Jira で利用している Apache Tomcat のバージョンをアップグレードする方法
プラットフォームについて: Server および Data Center のみ。この記事は、Server および Data Center プラットフォームのアトラシアン製品にのみ適用されます。
Support for Server* products ended on February 15th 2024. If you are running a Server product, you can visit the Atlassian Server end of support announcement to review your migration options.
*Fisheye および Crucible は除く
The information in this page relates to customizations in Jira. Consequently, Atlassian Support cannot guarantee to provide any support for the steps described on this page as customizations are not covered under Atlassian Support Offerings. Please be aware that this material is provided for your information only and that you use it at your own risk.
また、ファイルの直接変更によって行われるカスタマイズは、アップグレード プロセスには含まれない点にご注意ください。このような変更は、アップグレード後のインスタンスで手動で再適用する必要があります。
Jira 8.20.x, 9.4.x and 9.12.x (tested versions) are NOT compatible with Tomcat 10.0.x or newer.
Jira is also tested and supported only in the bundled versions of Tomcat with each release: Bundled Tomcat and Java versions. I.e. Jira 8 is not supported on Tomcat 9 and Jira 9 is not supported on Tomcat 8.
この KB 記事は、Jira 8 と Jira 9 のブランチを対象としています。過去の Jira バージョンでのテストは行われていません。
要約
This article is exclusively for users who are using the latest Jira version and encounter security vulnerabilities in Apache Tomcat.
If you are not using the latest Jira version, we recommend upgrading Jira to the latest version before considering the steps below.
環境
Any installation of Jira Software or Jira Service Management, Data Center or Server on the latest release available.
ソリューション
It is strongly recommended to validate the process below in a Jira test environment, and make sure everything is working and stable before applying it to production.
- Take a backup of your Jira environment.
Jira をシャットダウンします。
- Download the desired Apache Tomcat version's zip file to a location of your choosing and unpack it.
- If you're using 64-bit Windows, please ensure that you download the "windows-x64" zip, and if you're using 32-bit Windows please download the "windows-x86" zip. This will ensure that you have the correct Windows binaries.
- Copy everything from
tomcat/bintojira-install/bin, but do not replace any*.shor*.batfiles - we want to make sure these stay the same. tomcat/libからjira-install/libにすべてのデータをコピーし、すべてのファイルを置き換えます。これにより、Tomcat に同梱された最新かつ互換性のあるライブラリを確実に適用します。- Tomcat 8.5.32 以降にアップグレードする場合、次の記事に従って server.xml の変更を適用します。特殊文字を含むリクエストを処理できるように server.xml を変更する
- Start Jira, and confirm from System Information that Jira is running the desired Apache Tomcat version.
If upgrading to Tomcat 8.5.51 or higher and using an AJP connector, you need to include the secret attribute in the AJP connector configuration or disable this requirement by specifying secretRequired="false" (not recommended), as instructed in the Tomcat changelog. Failing to do this will prevent Tomcat from starting with the error below:
The AJP Connector is configured with secretRequired="true" but the secret attribute is either null or "". This combination is not valid.If anything goes wrong with the above process, please use the backup taken in Step 1 to revert the changes made.