverter=TOMCAT to make the
application work correctly.

My question is now: does the converter log its work somewhere? How to
enable it? Sorry if this is a stupid question.

Thanks in advance
Martin
-- 
--
Martin Knoblauch
email: k n o b i AT knobisoft DOT de
www: http://www.knobisoft.de

[ANN] Apache Tomcat 9.0.82 available

2023-10-13 Thread Rémy Maucherat 
The Apache Tomcat team announces the immediate availability of Apache
Tomcat 9.0.82.

Apache Tomcat 9 is an open source software implementation of the Java
Servlet, JavaServer Pages, Java Unified Expression Language, Java
WebSocket and JASPIC technologies.

Apache Tomcat 9.0.82 is a bugfix and feature release. The notable
changes compared to 9.0.81 include:

- Correct a regression in 9.0.81 that broke the Tomcat JBDC
   connection pool.

- Correct a regression in 9.0.81 that broke HTTP compression.

Along with lots of other bug fixes and improvements.

Please refer to the change log for the complete list of changes:
https://tomcat.apache.org/tomcat-9.0-doc/changelog.html


Downloads:
https://tomcat.apache.org/download-90.cgi

Migration guides from Apache Tomcat 7.x and 8.x:
https://tomcat.apache.org/migration.html

Enjoy!

- The Apache Tomcat team

-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

RE: Tomcat 9.0.81 Degraded ssl performance

2023-10-13 Thread Rathore, Rajendra 
Hi Rémy,

Thanks for sharing the information but by when it is available on tomcat Home 
page https://tomcat.apache.org/? or is it safe to update this tomcat(9.0.82) to 
production version ?

Thanks and Regards,
Rajendra Rathore
9922701491

-Original Message-
From: Rémy Maucherat 
Sent: Friday, October 13, 2023 1:04 PM
To: Tomcat Users List 
Subject: Re: Tomcat 9.0.81 Degraded ssl performance

On Fri, Oct 13, 2023 at 9:25 AM Rathore, Rajendra  wrote:
>
> Hi Team,
>
> Can you please share the release plan for 9.0.82 version, as we are planning 
> to update it?

You can get it at the usual place: https://tomcat.apache.org/download-90.cgi

Rémy

>
> Thanks and Regards,
> Rajendra Rathore
> 9922701491
>
> -Original Message-
> From: i...@flyingfischer.ch 
> Sent: Thursday, October 12, 2023 10:54 AM
> To: users@tomcat.apache.org
> Subject: Re: Tomcat 9.0.81 Degraded ssl performance
>
> Am 12.10.23 um 03:01 schrieb Paul Zepernick:
> > Thank you Chuck
> >
> > Paul
> > 
> > From: Chuck Caldarale 
> > Sent: Wednesday, October 11, 2023 8:54:59 PM
> > To: Tomcat Users List 
> > Subject: Re: Tomcat 9.0.81 Degraded ssl performance
> >
> > NOTICE: This email originated from outside of the organization. Do not 
> > click links or open attachments unless you recognize the sender and know 
> > the content is safe.
> >
> >> On Oct 11, 2023, at 19:44, Paul Zepernick  
> >> wrote:
> >>
> >> Tomcat Version: 9.0.81
> >> OS: Windows Server 2016
> >>
> >> We recently patched one of our QA servers to test 9.0.81 and ran into 
> >> performance issues.  Page loads that normally take 1-2 seconds are now 
> >> taking 50-60 seconds.  We were finally able to narrow the issue down to 
> >> the SSL connector.  Adding an HTTP connector and bypassing ssl resolves 
> >> the performance issue.  We have also tested rolling back to 9.0.80 with 
> >> the same configuration and verified the issue does not exist.
> >>
> > This was due to a regression introduced in 9.0.81, as noted here:
> > https://bz/
> > .a%2F=05%7C01%7Crarathore%40ptc.com%7C3432f780a6f346997a3e08dbc
> > bbedd70%7Cb9921086ff774d0d828acb3381f678e2%7C0%7C0%7C638327792861320
> > 216%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJB
> > TiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C=024RK4UFHLTSrrfI7JO
> > qRlHbMHjvFQN7qvH5hEUIUW4%3D=0
> > pache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D67670=05%7C01%7Crara
> > th
> > ore%40ptc.com%7C1792927bf49742d936b208dbcae3a63e%7Cb9921086ff774d0d8
> > 28
> > acb3381f678e2%7C0%7C0%7C638326851325327468%7CUnknown%7CTWFpbGZsb3d8e
> > yJ
> > WIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C30
> > 00
> > %7C%7C%7C=jJCF0r%2F8vUBpRjc04kWHuGrRiOygwANqpVpfBKXQYEo%3D
> > er
> > ved=0 > F%25
> > 2Fbz.apache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D67670=05%7C01%
> > 7C
> > rarathore%40ptc.com%7C1792927bf49742d936b208dbcae3a63e%7Cb9921086ff7
> > 74
> > d0d828acb3381f678e2%7C0%7C0%7C638326851325483103%7CUnknown%7CTWFpbGZ
> > sb
> > 3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3
> > D%
> > 7C3000%7C%7C%7C=IHAB3t%2B41LTsxAYh6uwFx7sa7gy%2F7Our4b%2Fj56FE
> > LA
> > s%3D=0>
> >
> > The problem has been fixed in 9.0.82 which is currently being voted on; 
> > release will likely occur in another day or two.
> >
> >- Chuck
> >
> > This e-mail, including attachments, may include confidential and/or
> > proprietary information, and may be used only by the person or
> > entity to which it is addressed. If the reader of this e-mail is not
> > the intended recipient or intended recipient's authorized agent, the
> > reader is hereby notified that any dissemination, distribution or
> > copying of this e-mail is prohibited. If you have received this
> > e-mail in error, please notify the sender by replying to this message and 
> > delete this e-mail immediately.
>
> You may also set on the connector as a workaround
>
> compression="off"
>
> This will resolve the issue for the time being without the need to downgrade 
> to an insecure version.
>
>
> Markus
>
>
>
>
> -
> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
> For additional commands, e-mail: users-h...@tomcat.apache.org
>
>
> -
> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
> For additional commands, e-mail: users-h...@tomcat.apache.org
>

