Skip to content

chore(deps): Bump httpcore-version from 5.3.2 to 5.3.3#16957

Merged
davsclaus merged 1 commit intomainfrom
dependabot/maven/httpcore-version-5.3.3
Jan 29, 2025
Merged

chore(deps): Bump httpcore-version from 5.3.2 to 5.3.3#16957
davsclaus merged 1 commit intomainfrom
dependabot/maven/httpcore-version-5.3.3

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 29, 2025

Bumps httpcore-version from 5.3.2 to 5.3.3.
Updates org.apache.httpcomponents.core5:httpcore5 from 5.3.2 to 5.3.3

Changelog

Sourced from org.apache.httpcomponents.core5:httpcore5's changelog.

Release 5.3.3

This maintenance release fixes a defect in how asynchronous SSL sessions handle an overflow condition when encrypting application data. There have also been several fixes for edge cases related to handling HTTP/1.1 asynchronous connections half-closed by the opposite endpoint.

Change Log

  • Bug fix: Shared input buffer to propagate aborted status as I/O interrupted exception. Contributed by Oleg Kalnichevski

  • Bug fix: Half-closed SSL sessions must not shut down until explicitly closed by the application (protocol) layer. Contributed by Oleg Kalnichevski

  • Bug fix: Corrected shutdown of asynchronous HTTP/1.1 connections half-closed by the opposite endpoint. Contributed by Oleg Kalnichevski

  • Bug fix: Made shared output buffer #writeCompleted block until the end of a stream has been written out. Contributed by Oleg Kalnichevski

  • HTTPCORE-775: Fixed handling SSLEngineResult#BUFFER_OVERFLOW of by asynchronous SSLIOSession#write Contributed by Andriy Redko

  • Bug fix: In some edge cases, the request may still not be fully completed while the response has already been fully committed by the HTTP/1.1 stream handler. Connections that cannot be kept alive must be closed only once both request and response streams are fully complete. Contributed by Oleg Kalnichevski

Commits
  • 3c71e0c HttpCore 5.3.3 release
  • 09a6264 Updated release notes for HttpCore 5.3.3 release
  • fe377cf Bug fix: Shared input buffer to propagate aborted status as I/O interrupted e...
  • 7484129 Bug fix: Half-closed SSL sessions must not shut down until explicitly closed ...
  • 6f19367 Bug fix: Corrected shutdown of async HTTP/1.1 connections half-closed by the ...
  • 88e9ab9 Bug fix: Made shared output buffer #writeCompleted block until the end of str...
  • c14e494 HTTPCORE-775: The SSLIOSession::write does not handle SSLEngineResult#BUFFER_...
  • 824b916 Bug fix: in some fringe cases the request may still be not fully completed wh...
  • 92b9ed9 Upgraded HttpCore version to 5.3.3-SNAPSHOT
  • See full diff in compare view

Updates org.apache.httpcomponents.core5:httpcore5-h2 from 5.3.2 to 5.3.3

Changelog

Sourced from org.apache.httpcomponents.core5:httpcore5-h2's changelog.

Release 5.3.3

This maintenance release fixes a defect in how asynchronous SSL sessions handle an overflow condition when encrypting application data. There have also been several fixes for edge cases related to handling HTTP/1.1 asynchronous connections half-closed by the opposite endpoint.

Change Log

  • Bug fix: Shared input buffer to propagate aborted status as I/O interrupted exception. Contributed by Oleg Kalnichevski

  • Bug fix: Half-closed SSL sessions must not shut down until explicitly closed by the application (protocol) layer. Contributed by Oleg Kalnichevski

  • Bug fix: Corrected shutdown of asynchronous HTTP/1.1 connections half-closed by the opposite endpoint. Contributed by Oleg Kalnichevski

  • Bug fix: Made shared output buffer #writeCompleted block until the end of a stream has been written out. Contributed by Oleg Kalnichevski

  • HTTPCORE-775: Fixed handling SSLEngineResult#BUFFER_OVERFLOW of by asynchronous SSLIOSession#write Contributed by Andriy Redko

  • Bug fix: In some edge cases, the request may still not be fully completed while the response has already been fully committed by the HTTP/1.1 stream handler. Connections that cannot be kept alive must be closed only once both request and response streams are fully complete. Contributed by Oleg Kalnichevski

Commits
  • 3c71e0c HttpCore 5.3.3 release
  • 09a6264 Updated release notes for HttpCore 5.3.3 release
  • fe377cf Bug fix: Shared input buffer to propagate aborted status as I/O interrupted e...
  • 7484129 Bug fix: Half-closed SSL sessions must not shut down until explicitly closed ...
  • 6f19367 Bug fix: Corrected shutdown of async HTTP/1.1 connections half-closed by the ...
  • 88e9ab9 Bug fix: Made shared output buffer #writeCompleted block until the end of str...
  • c14e494 HTTPCORE-775: The SSLIOSession::write does not handle SSLEngineResult#BUFFER_...
  • 824b916 Bug fix: in some fringe cases the request may still be not fully completed wh...
  • 92b9ed9 Upgraded HttpCore version to 5.3.3-SNAPSHOT
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps): Bump httpcore-version from 5.3.2 to 5.3.3
d5b4a61 
Bumps `httpcore-version` from 5.3.2 to 5.3.3.

Updates `org.apache.httpcomponents.core5:httpcore5` from 5.3.2 to 5.3.3
- [Changelog](https://github.com/apache/httpcomponents-core/blob/rel/v5.3.3/RELEASE_NOTES.txt)
- [Commits](apache/httpcomponents-core@rel/v5.3.2...rel/v5.3.3)

Updates `org.apache.httpcomponents.core5:httpcore5-h2` from 5.3.2 to 5.3.3
- [Changelog](https://github.com/apache/httpcomponents-core/blob/rel/v5.3.3/RELEASE_NOTES.txt)
- [Commits](apache/httpcomponents-core@rel/v5.3.2...rel/v5.3.3)

---
updated-dependencies:
- dependency-name: org.apache.httpcomponents.core5:httpcore5
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: org.apache.httpcomponents.core5:httpcore5-h2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Jan 29, 2025
@github-actions
Copy link
Contributor

github-actions bot commented Jan 29, 2025

🌟 Thank you for your contribution to the Apache Camel project! 🌟

🤖 CI automation will test this PR automatically.

🐫 Apache Camel Committers, please review the following items:

  • First-time contributors require MANUAL approval for the GitHub Actions to run

  • You can use the command /component-test (camel-)component-name1 (camel-)component-name2.. to request a test from the test bot.

  • You can label PRs using build-all, build-dependents, skip-tests and test-dependents to fine-tune the checks executed by this PR.

  • Build and test logs are available in the Summary page. Only Apache Camel committers have access to the summary.

  • ⚠️ Be careful when sharing logs. Review their contents before sharing them publicly.

@gansheer
Copy link
Contributor

gansheer commented Jan 29, 2025
edited by github-actions bot
Loading

/component-test http

Result ✅ The tests passed successfully

@github-actions
Copy link
Contributor

github-actions bot commented Jan 29, 2025

🤖 The Apache Camel test robot will run the tests for you 👍

@davsclaus davsclaus merged commit 958d790 into main Jan 29, 2025
5 checks passed
@dependabot dependabot bot deleted the dependabot/maven/httpcore-version-5.3.3 branch January 29, 2025 09:11
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@oscerd oscerd oscerd approved these changes

@gansheer gansheer gansheer approved these changes

Assignees

No one assigned

Labels

camel-4 core-build-and-dependencies dependencies Pull requests that update a dependency file java Pull requests that update Java code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@gansheer @oscerd @davsclaus