Received: from mail.netbsd.org (mail.netbsd.org [199.233.217.200]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mail.netbsd.org", Issuer "Postmaster NetBSD.org" (verified OK)) by mollari.NetBSD.org (Postfix) with ESMTPS id 6D7ED7ABE8 for ; Sun, 28 Feb 2016 10:17:15 +0000 (UTC) Received: by mail.netbsd.org (Postfix, from userid 605) id 1A47685ECB; Sun, 28 Feb 2016 10:17:15 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by mail.netbsd.org (Postfix) with ESMTP id 9B2A585E26 for ; Sun, 28 Feb 2016 10:17:14 +0000 (UTC) X-Virus-Scanned: amavisd-new at netbsd.org Received: from mail.netbsd.org ([127.0.0.1]) by localhost (mail.netbsd.org [127.0.0.1]) (amavisd-new, port 10025) with ESMTP id 1XQVYNBN3z9k for ; Sun, 28 Feb 2016 10:17:13 +0000 (UTC) Received: from cvs.NetBSD.org (unknown [IPv6:2001:470:a085:999:28c:faff:fe03:5984]) by mail.netbsd.org (Postfix) with ESMTP id DFEFB85E13 for ; Sun, 28 Feb 2016 10:17:13 +0000 (UTC) Received: by cvs.NetBSD.org (Postfix, from userid 500) id D9320FBB7; Sun, 28 Feb 2016 10:17:13 +0000 (UTC) Content-Disposition: inline Content-Transfer-Encoding: 8bit Content-Type: text/plain; charset="US-ASCII" MIME-Version: 1.0 Date: Sun, 28 Feb 2016 10:17:13 +0000 From: "Ryo ONODERA" Subject: CVS commit: pkgsrc/www/apache-tomcat7 To: pkgsrc-changes@NetBSD.org Reply-To: ryoon@netbsd.org X-Mailer: log_accum Message-Id: <20160228101713.D9320FBB7@cvs.NetBSD.org> Sender: pkgsrc-changes-owner@NetBSD.org List-Id: pkgsrc-changes.NetBSD.org Precedence: bulk Module Name: pkgsrc Committed By: ryoon Date: Sun Feb 28 10:17:13 UTC 2016 Modified Files: pkgsrc/www/apache-tomcat7: Makefile distinfo Log Message: Update to 7.0.68 Changelog: Tomcat 7.0.68 (violetagg) General add Allow to configure multiple JUnit test class patterns with the build property test.name and document the property in BUILDING.txt. (rjung) Catalina fix Correct implementation of validateClientProvidedNewSessionId so client provided session IDs may be rejected if validation is enabled. (markt) fix 56785: Avoid NullPointerException if directory exists on the class path that is not readable by the Tomcat user. (kkolinko) fix 57906: Suppress WebappClassLoader log messages when running with a security manager on Java 6, caused by java.beans.Introspector.findExplicitBeanInfo() calls during evaluation of EL expressions. (kkolinko) fix 58692: Make StandardJarScanner more robust. Log a warning if a class path entry cannot be scanned rather than triggering the failure of the web application. (markt) fix 58701: Reset the instanceInitialized field in StandardWrapper when unloading a Servlet so that a new instance may be correctly initialized. (markt) fix 58702: Ensure an access log entry is generated if the client aborts the connection. (markt) fix Fixed various issues reported by Findbugs. (violetagg) fix 58735: Add support for the X-XSS-Protection header to the HttpHeaderSecurityFilter. Patch provided by Jacopo Cappellato. (markt) fix 58751: Correctly handle the case where an AsyncListener dispatches to a Servlet on an asynchronous timeout and the Servlet uses sendError() to trigger an error page. Includes a test case based on code provided by Andy Wilkinson.(markt) fix 58765: Change default for mapperContextRootRedirectEnabled to true since this is required for correct session management because of the default for sessionCookiePathUsesTrailingSlash. (markt) fix Add the StatusManagerServlet to the list of Servlets that can only be loaded by privileged applications. (markt) fix Simplify code and fix messages in org.apache.catalina.core.DefaultInstanceManager class. (kkolinko) fix Ensure that the proper file encoding if specified will be used when a readme file is served by DefaultServlet. (violetagg) fix Fix declaration of localPort attribute of Connector MBean: it is read-only. (kkolinko) fix 58766: Make skipping non-class files during annotation scanning faster by checking