chore(deps): Bump the all group across 1 directory with 36 updates

[dependabot]

Bumps the all group with 36 updates in the /java directory:

Package	From	To
org.apache.logging.log4j:log4j-api	2.25.1	2.25.2
org.apache.logging.log4j:log4j-slf4j2-impl	2.25.1	2.25.2
org.apache.logging.log4j:log4j-core	2.25.1	2.25.2
com.fasterxml.jackson.core:jackson-databind	2.19.2	2.20.0
com.fasterxml.jackson.core:jackson-core	2.19.2	2.20.0
org.postgresql:postgresql	42.7.7	42.7.8
io.grpc:grpc-netty-shaded	1.74.0	1.75.0
io.grpc:grpc-protobuf	1.74.0	1.75.0
io.grpc:grpc-stub	1.74.0	1.75.0
org.assertj:assertj-core	3.27.4	3.27.6
com.google.code.gson:gson	2.13.1	2.13.2
com.google.guava:guava	33.4.8-jre	33.5.0-jre
software.amazon.awssdk:s3	2.32.19	2.34.0
software.amazon.awssdk:sts	2.32.19	2.34.0
software.amazon.awssdk:apache-client	2.32.19	2.34.0
software.amazon.awssdk:glue	2.32.19	2.34.0
org.eclipse.jetty:jetty-client	12.0.24	12.1.1
org.eclipse.jetty:jetty-util	12.0.24	12.1.1
org.eclipse.jetty:jetty-http	12.0.24	12.1.1
org.apache.maven.plugins:maven-surefire-plugin	3.5.3	3.5.4
org.apache.maven.plugins:maven-javadoc-plugin	3.11.2	3.12.0
org.apache.iceberg:iceberg-core	1.9.2	1.10.0
org.apache.iceberg:iceberg-api	1.9.2	1.10.0
org.apache.iceberg:iceberg-bundled-guava	1.9.2	1.10.0
org.apache.iceberg:iceberg-hive-metastore	1.9.2	1.10.0
org.apache.iceberg:iceberg-aws	1.9.2	1.10.0
org.apache.iceberg:iceberg-gcp	1.9.2	1.10.0
org.apache.hadoop:hadoop-common	3.4.1	3.4.2
org.apache.hadoop:hadoop-mapreduce-client-core	3.4.1	3.4.2
org.apache.hadoop:hadoop-mapreduce-client-common	3.4.1	3.4.2
org.apache.hadoop:hadoop-mapreduce-client-jobclient	3.4.1	3.4.2
org.apache.hadoop:hadoop-aws	3.4.1	3.4.2
org.apache.iceberg:iceberg-snowflake	1.9.2	1.10.0
com.amazon.redshift:redshift-jdbc42	2.1.0.33	2.1.0.34
net.snowflake:snowflake-jdbc	3.23.0	3.26.1
com.zaxxer:HikariCP	6.3.2	6.3.3

Updates org.apache.logging.log4j:log4j-api from 2.25.1 to 2.25.2

Updates org.apache.logging.log4j:log4j-slf4j2-impl from 2.25.1 to 2.25.2

Updates org.apache.logging.log4j:log4j-core from 2.25.1 to 2.25.2

Updates org.apache.logging.log4j:log4j-slf4j2-impl from 2.25.1 to 2.25.2

Updates org.apache.logging.log4j:log4j-core from 2.25.1 to 2.25.2

Updates com.fasterxml.jackson.core:jackson-databind from 2.19.2 to 2.20.0

Commits

• See full diff in compare view

Updates com.fasterxml.jackson.core:jackson-core from 2.19.2 to 2.20.0

Commits

• ea0830a [maven-release-plugin] prepare release jackson-core-2.20.0
• e16733a Prep for 2.20.0
• 93deb38 Drop RC from version pre-2.20.0 release
• f0bcc3c Handle deprecation warnings
• 6e70d08 Fix #1462: deprecate JsonFactory.createParser(URL) (#1464)
• 588cc76 Post release version bump
• 018f9e1 [maven-release-plugin] prepare for next development iteration
• 360e498 [maven-release-plugin] prepare release jackson-core-2.20.0-rc1
• 538ac44 Prep for 2.20.0-rc1
• dfbf47b Merge branch '2.19' into 2.x
• Additional commits viewable in compare view

Updates com.fasterxml.jackson.core:jackson-core from 2.19.2 to 2.20.0

Commits

• ea0830a [maven-release-plugin] prepare release jackson-core-2.20.0
• e16733a Prep for 2.20.0
• 93deb38 Drop RC from version pre-2.20.0 release
• f0bcc3c Handle deprecation warnings
• 6e70d08 Fix #1462: deprecate JsonFactory.createParser(URL) (#1464)
• 588cc76 Post release version bump
• 018f9e1 [maven-release-plugin] prepare for next development iteration
• 360e498 [maven-release-plugin] prepare release jackson-core-2.20.0-rc1
• 538ac44 Prep for 2.20.0-rc1
• dfbf47b Merge branch '2.19' into 2.x
• Additional commits viewable in compare view

