Hello community,
here is the log from the commit of package etcd for openSUSE:Factory checked in
at 2020-08-12 10:57:16
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/etcd (Old)
and /work/SRC/openSUSE:Factory/.etcd.new.3399 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "etcd"
Wed Aug 12 10:57:16 2020 rev:22 rq:825830 version:3.4.10
Changes:
--------
--- /work/SRC/openSUSE:Factory/etcd/etcd.changes 2020-06-10
00:34:17.880734873 +0200
+++ /work/SRC/openSUSE:Factory/.etcd.new.3399/etcd.changes 2020-08-12
10:57:25.528771074 +0200
@@ -1,0 +2,87 @@
+Thu Aug 06 09:30:53 UTC 2020 - rbr...@suse.com
+
+- Update to version 3.4.10 [CVE-2020-15106][boo#1174951]:
+ * version: 3.4.10
+ * Documentation: note on data encryption
+ * etcdserver: change protobuf field type from int to int64 (#12000)
+ * pkg: consider umask when use MkdirAll
+ * etcdmain: let grpc proxy warn about insecure-skip-tls-verify
+ * etcdmain: fix shadow error
+ * pkg/fileutil: print desired file permission in error log
+ * pkg: Fix dir permission check on Windows
+ * auth: Customize simpleTokenTTL settings.
+ * mvcc: chanLen 1024 is to biger,and it used more memory. 128 seems to be
enough. Sometimes the consumption speed is more than the production speed.
+ * auth: return incorrect result 'ErrUserNotFound' when client request
without username or username was empty.
+ * etcdmain: fix shadow error
+ * doc: add TLS related warnings
+ * etcdserver:FDUsage set ticker to 10 minute from 5 seconds. This ticker
will check File Descriptor Requirements ,and count all fds in used. And
recorded some logs when in used >= limit/5*4. Just recorded message. If fds was
more than 10K,It's low performance due to FDUsage() works. So need to increase
it.
+ * clientv3: cancel watches proactively on client context cancellation
+ * wal: check out of range slice in "ReadAll", "decoder"
+ * etcdctl, etcdmain: warn about --insecure-skip-tls-verify options
+ * Documentation: note on the policy of insecure by default
+ * etcdserver: don't let InternalAuthenticateRequest have password
+ * auth: a new error code for the case of password auth against no password
user
+ * Documentation: note on password strength
+ * etcdmain: best effort detection of self pointing in tcp proxy
+ * Discovery: do not allow passing negative cluster size
+ * wal: fix panic when decoder not set
+ * embed: fix compaction runtime err
+ * pkg: check file stats
+ * etcdserver, et al: add --unsafe-no-fsync flag
+ * version: 3.4.9
+ * wal: add TestValidSnapshotEntriesAfterPurgeWal testcase
+ * wal: fix crc mismatch crash bug
+ * rafthttp: log snapshot download duration
+ * version: 3.4.8
+ * rafthttp: improve snapshot send logging
+ * *: make sure snapshot save downloads SHA256 checksum
+ * etcdserver/api/snap: exclude orphaned defragmentation files in snapNames
+ * etcdserver: continue releasing snap db in case of error
+ * etcdserver,wal: fix inconsistencies in WAL and snapshot
+ * cherry pick of #11564 (#11880)
+ * mvcc: fix deadlock bug
+ * auth: optimize lock scope for CheckPassword
+ * auth: ensure RoleGrantPermission is compatible with older versions
+ * etcdserver: print warn log when failed to apply request
+ * auth: cleanup saveConsistentIndex in NewAuthStore
+ * auth: print warning log when error is ErrAuthOldRevision
+ * auth: add new metric 'etcd_debugging_auth_revision'
+ * tools/etcd-dump-db: add auth decoder, optimize print format
+ * *: fix auth revision corruption bug
+ * etcdserver: watch stream got closed once one request is not permitted
(#11708)
+ * version: 3.4.7
+ * wal: add "etcd_wal_writes_bytes_total"
+ * pkg/ioutil: add "FlushN"
+ * test: auto detect branch when finding merge base
+ * mvcc/kvstore:when the number key-value is greater than one million,
compact take too long and blocks other requests
+ * version: 3.4.6
+ * lease: fix memory leak in LeaseGrant when node is follower
+ * version: 3.4.5
+ * words: whitelist "racey"
+ * Revert "version: 3.4.5"
+ * words: whitelist "hasleader"
+ * version: 3.4.5
+ * etcdserver/api/v3rpc: handle api version metadata, add metrics
+ * clientv3: embed api version in metadata
+ * etcdserver/api/etcdhttp: log server-side /health checks
+ * proxy/grpcproxy: add return on error for metrics handler
+ * etcdctl: fix member add command
+ * version: 3.4.4
+ * etcdserver: fix quorum calculation when promoting a learner member
+ * etcdserver: corruption check via http
+ * mvcc/backend: check for nil boltOpenOptions
+ * mvcc/backend: Delete orphaned db.tmp files before defrag
+ * auth: correct logging level
+ * e2e: test curl auth on onoption user
+ * auth: fix NoPassWord check when add user
+ * auth: fix user.Options nil pointer
+ * mvcc/kvstore:fixcompactbug
+ * mvcc: update to "etcd_debugging_mvcc_total_put_size_in_bytes"
+ * mvcc: add "etcd_mvcc_put_size_in_bytes" to monitor the throughput of put
request.
