Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

tomcat-docs-webapp-9.0.97-slfo.1.1.1 RPM for noarch

From OpenSuSE Leap 16.0 for noarch

Name: tomcat-docs-webapp Distribution: SUSE Linux Framework One
Version: 9.0.97 Vendor: SUSE LLC <https://www.suse.com/>
Release: slfo.1.1.1 Build date: Fri Nov 22 20:51:47 2024
Group: Productivity/Networking/Web/Servers Build host: reproducible
Size: 4512353 Source RPM: tomcat-9.0.97-slfo.1.1.1.src.rpm
Packager: https://www.suse.com/
Url: https://tomcat.apache.org
Summary: The "docs" web application for Apache Tomcat
The documentation of web application for Apache Tomcat.

Provides

Requires

License

Apache-2.0

Changelog

* Fri Nov 22 2024 michele.bussolotto@suse.com
  - Update to Tomcat 9.0.97
    * Fixed CVEs:
      + CVE-2024-52316: If the Jakarta Authentication fails with an exception,
      set a 500 status (bsc#1233434)
    * Catalina
      + Add: Add support for the new Servlet API method
      HttpServletResponse.sendEarlyHints(). (markt)
      + Add: 55470: Add debug logging that reports the class path when a
      ClassNotFoundException occurs in the digester or the web application
      class loader. Based on a patch by Ralf Hauser. (markt)
      + Update: 69374: Properly separate between table header and body in
      DefaultServlet's listing. (michaelo)
      + Update: 69373: Make DefaultServlet's HTML listing file last modified
      rendering better (flexible). (michaelo)
      + Update: Improve HTML output of DefaultServlet. (michaelo)
      + Code: Refactor RateLimitFilter to use FilterBase as the base class. The
      primary advantage for doing this is less code to process init-param
      values. (markt)
      + Update: 69370: DefaultServlet's HTML listing uses incorrect labels.
      (michaelo)
      + Fix: Avoid NPE in CrawlerSessionManagerValve for partially mapped
      requests. (remm)
      + Fix: Add missing WebDAV Lock-Token header in the response when locking
      a folder. (remm)
      + Fix: Invalid WebDAV lock requests should be rejected with 400. (remm)
      + Fix: Fix regression in WebDAV when attempting to unlock a collection.
      (remm)
      + Fix: Verify that destination is not locked for a WebDAV copy operation.
      (remm)
      + Fix: Send 415 response to WebDAV MKCOL operations that include a
      request body since this is optional and unsupported. (remm)
      + Fix: Enforce DAV: namespace on WebDAV XML elements. (remm)
      + Fix: Do not allow a new WebDAV lock on a child resource if a parent
      collection is locked (RFC 4918 section 6.1). (remm)
      + Fix: WebDAV Delete should remove any existing lock on successfully
      deleted resources. (remm)
      + Update: Remove WebDAV lock null support in accordance with RFC 4918
      section 7.3 and annex D. Instead, a lock on a non-existing resource
      will create an empty file locked with a regular lock. (remm)
      + Update: Rewrite implementation of WebDAV shared locks to comply with
      RFC 4918. (remm)
      + Update: Implement WebDAV If header using code from the Apache Jackrabbit
      project. (remm)
      + Add: Add PropertyStore interface in the WebDAV Servlet, to allow
      implementation of dead properties storage. The store used can be
      configured using the 'propertyStore' init parameter of the WebDAV
      servlet. A simple non-persistent implementation is used if no custom
      store is configured. (remm)
      + Update: Implement WebDAV PROPPATCH method using the newly added
      PropertyStore. (remm)
      + Fix: Cache not found results when searching for web application class
      loader resources. This addresses performance problems caused by
      components such as java.sql.DriverManager which, in some circumstances,
      will search for the same class repeatedly. In a large web application
      this can cause performance problems. The size of the cache can be
      controlled via the new notFoundClassResourceCacheSize on the
      StandardContext. (markt)
      + Fix: Stop after INITIALIZED state should be a noop since it is possible
      for subcomponents to be in FAILED after init. (remm)
      + Fix: Fix incorrect web resource cache size calculations when there are
      concurrent PUT and DELETE requests for the same resource. (markt)
      + Add: Add debug logging for the web resource cache so the current size
      can be tracked as resources are added and removed. (markt)
      + Update: Replace legacy WebDAV opaquelocktoken: scheme for lock tokens
      with urn:uuid: as recommended by RFC 4918, and remove secret init
      parameter. (remm)
      + Fix: Concurrent reads and writes (e.g. GET and PUT / DELETE) for the
      same path caused corruption of the FileResource where some of the
      fields were set as if the file exists and some as set as if it does
      not. This resulted in inconsistent metadata. (markt)
      + Fix: 69415: Ensure that the ExpiresFilter only sets cache headers on
      GET and HEAD requests. Also skip requests where the application has set
      Cache-Control: no-store. (markt)
      + Fix: 69419: Improve the performance of ServletRequest.getAttribute()
      when there are multiple levels of nested includes. Based on a patch
      provided by John Engebretson. (markt)
      + Add: All applications to send an early hints informational response by
      calling HttpServletResponse.sendError() with a status code of 103.
      (schultz)
      + Fix: Ensure that the Jakarta Authentication CallbackHandler only
      creates one GenericPrincipal in the Subject. (markt)
      + Fix: If the Jakarta Authentication process fails with an Exception,
      explicitly set the HTTP response status to 500 as the ServerAuthContext
      may not have set it. (markt)
      + Fix: When persisting the Jakarta Authentication provider configuration,
      create any necessary parent directories that don't already exist.
      (markt)
      + Fix: Correct the logic used to detect errors when deleting temporary
      files associated with persisting the Jakarta Authentication provider
      configuration. (markt)
      + Fix: When processing Jakarta Authentication callbacks, don't overwrite
      a Principal obtained from the PasswordValidationCallback with null if
      the CallerPrincipalCallback does not provide a Principal. (markt)
      + Fix: Avoid store config backup loss when storing one configuration more
      than once per second. (remm)
      + Fix: 69359: WebdavServlet duplicates getRelativePath() method from
      super class with incorrect Javadoc. (michaelo)
      + Fix: 69360: Inconsistent DELETE behavior between WebdavServlet and
      DefaultServlet. (michaelo)
      + Fix: Make WebdavServlet properly return the Allow header when deletion
      of a resource is not allowed. (michaelo)
      + Fix: Add log warning if non wildcard mappings are used with the
      WebdavServlet. (remm)
      + Fix: 69361: Ensure that the order of entries in a multi-status response
      to a WebDAV is consistent with the order in which resources were
      processed. (markt)
      + Fix: 69362: Provide a better multi-status response when deleting a
      collection via WebDAV fails. Empty directories that cannot be deleted
      will now be included in the response. (markt)
      + Fix: 69363: Use getPathPrefix() consistently in the WebDAV servlet to
      ensure that the correct path is used when the WebDAV servlet is mounted
      at a sub-path within the web application. (markt)
      + Fix: Improve performance of ApplicationHttpRequest.parseParameters().
      Based on sample code and test cases provided by John Engebretson.
      (markt)
      + Add: Add support for RFC 8297 (Early Hints). Applications can use
      this feature by casting the HttpServletResponse to
      org.apache.catalina.connector.Reponse and then calling the method
      void sendEarlyHints(). This method will be added to the Servlet API
      (removing the need for the cast) in Servlet 6.2 onwards. (markt)
      + Fix: 69214: Do not reject a CORS request that uses POST but does not
      include a content-type header. Tomcat now correctly processes this as
      a simple CORS request. Based on a patch suggested by thebluemountain.
      (markt)
      + Fix: Refactor SpnegoAuthenticator so it uses Subject.callAs() rather
      than Subject.doAs() when available. (markt)
    * Coyote
      + Fix: Return null SSL session id on zero length byte array returned from
      the SSL implementation. (remm)
      + Fix: Skip OpenSSLConf with BoringSSL since it is unsupported. (remm)
      + Fix: Create the HttpParser in Http11Processor if it is not present on
      the AbstractHttp11Protocol to provide better lifecycle robustness for
      regular HTTP/1.1. The new behavior was introduced on a previous
      refactoring to improve HTTP/2 performance. (remm)
      + Fix: OpenSSLContext will now throw a KeyManagementException if something
      is known to have gone wrong in the init method, which is the behavior
      documented by javax.net.ssl.SSLContext.init. This makes error handling
      more consistent. (remm)
      + Fix: 69316: Ensure that FastHttpDateFormat#getCurrentDate() (used to
      generate Date headers for HTTP responses) generates the correct string
      for the given input. Prior to this change, the output may have been
      wrong by one second in some cases. Pull request #751 provided by Chenjp.
      (markt)
      + Add: Add server and serverRemoveAppProvidedValues to the list of
      attributes the HTTP/2 protocol will inherit from the HTTP/1.1 connector
      it is nested within. (markt)
      + Fix: Avoid possible crashes when using Apache Tomcat Native, caused by
      destroying SSLContext objects through GC after APR has been terminated.
      (remm)
      + Fix: Improve HTTP/2 handling of trailer fields for requests. Trailer
      fields no longer need to be received before the headers of the
      subsequent stream nor are trailer fields for an in-progress stream
      swallowed if the Connector is paused before the trailer fields are
      received. (markt)
      + Fix: Ensure the request and response are not recycled too soon for an
      HTTP/2 stream when a stream level error is detected during the processing
      of incoming HTTP/2 frames. This could lead to incorrect processing times
      appearing in the access log. (markt)
      + Fix: Fix 69320, a regression in the fix for 69302 that meant the
      HTTP/2 processing was likely to be broken for all clients once any
      client sent an HTTP/2 reset frame. (markt)
      + Fix: Correct a regression in the fix for non-blocking reads of chunked
      request bodies that caused InputStream.available() to return a non-zero
      value when there was no data to read. In some circumstances this could
      cause a blocking read to block waiting for more data rather than return
      the data it had already received. (markt)
      + Add: Add a new attribute cookiesWithoutEquals to the Rfc6265CookieProcessor.
      The default behaviour is unchanged. (markt)
      + Fix: Ensure that Tomcat sends a TLS close_notify message after receiving
      one from the client when using the OpenSSLImplementation. (markt)
      + Fix: 69301: Fix trailer headers replacing non-trailer headers when writing
      response headers to the access log. Based on a patch and test case
      provided by hypnoce. (markt)
      + Fix: 69302: If an HTTP/2 client resets a stream before the request body is
      fully written, ensure that any ReadListener is notified via a call to
      ReadListener.onErrror(). (markt)
      + Fix: Correct regressions in the refactoring that added recycling of the
      coyote request and response to the HTTP/2 processing. (markt)
      + Add: Add OpenSSL integration using the FFM API rather than Tomcat Native.
      OpenSSL support may be enabled by adding the
      org.apache.catalina.core.OpenSSLLifecycleListener listener on the
      Server element when using Java 22 or later. (remm)
      + Fix: Ensure that HTTP/2 stream input buffers are only created when there
      is a request body to be read. (markt)
      + Code: Refactor creation of HttpParser instances from the Processor level
      to the Protocol level since the parser configuration depends on the
      protocol and the parser is, otherwise, stateless. (markt)
      + Add: Align HTTP/2 with HTTP/1.1 and recycle the container internal
      request and response processing objects by default. This behaviour can
      be controlled via the new discardRequestsAndResponses attribute on the
      HTTP/2 upgrade protocol. (markt)
    * Jasper
      + Fix: Add back tag release method as deprecated in the runtime for
      compatibility with old generated code. (remm)
      + Fix: 69399: Fix regression caused by the improvement 69333 which caused
      the tag release to be called when using tag pooling, and to be skipped
      when not using it. Patch submitted by Michal Sobkiewicz. (remm)
      + Fix: 69381: Improve method lookup performance in expression language.
      When the required method has no arguments there is no need to consider
      casting or coercion and the method lookup process can be simplified.
      Based on pull request #770 by John Engebretson.
      + Fix: 69382: Improve the performance of the JSP include action by
      re-using results of relatively expensive method calls in the generated
      code rather than repeating them. Patch provided by John Engebretson.
      (markt)
      + Fix: 69398: Avoid unnecessary object allocation in PageContextImpl.
      Based on a suggestion by John Engebretson. (markt)
      + Fix: 69406: When using StringInterpreterEnum, do not throw an
      IllegalArgumentException when an invalid Enum is encountered. Instead,
      resolve the value at runtime. Patch provided by John Engebretson.
      (markt)
      + Fix: 69429: Optimise EL evaluation of method parameters for methods
      that do not accept any parameters. Patch provided by John Engebretson.
      (markt)
      + Fix: 69333: Remove unnecessary code from generated JSPs. (markt)
      + Fix: 69338: Improve the performance of processing expressions that
      include AND or OR operations with more than two operands and expressions
      that use not empty. (markt)
      + Fix: 69348: Reduce memory consumption in ELContext by using lazy
      initialization for the data structure used to track lambda arguments.
