Notably: MariaDB-10.6 is now based on jammy (24.04)
due to Focal 20.04 EOL
12.0 is now latest.
With UBI10 being stable, the 12.0+ series is based on
UBI10 for the ubi series.
The ubi images have now a FIP enable by default
profile for connections. SQL functions like MD5/SHA1
are still available as they are explicitly requested
of the OpenSSL library
Consequently 11.7 is EOL.
Because of Ubuntu 20.04 being EOL these images
where removed. Note ably there stil is 10.6-jammy
but leaving it to Docker Official Images to have
10.6 previous tag pointing to the older focal based
image.
Next release will replace 10.6 with the jammy based image
in a few months.
Closes #MariaDB/mariadb-docker/issues/647
Notably skips the 10.11.12/11.4.6 due to a last minute serious regression.
As Ubuntu 20.04 is EOL the 10.6 release includes a 10.6-jammy release.
Per #MariaDB/mariadb-docker/issues/553 the next release on 10.6 will be
jammy only.
The 10.5 is the last release of its series so this isn't getting the same
treatment.
healthcheck.sh had some code paths where
an incorrect healthy status could have been returned.
Also correct a noisy install where the messages didn't
releate to the container release.
Correct few issues around secure authentication.
Adjusted UBI images to USER mysql since the cloud
environments mostly handle this ok with regard to volume
permissions.
10.4 now EOL.
11.5/11.6 versions coming soon.
The new 11.4 release is a little late going though QA so it will
occur later. In the mean time we keep the 11.3 as the latest tag
so it isn't a downgrade.
As such 11.3 and 11.4 don't have the fix for issue 560.
We also filter our spaces in the command when passing to the
mariadb-install-db as it cannot handle this currently.
Unfortunately the last latest release broken PHP and nodejs
because of a protocol issue. The configuration item
character-set-collations added in the default 11.3/11.4
image generated this.
Closes: https://github.com/MariaDB/mariadb-docker/issues/560
10.10 now EOL
Added entrypoint feature to use MARIADB_AUTO_UPGRADE=1 to recreate
healthcheck user where cnf file was missing.
Added notes about memory pressure, available in cgroupsv2, but hidden
by container runtimes.
I made a mistake and caused #MariaDB/mariadb-docker/issues/460
Correct fails to set password with MARIADB_ROOT_HOST=localhost
Corrects setting of root@localhost use to MARIADB_ROOT_PASSWORD_HASH,
if set, and defers the setting until after /docker-entrypoint-initdb.d/
is processed.
It was intention that the timezone initialization
wasn't written to the binary log as it can slow
down initialization. This unfortunately regressed.
A test case is now written for this.
We erroniously released a 10.2 aarch64 bionic package that
wasn't installable due to broken dependences. This is now fixed.
The healthcheck.sh script had spelling mistakes in its autogeneration
for the 10.6 tags that resulted in:
* The default datadir being /var/lib/mariadb instead of /var/lib/mysql
* the --su-mysql parameter got broken.
Major:
* MDEV-27980 file-key-management plugin disabled in mysql_install_db breaks container initialization
The file-key-management plugin was broken in the mysql_install_db on all
versions. This prevents initializing innodb system tablespace encrypted.
This also prevents /docker-entrypoint-initdb.d/ from creating encrypted
tables.
* MariaDB upgrade started a temporary server without skip-slave-start
This causes potentially harmful interactions with the server while it
is undergoing and upgrade of its system tables.
* Use more semver in the tag for unstable images.
As mentioned here https://github.com/MariaDB/mariadb-docker/issues/415
and in the comments on 38c1c0d4fd
a clear indication of unstable versions is desiriable.
The existance of a tag without a rc could make it harder for automation
to see the equivilance of underlying hashes to a non-rc tag like 10.8.
Imporant:
* Healthcheck - prevent duplicate test running
Running the healthcheck with a test, following by options, would
execute the test again for each option. While harmless it is
unnecessary.
Minor:
A few other healthcheck script cleanups.
10.2.43, 10.3.34, 10.4.24, 10.5.15, 10.6.7, 10.7.3, 10.8.2.
Yes, a version is missing, we discovered a fault part way though
releasing and a number of CVEs too.
10.7 is now GA and 10.8 is new.
Daniel Black