- Update to version 7.0.5 (boo#1203638)
+ Security Fixes:
* (CVE-2022-35951) Executing a XAUTOCLAIM command on a stream key in a specific
state, with a specially crafted COUNT argument, may cause an integer overflow,
a subsequent heap overflow, and potentially lead to remote code execution.
The problem affects Redis versions 7.0.0 or newer
[reported by Xion (SeungHyun Lee) of KAIST GoN].
+ Module API changes
* Fix RM_Call execution of scripts when used with M/W/S flags to properly
handle script flags (#11159)
* Fix RM_SetAbsExpire and RM_GetAbsExpire API registration (#11025, #8564)
+ Bug Fixes
* Fix a hang when eviction is combined with lazy-free and maxmemory-eviction-tenacity is set to 100 (#11237)
* Fix a crash when a replica may attempt to set itself as its master as a result of a manual failover (#11263)
* Fix a bug where a cluster-enabled replica node may permanently set its master's hostname to '?' (#10696)
* Fix a crash when a Lua script returns a meta-table (#11032)
+ Fixes for issues in previous releases of Redis 7.0
* Fix redis-cli to do DNS lookup before sending CLUSTER MEET (#11151)
* Fix crash when a key is lazy expired during cluster key migration (#11176)
* Fix AOF rewrite to fsync the old AOF file when a new one is created (#11004)
* Fix some crashes involving a list containing entries larger than 1GB (#11242)
* Correctly handle scripts with a non-read-only shebang on a cluster replica (#11223)
* Fix memory leak when unloading a module (#11147)
* Fix bug with scripts ignoring client tracking NOLOOP (#11052)
* Fix client-side tracking breaking protocol when FLUSHDB / FLUSHALL / SWAPDB is used inside MULTI-EXEC (#11038)
* Fix ACL: BITFIELD with GET and also SET / INCRBY can be executed with read-only key permission (#11086)
* Fix missing sections for INFO ALL when also requesting a module info section (#11291)
OBS-URL: https://build.opensuse.org/request/show/1005288
OBS-URL: https://build.opensuse.org/package/show/server:database/redis?expand=0&rev=205
- redis 6.2.1
Bug fixes:
* Fix sanitize-dump-payload for stream with deleted records (#8568)
* Prevent client-query-buffer-limit config from being set to lower than 1mb (#8557)
Improvements:
* Make port, tls-port and bind config options modifiable at runtime (#8510)
Platform and deployment-related changes:
* Fix compilation error on non-glibc systems if jemalloc is not used (#8533)
* Improved memory consumption and memory usage tracking on FreeBSD (#8545)
* Fix compilation on ARM64 MacOS with jemalloc (#8458)
Modules:
* New Module API for getting user name of a client (#8508)
* Optimize RM_Call by utilizing a shared reusable client (#8516)
* Fix crash running CLIENT INFO via RM_Call (#8560)
- includes changes from 6.2.0 GA:
* Integer overflow on 32-bit systems (CVE-2021-21309)
Bug fixes:
* Avoid 32-bit overflows when proto-max-bulk-len is set high (#8522)
* Fix broken protocol in client tracking tracking-redir-broken message (#8456)
* Avoid unsafe field name characters in INFO commandstats, errorstats, modules (#8492)
* XINFO able to access expired keys during CLIENT PAUSE WRITE (#8436)
* Fix allowed length for REPLCONF ip-address, needed due to Sentinel's support for hostnames (#8517)
* Fix broken protocol in redis-benchmark when used with -a or --dbnum (#8486)
* XADD counts deleted records too when considering switching to a new listpack (#8390)
Bug fixes that are only applicable to previous releases of Redis 6.2:
* Fixes in GEOSEARCH bybox (accuracy and mismatch between width and height) (#8445)
* Fix risk of OOM panic in HRANDFIELD, ZRANDMEMBER commands with huge negative count (#8429)
* Fix duplicate replicas issue in Sentinel, needed due to hostname support (#8481)
* Fix Sentinel configuration rewrite, an improvement of #8271 (#8480)
OBS-URL: https://build.opensuse.org/request/show/877720
OBS-URL: https://build.opensuse.org/package/show/server:database/redis?expand=0&rev=169
- add BR pkgconfig(libsystemd) for the rewritten systemd support
and force building with it
- Update to 6.0.1
* https://raw.githubusercontent.com/antirez/redis/6.0.1/00-RELEASENOTES
* XCLAIM AOF/replicas propagation fixed.
* Client side caching: new NOLOOP option to avoid getting
notified about changes performed by ourselves.
* ACL GENPASS now uses HMAC-SHA256 and have an optional
"bits" argument. It means you can use it as a general purpose
"secure random strings" primitive!
* Cluster "SLOTS" subcommand memory optimization.
* The LCS command is now a subcommand of STRALGO.
* Meaningful offset for replicas as well. More successful
partial resynchronizations.
* Optimize memory usage of deferred replies.
* Faster CRC64 algorithm for faster RDB loading.
* XINFO STREAM FULL, a new subcommand to get the whole stream
state.
* CLIENT KILL USER <username>.
* MIGRATE AUTH2 option, for ACL style authentication support.
* Other random bugfixes.
