OK, I want to jump in with a quick update about my last comment. I've confirmed that you (bkbk) would NOT see the problem I was asserting (in reply to you this morning)--that downgrading the search package from a core of 2025.0.3 to the previous search package version (2025.0.0) would downgrade the core also to .0.     But again I was referring to someone on cf2023 u14 (who had the problems going to u15 and had uninstalled it). The problem is that THEY were still seeing the .15 search. And yes, they could try to just downgrade to the previous search version (which would be .11). But I was seeing yesterday that doing that would downgrade ALSO the core to .11--which would NOT be expected by folks.    That's why I wanted to explain more carefully what I'd found...and I was going to test it also for someone being on CF2025 u2 (after uninstalling u3, for the same reason). This is what I know would take time today for me to fully test and then to document.   And even if someone did successfully downgrade just the search package (without it donwgrading their core), I will show that that's not the ONLY package that was incorrectly upgraded to a LATER version than their core. My focus was first to explain why someone like Keith who a) was on cf2023 u14 and went to C2023 u15 and b) had a problem (like his cfindex problem here) so he uninstalled u15, would find c) that he STILL had the cfindex problem, and d) he would find (like you have) that the search package was in fact showing being incorrectly the u15 version.   And yes, downgrading the search package alone may well "work" for what you tested, but it's not the COMPLETE solution. I'm focused on that.   For now, in case you or anyone else wants to jump in with other observations, I can tell you that (at least with respect to CF2023), the packages that are incorrectly upgraded to u15 versions (even if one is on u14) are: axis, exchange, saml, search, sharepoint, and  spreadsheet.   And given your focus here on poi, I'll note as well that of those, its both search AND spreadsheet that involve poi.    So again, please give me a but more time today to offer more detail on what's really amiss, and how we can solve it more completely (for all 3 versions), and also what Adobe needs to do. ... View more

Keith, please consider waiting before you try bkbk's proposal.    Bkbk, you have chosen to press the point overnight rather than wait to give me time this morning to write up what I found and what (I would argue) will be the correct solution.   Since you insist, and as for why I've responded immediately to suggest Keith hold off on your workaround, please confirm for us all what update level you now find cf now reporting. You refer to having been on cf2025 update 3 as of the start of your previous reply. (Let's put aside for the moment that you've switched gears on Keith here, as he's been referring all along to using cf2023.)    But here's the important point relative to your proposal: are you now still on update 3 after your downgrade of the search package? Or did cf "unexpectedly" downgrade your core cf update level? (If not, try restarting cf and then check.) The point is I won't be surprised if you find it has. I found this to happen on cf2023, and I expect it would happen to Keith. My solution will explain why.  Indeed, it's the crux of the whole problem as I said I will explain.    Thankfully, as I also said, my solution will cover all 3 current cf versions. I will elaborate later today. I've just woken and have some other obligations first. Please be patient.    And if nothing else confirm for us (and yourself) if your cf2025 update level is still 3. Even if it is, I'll implore Keith to check his update level before and after if he's tempted to try your workaround.   In any case, there is more than just that one package that's amiss and related to poi. Doing yours is just not the compete solution. Mine will be, as you'll see (and see why). It's not easy to explain in a sentence or two, so as the saying goes, "just hold your horses". 🙂  ... View more

Folks, I've found the solution. And bkbk I don't expect what you've proposed will work, but what I have to propose will. And it also explains other similar problems people have reported with some recent cf updates. (It also explains why the problem doesn't go away with uninstalling the update, nor with your frequent suggestion to people that they do an uninstall all/install all.) I think you'll find it fascinating, really.    While awaiting Keith's possible reply to my note from this morning, I'd gone ahead regardless of any encouragement from him. I sensed there was a bigger issue beyond his specific challenge, and it turns out l was proven right.   I'll write up more in the morning. It will include both what Keith and others can do in the short term, and what Adobe needs to ultimately do to fix things. You'll understand, then, both why your proposal here won't work, and the relationship to the SparseBitSet you've referred to a couple of times as well as this xmlbeans matter (and issues are having with POI since this update), and more.   It's an exciting conclusion to this mystery, and I look forward to sharing it tomorrow.  ... View more