      (markt)
      + Fix: Switch the TldScanner back to logging detailed scan results at debug
      level rather than trace level. (markt)
    * Web applications
      + Fix: The manager webapp will now be able to access certificates again
      when OpenSSL is used. (remm)
      + Fix: Documentation. Align the logging configuration documentation with
      the current defaults. (markt)
    * WebSocket
      + Fix: If a blocking message write exceeds the timeout, don't attempt the
      write again before throwing the exception. (markt)
      + Fix: An EncodeException being thrown during a message write should not
      automatically cause the connection to close. The application should
      handle the exception and make the decision whether or not to close the
      connection. (markt)
    * jdbc-pool
      + Fix: 69255: Correct a regression in the fix for 69206 that meant exceptions
      executing statements were wrapped in a java.lang.reflect.UndeclaredThrowableException
      rather than the application seeing the original SQLException. Fixed by
      pull request #744 provided by Michael Clarke. (markt)
      + Fix: 69279: Correct a regression in the fix for 69206 that meant that
      methods that previously returned a null ResultSet were returning a proxy
      with a null delegate. Fixed by pull request #745 provided by Huub de Beer.
      (markt)
      + Fix: 69206: Ensure statements returned from Statement methods
      executeQuery(), getResultSet() and getGeneratedKeys() are correctly
      wrapped before being returned to the caller. Based on pull request
      [#742] provided by Michael Clarke.
    * Other
      + Update: Switch from DigiCert ONE to ssl.com eSigner for code signing.
      (markt)
      + Update: Update Byte Buddy to 1.15.10. (markt)
      + Update: Update CheckStyle to 10.20.0. (markt)
      + Add: Improvements to German translations. (remm)
      + Add: Improvements to French translations. (remm)
      + Add: Improvements to Japanese translations by tak7iji. (markt)
      + Add: Improvements to Chinese translations by Ch_jp. (markt)
      + Add: Exclude the tomcat-coyote-ffm.jar from JAR scanning by default.
      (markt)
      + Fix: Change the default log handler level to ALL so log messages are
      not dropped by default if a logger is configured to use trace (FINEST)
      level logging. (markt)
      + Update: Update Hamcrest to 3.0. (markt)
      + Update: Update EasyMock to 5.4.0. (markt)
      + Update: Update Byte Buddy to 1.15.0. (markt)
      + Update: Update CheckStyle to 10.18.0. (markt)
      + Update: Update the internal fork of Apache Commons BCEL to 6.10.0.
      (markt)
      + Add: Improvements to Spanish translations by Fernando. (markt)
      + Add: Improvements to French translations. (remm)
      + Add: Improvements to Japanese translations by tak7iji. (markt)
      + Fix: Fix packaging regression with missing osgi information following
      addition of the test-only build target. (remm)
      + Update: Update Tomcat Native to 1.3.1. (markt)
      + Update: Update Byte Buddy to 1.14.18. (markt)
      + Add: Improvements to French translations. (remm)
      + Add: Improvements to Japanese translations by tak7iji. (markt)
* Thu Oct 03 2024 fstrba@suse.com
  - Adapt the scripts to run also with javapackages-tools >= 6.3
* Sun Sep 29 2024 fstrba@suse.com
  - Fix build after removal of the default %%{java_home} define
* Mon Jul 08 2024 fstrba@suse.com
  - Modified patch:
    * tomcat-9.0-osgi-build.patch
      + move the definition of bnd.classpath out of the setup-bnd task
      since it is one component in build.classpath
* Mon Jul 08 2024 ricardo.mestre@suse.com
  - Update to Tomcat 9.0.91
    * Fixed CVEs:
      + CVE-2024-34750: Improper handling of exceptional conditions
      (bsc#1227399)
    * Catalina
      + Fix: Allow JAASRealm to use the configuration source to load a configured
      configFile, for easier use with testing. (remm)
      + Fix: Add missing algorithm callback to the JAASCallbackHandler. (remm)
      + Fix: 69131: Expand the implementation of the filter value of the
      Authenticator attribute allowCorsPreflight, so that it applies to all
      requests that match the configured URL patterns for the CORS filter,
      rather than only applying if the CORS filter is mapped to /*. (markt)
      + Add: Add support for shallow copies when using WebDAV. (markt)
      + Code: Deprecate the WebdavFixFilter as it is no longer required. (markt)
      + Fix: 69066: Fix regression in SPNEGO authenticator when processing Base64.
      Submitted by Daniel Lyko. (remm)
      + Update: Update minimum recommended version of Tomcat Native to 1.3.0. Pull
      request #728 provided by Dimitrios Soumis. (markt)
      + Update: The system property org.apache.catalina.connector.RECYCLE_FACADES
      will now default to true if not specified, which will in turn set the
      default value for the discardFacades connector attribute, thus causing
      facade objects to be discarded by default. (remm)
      + Add: Add RealmBase.getPrincipal(GSSName, GSSCredential, GSSContext) for
      retrieving extended/additional information from an established GSS
      context. (michaelo)
      + Fix: Correct a regression in the fix for 68721 that caused some instances
      of LinkageError to be reported as ClassNotFoundException. (markt)
      + Fix: Ensure that static resources deployed via a JAR file remain
      accessible when the context is configured to use a bloom filter. Based on
      pull request #730 provided by bergander. (markt)
      + Add: Introduce reference counting so the AprLifecycleListener is more
      robust. This particularly targets more complex embedded configurations
      with multiple server instances with independent lifecycles where more than
      one server instance requires the AprLifecycleListener. (markt)
      + Update: Deprecate and remove sessionCounter (replaced by the addition of
      the active session count and the expired session count, as a reasonable
      approximation) and duplicates (which does not represent a possible event
      in current implementations) statistics from the session manager. (remm)
      + Fix: 68890 Align output encoding of JSPs in the Manager webapp with the
      XML declarations in those same files. (schultz)
      + Fix: Update Basic authentication to implement the requirements of RFC 7617
      including the changing of the trimCredentials setting which is now
      defaults to false. Note that the trimCredentials setting will be removed
      in Tomcat 11. (markt)
      + Add: Small performance optimization when logging cookies with no values.
      (schultz)
      + Fix: Correct error handling for asynchronous requests. If the application
      performs an dispatch during AsyncListener.onError() the dispatch is now
      performed rather than completing the request using the error page
      mechanism. (markt)
      + Fix: Fix WebDAV lock null (locks for non existing resources) thread safety
      and removal. (remm)
      + Fix: Add periodic checking for WebDAV locks expiration. (remm)
      + Fix: Extend Asn1Parser to parse UTF8Strings. (michaelo)
      + Update: Add highConcurrencyStatus attribute to the SemaphoreValve to
      optionally allow the valve to return an error status code to the client
      when a permit cannot be acquired from the semaphore. (remm)
      + Add: Add checking of the "age" of the running Tomcat instance since its
      build-date to the SecurityListener, and log a warning if the server is
      old. (schultz)
      + Fix: When using the AsyncContext, throw an IllegalStateException, rather
      than allowing an NullPointerException, if an attempt is made to use the
      AsyncContext after it has been recycled. (markt)
      + Fix: Change the thread-safety mechanism for protecting
      StandardServer.services from a simple synchronized lock to a
      ReentrantReadWriteLock to allow multiple readers to operate
      simultaneously. Based upon a suggestion by Markus Wolfe. (schultz)
      + Fix: Improve Service connectors, Container children and Service executors
      access sync using a ReentrantReadWriteLock. (remm)
      + Fix: Improve handling of integer overflow if an attempt is made to upload
      a file via the Servlet API and the file is larger than
      Integer.MAX_VALUE. (markt)
      + Fix: 68862: Handle possible response commit when processing read errors.
      (remm)
    * Jasper
      + Fix: Update the optimisation in jakarta.el.ImportHandler so it is aware of
      new classes added to the java.lang package in Java 23. (markt)
      + Fix: Ensure that an exception in toString() still results in an
      ELException when an object is coerced to a String using
      ExpressionFactory.coerceToType(). (markt)
      + Add: Add support for specifying Java 24 (with the value 24) as the
      compiler source and/or compiler target for JSP compilation. If used with
      an Eclipse JDT compiler version that does not support these values, a
      warning will be logged and the default will used. (markt)
      + Fix: 69135: When using include directives in a tag file packaged in a JAR
      file, ensure that context relative includes are processed correctly. (
      markt)
      + Fix: 69135: When using include directives in a tag file packaged in a JAR
      file, ensure that file relative includes are processed correctly. (markt)
      + Fix: 69135: When using include directives in a tag file packaged in a JAR
      file, ensure that file relative includes are are not permitted to access
      files outside of the /META_INF/tags/ directory nor outside of the JAR
      file. (markt)
      + Fix: 68546: Small additional optimisation for initial loading of Servlet
      code generated for JSPs. Based on a suggestion by Dan Armstrong. (markt)
      + Add: Add support for specifying Java 23 (with the value 23) as the
      compiler source and/or compiler target for JSP compilation. If used with
      an Eclipse JDT compiler version that does not support these values, a
      warning will be logged and the default will used. (markt)
      + Fix: Handle the case where the JSP engine forwards a request/response to a
      Servlet that uses an OutputStream rather than a Writer. This was
      triggering an IllegalStateException on code paths where there was a
      subsequent attempt to obtain a Writer. (markt)
      + Fix: Correctly handle the case where a tag library is packaged in a JAR
      file and the web application is deployed as a WAR file rather than an
      unpacked directory. (markt)
      + Fix: Prevent the web application's ClassLoader from being pinned by the
      JSP compiler if an application uses a custom XMLInputFactory. Based upon a
      suggestion from Simon Niederberger. (schultz)
    * Web applications
      + Fix: Fix status servlet detailed view of the connectors when using
      automatic port. (remm)
      + Add: Add the ability to set a sub-title for the Manager web application
      main page. This is intended to allow users with lots of instances to
      easily distinguish them. Based on pull request #724 by Simon Arame.
      (markt)
      + Fix: Examples: Improve performance of WebSocket chat application when
      multiple clients disconnect at the same time. (markt)
      + Update: Examples: Increase the number of previous messages displayed when
      using the WebSocket chat application. (markt)
      + Fix: Examples: Improve performance of WebSocket snake application when
      multiple clients disconnect at the same time. (markt)
    * Coyote
      + Fix: Improve the algorithm used to identify the IP address to use to
      unlock the acceptor thread when a Connector is listening on all local
      addresses. Interfaces that are configured for point to point connections
      or are not currently up are now skipped. (markt)
      + Fix: 69121: Ensure that the onComplete() event is triggered if
      AsyncListener.onError() dispatches to a target that throws an exception.
      (markt)
      + Fix: Following the trailer header field refactoring, -1 is no longer an
      allowed value for maxTrailerSize. Adjust documentation accordingly. (remm)
      + Fix: 69068: Ensure read timouts are triggered for asynchronous,
      non-blocking reads when using HTTP/2. (markt)
      + Update: 69133: Add task queue size configuration on the Connector element,
      similar to the Executor element, for consistency. (remm)
      + Fix: Make counting of active HTTP/2 streams per connection more robust.
      (markt)
      + Add: Add support for TLS 1.3 client initiated re-keying. (markt)
      + Fix: Align non-secure and secure writes with NIO and skip the write
      attempt when there are no bytes to be written. (markt)
      + Fix: Allow any positive value for socket.unlockTimeout. If a negative or
      zero value is configured, the default of 250ms will be used. (mark)
      + Fix: Reduce the time spent waiting for the connector to unlock. The
      previous default of 10s was noticeably too long for cases where the unlock
      has failed. The wait time is now 100ms plus twice socket.unlockTimeout.
      (markt)
      + Fix: Ensure that the onAllDataRead() event is triggered when the request
      body uses chunked encoding and is read using non-blocking IO. (markt)
      + Fix: 68934: Add debug logging in the latch object when exceeding
      maxConnections. (remm)
      + Fix: Refactor trailer field handling to use a MimeHeaders instance to
      store trailer fields. (markt)
      + Fix: Ensure that multiple instances of the same trailer field are handled
      correctly. (markt)
      + Fix: Fix non-blocking reads of chunked request bodies. (markt)
      + Fix: When an invalid HTTP response header was dropped, an off-by-one error
      meant that the first header in the response was also dropped. Fix based on
      pull request #710 by foremans. (markt)
      + Fix: Add threadsMaxIdleTime attribute to the endpoint, to allow
      configuring the amount of time before an internal executor will scale back
      to the configured minSpareThreads size. (remm)
    * WebSocket
      + Fix: 68884: Reduce the write timeout when writing WebSocket close messages
      for abnormal closes. The timeout defaults to 50 milliseconds and may be
      controlled using the
      org.apache.tomcat.websocket.ABNORMAL_SESSION_CLOSE_SEND_TIMEOUT property
      in the user properties collection associated with the WebSocket session.
      (markt)
    * Other
      + Update: Add test-only build target to allow running only the testsuite,
      supporting Java versions down to the minimum supported to run Tomcat.
      (rjung)
      + Update: Update UnboundID to 7.0.1. (markt)
      + Update: Update to SpotBugs 4.8.6. (markt)
      + Update: Remove cglib dependency as it is not required by the version of
      EasyMock used by the unit tests. (markt)
      + Update: Update EasyMock to 5.3.0. This adds a test dependency on
      Byte-Buddy 1.14.17. (markt)
      + Add: Improvements to Czech translations by Vladimír Chlup. (markt)
      + Add: Improvements to French translations. (remm)
      + Add: Improvements to Japanese translations by tak7iji. (markt)
      + Add: Improvements to Chinese translations by fangzheng. (markt)
      + Update: Revert Derby to 10.16.1.1 as that is the latest version of Derby
      that runs on Java 17. (markt)
      + Update: Update to Commons Daemon 1.4.0. (markt)
      + Update: Update to Objenesis 3.4. (markt)
      + Update: Update to Checkstyle 10.17.0. (markt)
      + Update: Update to SpotBugs 4.8.5. (markt)
      + Add: Improvements to French translations. (remm)
      + Add: Improvements to Japanese translations by tak7iji. (markt)
      + Update: Switch to using the Base64 encoder and decoder provided by the JRE
      rather than the version provided by Commons Codec. The internal fork of
      Commons Codec has been deprecated and will be removed in Tomcat 11.
