RE: Tomcat 9.0.81 Degraded ssl performance
Hi Rémy, Thanks for sharing the information but by when it is available on tomcat Home page https://tomcat.apache.org/? or is it safe to update this tomcat(9.0.82) to production version ? Thanks and Regards, Rajendra Rathore 9922701491 -Original Message- From: Rémy Maucherat Sent: Friday, October 13, 2023 1:04 PM To: Tomcat Users List Subject: Re: Tomcat 9.0.81 Degraded ssl performance On Fri, Oct 13, 2023 at 9:25 AM Rathore, Rajendra wrote: > > Hi Team, > > Can you please share the release plan for 9.0.82 version, as we are planning > to update it? You can get it at the usual place: https://tomcat.apache.org/download-90.cgi Rémy > > Thanks and Regards, > Rajendra Rathore > 9922701491 > > -Original Message- > From: i...@flyingfischer.ch > Sent: Thursday, October 12, 2023 10:54 AM > To: users@tomcat.apache.org > Subject: Re: Tomcat 9.0.81 Degraded ssl performance > > Am 12.10.23 um 03:01 schrieb Paul Zepernick: > > Thank you Chuck > > > > Paul > > > > From: Chuck Caldarale > > Sent: Wednesday, October 11, 2023 8:54:59 PM > > To: Tomcat Users List > > Subject: Re: Tomcat 9.0.81 Degraded ssl performance > > > > NOTICE: This email originated from outside of the organization. Do not > > click links or open attachments unless you recognize the sender and know > > the content is safe. > > > >> On Oct 11, 2023, at 19:44, Paul Zepernick > >> wrote: > >> > >> Tomcat Version: 9.0.81 > >> OS: Windows Server 2016 > >> > >> We recently patched one of our QA servers to test 9.0.81 and ran into > >> performance issues. Page loads that normally take 1-2 seconds are now > >> taking 50-60 seconds. We were finally able to narrow the issue down to > >> the SSL connector. Adding an HTTP connector and bypassing ssl resolves > >> the performance issue. We have also tested rolling back to 9.0.80 with > >> the same configuration and verified the issue does not exist. > >> > > This was due to a regression introduced in 9.0.81, as noted here: > > https://bz/ > > .a%2F=05%7C01%7Crarathore%40ptc.com%7C3432f780a6f346997a3e08dbc > > bbedd70%7Cb9921086ff774d0d828acb3381f678e2%7C0%7C0%7C638327792861320 > > 216%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJB > > TiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C=024RK4UFHLTSrrfI7JO > > qRlHbMHjvFQN7qvH5hEUIUW4%3D=0 > > pache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D67670=05%7C01%7Crara > > th > > ore%40ptc.com%7C1792927bf49742d936b208dbcae3a63e%7Cb9921086ff774d0d8 > > 28 > > acb3381f678e2%7C0%7C0%7C638326851325327468%7CUnknown%7CTWFpbGZsb3d8e > > yJ > > WIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C30 > > 00 > > %7C%7C%7C=jJCF0r%2F8vUBpRjc04kWHuGrRiOygwANqpVpfBKXQYEo%3D > > er > > ved=0<https://nam04.safelinks.protection.outlook.com/?url=https%3A%252 > > F%25 > > 2Fbz.apache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D67670=05%7C01% > > 7C > > rarathore%40ptc.com%7C1792927bf49742d936b208dbcae3a63e%7Cb9921086ff7 > > 74 > > d0d828acb3381f678e2%7C0%7C0%7C638326851325483103%7CUnknown%7CTWFpbGZ > > sb > > 3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3 > > D% > > 7C3000%7C%7C%7C=IHAB3t%2B41LTsxAYh6uwFx7sa7gy%2F7Our4b%2Fj56FE > > LA > > s%3D=0> > > > > The problem has been fixed in 9.0.82 which is currently being voted on; > > release will likely occur in another day or two. > > > >- Chuck > > > > This e-mail, including attachments, may include confidential and/or > > proprietary information, and may be used only by the person or > > entity to which it is addressed. If the reader of this e-mail is not > > the intended recipient or intended recipient's authorized agent, the > > reader is hereby notified that any dissemination, distribution or > > copying of this e-mail is prohibited. If you have received this > > e-mail in error, please notify the sender by replying to this message and > > delete this e-mail immediately. > > You may also set on the connector as a workaround > > compression="off" > > This will resolve the issue for the time being without the need to downgrade > to an insecure version. > > > Markus > > > > > - > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org > > > - > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org > - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Tomcat 9.0.81 Degraded ssl performance
