RE: Tomcat deploying war file for every restart on Red Hat Linux 8.6
Hi Mark, I tested on VM, storage is in Local. I will try to test in Ubuntu and provide update. Problem observed on Rethat and Rocky Linux 8.6, but not on Redhat 8.8, 8.9 and 8.10 Thanks Channa -Original Message- From: Mark Thomas Sent: Thursday, August 8, 2024 2:29 PM To: users@tomcat.apache.org Subject: Re: Tomcat deploying war file for every restart on Red Hat Linux 8.6 On 08/08/2024 08:48, Channa Puchakayala wrote: > Hi All, > > Any suggestions or help on this ? What file system is being used? Is this a physical box or a VM? Is the storage local, NAS etc? > shall I create defect ? Unless you can provide the steps to reproduce this issue on Ubuntu or another free OS (RHEL requires real money to test with) any such issue is likely to get resolved as WORKSFORME. That no-one else is reporting this issue strongly suggests an environmental issue rather than a Tomcat bug. Mark > > Thanks > > Channa > > *From:* Channa Puchakayala <mailto:channa.puchakay...@broadcom.com>> > *Sent:* Monday, August 5, 2024 1:29 PM > *To:* 'Tomcat Users List' <mailto:users@tomcat.apache.org>> > *Cc:* 'Narayanarao Yenduri' <mailto:narayanarao.yend...@broadcom.com>>; 'Naga Naveen Chevendra' > <mailto:naganaveen.cheven...@broadcom.com>>; 'Balamurali Krishna Ippili' > <mailto:balamurali.ipp...@broadcom.com>> > *Subject:* RE: Tomcat deploying war file for every restart on Red Hat > Linux 8.6 > > Hi Tomcat Team, > > Thanks to all for helping on this. > > - We set the "*autoDeploy="false*" *in server.xml* already, even > though it is replaying war without any changes in war file > > - Here main issue is, *war-tracker* file doesn't get the same modified > date as the war file. > > *@Chris,* > > Please find the requested data below. > > -As per above screenshot, it is clear that *war-tracker* file doesn't > get the same modified date as the war file. > > -We don’t have local compiled tomcat to print custom logs. > > *Note:* > > I tested this (ca-nim-sm.war) with my application “*Spectrum*” and > also without my application, both cases result is same i.e. > redeploying war for every restart, that is the reason log message and > screenshot showing different path in my previous mail. > > Regards > > Channa > > -Original Message- > From: Christopher Schultz <mailto:ch...@christopherschultz.net>> > Sent: Saturday, August 3, 2024 12:00 AM > To: users@tomcat.apache.org <mailto:users@tomcat.apache.org> > Subject: Re: Tomcat deploying war file for every restart on Red Hat > Linux 8.6 > > Channa, > > On 8/2/24 05:30, Channa Puchakayala wrote: > > > Hi Tomcat Team, > > > > > > Issue : Apache Tomcat deploying war file for every restart on Red > Hat > > > Linux 8.6 even though there are no changes in war file. > > > > > > Observations: > > > > > > -war-tracker file timestamp is setting with tomcat restart time > which > > > is not matched with original war file timestamp, so tomcat deleting > > > existing ca-nim-sm folder and extracting war again for every restart. > > > > > > -Tomcat log message is below > > > > > > = > > > > > > Line 13640: 2024-07-26 06:41:46,035 [main] INFO > > > org.apache.catalina.startup.ExpandWar - An expanded directory > > > [/usr/Spectrum/tomcat/webapps/*ca-nim-sm*] was found with a last > > > modified time that did not match the associated WAR. It will be > deleted. > > > > > > > > > > > > -server.xml setting ( > > unpackWARs="true" autoDeploy="false">) > > > > > > -We observed this for multiple web applications (wars) on multiple > > > systems, so it is not an issue single web application(war) > > > > > > -Issue observed in Red Hat Linux 8.6, but same not occurring on > > > windows box and Red Hat Linux 8.8, 8.9 and 8.10 > > > > > > Please notice *ca-nim-sm.war* file time stamp > > > > > > Please notice *war-tracker* file time stamp, which is set to tomcat > > > restart time > > > > > > Environment > > > > > > Red Hat Linux 8.6 > > > > > > Java: OpenJDK 11.0.23 and 17.0.10 > > > > > > Tomcat : 9.0.87 and 9.0.91 > > > > > > Verified tomcat release notes and also tomcat defects in > > > https://bz.apache.org/bugzilla/ <https://bz.apache.org/bugzilla/> > <https:/
RE: Tomcat 9.0.75 ignoring session timeout configured in tomcat conf web.xml