Updates org.postgresql:postgresql from 42.7.7 to 42.7.8

Release notes

Sourced from org.postgresql:postgresql's releases.

v42.7.8

Notable changes:

• Releases are signed with a new PGP key which is generated at GitHub Actions and stored only there @​vlsi (#3701)

Changes

• fix: Update release plugin config to use .set(...) for props and inject nexus secrets via props @​sehrope (#3802)
• update version to 42.7.8 @​davecramer (#3801)
• change logs for version 42.7.8 @​davecramer (#3797)
• Fix getNotifications() documentation @​pdewacht (#3800)
• fix(deps): update dependency om.ongres.scram:scram-client to 3.2 @​jorsol (#3799)
• Add configurable boolean-to-numeric conversion for ResultSet getters @​vwassan (#3796)
• Update CONTRIBUTING.md @​davecramer (#3794)
• perf: remove QUERY_ONESHOT flag when calling getMetaData @​ShenFeng312 (#3783)
• test: add bench for batch insert via unnest with arrays @​lantalex (#3782)
• fix: Change "PST" timezone in TimestampTest to "Pacific Standard Time" @​simon-greatrix (#3774)
• Use BufferedInputStream with FileInputStream @​jgardn3r (#3750)
• Fix #3747: Incorrect class comparison in PGXmlFactoryFactory validation @​eitch (#3748)
• fix: traverse the current dimension to get the correct pos in PgArray#calcRemainingDataLength @​sly461 (#3746)
• test: add channelBinding to SslTest @​vlsi (#3665)
• fix: remove excessive ReentrantLock.lock usages @​vlsi (#3703)
• test: add ossf-scorecard security scanning @​vlsi (#3695)
• fix indentation to let CI pass @​mohitsatr (#3682)
• test: extract pgjdbc/testFixtures to testkit project @​vlsi (#3666)
• fix: make sure getImportedExportedKeys returns columns in consistent order @​vlsi (#3663)
• feat: use PreparedStatement for DatabaseMetaData.getCrossReference, getImportedKeys, getExportedKeys @​vlsi (#3641)
• Add "SELF_REFERENCING_COL_NAME" field to getTables' ResultSetMetaData to fix NullPointerException @​SophiahHo (#3660)

🐛 Bug Fixes

• fix: avoid IllegalStateException: Timer already cancelled when StatementCancelTimerTask.run throws a runtime error @​vlsi (#3778)
• fix: avoid NullPointerException when cancelling a query if cancel key is not known yet @​vlsi (#3780)
• fix: unable to open replication connection to servers < 12 @​vlsi (#3678)

🧰 Maintenance

• chore: fix published project name @​vlsi (#3809)
• chore: update publish to Central Portal task name after bumping nmcp @​vlsi (#3808)
• fix(deps): update com.gradleup.nmcp to 1.1.0 @​vlsi (#3807)
• Revert "fix: Update release plugin config to use .set(...) for props and inject nexus creds via gradle props" @​vlsi (#3803)
• chore: group com.gradleup.nmcp version updates @​vlsi (#3805)
• chore: use bump org.apache.bcel:bcel test dependency in testCompileClasspath as well @​vlsi (#3775)
• Fix typo in PGReplicationStream.java @​atorik (#3758)
• chore: remove JDK versions from the key workflow names @​vlsi (#3759)
• chore: add GitHub Actions workflow for generating release PGP key @​vlsi (#3701)
• chore: replace StandardCharsets with Charsets to simplify code @​vlsi (#3751)
• chore: migrate publish workflow to Central Portal publishing via com.gradleup.nmcp @​vlsi (#3686)
• chore: adjust the default branch name for ossf scorecard scan @​vlsi (#3697)
• chore: add top-level read-only permissions for GitHub Actions when missing @​vlsi (#3696)
• chore: use config:best-practices preset for Renovate @​vlsi (#3687)

... (truncated)

Changelog

Sourced from org.postgresql:postgresql's changelog.