On Fri, Oct 13, 2023 at 9:25 AM Rathore, Rajendra wrote: > > Hi Team, > > Can you please share the release plan for 9.0.82 version, as we are planning > to update it? You can get it at the usual place: https://tomcat.apache.org/download-90.cgi Rémy > > Thanks and Regards, > Rajendra Rathore > 9922701491 > > -Original Message- > From: i...@flyingfischer.ch > Sent: Thursday, October 12, 2023 10:54 AM > To: users@tomcat.apache.org > Subject: Re: Tomcat 9.0.81 Degraded ssl performance > > Am 12.10.23 um 03:01 schrieb Paul Zepernick: > > Thank you Chuck > > > > Paul > > > > From: Chuck Caldarale > > Sent: Wednesday, October 11, 2023 8:54:59 PM > > To: Tomcat Users List > > Subject: Re: Tomcat 9.0.81 Degraded ssl performance > > > > NOTICE: This email originated from outside of the organization. Do not > > click links or open attachments unless you recognize the sender and know > > the content is safe. > > > >> On Oct 11, 2023, at 19:44, Paul Zepernick > >> wrote: > >> > >> Tomcat Version: 9.0.81 > >> OS: Windows Server 2016 > >> > >> We recently patched one of our QA servers to test 9.0.81 and ran into > >> performance issues. Page loads that normally take 1-2 seconds are now > >> taking 50-60 seconds. We were finally able to narrow the issue down to > >> the SSL connector. Adding an HTTP connector and bypassing ssl resolves > >> the performance issue. We have also tested rolling back to 9.0.80 with > >> the same configuration and verified the issue does not exist. > >> > > This was due to a regression introduced in 9.0.81, as noted here: > > https://bz.a/ > > pache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D67670=05%7C01%7Crarath > > ore%40ptc.com%7C1792927bf49742d936b208dbcae3a63e%7Cb9921086ff774d0d828 > > acb3381f678e2%7C0%7C0%7C638326851325327468%7CUnknown%7CTWFpbGZsb3d8eyJ > > WIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000 > > %7C%7C%7C=jJCF0r%2F8vUBpRjc04kWHuGrRiOygwANqpVpfBKXQYEo%3D > > ved=0<https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%25 > > 2Fbz.apache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D67670=05%7C01%7C > > rarathore%40ptc.com%7C1792927bf49742d936b208dbcae3a63e%7Cb9921086ff774 > > d0d828acb3381f678e2%7C0%7C0%7C638326851325483103%7CUnknown%7CTWFpbGZsb > > 3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D% > > 7C3000%7C%7C%7C=IHAB3t%2B41LTsxAYh6uwFx7sa7gy%2F7Our4b%2Fj56FELA > > s%3D=0> > > > > The problem has been fixed in 9.0.82 which is currently being voted on; > > release will likely occur in another day or two. > > > >- Chuck > > > > This e-mail, including attachments, may include confidential and/or > > proprietary information, and may be used only by the person or entity > > to which it is addressed. If the reader of this e-mail is not the > > intended recipient or intended recipient's authorized agent, the > > reader is hereby notified that any dissemination, distribution or > > copying of this e-mail is prohibited. If you have received this e-mail > > in error, please notify the sender by replying to this message and delete > > this e-mail immediately. > > You may also set on the connector as a workaround > > compression="off" > > This will resolve the issue for the time being without the need to downgrade > to an insecure version. > > > Markus > > > > > - > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org > > > - > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org > - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
RE: Tomcat 9.0.81 Degraded ssl performance
