Hello community, here is the log from the commit of package etcd for openSUSE:Factory checked in at 2020-08-12 10:57:16 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/etcd (Old) and /work/SRC/openSUSE:Factory/.etcd.new.3399 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "etcd" Wed Aug 12 10:57:16 2020 rev:22 rq:825830 version:3.4.10 Changes: -------- --- /work/SRC/openSUSE:Factory/etcd/etcd.changes 2020-06-10 00:34:17.880734873 +0200 +++ /work/SRC/openSUSE:Factory/.etcd.new.3399/etcd.changes 2020-08-12 10:57:25.528771074 +0200 @@ -1,0 +2,87 @@ +Thu Aug 06 09:30:53 UTC 2020 - rbr...@suse.com + +- Update to version 3.4.10 [CVE-2020-15106][boo#1174951]: + * version: 3.4.10 + * Documentation: note on data encryption + * etcdserver: change protobuf field type from int to int64 (#12000) + * pkg: consider umask when use MkdirAll + * etcdmain: let grpc proxy warn about insecure-skip-tls-verify + * etcdmain: fix shadow error + * pkg/fileutil: print desired file permission in error log + * pkg: Fix dir permission check on Windows + * auth: Customize simpleTokenTTL settings. + * mvcc: chanLen 1024 is to biger,and it used more memory. 128 seems to be enough. Sometimes the consumption speed is more than the production speed. + * auth: return incorrect result 'ErrUserNotFound' when client request without username or username was empty. + * etcdmain: fix shadow error + * doc: add TLS related warnings + * etcdserver:FDUsage set ticker to 10 minute from 5 seconds. This ticker will check File Descriptor Requirements ,and count all fds in used. And recorded some logs when in used >= limit/5*4. Just recorded message. If fds was more than 10K,It's low performance due to FDUsage() works. So need to increase it. + * clientv3: cancel watches proactively on client context cancellation + * wal: check out of range slice in "ReadAll", "decoder" + * etcdctl, etcdmain: warn about --insecure-skip-tls-verify options + * Documentation: note on the policy of insecure by default + * etcdserver: don't let InternalAuthenticateRequest have password + * auth: a new error code for the case of password auth against no password user + * Documentation: note on password strength + * etcdmain: best effort detection of self pointing in tcp proxy + * Discovery: do not allow passing negative cluster size + * wal: fix panic when decoder not set + * embed: fix compaction runtime err + * pkg: check file stats + * etcdserver, et al: add --unsafe-no-fsync flag + * version: 3.4.9 + * wal: add TestValidSnapshotEntriesAfterPurgeWal testcase + * wal: fix crc mismatch crash bug + * rafthttp: log snapshot download duration + * version: 3.4.8 + * rafthttp: improve snapshot send logging + * *: make sure snapshot save downloads SHA256 checksum + * etcdserver/api/snap: exclude orphaned defragmentation files in snapNames + * etcdserver: continue releasing snap db in case of error + * etcdserver,wal: fix inconsistencies in WAL and snapshot + * cherry pick of #11564 (#11880) + * mvcc: fix deadlock bug + * auth: optimize lock scope for CheckPassword + * auth: ensure RoleGrantPermission is compatible with older versions + * etcdserver: print warn log when failed to apply request + * auth: cleanup saveConsistentIndex in NewAuthStore + * auth: print warning log when error is ErrAuthOldRevision + * auth: add new metric 'etcd_debugging_auth_revision' + * tools/etcd-dump-db: add auth decoder, optimize print format + * *: fix auth revision corruption bug + * etcdserver: watch stream got closed once one request is not permitted (#11708) + * version: 3.4.7 + * wal: add "etcd_wal_writes_bytes_total" + * pkg/ioutil: add "FlushN" + * test: auto detect branch when finding merge base + * mvcc/kvstore:when the number key-value is greater than one million, compact take too long and blocks other requests + * version: 3.4.6 + * lease: fix