      (markt)
      + Update: Update NSIS to 3.10. (mark0t)
      + Update: Update UnboundID to 7.0.0. (markt)
      + Update: Update Checkstyle to 10.16.0. (markt)
      + Update: Update JaCoCo to 0.8.12. (markt)
      + Update: Update SpotBugs to 4.8.4. (markt)
      + Update: Update the internal fork of Apache Commons BCEL to 6.9.0. (markt)
      + Update: Update the internal fork of Apache Commons DBCP to 2.12.0. (markt)
      + Add: Improvements to Japanese translations by tak7iji. (markt)
      + Update: Update Checkstyle to 10.14.1. (markt)
      + Update: Update the internal fork of Apache Commons BCEL to 6.8.2. (markt)
      + Update: Update the internal fork of Apache Commons Codec to 1.16.1.
      (markt)
      + Add: Improvements to French translations. (remm)
      + Add: Improvements to Japanese translations by tak7iji. (remm)
      + Add: Improvements to Chinese translations by leeyazhou. (remm)
  - Modified patch:
    * tomcat-9.0-build-with-java-11.patch
      + rediff to changed context
* Fri Apr 05 2024 ricardo.mestre@suse.com
  - Update to Tomcat 9.0.87
    * Fixed CVEs:
      + CVE-2024-24549: Improved request header validation for HTTP/2 stream
      (bsc#1221386)
      + CVE-2024-23672: Ensure that WebSocket connection closure completes if
      the connection is closed when the server side has used the proprietary
      suspend/resume feature to suspend the connection (bsc#1221385)
    * Catalina
      + Fix:  Minor performance improvement for building filter chains. Based
      on ideas from #702 by Luke Miao. (remm)
      + Fix:  Align error handling for Writer and OutputStream. Ensure use of
      either once the response has been recycled triggers a
      NullPointerException provided that discardFacades is configured with
      the default value of true. (markt)
      + Fix:  68692: The standard thread pool implementations that are configured
      using the Executor element now implement ExecutorService for better
      support NIO2. (remm)
      + Fix:  68495: When restoring a saved POST request after a successful FORM
      authentication, ensure that neither the URI, the query string nor the
      protocol are corrupted when restoring the request body. (markt)
      + Fix:  68721: Workaround a possible cause of duplicate class definitions
      when using ClassFileTransformers and the transformation of a class also
      triggers the loading of the same class. (markt)
      + Fix:  The rewrite valve should not do a rewrite if the output is
      identical to the input. (remm)
      + Update:  Add a new valveSkip (or VS) rule flag to the rewrite valve to
      allow skipping over the next valve in the Catalina pipeline. (remm)
      + Fix:  Correct JPMS and OSGi meta-data for tomcat-enbed-core.jar by
      removing reference to org.apache.catalina.ssi package that is no longer
      included in the JAR. Based on pull request #684 by Jendrik Johannes.
      (markt)
      + Fix:  Fix ServiceBindingPropertySource so that trailing \r\n sequences
      are correctly removed from files containing property values when
      configured to do so. Bug identified by Coverity Scan. (markt)
      + Add:  Add improvements to the CSRF prevention filter including the
      ability to skip adding nonces for resource name and subtree URL patterns.
      (schultz)
      + Fix:  Review usage of debug logging and downgrade trace or data dumping
      operations from debug level to trace. (remm)
      + Fix:  68089: Further improve the performance of request attribute
      access for ApplicationHttpRequest and ApplicationRequest. (markt)
      + Fix:  68559: Allow asynchronous error handling to write to the
      response after an error during asynchronous processing. (markt)
    * Coyote
      + Fix:  Improve the HTTP/2 stream prioritisation process. If a stream
      uses all of the connection windows and still has content to write, it
      will now be added to the backlog immediately rather than waiting until
      the write  attempt for the remaining content. (markt)
      + Fix:  Make asynchronous error handling more robust. Ensure that once
      a connection is marked to be closed, further asynchronous processing
      cannot change that. (markt)
      + Fix:  Make asynchronous error handling more robust. Ensure that once
      the call to AsyncListener.onError() has returned to the container, only
      container threads can access the AsyncContext. This protects against
      various race conditions that woudl otherwise occur if application threads
      continued to access the AsyncContext.
      + Fix:  Review usage of debug logging and downgrade trace or data
      dumping operations from debug level to trace. In particular, most of the
      HTTP/2 debug logging has been changed to trace level. (remm)
      + Fix:  Add support for user provided SSLContext instances configured
      on SSLHostConfigCertificate instances. Based on pull request #673
      provided by Hakan Altındağ. (markt)
      + Fix:  Improve the Tomcat Native shutdown process to reduce the likelihood
      of a JVM crash during Tomcat shutdown. (markt)
      + Fix:  Partial fix for 68558: Cache the result of converting to String
      for request URI, HTTP header names and the request Content-Type value to
      improve performance by reducing repeated byte[] to String conversions.
      (markt)
      + Fix:  Improve error reporting to HTTP/2 clients for header processing
      errors by reporting problems at the end of the frame where the error was
      detected rather than at the end of the headers. (markt)
      + Fix:  Remove the remaining reference to a stream once the stream has
      been recycled. This makes the stream eligible for garbage collection
      earlier and thereby improves scalability. (markt)
    * Jasper
      + Add:  Add support for specifying Java 22 (with the value 22) as the
      compiler source and/or compiler target for JSP compilation. If used with
      an  Eclipse JDT compiler version that does not support these values, a
      warning will be logged and the default will used. (markt)
      + Fix:  68546: Generate optimal size and types for JSP imports maps, as
      suggested by John Engebretson. (remm)
      + Fix:  Review usage of debug logging and downgrade trace or data
      dumping operations from debug level to trace. (remm)
    * Cluster
      + Fix:  Avoid updating request count stats on async. (remm)
    * WebSocket
      + Fix:  Correct a regression in the fix for 66508 that could cause an
      UpgradeProcessor leak in some circumstances. (markt)
      + Fix:  Review usage of debug logging and downgrade trace or data dumping
      operations from debug level to trace. (remm)
      + Fix:  Ensure that WebSocket connection closure completes if the
      connection is closed when the server side has used the proprietary
      suspend/resume feature to suspend the connection. (markt)
    * Web applications
      + Add:  Add support for responses in JSON format from the examples
      application RequestHeaderExample. (schultz)
    * Other
      + Add:  Improvements to French translations. (remm)
      + Add:  Improvements to Japanese translations by tak7iji. (markt)
      + Update:  Update Checkstyle to 10.13.0. (markt)
      + Update:  Update JSign to 6.0. (markt)
      + Update:  Add strings for debug level messages. (remm)
      + Update:  Update Tomcat Native to 1.3.0. (markt)
      + Add:  Improvements to French translations. (remm)
      + Add:  Improvements to Japanese translations by tak7iji. (markt)
* Wed Mar 06 2024 dcermak@suse.com
  - Add missing Requires(post): util-linux to have runuser into post
* Mon Mar 04 2024 fstrba@suse.com
  - Add %%systemd_ordering to packages with systemd unit files, so
    that the order is the right one if those packages find themselves
    in the same transaction with systemd
* Sat Feb 17 2024 fstrba@suse.com
  - Link ecj.jar into the install instead of copying it
* Tue Feb 06 2024 michele.bussolotto@suse.com
  - rpm 4.19 requires dependencies on tomcat user and group (bsc#1219530)
* Fri Jan 26 2024 michele.bussolotto@suse.com
  - Fixed CVEs:
    * CVE-2024-22029: run xsltproc as tomcat group (bsc#1219208)
* Wed Jan 17 2024 michele.bussolotto@suse.com
  - Update to Tomcat 9.0.85
    * Fixed CVEs:
      + CVE-2023-46589: Apache Tomcat: HTTP request smuggling due to
      incorrect headers parsing (bsc#1217649)
    * Catalina
      + Update:  68378: Align extension to MIME type mappings in the
      global web.xml with those in httpd by adding
      application/vnd.geogebra.slides for ggs, text/javascript for mjs
      and audio/ogg for opus. (markt)
      + Fix:  Background processes should not be run concurrently with
      lifecycle operations of a container. (remm)
      + Fix:  Correct unintended escaping of XML in some WebDAV
      responses. The XML list of support locks when provided in
      response to a PROPFIND request was incorrectly XML escaped.
      (markt)
      + Fix:  68227: Ensure that AsyncListener.onComplete() is called
      if AsyncListener.onError() calls AsyncContext.dispatch().
      (markt)
      + Fix:  68228: Use a 408 status code if a read timeout occurs
      during HTTP request processing. Includes a test case based on
      code provided by adwsingh. (markt)
      + Fix:  67667: TLSCertificateReloadListener prints unreadable
      rendering of X509Certificate#getNotAfter(). (michaelo)
      + Update:  The status servlet included in the manager webapp
      can now output statistics as JSON, using the JSON=true URL
      parameter. (remm)
      + Update:  Optionally allow ServiceBindingPropertySource to
      trim a trailing newline from a file containing a
      property-value. (schultz)
      + Fix:  67793: Ensure the original session timeout is restored
      after FORM authentication if the user refreshes a page during
      the FORM authentication process. Based on a suggestion by
      Mircea Butmalai. (markt)
      + Update:  67926: PEMFile prints unidentifiable string
      representation of ASN.1 OIDs. (michaelo)
      + Fix:  66875: Ensure that setting the request attribute
      jakarta.servlet.error.exception is not sufficient to trigger
      error handling for the current request and response. (markt)
      + Fix:  68054: Avoid some file canonicalization calls
      introduced by the fix for 65433. (remm)
      + Fix:  68089: Improve performance of request attribute access
      for ApplicationHttpRequest and ApplicationRequest. (markt)
      + Fix:  Use a 400 status code to report an error due to a bad
      request (e.g. an invalid trailer header) rather than a 500
      status code. (markt)
      + Fix:  Ensure that an IOException during the reading of the
      request triggers always error handling, regardless of whether
      the application swallows the exception. (markt)
    * Coyote
      + Fix:  Refactor the VirtualThreadExecutor so that it can be
      used by the NIO2 connector which was using platform threads
      even when configured to use virtual threads. (markt)
      + Fix:  Correct a regression in the fix for 67675 that broke
      TLS key file parsing for PKCS#8 format keys that do not specify
      an explicit pseudo-random function and rely on the default.
      This typically affects keys generated by OpenSSL 1.0.2.
      (markt)
      + Fix:  Allow multiple operations with the same name on
      introspected mbeans, fixing a regression caused by the
      introduction of a second addSslHostConfig method. (remm)
      + Fix:  Relax the check that the HTTP Host header is consistent
      with the host used in the request line, if any, to make the
      check case insensitive since host names are case insensitive.
      (markt)
      + Add:  68348: Add support for the partitioned attribute for
      cookies. (markt)
      + Add:  66670: Add SSLHostConfig#certificateKeyPasswordFile and
      SSLHostConfig#certificateKeystorePasswordFile. (michaelo)
      + Add:  When calling
      SSLHostConfigCertificate.setCertificateKeystore(ks),
      automatically call setCertificateKeystoreType(ks.getType()).
      (markt)
      + Fix:  67628: Clarify how the ciphers attribute of the
      SSLHostConfig is used. (markt)
      + Fix:  67666: Ensure TLS connectors using PEM files either
      work with the TLSCertificateReloadListener or, in the rare case
      that they do not, log a warning on Connector start. (markt)
      + Fix:  67675: Support a wider range of KDF and ciphers for PEM
      files than the combinations supported by the JVM by default.
      Specifically, support the OpenSSL default of HmacSHA256 and
      DES-EDE3-CBC. (markt)
      + Fix:  67927: Reloading TLS configuration can cause the
      Connector to refuse new connections or the JVM to crash.
      (markt)
      + Fix:  67934: If both Tomcat Native 1.2.x and 2.0.x are
      available, prefer 1.2.x since it supports the APR/Native
      connector whereas 2.0.x does not. (markt)
      + Fix:  67938: Correct handling of large TLS client hello
      messages that were causing the TLS handshake to fail. (markt)
      + Fix:  68026: Convert selected MessageByte values to String
      when first accessed to speed up subsequent accesses and reduce
      garbage collection. (markt)
    * Jasper
      + Code:  68119: Refactor the CompositeELResolver to improve
      performance during type conversion operations. (markt)
      + Fix:  68068: Performance improvement for EL. Based on a
      suggestion by John Engebretson. (markt)
    * Web Applications
      + Fix:  68035: Additional fix to the Manager application to
      enable the deployment of a web application located in a Host's
      appBase where the web application is specified by a bare (no
      path) WAR or directory name as shown in the documentation.
      (markt)
      + Fix:  Examples. Improve the error handling so snakes
      associated with a user that drops from the network are removed
      from the game. (markt)
      + Fix:  68035: Correct a regression in the fix for 56248 that
      prevented deployment via the Manager of a WAR or directory that
      was already present in the appBase or a context file that was
      already present in the xmlBase. (markt)
    * Other
      + Update:  Update Checkstyle to 10.12.7. (markt)
      + Update:  Update SpotBugs to 4.8.3. (markt)
      + Add:  Improvements to French translations. (remm)
      + Add:  Improvements to Japanese translations by tak7iji.
