SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for redis-7.2.4-5.1.x86_64.rpm :

* Fri Mar 01 2024 Danilo Spinella - The following issue has been fixed in TW but has not been mentioned before:
* bsc#1208235
* bsc#1207448- The following patch was removed from SLE:
* bsc1198952.patch
* redis-CVE-2022-24834.patch
* redis-CVE-2022-36021.patch
* redis-CVE-2023-25155.patch
* redis-CVE-2023-45145.patch
* redis-CVE-2023-45145.patch
* Tue Jan 09 2024 Marcus Rueckert - redis 7.2.4: (boo#1218646) - Security fixes - (CVE-2023-41056) In some cases, Redis may incorrectly handle resizing of memory buffers which can result in incorrect accounting of buffer sizes and lead to heap overflow and potential remote code execution. - Bug fixes - Fix crashes of cluster commands clusters with mixed versions of 7.0 and 7.2 (#12805, #12832) - Fix slot ownership not being properly handled when deleting a slot from a node (#12564) - Fix atomicity issues with the RedisModuleEvent_Key module API event (#12733)
* Fri Nov 03 2023 Marcus Rueckert - redis 7.2.3: - Fix file descriptor leak preventing deleted files from freeing disk space on replicas (#12693) - Fix a possible crash after cluster node removal (#12702)
* Fri Oct 20 2023 Danilo Spinella - redis 7.2.2:
* (CVE-2023-45145) The wrong order of listen(2) and chmod(2) calls creates a race condition that can be used by another process to bypass desired Unix socket permissions on startup, bsc#1216376
* WAITAOF could timeout in the absence of write traffic in case a new AOF is created and an AOF rewrite can\'t immediately start
* Fix crash when running rebalance command in a mixed cluster of 7.0 and 7.2 nodes
* Fix the return type of the slot number in cluster shards to integer, which makes it consistent with past behavior
* Fix CLUSTER commands are called from modules or scripts to return TLS info appropriately redis-cli, fix crash on reconnect when in SUBSCRIBE mode
* Fix overflow calculation for next timer event
* Thu Sep 07 2023 Danilo Spinella - redis 7.2.1:
* (CVE-2023-41053) Redis does not correctly identify keys accessed by SORT_RO and, as a result, may grant users executing this command access to keys that are not explicitly authorized by the ACL configuration. (bsc#1215094)
* Fix crashes when joining a node to an existing 7.0 Redis Cluster
* Correct request_policy and response_policy command tips on for some admin / configuration commands- Refresh redis.hashes
* Tue Aug 15 2023 Marcus Rueckert - redis 7.2.0 - Bug Fixes - redis-cli in cluster mode handles unknown-endpoint (#12273) - Update request / response policy hints for a few commands (#12417) - Ensure that the function load timeout is disabled during loading from RDB/AOF and on replicas. (#12451) - Fix false success and a memory leak for ACL selector with bad parenthesis combination (#12452) - Fix the assertion when script timeout occurs after it signaled a blocked client (#12459) - Fixes for issues in previous releases of Redis 7.2 - Update MONITOR client\'s memory correctly for INFO and client-eviction (#12420) - The response of cluster nodes was unnecessarily adding an extra comma when no hostname was present. (#12411)- refreshed redis-conf.patch:- switch to autosetup now that we switched the last patch to patch level 1
* Wed Jul 12 2023 Danilo Spinella - redis 7.0.12:
* (CVE-2022-24834) A specially crafted Lua script executing in Redis can trigger a heap overflow in the cjson and cmsgpack libraries, and result in heap corruption and potentially remote code execution. The problem exists in all versions of Redis with Lua scripting support, starting from 2.6, and affects only authenticated and authorized users. (bsc#1213193)
* (CVE-2023-36824) Extracting key names from a command and a list of arguments may, in some cases, trigger a heap overflow and result in reading random heap memory, heap corruption and potentially remote code execution. Specifically: using COMMAND GETKEYS
* and validation of key names in ACL rules. (bsc#1213249)
* Re-enable downscale rehashing while there is a fork child
* Fix possible hang in HRANDFIELD, SRANDMEMBER, ZRANDMEMBER when used with
* Improve fairness issue in RANDOMKEY, HRANDFIELD, SRANDMEMBER, ZRANDMEMBER, SPOP, and eviction
* Fix WAIT to be effective after a blocked module command being unblocked
* Avoid unnecessary full sync after master restart in a rare case
* Fri May 19 2023 Jiri Srain - refresh redis-hashes from upstream source
* Mon Apr 17 2023 Marcus Rueckert - redis 7.0.11 - (CVE-2023-28856) Authenticated users can use the HINCRBYFLOAT command to create an invalid hash field that will crash Redis on access (boo#1210548) - Add a missing fsync of AOF file in rare cases - Disconnect pub-sub subscribers when revoking allchannels permission - Fix a compiler fortification induced crash when used with link time optimizations- Drop get-old-size-calculations.patch: replaced with proper fix
* Fri Mar 24 2023 Marcus Rueckert - Added get-old-size-calculations.patch: my workaround for https://github.com/redis/redis/issues/11965
* Mon Mar 20 2023 Andreas Stieger - redis 7.0.10
* CVE-2023-28425: Specially crafted MSETNX command can lead to assertion and denial-of-service (boo#1209528)
* Large blocks of replica client output buffer may lead to psync loops and unnecessary memory usage
* Fix CLIENT REPLY OFF|SKIP to not silence push notifications
* Trim excessive memory usage in stream nodes when exceeding `stream-node-max-bytes`
