luxolus
/
open-nomad
2
0
Fork 0
Code Issues 1 Pull Requests Packages Releases Wiki Activity

golang security update 1.17.5

This commit is contained in:
Tim Gross 2021-12-10 10:47:50 -05:00
parent a851a441b0
commit 46e1d29298
5 changed files with 10 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
.changelog/11662.txt Normal file
View File

@ -0,0 +1,3 @@
```release-note:security
Updated to Go 1.17.5. Go 1.17.3 contained 2 CVEs. [CVE-2021-44717](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44717) could allow a task on a Unix system with exhausted file handles to misdirect I/O. [CVE-2021-44716](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44716) could create unbounded memory growth in HTTP2 servers. Nomad servers do not use HTTP2.
```

8
.circleci/config.yml
View File

@ -512,7 +512,7 @@ executors:
go: go:
working_directory: /go/src/github.com/hashicorp/nomad working_directory: /go/src/github.com/hashicorp/nomad
docker: docker:
- image: docker.mirror.hashicorp.services/golang:1.17.3 - image: docker.mirror.hashicorp.services/golang:1.17.5
environment: environment:
<<: *common_envs <<: *common_envs
GOPATH: /go GOPATH: /go
@ -524,7 +524,7 @@ executors:
environment: &machine_env environment: &machine_env
<<: *common_envs <<: *common_envs
GOPATH: /home/circleci/go GOPATH: /home/circleci/go
GOLANG_VERSION: 1.17.3 GOLANG_VERSION: 1.17.5
# uses a more recent image with unattended upgrades disabled properly # uses a more recent image with unattended upgrades disabled properly
# but seems to break docker builds # but seems to break docker builds
@ -541,7 +541,7 @@ executors:
environment: environment:
<<: *common_envs <<: *common_envs
GOPATH: /Users/distiller/go GOPATH: /Users/distiller/go
GOLANG_VERSION: 1.17.3 GOLANG_VERSION: 1.17.5
go-windows: go-windows:
machine: machine:
@ -553,7 +553,7 @@ executors:
GOPATH: c:\gopath GOPATH: c:\gopath
GOBIN: c:\gopath\bin GOBIN: c:\gopath\bin
GOTESTSUM_PATH: c:\tmp\test-reports GOTESTSUM_PATH: c:\tmp\test-reports
GOLANG_VERSION: 1.17.3 GOLANG_VERSION: 1.17.5
GOTESTSUM_VERSION: 0.4.2 GOTESTSUM_VERSION: 0.4.2
VAULT_VERSION: 1.4.1 VAULT_VERSION: 1.4.1

2
contributing/README.md
View File

@ -30,7 +30,7 @@ A development environment is supplied via Vagrant to make getting started easier
Developing without Vagrant Developing without Vagrant
--- ---
1. Install [Go 1.17.3+](https://golang.org/) *(Note: `gcc-go` is not supported)* 1. Install [Go 1.17.5+](https://golang.org/) *(Note: `gcc-go` is not supported)*
1. Clone this repo 1. Clone this repo
```sh ```sh
$ git clone https://github.com/hashicorp/nomad.git $ git clone https://github.com/hashicorp/nomad.git

2
scripts/release/mac-remote-build
View File

@ -56,7 +56,7 @@ REPO_PATH="${TMP_WORKSPACE}/gopath/src/github.com/hashicorp/nomad"
mkdir -p "${TMP_WORKSPACE}/tmp" mkdir -p "${TMP_WORKSPACE}/tmp"
install_go() { install_go() {
local go_version="1.17.3" local go_version="1.17.5"
local download= local download=
download="https://storage.googleapis.com/golang/go${go_version}.darwin-amd64.tar.gz" download="https://storage.googleapis.com/golang/go${go_version}.darwin-amd64.tar.gz"

2
scripts/vagrant-linux-priv-go.sh
View File

@ -3,7 +3,7 @@
set -o errexit set -o errexit
function install_go() { function install_go() {
local go_version="1.17.3" local go_version="1.17.5"
local download="https://storage.googleapis.com/golang/go${go_version}.linux-amd64.tar.gz" local download="https://storage.googleapis.com/golang/go${go_version}.linux-amd64.tar.gz"
if go version 2>&1 | grep -q "${go_version}"; then if go version 2>&1 | grep -q "${go_version}"; then