      (markt)
      + Update:  Update UnboundID to 6.0.11. (markt)
      + Update:  Update Checkstyle to 10.12.5. (markt)
      + Update:  Update SpotBugs to 4.8.2. (markt)
      + Update:  Update Derby to 10.17.1. (markt)
      + Add:  Improvements to French translations. (remm)
      + Add:  Improvements to Japanese translations by tak7iji.
      (markt)
      + Add:  Improvements to Brazilian Portuguese translations by
      John William Vicente. (markt)
      + Add:  Improvements to Russian translations by usmazat and
      remm. (markt)
      + Add:  67538: Make use of Ant's <javaversion /> task to enfore
      the mininum Java build version. (michaelo)
      + Update:  Update Checkstyle to 10.12.4. (markt)
      + Update:  Update JaCoCo to 0.8.11. (markt)
      + Update:  Update SpotBugs to 4.8.0. (markt)
      + Update:  Update BND to 7.0.0. (markt)
      + Update:  The minimum Java version required to build Tomcat
      has been raised to Java 17. (markt)
  - Added patches:
    * tomcat-9.0-build-with-java-11.patch
* Wed Jan 17 2024 michele.bussolotto@suse.com
  - change server.xml during %post instead of %posttrans
* Fri Jan 12 2024 michele.bussolotto@suse.com
  - Fix server.xml permission (bsc#1217768, bsc#1217402)
  - remove serverxmltool and use xsltproc
* Thu Nov 23 2023 ricardo.mestre@suse.com
  - replace prep setup and patches macro with autosetup
* Fri Oct 13 2023 fstrba@suse.com
  - Update to Tomcat 9.0.82
    * Fixed CVEs:
      + CVE-2023-45648: Improve trailer header parsing (bsc#1216118)
      + CVE-2023-42794: FileUpload: remove tmp files to avoid DoS
      on Windows (bsc#1216120)
      + CVE-2023-42795: Improve handling of failures during recycle()
      methods (bsc#1216119)
    * Catalina
      + Add: 65770: Provide a lifecycle listener that will
      automatically reload TLS configurations a set time before the
      certificate is due to expire. This is intended to be used with
      third-party tools that regularly renew TLS certificates.
      + Fix: Fix handling of an error reading a context descriptor on
      deployment.
      + Fix: Fix rewrite rule qsd (query string discard) being ignored
      if qsa was also use, while it should instead take precedence.
      + Fix: 67472: Send fewer CORS-related headers when CORS is not
      actually being engaged.
      + Add: Improve handling of failures within recycle() methods.
    * Coyote
      + Fix: 67670: Fix regression with HTTP compression after code
      refactoring.
      + Fix: 67198: Ensure that the AJP connector attribute
      tomcatAuthorization takes precedence over the
      tomcatAuthentication attribute when processing an auth_type
      attribute received from a proxy server.
      + Fix: 67235: Fix a NullPointerException when an AsyncListener
      handles an error with a dispatch rather than a complete.
      + Fix: When an error occurs during asynchronous processing,
      ensure that the error handling process is only triggered once
      per asynchronous cycle.
      + Fix: Fix logic issue trying to match no argument method in
      IntropectionUtil.
      + Fix: Improve thread safety around readNotify and writeNotify
      in the NIO2 endpoint.
      + Fix: Avoid rare thread safety issue accessing message digest
      map.
      + Fix: Improve statistics collection for upgraded connections
      under load.
      + Fix: Align validation of HTTP trailer fields with standard
      fields.
      + Fix: Improvements to HTTP/2 overhead protection (bsc#1216182,
      CVE-2023-44487)
    * jdbc-pool
      + Fix: 67664: Correct a regression in the clean-up of
      unnecessary use of fully qualified class names in 9.0.81
      that broke the jdbc-pool.
    * Jasper
      + Fix: 67080: Improve performance of EL expressions in JSPs that
      use implicit objects
* Thu Sep 21 2023 fstrba@suse.com
  - Update to Tomcat 9.0.80
    * Catalina
      + Add RateLimitFilter which can be used to mitigate DoS and
      Brute Force attacks
      + Move the management of the utility executor from the
      init()/destroy() methods of components to the start()/stop()
      methods.
      + Add org.apache.catalina.core.StandardVirtualThreadExecutor,
      a virtual thread based executor that may be used with one or
      more Connectors to process requests received by those
      Connectors using virtual threads. This Executor requires a
      minimum Java version of Java 21.
      + 66513: Add a per session Semaphore to the PersistentValve that
      ensures that, within a single Tomcat instance, there is no
      more than one concurrent request per session. Also expand the
      debug logging to include whether a request bypasses the Valve
      and the reason if a request fails to obtain the per session
      Semaphore.
      + 66609: Ensure that the default servlet correctly escapes file
      names in directory listings when using XML output.
      + 66618: Add a numeric last modified field to the XML directory
      listings produced by the default servlet to enable sorting in
      the XSLT.
      + 66621: Attempts to lock a collection with WebDAV may
      incorrectly fail if a child collection has an expired lock.
      + 66622: Deprecate the xssProtectionEnabled setting from the
      HttpHeaderSecurityFilter and change the default value to false
      as support for the associated HTTP header has been removed
      from all major browsers.
      + 59232: Add org.apache.catalina.core.ContextNamingInfoListener,
      a listener which creates context naming information
      environment entries.
      + 66665: Add
      org.apache.catalina.core.PropertiesRoleMappingListener, a
      listener which populates the context's role mapping from a
      properties file.
      + Fix an edge case where intra-web application symlinks would be
      followed if the web applications were deliberately crafted to
      allow it even when allowLinking was set to false.
      + Add utility config file resource lookup on Context to allow
      looking up resources from the webapp (prefixed with webapp:)
      and make the resource lookup API more visible.
      + Fix potential database connection leaks in
      DataSourceUserDatabase identified by Coverity Scan.
      + Make parsing of ExtendedAccessLogValve patterns more robust.
      + Fix failure trying to persist configuration for an internal
      credential handler.
      + 66680: When serializing a session during the session
      presistence process, do not log a warning that null Principals
      are not serializable.
      + Catch NamingException in JNDIRealm#getPrincipal. It is used in
      Java up to 17 to signal closed connections.
      + 66822: Use the same naming format in log messages for
      Connector instances as the associated ProtocolHandler instance.
      + The parts count should also lower the actual maxParameterCount
      used for parsing parameters if parts are parsed first.
      + If an application or library sets both a non-500 error code
      and the javax.servlet.error.exception request attribute, use
      the provided error code during error page processing rather
      than assuming an error code of 500.
      + Update code comments and Tomcat output to use MiB for
      1024 * 1024 bytes and KiB for 1024 bytes rather than
      MB and kB.
      + Avoid protocol relative redirects in FORM authentication
      (CVE-2023-41080, bsc#1214666).
    * Coyote
      + Update the HTTP/2 implementation to use the prioritization
      scheme defined in RFC 9218 rather than the one defined in
      RFC 7540.
      + 66602: not sending WINDOW_UPDATE when dataLength is ZERO on
      call SwallowedDataFramePayload.
      + 66627: Restore the documented behaviour of
      MessageBytes.getType() that it returns the type of the
      original content rather than reflecting the most recent
      conversion.
      + 66635: Correct certificate logging on start-up so it
      differentiates between keystore based keys/certificates and
      PEM file based keys/certificates and logs the relevant
      information for each.
      + Refactor blocking reads and writes for the NIO connector to
      remove code paths that could allow a notification from the
      Poller to be missed resuting in a timeout rather than the
      expected read or write.
      + Refactor waiting for an HTTP/2 stream or connection window
      update to handle spurious wake-ups during the wait.
      + Correct a regression introduced in 9.0.78 and use the correct
      constant when constructing the default value for the
      certificateKeystoreFile attribute of an
      SSLHostConfigCertificate instance.
      + Refactor HTTP/2 implementation to reduce pinning when using
      virtual threads.
      + Pass through ciphers referring to an OpenSSL profile, such as
      PROFILE=SYSTEM instead of producing an error trying to parse
      it.
      + 66841: Ensure that AsyncListener.onError() is called after an
      error during asynchronous processing with HTTP/2.
      + 66842: When using asynchronous I/O (the default for NIO and
      NIO2), include DATA frames when calculating the HTTP/2
      overhead count to ensure that connections are not prematurely
      terminated.
      + Correct a race condition that could cause spurious RST
      messages to be sent after the response had been written to an
      HTTP/2 stream.
    * WebSocket
      + 66548: Expand the validation of the value of the
      Sec-Websocket-Key header in the HTTP upgrade request that
      initiates a WebSocket connection. The value is not decoded but
      it is checked for the correct length and that only valid
      characters from the base64 alphabet are used.
      + Improve handling of error conditions for the WebSocket server,
      particularly during Tomcat shutdown.
      + Correct a regression in the fix for 66574 that meant the
      WebSocket session could return false for onOpen() before the
      onClose() event had been completed.
      + 66681: Fix a NullPointerException when flushing batched
      messages with compression enabled using permessage-deflate.
    * Web applications
      + Documentation. Expand the security guidance to cover the
      embedded use case and add notes on the uses made of the
      java.io.tmpdir system property.
      + 66662: Documentation. Fix a typo in the name of the algorithms
      attribute in the configuration section for the Digest
      authentication value.
      + Documentation. Update documentation to use MiB for
      1024 * 1024 bytes and KiB for 1024 bytes rather than
      MB and kB.
    * jdbc-pool
      + Fix the releaseIdleCounter does not increment when testAllIdle
      releases them.
      + Fix the ConnectionState state will be inconsistent with actual
      state on the connection when an exception occurs while
      writing.
    * Other
      + Update to Commons Daemon 1.3.4.
      + Improvements to French translations.
      + Update Checkstyle to 10.12.0.
      + Update the packaged version of the Apache Tomcat Native
      Library to 1.2.37 to pick up the Windows binaries built with
      with OpenSSL 1.1.1u.
      + Include the Windows specific binary distributions in the files
      uploaded to Maven Central.
      + Improvements to French translations.
      + Improvements to Japanese translations.
      + Update UnboundID to 6.0.9.
      + Update Checkstyle to 10.12.1.
      + Update BND to 6.4.1.
      + Update JSign to 5.0.
      + Correct properties for JSign dependency.
      + Align documentation for maxParameterCount to match hard-coded
      defaults.
      + Update NSIS to 3.0.9.
      + Update Checkstyle to 10.12.2.
      + Improvements to French translations.
      + Improvements to Japanese translations.
      + 66829: Fix quoting so users can use the _RUNJAVA environment
      variable as intended on Windows when the path to the Java
      executable contains spaces.
      + Update Tomcat Native to 1.2.38 to pick up Windows binaries
      built with OpenSSL 1.1.1v.
      + Improvements to Chinese translations.
      + Improvements to French translations.
      + Improvements to Japanese translations
  - Removed patch:
    * tomcat-9.0.75-CVE-2023-41080.patch
      + integrated in this version
* Thu Sep 21 2023 michele.bussolotto@suse.com
  - Fixed CVEs:
    * CVE-2023-41080: Avoid protocol relative redirects in FORM authentication. (bsc#1214666)
  - Added patches:
    * tomcat-9.0.75-CVE-2023-41080.patch
* Mon Sep 18 2023 fstrba@suse.com
  - Modified patch:
    * tomcat-9.0-osgi-build.patch
      + make it more robust to change in number of artifacts in bnd
      + do not enumerate jars, just take all jars from the aqute-bnd
      directory into the classpath
* Tue Sep 12 2023 fstrba@suse.com
  - Require(pre) shadow because groupadd is needed early
* Tue May 23 2023 fstrba@suse.com
  - Update to Tomcat 9.0.75.