-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

Re: Tomcat 9.0.81 Degraded ssl performance

2023-10-13 Thread Rémy Maucherat 
On Fri, Oct 13, 2023 at 9:25 AM Rathore, Rajendra  wrote:
>
> Hi Team,
>
> Can you please share the release plan for 9.0.82 version, as we are planning 
> to update it?

You can get it at the usual place: https://tomcat.apache.org/download-90.cgi

Rémy

>
> Thanks and Regards,
> Rajendra Rathore
> 9922701491
>
> -Original Message-
> From: i...@flyingfischer.ch 
> Sent: Thursday, October 12, 2023 10:54 AM
> To: users@tomcat.apache.org
> Subject: Re: Tomcat 9.0.81 Degraded ssl performance
>
> Am 12.10.23 um 03:01 schrieb Paul Zepernick:
> > Thank you Chuck
> >
> > Paul
> > 
> > From: Chuck Caldarale 
> > Sent: Wednesday, October 11, 2023 8:54:59 PM
> > To: Tomcat Users List 
> > Subject: Re: Tomcat 9.0.81 Degraded ssl performance
> >
> > NOTICE: This email originated from outside of the organization. Do not 
> > click links or open attachments unless you recognize the sender and know 
> > the content is safe.
> >
> >> On Oct 11, 2023, at 19:44, Paul Zepernick  
> >> wrote:
> >>
> >> Tomcat Version: 9.0.81
> >> OS: Windows Server 2016
> >>
> >> We recently patched one of our QA servers to test 9.0.81 and ran into 
> >> performance issues.  Page loads that normally take 1-2 seconds are now 
> >> taking 50-60 seconds.  We were finally able to narrow the issue down to 
> >> the SSL connector.  Adding an HTTP connector and bypassing ssl resolves 
> >> the performance issue.  We have also tested rolling back to 9.0.80 with 
> >> the same configuration and verified the issue does not exist.
> >>
> > This was due to a regression introduced in 9.0.81, as noted here:
> > https://bz.a/
> > pache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D67670=05%7C01%7Crarath
> > ore%40ptc.com%7C1792927bf49742d936b208dbcae3a63e%7Cb9921086ff774d0d828
> > acb3381f678e2%7C0%7C0%7C638326851325327468%7CUnknown%7CTWFpbGZsb3d8eyJ
> > WIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000
> > %7C%7C%7C=jJCF0r%2F8vUBpRjc04kWHuGrRiOygwANqpVpfBKXQYEo%3D
> > ved=0 > 2Fbz.apache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D67670=05%7C01%7C
> > rarathore%40ptc.com%7C1792927bf49742d936b208dbcae3a63e%7Cb9921086ff774
> > d0d828acb3381f678e2%7C0%7C0%7C638326851325483103%7CUnknown%7CTWFpbGZsb
> > 3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%
> > 7C3000%7C%7C%7C=IHAB3t%2B41LTsxAYh6uwFx7sa7gy%2F7Our4b%2Fj56FELA
> > s%3D=0>
> >
> > The problem has been fixed in 9.0.82 which is currently being voted on; 
> > release will likely occur in another day or two.
> >
> >- Chuck
> >
> > This e-mail, including attachments, may include confidential and/or
> > proprietary information, and may be used only by the person or entity
> > to which it is addressed. If the reader of this e-mail is not the
> > intended recipient or intended recipient's authorized agent, the
> > reader is hereby notified that any dissemination, distribution or
> > copying of this e-mail is prohibited. If you have received this e-mail
> > in error, please notify the sender by replying to this message and delete 
> > this e-mail immediately.
>
> You may also set on the connector as a workaround
>
> compression="off"
>
> This will resolve the issue for the time being without the need to downgrade 
> to an insecure version.
>
>
> Markus
>
>
>
>
> -
> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
> For additional commands, e-mail: users-h...@tomcat.apache.org
>
>
> -
> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
> For additional commands, e-mail: users-h...@tomcat.apache.org
>

-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

RE: Tomcat 9.0.81 Degraded ssl performance

2023-10-13 Thread Rathore, Rajendra 
Hi Team,

Can you please share the release plan for 9.0.82 version, as we are planning to 
update it?