* Fix module RM_Call commands failing with OOM when maxmemory is changed to zero
* Mon Mar 20 2023 Andreas Stieger - redis 7.0.9
* CVE-2023-25155: Specially crafted SRANDMEMBER, ZRANDMEMBER, and HRANDFIELD commands can trigger an integer overflow, resulting in a runtime assertion and termination of the Redis server process. Previously patched, drop Integer-Overflow-in-RAND-commands-can-lead-to-assert.patch
* CVE-2022-36021: String matching commands (like SCAN or KEYS) with a specially crafted pattern to trigger a denial-of-service attack on Redis, causing it to hang and consume 100% CPU time. Previously upatched, drop String-pattern-matching-had-exponential-time-complex.patch
* Fix a crash when reaching the maximum invalidations limit of client-side tracking
* Fix a crash when SPUBLISH is used after passing the cluster-link-sendbuf-limit
* Fix possible memory corruption in FLUSHALL when a client watches more than one key
* Fix cluster inbound link keepalive time
* Flush propagation list in active-expire of writable replicas to fix an assertion
* Avoid propagating DEL of lazy expire from SCAN and RANDOMKEY as MULTI-EXEC
* Avoid realloc to reduce size of strings when it is unneeded
* Improve CLUSTER SLOTS reply efficiency for non-continuous slots
* Wed Mar 01 2023 Valentin Lefebvre - Fix CVE-2022-36021 (bsc#1208790 CVE-2022-36021)
* String-pattern-matching-had-exponential-time-complex.patch- Fix CVE-2023-25155 (bsc#1208793 CVE-2023-25155)
* Integer-Overflow-in-RAND-commands-can-lead-to-assert.patch
* Mon Jan 16 2023 Andreas Stieger - redis 7.0.8
* CVE-2022-35977: Integer overflow in the Redis SETRANGE and SORT/SORT_RO commands can drive Redis to OOM panic boo#1207202
* CVE-2023-22458: Integer overflow in the Redis HRANDFIELD and ZRANDMEMBER commands can lead to denial-of-service boo#1207203
* Avoid possible hang when client issues long KEYS, SRANDMEMBER, HRANDFIELD, and ZRANDMEMBER commands and gets disconnected by client output buffer limit
* Make sure that fork child doesn\'t do incremental rehashing
* Fix a bug where blocking commands with a sub-second timeout would block forever
* Fix sentinel issue if replica changes IP
* Fri Dec 16 2022 Michael Ströder - Update to version 7.0.7
* Fix regression from Redis 7.0.6 in distance replies of Geo commands (#11631)
* Thu Dec 15 2022 Andreas Stieger - Update to version 7.0.6:
* RM_ResetDataset module API should not clear the functions
* RM_Call module API used with the \"C\" flag to run scripts, would now cause the commands in the script to check ACL with the designated user
* Geo commands speedups
* Fix EVAL command performance regression from Redis 7.0
* Reduce EXPIRE commands performance regression from Redis 7.0
* Optimize commands returning double values, mainly affecting zset commands
* Optimize Lua parsing of some command responses
* Optimize client memory usage tracking operation while client eviction is disabled
* Multiple bug fixes for crashes, hangs, and incorrect behavior- drop cve-2022-3647.patch now upstream
* Mon Oct 24 2022 Danilo Spinella - Fix CVE-2022-3647, crash in sigsegvHandler debug function (CVE-2022-3647, bsc#1204633)
* cve-2022-3647.patch
* Wed Sep 21 2022 Michael Ströder - Update to version 7.0.5 (boo#1203638) + Security Fixes:
* (CVE-2022-35951) Executing a XAUTOCLAIM command on a stream key in a specific state, with a specially crafted COUNT argument, may cause an integer overflow, a subsequent heap overflow, and potentially lead to remote code execution. The problem affects Redis versions 7.0.0 or newer [reported by Xion (SeungHyun Lee) of KAIST GoN]. + Module API changes
* Fix RM_Call execution of scripts when used with M/W/S flags to properly handle script flags (#11159)
* Fix RM_SetAbsExpire and RM_GetAbsExpire API registration (#11025, #8564) + Bug Fixes
* Fix a hang when eviction is combined with lazy-free and maxmemory-eviction-tenacity is set to 100 (#11237)
* Fix a crash when a replica may attempt to set itself as its master as a result of a manual failover (#11263)
* Fix a bug where a cluster-enabled replica node may permanently set its master\'s hostname to \'?\' (#10696)
* Fix a crash when a Lua script returns a meta-table (#11032) + Fixes for issues in previous releases of Redis 7.0
* Fix redis-cli to do DNS lookup before sending CLUSTER MEET (#11151)
* Fix crash when a key is lazy expired during cluster key migration (#11176)
* Fix AOF rewrite to fsync the old AOF file when a new one is created (#11004)
* Fix some crashes involving a list containing entries larger than 1GB (#11242)
* Correctly handle scripts with a non-read-only shebang on a cluster replica (#11223)
* Fix memory leak when unloading a module (#11147)
* Fix bug with scripts ignoring client tracking NOLOOP (#11052)
* Fix client-side tracking breaking protocol when FLUSHDB / FLUSHALL / SWAPDB is used inside MULTI-EXEC (#11038)
* Fix ACL: BITFIELD with GET and also SET / INCRBY can be executed with read-only key permission (#11086)
* Fix missing sections for INFO ALL when also requesting a module info section (#11291)
* Thu Sep 01 2022 Stefan Schubert - Migration to /usr/etc: Saving user changed configuration files in /etc and restoring them while an RPM update.
* Mon Jul 18 2022 Michael Ströder - Security update to version 7.0.4 (CVE-2022-31144) A specially crafted XAUTOCLAIM command on a stream key in a specific state may result with heap overflow, and potentially remote code execution. The problem affects Redis versions 7.0.0 or newer.