    * See changelog at
      https://tomcat.apache.org/tomcat-9.0-doc/changelog.html#Tomcat_9.0.75_(markt)
    * Fixes:
      + bsc#1211608, CVE-2023-28709
      + bsc#1208513, CVE-2023-24998 (previous incomplete fix)
  - Remove patches:
    * tomcat-9.0-CVE-2021-30640.patch
    * tomcat-9.0-CVE-2021-33037.patch
    * tomcat-9.0-CVE-2021-41079.patch
    * tomcat-9.0-CVE-2022-23181.patch
    * tomcat-9.0-NPE-JNDIRealm.patch
    * tomcat-9.0-hardening_getResources.patch
    * tomcat-9.0.43-CVE-2021-43980.patch
    * tomcat-9.0.43-CVE-2022-42252.patch
    * tomcat-9.0.43-CVE-2022-45143.patch
    * tomcat-9.0.43-CVE-2023-24998.patch
    * tomcat-9.0.43-CVE-2023-28708.patch
      + integrated in this version
    * tomcat-9.0.43-java8compat.patch
      + problem with Java 8 compatibility solved in this version
  - Modified patch:
    * tomcat-9.0.31-secretRequired-default.patch
    - > tomcat-9.0.75-secretRequired-default.patch
      + rediffed to changed context
    * tomcat-9.0-javadoc.patch
      + drop integrated hunks
    * tomcat-9.0-osgi-build.patch
      + fix to work with current version
  - Added patch:
    * tomcat-9.0-jdt.patch
      + fix build against our ecj
* Fri Apr 07 2023 michele.bussolotto@suse.com
  - Fixed CVEs:
    * CVE-2022-45143: JsonErrorReportValve: add escape for type, message or description (bsc#1206840)
  - Added patches:
    * tomcat-9.0.43-CVE-2022-45143.patch
* Thu Mar 23 2023 michele.bussolotto@suse.com
  - Fixed CVEs:
    * CVE-2023-28708: tomcat: not including the secure attribute
      causes information disclosure (bsc#1209622)
  - Added patches:
    * tomcat-9.0.43-CVE-2023-28708.patch
* Tue Feb 28 2023 michele.bussolotto@suse.com
  - Fixed CVEs:
    * CVE-2023-24998: tomcat,tomcat6: FileUpload DoS with excessive parts (bsc#1208513)
  - Added patches:
    * tomcat-9.0.43-CVE-2023-24998.patch
* Fri Dec 23 2022 michele.bussolotto@suse.com
  - set logrotate for localhost.log, manager.log, host-manager.log and localhost_access_log.txt
  - use logrotate for catalina.out
    * update tomcat-serverxml-tool and spec to configure server.xml
  - Added patch:
    * tomcat-9.0-logrotate_everything.patch
    * tomcat-serverxml-tool.tar.gz
  - Removed:
    * tomcat-serverxml-tool-1.0.tar.gz
* Tue Nov 29 2022 michele.bussolotto@suse.com
  - Use catalina.out for logging (bsc#1205647)
  - Added patches:
    * tomcat-9.0-fix_catalina.patch
* Mon Nov 21 2022 michele.bussolotto@suse.com
  - Fixed CVEs:
    * CVE-2022-42252: reject invalid content-length requests. (bsc#1204918)
  - Added patches:
    * tomcat-9.0.43-CVE-2022-42252.patch
* Thu Oct 20 2022 michele.bussolotto@suse.com
  - Fixed CVEs:
    * CVE-2021-43980: Improve the recycling of Processor objects to make it more robust. (bsc#1203868)
  - Added patches:
    * tomcat-9.0.43-CVE-2021-43980.patch
* Wed Jul 13 2022 fstrba@suse.com
  - Do not hardcode /usr/libexec but use %%_libexecdir during the
    build
    * Fixes for platforms, where /usr/libexec and %%_libexecdir are
      different
* Thu Jul 07 2022 fstrba@suse.com
  - Fix bsc#1201081 by building with release=8 all files that can be
    built this way. The one file remaining, build it with source=8 and
    target=8
  - Modified patch:
    * tomcat-9.0.43-java8compat.patch
      + Do not cast ByteBuffer to Buffer to call the Java 8 compatible
      methods. Build with release=8 instead
* Thu Apr 07 2022 michele.bussolotto@suse.com
  - Security hardening. Deprecate getResources() and always return null. (bsc#1198136)
  - Added patch: tomcat-9.0-hardening_getResources.patch
* Wed Feb 23 2022 fstrba@suse.com
  - Remove dependency on log4j/reload4j completely (bsc#1196137)
* Tue Feb 22 2022 fstrba@suse.com
  - Do not build against the log4j12 packages, use the new reload4j
* Fri Jan 28 2022 michele.bussolotto@suse.com
  - Fixed CVEs:
    * CVE-2022-23181: Make calculation of session storage location more robust (bsc#1195255)
  - Added patches:
    * tomcat-9.0-CVE-2022-23181.patch
* Mon Jan 10 2022 olaf@aepfle.de
  - remove instance units from post scripts, they can not be reloaded
* Fri Dec 10 2021 michele.bussolotto@suse.com
  - Fix NPE in JNDIRealm, when userRoleAttribute is not set (bsc#1193569)
  - Added patch:
    * tomcat-9.0-NPE-JNDIRealm.patch
* Wed Nov 10 2021 fstrba@suse.com
  - Modified patch:
    * tomcat-9.0-osgi-build.patch
      + account for biz.aQute.bnd.ant artifact in aqute-bnd >= 5.2.0
* Fri Oct 29 2021 michele.bussolotto@suse.com
  - Fixed CVEs:
    * CVE-2021-30640: Escape parameters in JNDI Realm queries (bsc#1188279)
    * CVE-2021-33037: Process T-E header from both HTTP 1.0 and HTTP 1.1. clients (bsc#1188278)
  - Added patches:
    * tomcat-9.0-CVE-2021-30640.patch
    * tomcat-9.0-CVE-2021-33037.patch
* Thu Oct 28 2021 michele.bussolotto@suse.com
  - Fixed CVEs:
    * CVE-2021-41079: Validate incoming TLS packet (bsc#1190558)
  - Added patches:
    * tomcat-9.0-CVE-2021-41079.patch
* Mon Oct 18 2021 wittemar@googlemail.com
  - Update to Tomcat 9.0.43. See changelog at
    https://tomcat.apache.org/tomcat-9.0-doc/changelog.html#Tomcat_9.0.43_(markt)
  - Removed Patches because fixed upstream now:
    * tomcat-9.0-CVE-2021-25122.patch
    * tomcat-9.0-CVE-2021-25329.patch
  - Rebased patch:
    tomcat-9.0.39-java8compat.patch -> tomcat-9.0.43-java8compat.patch
* Mon Oct 18 2021 wittemar@googlemail.com
  - Update to Tomcat 9.0.41. See changelog at
    https://tomcat.apache.org/tomcat-9.0-doc/changelog.html#Tomcat_9.0.41_(markt)
* Mon Oct 18 2021 wittemar@googlemail.com
  - Update to Tomcat 9.0.40. See changelog at
    https://tomcat.apache.org/tomcat-9.0-doc/changelog.html#Tomcat_9.0.40_(markt)
  - Removed Patches because fixed upstream now:
    * tomcat-9.0-CVE-2020-17527.patch
    * tomcat-9.0-CVE-2021-24122.patch
* Mon Mar 22 2021 amehmood@suse.com
  - Fixed CVEs:
    * CVE-2021-25122: Apache Tomcat h2c request mix-up (bsc#1182912)
    * CVE-2021-25329: Complete fix for CVE-2020-9484 (bsc#1182909)
  - Added patches:
    * tomcat-9.0-CVE-2021-25122.patch
    * tomcat-9.0-CVE-2021-25329.patch
* Wed Mar 17 2021 amehmood@suse.com
  - Log if file access is blocked due to symlinks: CVE-2021-24122 (bsc#1180947)
  - Added patch:
    * tomcat-9.0-CVE-2021-24122.patch
* Mon Mar 15 2021 wittemar@googlemail.com
  - Update to Tomcat 9.0.39. See changelog at
    https://tomcat.apache.org/tomcat-9.0-doc/changelog.html#Tomcat_9.0.39_(markt)
  - Rebased patches:
    * tomcat-9.0.38-java8compat.patch -> tomcat-9.0.39-java8compat.patch
* Mon Mar 15 2021 wittemar@googlemail.com
  - Update to Tomcat 9.0.38. See changelog at
    https://tomcat.apache.org/tomcat-9.0-doc/changelog.html#Tomcat_9.0.38_(markt)
  - Rebased patches:
    * tomcat-9.0.37-java8compat.patch -> tomcat-9.0.38-java8compat.patch
  - Removed tomcat-9.0-CVE-2020-13943.patch because that fix is upstream now
* Mon Feb 22 2021 wittemar@googlemail.com
  - Update to Tomcat 9.0.37. See changelog at
    https://tomcat.apache.org/tomcat-9.0-doc/changelog.html#Tomcat_9.0.37_(markt)
  - Fixed CVEs:
    * CVE-2020-13934 (bsc#1174121)
    * CVE-2020-13935 (bsc#1174117)
  - Rebased patches:
    * tomcat-9.0-osgi-build.patch
    * tomcat-9.0.31-java8compat.patch -> tomcat-9.0.37-java8compat.patch
* Wed Dec 16 2020 amehmood@suse.com
  - Fix HTTP/2 request header mix-up: CVE-2020-17527 (bsc#1179602)
  - Added patch:
    * tomcat-9.0-CVE-2020-17527.patch
* Tue Nov 03 2020 malbu@suse.com
  - Add source url for tomcat-serverxml-tool
  - Fix typo in tomcat-webapps %postun that caused /examples
    context to remain in server.xml when package was removed
  - Remove tomcat-9.0.init and /usr/lib/tmpfiles.d/tomcat.conf from
    package. They're not used anymore becuse of systemd (bsc#1178396)
* Fri Oct 30 2020 malbu@suse.com
  - Fix tomcat-servlet-4_0-api package alternatives to use
    /usr/share/java/servlet.jar instead of /usr/share/java/tomcat-servlet.jar.
    Keep /usr/share/java/tomcat-servlet.jar symlink for compatibility.
    (bsc#1092163)
  - Change default file ownership in tomcat-webapps from
    tomcat:tomcat to root:tomcat
* Tue Oct 13 2020 malbu@suse.com
  - Fix CVE-2020-13943 (bsc#1177582)
  - Added patch:
    * tomcat-9.0-CVE-2020-13943.patch
  - Change /usr/lib/tomcat to /usr/libexec/tomcat in startup
    scripts (bsc#1177601)
* Tue Oct 13 2020 jengelh@inai.de
  - Replace old specfile constructs. Remove support for SUSE 11.x.
  - Drop %systemd_requires, which is considered a no-op.
  - Trim redundant license mention from description.
  - Make documentation noarch.
  - Do not suppress errors from useradd.
* Wed Aug 26 2020 fstrba@suse.com
  - Avoid hardcoding /usr/lib as libexecdir
* Wed Jul 29 2020 malbu@suse.com
  - Don't give write permissions for the tomcat group on files and
    directories where it's not needed (bsc#1172562)
  - Change tomcat.pid location from /var/run to /run (bsc#1173103)
  - Use the /sbin/nologin shell when creating the tomcat user
  - Use %tmpfiles_create macro in %post instead of calling
    systemd-tmpfiles directly
* Fri Jun 26 2020 fstrba@suse.com
  - Update to Tomcat 9.0.36. See changelog at
    https://tomcat.apache.org/tomcat-9.0-doc/changelog.html#Tomcat_9.0.36_(markt)
  - Fixed CVEs:
    CVE-2020-11996 (bsc#1173389)
* Tue May 26 2020 malbu@suse.com
  - Update to Tomcat 9.0.35. See changelog at
    https://tomcat.apache.org/tomcat-9.0-doc/changelog.html#Tomcat_9.0.35_(markt)
  - Fixed CVEs:
    - CVE-2020-9484 (bsc#1171928)
  - Rebased patches:
    * tomcat-9.0-javadoc.patch
    * tomcat-9.0-osgi-build.patch
    * tomcat-9.0.31-java8compat.patch
* Fri Apr 10 2020 javier@opensuse.org
  - Update to Tomcat 9.0.34. See changelog at
    https://tomcat.apache.org/tomcat-9.0-doc/changelog.html#Tomcat_9.0.34_(markt)
  - Notable changes:
    * Add support for default values when using ${...} property
      replacement in configuration files. Based on a pull request
      provided by Bernd Bohmann.
    * When configuring an HTTP Connector, warn if the encoding
      specified for URIEncoding is not a superset of US-ASCII as
      required by RFC 7230.
    * Replace the system property
      org.apache.tomcat.util.buf.UDecoder.ALLOW_ENCODED_SLASH with
      the Connector attribute encodedSolidusHandling that adds an
      additional option to pass the %2f sequence through to the
      application without decoding it in addition to rejecting such
      sequences and decoding such sequences.
* Mon Mar 30 2020 malbu@suse.com
  - Update to Tomcat 9.0.33. See changelog at
    http://tomcat.apache.org/tomcat-9.0-doc/changelog.html#Tomcat_9.0.33_(markt)
  - Notable fix: corrected a regression in the improvements to HTTP
    header parsing (bsc#1167438)
  - Rebased patches:
    * tomcat-9.0-javadoc.patch
    * tomcat-9.0-osgi-build.patch
    * tomcat-9.0.31-java8compat.patch
* Fri Feb 28 2020 malbu@suse.com
  - Change default value of AJP connector secretRequired to false
  - Added patch:
    * tomcat-9.0.31-secretRequired-default.patch
* Tue Feb 25 2020 fstrba@suse.com
  - Update to Tomcat 9.0.31. See changelog at
    http://tomcat.apache.org/tomcat-9.0-doc/changelog.html#Tomcat_9.0.30_(markt)
  - Fixed CVEs:
    * CVE-2019-17569 (bsc#1164825)
    * CVE-2020-1935 (bsc#1164860)
    * CVE-2020-1938 (bsc#1164692)
  - Modified patch
    * tomcat-9.0.30-java8compat.patch
    - > tomcat-9.0.31-java8compat.patch
      + Adapt to changed context
* Wed Jan 29 2020 malbu@suse.com
  - Modified patch:
    * tomcat-9.0.30-java8compat.patch
      + add missing casts (bsc#1162081)
* Mon Jan 20 2020 fstrba@suse.com
  - Change back the build to build with any Java >= 1.8
  - Added patch:
    * tomcat-9.0.30-java8compat.patch
      + Cast java.nio.ByteBuffer and java.nio.CharBuffer to
      java.nio.Buffer in order to avoid calling Java 9+ APIs
      (functions with co-variant return types)
  - Renamed patch:
    * tomcat-9.0-disable-osgi-build.patch
    - > tomcat-9.0-osgi-build.patch
      + Do not disable, but fix OSGi build since we have now
      aqute-bnd
* Fri Jan 17 2020 malbu@suse.com
  - Change build to always use Java 1.8 (bsc#1161025).