[42.7.8] (2025-09-18)

Added

• feat: Add configurable boolean-to-numeric conversion for ResultSet getters [PR #3796](pgjdbc/pgjdbc#3796)

Changed

• perf: remove QUERY_ONESHOT flag when calling getMetaData [PR #3783](pgjdbc/pgjdbc#3783)
• perf: use BufferedInputStream with FileInputStream [PR #3750](pgjdbc/pgjdbc#3750)
• perf: enable server-prepared statements for DatabaseMetaData

Fixed

• fix: avoid NullPointerException when cancelling a query if cancel key is not known yet
• fix: Change "PST" timezone in TimestampTest to "Pacific Standard Time" [PR #3774](pgjdbc/pgjdbc#3774)
• fix: traverse the current dimension to get the correct pos in PgArray#calcRemainingDataLength [PR #3746](pgjdbc/pgjdbc#3746)
• fix: make sure getImportedExportedKeys returns columns in consistent order
• fix: Add "SELF_REFERENCING_COL_NAME" field to getTables' ResultSetMetaData to fix NullPointerException [PR #3660](pgjdbc/pgjdbc#3660)
• fix: unable to open replication connection to servers < 12
• fix: avoid closing statement caused by driver's internal ResultSet#close()
• fix: return empty metadata for empty catalog names as it was before
• fix: Incorrect class comparison in PGXmlFactoryFactory validation

Commits

• 9a5492d chore: fix published project name
• ca064f8 chore: update publish to Central Portal task name after bumping nmcp
• 3d97bb8 fix: avoid IllegalStateException: Timer already cancelled when StatementCanc...
• faa7dfc test: move BaseTest4 to testkit module
• dbf2847 fix(deps): update com.gradleup.nmcp to 1.1.0
• 9245e26 Revert "fix: Update release plugin config to use .set(...) for props and inje...
• 8e833c3 chore: group com.gradleup.nmcp version updates
• ec5a088 fix: Update release plugin config to use .set(...) for props and inject nexus...
• c03db58 update version to 42.7.8 (#3801)
• 50ff169 change logs for version 42.7.8 (#3797)
• Additional commits viewable in compare view

Updates io.grpc:grpc-netty-shaded from 1.74.0 to 1.75.0

Release notes

Sourced from io.grpc:grpc-netty-shaded's releases.

v1.75.0

Behavior Changes

• binder: Introduce server pre-authorization (#12127). grpc-binder clients authorize servers by checking the UID of the sender of the SETUP_TRANSPORT Binder transaction against some SecurityPolicy. But merely binding to an unauthorized server to learn its UID can enable "keep-alive" and "background activity launch" abuse, even if security policy ultimately causes the grpc connection to fail. Pre-authorization mitigates this kind of abuse by resolving addresses and authorizing a candidate server Application's UID before binding to it. Pre-auth is especially important when the server's address is not fixed in advance but discovered by PackageManager lookup.

Bug Fixes

• core: grpc-timeout should always be positive (#12201) (6dfa03c51). There is a local race between when the deadline is checked before sending the RPC and when the timeout is calculated to put on-the-wire. The code replaced negative timeouts with 0 nanoseconds. gRPC’s PROTOCOL-HTTP2 spec states that timeouts should be positive, so now non-positive values are replaced with 1 nanosecond

• core: Improved DEADLINE_EXCEEDED message for delayed calls (6ff8ecac0). Delayed calls are the first calls on a Channel before name resolution has resolved addresses. Previously you could see confusing errors saying the deadline “will be exceeded in” X time. The message tense was simply wrong, and now will be correct: deadline “was exceeded after” X time.

• xds: PriorityLB now only uses the failOverTimer to start additional priorities, not fail RPCs (c4256add4). You should no longer see “Connection timeout for priority” errors.

Improvements

• netty: Count sent RST_STREAMs against NettyServerBuilder.maxRstFramesPerWindow() limit (#12288). This extends the Rapid Reset tool to also cover MadeYouReset. the reset stream count will cause a 420 "Enhance your calm response" to be sent. This depends on Netty 4.1.124 for a bug fix to actually call the encoder by the frame writer.

• xds: Convert CdsLb to XdsDepManager (297ab05ef). This is part of gRFC A74 to have atomic xDS config updates. This is an internal change, but does change the error description seen in certain cases, especially DEADLINE_EXCEEDED on a brand-new channel.

• census: APIs for stats and tracing (#12050) (919370172). Client channel and server builders with interceptors and factories respectively for stats and tracing.

• stub: simplify BlockingClientCall infinite blocking (#12217) (ba0a7329d). Move deadline computation into overloads with finite timeouts. Blocking calls without timeouts now do not have to read the clock.

• xds: Do RLS fallback policy eagar start (#12211) (42e1829b3). In gRPC-Java, the xDS clusters were lazily subscribed, which meant the fallback target which is returned in the RLS config wasn’t subscribed until a RPC actually falls back to it. The delayed resource subscription process in gRPC Java made it more susceptible to the effects of the INITIAL_RESOURCE_FETCH_TIMEOUT compared to other programming languages. It also had impact beyond the RLS cache expiration case, for example, when the first time the client initialized the channel, we couldn't fallback when the intended target times out, because of the lazy subscription. This change starts the fallback LB policy for the default target at the start of RLS policy instead of only when falling back to the default target, which fixes the above mentioned problems.