Hi All, Bug already raised below against Tomcat for the same issue. https://bz.apache.org/bugzilla/show_bug.cgi?id=67793 Thank You Mark. Regards Channa -Original Message- From: Mark Thomas Sent: Friday, October 27, 2023 11:25 AM To: Tomcat Users List Subject: Re: Tomcat 9.0.75 ignoring session timeout configured in tomcat conf web.xml 26 Oct 2023 05:01:49 Channa Puchakayala : > Hi All, > > > Tomcat Version : 9.0.75 > Operating System: Windows and Linux > Bits: 64 > > > Tomcat 9.0.75 ignoring session timeout configured in > tomcat/conf/web.xml, it is overriding previous session timeout setting > and effecting existing customers. > == > > 30 > > = > > > Looks this change/issue started from Tomcat Version : 9.0.74 for > FormAuthenticator, why it overwrites the original session-timeout ? is > it bug ? Could you please help/suggest. Have you checked the open issues in bugzilla? Have you checked Bugzilla / CI changelog to see if the issue has already been fixed for the next release? Mark - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org -- This electronic communication and the information and any files transmitted with it, or attached to it, are confidential and are intended solely for the use of the individual or entity to whom it is addressed and may contain information that is confidential, legally privileged, protected by privacy laws, or otherwise restricted from disclosure to anyone else. If you are not the intended recipient or the person responsible for delivering the e-mail to the intended recipient, you are hereby notified that any use, copying, distributing, dissemination, forwarding, printing, or copying of this e-mail is strictly prohibited. If you received this e-mail in error, please return the e-mail to the sender, delete it from your computer, and destroy any printed copy of it. smime.p7s Description: S/MIME Cryptographic Signature
Need Help : Tomcat 9.0.75 not honoring session timeout configured in tomcat web.xml for FORM Authentication
Hi All, Tomcat Version : 9.0.75 Operating System: Windows and Linux Bits: 64 Tomcat 9.0.75 not honoring session timeout configured in tomcat/conf/web.xml for FORM Authentication and it is effecting customers. == 30 // 30 minutes = Verified the Tomcat source code -FormAuthenticator overriding above configured session timeout setting (30 minutes) with value (120 seconds) -As per FormAuthenticator.Java, this change/issue started from Tomcat Version : 9.0.74 for FORM Authentication and it overwrites the original session-timeout value -This issue/behavior not observed in 9.0.73 Verified the Tomcat documentation -Verified the tomcat changelog, there is a fix/change went in Tomcat 9.0.74 below related to FORM Based Authentication Session @ https://tomcat.apache.org/tomcat-9.0-doc/changelog.html, looks which is causing this issue. -- Harden the FORM authentication process against DoS attacks by using a reduced session timeout if the FORM authentication process creates a session. The duration of this timeout is configured by the authenticationSessionTimeout attribute of the FORM authenticator. (markt) - Is it bug ? Could you please help/suggest. Thanks Channa -- This electronic communication and the information and any files transmitted with it, or attached to it, are confidential and are intended solely for the use of the individual or entity to whom it is addressed and may contain information that is confidential, legally privileged, protected by privacy laws, or otherwise restricted from disclosure to anyone else. If you are not the intended recipient or the person responsible for delivering the e-mail to the intended recipient, you are hereby notified that any use, copying, distributing, dissemination, forwarding, printing, or copying of this e-mail is strictly prohibited. If you received this e-mail in error, please return the e-mail to the sender, delete it from your computer, and destroy any printed copy of it. smime.p7s Description: S/MIME Cryptographic Signature
Tomcat 9.0.75 ignoring session timeout configured in tomcat conf web.xml
Hi All, Tomcat Version : 9.0.75 Operating System: Windows and Linux Bits: 64 Tomcat 9.0.75 ignoring session timeout configured in tomcat/conf/web.xml, it is overriding previous session timeout setting and effecting existing customers. == 30 = Looks this change/issue started from Tomcat Version : 9.0.74 for FormAuthenticator, why it overwrites the original session-timeout ? is it bug ? Could you please help/suggest. Thanks Channa -- This electronic communication and the information and any files transmitted with it, or attached to it, are confidential and are intended solely for the use of the individual or entity to whom it is addressed and may contain information that is confidential, legally privileged, protected by privacy laws, or otherwise restricted from disclosure to anyone else. If you are not the intended recipient or the person responsible for delivering the e-mail to the intended recipient, you are hereby notified that any use, copying, distributing, dissemination, forwarding, printing, or copying of this e-mail is strictly prohibited. If you received this e-mail in error, please return the e-mail to the sender, delete it from your computer, and destroy any printed copy of it. smime.p7s Description: S/MIME Cryptographic Signature