@Karthikeyan.K, it's been a week now. Your problem seemed urgent, but you've not replied.    Is it resolved, perhaps? If so, what was the solution? If not, did the considerations from bkbk or from me help, or not?  ... View more

I've added that clarification comment on the bug report, so Adobe's aware.   So where do things stand for you now? What update are you on? And is the indexing working? If not, would you be interested in a workaround to get it working again on update 14? I have one in mind that may work. (I do realize you'd prefer one to get it working on update 15. That may require Adobe to resolve, if we can't.)   I've not yet confirmed if the cfindex fails still if I uninstall u14. I'm willing to try, and to test my idea of a workaround. But I want to make sure you're interested first.    BTW, just so we're clear, neither BKBK nor I work for Adobe. All our efforts here are volunteered. It's not even like the Red Cross: no one is compensating us for the literally dozens of hours we've spent on this (and the hundreds of hours we and others spend in the forum each year offering help).   Still, I appreciate you just want the problem solved. We're trying. Sorry for more questions than answers for now. I'm hopeful that one way or another you'll be in working order soon. ... View more

Ok, Keith thanks. So let me say first that I have confirmed your error, doing my own test of using cfindex on a docx.   As for why I had you focusing on the update process, recall you had said originally that even when you uninstalled the update, the problem continued. That seemed to point a strong suspicion at the update process. You confirmed here you had no errors (with the core update, at least. More in a moment.)    And with that I set to creating a test to simulate your issue (had to enable the addon service, create a collection, create the code to do the cfindex, find a docx to scan, etc. That's why I'd not done that to this point.) I also grabbed a couple of .doc files as well. And like you, I found the .doc files were indexed but the .docx files were not, with the same error in my coldfusion-out.log as you had reported: Cannot resolve type for handle _XY_Q=space|R=space@http://www.w3.org/XML/1998/namespace (org.apache.poi.schemas.ooxml.system.ooxml.cttext7f5btype) - code 13 So clearly something is amiss. And it's clearly related to the POI libraries that CF users. I can confirm that I found references to those being changed in the hotfix_filelist.log for this July CF update (15 for 2023, 21 for CF2021, and 3 for CF2025).   And in fact I have confirmed now that the problem you were seeing DOES in fact happen not ONLY in CF2023 but ALSO in CF2021 and CF2025, if that July update has been applied. (And I realize that you or others may be tempted to just try futzing with those files (deleting or moving them), but that's a risky proposition.)   What I have NOT yet confirmed is whether it happened with earlier updates or not. I presume you're feeling it WAS working before you did update 15 of 2023, right? You say it was "working for 10 years", but it's not clear a) what update you were on before this and b) whether you or anyone there had definitly run that code while on some that update.)  It might help to confirm for us.   Indeed, given that this is confirmed to have happened on more than just your machine (and mine, where I know all updates were applied correctly), I've gone ahead and filed a bug report about this at tracker.adobe.com, specifically https://tracker.adobe.com/#/view/CF-4227542 .   You should at least add a vote there so you'll get notified if Adobe (or others) respond to it. You can also add a comment there if you think of something I didn't think to say there. Hope that's helpful. ... View more

Nope, BKBK. I was literally JUST about to post new info (confirming his bug), but I thought to refresh the page to see if anyone added a new comment. It seems almost always that while I am writing a longer reply, someone slips in with a shorter one. 🙂  I've been working the past couple hours on what I am about to share, which I will offer in a moment, as a reply to Keith's last response to me. I think/hope it will show up here after yours (and now this one of mine). ... View more

The server log is not what I proposed you look at.  ... View more

Ketih, I'd asked you to answer 2b and 2c, yet you answered specifically 2a and 2b. You'd answered 2a (and only that) in your first reply to me that day.   2c will be the most important to consider, for the reasons I laid out that day and reiterated today: if there was an error in the update process, everything else is "spinning wheels in the mud".    Let's confirm there's not this root cause problem first. If not, the there's more we can consider.  ... View more