* Mon Jul 11 2022 Michael Ströder - Update to version 7.0.3
* Performance and resource utilization improvements - Optimize zset conversion on large ZRANGESTORE (#10789) - Optimize the performance of sending PING on large clusters (#10624) - Allow for faster restart of Redis in cluster mode (#10912)
* INFO fields and introspection changes - Add missing sharded pubsub keychannel count to CLIENT LIST (#10895) - Add missing pubsubshard_channels field in INFO STATS (#10929)
* Module API changes - Add RM_StringToULongLong and RM_CreateStringFromULongLong (#10889) - Add RM_SetClientNameById and RM_GetClientNameById (#10839)
* Changes in CLI tools - Add missing cluster-port support to redis-cli --cluster (#10344)
* Other General Improvements - Account sharded pubsub channels memory consumption (#10925) - Allow ECHO in loading and stale modes (#10853) - Cluster: Throw -TRYAGAIN instead of -ASK on migrating nodes for multi-key - commands when the node only has some of the keys (#9526)
* Bug Fixes - TLS: Notify clients on connection shutdown (#10931) - Fsync directory while persisting AOF manifest, RDB file, and config file (#10737) - Script that made modification will not break with unexpected NOREPLICAS error (#10855) - Cluster: Fix a bug where nodes may not acknowledge a CLUSTER FAILOVER TAKEOVER - after a replica reboots (#10798) - Cluster: Fix crash during handshake and cluster shards call (#10942)
* Fixes for issues in previous releases of Redis 7.0 - TLS: Fix issues with large replies (#10909) - Correctly report the startup warning for vm.overcommit_memory (#10841) - redis-server command line allow passing config name and value in the same argument (#10866) - Support --save command line argument with no value for backwards compatibility (#10866) - Fix CLUSTER RESET command regression requiring an argument (#10898)
* Mon Jul 04 2022 Danilo Spinella - Use bundled jemalloc to fix active defragmentation, fixes bsc#1200913.- Remove patch:
* Add-support-for-USE_SYSTEM_JEMALLOC-flag.patch
* Wed Jun 29 2022 Stefan Schubert - Moved logrotate files from user specific directory /etc/logrotate.d to vendor specific directory /usr/etc/logrotate.d.
* Sun Jun 12 2022 Michael Ströder - Update to version 7.0.2
* Fixed SET and BITFIELD commands being wrongly marked movablekeys (#10837) Regression in 7.0 possibly resulting in excessive roundtrip from cluster clients.
* Fix crash when /proc/sys/vm/overcommit_memory is inaccessible (#10848) Regression in 7.0.1 resulting in crash on startup on some configurations.
* Wed Jun 08 2022 Michael Ströder - Update to version 7.0.1
* Improvements - Add warning for suspected slow system clocksource setting Add --check-system command line option. (#10636) - Allow read-only scripts (
*_RO commands, and ones with `no-writes` flag) during CLIENT PAUSE WRITE (#10744) - Add `readonly` flag in COMMAND command for EVAL_RO, EVALSHA_RO and FCALL_RO (#10728) - redis-server command line arguments now accept one string with spaces for multi-arg configs (#10660)
* Potentially Breaking Changes - Omitting a config option value in command line argument no longer works (#10660) - Hide the `may_replicate` flag from the COMMAND command response (#10744)
* Potentially Breaking Changes for new Redis 7.0 features - Protocol: Sharded pubsub publish emits `smessage` instead of `message` (#10792) - CLUSTER SHARDS returns slots as RESP integers, not strings (#10683) - Block PFCOUNT and PUBLISH in read-only scripts (
*_RO commands, and no-writes) (#10744) - Scripts that declare the `no-writes` flag are implicitly `allow-oom` too (#10699)
* Changes in CLI tools - redis-cli --bigkeys, --memkeys, --hotkeys, --scan. Finish nicely after Ctrl+C (#10736)
* Platform / toolchain support related improvements - Support tcp-keepalive config interval on MacOs (#10667) - Support RSS metrics on Haiku OS (#10687)
* INFO fields and introspection changes - Add isolated network metrics for replication. (#10062, #10810)
* Module API changes - Add two more new checks to RM_Call script mode (#10786) - Add new RM_Call flag to let Redis automatically refuse `deny-oom` commands (#10786) - Add module API RM_MallocUsableSize (#10795) - Add missing REDISMODULE_NOTIFY_NEW (#10688) - Fix cursor type in RedisModuleScanCursor to handle more than 2^31 elements (#10698) - Fix RM_Yield bugs and RM_Call(\"EVAL\") OOM check bug (#10786) - Fix bugs in enum configs with overlapping bit flags (#10661)
* Bug Fixes - FLUSHALL correctly resets rdb_changes_since_last_save INFO field (#10691) - FLUSHDB is now propagated to replicas / AOF, even if the db is empty (#10691) - Replica fail and retry the PSYNC if the master is unresponsive (#10726) - Fix ZRANGESTORE crash when zset_max_listpack_entries is 0 (#10767)
* Tue May 10 2022 Danilo Spinella - Unbundle jemalloc, fixes bsc#199164
* Add-support-for-USE_SYSTEM_JEMALLOC-flag.patch
* Tue May 10 2022 Johannes Segitz - Add ReadWritePaths=/etc/redis to redis-sentinelAATT.service (bsc#1199198)
* Fri May 06 2022 Danilo Spinella - Update to version 7.0.0: https://raw.githubusercontent.com/redis/redis/7.0/00-RELEASENOTES- Remove upstreamed patch:
* getMcontextEip-return-value.patch
* Wed Apr 27 2022 Andreas Stieger - redis 6.2.7:
* CVE-2022-24736: An attacker attempting to load a specially crafted Lua script can cause NULL pointer dereference which will result with a crash of the redis-server process (boo#1198953)
* CVE-2022-24735: By exploiting weaknesses in the Lua script execution environment, an attacker with access to Redis can inject Lua code that will execute with the (potentially higher) privileges of another Redis user (boo#1198952)
* LPOP/RPOP with count against non-existing list return null array
* LPOP/RPOP used to produce wrong replies when count is 0
* Speed optimization in command execution pipeline
* Fix regression in Z[REV]RANGE commands (by-rank) introduced in Redis 6.2
* Fix OpenSSL 3.0.x related issues
* Bug fixes
* Mon Nov 15 2021 Johannes Segitz - Added hardening to systemd service(s) (bsc#1181400). Modified:
* redis-sentinelAATT.service
* redisAATT.service
* Mon Oct 04 2021 Michael Ströder - redis 6.2.6 with security fixes for
* Security fixes: - CVE-2021-41099: Integer to heap buffer overflow handling certain string commands and network payloads, when proto-max-bulk-len is manually configured to a non-default, very large value (boo#1191299) - CVE-2021-32762: Integer to heap buffer overflow issue in redis-cli and redis-sentinel parsing large multi-bulk replies on some older and less common platforms (boo#1191300) - CVE-2021-32687: Integer to heap buffer overflow with intsets, when set-max-intset-entries is manually configured to a non-default, very large value (boo#1191302) - CVE-2021-32675: Denial Of Service when processing RESP request payloads with a large number of elements on many connections (boo#1191303) - CVE-2021-32672: Random heap reading issue with Lua Debugger (boo#1191304) - CVE-2021-32628: Integer to heap buffer overflow handling ziplist-encoded data types, when configuring a large, non-default value for hash-max-ziplist-entries, hash-max-ziplist-value, zset-max-ziplist-entries or zset-max-ziplist-value (boo#1191305) - CVE-2021-32627: Integer to heap buffer overflow issue with streams, when configuring a non-default, large value for proto-max-bulk-len and client-query-buffer-limit (boo#1191305) - CVE-2021-32626: Specially crafted Lua scripts may result with Heap buffer overflow (boo#1191306)
* Bug fixes that involve behavior changes: - GEO
* STORE with empty source key deletes the destination key and return 0 Previously it would have returned an empty array like the non-STORE variant. - PUBSUB NUMPAT replies with number of patterns rather than number of subscriptions This actually changed in 6.2.0 but was overlooked and omitted from the release notes.