the file name first. Improve debug logging. (kkolinko) fix 58768: Log a warning if a redirect fails because of an invalid location. (markt) fix 58836: Correctly merge query string parameters when processing a forwarded request where the target includes a query string that contains a parameter with no value. (markt/kkolinko) fix Make sure that shared Digester is reset in an unlikely error case in HostConfig.deployWAR(). (kkolinko) fix Fix a potential JDBC resource leak in DataSourceRealm. (schultz) fix 58900: Correctly undeploy symlinked resources and prevent an infinite cycle of deploy / undeploy. (markt) fix Protect initialization of ResourceLinkFactory when running with a SecurityManager. (kkolinko) add Extend the feature available in the cluster session manager implementations that enables session attribute replication to be filtered bases on attribute name to all session manager implementations. Note that configuration attribute name has changed from sessionAttributeFilter to sessionAttributeNameFilter. Apply the filter on load as well as unload to ensure that configuration changes made while the web application is stopped are applied to any persisted data. (markt) add Extend the session attribute filtering options to include filtering based on the implementation class of the value and optional WARN level logging if an attribute is filtered. These options are available for all of the Manager implementations that ship with Tomcat. When a SecurityManager is used filtering will be enabled by default. (markt) fix 58905: Ensure that Tomcat.silence() silences the correct logger and respects the current setting. (markt) fix 58946: Ensure that the request parameter map remains immutable when processing via a RequestDispatcher. (markt) Coyote add New configuration option ajpFlush for the AJP connectors to disable the sending of AJP flush packets. (rjung) Jasper fix Fix handling of missing messages in org.apache.el.util.MessageFactory. (violetagg) Cluster fix In order to avoid that the heartbeat thread and the background thread to run Channel.heartbeat simultaneously, if heartbeatBackgroundEnabled of SimpleTcpCluster set to true, ensure that the heartbeat thread does not start. (kfujino) WebSocket fix 57489: Ensure onClose() is called when a WebSocket connection is closed even if the sending of the close message fails. Includes test cases by Barry Coughlan. (markt) fix Fix a timing issue on session close that could result in an exception being thrown for an incomplete message even through the message was completed. (markt) Web Applications fix Correct some typos in the JNDI resources How-To. (markt) fix Don't create sessions unnecessarily in the Manager application. (markt) fix Don't create sessions unnecessarily in the Host Manager application. (markt) fix 58723: Clarify documentation and error messages for the text interface of the manager to make clear that version must be used with path when referencing contexts deployed using parallel deployment. (markt) fix Correct an error in the documentation of the extory will always be deleted and recreated by expanding the WAR if unpackWARs is true. (markt) fix 58935: Remove incorrect references in the documentation to using jar:file: URLs with the Manager application. (markt) Tribes fix Add sun the static cluster. (kfujino) fix Ignore the unnecessary member remove operation from different domain. (kfujino) fix Add support for the shutdown notification of local members in the static cluster. (kfujino) fix Ensure that asynchronous session replication thread is a daemon thread. (kfujino) Other update Update the NSIS Installer used to build the Windows Installers to version 2.50. (markt/kkolinko) To generate a diff of this commit: cvs rdiff -u -r1.26 -r1.27 pkgsrc/www/apache-tomcat7/Makefile cvs rdiff -u -r1.21 -r1.22 pkgsrc/www/apache-tomcat7/distinfo Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.