Fridrich Strba
5d3c84a4fd
* Fixed CVEs:
+ CVE-2024-54677: DoS in examples web application (bsc#1233434)
+ CVE-2024-50379: RCE due to TOCTOU issue in JSP compilation (bsc#1234663)
* Catalina
+ Add: Add option to serve resources from subpath only with WebDAV Servlet
like with DefaultServlet. (michaelo)
+ Fix: Add special handling for the protocols attribute of SSLHostConfig in
storeconfig. (remm)
+ Fix: 69442: Fix case sensitive check on content-type when parsing request
parameters. (remm)
+ Code: Refactor duplicate code for extracting media type and subtype from
content-type into a single method. (markt)
+ Fix: Compatibility of generated embedded code with components where
constructors or property related methods throw a checked exception. (remm)
+ Fix: The previous fix for inconsistent resource metadata during concurrent
reads and writes was incomplete. (markt)
+ Fix: 69444: Ensure that the javax.servlet.error.message request attribute
is set when an application defined error page is called. (markt)
+ Fix: Avoid quotes for numeric values in the JSON generated by the status
servlet. (remm)
+ Add: Add strong ETag support for the WebDAV and default servlet, which can
be enabled by using the useStrongETags init parameter with a value set to
true. The ETag generated will be a SHA-1 checksum of the resource content.
(remm)
+ Fix: Use client locale for directory listings. (remm)
+ Fix: 69439: Improve the handling of multiple Cache-Control headers in the
ExpiresFilter. Based on pull request #777 by Chenjp. (markt)
+ Fix: 69447: Update the support for caching classes the web application
class loader cannot find to take account of classes loaded from external
OBS-URL: https://build.opensuse.org/package/show/Java:packages/tomcat?expand=0&rev=325
62 lines
1.5 KiB
Bash
62 lines
1.5 KiB
Bash
#!/bin/bash
|
|
|
|
. @LIBEXECDIR@/tomcat/functions
|
|
|
|
# Get the tomcat config (use this for environment specific settings)
|
|
|
|
if [ -z "${TOMCAT_CFG_LOADED}" ]; then
|
|
if [ -z "${TOMCAT_CFG}" ]; then
|
|
TOMCAT_CFG="/etc/tomcat/tomcat.conf"
|
|
fi
|
|
. $TOMCAT_CFG
|
|
fi
|
|
|
|
if [ -d "${TOMCAT_CONFD=/etc/tomcat/conf.d}" ]; then
|
|
for file in ${TOMCAT_CONFD}/*.conf ; do
|
|
if [ -f "$file" ] ; then
|
|
. "$file"
|
|
fi
|
|
done
|
|
fi
|
|
|
|
if [ -z "$CATALINA_BASE" ]; then
|
|
if [ -n "$NAME" ]; then
|
|
if [ -z "$TOMCATS_BASE" ]; then
|
|
TOMCATS_BASE="/var/lib/tomcats/"
|
|
fi
|
|
CATALINA_BASE="${TOMCATS_BASE}${NAME}"
|
|
else
|
|
CATALINA_BASE="${CATALINA_HOME}"
|
|
fi
|
|
fi
|
|
|
|
# Include the optional setenv.sh script.
|
|
# (See section 3.4 of https://tomcat.apache.org/tomcat-8.0-doc/RUNNING.txt)
|
|
if [ -r "$CATALINA_BASE/bin/setenv.sh" ]; then
|
|
. "$CATALINA_BASE/bin/setenv.sh"
|
|
elif [ -r "$CATALINA_HOME/bin/setenv.sh" ]; then
|
|
. "$CATALINA_HOME/bin/setenv.sh"
|
|
fi
|
|
|
|
VERBOSE=1
|
|
set_javacmd
|
|
cd ${CATALINA_HOME}
|
|
# CLASSPATH munging
|
|
if [ ! -z "$CLASSPATH" ] ; then
|
|
CLASSPATH="$CLASSPATH":
|
|
fi
|
|
|
|
if [ -n "$JSSE_HOME" ]; then
|
|
CLASSPATH="${CLASSPATH}$(build-classpath jcert jnet jsse 2>/dev/null):"
|
|
fi
|
|
CLASSPATH="${CLASSPATH}${CATALINA_HOME}/bin/bootstrap.jar"
|
|
CLASSPATH="${CLASSPATH}:${CATALINA_HOME}/bin/tomcat-juli.jar"
|
|
CLASSPATH="${CLASSPATH}:$(build-classpath commons-daemon 2>/dev/null)"
|
|
|
|
if [ -z "$LOGGING_PROPERTIES" ] ; then
|
|
LOGGING_PROPERTIES="${CATALINA_BASE}/conf/logging.properties"
|
|
if [ ! -f "${LOGGING_PROPERTIES}" ] ; then
|
|
LOGGING_PROPERTIES="${CATALINA_HOME}/conf/logging.properties"
|
|
fi
|
|
fi
|