* Bug fixes that are only applicable to previous releases of Redis 6.2: - Fix CLIENT PAUSE, used an old timeout from previous PAUSE - Fix CLIENT PAUSE in a replica would mess the replication offset - Add some missing error statistics in INFO errorstats
* Other bug fixes: - Fix incorrect reply of COMMAND command key positions for MIGRATE command - Fix appendfsync to always guarantee fsync before reply, on MacOS and FreeBSD (kqueue) - Fix the wrong misdetection of sync_file_range system call, affecting performance
* CLI tools: - When redis-cli received ASK response, it didn\'t handle it
* Improvements: - Add latency monitor sample when key is deleted via lazy expire - Sanitize corrupt payload improvements - Delete empty keys when loading RDB file or handling a RESTORE command
* Thu Jul 22 2021 Andreas Stieger - redis 6.2.5:
* CVE-2021-32761: Fix integer overflow in BITFIELD on 32-bit boo#1188598
* Change reply type for ZPOPMAX/MIN with count in RESP3 to nested array
* Was using a flat array like in RESP2 instead of a nested array like ZRANGE does.
* Fix reply type for HRANDFIELD and ZRANDMEMBER when key is missing
* Was using a null array instead of an empty array
* Fix reply type for ZRANGESTORE when source key is missing
* Was using an empty array like ZRANGE instead of 0 (used in the STORE variant)
* redis-cli cluster import command may issue wrong MIGRATE command, sending COPY instead of REPLACE (#8945)
* redis-cli --rdb fixes when using \"-\" to write to stdout
* redis-cli support for RESP3 set type in CSV and RAW output
* ad Module API for getting current command name
* Fix RM_StringTruncate when newlen is 0
* Fix CLIENT UNBLOCK crashing modules without timeout callback
* Further developer visible bug fixes
* Wed Jun 02 2021 Andreas Stieger - redis 6.2.4:
* CVE-2021-32625: An integer overflow bug could be exploited by using the STRALGO LCS command to cause remote remote code execution (boo#1186722)
* Fix crash after a diskless replication fork child is terminated
* Fix redis-benchmark crash on unsupported configs
* Fix crash in UNLINK on a stream key with deleted consumer groups
* SINTERSTORE: Add missing keyspace del event when none of the sources exist
* Sentinel: Fix CONFIG SET of empty string sentinel-user/sentinel-pass configs
* Enforce client output buffer soft limit when no traffic
* Hide AUTH passwords in MIGRATE command from slowlog
* Fri May 21 2021 Jan Engelhardt - Move sysctl file to /usr/lib/sysctl.d, so that it can be overridden by an admin in /etc.
