Re: Run Tomcat as native image
2023年12月19日(火) 1:18 Rémy Maucherat : > > On Mon, Dec 18, 2023 at 1:28 PM Jun Suzuki wrote: > > > > Hello all, > > > > I'm now following the guide of > > https://tomcat.apache.org/tomcat-11.0-doc/graal.html to build Tomcat > > into native image. > > The original thread I posted before has become too long to be easily > > understood, so please let me raise a new thread to clarify. > > I break down the contents from the guide into a step-by-step > > procedure, and I would appreciate it if you can verify the steps and > > check for the issues. > > > > [Environment]: Tomcat 10.0.27, Ant 1.10.14, Maven 3.6.3, GraalVM EE > > 21.x+Java17 > > [Steps]: > > 1. Download the stuffed folder according to the guide. > > 2. Edit the original pom to align with the Tomcat and JDK version: > > > > UTF-8 > > org.apache.catalina.startup.Tomcat > > 10.0.27 > > > > .. > > > > org.apache.maven.plugins > > maven-compiler-plugin > > 3.11.0 > > > > 11 > > > > > > 3. Copy conf and webapps folders from Tomcat to the stuffed folder. > > 4. Edit the logging properties(Deleted all Juli-related statements to > > avoid runtime error) > > handlers = java.util.logging.ConsoleHandler > > .handlers = java.util.logging.ConsoleHandler > > . > > java.util.logging.ConsoleHandler.level = FINE > > # java.util.logging.ConsoleHandler.formatter = > > org.apache.juli.OneLineFormatter > > java.util.logging.ConsoleHandler.encoding = UTF-8 > > 5. Build and packaging. > > mvn package > > ant -Dwebapp.name=ROOT -f webapp-jspc.ant.xml > > ant -Dwebapp.name=manager -f webapp-jspc.ant.xml > > ant -Dwebapp.name=examples -f webapp-jspc.ant.xml > > > > Until here everything was running fine without error. And when I > > executed the next command, error message displayed as below: > > mvn package > > .. > > [INFO] --- maven-compiler-plugin:3.11.0:compile (default-compile) @ > > tomcat-stuffed --- > > [INFO] Changes detected - recompiling the module! :source > > [INFO] Compiling 130 source files with javac [debug release 17] to > > target/classes > > [INFO] > > /home/opc/project/tomcat-native/stuffed/src/main/java/manager/org/apache/jsp/WEB_002dINF/jsp/sessionsList_jsp.java: > > Some input files use unchecked or unsafe operations. > > [INFO] > > /home/opc/project/tomcat-native/stuffed/src/main/java/manager/org/apache/jsp/WEB_002dINF/jsp/sessionsList_jsp.java: > > Recompile with -Xlint:unchecked for details. > > [INFO] Some messages have been simplified; recompile with > > -Xdiags:verbose to get full output > > [INFO] - > > [ERROR] COMPILATION ERROR : > > [INFO] - > > [ERROR] > > /home/opc/project/tomcat-native/stuffed/src/main/java/examples/org/apache/jsp/jsp/tagplugin/choose_jsp.java:[162,210] > > cannot access javax.servlet.jsp.tagext.TagSupport > > class file for javax.servlet.jsp.tagext.TagSupport not found > > [ERROR] > > /home/opc/project/tomcat-native/stuffed/src/main/java/examples/org/apache/jsp/jsp/tagplugin/choose_jsp.java:[165,35] > > cannot access javax.servlet.jsp.tagext.Tag > > class file for javax.servlet.jsp.tagext.Tag not found > > .. > > > > Could you please help to indicate what I have missed from the above steps? > > And I would really appreciate it if you could offer some kind of > > step-by-step hands-on examples about how to practice to run Tomcat as > > native image. > > This seems unrelated, you are apparently trying to run an EE8 webapp > (the examples from Tomcat 9) on a EE10 container. The package names > for the APIs changed to jakarta.*. > > Rémy > Thank you for the comments. To avoid excessive trial and error, is it possible to provide a combination of tested versions that ensure default Tomcat examples running in native image without error? Could you please indicate the version of Tomcat, GraalVM(EE or CE), JDK, maven, ant? I want to use these specific versions you pointed to make sure default Tomcat examples will run normally in term of native image without additional customization. Thank you in advance. Jun - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: JSP EL - How to
Thanks for the reply Chuck Caldarale. I am really confused here, would you be able to provide me with a link to a EL tutorial. Thanks in advance. On 2023-12-18 11:04 a.m., Mark Thomas wrote: Chuck Caldarale -- ArbolOne.ca Using Fire Fox and Thunderbird. ArbolOne is composed of students and volunteers dedicated to providing free services to charitable organizations. ArbolOne on Java Development is in progress [ í ] - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Clarification on CVE-2023-46589
