chore(deps): update dependency org.postgresql:postgresql to v42.2.24
This MR contains the following updates:
Package | Change | Age | Adoption | Passing | Confidence |
---|---|---|---|---|---|
org.postgresql:postgresql (source) |
42.2.12 -> 42.2.24
|
Release Notes
pgjdbc/pgjdbc
v42.2.24
Fixed
- Fix startup regressions caused by MR #1949. Instead of checking all types by OID, we can return types for well known types MR #2257
- Backport MR #2148 Avoid leaking server error details through BatchUpdateException when logServerErrorDetail MR #2254
- Backpatch MR #2247 QueryExecutorImpl.receiveFastpathResult did not properly handle ParameterStatus messages. This in turn caused failures for some LargeObjectManager operations. Closes Issue #2237 Fixed by adding the missing code path, based on the existing handling in processResults. MR #2253
- Backpatch MR #2242 PgDatabaseMetaData.getIndexInfo() cast operands to smallint MR#2253 It is possible to break method PgDatabaseMetaData.getIndexInfo() by adding certain custom operators. This MR fixes it.
- Backpatching MR #2251 into 42.2 Clean up open connections to fix test failures on omni and appveyor use older syntax for COMMENT ON FUNCTION with explicit no-arg parameter parentheses as it is required on server versions before v10. Handle cleanup of connection creation in StatementTest, handle cleanup of privileged connection in DatabaseMetaDataTest
- Backpatch MR #2245 fixes case where duplicate tables are returned if there are duplicate descriptions oids are not guaranteed to be unique in the catalog MR #2248
- Change to updatable result set to use correctly primary or unique keys MR #2228 fixes issues introduced in MR #2199 closes Issue #2196
- Fix NPE calling getTypeInfo when alias is null MR #2220
- Backpatch MR #2217 to fix Issue #2215. OIDs are unsigned integers and were not being handled correctly when they exceeded the size of signed integers
v42.2.23
Changed
- Renewed the SSL keys for testing
Fixed
- getColumnPrecision for Numeric when scale and precision not specified now returns 0 instead of 131089 fixes: Issue #2188
- Calling refreshRow on an updateable resultset made the row readOnly. Fixes Issue #2193
- results should be updateable if there is a unique index available MR#2199 Fixes Issue #2196
- Rework sql type gathering to use OID instead of typname. This does not have the issue of name shadowing / qual-names, and has the added benefit of fixing #1948.
v42.2.22
Fixed
- Regression caused by https://github.com/pgjdbc/pgjdbc/commit/4fa2d5bc1ed8c0086a3a197fc1c28f7173d53cac. Unfortunately due to the blocking nature of the driver and issues with seeing if there is a byte available on a blocking stream when it is encrypted this introduces unacceptable delays in returning from peek(). At this time there is no simple solution to this.
v42.2.21
Changed
Fixed
- make sure the table has defined primary keys when using updateable resultset backpatch MR#2101 fixes Issue 1975 MR #2106
- backpatch MR #2143 read notifies or errors that come in asynchronously after the ready for query MR #2168
- backpatch MR #507 which reworks OSGI bundle activator fixes ISSUE #2133
- Fix database metadata getFunctions() and getProcedures() to ignore search_path when no schema pattern is specified. backpatch MR #2174 fixes Issue 2173
v42.2.20
Fixed
- Partitioned indexes were not found fixes #2078 MR #2087
- isValid() timeout should not be blocked #1943 Cherry-picked #2076
The usage of
setQueryTimeout();
with the same value as thesetNetworkTimeout();
is blocking the current transaction timeout. The timeouts are blocking each other with this approach. - DatabaseMetaData.getTables returns columns in UPPER case as per the spec MR #2092 fixes Issue #830
v42.2.19
Notable Changes
- Now the driver uses SASLprep normalization for SCRAM authentication fixing some issues with spaces in passwords.
- If closeOnCompletion is called on an existing statement and the statement is executed a second time it will fail.
Changed
- Perf: avoid duplicate PGStream#changeSocket calls
- Fix: Actually close unclosed results. Previously was not closing the first unclosed result fixes #1903 (#1905). There is a small behaviour change here as a result. If closeOnCompletion is called on an existing statement and the statement is executed a second time it will fail.