* Tue May 04 2021 Michael Ströder - redis 6.2.3
* CVE-2021-29477: Integer overflow in STRALGO LCS command (boo#1185729)
* CVE-2021-29478: Integer overflow in COPY command for large intsets (boo#1185730)
* Fix memory leak in moduleDefragGlobals
* Fix memory leak when doing lazy freeing client tracking table
* Block abusive replicas from sending command that could assert and crash redis
* Use a monotonic clock to check for Lua script timeout
* redis-cli: Do not use unix socket when we got redirected in cluster mode
* Fix RM_GetClusterNodeInfo() to correctly populate master id
* Tue Apr 20 2021 Andreas Stieger - Usage of OPENSSL_INIT_ATFORK in tls.c raises the minimum version of OpenSSL 1.1.x to 1.1.1, say so in spec
* Tue Apr 20 2021 Michael Ströder - redis 6.2.2 Bug fixes for regressions in previous releases of Redis 6.2:
* Fix BGSAVE, AOFRW, and replication slowdown due to child reporting CoW (#8645)
* Fix short busy loop when a timer event is about to fire (#8764)
* Fix default user, overwritten and reset users losing Pub/Sub channel permissions (#8723)
* Fix config rewrite with an empty save config resulting in default save values (#8719)
* Fix not starting on alpine/libmusl without IPv6 (#8655)
* Fix issues with propagation and MULTI/EXEC in modules (#8617)
* Several issues around nested calls and thread-safe contexts Bug fixes that are only applicable to previous releases of Redis 6.2:
* ACL Pub/Sub channels permission handling for save/load scenario (#8794)
* Fix early rejection of PUBLISH inside MULTI-EXEC transaction (#8534)
* Fix missing SLOWLOG records for blocked commands (#8632)
* Allow RESET command during busy scripts (#8629)
* Fix some error replies that were not counted on stats (#8659) Bug fixes:
* Add a timeout mechanism for replicas stuck in fullsync (#8762)
* Process HELLO command even if the default user has no permissions (#8633)
* Client issuing a long-running script and using a pipeline, got disconnected (#8715)
* Fix script kill to work also on scripts that use pcall (#8661)
* Fix list-compress-depth may compress more node than required (#8311)
* Fix redis-cli handling of rediss:// URL scheme (#8705)
* Cluster: Skip unnecessary check which may prevent failure detection (#8585)
* Cluster: Fix hang manual failover when replica just started (#8651)
* Sentinel: Fix info-refresh time field before sentinel gets a first response (#8567)
* Sentinel: Fix possible crash on failed connection attempt (#8627)
* Systemd: Send the readiness notification when a replica is ready to accept connections (#8409) Command behavior changes:
* ZADD: fix awrong reply when INCR used with GT/LT which blocked the update (#8717)
* It was responding with the incremented value rather than nil
* XAUTOCLAIM: fix response to return the next available id as the cursor (#8725)
* Previous behavior was returning the last one which was already scanned
* XAUTOCLAIM: fix JUSTID to prevent incrementing delivery_count (#8724) New config options:
* Add cluster-allow-replica-migration config option (#5285)
* Add replica-announced config option (#8653)
* Add support for plaintext clients in TLS cluster (#8587)
* Add support for reading encrypted keyfiles (#8644) Improvements:
* Fix performance regression in BRPOP on Redis 6.0 (#8689)
* Avoid adding slowlog entries for config with sensitive data (#8584)
* Improve redis-cli non-binary safe string handling (#8566)
* Optimize CLUSTER SLOTS reply (#8541)
* Handle remaining fsync errors (#8419) Info fields and introspection changes:
* Strip % sign from current_fork_perc info field (#8628)
* Fix RSS memory info on FreeBSD (#8620)
* Fix client_recent_max_input/output_buffer in \'INFO CLIENTS\' when all clients drop (#8588)
* Fix invalid master_link_down_since_seconds in info replication (#8785) Platform and deployment-related changes:
* Fix FreeBSD <12.x builds (#8603) Modules:
* Add macros for RedisModule_log logging levels (#4246)
* Add RedisModule_GetAbsExpire / RedisModule_SetAbsExpire (#8564)
* Add a module type for key space notification (#8759)
* Set module eviction context flag only in masters (#8631)
* Fix unusable RedisModule_IsAOFClient API (#8596)
* Fix missing EXEC on modules propagation after failed EVAL execution (#8654)
* Fix edge-case when a module client is unblocked (#8618)
* Sat Mar 13 2021 Michael Ströder - replaced /var/run with /run for all PID file paths (bsc#1185072)
* Thu Mar 04 2021 Gareth McCarter - redis 6.2.1 Bug fixes:
* Fix sanitize-dump-payload for stream with deleted records (#8568)
* Prevent client-query-buffer-limit config from being set to lower than 1mb (#8557) Improvements:
* Make port, tls-port and bind config options modifiable at runtime (#8510) Platform and deployment-related changes:
* Fix compilation error on non-glibc systems if jemalloc is not used (#8533)
* Improved memory consumption and memory usage tracking on FreeBSD (#8545)
* Fix compilation on ARM64 MacOS with jemalloc (#8458) Modules:
* New Module API for getting user name of a client (#8508)
* Optimize RM_Call by utilizing a shared reusable client (#8516)
* Fix crash running CLIENT INFO via RM_Call (#8560)- includes changes from 6.2.0 GA:
* Integer overflow on 32-bit systems (CVE-2021-21309) Bug fixes:
* Avoid 32-bit overflows when proto-max-bulk-len is set high (#8522)
* Fix broken protocol in client tracking tracking-redir-broken message (#8456)
* Avoid unsafe field name characters in INFO commandstats, errorstats, modules (#8492)
* XINFO able to access expired keys during CLIENT PAUSE WRITE (#8436)
* Fix allowed length for REPLCONF ip-address, needed due to Sentinel\'s support for hostnames (#8517)
* Fix broken protocol in redis-benchmark when used with -a or --dbnum (#8486)
* XADD counts deleted records too when considering switching to a new listpack (#8390) Bug fixes that are only applicable to previous releases of Redis 6.2:
* Fixes in GEOSEARCH bybox (accuracy and mismatch between width and height) (#8445)
* Fix risk of OOM panic in HRANDFIELD, ZRANDMEMBER commands with huge negative count (#8429)
* Fix duplicate replicas issue in Sentinel, needed due to hostname support (#8481)
* Fix Sentinel configuration rewrite, an improvement of #8271 (#8480) Command behavior changes:
* SRANDMEMBER uses RESP3 array type instead of set type (#8504)
* EXPIRE, EXPIREAT, SETEX, GETEX: Return error when provided expire time overflows (#8287) Other behavior changes:
* Remove ACL subcommand validation if fully added command exists. (#8483) Improvements:
* Optimize sorting in GEORADIUS / GEOSEARCH with COUNT (#8326)
* Optimize HRANDFIELD and ZRANDMEMBER case 4 when ziplist encoded (#8444)
* Optimize in-place replacement of elements in HSET, HINCRBY, LSET (#8493)