Hi Team, Can you please share the release plan for 9.0.82 version, as we are planning to update it? Thanks and Regards, Rajendra Rathore 9922701491 -Original Message- From: i...@flyingfischer.ch Sent: Thursday, October 12, 2023 10:54 AM To: users@tomcat.apache.org Subject: Re: Tomcat 9.0.81 Degraded ssl performance Am 12.10.23 um 03:01 schrieb Paul Zepernick: > Thank you Chuck > > Paul > > From: Chuck Caldarale > Sent: Wednesday, October 11, 2023 8:54:59 PM > To: Tomcat Users List > Subject: Re: Tomcat 9.0.81 Degraded ssl performance > > NOTICE: This email originated from outside of the organization. Do not click > links or open attachments unless you recognize the sender and know the > content is safe. > >> On Oct 11, 2023, at 19:44, Paul Zepernick >> wrote: >> >> Tomcat Version: 9.0.81 >> OS: Windows Server 2016 >> >> We recently patched one of our QA servers to test 9.0.81 and ran into >> performance issues. Page loads that normally take 1-2 seconds are now >> taking 50-60 seconds. We were finally able to narrow the issue down to the >> SSL connector. Adding an HTTP connector and bypassing ssl resolves the >> performance issue. We have also tested rolling back to 9.0.80 with the same >> configuration and verified the issue does not exist. >> > This was due to a regression introduced in 9.0.81, as noted here: > https://bz.a/ > pache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D67670=05%7C01%7Crarath > ore%40ptc.com%7C1792927bf49742d936b208dbcae3a63e%7Cb9921086ff774d0d828 > acb3381f678e2%7C0%7C0%7C638326851325327468%7CUnknown%7CTWFpbGZsb3d8eyJ > WIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000 > %7C%7C%7C=jJCF0r%2F8vUBpRjc04kWHuGrRiOygwANqpVpfBKXQYEo%3D > ved=0<https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%25 > 2Fbz.apache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D67670=05%7C01%7C > rarathore%40ptc.com%7C1792927bf49742d936b208dbcae3a63e%7Cb9921086ff774 > d0d828acb3381f678e2%7C0%7C0%7C638326851325483103%7CUnknown%7CTWFpbGZsb > 3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D% > 7C3000%7C%7C%7C=IHAB3t%2B41LTsxAYh6uwFx7sa7gy%2F7Our4b%2Fj56FELA > s%3D=0> > > The problem has been fixed in 9.0.82 which is currently being voted on; > release will likely occur in another day or two. > >- Chuck > > This e-mail, including attachments, may include confidential and/or > proprietary information, and may be used only by the person or entity > to which it is addressed. If the reader of this e-mail is not the > intended recipient or intended recipient's authorized agent, the > reader is hereby notified that any dissemination, distribution or > copying of this e-mail is prohibited. If you have received this e-mail > in error, please notify the sender by replying to this message and delete > this e-mail immediately. You may also set on the connector as a workaround compression="off" This will resolve the issue for the time being without the need to downgrade to an insecure version. Markus - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Tomcat 9.0.81 Degraded ssl performance
Am 12.10.23 um 03:01 schrieb Paul Zepernick: Thank you Chuck Paul From: Chuck Caldarale Sent: Wednesday, October 11, 2023 8:54:59 PM To: Tomcat Users List Subject: Re: Tomcat 9.0.81 Degraded ssl performance NOTICE: This email originated from outside of the organization. Do not click links or open attachments unless you recognize the sender and know the content is safe. On Oct 11, 2023, at 19:44, Paul Zepernick wrote: Tomcat Version: 9.0.81 OS: Windows Server 2016 We recently patched one of our QA servers to test 9.0.81 and ran into performance issues. Page loads that normally take 1-2 seconds are now taking 50-60 seconds. We were finally able to narrow the issue down to the SSL connector. Adding an HTTP connector and bypassing ssl resolves the performance issue. We have also tested rolling back to 9.0.80 with the same configuration and verified the issue does not exist. This was due to a regression introduced in 9.0.81, as noted here: