You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@tomcat.apache.org by ma...@apache.org on 2020/12/10 12:21:45 UTC
[tomcat-native] branch master updated: Add more information around
minimum versions
This is an automated email from the ASF dual-hosted git repository.
markt pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/tomcat-native.git
The following commit(s) were added to refs/heads/master by this push:
new 51468b2 Add more information around minimum versions
51468b2 is described below
commit 51468b2357ae46ecd7363aa05285e5c48a0888b2
Author: Mark Thomas <ma...@apache.org>
AuthorDate: Thu Dec 10 12:21:05 2020 +0000
Add more information around minimum versions
---
native/srclib/VERSIONS | 35 ++++++++++++++++++++++++++++++++++-
1 file changed, 34 insertions(+), 1 deletion(-)
diff --git a/native/srclib/VERSIONS b/native/srclib/VERSIONS
index f6b09de..e52a291 100644
--- a/native/srclib/VERSIONS
+++ b/native/srclib/VERSIONS
@@ -1,7 +1,40 @@
+The current minimum versions are:
+- OpenSSL 1.0.2
+- APR 1.4.3
+
The following version of the libraries are recommended:
- APR 1.7.0 or later, http://apr.apache.org
- OpenSSL 1.1.1g or later, http://www.openssl.org
Older versions should also work but are not as thoroughly tested by the Tomcat
-Native team
\ No newline at end of file
+Native team
+
+It is current anticipated that Tomcat Native releases will transition to 1.3.x
+after April 2021 when the minimum version will become OpenSSL 1.1.0 and
+APR 1.5.2.
+
+The minimum version of OpenSSL is driven by the version of OpenSSL used by
+downstream distributions.
+
+The current state of OpenSSL in Debian is:
+- OpenSSL 1.1.0l in Debian 9 (EOL in June 2022)
+- OpenSSL 1.1.1d in Debian 10
+
+And in Ubuntu:
+- OpenSSL 1.0.2g in Ubuntu 16.04 LTS (EOL in April 2021)
+- OpenSSL 1.1.1 in Ubuntu 18.04 LTS
+- OpenSSL 1.1.1f in Ubuntu 20.04 LTS
+
+
+The minimum version of APR is driven by the version of APR used by
+downstream distributions.
+
+The current state of APR in Debian is:
+- APR 1.5.2 in Debian 9 (EOL in June 2022)
+- APR 1.6.5 in Debian 10
+
+And in Ubuntu:
+- APR 1.5.2 in Ubuntu 16.04 LTS (EOL in April 2021)
+- APR 1.6.3 in Ubuntu 18.04 LTS
+- APR 1.6.5 in Ubuntu 20.04 LTS
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org
Re: [tomcat-native] branch master updated: Add more information
around minimum versions
Posted by Michael Osipov <mi...@apache.org>.
Am 2020-12-10 um 13:21 schrieb markt@apache.org:
> This is an automated email from the ASF dual-hosted git repository.
>
> markt pushed a commit to branch master
> in repository https://gitbox.apache.org/repos/asf/tomcat-native.git
>
>
> The following commit(s) were added to refs/heads/master by this push:
> new 51468b2 Add more information around minimum versions
> 51468b2 is described below
>
> commit 51468b2357ae46ecd7363aa05285e5c48a0888b2
> Author: Mark Thomas <ma...@apache.org>
> AuthorDate: Thu Dec 10 12:21:05 2020 +0000
>
> Add more information around minimum versions
> ---
> native/srclib/VERSIONS | 35 ++++++++++++++++++++++++++++++++++-
> 1 file changed, 34 insertions(+), 1 deletion(-)
>
> diff --git a/native/srclib/VERSIONS b/native/srclib/VERSIONS
> index f6b09de..e52a291 100644
> --- a/native/srclib/VERSIONS
> +++ b/native/srclib/VERSIONS
> @@ -1,7 +1,40 @@
> +The current minimum versions are:
> +- OpenSSL 1.0.2
> +- APR 1.4.3
> +
> The following version of the libraries are recommended:
>
> - APR 1.7.0 or later, http://apr.apache.org
> - OpenSSL 1.1.1g or later, http://www.openssl.org
>
> Older versions should also work but are not as thoroughly tested by the Tomcat
> -Native team
> \ No newline at end of file
> +Native team
> +
> +It is current anticipated that Tomcat Native releases will transition to 1.3.x
> +after April 2021 when the minimum version will become OpenSSL 1.1.0 and
> +APR 1.5.2.
> +
> +The minimum version of OpenSSL is driven by the version of OpenSSL used by
> +downstream distributions.
> +
> +The current state of OpenSSL in Debian is:
> +- OpenSSL 1.1.0l in Debian 9 (EOL in June 2022)
> +- OpenSSL 1.1.1d in Debian 10
> +
> +And in Ubuntu:
> +- OpenSSL 1.0.2g in Ubuntu 16.04 LTS (EOL in April 2021)
> +- OpenSSL 1.1.1 in Ubuntu 18.04 LTS
> +- OpenSSL 1.1.1f in Ubuntu 20.04 LTS
> +
> +
> +The minimum version of APR is driven by the version of APR used by
> +downstream distributions.
> +
> +The current state of APR in Debian is:
> +- APR 1.5.2 in Debian 9 (EOL in June 2022)
> +- APR 1.6.5 in Debian 10
> +
> +And in Ubuntu:
> +- APR 1.5.2 in Ubuntu 16.04 LTS (EOL in April 2021)
> +- APR 1.6.3 in Ubuntu 18.04 LTS
> +- APR 1.6.5 in Ubuntu 20.04 LTS
I consider this to be wrong. We should support only what upstream
supports, with some grace period of course. Everything else is a OS
vendor problem, not ours. Especially for Mark Shuttleworth's project.
M
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org