Plan release v3.5.10

[serathius]

What would you like to be added?

List of issues reported for v3.5 since v3.5.9:

• --socket-reuse-port and --socket-reuse-address These two flags have bugs #16399
  • [3.5] Backport expose socket options #16435
• Migrate to golang 1.20 #16394
  • [3.5] Backport update to golang 1.20 minor release #16401
• pkg/flags: fix UniqueURLs'Set to remove duplicates in UniqueURLs'uss #16272
  • [3.5] Backport #16272 to 3.5 #16311
• clientv3: create keepAliveCtxCloser goroutine only if ctx can be canc… #16200
  • [3.5] clientv3: create keepAliveCtxCloser goroutine only if ctx can be canc… #16204
• Adding optional revision bump to snapshot restore #16029
  • [3.5] Adding optional revision bump and mark compacted to snapshot restore #16165
• clientv3: remove v3.WithFirstKey() in Barrier.Wait() #16156
  • [3.5] clientv3: remove v3.WithFirstKey() in Barrier.Wait() #16188
• etcdutl: fix db double closed #16120
  • [Backport 3.5] etcdutl: fix db double closed #16201
• Put operation with lease takes linear apply time depending on number of keys already attached to lease  #15993
  • [3.5] Early exit auth check on lease puts #16019
• Incorrect hash when resuming scheduled compaction after etcd restarts #15919
  • [3.5] etcdserver: backport check scheduledCompactKeyName and finishedCompac… #16068
• Etcd watch stream starvation under high read response load when sharing same connection and TLS is enabled #15402
  • [v3.5] Return to default write scheduler since golang.org/x/net@v0.11.0 started using round robin #16750
• Resolve CVE-2023-44487 #16740
  • [3.5] Bump grpc-go to1.47 (and fix the connection-string format) #16625
  • [3.5] Bump golang.org/x/net to v0.17.0 #16743
  • [3.5] Upgrade gRPC-go to v1.52.0 #16781
  • Need to upgrade grpc to either 1.56.3 or 1.57.1 or 1.58.3
• Etcd corruption detection triggers during in-place cluster recovery #15548
  • [release-3.5] etcdserver: add cluster id check for hashKVHandler #16637
• Etcd v3 api: Initialization client error #14323
  • Backport #14368 to v3.5 #16270

Why is this needed?

Ensure we collect and triage all issues that should be fixed before v3.5.10

[serathius]

cc @ahrtr @wenjiaswe @jmhbnz
Prepared list of backports. Please check if anything is missing and if can help get them merged.

[ahrtr]

#16625 isn't enough to resolve CVE-2023-44487. It's just the first step. After the PR gets merged, we need to continue to upgrade grpc to one of 1.56.3 , 1.57.1 or 1.58.3

[serathius]

Yes, both #16625 #16743 are included in.

[Hendrik-H]

would be great if you could get a fix for #9533 in as well.

[serathius]

I would not block v3.5.10 release on #9533. Releases provide users with etcd binaries and docker images that they can use. For embedded server it's much easier to just change commit hash.

Contributions are still welcomed!

[serathius]

Working on #16637, which is the last PR that was orignially proposed. I will review pending issues again and if there are not will push the release.

cc @ahrtr @jmhbnz
To double check issues that should be fixed.

[jmhbnz]

Doing some quick review here is a shortcut link showing all our open pr's targeting release-3.5: https://github.com/etcd-io/etcd/pulls?q=is%3Apr+is%3Aopen+base%3Arelease-3.5+

I think we want to try to include #16781 as it is another step towards resolving CVE-2023-44487?

#16070 Is a very simple backport that we could consider including, I have already approved it so defer to maintainers on it.

[ahrtr]

To double check issues that should be fixed.

I think #16637 is nice to have, but definitely not a blocker for 3.5.10. It's caused by incorrect user operation (side by side recovery to an existing one). #15548 (comment).

[serathius]

I think we want to try to include #16781 as it is another step towards resolving CVE-2023-44487?

Added #16781

[ahrtr]

All items in the list are resolved?

• gRPC has already been upgraded to 1.58.3 in [3.5] Upgrade gRPC-go to 1.58.3 #16790

[serathius]

Think so, will start the release as soon as I have some time.

[serathius]

Done https://github.com/etcd-io/etcd/releases/tag/v3.5.10