https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fbz.apache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D67670=05%7C01%7CPaul.Zepernick%40healthsmart.com%7C6873588541c945dc808a08dbcabde7eb%7C2ce547c5e80a40628a56f25adceefb52%7C0%7C1%7C638326689235160357%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C2000%7C%7C%7C=cCe%2BgFFBcYzUvnnA%2BYqv9A8koG0QxL2Xq9Om5Edo9%2BQ%3D=0<https://bz.apache.org/bugzilla/show_bug.cgi?id=67670> The problem has been fixed in 9.0.82 which is currently being voted on; release will likely occur in another day or two. - Chuck This e-mail, including attachments, may include confidential and/or proprietary information, and may be used only by the person or entity to which it is addressed. If the reader of this e-mail is not the intended recipient or intended recipient’s authorized agent, the reader is hereby notified that any dissemination, distribution or copying of this e-mail is prohibited. If you have received this e-mail in error, please notify the sender by replying to this message and delete this e-mail immediately. You may also set on the connector as a workaround compression="off" This will resolve the issue for the time being without the need to downgrade to an insecure version. Markus - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
Re: Tomcat 9.0.81 Degraded ssl performance
Thank you Chuck Paul From: Chuck Caldarale Sent: Wednesday, October 11, 2023 8:54:59 PM To: Tomcat Users List Subject: Re: Tomcat 9.0.81 Degraded ssl performance NOTICE: This email originated from outside of the organization. Do not click links or open attachments unless you recognize the sender and know the content is safe. > On Oct 11, 2023, at 19:44, Paul Zepernick > wrote: > > Tomcat Version: 9.0.81 > OS: Windows Server 2016 > > We recently patched one of our QA servers to test 9.0.81 and ran into > performance issues. Page loads that normally take 1-2 seconds are now taking > 50-60 seconds. We were finally able to narrow the issue down to the SSL > connector. Adding an HTTP connector and bypassing ssl resolves the > performance issue. We have also tested rolling back to 9.0.80 with the same > configuration and verified the issue does not exist. > This was due to a regression introduced in 9.0.81, as noted here: https://nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Fbz.apache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D67670=05%7C01%7CPaul.Zepernick%40healthsmart.com%7C6873588541c945dc808a08dbcabde7eb%7C2ce547c5e80a40628a56f25adceefb52%7C0%7C1%7C638326689235160357%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C2000%7C%7C%7C=cCe%2BgFFBcYzUvnnA%2BYqv9A8koG0QxL2Xq9Om5Edo9%2BQ%3D=0<https://bz.apache.org/bugzilla/show_bug.cgi?id=67670> The problem has been fixed in 9.0.82 which is currently being voted on; release will likely occur in another day or two. - Chuck This e-mail, including attachments, may include confidential and/or proprietary information, and may be used only by the person or entity to which it is addressed. If the reader of this e-mail is not the intended recipient or intended recipient’s authorized agent, the reader is hereby notified that any dissemination, distribution or copying of this e-mail is prohibited. If you have received this e-mail in error, please notify the sender by replying to this message and delete this e-mail immediately.
Re: Tomcat 9.0.81 Degraded ssl performance
> On Oct 11, 2023, at 19:44, Paul Zepernick > wrote: > > Tomcat Version: 9.0.81 > OS: Windows Server 2016 > > We recently patched one of our QA servers to test 9.0.81 and ran into > performance issues. Page loads that normally take 1-2 seconds are now taking > 50-60 seconds. We were finally able to narrow the issue down to the SSL > connector. Adding an HTTP connector and bypassing ssl resolves the > performance issue. We have also tested rolling back to 9.0.80 with the same > configuration and verified the issue does not exist. > This was due to a regression introduced in 9.0.81, as noted here: https://bz.apache.org/bugzilla/show_bug.cgi?id=67670 The problem has been fixed in 9.0.82 which is currently being voted on; release will likely occur in another day or two. - Chuck