* Remove redundant list to store pubsub patterns (#8472)
* Add --insecure option to command line tools (#8416) Info fields and introspection changes:
* Add INFO fields to track progress of BGSAVE, AOFRW, replication (#8414) Modules:
* RM_ZsetRem: Delete key if empty, the bug could leave empty zset keys (#8453)
* RM_HashSet: Add COUNT_ALL flag and set errno (#8446)- includes changes from 6.2 RC3: New commands / args:
* Add HRANDFIELD and ZRANDMEMBER commands (#8297)
* Add FAILOVER command (#8315)
* Add GETEX, GETDEL commands (#8327)
* Add PXAT/EXAT arguments to SET command (#8327)
* Add SYNC arg to FLUSHALL and FLUSHDB, and ASYNC/SYNC arg to SCRIPT FLUSH (#8258) Sentinel:
* Add hostname support to Sentinel (#8282)
* Prevent file descriptors from leaking into Sentinel scripts (#8242)
* Fix config file line order dependency and config rewrite sequence (#8271) New configuration options:
* Add set-proc-title config option to disable changes to the process title (#3623)
* Add proc-title-template option to control what\'s shown in the process title (#8397)
* Add lazyfree-lazy-user-flush config option to control FLUSHALL, FLUSHDB and SCRIPT FLUSH (#8258) Bug fixes:
* AOF: recover from last write error by turning on/off appendonly config (#8030)
* Exit on fsync error when the AOF fsync policy is \'always\' (#8347)
* Avoid assertions (on older kernels) when testing arm64 CoW bug (#8405)
* CONFIG REWRITE should honor umask settings (#8371)
* Fix firstkey,lastkey,step in COMMAND command for some commands (#8367) Special considerations:
* Fix misleading description of the save configuration directive (#8337) Improvements:
* A way to get RDB file via replication without excessive replication buffers (#8303)
* Optimize performance of clusterGenNodesDescription for large clusters (#8182) Info fields and introspection changes:
* SLOWLOG and LATENCY monitor include unblocking time of blocked commands (#7491) Modules:
* Add modules API for streams (#8288)
* Add event for fork child birth and termination (#8289)
* Add RM_BlockedClientMeasureTime
* etc, to track background processing in commandstats (#7491)
* Fix bug in v6.2, wrong value passed to the new unlink callback (#8381)
* Fix bug in v6.2, modules blocked on keys unblock on commands like LPUSH (#8356)- includes changes from 6.2 RC2: New commands / args:
* Add the REV, BYLEX and BYSCORE arguments to ZRANGE, and the ZRANGESTORE command (#7844)
* Add the XAUTOCLAIM command (#7973)
* Add the MINID trimming strategy and the LIMIT argument to XADD and XTRIM (#8169)
* Add the ANY argument to GEOSEARCH and GEORADIUS (#8259)
* Add the CH, NX, XX arguments to GEOADD (#8227)
* Add the COUNT argument to LPOP and RPOP (#8179)
* Add the WRITE argument to CLIENT PAUSE for pausing write commands exclusively (#8170)
* Change the proto-ver argument of HELLO to optional (#7377)
* Add the CLIENT TRACKINGINFO subcommand (#7309) Command behavior changes:
* CLIENT TRACKING yields an error when given overlapping BCAST prefixes (#8176)
* SWAPDB invalidates WATCHed keys (#8239)
* SORT command behaves differently when used on a writable replica (#8283) Other behavior changes:
* Avoid propagating MULTI/EXEC for read-only transactions (#8216)
* Remove the read-only flag from TIME, ECHO, ROLE, LASTSAVE (#8216)
* Fix the command flags of PFDEBUG (#8222)
* Tracking clients will no longer receive unnecessary key invalidation messages after FLUSHDB (#8039)
* Sentinel: Fix missing updates to the config file after SENTINEL SET command (#8229) Bug fixes with compatibility implications (bugs introduced in Redis 6.0):
* Fix RDB CRC64 checksum on big-endian systems (#8270) If you\'re using big-endian please consider the compatibility implications with RESTORE, replication and persistence.
* Fix wrong order of key/value in Lua\'s map response (#8266) If your scripts use redis.setresp() or return a map (new in Redis 6.0), please consider the implications. Bug fixes that are only applicable to previous releases of Redis 6.2:
* Resolve rare assertions in active defragmentation while loading (#8284, #8281) Bug fixes:
* Fix the selection of a random element from large hash tables (#8133)
* Fix an issue where a forked process deletes the parent\'s pidfile (#8231)
* Fix crashes when enabling io-threads-do-reads (#8230)
* Fix a crash in redis-cli after executing cluster backup (#8267)
* Fix redis-benchmark to use an IP address for the first cluster node (#8154)
* Fix saving of strings larger than 2GB into RDB files (#8306) Additional improvements:
* Improve replication handshake time (#8214)
* Release client tracking table memory asynchronously in cases where the DB is also freed asynchronously (#8039)
* Avoid wasteful transient memory allocation in certain cases (#8286, #5954)
* Handle binary string values by the \'requirepass\' and \'masterauth\' configs (#8200) Platform and deployment-related changes:
* Install redis-check-rdb and redis-check-aof as symlinks to redis-server (#5745)
* Add a check for an ARM64 Linux kernel bug (#8224) Due to the potential severity of this issue, Redis will refuse to run on affected platforms by default. Info fields and introspection changes:
* Add the errorstats section to the INFO command (#8217)
* Add the failed_calls and rejected_calls fields INFO\'s commandstats section (#8217)
* Report child copy-on-write metrics continuously (#8264) Module API changes:
* Add the RedisModule_SendChildCOWInfo API (#8264)
* Add the may-replicate command flag (#8170)- includes changes from 6.2 RC1: New commands / args:
* Add SMISMEMBER command that checks multiple members (#7615)
* Add ZMSCORE command that returns an array of scores (#7593)
* Add LMOVE and BLMOVE commands that pop and push arbitrarily (#6929)
* Add RESET command that resets client connection state (#7982)
* Add COPY command that copies keys (#7953)
* Add ZDIFF and ZDIFFSTORE commands (#7961)
* Add ZINTER and ZUNION commands (#7794)
* Add GEOSEARCH/GEOSEARCHSTORE commands for bounding box spatial queries (#8094)
* Add GET parameter to SET command, for more powerful GETSET (#7852)
* Add exclusive range query to XPENDING (#8130)
* Add exclusive range query to X[REV]RANGE (#8072)
* Add GT and LT options to ZADD for conditional score updates (#7818)
* Add CLIENT INFO and CLIENT LIST for specific ids (#8113)
* Add IDLE argument to XPENDING command (#7972)
* Add local address to CLIENT LIST, and a CLIENT KILL filter. (#7913)
* Add NOMKSTREAM option to XADD command (#7910)
* Add command introspection to Sentinel (#7940)
* Add SENTINEL MYID subcommand (#7858) New features:
* Dump payload sanitization: prevent corrupt payload causing crashes (#7807) Has flags to enable full O(N) validation (disabled by default).
