Jetty 9.3.2.v20150730 发布,ConcatServlet 安全更新
Jetty 9.3.2.v20150730 发布,此版本是 Jetty 9.3.x 的维护版本,强烈建议使用 ConcatServlet 的用户升级。
值得关注的更新:
-
[Security] ConcatServlet resource exposure
-
[Fix] SNI wildcard certificate matching
-
[Fix] Thread starvation in selector wakeup
-
[Fix] GzipHandler include/exclude logic (for mime types and paths)
-
[Improvement] Redirect Rules support optional status code
-
[Improvement] New Rewrite Terminating Rules
Jetty 9.3 新特性:
-
Introducing HTTP/2 (rfc7540) server & client support!
-
Overhauled scheduler - https://webtide.com/eat-what-you-kill/
-
Supporting SNI (Server Name Indications) during TLS/SSL negotiation
-
Java 8 minimum requirement
下载:
更新日志:
jetty-9.3.2.v20150730 - 30 July 2015
Â+ 470351 Fixed SNI matching of wildcard certificates
Â+ 470727 Thread Starvation of selector wakeups.
Â+ 472601Âorg.eclipse.jetty.util.log.Log.setLog() does not work as before
Â+ 472621 Unjustified timeout when serving static content
Â+ 472781 GzipHandler isMimeTypeGzipable() bad logic
Â+ 472859 ConcatServlet may expose protected resources.
Â+ 472931 HttpConfiguration copy constructor incomplete
Â+ 472974 Improved StatisticsHandler 503 generation
Â+ 473006 Encode addPath in URLResource
Â+ 473118 HTTP/2 server does not retrieve Host header from client.
Â+ 473243 Delay resource close for async default content
Â+ 473266 Better handling of MultiException
Â+ 473294 Fixed include cipher suites support for wildcards
Â+ 473307 Add 301 Moved Permanently Rules to jetty-rewrite
Â+ 473309 Add special (non-replacement) Terminating rules to jetty-rewrite
Â+ 473319 Parameterize status code on Redirect Rules for alternate use
Â+ 473321 Overriding SSL context KeyStoreType requires explicit override of
 ÂTrustStoreType
Â+ 473322 GatherWrite limit handling
Â+ 473624 ProxyServlet.Transparent / TransparentDelegate add trailing slash
 Âbefore query when using prefix.
Â+ 473832 SslConnection flips back buffers on handshake exception
更多内容请看发行说明。