On 18/12/2023 09:50, purtrator wrote: There are many types of things one can do with HTTP Request Smuggling, is this an attack where header theft, cache poisoning or even response queue poisoning is possible? What are the possible damage scenarios? Assume that any attack enabled by request smuggling is possible. And finally I wonder what the restrictions of this issue are Does it work over HTTP/2 or HTTP/1.1 or both? HTTP/1.1 only. The use of separate streams in HTTP/2 for each request prevents this type of attack. Mark - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Run Tomcat as native image
On Mon, Dec 18, 2023 at 1:28 PM Jun Suzuki wrote: > > Hello all, > > I'm now following the guide of > https://tomcat.apache.org/tomcat-11.0-doc/graal.html to build Tomcat > into native image. > The original thread I posted before has become too long to be easily > understood, so please let me raise a new thread to clarify. > I break down the contents from the guide into a step-by-step > procedure, and I would appreciate it if you can verify the steps and > check for the issues. > > [Environment]: Tomcat 10.0.27, Ant 1.10.14, Maven 3.6.3, GraalVM EE > 21.x+Java17 > [Steps]: > 1. Download the stuffed folder according to the guide. > 2. Edit the original pom to align with the Tomcat and JDK version: > > UTF-8 > org.apache.catalina.startup.Tomcat > 10.0.27 > > .. > > org.apache.maven.plugins > maven-compiler-plugin > 3.11.0 > > 11 > > > 3. Copy conf and webapps folders from Tomcat to the stuffed folder. > 4. Edit the logging properties(Deleted all Juli-related statements to > avoid runtime error) > handlers = java.util.logging.ConsoleHandler > .handlers = java.util.logging.ConsoleHandler > . > java.util.logging.ConsoleHandler.level = FINE > # java.util.logging.ConsoleHandler.formatter = > org.apache.juli.OneLineFormatter > java.util.logging.ConsoleHandler.encoding = UTF-8 > 5. Build and packaging. > mvn package > ant -Dwebapp.name=ROOT -f webapp-jspc.ant.xml > ant -Dwebapp.name=manager -f webapp-jspc.ant.xml > ant -Dwebapp.name=examples -f webapp-jspc.ant.xml > > Until here everything was running fine without error. And when I > executed the next command, error message displayed as below: > mvn package > .. > [INFO] --- maven-compiler-plugin:3.11.0:compile (default-compile) @ > tomcat-stuffed --- > [INFO] Changes detected - recompiling the module! :source > [INFO] Compiling 130 source files with javac [debug release 17] to > target/classes > [INFO] > /home/opc/project/tomcat-native/stuffed/src/main/java/manager/org/apache/jsp/WEB_002dINF/jsp/sessionsList_jsp.java: > Some input files use unchecked or unsafe operations. > [INFO] > /home/opc/project/tomcat-native/stuffed/src/main/java/manager/org/apache/jsp/WEB_002dINF/jsp/sessionsList_jsp.java: > Recompile with -Xlint:unchecked for details. > [INFO] Some messages have been simplified; recompile with > -Xdiags:verbose to get full output > [INFO] - > [ERROR] COMPILATION ERROR : > [INFO] - > [ERROR] > /home/opc/project/tomcat-native/stuffed/src/main/java/examples/org/apache/jsp/jsp/tagplugin/choose_jsp.java:[162,210] > cannot access javax.servlet.jsp.tagext.TagSupport > class file for javax.servlet.jsp.tagext.TagSupport not found > [ERROR] > /home/opc/project/tomcat-native/stuffed/src/main/java/examples/org/apache/jsp/jsp/tagplugin/choose_jsp.java:[165,35] > cannot access javax.servlet.jsp.tagext.Tag > class file for javax.servlet.jsp.tagext.Tag not found > .. > > Could you please help to indicate what I have missed from the above steps? > And I would really appreciate it if you could offer some kind of > step-by-step hands-on examples about how to practice to run Tomcat as > native image. This seems unrelated, you are apparently trying to run an EE8 webapp (the examples from Tomcat 9) on a EE10 container. The package names for the APIs changed to jakarta.*. Rémy > > Thank you > Jun > > - > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org > - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: JSP EL - How to
