[jetty-announce] Eclipse Jetty 9.4.41, 10.0.3, and 11.0.3 Have Been Rele

[Chris Walker <chris@xxxxxxxxxxx>]

Hello!

The Jetty team is happy to announce the immediate availability of new releases for the Eclipse Jetty 9.4.x, 10.0.x, and 11.0.x branches. All three releases include a number of bug fixes and improvements. It is recommended that all users upgrade as soon as they are able.

A full list of changes for this release is listed at the end of this email.

This release available on the Eclipse Jetty project download page or from the Maven Central repository:

• Eclipse: https://www.eclipse.org/jetty/download.html

• Maven Central: https://repo1.maven.org/maven2/org/eclipse/jetty/

Documentation for this release can be found on the Eclipse Jetty project site:

• https://www.eclipse.org/jetty/documentation/

If you find any issues with this release, or if you want to suggest future enhancements, please file an issue on the Jetty GitHub page:

• https://github.com/eclipse/jetty.project/issues/new

Commercial production and development support for Jetty is offered through Webtide (www.webtide.com). Please contact us for more information or email chris@xxxxxxxxxxx to discuss your specific needs.

Best Regards,

The Jetty Development Team

9.4.41.v20210516

Changelog

#6099 Cipher preference may break SNI if certificates have different key types
#6186 Add Null Protection on Log / Logger
#6205 OpenIdAuthenticator may use incorrect redirect
#6208 HTTP/2 max local stream count exceeded
#6227 Better resolve race between AsyncListener.onTimeout and AsyncContext.dispatch
#6254 Total timeout not enforced for queued requests
#6263 Review URI encoding in ConcatServlet & WelcomeFilter
#6277 Better handle exceptions thrown from session destroy listener

10.0.3

Changelog

#3764 DeprecationWarning Decorator
#5684 Review disabled tests
#5798 jetty-runner startup error with jetty-10
#5817 Provide more filtering for CustomRequestLog
#6049 Default provider [files] section always executed
#6084 GzipHandler: NPE in setDeflaterPoolCapacity and setInflaterPoolCapacity
#6098 jetty-cdi is missing from jetty-bom
#6099 Cipher preference may break SNI if certificates have different key types
#6105 HttpConnection.getBytesIn() incorrect for requests with chunked content
#6106 WebSocket/CDI integration is broken in Jetty 10
#6132 Ambiguous segment in URI in DELETE /a/projects/foo/branches/refs%2Fheads%2Ftest request after upgrade from 10.0.0 to 10.0.2
#6153 jetty-maven-plugin does not correctly pass JVM arguments for external deployMode
#6159 Jetty with Conscrypt unable to handle any HTTPS requests when connected by IP rather than hostname.
#6166 WebSocket MessageInputStream.read() spends a lot of time in ByteBuffer.compact()
#6205 OpenIdAuthenticator may use incorrect redirect
#6208 HTTP/2 max local stream count exceeded
#6224 make jetty-jspc-maven-plugin @threadsafe
#6227 Better resolve race between AsyncListener.onTimeout and AsyncContext.dispatch
#6238 jetty-keystore Invalid manifest header Bundle-SymbolicName: ""
#6250 Lazily allocate HTTP2Stream data queue
#6251 Use CyclicTimeout for HTTP2Streams
#6254 Total timeout not enforced for queued requests
#6263 Review URI encoding in ConcatServlet & WelcomeFilter
#6277 Better handle exceptions thrown from session destroy listener
#6280 Copy ServletHolder class/instance properly during startWebapp

11.0.3

Changelog

#3764 DeprecationWarning Decorator
#5684 Review disabled tests
#5798 jetty-runner startup error with jetty-10
#5817 Provide more filtering for CustomRequestLog
#6049 Default provider [files] section always executed
#6084 GzipHandler: NPE in setDeflaterPoolCapacity and setInflaterPoolCapacity
#6098 jetty-cdi is missing from jetty-bom
#6099 Cipher preference may break SNI if certificates have different key types
#6105 HttpConnection.getBytesIn() incorrect for requests with chunked content
#6106 WebSocket/CDI integration is broken in Jetty 10
#6125 Do not allow override of jakarta.* container classes by webapps per Servlet 5.0 Section 15.2.1
#6132 Ambiguous segment in URI in DELETE /a/projects/foo/branches/refs%2Fheads%2Ftest request after upgrade from 10.0.0 to 10.0.2
#6153 jetty-maven-plugin does not correctly pass JVM arguments for external deployMode
#6159 Jetty with Conscrypt unable to handle any HTTPS requests when connected by IP rather than hostname.
#6166 WebSocket MessageInputStream.read() spends a lot of time in ByteBuffer.compact()
#6205 OpenIdAuthenticator may use incorrect redirect
#6208 HTTP/2 max local stream count exceeded
#6224 make jetty-jspc-maven-plugin @threadsafe
#6227 Better resolve race between AsyncListener.onTimeout and AsyncContext.dispatch
#6238 jetty-keystore Invalid manifest header Bundle-SymbolicName: ""
#6250 Lazily allocate HTTP2Stream data queue
#6251 Use CyclicTimeout for HTTP2Streams
#6254 Total timeout not enforced for queued requests
#6263 Review URI encoding in ConcatServlet & WelcomeFilter
#6277 Better handle exceptions thrown from session destroy listener
#6280 Copy ServletHolder class/instance properly during startWebapp