pkgsrc.se | The NetBSD package collection

./www/apache-tomcat8, Implementation of Java Servlet and JavaServer Pages technologies

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: CURRENT, Version: 8.0.53nb1, Package name: apache-tomcat-8.0.53nb1, Maintainer: pkgsrc-users

Apache Tomcat is an implementation of the Java Servlet and JavaServer Pages
technologies. The Java Servlet and JavaServer Pages specifications are
developed under the Java Community Process.

Apache Tomcat is developed in an open and participatory environment and
released under the Apache Software License. Apache Tomcat is intended to
be a collaboration of the best-of-breed developers from around the world.
We invite you to participate in this open development project.

Apache Tomcat powers numerous large-scale, mission-critical web applications
across a diverse range of industries and organizations.

This package tracks 8.0.x release branch.

Required to run:
[lang/openjdk11]

Required to build:
[pkgtools/cwrappers]

Master sites: (Expand)

Filesize: 9234.272 KB

Version history: (Expand)

(2020-04-26) Updated to version: apache-tomcat-8.0.53nb1
(2018-07-26) Updated to version: apache-tomcat-8.0.53
(2018-03-23) Updated to version: apache-tomcat-8.0.50
(2018-02-01) Updated to version: apache-tomcat-8.0.49
(2017-10-31) Updated to version: apache-tomcat-8.0.47
(2017-09-04) Updated to version: apache-tomcat-8.0.46

CVS history: (Expand)

2021-10-26 13:31:15 by Nia Alarie | Files touched by this commit (1030)

Log message:
www: Replace RMD160 checksums with BLAKE2s checksums

All checksums have been double-checked against existing RMD160 and
SHA512 hashes

Not committed (merge conflicts):
www/nghttp2/distinfo

Unfetchable distfiles (almost certainly fetched conditionally...):
./www/nginx-devel/distinfo array-var-nginx-module-0.05.tar.gz
./www/nginx-devel/distinfo echo-nginx-module-0.62.tar.gz
./www/nginx-devel/distinfo encrypted-session-nginx-module-0.08.tar.gz
./www/nginx-devel/distinfo form-input-nginx-module-0.12.tar.gz
./www/nginx-devel/distinfo headers-more-nginx-module-0.33.tar.gz
./www/nginx-devel/distinfo lua-nginx-module-0.10.19.tar.gz
./www/nginx-devel/distinfo naxsi-1.3.tar.gz
./www/nginx-devel/distinfo nginx-dav-ext-module-3.0.0.tar.gz
./www/nginx-devel/distinfo nginx-rtmp-module-1.2.2.tar.gz
./www/nginx-devel/distinfo nginx_http_push_module-1.2.10.tar.gz
./www/nginx-devel/distinfo ngx_cache_purge-2.5.1.tar.gz
./www/nginx-devel/distinfo ngx_devel_kit-0.3.1.tar.gz
./www/nginx-devel/distinfo ngx_http_geoip2_module-3.3.tar.gz
./www/nginx-devel/distinfo njs-0.5.0.tar.gz
./www/nginx-devel/distinfo set-misc-nginx-module-0.32.tar.gz
./www/nginx/distinfo array-var-nginx-module-0.05.tar.gz
./www/nginx/distinfo echo-nginx-module-0.62.tar.gz
./www/nginx/distinfo encrypted-session-nginx-module-0.08.tar.gz
./www/nginx/distinfo form-input-nginx-module-0.12.tar.gz
./www/nginx/distinfo headers-more-nginx-module-0.33.tar.gz
./www/nginx/distinfo lua-nginx-module-0.10.19.tar.gz
./www/nginx/distinfo naxsi-1.3.tar.gz
./www/nginx/distinfo nginx-dav-ext-module-3.0.0.tar.gz
./www/nginx/distinfo nginx-rtmp-module-1.2.2.tar.gz
./www/nginx/distinfo nginx_http_push_module-1.2.10.tar.gz
./www/nginx/distinfo ngx_cache_purge-2.5.1.tar.gz
./www/nginx/distinfo ngx_devel_kit-0.3.1.tar.gz
./www/nginx/distinfo ngx_http_geoip2_module-3.3.tar.gz
./www/nginx/distinfo njs-0.5.0.tar.gz
./www/nginx/distinfo set-misc-nginx-module-0.32.tar.gz

2021-10-07 17:09:00 by Nia Alarie | Files touched by this commit (1033)

Log message:
www: Remove SHA1 hashes for distfiles

2020-04-26 00:23:06 by Jean-Yves Migeon | Files touched by this commit (10)

Log message:
For clarity, use tomcat_start (resp. tomcat_stop) function instead of
calling ${command} directly for start (resp. stop) within rc.d.

Tested on tomcat9; but applicable down to tomcat6.

Bump PKGREVISION.

ok ryo@.

2020-01-19 00:36:14 by Roland Illig | Files touched by this commit (3046)

Log message:
all: migrate several HOMEPAGEs to https

pkglint --only "https instead of http" -r -F

With manual adjustments afterwards since pkglint 19.4.4 fixed a few
indentations in unrelated lines.

This mainly affects projects hosted at SourceForce, as well as
freedesktop.org, CTAN and GNU.