* ACL patterns for Pub/Sub channels (#7993)
* Support ACL for Sentinel mode (#7888)
* Support getting configuration from both stdin and file at the same time (#7893) Lets you avoid storing secrets on the disk. New features in CLI tools:
* redis-cli RESP3 push support (#7609)
* redis-cli cluster import support source and target that require auth (#7994)
* redis-cli URIs able to provide user name in addition to password (#8048)
* redis-cli/redis-benchmark allow specifying the prefered ciphers/ciphersuites (#8005)
* redis-cli add -e option to exit with code when command execution fails (#8136) Command behavior changes:
* EXISTS should not alter LRU (#8016) In Redis 5.0 and 6.0 it would have touched the LRU/LFU of the key.
* OBJECT should not reveal logically expired keys (#8016) Will now behave the same TYPE or any other non-DEBUG command.
* Improve db id range check for SELECT and MOVE (#8085) Changes the error message text on a wrong db index.
* Modify AUTH / HELLO error message (#7648) Changes the error message text when the user isn\'t found or is disabled.
* BITOPS length limited to proto_max_bulk_len rather than 512MB (#8096) The limit is now configurable like in SETRANGE, and APPEND.
* GEORADIUS[BYMEMBER] can fail with -OOM if Redis is over the memory limit (#8107) Other behavior changes:
* Optionally (default) fail to start if requested bind address is not available (#7936) If you rely on Redis starting successfully even if one of the bind addresses is not available, you\'ll need to tune the new config.
* Limit the main db dictionaries expansion to prevent key eviction (#7954) In the past big dictionary rehashing could result in massive data eviction. Now this rehashing is delayed (up to a limit), which can result in performance loss due to hash collisions.
* CONFIG REWRITE is atomic and safer, but requires write access to the config file\'s folder (#7824, #8051) This change was already present in 6.0.9, but was missing from the release notes.
* A new incremental eviction mechanism that reduces latency on eviction spikes (#7653) In pathological cases this can cause memory to grow uncontrolled and may require specific tuning.
* Not resetting \"save\" config when Redis is started with command line arguments. (#7092) In case you provide command line arguments without \"save\" and count on it being disabled, Now the defaults \"save\" config will kick in.
* Update memory metrics for INFO during loading (#7690)
* When \"supervised\" config is enabled, it takes precedence over \"daemonize\". (#8036)
* Assertion and panic, print crash log without generating SIGSEGV (#7585)
* Added crash log report on SIGABRT, instead of silently exiting (#8004)
* Disable THP (Transparent Huge Pages) if enabled (#7381) If you deliberately enabled it, you\'ll need to config Redis to keep it. Bug fixes:
* Handle output buffer limits for module blocked clients (#8141) Could result in a module sending reply to a blocked client to go beyond the limit.
* Fix setproctitle related crashes. (#8150, #8088) Caused various crashes on startup, mainly on Apple M1 chips or under instrumentation.
* A module doing RM_Call could cause replicas to get nested MULTI (#8097).
* Backup/restore cluster mode keys to slots map for repl-diskless-load=swapdb (#8108) In cluster mode with repl-diskless-load, when loading failed, slot map wouldn\'t have been restored.
* Fix oom-score-adj-values range, and bug when used in config file (#8046) Enabling setting this in the config file in a line after enabling it, would have been buggy.
* Reset average ttl when empty databases (#8106) Just causing misleading metric in INFO
* Disable rehash when Redis has child process (#8007) This could have caused excessive CoW during BGSAVE, replication or AOFRW.
* Further improved ACL algorithm for picking categories (#7966) Output of ACL GETUSER is now more similar to the one provided by ACL SETUSER.
* Fix bug with module GIL being released prematurely (#8061) Could in theory (and rarely) cause multi-threaded modules to corrupt memory.
* Fix cluster redirect for module command with no firstkey. (#7539)
* Reduce effect of client tracking causing feedback loop in key eviction (#8100)
* Kill disk-based fork child when all replicas drop and \'save\' is not enabled (#7819)
* Rewritten commands (modified for propagation) are logged as their original command (#8006)
* Fix cluster access to unaligned memory (SIGBUS on old ARM) #7958
* If diskless repl child is killed, make sure to reap the child pid (#7742)
* Broadcast a PONG message when slot\'s migration is over, may reduce MOVED responses (#7571) Other improvements:
* TLS Support in redis-benchmark (#7959)
* Accelerate diskless master connections, and general re-connections (#6271)
* Run active defrag while blocked / loading (#7726)
* Performance and memory reporting improvement - sds take control of its internal fragmentation (#7875)
* Speedup cluster failover. (#7948) Platform / toolchain support related improvements:
* Optionally (not by default) use H/W Monotonic clock for faster time sampling (#7644)
* Remove the requirements for C11 and _Atomic supporting compiler (#7707) This would allow to more easily build and use Redis on older systems and compilers again.