• xds: Aggregate cluster fixes (A75) (#12186) (7e982e48a). The earlier implementation of aggregate clusters concatenated the priorities from the underlying clusters into a single list, so that it could use a single LB policy defined at the aggregate cluster layer to choose a priority from that combined list. However, it turns out that aggregate clusters don't actually define the LB policy in the aggregate cluster; instead, the aggregate cluster uses a special cluster-provided LB policy that first chooses the underlying cluster and then delegates to the LB policy of the underlying cluster. This change implements that.

• api: set size correctly for sets and maps in handling Metadata values to be exchanged during a call (#12229) (80217275d)

• xds: xdsClient cache transient error for new watchers (#12291). When a resource update is NACKed, cache the error and update new watchers that get added with that error instead of making them hang.

• xds: Avoid PriorityLb re-enabling timer on duplicate CONNECTING (#12289). If a LB policy gives extraneous updates with state CONNECTING, then it was possible to re-create failOverTimer which would then wait the 10 seconds for the child to finish CONNECTING. We only want to give the child one opportunity after transitioning out of READY/IDLE.

• xds: Use a different log name for XdsClientImpl and ControlPlaneClient (#12287). ControlPlaneClient uses "xds-cp-client" now instead of "xds-client" while logging.

Dependencies Changes

• Upgrade to Netty 4.1.124.Final (#12286). This implicitly disables NettyAdaptiveCumulator (#11284), which can have a performance impact. We delayed upgrading Netty to give time to rework the optimization, but we've gone too long already without upgrading which causes problems for vulnerability tracking.

• bazel: Use jar_jar to avoid xds deps (#12243) (8f09b9689). The //xds and //xds:orca targets now use jar_jar to shade the protobuf generated code. This allows them to use their own private copy of the protos and drop direct Bazel dependencies on cel-spec, grpc, rules_go, com_github_cncf_xds, envoy_api, com_envoyproxy_protoc_gen_validate, and opencensus_proto. This mirrors the shading of protobuf messages done for grpc-xds provided on Maven Central and should simplify dependency management

Documentation

• Clarify requirements for creating a cross-user Channel. (#12181). The @SystemApi runtime visibility requirement isn't really new. It has always been implicit in the required INTERACT_ACROSS_USERS permission, which can only be held by system apps in production. Now deprecated BinderChannelBuilder#bindAsUser has always required SDK_INT >= 30. This change just copies that requirement forward to its replacement APIs in AndroidComponentAddress and the TARGET_ANDROID_USER NameResolver.Args.

• api: Add more Javadoc for NameResolver.Listener2 interface (#12220) (d352540a0)

Thanks to

@​benjaminp @​werkt @​kilink @​vimanikag

Commits

• 3abc0e6 Bump version to 1.75.0
• cbfe6c1 Update README etc to reference 1.75.0
• a0f3520 Revert "Release v1.75.0 (#12294)" (#12295)
• 7ef13f4 Release v1.75.0 (#12294)
• 14fd8ef xds: xdsClient caches transient error for new watchers (v1.75.x backport) (#1...
• 653d076 xds: Avoid PriorityLb re-enabling timer on duplicate CONNECTING (#12289)
• a5c2b1a netty: Count sent RST_STREAMs against limit (1.75.x backport) (#12288)
• 0d3e828 xds: Use a different log name for XdsClientImpl and ControlPlaneClient (1.75....
• d750e9d Upgrade to Netty 4.1.124.Final (v1.75.x backport) (#12286)
• 19c579e Bump versions of dependencies (#12252)
• Additional commits viewable in compare view

Updates io.grpc:grpc-protobuf from 1.74.0 to 1.75.0

Release notes

Sourced from io.grpc:grpc-protobuf's releases.

v1.75.0

Behavior Changes

• binder: Introduce server pre-authorization (#12127). grpc-binder clients authorize servers by checking the UID of the sender of the SETUP_TRANSPORT Binder transaction against some SecurityPolicy. But merely binding to an unauthorized server to learn its UID can enable "keep-alive" and "background activity launch" abuse, even if security policy ultimately causes the grpc connection to fail. Pre-authorization mitigates this kind of abuse by resolving addresses and authorizing a candidate server Application's UID before binding to it. Pre-auth is especially important when the server's address is not fixed in advance but discovered by PackageManager lookup.

Bug Fixes

• core: grpc-timeout should always be positive (#12201) (6dfa03c51). There is a local race between when the deadline is checked before sending the RPC and when the timeout is calculated to put on-the-wire. The code replaced negative timeouts with 0 nanoseconds. gRPC’s PROTOCOL-HTTP2 spec states that timeouts should be positive, so now non-positive values are replaced with 1 nanosecond

• core: Improved DEADLINE_EXCEEDED message for delayed calls (6ff8ecac0). Delayed calls are the first calls on a Channel before name resolution has resolved addresses. Previously you could see confusing errors saying the deadline “will be exceeded in” X time. The message tense was simply wrong, and now will be correct: deadline “was exceeded after” X time.