* Fri Dec 27 2019 malbu@suse.com
  - Update to Tomcat 9.0.30. See changelog at
    http://tomcat.apache.org/tomcat-9.0-doc/changelog.html#Tomcat_9.0.30_(markt)
  - Fixed CVEs:
    - CVE-2019-0221 (bsc#1136085)
    - CVE-2019-10072 (bsc#1139924)
    - CVE-2019-12418 (bsc#1159723)
    - CVE-2019-17563 (bsc#1159729)
  - Removed patch:
    * tomcat-9.0-JDTCompiler-java.patch
      + It was not applied
* Mon Nov 18 2019 fstrba@suse.com
  - Update to Tomcat 9.0.27. See changelog at
    http://tomcat.apache.org/tomcat-9.0-doc/changelog.html#Tomcat_9.0.27_(markt)
  - Uset aqute-bnd to generate OSGi manifest, since we have that
    package now in openSUSE:Factory
  - Removed patch:
    * tomcat-9.0-disable-osgi-build.patch
      + not needed
* Fri Nov 15 2019 fstrba@suse.com
  - Add maven pom files for tomcat-jni and tomcat-jaspic-api
* Fri Oct 04 2019 fstrba@suse.com
  - Distribute the pom file also for tomcat-util-scan artifact
* Tue Oct 01 2019 fstrba@suse.com
  - Build against compatibility log4j12 package
* Wed Sep 25 2019 fstrba@suse.com
  - Adapt to the new ecj directory layout
* Wed Jun 12 2019 dimstar@opensuse.org
  - BuildRequire pkgconfig(systemd) instead of systemd: allow OBS to
    shortcut the build queues by allowing usage of systemd-mini
* Mon May 20 2019 malbu@suse.com
  - Update to Tomcat 9.0.20. See changelog at
    http://tomcat.apache.org/tomcat-9.0-doc/changelog.html#Tomcat_9.0.20_(markt)
  - increase maximum number of threads and open files for tomcat (bsc#1111966)
* Mon Apr 22 2019 malbu@suse.com
  - Update to Tomcat 9.0.19. See changelog at
    http://tomcat.apache.org/tomcat-9.0-doc/changelog.html#Tomcat_9.0.19_(markt)
    Notable packaging changes:
    - File /usr/share/java/tomcat/catalina-jmx-remote.jar was removed.
      The classes contained in this jar were merged into
      /usr/share/java/tomcat/catalina.jar.
  - Fixed CVEs:
    - CVE-2019-0199 (bsc#1131055)
  - Rebased patch:
    - tomcat-9.0-JDTCompiler-java.patch
    - tomcat-9.0-javadoc.patch
* Mon Apr 15 2019 fstrba@suse.com
  - Build classpath directly with the geronimo jars instead of with
    symlinks to them
* Tue Feb 19 2019 malbu@suse.com
  - Don't overwrite changes made to server.xml contexts when updating
    bundled webapps.
* Mon Feb 18 2019 malbu@suse.com
  - Set javac target to 1.8 when building docs samples and serverxmltool
* Tue Feb 05 2019 malbu@suse.com
  - Move webapps bundled with Tomcat to /usr/share/tomcat/tomcat-webapps
    (bsc#1092341). Affected packages:
    - tomcat-webapps
    - tomcat-admin-webapps
    - tomcat-docs-webapp
  - Remove %doc directive from tomcat-docs-webapps files section so that
    zypper installs files even if rpm.install.excludedocs is set to yes.
* Mon Feb 04 2019 malbu@suse.com
  - Require Java 1.8 or later (bsc#1123407)
* Sat Jan 26 2019 fstrba@suse.com
  - Clean up OSGi manifest injection
  - Put embed maven metadata into embed subpackage
  - Use the .mfiles* lists generated by %%add_maven_depmap macro
* Wed Jan 16 2019 malbu@suse.com
  - Fix tomcat-tool-wrapper classpath error (bsc#1120745)
* Fri Jan 11 2019 malbu@suse.com
  - Fix tomcat-digest classpath error (bsc#1120745)
* Sat Dec 29 2018 ecsos@opensuse.org
  - Update to Tomcat 9.0.14. See changelog at
    http://tomcat.apache.org/tomcat-9.0-doc/changelog.html#Tomcat_9.0.14_(markt)
* Wed Dec 05 2018 fstrba@suse.com
  - Add pom files for tomcat-jdbc and tomcat-dbcp
  - Add org.eclipse.jetty.orbit* aliases to correspondant artifacts
* Fri Nov 09 2018 sean@suspend.net
  - Update to Tomcat 9.0.13. See changelog at
    http://tomcat.apache.org/tomcat-9.0-doc/changelog.html#Tomcat_9.0.13_(markt)
* Thu Oct 18 2018 malbu@suse.com
  - Update to Tomcat 9.0.12. See changelog at
    http://tomcat.apache.org/tomcat-9.0-doc/changelog.html#Tomcat_9.0.12_(markt)
  - Fixed CVEs:
    - CVE-2018-11784 (bsc#1110850)
  - Rebased patches:
    - tomcat-9.0-disable-osgi-build.patch
    - tomcat-9.0-javadoc.patch
    - tomcat-9.0-sle.catalina.policy.patch
    - tomcat-9.0-tomcat-users-webapp.patch
* Tue Sep 11 2018 ecsos@opensuse.org
  - Declare following files to config(noreplace) to prevent override
    access rights:
    - host-manager/META-INF/context.xml
    - manager/META-INF/context.xml
* Sun Aug 26 2018 malbu@suse.com
  - Empty tomcat-9.0.sysconfig to avoid overwriting of customer's
    configuration during update (bsc#1067720)
* Thu Aug 16 2018 malbu@suse.com
  - Update to Tomcat 9.0.10. See changelog at
    http://tomcat.apache.org/tomcat-9.0-doc/changelog.html#Tomcat_9.0.10_(markt)
  - Fixed CVEs:
    - CVE-2018-1336 (bsc#1102400)
    - CVE-2018-8014 (bsc#1093697)
    - CVE-2018-8034 (bsc#1102379)
    - CVE-2018-8037 (bsc#1102410)
  - Rebased patch tomcat-9.0-JDTCompiler-java.patch
  - Added patch tomcat-9.0-disable-osgi-build.patch to disable adding
    OSGi metadata to JAR files
* Fri Feb 16 2018 malbu@suse.de
  - Update to Tomcat 9.0.5. See changelog at
    http://tomcat.apache.org/tomcat-9.0-doc/changelog.html#Tomcat_9.0.5_(markt)
* Wed Jan 17 2018 fstrba@suse.com
  - Modified patch:
    * tomcat-9.0-javadoc.patch
      + Don't append to javadoc --add-modules since we are building
      with source=8
      + Avoid accessing Internet URLs from build environment
* Fri Dec 01 2017 malbu@suse.com
  - Update to Tomcat 9.0.2:
    * Major update for tomcat8 from tomcat9
    * For full changelog please read upstream changes at:
      + http://tomcat.apache.org/tomcat-9.0-doc/changelog.html
    * Rename all tomcat-8.0-* files to tomcat-9.0-*
  - Changed patches:
    * Deleted: tomcat-8.0-bootstrap-MANIFEST.MF.patch
    * Deleted: tomcat-8.0-sle.catalina.policy.patch
    * Deleted: tomcat-8.0-tomcat-users-webapp.patch
    * Deleted: tomcat-8.0.33-JDTCompiler-java.patch
    * Deleted: tomcat-8.0.44-javadoc.patch
    * Deleted: tomcat-8.0.9-property-build.windows.patch
    * Added: tomcat-9.0-JDTCompiler-java.patch
    * Added: tomcat-9.0-bootstrap-MANIFEST.MF.patch
    * Added: tomcat-9.0-javadoc.patch
    * Added: tomcat-9.0-sle.catalina.policy.patch
    * Added: tomcat-9.0-tomcat-users-webapp.patch
  - Renamed subpackage tomcat-3_1-api to tomcat-4_0-api
    to reflect the new Servlet API version.
  - Commented out JAVA_HOME in /etc/tomcat/tomcat.conf
  - Added "tomcat-" prefix to lib symlinks under
    /usr/share/java to avoid file conflicts with servletapi5
    and geronimo-specs
  - Fixed wrong %ghost file paths for alternatives symlinks
* Thu Nov 23 2017 rbrown@suse.com
  - Replace references to /var/adm/fillup-templates with new
    %_fillupdir macro (boo#1069468)
* Mon Oct 23 2017 malbu@suse.com
  - Build with JDK 8 to fix runtime errors when running with JDK 7
    and 8
  - Fix tomcat-digest classpath error (bsc#977410)
  - Fix packaged /etc/alternatives symlinks for api libs that caused
    rpm -V to report link mismatch (bsc#1019016)
* Mon Oct 23 2017 ecsos@opensuse.org
  - update to 8.0.47
    http://tomcat.apache.org/tomcat-8.0-doc/changelog.html
    * Fixed CVE:
    - CVE-2017-12617
  - rebase tomcat-8.0-sle.catalina.policy.patch
* Tue Sep 19 2017 fstrba@suse.com
  - Added patch:
    * tomcat-8.0.44-javadoc.patch
    - generate documentation with the same source level as class
      files
    - fixes build with jdk9
* Fri Jun 09 2017 ecsos@opensuse.org
  - Version update to 8.0.44:
    http://tomcat.apache.org/tomcat-8.0-doc/changelog.html
    * Fixed CVE:
    - CVE-2017-5664 (bsc#1042910)
* Fri May 19 2017 dziolkowski@suse.com
  - New build dependency: javapackages-local
* Tue May 09 2017 malbu@suse.com
  - Version update to 8.0.43:
    * Another bugfix release, for full details see:
      http://tomcat.apache.org/tomcat-8.0-doc/changelog.html
    * Fixed CVEs:
    - CVE-2017-5647 (bnc#1033448)
    - CVE-2017-5648 (bnc#1033447)
    - CVE-2016-8745
  - Renamed and rebased patches:
    * tomcat-7.0-sle.catalina.policy.patch -> tomcat-8.0-sle.catalina.policy.patch
  - Enable optional setenv.sh script. See section
    "(3.4) Using the "setenv" script (optional, recommended)" in
    http://tomcat.apache.org/tomcat-8.0-doc/RUNNING.txt
    (bnc#1002662)
  - Fix file conflicts when upgrading from SLES 12 to SLES 12 SP1 (bnc#1023412).
    Added explicit obsoletes for tomcat-el-2_2-api, tomcat-jsp-2_2-api,
    tomcat-servlet-3_0-api
* Wed Dec 21 2016 astieger@suse.com
  - update to 8.0.39: (boo#1003911)
    * Improve handling of I/O errors with async processing
    * Fail earlier on invalid HTTP request
  - includes changes from  8.0.38:
    * Refactoring the non-container thread Async complete()/dispatch()
      handling to remove the possibility of deadlock
    * Improved UTF-8 handling for the RewriteValve
  - includes changes from 8.0.37:
    * Treat paths used to obtain a request dispatcher as encoded
      (configurable)
    * Various jdbc-pool fixes
  - drop tomcat-8.0.36-jar-scanner-loop.patch, upstream
* Thu Sep 29 2016 tchvatal@suse.com
  - Switch to commons-dbcp2 fate#321029
* Fri Sep 02 2016 malbu@suse.com
  - Backport fix for inifinite loop in the jar scanner for 8.0.36. (bnc#993862)
    Added: tomcat-8.0.36-jar-scanner-loop.patch
* Wed Jul 06 2016 malbu@suse.com
  - Version update to 8.0.36:
    * Another bugfix release for the 8.0 series. Full details:
      http://tomcat.apache.org/tomcat-8.0-doc/changelog.html#Tomcat_8.0.36_(markt)
  - CVE fixed by the version update:
    - CVE-2016-3092 (bnc#986359)
  - Fixed a deployment error in the examples webapp by changing the context.xml format to the new one
    introduced by Tomcat 8. See http://tomcat.apache.org/migration-8.html#Web_application_resources
* Mon May 02 2016 dmacvicar@suse.de
  - fix maven fragments paths to build in multiple distribution
    versions
* Thu Apr 21 2016 jcnengel@gmail.com
  - Version update to 8.0.33:
    * Another bugfix release for 8.0 series, full details:
      http://tomcat.apache.org/tomcat-8.0-doc/changelog.html#Tomcat_8.0.33_(markt)
  - Rebase tomcat-8.0-tomcat-users-webapp.patch
  - Rebase tomcat-7.0.53-JDTCompiler-java.patch
    to tomcat-8.0.33-JDTCompiler-java.patch
* Thu Apr 07 2016 tchvatal@suse.com
  - Fix fixme for the prereq preamble value
  - It seems systemd prints error on adding the @ services to macros
    so do not do that
* Thu Mar 31 2016 dmacvicar@suse.de
  - package was partly merged with the scripts used in the
    Fedora distribution
  - support running multiple tomcat instances on the same server
    (fate#317783)
  - add catalina-jmx-remote.jar (fate#318403)
  - remove sysvinit support: systemd is required
* Mon Feb 29 2016 dmacvicar@suse.de
  - update changes file for CVE information
  - Fixed CVEs:
    - CVE-2015-5346 (bnc#967814) in 8.0.32
    - CVE-2015-5351 (bnc#967812) in 8.0.32
    - CVE-2016-0706 (bnc#967815) in 8.0.32
    - CVE-2016-0714 (bnc#967964) in 8.0.32
    - CVE-2016-0763 (bnc#967966) in 8.0.32
    - CVE-2015-5345 (bnc#967965) in 8.0.30
    - CVE-2015-5174 (bnc#967967) in 8.0.27
* Wed Feb 17 2016 tchvatal@suse.com
  - Version update to 8.0.32:
    * Another bugfix release for 8.0 series, full details:
      http://tomcat.apache.org/tomcat-8.0-doc/changelog.html#Tomcat_8.0.32_(markt)
  - Rebase patch:
    * tomcat-8.0.9-property-build.windows.patch
* Tue Nov 10 2015 dmacvicar@suse.de
  - update to Tomcat 8.0.28
    * Multiple fixes, read upstream changelog at:
    https://tomcat.apache.org/tomcat-8.0-doc/changelog.html#Tomcat_8.0.28_(markt)
* Mon Jun 01 2015 tchvatal@suse.com
  - Some whitespace cleanups
* Mon Jun 01 2015 tchvatal@suse.com
  - Remove pointless conflicts on provide/obsolete symbols
* Mon Jun 01 2015 tchvatal@suse.com
  - Version bump to 8.0.23 fate#318913:
    * Multiple testfixes all around, read upstream changelog at:
    http://tomcat.apache.org/tomcat-8.0-doc/changelog.html#Tomcat_8.0.23_(markt)
* Tue Mar 24 2015 tchvatal@suse.com
  - Fix previous commit. Fix one rpmlint warning
* Wed Mar 18 2015 tchvatal@suse.com
  - Drop gpg verification from spec, it is done by obs
* Wed Mar 18 2015 tchvatal@suse.com
  - Fix build with new jpackage-tools
* Tue Feb 10 2015 wittemar@googlemail.com
  - update to Tomcat 8.0.18:
    * Major update for tomcat8 from tomcat7
    * For full changelog please read upstream changes at:
      + http://tomcat.apache.org/tomcat-8.0-doc/changelog.html
    * Rename all tomcat-7.0-* files to tomcat-8.0-*
    * Update keyring file
  - Update windows patch to apply again:
    * Deleted: tomcat-7.0.52-property-build.windows.patch
    * Added: tomcat-8.0.9-property-build.windows.patch
    * Added:tomcat-8.0-tomcat-users-webapp.patch
    * Deleted: tomcat-7.0-tomcat-users-webapp.patch
    * Added: tomcat-8.0-bootstrap-MANIFEST.MF.patch
    * Deleted: tomcat-7.0-bootstrap-MANIFEST.MF.patch
* Tue Feb 03 2015 bmaryniuk@suse.com
  - Version 1.1.30 or higher is required for APR listener (bnc#914725)
* Wed Sep 17 2014 bmaryniuk@suse.com
  - SLE12 has different path for the "rm" command than older versions.
