Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

deps: update dependency io.grpc:grpc-context to v1.70.0 #2068

Merged
merged 1 commit into from
Feb 4, 2025
Merged

deps: update dependency io.grpc:grpc-context to v1.70.0 #2068

merged 1 commit into from
Feb 4, 2025

Conversation

renovate-bot
Copy link
Contributor

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
io.grpc:grpc-context 1.69.0 -> 1.70.0 age adoption passing confidence

Release Notes

grpc/grpc-java (io.grpc:grpc-context)

v1.70.0

Compare Source

Bug Fixes

  • Re-enable animalsniffer, fixing most violations (8ea3629). Violations would only have triggered on API level 23 and earlier, and the violations fixed here were highly unlikely to be triggered
  • api: Fix Android API level 23 and earlier compatibility for StatusRuntimeException without stacktrace (#​11072) (ebe2b48). This fixes a regression introduced in 1.64.0. The regression should have caused failures on API level 23 and earlier when a StatusRuntimeException or StatusException was created. However, for unknown reasons tests on old devices didn’t notice issues
  • okhttp: Improve certificate handling by rejecting non-ASCII subject alternative names and hostnames as seen in CVE-2021-0341 (#​11749) (a0982ca). Hostnames are considered trusted and CAs are required to use punycode for non-ASCII hostnames, so this is expected to provide defense-in-depth. See also the related GoSecure blog post and the AOSP fix
  • okhttp: Fix for ipv6 link local with scope (#​11725) (65b32e6)
  • xds: Preserve nonce when unsubscribing last watcher of a particular type so that new discovery requests of that type are handled correctly (1cf1927). This (along with 6c12c2b) fixes a nonce-handling regression introduced in 1.66.0 that could cause resources to appear to not exist until re-creating the ADS stream. Triggering the behavior required specific config changes. It is easiest to trigger when clusters use EDS and routes are changed from one cluster to another. The error “found 0 leaf (logical DNS or EDS) clusters for root cluster” might then be seen
  • xds: Remember nonces for unknown types (6c12c2b)
  • xds: Unexpected types in the bootstrap’s server_features should be ignored (e8ff6da). They were previously required to be strings
  • xds: Remove xds authority label from metric registration (#​11760) (6516c73). This fixes the error “Incorrect number of required labels provided. Expected: 4” introduced in 1.69.0
  • xds: Fixed unsupported unsigned 32 bits issue for circuit breaker (#​11735) (f8f6139). This fixes clients treating large max_requests as “no requests” and failing all requests

Improvements

  • api: Introduce custom NameResolver.Args (#​11669) (0b2d440)
  • stub: Introduce new API: BlockingStubV2 which supports Bidi streaming, Client streaming, a cleaner Server streaming and Unary RPCs (#​10318) (ea8c31c)
  • bazel: Remove workaround for DoNotCall fixed in Bazel 3.4 (805cad3)
  • binder: A standard API for pointing resolvers at a different Android User. (#​11775) (1126a8e)
  • xds: Fix XDS control plane client retry timer backoff duration when connection closes after results are received (#​11766) (ef7c2d5)
  • xds: Parsing xDS Cluster Metadata (#​11741) (1edc4d8). Not used actively, but this adds validation. The validation is unlikely to fail but may reject invalid resources.
  • xds: Use "#server" as dataplane target value for xDS enabled gRPC servers (#​11715) (ebb43a6). This only impacts the grpc.target label in grpc.xds_client.* metrics. Previously the empty string was used
  • rls: Reduce RLS debug channel logging (7f9c1f3). This only matters when debug logging is enabled

Documentation

  • examples: Simplify graceful shutdown in Hostname example (f1109e4)
  • examples: Remove references to maven-central.storage-download.googleapis.com (c96e926)
  • examples: Updated the attachHeaders to newAttachHeadersInterceptor in HeaderClientInterceptor (#​11759) (5e8abc6)

Dependencies

  • Bazel 8 is released, so replace Bazel 6 testing with Bazel 7 (8a5f777)