* Fix crash log registers output on ARM. (#8020)
* Raspberry build fix. (#8095)
* Setting process title support for Haiku. (#8060)
* DragonFlyBSD RSS memory sampling support. (#8023) New configuration options:
* Enable configuring OpenSSL using the standard openssl.cnf (#8143)
* oom-score-adj-values config can now take absolute values (besides relative ones) (#8046)
* TLS: Add different client cert support. (#8076)
* Note that a few other changes listed above added their config options. Info fields and introspection changes:
* Add INFO fields to track diskless and disk-based replication progress (#7981)
* Add INFO field for main thread cpu time, and scrape system time. (#8132)
* Add total_forks to INFO STATS (#8155)
* Add maxclients and cluster_connections to INFO CLIENTS (#7979)
* Add tracking bcast flag and client redirection in client list (#7995)
* Fixed INFO client_recent_max_input_buffer includes argv array (#8065, see #7874)
* Note that a few other changes listed above added their info fields. Module API changes:
* Add CTX_FLAGS_DENY_BLOCKING as a unified the way to know if blocking is allowed (#8025)
* Add data type callbacks for lazy free effort, and unlink (#7912)
* Add data type callback for COPY command (#8112)
* Add callbacks for defrag support. (#8149)
* Add module event for repl-diskless-load swapdb (#8153) Module related fixes:
* Moved RMAPI_FUNC_SUPPORTED so that it\'s usable (#8037)
* Improve timer accuracy (#7987)
* Allow \'\\0\' inside of result of RM_CreateStringPrintf (#6260)
* Tue Mar 02 2021 Илья Индиго - Added parameter -p to all install command in spec-file.- Changed file redis.tmpfiles.d file, replaced from /var/run to /run.
* Tue Mar 02 2021 Andreas Stieger - redis 6.0.12:
* Fix compilation error on non-glibc systems if jemalloc is not used
* Wed Feb 24 2021 Andreas Stieger - redis 6.0.11:
* CVE-2021-21309: Avoid 32-bit overflows when proto-max-bulk-len is set high (boo#1182657)
* Fix handling of threaded IO and CLIENT PAUSE (failover), could lead to data loss or a crash
* Fix the selection of a random element from large hash tables
* Fix broken protocol in client tracking tracking-redir-broken message
* XINFO able to access expired keys on a replica
* Fix broken protocol in redis-benchmark when used with -a or - -dbnum
* Avoid assertions (on older kernels) when testing arm64 CoW bug
* CONFIG REWRITE should honor umask settings
* Fix firstkey,lastkey,step in COMMAND command for some commands
* RM_ZsetRem: Delete key if empty, the bug could leave empty zset keys
* Wed Feb 24 2021 Jan Zerebecki - Switch systemd type of the sentinel service from notify to simple. This can be reverted when updating to 6.2 which fixes https://github.com/redis/redis/issues/7284 .
* Fri Feb 12 2021 Jan Zerebecki - Enable TLS support and add BuildRequires libopenssl-devel (bsc#1181830)- Make tests run by adding BuildRequires tcl and procps
* Tue Jan 12 2021 Michael Ströder - HTTPS download link for source- redis 6.0.10: Command behavior changes:
* SWAPDB invalidates WATCHed keys (#8239)
* SORT command behaves differently when used on a writable replica (#8283)
* EXISTS should not alter LRU (#8016) In Redis 5.0 and 6.0 it would have touched the LRU/LFU of the key.
* OBJECT should not reveal logically expired keys (#8016) Will now behave the same TYPE or any other non-DEBUG command.
* GEORADIUS[BYMEMBER] can fail with -OOM if Redis is over the memory limit (#8107) Other behavior changes:
* Sentinel: Fix missing updates to the config file after SENTINEL SET command (#8229)
* CONFIG REWRITE is atomic and safer, but requires write access to the config file\'s folder (#7824, #8051) This change was already present in 6.0.9, but was missing from the release notes. Bug fixes with compatibility implications (bugs introduced in Redis 6.0):
* Fix RDB CRC64 checksum on big-endian systems (#8270) If you\'re using big-endian please consider the compatibility implications with RESTORE, replication and persistence.
* Fix wrong order of key/value in Lua\'s map response (#8266) If your scripts use redis.setresp() or return a map (new in Redis 6.0), please consider the implications. Bug fixes:
* Fix an issue where a forked process deletes the parent\'s pidfile (#8231)
* Fix crashes when enabling io-threads-do-reads (#8230)
* Fix a crash in redis-cli after executing cluster backup (#8267)
* Handle output buffer limits for module blocked clients (#8141) Could result in a module sending reply to a blocked client to go beyond the limit.
* Fix setproctitle related crashes. (#8150, #8088) Caused various crashes on startup, mainly on Apple M1 chips or under instrumentation.
* Backup/restore cluster mode keys to slots map for repl-diskless-load=swapdb (#8108) In cluster mode with repl-diskless-load, when loading failed, slot map wouldn\'t have been restored.
* Fix oom-score-adj-values range, and bug when used in config file (#8046) Enabling setting this in the config file in a line after enabling it, would have been buggy.
* Reset average ttl when empty databases (#8106) Just causing misleading metric in INFO
* Disable rehash when Redis has child process (#8007) This could have caused excessive CoW during BGSAVE, replication or AOFRW.
* Further improved ACL algorithm for picking categories (#7966) Output of ACL GETUSER is now more similar to the one provided by ACL SETUSER.
* Fix bug with module GIL being released prematurely (#8061) Could in theory (and rarely) cause multi-threaded modules to corrupt memory.
* Reduce effect of client tracking causing feedback loop in key eviction (#8100)
* Fix cluster access to unaligned memory (SIGBUS on old ARM) (#7958)
* Fix saving of strings larger than 2GB into RDB files (#8306) Additional improvements:
* Avoid wasteful transient memory allocation in certain cases (#8286, #5954) Platform / toolchain support related improvements:
* Fix crash log registers output on ARM. (#8020)
* Add a check for an ARM64 Linux kernel bug (#8224) Due to the potential severity of this issue, Redis will print log warning on startup.
* Raspberry build fix. (#8095) New configuration options:
* oom-score-adj-values config can now take absolute values (besides relative ones) (#8046) Module related fixes:
* Moved RMAPI_FUNC_SUPPORTED so that it\'s usable (#8037)
* Improve timer accuracy (#7987)
* Allow \'\\0\' inside of result of RM_CreateStringPrintf (#6260)
 
ICM