Keith, I realize you may suspect still this is some bug in cf, but I still would contend you should confirm if there was not some failure in the update process.   I'd raised multiple diagnostic questions in my first reply.  You've still not answered 2b and 2c. Please take time to do that, as it seems you're not getting to resolution with the other back and forth you guys have been having since then.   I have more for you/us to consider if that doesn't find the problem. Let's go one step at a time.  ... View more

Michael (calm_Eagle3816), your final reply here (from Dec 2024) had said, "I did get past the original algorithum problem, but now I'm onto the new cybersource P12 requirement for SOAP API, which is another problem for me."   Did you ever resolve that cybersource p12 issue, in case others dealing with it might find this thread in the future? ... View more

Great to see the concluding summary and to hear that the key was first that port 5500 (which readers can find I introduced and discussed more above) and then that selinux was blocking it even once you'd opened it in your firewall (this is the first mention of that here, so thanks).    These are indeed all valuable things for folks (and Adobe) to consider about enabling remote pdf services, especially when they are on different machines or using selinux. I hope the additional discussion of diagnosing the problem may help others, especially when the port numbers maybe different (for any of several reasons, also discussed above).   Best of all, glad it's resolved for you. When you first raised this new part of the discussion in May, you seemed on the verge of feeling you'd need to move off of CF, or perhaps only for pdf services. Surely many get to that point, and some may feel justified or even encouraged by that prospect (or alternatives they may find).   Given that Adobe licenses PDF Reactor as the underlying engine for cfhtmltopdf (since cf2023), which would be VERY expensive for us to do on our own, I'm all the more happy that we all on this thread have contributed key knowledge to the community. Indeed, I hope to do a blog post with my own summary of the conclusion, as some won't have the stomach to wade through all this, or may not even see your summary--which I will mark now as another "answer" for this thread. 🙂  ... View more

Please consider and reply to  point 2 in my initial reply here.   Also,. If you are saying you found other online discussions of your specific issue, please share links to any in case it could help others here, either facing or helping with this problem.   Finally, you mention deleting the jvm config. That's frankly a shocking idea, which I've never heard proposed. If you can share any link to a discussion suggesting that, I'd be very interested to know of it.  ... View more

Keith, I'm unaware of that being a known issue with update 15...but then again you found that in uninstalling that the problem remains. So the issue may or may not be about the specific "update" but rather about something amiss during your update process. I will elaborate. (Maybe someone else may know something about this .docx matter if it's a known one.)   1) First, though, can you just stop CF, delete the cfusion/bin/felix-cache folder, then start CF and test again? That has been a workaround for many recent problms people have experienced after an update.  If that helps while you are on u14, THEN try going to u15 and after that update is done, REPEAT THAT STEP of deleting the felix-cache.  For now, don't ask about it or contemplate whether it could/should help. 🙂 FWIW it's mentioned in some of the update technotes as a thing to do to solve "known issues".   If you'll just please try it and let us know how it goes, we can go to another step if it does NOT work.   2) And if "that didn't help", please then confirm for us a) are you doing the update within the CF Admin or via the command line (and the "java -jar" approach or using the cfpm tool)? Also b) what is the value in your CF Admin for the "packages url" (available via the the "settings" tab on the "package manager" page, where you can see CF updates). I can explain later, if needed, why I ask those questions. Finally, c) did you confirm in your update log that there was a count of 0 for "fatalerrors" and "nonfatalerrors"? I elaborate on that last point in a post here. BTW, that log is created both for an install AND for an uninstall of any CF update.   There's still more I and others could share, but let's see how things go. Hope something above here helps you. ... View more

Wow, that's too bad. One of us might have connected the dot far sooner...though the interaction with the f5 may not have been something anyone would have anticipated.   Anyway, have you considered the workarounds in Pete's post that Paul pointed to?   Note also he was writing in advance of the change. See my comments from a couple weeks later, with a link to my own Apr 2021 blog post on the problem and solution (documented by Oracle when that jvm update came out).   FWIW, I continued to warn people of that change with the next several subsequent jvm updates, as it was a doozy for some--and tragically impacting your/CF's ability to talk to things you might have zero control over. ... View more