• xds: PriorityLB now only uses the failOverTimer to start additional priorities, not fail RPCs (c4256add4). You should no longer see “Connection timeout for priority” errors.

Improvements

• netty: Count sent RST_STREAMs against NettyServerBuilder.maxRstFramesPerWindow() limit (#12288). This extends the Rapid Reset tool to also cover MadeYouReset. the reset stream count will cause a 420 "Enhance your calm response" to be sent. This depends on Netty 4.1.124 for a bug fix to actually call the encoder by the frame writer.

• xds: Convert CdsLb to XdsDepManager (297ab05ef). This is part of gRFC A74 to have atomic xDS config updates. This is an internal change, but does change the error description seen in certain cases, especially DEADLINE_EXCEEDED on a brand-new channel.

• census: APIs for stats and tracing (#12050) (919370172). Client channel and server builders with interceptors and factories respectively for stats and tracing.

• stub: simplify BlockingClientCall infinite blocking (#12217) (ba0a7329d). Move deadline computation into overloads with finite timeouts. Blocking calls without timeouts now do not have to read the clock.

• xds: Do RLS fallback policy eagar start (#12211) (42e1829b3). In gRPC-Java, the xDS clusters were lazily subscribed, which meant the fallback target which is returned in the RLS config wasn’t subscribed until a RPC actually falls back to it. The delayed resource subscription process in gRPC Java made it more susceptible to the effects of the INITIAL_RESOURCE_FETCH_TIMEOUT compared to other programming languages. It also had impact beyond the RLS cache expiration case, for example, when the first time the client initialized the channel, we couldn't fallback when the intended target times out, because of the lazy subscription. This change starts the fallback LB policy for the default target at the start of RLS policy instead of only when falling back to the default target, which fixes the above mentioned problems.

• xds: Aggregate cluster fixes (A75) (#12186) (7e982e48a). The earlier implementation of aggregate clusters concatenated the priorities from the underlying clusters into a single list, so that it could use a single LB policy defined at the aggregate cluster layer to choose a priority from that combined list. However, it turns out that aggregate clusters don't actually define the LB policy in the aggregate cluster; instead, the aggregate cluster uses a special cluster-provided LB policy that first chooses the underlying cluster and then delegates to the LB policy of the underlying cluster. This change implements that.

• api: set size correctly for sets and maps in handling Metadata values to be exchanged during a call (#12229) (80217275d)

• xds: xdsClient cache transient error for new watchers (#12291). When a resource update is NACKed, cache the error and update new watchers that get added with that error instead of making them hang.

• xds: Avoid PriorityLb re-enabling timer on duplicate CONNECTING (#12289). If a LB policy gives extraneous updates with state CONNECTING, then it was possible to re-create failOverTimer which would then wait the 10 seconds for the child to finish CONNECTING. We only want to give the child one opportunity after transitioning out of READY/IDLE.

• xds: Use a different log name for XdsClientImpl and ControlPlaneClient (#12287). ControlPlaneClient uses "xds-cp-client" now instead of "xds-client" while logging.

Dependencies Changes

• Upgrade to Netty 4.1.124.Final (#12286). This implicitly disables NettyAdaptiveCumulator (#11284), which can have a performance impact. We delayed upgrading Netty to give time to rework the optimization, but we've gone too long already without upgrading which causes problems for vulnerability tracking.

• bazel: Use jar_jar to avoid xds deps (#12243) (8f09b9689). The //xds and //xds:orca targets now use jar_jar to shade the protobuf generated code. This allows them to use their own private copy of the protos and drop direct Bazel dependencies on cel-spec, grpc, rules_go, com_github_cncf_xds, envoy_api, com_envoyproxy_protoc_gen_validate, and opencensus_proto. This mirrors the shading of protobuf messages done for grpc-xds provided on Maven Central and should simplify dependency management

Documentation

• Clarify requirements for creating a cross-user Channel. (#12181). The @SystemApi runtime visibility requirement isn't really new. It has always been implicit in the required INTERACT_ACROSS_USERS permission, which can only be held by system apps in production. Now deprecated BinderChannelBuilder#bindAsUser has always required SDK_INT >= 30. This change just copies that requirement forward to its replacement APIs in AndroidComponentAddress and the TARGET_ANDROID_USER NameResolver.Args.