+ * clientv3: fix retry/streamer error message
+ * etcdserver: wait purge file loop during shutdown
+ * integration: disable TestV3AuthOldRevConcurrent
+ * etcdserver: remove auth validation loop
+ * scripts/release: list GPG key only when tagging is needed
+
+-------------------------------------------------------------------
Old:
----
etcd-3.4.3.tar.gz
New:
----
etcd-3.4.10.tar.gz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ etcd.spec ++++++
--- /var/tmp/diff_new_pack.VpnNfD/_old 2020-08-12 10:57:28.692772649 +0200
+++ /var/tmp/diff_new_pack.VpnNfD/_new 2020-08-12 10:57:28.692772649 +0200
@@ -22,7 +22,7 @@
%define _fillupdir %{_localstatedir}/adm/fillup-templates
%endif
Name: etcd
-Version: 3.4.3
+Version: 3.4.10
Release: 0
Summary: Highly-available key value store for configuration and service
discovery
License: Apache-2.0
@@ -33,8 +33,7 @@
Source11: %{name}.conf
Source12: %{name}.service
Source15: README.security
-BuildRequires: go1.12 >= 1.12.9
-BuildRequires: golang(API) = 1.12
+BuildRequires: golang(API) = 1.14
BuildRequires: golang-packaging
BuildRequires: shadow
BuildRequires: systemd-rpm-macros
@@ -91,7 +90,6 @@
# Service
install -D -p -m 0644 %{SOURCE12} %{buildroot}%{_unitdir}/%{name}.service
-install -d %{buildroot}/%{_sbindir}
ln -sf %{_sbindir}/service %{buildroot}%{_sbindir}/rc%{name}
# Sysconfig
++++++ _service ++++++
--- /var/tmp/diff_new_pack.VpnNfD/_old 2020-08-12 10:57:28.736772671 +0200
+++ /var/tmp/diff_new_pack.VpnNfD/_new 2020-08-12 10:57:28.736772671 +0200
@@ -3,7 +3,7 @@
<param name="url">git://github.com/etcd-io/etcd.git</param>
<param name="scm">git</param>
<param name="exclude">.git</param>
- <param name="revision">v3.4.3</param>
+ <param name="revision">v3.4.10</param>
<param name="versionformat">@PARENT_TAG@</param>
<param name="changesgenerate">enable</param>
<param name="versionrewrite-pattern">v(.*)</param>
++++++ _servicedata ++++++
--- /var/tmp/diff_new_pack.VpnNfD/_old 2020-08-12 10:57:28.756772681 +0200
+++ /var/tmp/diff_new_pack.VpnNfD/_new 2020-08-12 10:57:28.756772681 +0200
@@ -3,4 +3,4 @@
<param name="url">https://github.com/coreos/etcd.git</param>
<param
name="changesrevision">94745a4eed0425653b3b4275a208d38babceeaec</param></service><service
name="tar_scm">
<param name="url">git://github.com/etcd-io/etcd.git</param>
- <param
name="changesrevision">3cf2f69b5738fb702ba1a935590f36b52b18979b</param></service></servicedata>
\ No newline at end of file
+ <param
name="changesrevision">18dfb9cca345bb2b2fbe73d5fc31028c2477bef1</param></service></servicedata>
\ No newline at end of file
++++++ etcd-3.4.3.tar.gz -> etcd-3.4.10.tar.gz ++++++
/work/SRC/openSUSE:Factory/etcd/etcd-3.4.3.tar.gz
/work/SRC/openSUSE:Factory/.etcd.new.3399/etcd-3.4.10.tar.gz differ: char 12,
line 1
++++++ vendor.tar.gz ++++++
++++ 15894 lines of diff (skipped)