Great point, Paul. In fact, I'd not considered that since the original post mentioned the problem as going past 11.0.2. But I see now that @pichardov  had in fact mentioned last week that it was "only if Java version is higher than 11.0.12". So you're very likely spot on.   But that's not your own issue below, I assume. Is that right?  ... View more

@paule12345, your situation sure sounds quite different that what @pichardov had experienced. In fact, your comment here arrived at the very same minute as theirs, offering their workaround.   As for your saying that a cfm page that created mails started running again, if you are thinking there's a connection there, I'll note that the process in cfmail will by default simply put emails into the cf mail spool folder. Cfmail itself doesn't talk to the smtp server.   Instead it's cf itself (a background thread) that wakes up (by default every 15 seconds) to find any such spooled mail to be delivered, and THAT'S what talks to the smtp server. Any failure or hangup in that process would NEVER (itself) cause the cf page doing the cfmails to run again.   It's great to hear you have FR. With that, you should definetky) definitely be able to track down the "repeat offender", finding such details as what ip address kicked it off, what client user agent that was, what web server processed it, what headers came in from the client or web server, and more.  ... View more

Thanks for the update. Interesting problem and solution. It also explains why this is not a problem commonly observed. In fact, it may still be possible someone else will come here experiencing the problem, where yours won't be their reason and solution. But at least it's solved for you, as the OP (though you acknowledged having used a different handle then).   As for @paule12345's report (which arrived literally the same minute as your "solution" here), that really seems a different issue, as I'll discuss in reply to that.  ... View more

Wow. Well, let's see which of our contentions proves to be born out for Karthik and future readers. ... View more

Karthik, it's understandable that anyone seeing this would be tempted to panic. It's complicated whether you need to be concerned about this or not. Let me explain.   1) First, as for that folder and those files, many are unaware that if ANY CFM page is called as a form post that pushes ANY file to it (like with a form  with an input type="file", but this can be simulated with http headers directly), then CF will first STORE that uploaded file in that directory.  And note how the file name ends with .tmp. Nothing can RUN that file, and even if it has a virus in it, nothing can LEVERAGE or trip over it, at least as it exists in that file. I'll talk in a moment about how that file may (or may not) be caused to be moved OUT of that folder, in which case it MAY be something to be concerned about.   But note note that such a tmp file (created by such an upload to a cfm page) will be REMOVED when the request ends. Again, that means the file may be there momentarily (milliseconds or seconds), but it would then be removed. In fact, if you look now at such folders, you may find the file you refer to is not there....but someone may argue "it was our security protection mechanism that removed it", and that may be so. I'm just saying that ANYONE even WITHOUT such a tool should find that the tmp files don't remain long.   2) So someone would reasonabley ask "so how do they get OUT of that folder to be used legitimately by CF?" That's where the cffile action="upload" comes into play; if a CF page is EXPECTING to have files uploaded to it (like via a form with an input type="file"), then THAT cf page would use that cffile action="upload" with a DESTINATION attribute naming a folder used by the app, which tells CF to MOVE that .tmp file (just uploaded) into that named folder. That process ALSO renames the file to whatever name and extension it was when uploaded (from this neotmp*.tmp name). Again, in the end, the .tmp file itself would no longer be there in that tmp folder.   And to be clear, if a cfm page gets a file uploaded to it but does NOT do that cffile action="upload", then the uploaded file is NOT processed by CF (at all) and again it's simply deleted at the end of the request.   3) But someone may argue, "ok, but what if the CF code DOES do a cffile action="upload". Won't that put the file with a virus somewhere?" Yes, it could.   We should note first that cffile action="upload" tag does itself offer attributes to control what CAN be uploaded. More than that, the CF Admin ALSO has various protection mechanisms built into processing of such uploads (but it doesn't "check for viruses"). These features can limit what file extensions are allowed--and also whether the kind of file uploaded matches the extension (and "mime type" indicated) for the file that was uploaded.  See the docs for more on that.   4) Now, if your code WOULD have just processed that uploaded file (with cffile action="upload") and WOULD have put it in some folder, then yes it's possible somehow a file with a virus could end up in your server (and perhaps even in a web accessible directory.)  To that point, some people have such uploaded files get moved (by their cf code) into a directory where then they perform some external a/v check, before putting it wherever it was ultimately intended to be placed.   5) But your tool is doing that checking BEFORE your CF code even might try to move the file out of that tmp folder. And I'm saying it may be that such uploaded files are not put there as part of an intentional process where a CF page WOULD have moved it out of there. Instead, those could just be uploads to a CF page which NEVER would have done anything with the file. And your mechanism is basically a dog howling at the moon (nothing to be worried about).    But bottom line: there's virtually nothing you can do to PREVENT file uploads to CF (even if your code has no intention to ever DO anything with such uploads). But again if you do NOT do anything with them, they just are removed at the end of the request that received the upload. You should find that you don't have many of that neotmp*.tmp name in that directory , cfusion\runtime\work\Catalina\localhost\tmp.     And even if somehow you do find them, and they go back hours days or weeks, it would be because the CF file to which the upload was pushed had died unexpectedly, so that CF did not do the end of request removal of the tmp file. Even so, again those tmp files there DO NOTHING. They CANNOT be "executed" in any way by CF, even if they "have a virus" in them. They are .tmp files. Nothing will execute them. You can just delete them and get on with life.   6) I realize that some will wish for a better answer to "prevent the uploads being possible in the first place, if we would NEVER have any need to handle such uploads to ANY cf files".   While CF has no feature to do that, I will say that your web server (IIS or Apache) may offer features to block such file uploads. It may even be possible to tweak Tomcat (which underlies CF) to prevent such file uploads. That just shows you that this ability of a file to receive a file upload (posting a file) to a server is not somehow unique to CF. Other languages and app servers support it as well.   What CF offers is whether and how to process that file once uploaded (see above), and it deletes the file if not used (see above). But your  a/v or security tool is possibly seeing the file in the moments that it's uploaded. That's why you either need to let it do its job (if its removing them) OR you need to explore how to tell your web server to NOT allow file uploads to CF at all. If you seek that, speak up and I or others may chime in.   7) I warned that this was not a simple problem with a simple answer. I hope the clarifications above are useful for you or others who may find this thread in the future. ... View more