Thanks and Regards,
Rajendra Rathore
9922701491

-Original Message-
From: i...@flyingfischer.ch 
Sent: Thursday, October 12, 2023 10:54 AM
To: users@tomcat.apache.org
Subject: Re: Tomcat 9.0.81 Degraded ssl performance

Am 12.10.23 um 03:01 schrieb Paul Zepernick:
> Thank you Chuck
>
> Paul
> 
> From: Chuck Caldarale 
> Sent: Wednesday, October 11, 2023 8:54:59 PM
> To: Tomcat Users List 
> Subject: Re: Tomcat 9.0.81 Degraded ssl performance
>
> NOTICE: This email originated from outside of the organization. Do not click 
> links or open attachments unless you recognize the sender and know the 
> content is safe.
>
>> On Oct 11, 2023, at 19:44, Paul Zepernick  
>> wrote:
>>
>> Tomcat Version: 9.0.81
>> OS: Windows Server 2016
>>
>> We recently patched one of our QA servers to test 9.0.81 and ran into 
>> performance issues.  Page loads that normally take 1-2 seconds are now 
>> taking 50-60 seconds.  We were finally able to narrow the issue down to the 
>> SSL connector.  Adding an HTTP connector and bypassing ssl resolves the 
>> performance issue.  We have also tested rolling back to 9.0.80 with the same 
>> configuration and verified the issue does not exist.
>>
> This was due to a regression introduced in 9.0.81, as noted here:
> https://bz.a/
> pache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D67670=05%7C01%7Crarath
> ore%40ptc.com%7C1792927bf49742d936b208dbcae3a63e%7Cb9921086ff774d0d828
> acb3381f678e2%7C0%7C0%7C638326851325327468%7CUnknown%7CTWFpbGZsb3d8eyJ
> WIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000
> %7C%7C%7C=jJCF0r%2F8vUBpRjc04kWHuGrRiOygwANqpVpfBKXQYEo%3D
> ved=0 2Fbz.apache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D67670=05%7C01%7C
> rarathore%40ptc.com%7C1792927bf49742d936b208dbcae3a63e%7Cb9921086ff774
> d0d828acb3381f678e2%7C0%7C0%7C638326851325483103%7CUnknown%7CTWFpbGZsb
> 3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%
> 7C3000%7C%7C%7C=IHAB3t%2B41LTsxAYh6uwFx7sa7gy%2F7Our4b%2Fj56FELA
> s%3D=0>
>
> The problem has been fixed in 9.0.82 which is currently being voted on; 
> release will likely occur in another day or two.
>
>- Chuck
>
> This e-mail, including attachments, may include confidential and/or
> proprietary information, and may be used only by the person or entity
> to which it is addressed. If the reader of this e-mail is not the
> intended recipient or intended recipient's authorized agent, the
> reader is hereby notified that any dissemination, distribution or
> copying of this e-mail is prohibited. If you have received this e-mail
> in error, please notify the sender by replying to this message and delete 
> this e-mail immediately.

You may also set on the connector as a workaround

compression="off"

This will resolve the issue for the time being without the need to downgrade to 
an insecure version.


Markus




-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org


-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

Re: Keycloak-adapter compatible version

2023-10-13 Thread Navya 
Thanks for the reply
Currently in tomcat 9 I am using   Keycloak Adapter version of 21.1.2
KEYCLOAKSUBDIR = 21.1.2
KEYCLOAKVERSION = keycloak-oidc-tomcat-adapter-$(KEYCLOAKSUBDIR)

On Fri, Oct 13, 2023 at 11:47 AM Bernd Schatz
 wrote:

> Hi Navya,
>
>
> Am 13.10.23 um 07:49 schrieb Navya:
> > I am trying to upgrade the tomcat 9 to 10 version, May I know which
> version
> > of the keycloak adapter is compatible with tomcat10?
>
>
> Which or what kind of ,,keycloak adapter'' do you use with your
> current tomcat9 version ?
>
>
> --
> Greets
> Bernd Schatz
>
>
>
>
> -
> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
> For additional commands, e-mail: users-h...@tomcat.apache.org
>
>

Re: Keycloak-adapter compatible version

2023-10-13 Thread Bernd Schatz 

Hi Navya,


Am 13.10.23 um 07:49 schrieb Navya:

I am trying to upgrade the tomcat 9 to 10 version, May I know which version
of the keycloak adapter is compatible with tomcat10?



Which or what kind of ,,keycloak adapter'' do you use with your
current tomcat9 version ?


--
Greets
   Bernd Schatz




-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org

tomcat10 compatible keycloak-adapter version

2023-10-13 Thread Navya 
Hi,

I am trying to upgrade the tomcat 9 to 10 version, May I know which version
of the keycloak adapter is compatible with tomcat10?

Thanks,
Navya