17 Dec 2023 21:31:10 Chuck Caldarale : On Dec 16, 2023, at 23:05, Arbol One wrote: Hello. In my NetBeans IDE, I have a ANT web project, to which I have added under Libraries the JSTL 1.2.7 - jstl-impl.jar and the JSTL 1.2.7 - jstl-api.jar libraries. However, when adding this code : * Hello JSP EL! * Tags are not allowed inside elements. The following should work: Hello JSP EL! - Chuck The JARs you added are for JSTL, not EL. And your example uses neither JSTL nor EL. Confused. Mark - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Tomcat with IIS
18 Dec 2023 05:31:24 Mohammed Ramadan Ghallab : Hello I’m using tomcat and I want to create a virtual directory but I can’t do that if it isn’t possible can you please tell me how to integrate tomcat with IIS https://tomcat.apache.org/connectors-doc/webserver_howto/iis.html Tested and confirmed working with all currently supported (by Microsoft) versions of Windows. And probably working with a lot of the out of support versions too. Mark - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Run Tomcat as native image
Hello all, I'm now following the guide of https://tomcat.apache.org/tomcat-11.0-doc/graal.html to build Tomcat into native image. The original thread I posted before has become too long to be easily understood, so please let me raise a new thread to clarify. I break down the contents from the guide into a step-by-step procedure, and I would appreciate it if you can verify the steps and check for the issues. [Environment]: Tomcat 10.0.27, Ant 1.10.14, Maven 3.6.3, GraalVM EE 21.x+Java17 [Steps]: 1. Download the stuffed folder according to the guide. 2. Edit the original pom to align with the Tomcat and JDK version: UTF-8 org.apache.catalina.startup.Tomcat 10.0.27 .. org.apache.maven.plugins maven-compiler-plugin 3.11.0 11 3. Copy conf and webapps folders from Tomcat to the stuffed folder. 4. Edit the logging properties(Deleted all Juli-related statements to avoid runtime error) handlers = java.util.logging.ConsoleHandler .handlers = java.util.logging.ConsoleHandler . java.util.logging.ConsoleHandler.level = FINE # java.util.logging.ConsoleHandler.formatter = org.apache.juli.OneLineFormatter java.util.logging.ConsoleHandler.encoding = UTF-8 5. Build and packaging. mvn package ant -Dwebapp.name=ROOT -f webapp-jspc.ant.xml ant -Dwebapp.name=manager -f webapp-jspc.ant.xml ant -Dwebapp.name=examples -f webapp-jspc.ant.xml Until here everything was running fine without error. And when I executed the next command, error message displayed as below: mvn package .. [INFO] --- maven-compiler-plugin:3.11.0:compile (default-compile) @ tomcat-stuffed --- [INFO] Changes detected - recompiling the module! :source [INFO] Compiling 130 source files with javac [debug release 17] to target/classes [INFO] /home/opc/project/tomcat-native/stuffed/src/main/java/manager/org/apache/jsp/WEB_002dINF/jsp/sessionsList_jsp.java: Some input files use unchecked or unsafe operations. [INFO] /home/opc/project/tomcat-native/stuffed/src/main/java/manager/org/apache/jsp/WEB_002dINF/jsp/sessionsList_jsp.java: Recompile with -Xlint:unchecked for details. [INFO] Some messages have been simplified; recompile with -Xdiags:verbose to get full output [INFO] - [ERROR] COMPILATION ERROR : [INFO] - [ERROR] /home/opc/project/tomcat-native/stuffed/src/main/java/examples/org/apache/jsp/jsp/tagplugin/choose_jsp.java:[162,210] cannot access javax.servlet.jsp.tagext.TagSupport class file for javax.servlet.jsp.tagext.TagSupport not found [ERROR] /home/opc/project/tomcat-native/stuffed/src/main/java/examples/org/apache/jsp/jsp/tagplugin/choose_jsp.java:[165,35] cannot access javax.servlet.jsp.tagext.Tag class file for javax.servlet.jsp.tagext.Tag not found .. Could you please help to indicate what I have missed from the above steps? And I would really appreciate it if you could offer some kind of step-by-step hands-on examples about how to practice to run Tomcat as native image. Thank you Jun - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Clarification on CVE-2023-46589
There are many types of things one can do with HTTP Request Smuggling, is this an attack where header theft, cache poisoning or even response queue poisoning is possible? What are the possible damage scenarios? And finally I wonder what the restrictions of this issue are Does it work over HTTP/2 or HTTP/1.1 or both? - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