• api: Add more Javadoc for NameResolver.Listener2 interface (#12220) (d352540a0)

Thanks to

@​benjaminp @​werkt @​kilink @​vimanikag

Commits

• 3abc0e6 Bump version to 1.75.0
• cbfe6c1 Update README etc to reference 1.75.0
• a0f3520 Revert "Release v1.75.0 (#12294)" (#12295)
• 7ef13f4 Release v1.75.0 (#12294)
• 14fd8ef xds: xdsClient caches transient error for new watchers (v1.75.x backport) (#1...
• 653d076 xds: Avoid PriorityLb re-enabling timer on duplicate CONNECTING (#12289)
• a5c2b1a netty: Count sent RST_STREAMs against limit (1.75.x backport) (#12288)
• 0d3e828 xds: Use a different log name for XdsClientImpl and ControlPlaneClient (1.75....
• d750e9d Upgrade to Netty 4.1.124.Final (v1.75.x backport) (#12286)
• 19c579e Bump versions of dependencies (#12252)
• Additional commits viewable in compare view

Updates io.grpc:grpc-stub from 1.74.0 to 1.75.0

Release notes

Sourced from io.grpc:grpc-stub's releases.

v1.75.0

Behavior Changes

• binder: Introduce server pre-authorization (#12127). grpc-binder clients authorize servers by checking the UID of the sender of the SETUP_TRANSPORT Binder transaction against some SecurityPolicy. But merely binding to an unauthorized server to learn its UID can enable "keep-alive" and "background activity launch" abuse, even if security policy ultimately causes the grpc connection to fail. Pre-authorization mitigates this kind of abuse by resolving addresses and authorizing a candidate server Application's UID before binding to it. Pre-auth is especially important when the server's address is not fixed in advance but discovered by PackageManager lookup.

Bug Fixes

• core: grpc-timeout should always be positive (#12201) (6dfa03c51). There is a local race between when the deadline is checked before sending the RPC and when the timeout is calculated to put on-the-wire. The code replaced negative timeouts with 0 nanoseconds. gRPC’s PROTOCOL-HTTP2 spec states that timeouts should be positive, so now non-positive values are replaced with 1 nanosecond

• core: Improved DEADLINE_EXCEEDED message for delayed calls (6ff8ecac0). Delayed calls are the first calls on a Channel before name resolution has resolved addresses. Previously you could see confusing errors saying the deadline “will be exceeded in” X time. The message tense was simply wrong, and now will be correct: deadline “was exceeded after” X time.

• xds: PriorityLB now only uses the failOverTimer to start additional priorities, not fail RPCs (c4256add4). You should no longer see “Connection timeout for priority” errors.

Improvements

• netty: Count sent RST_STREAMs against NettyServerBuilder.maxRstFramesPerWindow() limit (#12288). This extends the Rapid Reset tool to also cover MadeYouReset. the reset stream count will cause a 420 "Enhance your calm response" to be sent. This depends on Netty 4.1.124 for a bug fix to actually call the encoder by the frame writer.

• xds: Convert CdsLb to XdsDepManager (297ab05ef). This is part of gRFC A74 to have atomic xDS config updates. This is an internal change, but does change the error description seen in certain cases, especially DEADLINE_EXCEEDED on a brand-new channel.

• census: APIs for stats and tracing (#12050) (919370172). Client channel and server builders with interceptors and factories respectively for stats and tracing.

• stub: simplify BlockingClientCall infinite blocking (#12217) (ba0a7329d). Move deadline computation into overloads with finite timeouts. Blocking calls without timeouts now do not have to read the clock.

• xds: Do RLS fallback policy eagar start (#12211) (42e1829b3). In gRPC-Java, the xDS clusters were lazily subscribed, which meant the fallback target which is returned in the RLS config wasn’t subscribed until a RPC actually falls back to it. The delayed resource subscription process in gRPC Java made it more susceptible to the effects of the INITIAL_RESOURCE_FETCH_TIMEOUT compared to other programming languages. It also had impact beyond the RLS cache expiration case, for example, when the first time the client initialized the channel, we couldn't fallback when the intended target times out, because of the lazy subscription. This change starts the fallback LB policy for the default target at the start of RLS policy instead of only when falling back to the default target, which fixes the above mentioned problems.

• xds: Aggregate cluster fixes (A75) (#12186) (7e982e48a). The earlier implementation of aggregate clusters concatenated the priorities from the underlying clusters into a single list, so that it could use a single LB policy defined at the aggregate cluster layer to choose a priority from that combined list. However, it turns out that aggregate clusters don't actually define the LB policy in the aggregate cluster; instead, the aggregate cluster uses a special cluster-provided LB policy that first chooses the underlying cluster and then delegates to the LB policy of the underlying cluster. This change implements that.