    To avoid possible clashes, the entire coreutils must be provided.
    (bnc#894292)
* Tue Sep 16 2014 bmaryniuk@suse.com
  - Fixed Security Manager policies, which makes unable properly
    run webapps by default. (bnc#891264)
    Added: tomcat-7.0-sle.catalina.policy.patch
* Tue Sep 16 2014 bmaryniuk@suse.com
  - Missing security manager policy file prevents Tomcat to start
    with systemd. (bnc#890995)
* Mon Sep 15 2014 dmacvicar@suse.de
  - Tomcat 7.0.55 requires ecj 4.4.0
* Mon Sep 08 2014 dmacvicar@suse.de
  - include the tomcat websocket implementation (tomcat7-websocket)
* Mon Sep 08 2014 dmacvicar@suse.de
  - Update to 7.0.55
    * Update to the Eclipse JDT Compiler 4.4
    * Better error handling when the error occurs after the response
      has been committed
    * Various improvements to the Mapper including fixing some
      concurrency bugs
    * See http://tomcat.apache.org/tomcat-7.0-doc/changelog.html
* Mon Sep 08 2014 dmacvicar@suse.de
  - build tomcat-embed as a subpackage
* Wed Sep 03 2014 tchvatal@suse.com
  - Drop two unused defines
* Wed Sep 03 2014 dmacvicar@suse.de
  - touch the alternatives files to avoid build errors
    in older versions
* Tue Jul 29 2014 tchvatal@suse.com
  - Do not define default defattr as it is pointless.
* Fri Jul 25 2014 tchvatal@suse.com
  - One file here was not supposed to be ghost.
* Sat Jul 19 2014 tchvatal@suse.com
  - Fix once more the alternatives.
* Fri Jul 11 2014 tchvatal@suse.com
  - Add path to rm command.
* Fri Jul 11 2014 tchvatal@suse.com
  - Silence loads of warnings by rpmlintrc
* Thu Jul 10 2014 tchvatal@suse.com
  - Cleanup with spec-cleaner and format few things a bit.
* Thu Jul 10 2014 tchvatal@suse.com
  - Remove few deps not really needed for sle11.
* Thu Jul 10 2014 tchvatal@suse.com
  - Drop unused files obs.bl and local.lb
  - Drop unused collections-tomcat-build.xml
* Sat May 24 2014 tchvatal@suse.com
  - Version bump to 7.0.54:
    * bugfix update
    * See http://tomcat.apache.org/tomcat-7.0-doc/changelog.html
* Thu May 15 2014 darin@darins.net
  - Update to 7.0.53
    * bugfix release
    * Update the Eclipse JDT compiler to enable full Java 8 support in JSPs.
    * See http://tomcat.apache.org/tomcat-7.0-doc/changelog.html
  - Patch for Bug 56373
    * See https://issues.apache.org/bugzilla/show_bug.cgi?id=56373
    * tomcat-7.0.53-JDTCompiler-java.patch
  - Rename tomcat-7.0.2-property-build.windows.patch to
    tomcat-7.0.52-property-build.windows.patch
* Thu May 15 2014 darin@darins.net
  - remove saxon build requirement for sles
  - disable bytecode check for sles
* Mon Apr 14 2014 darin@darins.net
  - remove unknown option from fillup_only macro
  - wrap systemd %pre[un]/%post[un] in conditional
  - specify required ant version
* Tue Apr 08 2014 wittemar@googlemail.com
  - Update to 7.0.52
    * bugfix release
    * Fix CVE-2014-0050, a DoS vulnerability related to multi-part processing
  - Update to 7.0.50
    * bugfix release
* Thu Dec 12 2013 mvyskocil@suse.com
  - Add missing commons-pool-tomcat5 symlink (bnc#847505c#13)
* Mon Nov 04 2013 mvyskocil@suse.com
  - Update to 7.0.47
    * bugfix release
    * backport of JSR-356 Java WebSocket 1.0
    * package tomcat now requires java7 at lease
  - Updated tomcat.keyring to reflect the fact new release is signed by
    Violeta Georgieva / D63011C7
    see http://osdir.com/ml/dev-tomcat.apache.org/2013-10/msg00849.html
  - Add tomcat-dbcp.jar (bnc#847505) back into tomcat lib dir
  - Install tomcat-coyote.jar as well
  - Remove pointless scriplets
* Mon Sep 09 2013 tchvatal@suse.com
  - Move from jpackage-utils to javapackage-tools
* Thu Sep 05 2013 mvyskocil@suse.com
  - drop a dependency on unecessary -tomcat5 packages
  - use commons-dbcp.jar for build
  - add missing commons-pool.jar to libdir
* Fri Aug 09 2013 mvyskocil@suse.com
  - add _constraints to not schedule build on some build machines
    workaround for bnc#832762
* Tue Aug 06 2013 robert.munteanu@gmail.com
  - Add missing 'su root tomcat' line to logrotate. See also
    https://bugzilla.redhat.com/show_bug.cgi?id=790334
* Fri Jul 26 2013 mvyskocil@suse.com
  - call chown --no-dereference in init script
    (bnc#822177#c7/prevents CVE-2013-1976)
* Tue Jul 23 2013 mvyskocil@suse.com
  - update to 7.0.42 (bugfix release)
    see http://tomcat.apache.org/tomcat-7.0-doc/changelog.html
  - fix file list to be compatible for new rpm
* Thu Apr 18 2013 mvyskocil@suse.com
  - update to 7.0.39 (bugfix release)
  - install only systemd unit files on openSUSE 12.1+
    * and call proper code when init script still exists
  - add a proper scripplets for -jsvc subpackage
  - don't use catalina.out, systemd redirects stderr/stdout to syslog
  - don't use and recommends logrotate
  - package /etc/ant.d properly, mark only catalina-ant as a config file
* Sat Feb 16 2013 m407@mail.ru
  - Fix tomcat init scripts generating malformed classpath
    (http://youtrack.jetbrains.com/issue/JT-18545)
    bnc#804992
* Mon Jan 21 2013 mvyskocil@suse.com
  - update to 7.0.35 (bugfix release)
    require ecj >= 4.2.1, like upstream do
  - make gpg-offline work distros after 12.2
* Thu Dec 27 2012 archie@dellroad.org
  - Ensure tomcat stdout/stderr output ends up in catalina.out
* Thu Dec 20 2012 archie@dellroad.org
  - Recommend libtcnative-1-0 >= 1.1.24
  - /etc/init.d/tomcate init script fixes:
    * Include /usr/bin and /usr/sbin in the PATH
    * Fix logic for cleaning the work directories
    * Fix typo (log_success_msg lsb function name)
    * Fix typo (reload message)
  - Require log4j
* Tue Dec 18 2012 mvyskocil@suse.com
  - Require gpg-offline on 12.2+
* Thu Nov 29 2012 sbrabec@suse.cz
  - Verify GPG signature.