I'm not aware of that as a known bug. Do you have info from Adobe indicating that?   Instead, I've found in helping people that what was happening is that the update process for packages runs on startup, and if it thinks there's an update to do, It REMOVES the related jars then.   But then if there's some subsequent problem that keeps it finding the updated packages to APPLY, then it leaves people the impression you're reflecting. But that's not a bug, it's a process error that can be solved.  ... View more

In following the manual update, do you do exactly what it says? Some try to take a shortcut by just extracting the zip into the bundles folder, which is not what it says to do (and which I'd warned about originally). Doing that merges new files with old, which may confuse matters.   Doing the approach documented in the technote does require changing the packagesurl, which is annoying (but it is what's documented, and should work for you. I'm not aware of a known bug with that.)  Sadly the docs don't mention how that packagesurl can be changed in the admin, without dorking with the neo updates.xml file.    That said, I've wondered if the better solution would be for them to tell people to instead just delete (or to be safe, rename) the bundles folder and THEN extract the zip into that location.   (Even then people need to be careful: some zip extraction processes create unexpected folders in their destination. It has to result in [cf]/bundles/repo, etc., not /bundles/bundles or anything else. )   With this approach (to doing a manual offline install), the packagesurl would just need to then be set to point the bundlesdependency.json file in that [cf]/bundles folder...and it would not need to be changed each update.    If anyone has thoughts I'd welcome them. I've been meaning to test this (but am writing from a phone) and then document it as a proposed improvement.  Writing here is a first step.  ... View more