• api: set size correctly for sets and maps in handling Metadata values to be exchanged during a call (#12229) (80217275d)

• xds: xdsClient cache transient error for new watchers (#12291). When a resource update is NACKed, cache the error and update new watchers that get added with that error instead of making them hang.

• xds: Avoid PriorityLb re-enabling timer on duplicate CONNECTING (#12289). If a LB policy gives extraneous updates with state CONNECTING, then it was possible to re-create failOverTimer which would then wait the 10 seconds for the child to finish CONNECTING. We only want to give the child one opportunity after transitioning out of READY/IDLE.

• xds: Use a different log name for XdsClientImpl and ControlPlaneClient (#12287). ControlPlaneClient uses "xds-cp-client" now instead of "xds-client" while logging.

Dependencies Changes

• Upgrade to Netty 4.1.124.Final (#12286). This implicitly disables NettyAdaptiveCumulator (#11284), which can have a performance impact. We delayed upgrading Netty to give time to rework the optimization, but we've gone too long already without upgrading which causes problems for vulnerability tracking.

• bazel: Use jar_jar to avoid xds deps (#12243) (8f09b9689). The //xds and //xds:orca targets now use jar_jar to shade the protobuf generated code. This allows them to use their own private copy of the protos and drop direct Bazel dependencies on cel-spec, grpc, rules_go, com_github_cncf_xds, envoy_api, com_envoyproxy_protoc_gen_validate, and opencensus_proto. This mirrors the shading of protobuf messages done for grpc-xds provided on Maven Central and should simplify dependency management

Documentation

• Clarify requirements for creating a cross-user Channel. (#12181). The @SystemApi runtime visibility requirement isn't really new. It has always been implicit in the required INTERACT_ACROSS_USERS permission, which can only be held by system apps in production. Now deprecated BinderChannelBuilder#bindAsUser has always required SDK_INT >= 30. This change just copies that requirement forward to its replacement APIs in AndroidComponentAddress and the TARGET_ANDROID_USER NameResolver.Args.

• api: Add more Javadoc for NameResolver.Listener2 interface (#12220) (d352540a0)

Thanks to

@​benjaminp @​werkt @​kilink @​vimanikag

Commits

• 3abc0e6 Bump version to 1.75.0
• cbfe6c1 Update README etc to reference 1.75.0
• a0f3520 Revert "Release v1.75.0 (#12294)" (#12295)
• 7ef13f4 Release v1.75.0 (#12294)
• 14fd8ef xds: xdsClient caches transient error for new watchers (v1.75.x backport) (#1...
• 653d076 xds: Avoid PriorityLb re-enabling timer on duplicate CONNECTING (#12289)
• a5c2b1a netty: Count sent RST_STREAMs against limit (1.75.x backport) (#12288)
• 0d3e828 xds: Use a different log name for XdsClientImpl and ControlPlaneClient (1.75....
• d750e9d Upgrade to Netty 4.1.124.Final (v1.75.x backport) (#12286)
• 19c579e Bump versions of dependencies (#12252)
• Additional commits viewable in compare view

Updates io.grpc:grpc-protobuf from 1.74.0 to 1.75.0

Release notes

Sourced from io.grpc:grpc-protobuf's releases.

v1.75.0

Behavior Changes

• binder: Introduce server pre-authorization (#12127). grpc-binder clients authorize servers by checking the UID of the sender of the SETUP_TRANSPORT Binder transaction against some SecurityPolicy. But merely binding to an unauthorized server to learn its UID can enable "keep-alive" and "background activity launch" abuse, even if security policy ultimately causes the grpc connection to fail. Pre-authorization mitigates this kind of abuse by resolving addresses and authorizing a candidate server Application's UID before binding to it. Pre-auth is especially important when the server's address is not fixed in advance but discovered by PackageManager lookup.

Bug Fixes

• core: grpc-timeout should always be positive (#12201) (6dfa03c51). There is a local race between when the deadline is checked before sending the RPC and when the timeout is calculated to put on-the-wire. The code replaced negative timeouts with 0 nanoseconds. gRPC’s PROTOCOL-HTTP2 spec states that timeouts should be positive, so now non-positive values are replaced with 1 nanosecond

• core: Improved DEADLINE_EXCEEDED message for delayed calls (6ff8ecac0). Delayed calls are the first calls on a Channel before name resolution has resolved addresses. Previously you could see confusing errors saying the deadline “will be exceeded in” X time. The message tense was simply wrong, and now will be correct: deadline “was exceeded after” X time.

• xds: PriorityLB now only uses the failOverTimer to start additional priorities, not fail RPCs (c4256add4). You should no longer see “Connection timeout for priority” errors.

Improvements

• netty: Count sent RST_STREAMs against NettyServerBuilder.maxRstFramesPerWindow() limit (#12288). This extends the Rapid Reset tool to also cover MadeYouReset. the reset stream count will cause a 420 "Enhance your calm response" to be sent. This depends on Netty 4.1.124 for a bug fix to actually call the encoder by the frame writer.

