Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
27.1.2
->27.2
Release Notes
erlang/otp (erlang)
v27.2
Compare Source
v27.1.3
: OTP 27.1.3Compare Source
Check out the git tag OTP-27.1.3, and build a full OTP system including
documentation. Apply one or more applications from this build as patches to your
installation using the 'otp_patch_apply' tool. For information on install
requirements, see descriptions for each application version below.
common_test-1.27.4
The common_test-1.27.4 application can be applied independently of other
applications on a full OTP 27 installation.
Fixed Bugs and Malfunctions
With this change, cth_surefire hook module handles group path reduction for a
skipped group. This fixes a bug manifesting with improper group path for a
group executed after a group which was skipped.
Own Id: OTP-19365
Related Id(s): ERIERL-1157, PR-9080
Improvements and New Features
With this change, prefix option can be specified in cth_conn_log option list.
Option allows to specify how much of additional information is added in raw
log output.
Own Id: OTP-19293
Related Id(s): ERIERL-1139, PR-8924, PR-8931
compiler-8.5.3
The compiler-8.5.3 application can be applied independently of other
applications on a full OTP 27 installation.
Fixed Bugs and Malfunctions
In rare circumstances, the destructive tuple update optimization could be
applied when it was unsafe.
Own Id: OTP-19340
Related Id(s): GH-9014, PR-9024
In rare circumstances involving appending to multiple binaries, the compile
could emit unsafe code that would crash the runtime system.
Own Id: OTP-19374
Related Id(s): GH-9100, PR-9111
erts-15.1.3
The erts-15.1.3 application can be applied independently of other applications
on a full OTP 27 installation.
Fixed Bugs and Malfunctions
gen_udp:send on domain local can leak inet_reply messages.
Own Id: OTP-19332
Related Id(s): #8989
net:getifaddrs does not properly report the running flag on windows.
Own Id: OTP-19366
Related Id(s): ERIERL-1134, OTP-19061
kernel-10.1.2
Note! The kernel-10.1.2 application cannot be applied independently of other
applications on an arbitrary OTP 27 installation.
Fixed Bugs and Malfunctions
On windows the socket:recv could return with success ({ok, Data}) even though
not all data had been read.
Own Id: OTP-19328
gen_udp:send on domain local can leak inet_reply messages.
Own Id: OTP-19332
Related Id(s): #8989
Failure to create an UDP IPv6 socket when inet_backend = socket with certain
IPv6 socket options.
Own Id: OTP-19357
net:getifaddrs does not properly report the running flag on windows.
Own Id: OTP-19366
Related Id(s): ERIERL-1134, OTP-19061
public_key-1.16.4
The public_key-1.16.4 application can be applied independently of other
applications on a full OTP 27 installation.
Fixed Bugs and Malfunctions
If both
ext-key-usage
andkey-usage
are defined for a certificate itshould be checked that these usages are consistent with each other. This will
have the affect that such certificates where the
ext-key-usages
is marked ascritical and the usages is consistent with the
key-use
it can be consideredvalid without mandatory application specific checks for the
ext-key-useage
extension.
Own Id: OTP-19240
Related Id(s): PR-8840, OTP-19532
Handle decoding of EDDSA key properly, when decoding a PEM file that contains
only the public EDDSA key.
Own Id: OTP-19350
Related Id(s): GH-9009, PR-9053
ssh-5.2.4
The ssh-5.2.4 application can be applied independently of other applications on
a full OTP 27 installation.
Fixed Bugs and Malfunctions
With this change, ssh connection does not crash upon receiving exit-signal
message for an already terminated channel.
Own Id: OTP-19326
Related Id(s): GH-8929, PR-8995
ssl-11.2.5
Note! The ssl-11.2.5 application cannot be applied independently of other
applications on an arbitrary OTP 27 installation.
Fixed Bugs and Malfunctions
Avoid generating an internal alert for case that should have been an orderly
shutdown by the supervisor.
Own Id: OTP-19311
Related Id(s): PR-8980
If present, extended key-usage TLS (SSL) role check (
pk-clientAuth
,pk-serverAuth
) should always be performed for peer-cert. An intermediate CAcert may relax the requirement if
AnyExtendedKeyUsage
purpose is present.In OTP-25.3.2.8, OTP-26.2 and OTP-27.0 these requirements became too relaxed.
There where two problems, firstly the peer cert extension was only checked if
it was marked critical, and secondly the CA cert check did not assert the
relaxed
AnyExtendedKeyUsage
purpose.This could result in that certificates might be misused for purposes not
intended by the certificate authority.
Thanks to Bryan Paxton for reporting the issue.
Own Id: OTP-19352
Related Id(s): PR-9130, CVE-2024-53846, OTP-19240
Improvements and New Features
Back port certificate_authorities option for TLS-1.3 servers to pre TLS-1.3
servers to enable them to disable the sending of certificate authorities in
their certificate request. This will have same affect as the the TLS-1.3
server option although it is handled by a different mechanism in these
versions, where the functionality is described to be more of a guidance,
although some pre TLS clients have proven to make it mandatory as in TLS-1.3
extension handling.
Own Id: OTP-19325
Related Id(s): ERIERL-1147, PR-9001
Thanks to
Frej Drejhammar, zmstone
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.