Thanks to

v1.69.1

Compare Source

Bug Fixes
  • okhttp: Improve certificate handling by rejecting non-ASCII subject alternative names and hostnames as seen in CVE-2021-0341 (#​11749) (a0982ca). Hostnames are considered trusted and CAs are required to use punycode for non-ASCII hostnames, so this is expected to provide defense-in-depth. See also the related GoSecure blog post and the AOSP fix
  • xds: Preserve nonce when unsubscribing last watcher of a particular type so that new discovery requests of that type are handled correctly (1cf1927). This (along with 6c12c2b) fixes a nonce-handling regression introduced in 1.66.0 that could cause resources to appear to not exist until re-creating the ADS stream. Triggering the behavior required specific config changes. It is easiest to trigger when clusters use EDS and routes are changed from one cluster to another. The error “found 0 leaf (logical DNS or EDS) clusters for root cluster” might then be seen
  • xds: Remember nonces for unknown types (6c12c2b)
  • xds: Unexpected types in the bootstrap’s server_features should be ignored (e8ff6da). They were previously required to be strings
  • xds: Fixed unsupported unsigned 32 bits issue for circuit breaker (#​11735) (f8f6139). This fixes clients treating large max_requests as “no requests” and failing all requests
  • xds: Remove xds authority label from metric registration (#​11760) (6516c73). This fixes the error “Incorrect number of required labels provided. Expected: 4” introduced in 1.69.0

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate-bot renovate-bot requested a review from a team as a code owner February 4, 2025 20:25
@product-auto-label product-auto-label bot added the size: xs Pull request size is extra small. label Feb 4, 2025
@dpebot
Copy link

dpebot commented Feb 4, 2025

/gcbrun

@trusted-contributions-gcf trusted-contributions-gcf bot added the kokoro:force-run Add this label to force Kokoro to re-run the tests. label Feb 4, 2025
@lqiu96 lqiu96 merged commit 7a580bf into googleapis:main Feb 4, 2025
19 checks passed
@renovate-bot renovate-bot deleted the renovate/grpc-java-monorepo branch February 4, 2025 20:39
@release-please release-please bot mentioned this pull request Jan 28, 2025
Merged
svc-squareup-copybara pushed a commit to cashapp/misk that referenced this pull request Feb 7, 2025
@github-cash-renovate-jvm-2 @svc-squareup-copybara
This PR contains the following updates:
8eb590a 
| Package | Type | Package file | Manager | Update | Change |
|---|---|---|---|---|---|
|
[com.google.cloud:google-cloud-datastore](https://github.com/googleapis/java-datastore)
| dependencies | misk/gradle/libs.versions.toml | gradle | patch |
`2.26.0` -> `2.26.1` |
|
[com.google.http-client:google-http-client-jackson2](https://github.com/googleapis/google-http-java-client)
| dependencies | misk/gradle/libs.versions.toml | gradle | minor |
`1.45.3` -> `1.46.0` |
|
[com.google.http-client:google-http-client](https://github.com/googleapis/google-http-java-client)
| dependencies | misk/gradle/libs.versions.toml | gradle | minor |
`1.45.3` -> `1.46.0` |
| [software.amazon.awssdk:sdk-core](https://aws.amazon.com/sdkforjava) |
dependencies | misk/gradle/libs.versions.toml | gradle | patch |
`2.30.14` -> `2.30.15` |
|
[software.amazon.awssdk:dynamodb-enhanced](https://aws.amazon.com/sdkforjava)
| dependencies | misk/gradle/libs.versions.toml | gradle | patch |
`2.30.14` -> `2.30.15` |
| [software.amazon.awssdk:dynamodb](https://aws.amazon.com/sdkforjava) |
dependencies | misk/gradle/libs.versions.toml | gradle | patch |
`2.30.14` -> `2.30.15` |
| [software.amazon.awssdk:aws-core](https://aws.amazon.com/sdkforjava) |
dependencies | misk/gradle/libs.versions.toml | gradle | patch |
`2.30.14` -> `2.30.15` |
| [software.amazon.awssdk:bom](https://aws.amazon.com/sdkforjava) |
dependencies | misk/gradle/libs.versions.toml | gradle | patch |
`2.30.14` -> `2.30.15` |
| [software.amazon.awssdk:auth](https://aws.amazon.com/sdkforjava) |
dependencies | misk/gradle/libs.versions.toml | gradle | patch |
`2.30.14` -> `2.30.15` |