* Mon Nov 26 2012 mvyskocil@suse.com
  - update to 7.0.33 (bugfix release)
* Tue Sep 11 2012 mvyskocil@suse.cz
  - update to 7.0.30 (bugfix release)
    * SSI and CGI disabled by default
  - fix bnc#779538: change the working dir to $CATALINA_BASE
  - document the CATALINA_BASE and CATALINA_HOME in tomcat.conf better
  - fix rpmlintrc file
* Thu Jul 19 2012 mvyskocil@suse.cz
  - fix bnc#771802 - systemd support is broken
    * change type froking to simple as it does not make a sense run java in a
      background to emulate that
    * remove the need of nested wrappers, so /usr/sbin/tomcat-sysd now relies on
      systemd features like User/EnvironmentFile
    * workaround the 143 exit code in Stop phase - return 0 in this case
    * merge the jsvc into tomcat-sysd code, the -jsvc-sysd is a symlink
    * properly use jsvc with pid file to start and stop
* Wed Jun 13 2012 mvyskocil@suse.cz
  - update to 7.0.26 (bugfix release)
  - rename package to tomcat in order to emphasise a fact, there is only one
    major release of tomcat maintained in distribution
  - add manifest files and systemd support (thanks Fedora)
  - create tomcat-jsvc package
* Thu Feb 23 2012 mvyskocil@suse.cz
  - update to 7.0.26 (bugfix release)
  - fix bnc#747771 - don't use /var/lock/subsys
    sync tomcat7 init with tomcat6
* Sun Feb 19 2012 wittemar@googlemail.com
  - update to 7.0.25 (bugfix release)
* Tue Nov 01 2011 mvyskocil@suse.cz
  - update to 7.0.22 (bugfix release)
  - wrote changes and prepare for inclusion to openSUSE distribution
  - fix bnc#726307
    /etc/tomcat7 is writtable for tomcat group
* Mon Sep 19 2011 wittemar@googlemail.com
  - update to version 7.0.21
* Thu Jul 21 2011 mvyskocil@suse.cz
  - update to version 7.0.16 (bugfix update)
* Wed Mar 30 2011 jrenner@suse.de
  - add rpmlintrc, digest, init and wrapper scripts and config file
    - build require geronimo apis and wsdl4j
    - disable webservices in javadoc target
* Tue Jan 18 2011 mvyskocil@suse.cz
  - initial packaging of tomcat7 7.0.6

Files

/usr/share/tomcat/tomcat-webapps/docs
/usr/share/tomcat/tomcat-webapps/docs/BUILDING.txt
/usr/share/tomcat/tomcat-webapps/docs/META-INF
/usr/share/tomcat/tomcat-webapps/docs/META-INF/context.xml
/usr/share/tomcat/tomcat-webapps/docs/RELEASE-NOTES.txt
/usr/share/tomcat/tomcat-webapps/docs/RUNNING.txt
/usr/share/tomcat/tomcat-webapps/docs/WEB-INF
/usr/share/tomcat/tomcat-webapps/docs/WEB-INF/jsp
/usr/share/tomcat/tomcat-webapps/docs/WEB-INF/jsp/403.jsp
/usr/share/tomcat/tomcat-webapps/docs/WEB-INF/web.xml
/usr/share/tomcat/tomcat-webapps/docs/aio.html
/usr/share/tomcat/tomcat-webapps/docs/annotationapi
/usr/share/tomcat/tomcat-webapps/docs/annotationapi/index.html
/usr/share/tomcat/tomcat-webapps/docs/api
/usr/share/tomcat/tomcat-webapps/docs/api/index.html
/usr/share/tomcat/tomcat-webapps/docs/appdev
/usr/share/tomcat/tomcat-webapps/docs/appdev/build.xml.txt
/usr/share/tomcat/tomcat-webapps/docs/appdev/deployment.html
/usr/share/tomcat/tomcat-webapps/docs/appdev/index.html
/usr/share/tomcat/tomcat-webapps/docs/appdev/installation.html
/usr/share/tomcat/tomcat-webapps/docs/appdev/introduction.html
/usr/share/tomcat/tomcat-webapps/docs/appdev/processes.html
/usr/share/tomcat/tomcat-webapps/docs/appdev/sample
/usr/share/tomcat/tomcat-webapps/docs/appdev/sample/build.xml
/usr/share/tomcat/tomcat-webapps/docs/appdev/sample/docs
/usr/share/tomcat/tomcat-webapps/docs/appdev/sample/docs/README.txt
/usr/share/tomcat/tomcat-webapps/docs/appdev/sample/index.html
/usr/share/tomcat/tomcat-webapps/docs/appdev/sample/src
/usr/share/tomcat/tomcat-webapps/docs/appdev/sample/src/mypackage
/usr/share/tomcat/tomcat-webapps/docs/appdev/sample/src/mypackage/Hello.java
/usr/share/tomcat/tomcat-webapps/docs/appdev/sample/web
/usr/share/tomcat/tomcat-webapps/docs/appdev/sample/web/WEB-INF
/usr/share/tomcat/tomcat-webapps/docs/appdev/sample/web/WEB-INF/web.xml
/usr/share/tomcat/tomcat-webapps/docs/appdev/sample/web/hello.jsp
/usr/share/tomcat/tomcat-webapps/docs/appdev/sample/web/images
/usr/share/tomcat/tomcat-webapps/docs/appdev/sample/web/images/tomcat.gif
/usr/share/tomcat/tomcat-webapps/docs/appdev/sample/web/index.html
/usr/share/tomcat/tomcat-webapps/docs/appdev/source.html
/usr/share/tomcat/tomcat-webapps/docs/appdev/web.xml.txt
/usr/share/tomcat/tomcat-webapps/docs/apr.html
/usr/share/tomcat/tomcat-webapps/docs/architecture
/usr/share/tomcat/tomcat-webapps/docs/architecture/index.html
/usr/share/tomcat/tomcat-webapps/docs/architecture/overview.html
/usr/share/tomcat/tomcat-webapps/docs/architecture/requestProcess
/usr/share/tomcat/tomcat-webapps/docs/architecture/requestProcess.html
/usr/share/tomcat/tomcat-webapps/docs/architecture/requestProcess/authentication-process.png
/usr/share/tomcat/tomcat-webapps/docs/architecture/requestProcess/request-process.png
/usr/share/tomcat/tomcat-webapps/docs/architecture/startup
/usr/share/tomcat/tomcat-webapps/docs/architecture/startup.html
/usr/share/tomcat/tomcat-webapps/docs/architecture/startup/1_overview.plantuml
/usr/share/tomcat/tomcat-webapps/docs/architecture/startup/1_overview.png
/usr/share/tomcat/tomcat-webapps/docs/architecture/startup/2_catalina_init.plantuml
/usr/share/tomcat/tomcat-webapps/docs/architecture/startup/2_catalina_init.png
/usr/share/tomcat/tomcat-webapps/docs/architecture/startup/3_catalina_start_1.plantuml
/usr/share/tomcat/tomcat-webapps/docs/architecture/startup/3_catalina_start_1.png
/usr/share/tomcat/tomcat-webapps/docs/architecture/startup/4_catalina_start_2.plantuml
/usr/share/tomcat/tomcat-webapps/docs/architecture/startup/4_catalina_start_2.png
/usr/share/tomcat/tomcat-webapps/docs/architecture/startup/5_catalina_start_3.plantuml
/usr/share/tomcat/tomcat-webapps/docs/architecture/startup/5_catalina_start_3.png
/usr/share/tomcat/tomcat-webapps/docs/architecture/startup/6_catalina_host_config.plantuml
/usr/share/tomcat/tomcat-webapps/docs/architecture/startup/6_catalina_host_config.png
/usr/share/tomcat/tomcat-webapps/docs/architecture/startup/7_catalina_context_config.plantuml
/usr/share/tomcat/tomcat-webapps/docs/architecture/startup/7_catalina_context_config.png
/usr/share/tomcat/tomcat-webapps/docs/architecture/startup/serverStartup.txt
/usr/share/tomcat/tomcat-webapps/docs/balancer-howto.html
/usr/share/tomcat/tomcat-webapps/docs/building.html
/usr/share/tomcat/tomcat-webapps/docs/cdi.html
/usr/share/tomcat/tomcat-webapps/docs/cgi-howto.html
/usr/share/tomcat/tomcat-webapps/docs/changelog.html
/usr/share/tomcat/tomcat-webapps/docs/class-loader-howto.html
/usr/share/tomcat/tomcat-webapps/docs/cluster-howto.html
/usr/share/tomcat/tomcat-webapps/docs/comments.html
/usr/share/tomcat/tomcat-webapps/docs/config
/usr/share/tomcat/tomcat-webapps/docs/config/ajp.html
/usr/share/tomcat/tomcat-webapps/docs/config/automatic-deployment.html
/usr/share/tomcat/tomcat-webapps/docs/config/cluster-channel.html
/usr/share/tomcat/tomcat-webapps/docs/config/cluster-deployer.html
/usr/share/tomcat/tomcat-webapps/docs/config/cluster-interceptor.html
/usr/share/tomcat/tomcat-webapps/docs/config/cluster-listener.html
/usr/share/tomcat/tomcat-webapps/docs/config/cluster-manager.html
/usr/share/tomcat/tomcat-webapps/docs/config/cluster-membership.html
/usr/share/tomcat/tomcat-webapps/docs/config/cluster-receiver.html
/usr/share/tomcat/tomcat-webapps/docs/config/cluster-sender.html
/usr/share/tomcat/tomcat-webapps/docs/config/cluster-valve.html
/usr/share/tomcat/tomcat-webapps/docs/config/cluster.html
/usr/share/tomcat/tomcat-webapps/docs/config/context.html
/usr/share/tomcat/tomcat-webapps/docs/config/cookie-processor.html
/usr/share/tomcat/tomcat-webapps/docs/config/credentialhandler.html
/usr/share/tomcat/tomcat-webapps/docs/config/engine.html
/usr/share/tomcat/tomcat-webapps/docs/config/executor.html
/usr/share/tomcat/tomcat-webapps/docs/config/filter.html
/usr/share/tomcat/tomcat-webapps/docs/config/globalresources.html
/usr/share/tomcat/tomcat-webapps/docs/config/host.html
/usr/share/tomcat/tomcat-webapps/docs/config/http.html
/usr/share/tomcat/tomcat-webapps/docs/config/http2.html
/usr/share/tomcat/tomcat-webapps/docs/config/index.html
/usr/share/tomcat/tomcat-webapps/docs/config/jar-scan-filter.html
/usr/share/tomcat/tomcat-webapps/docs/config/jar-scanner.html
/usr/share/tomcat/tomcat-webapps/docs/config/jaspic.html
/usr/share/tomcat/tomcat-webapps/docs/config/listeners.html
/usr/share/tomcat/tomcat-webapps/docs/config/loader.html
/usr/share/tomcat/tomcat-webapps/docs/config/manager.html
/usr/share/tomcat/tomcat-webapps/docs/config/realm.html
/usr/share/tomcat/tomcat-webapps/docs/config/resources.html
/usr/share/tomcat/tomcat-webapps/docs/config/server.html
/usr/share/tomcat/tomcat-webapps/docs/config/service.html
/usr/share/tomcat/tomcat-webapps/docs/config/sessionidgenerator.html
/usr/share/tomcat/tomcat-webapps/docs/config/systemprops.html
/usr/share/tomcat/tomcat-webapps/docs/config/valve.html
/usr/share/tomcat/tomcat-webapps/docs/connectors.html
/usr/share/tomcat/tomcat-webapps/docs/default-servlet.html
/usr/share/tomcat/tomcat-webapps/docs/deployer-howto.html
/usr/share/tomcat/tomcat-webapps/docs/developers.html
/usr/share/tomcat/tomcat-webapps/docs/elapi
/usr/share/tomcat/tomcat-webapps/docs/elapi/index.html
/usr/share/tomcat/tomcat-webapps/docs/graal.html
/usr/share/tomcat/tomcat-webapps/docs/host-manager-howto.html
/usr/share/tomcat/tomcat-webapps/docs/html-host-manager-howto.html
/usr/share/tomcat/tomcat-webapps/docs/html-manager-howto.html
/usr/share/tomcat/tomcat-webapps/docs/images
/usr/share/tomcat/tomcat-webapps/docs/images/add.gif
/usr/share/tomcat/tomcat-webapps/docs/images/asf-logo.svg
/usr/share/tomcat/tomcat-webapps/docs/images/code.gif
/usr/share/tomcat/tomcat-webapps/docs/images/cors-flowchart.png
/usr/share/tomcat/tomcat-webapps/docs/images/design.gif
/usr/share/tomcat/tomcat-webapps/docs/images/docs-stylesheet.css
/usr/share/tomcat/tomcat-webapps/docs/images/docs.gif
/usr/share/tomcat/tomcat-webapps/docs/images/fix.gif
/usr/share/tomcat/tomcat-webapps/docs/images/fonts
/usr/share/tomcat/tomcat-webapps/docs/images/fonts/OpenSans400.woff
/usr/share/tomcat/tomcat-webapps/docs/images/fonts/OpenSans400italic.woff
/usr/share/tomcat/tomcat-webapps/docs/images/fonts/OpenSans600.woff
/usr/share/tomcat/tomcat-webapps/docs/images/fonts/OpenSans600italic.woff
/usr/share/tomcat/tomcat-webapps/docs/images/fonts/OpenSans700.woff
/usr/share/tomcat/tomcat-webapps/docs/images/fonts/OpenSans700italic.woff
/usr/share/tomcat/tomcat-webapps/docs/images/fonts/fonts.css
/usr/share/tomcat/tomcat-webapps/docs/images/tomcat.gif
/usr/share/tomcat/tomcat-webapps/docs/images/tomcat.png
/usr/share/tomcat/tomcat-webapps/docs/images/update.gif
/usr/share/tomcat/tomcat-webapps/docs/images/void.gif
/usr/share/tomcat/tomcat-webapps/docs/index.html
/usr/share/tomcat/tomcat-webapps/docs/introduction.html
/usr/share/tomcat/tomcat-webapps/docs/jasper-howto.html
/usr/share/tomcat/tomcat-webapps/docs/jaspicapi
/usr/share/tomcat/tomcat-webapps/docs/jaspicapi/index.html
/usr/share/tomcat/tomcat-webapps/docs/jdbc-pool.html
/usr/share/tomcat/tomcat-webapps/docs/jndi-datasource-examples-howto.html
/usr/share/tomcat/tomcat-webapps/docs/jndi-resources-howto.html
/usr/share/tomcat/tomcat-webapps/docs/jspapi
/usr/share/tomcat/tomcat-webapps/docs/jspapi/index.html
/usr/share/tomcat/tomcat-webapps/docs/logging.html
/usr/share/tomcat/tomcat-webapps/docs/manager-howto.html
/usr/share/tomcat/tomcat-webapps/docs/maven-jars.html
/usr/share/tomcat/tomcat-webapps/docs/mbeans-descriptors-howto.html
/usr/share/tomcat/tomcat-webapps/docs/mbeans-descriptors.dtd
/usr/share/tomcat/tomcat-webapps/docs/monitoring.html
/usr/share/tomcat/tomcat-webapps/docs/proxy-howto.html
/usr/share/tomcat/tomcat-webapps/docs/realm-howto.html
/usr/share/tomcat/tomcat-webapps/docs/rewrite.html
/usr/share/tomcat/tomcat-webapps/docs/security-howto.html
/usr/share/tomcat/tomcat-webapps/docs/security-manager-howto.html
/usr/share/tomcat/tomcat-webapps/docs/servletapi
/usr/share/tomcat/tomcat-webapps/docs/servletapi/index.html
/usr/share/tomcat/tomcat-webapps/docs/setup.html
/usr/share/tomcat/tomcat-webapps/docs/ssi-howto.html
/usr/share/tomcat/tomcat-webapps/docs/ssl-howto.html
/usr/share/tomcat/tomcat-webapps/docs/tribes
/usr/share/tomcat/tomcat-webapps/docs/tribes/developers.html
/usr/share/tomcat/tomcat-webapps/docs/tribes/faq.html
/usr/share/tomcat/tomcat-webapps/docs/tribes/interceptors.html
/usr/share/tomcat/tomcat-webapps/docs/tribes/introduction.html
/usr/share/tomcat/tomcat-webapps/docs/tribes/membership.html
/usr/share/tomcat/tomcat-webapps/docs/tribes/setup.html
/usr/share/tomcat/tomcat-webapps/docs/tribes/status.html
/usr/share/tomcat/tomcat-webapps/docs/tribes/transport.html
/usr/share/tomcat/tomcat-webapps/docs/virtual-hosting-howto.html
/usr/share/tomcat/tomcat-webapps/docs/web-socket-howto.html
/usr/share/tomcat/tomcat-webapps/docs/websocketapi
/usr/share/tomcat/tomcat-webapps/docs/websocketapi/index.html
/usr/share/tomcat/tomcat-webapps/docs/windows-auth-howto.html
/usr/share/tomcat/tomcat-webapps/docs/windows-service-howto.html


Generated by rpm2html 1.8.1

Fabrice Bellet, Fri Dec 20 23:28:41 2024