2018-07-25 23:20:03 by Zafer Aydogan | Files touched by this commit (2)

Log message:
Update to 8.0.53

Changelog:
Tomcat 8.0.53 (violetagg)

Catalina
	Fix:  Treat the <mapped-name> element of a <env-entry> in web.xml \ 
in the same way as the mappedName element of the equivalent @Resource \ 
annotation. Both now attempt to set the mappedName property of the resource. \ 
(markt)
	Fix:  Correct the processing of resources with <injection-target>s \ 
defined in web.xml. First look for a match using JavaBean property names and \ 
then, only if a match is not found, look for a match using fields. (markt)
	Fix:  When restoring a saved request with a request body after FORM \ 
authentication, ensure that calls to the HttpServletRequest methods \ 
getRequestURI(), getQueryString() and getProtocol() are not corrupted by the \ 
processing of the saved request body. (markt)
	Fix:  JNDI resources that are defined with injection targets but no value are \ 
now treated as if the resource is not defined. (markt)
	Fix:  Ensure that JNDI names used for <lookup-name> entries in web.xml \ 
and for lookup elements of @Resource annotations specify a name with an explicit \ 
java: namespace. (markt)
	Code:  Refactor the org.apache.naming package to reduce duplicate code. \ 
Duplicate code identified by the Simian tool. (markt)
	Fix:  50019: Add support for <lookup-name>. Based on a patch by Gurkan \ 
Erdogdu. (markt)
	Fix:  60490: Various formatting and layout improvements for the \ 
ErrorReportValve. Patch provided by Michael Osipov. (markt)
	Fix:  62343: Make CORS filter defaults more secure. This is the fix for \ 
CVE-2018-8014. (markt)
	Fix:  Ensure that the web application resources implementation does not \ 
incorrectly cache results for resources that are only visible as class loader \ 
resources. (markt)
	Fix:  Make all loggers associated with Tomcat provided Filters non-static to \ 
ensure that log messages are not lost when a web application is reloaded. \ 
(markt)
	Fix:  Correct the manifest for the annotations-api.jar. The JAR implements the \ 
Common Annotations API 1.2 and the manifest should reflect that. (markt)
	Fix:  Switch to non-static loggers where there is a possibility of a logger \ 
becoming associated with a web application class loader causing log messages to \ 
be lost if the web application is stopped. (markt)
	Add:  62389: Add the IPv6 loopback address to the default internalProxies \ 
regular expression. Patch by Craig Andrews. (markt)
	Fix:  In the RemoteIpValve and RemoteIpFilter, correctly handle the case when \ 
the request passes through one or more trustedProxies but no internalProxies. \ 
Based on a patch by zhanhb. (markt)
	Fix:  Correct the logic in MBeanFactory.removeConnector() to ensure that the \ 
correct Connector is removed when there are multiple Connectors using different \ 
addresses but the same port. (markt)
	Fix:  Make JAASRealm mis-configuration more obvious by requiring the \ 
authenticated Subject to include at least one Principal of a type specified by \ 
userClassNames. (markt)
	Fix:  62476: Use GMT timezone for the value of Expires header as required by \ 
HTTP specification (RFC 7231, 7234). (kkolinko)

2018-03-23 14:16:38 by Ryo ONODERA | Files touched by this commit (3)

Log message:
Update to 8.0.50

Changelog:
Tomcat 8.0.50 (violetagg)

Catalina
    Fix: Prevent a stack trace being written to standard out when running on \ 
Java 10 due to changes in the LogManager implementation. (markt)
    Fix: Avoid duplicate load attempts if one has been made already. (remm)
    Fix: Avoid NPE in ThreadLocalLeakPreventionListener if there is no Engine. (remm)
    Fix: 62000: When a JNDI reference cannot be resolved, ensure that the root \ 
cause exception is reported rather than swallowed. (markt)
    Fix: 62036: When caching an authenticated user Principal in the session when \ 
the web application is configured with the NonLoginAuthenticator, cache the \ 
internal Principal object rather than the user facing Principal object as Tomcat \ 
requires the internal object to correctly process later authorization checks. \ 
(markt)
    Fix: 62067: Correctly apply security constraints mapped to the context root \ 
using a URL pattern of "". (markt)
    Fix: When using Tomcat embedded, only perform Authenticator configuration \ 
once during web application start. (markt)
    Fix: Process all ServletSecurity annotations at web application start rather \ 
than at servlet load time to ensure constraints are applied consistently. \ 
(markt)
    Fix: Minor optimization when calling class tranformers. (rjung)

Web applications
    Add: 48672: Add documentation for the Host Manager web application. Patch \ 
provided by Marek Czernek. (markt)

Other
    Update: Update the NSIS Installer used to build the Windows installer to \ 
version 3.03. (kkolinko)

2018-01-31 23:27:13 by Zafer Aydogan | Files touched by this commit (3)

Log message:
Update www/apache-tomcat8 to 8.0.49.

Notable changes:
 - Allow a call to AsyncContext.dispatch() to terminate non-blocking I/O. (markt)

Full changelog:

  https://tomcat.apache.org/tomcat-8.0-doc/changelog.html

2017-10-31 15:33:23 by Filip Hajny | Files touched by this commit (2)

Log message:
Update www/apache-tomcat8 to 8.0.47.

Notable changes:

- A fix for CVE-2017-12617.
- Add ExtractingRoot, a new WebResourceRoot implementation that extracts
  JARs to the work directory for improved performance when deploying
  packed WAR files.
- Update the packaged version of the Tomcat Native Library to 1.2.14

Full changelog:

  https://tomcat.apache.org/tomcat-8.0-doc/changelog.html