OBS-URL: https://build.opensuse.org/request/show/800054
OBS-URL: https://build.opensuse.org/package/show/server:database/redis?expand=0&rev=143
- Refresh spec-file with spec-cleaner and manual optimizations
* Remove Group tag.
* Replace make by %make_build macros.
- Update to 5.0.8
* https://raw.githubusercontent.com/antirez/redis/5.0.8/00-RELEASENOTES
* Fix Pi building needing -latomic, backport.
* Fix impl of aof-child whitelist SIGUSR1 feature.
* Fix ThreadSafeContext lock/unlock function names.
* XREADGROUP should propagate XCALIM/SETID in MULTI/EXEC.
* Fix client flags to be int64 in module.c.
* Fix small bugs related to replica and monitor ambiguity.
* Fix lua related memory leak.
* Simplify #6379 changes.
* Free allocated sds in pfdebugCommand() to avoid memory leak.
* Jump to right label on AOF parsing error.
* Free fakeclient argv on AOF error.
* Fix potential memory leak of rioWriteBulkStreamID().
* Fix potential memory leak of clusterLoadConfig().
* Fix bug on KEYS command where pattern starts with * followed by \x00.
* Blocking XREAD[GROUP] should always reply with valid data.
* XCLAIM: Create the consumer only on successful claims.
* Stream: Handle streamID-related edge cases.
* Fix ip and missing mode in RM_GetClusterNodeInfo().
* Inline protocol: handle empty strings well.
* Mark extern definition of SDS_NOINIT in sds.h.
* Fix revisit CVE-2015-8080 vulnerability.
* Avoid sentinel changes promoted_slave to be its own replica.
OBS-URL: https://build.opensuse.org/request/show/786036
OBS-URL: https://build.opensuse.org/package/show/server:database/redis?expand=0&rev=135
- Update to 5.0.7
* https://raw.githubusercontent.com/antirez/redis/5.0.7/00-RELEASENOTES
* Test: fix implementation-dependent test after code change.
* RED-31295 - redis: avoid race between dlopen and thread creation.
* Cluster: fix memory leak of cached master.
* Fix usage of server.stream_node_max_*.
* Update mkreleasehdr.sh.
* Remove additional space from comment.
* Fix stream test after addition of 0-0 ID test.
* AOF: fix assignment for aof_fsync_offset.
* Rename var to fixed_time_expire now that is more general.
* Expires & blocking: handle ready keys as call().
* XADD with ID 0-0 stores an empty key.
* Fix unreported overflow in autogerenared stream IDs.
* Expires: refactoring judgment about whether a key is expired.
- Refresh reproducible.patch
- Update to 5.0.6
* https://raw.githubusercontent.com/antirez/redis/5.0.6/00-RELEASENOTES
* RDB: fix MODULE_AUX loading by continuing to next opcode.
* Missing per-skiplist overheads in MEMORY USAGE.
* RM_Log: add support for logging without a context or context
without module.
* Cluster: abort loading nodes data if vars arguments are unbalanced.
* More strict checks and better comments in flushSlaveOutputBuffers().
* Improve comment in flushSlavesOutputBuffers().
* Replication: clarify why repl_put_online_on_ack exists at all.
* Networking: flushSlavesOutputBuffers bugfix.
* RM_ReplyWithCString was missing registration.
* Fix to module aux data rdb format for backwards compatibility
with old check-rdb.
* Implement module api for aux data in rdb.
* Redis-cli: always report server errors on read errors.
* Reduce the calling stack.
* Make EMBSTR case of #6261 more obvious.
* Make memory usage consistent of robj with OBJ_ENCODING_INT.
* HyperLogLog: fix the fix of a corruption bug.
* Fix HLL corruption bug.
* Extend REDISMODULE_CTX_FLAGS to indicate if redis is currently
loading from either RDB or AOF.
* Uses addReplyBulkCString.
* Adds RedisModule_ReplyWithCString.
OBS-URL: https://build.opensuse.org/request/show/752707
OBS-URL: https://build.opensuse.org/package/show/server:database/redis?expand=0&rev=127
- make check && true -> make check || true
This was probably meant to catch an error in the test suite, but
with && it would only return true if it would return true
already.
- added systemd unit file file redis-sentinel
- the unit file uses the same multiple instance mechanism as the
normal redis unit file
systemctl start redis-sentinel@default will look for
/etc/redis/sentinel-default.conf
and expects a pid file
/var/run/redis/sentinel-default.pid
Please make sure your sentinel config sets the pid file.
- adapted the default sentinel.conf.example to set the pid file
and the log file similar to the normal redis.conf:
/var/log/redis/sentinel-<instancename>.log
/var/run/redis/sentinel-<instancename>.pid
The unit file checks for the pid file so please adapt your
local sentinel configs.
Changed: redis-conf.patch
- adapt and restructure README.SUSE
- move the LimitNoFile to the service file itself so the user
do not have to manually do that step for every instance
- move the apache integration into its own section
- add section for redis-sentinel
- install sentinel example config with group write permissions
to indicate that the actually config needs to be writable.
OBS-URL: https://build.opensuse.org/request/show/633784
OBS-URL: https://build.opensuse.org/package/show/server:database/redis?expand=0&rev=120