---

### Release Notes

<details>
<summary>googleapis/java-datastore
(com.google.cloud:google-cloud-datastore)</summary>

###
[`v2.26.1`](https://github.com/googleapis/java-datastore/blob/HEAD/CHANGELOG.md#2261-2025-02-05)

##### Bug Fixes

- **deps:** Update the Java code generator (gapic-generator-java) to
2.52.0
([9594024](googleapis/java-datastore@9594024))

##### Dependencies

- Update dependency com.google.cloud:gapic-libraries-bom to v1.51.0
([#&#8203;1726](googleapis/java-datastore#1726))
([89f31a8](googleapis/java-datastore@89f31a8))

</details>

<details>
<summary>googleapis/google-http-java-client
(com.google.http-client:google-http-client-jackson2)</summary>

###
[`v1.46.0`](https://github.com/googleapis/google-http-java-client/blob/HEAD/CHANGELOG.md#1460-2025-02-06)

##### Features

- Support JDK 23
([#&#8203;2064](googleapis/google-http-java-client#2064))
([b6a3616](googleapis/google-http-java-client@b6a3616))
- Update and adapt to GraalVM for JDK 23
([#&#8203;2069](googleapis/google-http-java-client#2069))
([7a0fab3](googleapis/google-http-java-client@7a0fab3))

##### Dependencies

- Update actions/upload-artifact action to v4.6.0
([#&#8203;2056](googleapis/google-http-java-client#2056))
([1e70d04](googleapis/google-http-java-client@1e70d04))
- Update dependency io.grpc:grpc-context to v1.70.0
([#&#8203;2068](googleapis/google-http-java-client#2068))
([7a580bf](googleapis/google-http-java-client@7a580bf))
- Update project.appengine.version to v2.0.32
([#&#8203;2065](googleapis/google-http-java-client#2065))
([2285bb1](googleapis/google-http-java-client@2285bb1))

</details>

---

### Configuration

📅 **Schedule**: Branch creation - "after 6pm every weekday,before 2am
every weekday" in timezone Australia/Melbourne, Automerge - At any time
(no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you
are satisfied.

♻ **Rebasing**: Never, or you tick the rebase/retry checkbox.

👻 **Immortal**: This PR will be recreated if closed unmerged. Get
[config help](https://github.com/renovatebot/renovate/discussions) if
that's undesired.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR has been generated by [Renovate
Bot](https://github.com/renovatebot/renovate).

GitOrigin-RevId: 9507906cb3cb7366a85164991512d76c540932bf
@lqiu96 lqiu96 mentioned this pull request Feb 7, 2025
Merged
1 task
lqiu96 added a commit that referenced this pull request Feb 7, 2025
@lqiu96
Revert "deps: update dependency io.grpc:grpc-context to v1.70.0 (#2068)"
a96901b 
This reverts commit 7a580bf.
@lqiu96 lqiu96 mentioned this pull request Feb 7, 2025
Merged
lqiu96 added a commit that referenced this pull request Feb 7, 2025
@lqiu96
Revert "deps: update dependency io.grpc:grpc-context to v1.70.0 (#2068)…
5790ac4 
…" (#2072)

This reverts commit 7a580bf.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@lqiu96 lqiu96 lqiu96 approved these changes

Assignees
No one assigned
Labels
kokoro:force-run Add this label to force Kokoro to re-run the tests. size: xs Pull request size is extra small.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@renovate-bot @dpebot @lqiu96