memory leak in LeaseGrant when node is follower + * version: 3.4.5 + * words: whitelist "racey" + * Revert "version: 3.4.5" + * words: whitelist "hasleader" + * version: 3.4.5 + * etcdserver/api/v3rpc: handle api version metadata, add metrics + * clientv3: embed api version in metadata + * etcdserver/api/etcdhttp: log server-side /health checks + * proxy/grpcproxy: add return on error for metrics handler + * etcdctl: fix member add command + * version: 3.4.4 + * etcdserver: fix quorum calculation when promoting a learner member + * etcdserver: corruption check via http + * mvcc/backend: check for nil boltOpenOptions + * mvcc/backend: Delete orphaned db.tmp files before defrag + * auth: correct logging level + * e2e: test curl auth on onoption user + * auth: fix NoPassWord check when add user + * auth: fix user.Options nil pointer + * mvcc/kvstore:fixcompactbug + * mvcc: update to "etcd_debugging_mvcc_total_put_size_in_bytes" + * mvcc: add "etcd_mvcc_put_size_in_bytes" to monitor the throughput of put request. + * clientv3: fix retry/streamer error message + * etcdserver: wait purge file loop during shutdown + * integration: disable TestV3AuthOldRevConcurrent + * etcdserver: remove auth validation loop + * scripts/release: list GPG key only when tagging is needed + +------------------------------------------------------------------- Old: ---- etcd-3.4.3.tar.gz New: ---- etcd-3.4.10.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ etcd.spec ++++++ --- /var/tmp/diff_new_pack.VpnNfD/_old 2020-08-12 10:57:28.692772649 +0200 +++ /var/tmp/diff_new_pack.VpnNfD/_new 2020-08-12 10:57:28.692772649 +0200 @@ -22,7 +22,7 @@ %define _fillupdir %{_localstatedir}/adm/fillup-templates %endif Name: etcd -Version: 3.4.3 +Version: 3.4.10 Release: 0 Summary: Highly-available key value store for configuration and service discovery License: Apache-2.0 @@ -33,8 +33,7 @@ Source11: %{name}.conf Source12: %{name}.service Source15: README.security -BuildRequires: go1.12 >= 1.12.9 -BuildRequires: golang(API) = 1.12 +BuildRequires: golang(API) = 1.14 BuildRequires: golang-packaging BuildRequires: shadow BuildRequires: systemd-rpm-macros @@ -91,7 +90,6 @@ # Service install -D -p -m 0644 %{SOURCE12} %{buildroot}%{_unitdir}/%{name}.service -install -d %{buildroot}/%{_sbindir} ln -sf %{_sbindir}/service %{buildroot}%{_sbindir}/rc%{name} # Sysconfig ++++++ _service ++++++ --- /var/tmp/diff_new_pack.VpnNfD/_old 2020-08-12 10:57:28.736772671 +0200 +++ /var/tmp/diff_new_pack.VpnNfD/_new 2020-08-12 10:57:28.736772671 +0200 @@ -3,7 +3,7 @@ <param name="url">git://github.com/etcd-io/etcd.git</param> <param name="scm">git</param> <param name="exclude">.git</param> - <param name="revision">v3.4.3</param> + <param name="revision">v3.4.10</param> <param name="versionformat">@PARENT_TAG@</param> <param name="changesgenerate">enable</param> <param name="versionrewrite-pattern">v(.*)</param> ++++++ _servicedata ++++++ --- /var/tmp/diff_new_pack.VpnNfD/_old 2020-08-12 10:57:28.756772681 +0200 +++ /var/tmp/diff_new_pack.VpnNfD/_new 2020-08-12 10:57:28.756772681 +0200 @@ -3,4 +3,4 @@ <param name="url">https://github.com/coreos/etcd.git</param> <param name="changesrevision">94745a4eed0425653b3b4275a208d38babceeaec</param></service><service name="tar_scm"> <param name="url">git://github.com/etcd-io/etcd.git</param> - <param name="changesrevision">3cf2f69b5738fb702ba1a935590f36b52b18979b</param></service></servicedata> \ No newline at end of file + <param name="changesrevision">18dfb9cca345bb2b2fbe73d5fc31028c2477bef1</param></service></servicedata> \ No newline at end of file ++++++ etcd-3.4.3.tar.gz -> etcd-3.4.10.tar.gz ++++++ /work/SRC/openSUSE:Factory/etcd/etcd-3.4.3.tar.gz /work/SRC/openSUSE:Factory/.etcd.new.3399/etcd-3.4.10.tar.gz differ: char 12, line 1 ++++++ vendor.tar.gz ++++++ ++++ 15894 lines of diff (skipped)