| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| 01-add-jtoaster-to-zooinspector.patch | diff --git a/src/contrib/zooinspector/README.jtoaster b/src/contrib/zooinspector/README.jtoaster new file mode 100644 index 0000000..fbe128e |
no | ||||
| 02-patch-build-system.patch | Patches to upstream build system to enable the relevant bits of the test suite for execution during build. | James Page <james.page@ubuntu.com>, Thomas Koch <thomas@koch.ro> | not-needed | |||
| 03-disable-cygwin-detection.patch | Disable detection of cygwin under Debian installs as this is not compatible with the way the environment is managed through alternatives. . TODO - review alongside use of alternatives for managing configuration. |
Akira Kitada <akitada@gmail.com> | not-needed | |||
| 05-ZOOKEEPER-770.patch | Slow add_auth calls with multi-threaded client | no | https://issues.apache.org/jira/browse/ZOOKEEPER-770 | |||
| 06-ftbfs-gcc-4.7.patch | Fix a build failure with GCC 4.7=================================================================== | Matthias Klose <doko@debian.org> | yes | upstream | ||
| 07-remove-non-reproducible-manifest-entries.patch | Remove the Built-At, Built-By and Built-On entries in the manifest of the jar files to improve the build reproducibility | Emmanuel Bourg <ebourg@apache.org> | no | |||
| 08-reproducible-javadoc.patch | Remove the timestamp and set the locale when generating the javadoc to make it reproducible | Emmanuel Bourg <ebourg@apache.org> | no | |||
| 10-cppunit-pkg-config.patch | diff --git a/src/c/configure.ac b/src/c/configure.ac index be00af9..8193511 100644 |
no | ||||
| 11-disable-minikdc-tests.patch | =================================================================== | no | ||||
| 12-add-yetus-annotations.patch | Adds the Yetus annotations (https://yetus.apache.org) | Emmanuel Bourg <ebourg@apache.org> | not-needed | |||
| 13-disable-netty-connection-factory.patch | Disables the optional Netty based connection factory until it's updated to work with Netty 4+ | Emmanuel Bourg <ebourg@apache.org> | not-needed | |||
| 14-ftbfs-with-gcc-8.patch | Address FTBFS with gcc-8 due to format-overflow | tony mancill <tmancill@debian.org> | no | |||
| 15-javadoc-doclet.patch | 15 javadoc doclet The missing doclet class causes a javadoc error thus no javadoc will be built at all. |
Markus Koschany <apo@debian.org> | not-needed | 2018-08-23 | ||
| 16-ZOOKEEPER-1392.patch | Prevent ACL disclosure when unauthorized (CVE-2019-0201) | yes | upstream | https://git-wip-us.apache.org/repos/asf?p=zookeeper.git;a=commitdiff;h=5ff19e3672987bdde2843a3f031e2bf0010e35f1 | ||
| 17-gcc9-ftbfs-925869.patch | Address FTBFS with GCC 9 | tony mancill <tmancill@debian.org> | no | |||
| 18-java17-compatibility.patch | Fixes the compatibility with OpenJDK 17 | Emmanuel Bourg <ebourg@apache.org> | not-needed | |||
| CVE-2023-44981.patch | [PATCH] ZOOKEEPER-4753: zookeeper-server: Improvement: Explicit handling of DIGEST-MD5 vs GSSAPI in quorum auth Before this, the SASL-based quorum authorizer did not explicitly distinguish between the DIGEST-MD5 and GSSAPI mechanisms: it was simply relying on NameCallback and PasswordCallback for authentication with the former and examining Kerberos principals in AuthorizeCallback for the latter. It turns out that some SASL/DIGEST-MD5 configurations cause authentication and authorization IDs not to match the expected format, and the DIGEST-MD5-based portions of the quorum test suite to fail with obscure errors. (They can be traced to failures to join the quorum, but only by looking into detailed logs.) This patch uses the login module name to determine whether DIGEST-MD5 or GSSAPI is used, and relaxes the authentication ID check for the former. As a cleanup, it keeps the password-based credential map empty when Kerberos principals are expected. It finally adapts a test, and adds a new one, ensuring weirdly-shaped credentials only cause authentication failures in the GSSAPI case. |
Damien Diederen <ddiederen@apache.org> | no | 2023-09-24 |