Added
- Verify code via forbidden-apis (jdk-internal and jdk-non-portable signatures) MR #2012
Fixed
- Fix Binary transfer for numeric fixes #1935
- Fix Allow specifying binaryTransferEnable even for those types that are not enabled by default
- Fix: properly set cancel socket timeout (#2044)
- Fix "Required class information missing" when old org.jboss:jandex parses pgjdbc classes [issue 2008][https://github.com/pgjdbc/pgjdbc/issues/2008]
- Fix PGCopyInputStream returning the last row twice when reading with CopyOut API [issue 2016][https://github.com/pgjdbc/pgjdbc/issues/2016]
- Fix Connnection.isValid() to not wait longer than existing network timeout MR #2040
- Fix Passwords with spaces (ASCII and non-ASCII) now work with SCRAM authentication (driver now uses SASLprep normalization) MR #2052
- Fix DatabaseMetaData.getTablePrivileges() to include views, materialized views, and foreign tables MR #2049
- Fix Resolve ParseError in PGtokenizer fixes #2050
- Fix return metadata privileges for views and foreign tables
v42.2.18
Fixed
- Unfortunately changing the default of gssEncMode to ALLOW was not enough. The GSSEncMode Enum was not changed as well fixed in #1920
v42.2.17
Changed
- Change default of gssEncMode to ALLOW. PostgreSQL can deal with MREFER but there are cloud providers that did not implement the protocol properly. Libpq gets around this by checking for a GSS credential cache before attempting the connection. This is possible in JDK 8 and up, but not JDK6, or JDK7 fixes Issue #1868 MR #1913
Added
- Add smallserial metadata [MR #899(https://github.com/pgjdbc/pgjdbc/pull/899)
Fixed
- Avoid NullPointerException when receiving PGbox, PGcircle, PGline, PGlseg, PGpath, PGpoint, PGpolygon, and PGmoney [MR 1873] (https://github.com/pgjdbc/pgjdbc/pull/1873).
- The driver returns enum and jsonb arrays elements as String objects (like in 42.2.14 and earlier versions) MR 1879.
- PgTokenizer was ignoring last empty token MR #1882
- Remove osgi from karaf fixes Issue #1891 MR #1902
- Handle nulls when the following clasess are used: PGbox, PGcircle, PGline, PGlseg, PGpath, PGpoint, PGpolygon, and PGmoney.
v42.2.16
Known issues
- The driver returns enum and jsonb arrays elements are returned as PGobject instances (fixed in 42.2.17)
Fixed
- Arrays sent in binary format are now sent as 1 based. This was a regression for multi-dimensional arrays as well as text/varchar, oid and bytea arrays. Since 42.2.0 single dimensional arrays were stored 0 based. They are now sent 1 based which is the SQL standard, and the default for Postgres when sent as strings such as '{1,2,3}'. Fixes issue 1860 in MR 1863.
v42.2.15
Known issues
- The driver returns enum and jsonb arrays elements are returned as PGobject instances (fixed in 42.2.17)
Changed
- Rename source distribution archive to
postgresql-$version-jdbc-src.tar.gz
, and add top-level archive folder ba017507 - Add the ability to connect with a GSSAPI encrypted connection. As of PostgreSQL version 12 GSSAPI encrypted connections are possible. Now the driver will attempt to connect to the server with a GSSAPI encrypted connection. If that fails then attempt an SSL connection, finally falling back to a plain text connection. All of this is controlled using both the gssEncMode and sslMode parameters which, in concert with pg_hba.conf, determine if a particular mode is allowed and or required. MR 1821 ad921b9e
- Source release archive shades dependencies (scram) by default. It affects only postgresql-version-src.tar.gz release artifact f0301eb9
- Refactor decoding arrays MR 1194
Added
- Verify nullness with CheckerFramework 6e524ae5
Fixed
- Avoid preparedStatement leak when using updateable ResultSet via insert/update/refreshRow MR 1815 9a0d2b18
- Change order of checks for oid vs primary keys. OID's have been deprecated. MR 1613
- Close certificate file stream. MR 1837
- Make sure socketTimeout is enforced MR 1831
- Assume PKCS-8 SSL key format by default MR 1819
- Preserve unquoted unicode whitespace in array literals MR 1266
v42.2.14
Changed
- Reverted com.github.waffle:waffle-jna, org.osgi:org.osgi.core, org.osgi:org.osgi.enterprise dependencies to optional=true in Maven MR 1797.
v42.2.13
Notable Changes
- Security: The primary reason to release this version and to continue the 42.2.x branch is for CVE-2020-13692. Reported by David Dworken, this is an XXE and more information can be found here. Sehrope Sarkuni reworked the XML parsing to provide a solution in commit 14b62aca4.
- The build system has been changed to Gradle thanks to Vladimir MR 1627.
- Regression: com.github.waffle:waffle-jna, org.osgi:org.osgi.core, org.osgi:org.osgi.enterprise dependencies are listed as non-optional issue 1975.
Changed
Added
- jre-6 was added back to allow us to release fixes for all artifacts in the 42.2.x branch MR 1787
Fixed
Configuration
-
If you want to rebase/retry this MR, check this box.
This MR has been generated by Renovate Bot.