• xds: Convert CdsLb to XdsDepManager (297ab05ef). This is part of gRFC A74 to have atomic xDS config updates. This is an internal change, but does change the error description seen in certain cases, especially DEADLINE_EXCEEDED on a brand-new channel.

• census: APIs for stats and tracing (#12050) (919370172). Client channel and server builders with interceptors and factories respectively for stats and tracing.

• stub: simplify BlockingClientCall infinite blocking (#12217) (ba0a7329d). Move deadline computation into overloads with finite timeouts. Blocking calls without timeouts now do not have to read the clock.

• xds: Do RLS fallback policy eagar start (#12211) (42e1829b3). In gRPC-Java, the xDS clusters were lazily subscribed, which meant the fallback target which is returned in the RLS config wasn’t subscribed until a RPC actually falls back to it. The delayed resource subscription process in gRPC Java made it more susceptible to the effects of the INITIAL_RESOURCE_FETCH_TIMEOUT compared to other programming languages. It also had impact beyond the RLS cache expiration case, for example, when the first time the client initialized the channel, we couldn't fallback when the intended target times out, because of the lazy subscription. This change starts the fallback LB policy for the default target at the start of RLS policy instead of only when falling back to the default target, which fixes the above mentioned problems.

• xds: Aggregate cluster fixes (A75) (#12186) (7e982e48a). The earlier implementation of aggregate clusters concatenated the priorities from the underlying clusters into a single list, so that it could use a single LB policy defined at the aggregate cluster layer to choose a priority from that combined list. However, it turns out that aggregate clusters don't actually define the LB policy in the aggregate cluster; instead, the aggregate cluster uses a special cluster-provided LB policy that first chooses the underlying cluster and then delegates to the LB policy of the underlying cluster. This change implements that.

• api: set size correctly for sets and maps in handling Metadata values to be exchanged during a call (#12229) (80217275d)

• xds: xdsClient cache transient error for new watchers (#12291). When a resource update is NACKed, cache the error and update new watchers that get added with that error instead of making them hang.

• xds: Avoid PriorityLb re-enabling timer on duplicate CONNECTING (#12289). If a LB policy gives extraneous updates with state CONNECTING, then it was possible to re-create failOverTimer which would then wait the 10 seconds for the child to finish CONNECTING. We only want to give the child one opportunity after transitioning out of READY/IDLE.

• xds: Use a different log name for XdsClientImpl and ControlPlaneClient (#12287). ControlPlaneClient uses "xds-cp-client" now instead of "xds-client" while logging.

Dependencies Changes

• Upgrade to Netty 4.1.124.Final (#12286). This implicitly disables NettyAdaptiveCumulator (#11284), which can have a performance impact. We delayed upgrading Netty to give time to rework the optimization, but we've gone too long already without upgrading which causes problems for vulnerability tracking.

• bazel: Use jar_jar to avoid xds deps (#12243) (8f09b9689). The //xds and //xds:orca targets now use jar_jar to shade the protobuf generated code. This allows them to use their own private copy of the protos and drop direct Bazel dependencies on cel-spec, grpc, rules_go, com_github_cncf_xds, envoy_api, com_envoyproxy_protoc_gen_validate, and opencensus_proto. This mirrors the shading of protobuf messages done for grpc-xds provided on Maven Central and should simplify dependency management

Documentation

• Clarify requirements for creating a cross-user Channel. (#12181). The @SystemApi runtime visibility requirement isn't really new. It has always been implicit in the required INTERACT_ACROSS_USERS permission, which can only be held by system apps in production. Now deprecated BinderChannelBuilder#bindAsUser has always required SDK_INT >= 30. This change just copies that requirement forward to its replacement APIs in AndroidComponentAddress and the TARGET_ANDROID_USER NameResolver.Args.

• api: Add more Javadoc for NameResolver.Listener2 interface (#12220) (d352540a0)

Thanks to

@​benjaminp @​werkt @​kilink @​vimanikag

Commits

• 3abc0e6 Bump version to 1.75.0
• cbfe6c1 Update README etc to reference 1.75.0
• a0f3520 Revert "Release v1.75.0 (#12294)" (#12295)
• 7ef13f4 Release v1.75.0 (#12294)
• 14fd8ef xds: xdsClient caches transient error for new watchers (v1.75.x backport) (#1...
• 653d076 xds: Avoid PriorityLb re-enabling timer on duplicate CONNECTING (#12289)
• a5c2b1a netty: Count sent RST_STREAMs against limit (1.75.x backport) (#12288)
• 0d3e828 xds: Use a different log name for XdsClientImpl and ControlPlaneClient (1.75....

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.