Feature Freeze Exception: Update golang-defaults to 1.18
Bug #1964270 reported by
William Wilson
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
golang-defaults (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
This change is necessary because we always update to the latest Go version before each release.
Go's source does not provide a changelog, but the changes in 1.18 can be seen at https:/
Go 1.18 is not yet released, though it was originally due to be released in February. I have already set up no change rebuild PPAs to rebuild against Go 1.18, and initial attempts with the beta have gone very smoothly. I will update this bug with more information about those rebuilds when I have been able to complete them against a released version of Go 1.18.
To post a comment you must log in.
Go 1.18 has released and test rebuilds have been completed.
Go 1.18 has made the decision to deny SHA1 certificates by default. Per the release notes: "crypto/x509 will now reject certificates signed with the SHA-1 hash function. This doesn't apply to self-signed root certificates. Practical attacks against SHA-1 have been demonstrated since 2017 and publicly trusted Certificate Authorities have not issued SHA-1 certificates since 2015."
The packages below will be marked as having the "SHA1 issue" if this is the only reason for an FTBFS.
The following packages are FTBFS with Go 1.18 but not Go 1.17:
containerd (patch created on bug 1965157) github- aws-aws- sdk-go (SHA1 issue: https:/ /github. com/aws/ aws-sdk- go/issues/ 4316) github- cockroachdb- apd (requires a newer version of golang- golang- x-tools) github- fullsailor- pkcs7 (SHA1 issue: https:/ /github. com/fullsailor/ pkcs7/issues/ 51) github- google- wire github- klauspost- compress (requires a newer version of golang- golang- x-tools) github- kurin-blazer (upstream PR created: https:/ /github. com/kurin/ blazer/ pull/83) github- micromdm- scep (SHA1 issue: https:/ /github. com/micromdm/ scep/issues/ 187) github- prometheus- common (SHA1 issue: https:/ /github. com/prometheus/ common/ issues/ 361) github- prometheus- exporter- toolkit (SHA1 issue: https:/ /github. com/prometheus/ exporter- toolkit/ issues/ 83) github- rican7- retry (package is out of date in debian/ubuntu and needs repackaging) github- rogpeppe- go-internal (has 1.18 upstream updates so a new upstream version should be packaged) github- smartystreets- assertions (requires a newer version of golang- golang- x-tools) github- streadway- amqp (SHA1 issue: https:/ /github. com/streadway/ amqp/issues/ 523) github- traefik- yaegi (There is a new upstream version that also seems to have broken tests) github- ugorji- go-codec (has new upstream version that needs to be packaged. Seems to resolve FTBFS) github- xanzy-go- gitlab (has new upstream version that needs to be packaged. Seems to resolve FTBFS) golang- x-tools (needs investigation) gonum-v1- gonum (needs investigation) honnef- go-tools (has new upstream version that needs to be packaged) /github. com/marten- seemann/ qtls-go1- 18) v2ray-plugin (requires packaging of https:/ /github. com/marten- seemann/ qtls-go1- 18) go-internal package)
docker-registry (needs investigation)
golang-
golang-
golang-
golang-
golang-
golang-
golang-
golang-
golang-
golang-
golang-
golang-
golang-
golang-
golang-
golang-
golang-
golang-
golang-
golang-v2ray-core (requires packaging of https:/
prometheus (SHA1 issue)
shadowsocks-
shfmt (requires new upstream version of the rogpeppe-
telegraf (depends on prometheus which is failing due to SHA1 issue)