Bert, are you asking this with respect to ColdFusion? I'm asking for two reasons.   First I just want to make sure your question is in the correct Adobe forum (people sometimes pick the wrong one), and your issue may relate to some specific aspect of another Adobe product.    Second, this doesn't sound like a cf- specific problem. Would you agree? In that case, if you don't get answer here (I think more detail is needed), you could ask it elsewhere (including asking an AI).    What could really help is if you took a few minutes to put together a few-line example that demonstrates your problem, in a way that anyone could run, and share that.   Sometimes in doing that, you discover the problem. 🙂 If not, share that few-line demo so we can confirm seeing what you see and could recommend a tweak to get what you want.  ... View more

What "recent worrisome bug" is that, bkbk?   I still contend this is simply an issue of Joey's environment being restricted and so he needs to do a manual offline update...or he needs to change the cf admin package manager page to configure the proxy settings which it seems he needs in order to allow the cf admin update mechanism to download the updates and packages.  ... View more

I'd recommend you next add to your cfmail code there a dump of the entire cgi scope, to see more about the source of the request. Then add also a dump of the server scope, to see more about the cf instance running the request. Most important, compare those dumps between each of the different emails you get. We may find a key difference that explains this.   Finally, if the pressure is on and you "just need this solved", I'm confident I could resolve this in a screenshare session together. We may not even need an hour.  You won't pay for time you don't find valuable. More on my rates, approach, satisfaction guarantee, online calendar and more at carehart.org/consulting.   Or I and others here can keep pressing on here. This can be diagnosed, understood, and resolved, I'm sure of it . You need not limp along on an old cf and Java version.  ... View more

Well, I have not succeeded in replicating that test that the OP offered. As such, whatever it is that you and ther are experiencing (even if you may find others confirming it), it would seem there must be something environmental affecting it.   So let's talk about a few things: first, how are you tracking that it runs more than once? The OP showed sending an email. One could also add cflog or the like, or some people judge based on database updates done by the task second, can you do anything to prove that the task is running twice from that one CF instance setup for the sceduled task? I have helped some people find out that they unepectedly had scheduled tasks on more than one machine or instance of CF, calling the same URL (and thus fooling them) if you have access to the web server that is processing the page being called as the url, do you have any access logs for that web server which do clearly show the request running twice? do any CF logs on the machine kicking off the scheduled task show it running more than once (at the time expected)? When you do feel they run more than once" per task, do you have evidence that tracks the timing of that second run? Is it some set number of seconds after the first one? If you have FusionReactor, it of course can track the url called by the task if it's a CF page, but FR does ALSO track the scheduled task processing (as what's called a "transaction", of type "httpclient", for those familiar with using FR).   Some more background: since CF 10 the cf scheduled tasks run under the covers based on an open-source library called quartz (with config files in the cfusion/quartz folder). And for some number of releases, there has indeed been a problem were the default timeout for tasks (in QUARTZ) is 60, which means the task gets kicked off (and runs, wherever the URL says to run--and it runs as long as it needs to run), but the quartz task itself "fails"--as is logged in CF's scheduler.log (if you have enabled logging of scheduled tasks, in the CF Admin logging settings page).   I am working up a blog post on how to enable additional logging from the quartz perspective. That too can help in better assessing if it's true (or not) that this quartz scheduler in CF is responsible for this seeming double-execution of tasks that you guys are observing.   There may well be another known reason for that seemnig to happen, and maybe someone else will chime in with more thoughts. I wanted to offer the above in the meantime. ... View more

Rick, please read my updated reply. The answer is there.  ... View more

Here is the bug number for the problem: https://tracker.adobe.com/#/view/CF-4227515 . Rick, I hope you will add a vote since it did happen to you. I've seen it happen to others.   Also, if anyone gets email notifications of replies, I want to point out that I substantially changed my first one as I learned some new info after I first wrote. Again, hope the workaround I offered works for Rick and others (I also shared it in the bug report). ... View more

FWIW, the mail problem is indicated as a "known issue" in the update technotes--and it also indicates the one step that should have been needed, which is one of the few steps you indicated: clear the felix-cache.   Just clarifying that that's perhaps all you'd needed to do. And a key other "lesson learned" (that readers should take to heart) is to read those update technotes, especially that "know issues" section. 🙂    As always, just trying to help, as. I know you are doing here.  ... View more