-------------------------------------------------------------------------------
Fix Number: FJSVfsep-PGBR-17-1701-0.s15.x86_64
Product Names and Versions: Fujitsu Enterprise Postgres pgBackRest 17

Creation date: 19.03.2025
-------------------------------------------------------------------------------

 [High Risk Activity]

  The Customer acknowledges and agrees that the Product is designed,
  developed and manufactured as contemplated for general use, including
  without limitation, general office use, personal use, household use, and
  ordinary industrial use, but is not designed, developed and manufactured
  as contemplated for use accompanying fatal risks or dangers that, unless
  extremely high safety is secured, could lead directly to death, personal
  injury, severe physical damage or other loss (hereinafter "High Safety
  Required Use"), including without limitation, nuclear reaction control
  in nuclear facility, aircraft flight control, air traffic control, mass
  transport control, medical life support system, missile launch control
  in weapon system. 

  The Customer, shall not use the Product without
  securing the sufficient safety required for the High Safety Required
  Use. In addition, Fujitsu (or other affiliate's name) shall not be
  liable against the Customer and/or any third party for any claims or
  damages arising in connection with the High Safety Required Use of the
  Product. 

  Product and company names mentioned in this manual are the trademarks or 
  registered trademarks of their respective owners.

  Copyright 2024-2025 FUJITSU LIMITED

-------------------------------------------------------------------------------
[Notes]
  - This is the readme for SUSE 15.
  - This fix is applicable to environments where the following are installed.
    FUJITSU Enterprise Postgres pgbackrest 17
  - Please ensure that the following steps are carried out before applying or
    deleting this patch.
    - Do not set the library path of FUJITSU Enterprise Postgres (*1)
      to the environment variable(*2).
      (*1) <the installation directory of FUJITSU Enterprise Postgres>/lib
      (*2) LD_LIBRARY_PATH and LD_LIBRARY_PATH_32.
  - If it was set to perform periodic backups, make sure pgbackrest command is not running
    before applying or deleting this patch.

-------------------------------------------------------------------------------
[Patch Description]

 The following fixes are included in this patch:

Fix Number: FJSVfsep-PGBR-17-1701-0.s15.x86_64
01    PH24429
      [ ]Security failure
      [ ]Serious failure ([ ]Degradation)
      [ ]Incompatibility does not exist / [*]Incompatibility exists
      - Frequency ([ ]Always / [ ]Rarely / [*]Irregularly)

      - Description
        This is a reflection of bug fixes absorbed by pgBackRest v2.54.1 
        into Fujitsu Enterprise Postgres, with no specific symptoms.
      - Requirements to reproduce this issue
        This product reflects the defect fixes absorbed up to pgBackRest 
        v2.54.1, and there are no specific occurrence conditions.
        For a list of defects that are fixed in this case, please visit:
        https://pgbackrest.org/release.html
      - Action
        Fix processing of pgBackRest, which is bundled with Fujitsu 
        Enterprise Postgres
      - Compatibility Information
        - Summary
          Fix processing of pgBackRest, which is bundled with 
          Fujitsu Enterprise Postgres.
          There are three changes associated with this:
          1.
          Changing the contents of the backup reference information that is 
          output when the info command is executed
          2.
          Specification changes in indexed options that are output when 
          the help command is executed when there is more than one target 
          to be displayed
          3.
          Improved error message when an error is detected in SFTP 
          communication when the info command is executed
        - Environment
          1.
           1) Apply emergency fixes including PH24429. and
           2) The info command is executed.
          2.
           1) Apply emergency fixes including PH24429. and
           2) The help command is executed. and
           3) Multiple valid values are specified for the --repo-cipher-type
             or --repo-host option.
          3.
           1) Apply emergency fixes including PH24429. katsu
           2) An error occurs during SFTP communication.
        - Products combination of this compatibility problem
          Apply a critical fix that includes PH24429.
          If the conditions listed in "Environment" are met.
        - Reason of conflictions
          This is due to a change in the version of pgBackRest that ships 
          with Fujitsu Enterprise Postgres.
        - Impacts
          1.
          Need to change the way the backup reference is parsed when you 
          run the info command.
          2.
          The output of the help command might be long.
          3.
          Need to change how SFTP communication error messages are parsed.
        - Functional items (Summary, Before/After of migration)
          The output of the backup reference was changed when the info 
          command was executed.
          [Before]
           The reference information was output as a list, like this:
           backup reference list: 20181119-152138F
          [After]
           The reference information is now printed as the number of lists:
           backup reference total: 1 full
          2.
          [Before]
           Even with multiple settings and indexed options, only the first
           one specified would be printed, like this:
            [current=aes-256-cbc, default=none]
          [After]
           If the option has multiple settings and is indexed, all values 
           are printed.
            [current=aes-256-cbc, desc-256-cbc, default=none]
          3.
          [Before]
           When an error is detected in SFTP communication, the error 
           message contains the following.
           It did not contain a message detailing the error.
            FileOpenError, STORAGE_ERROR_INFO ": libssh2 error [-31]:
            sftp error [3]," strZ(fileNoPerm));
          [After]
           When an error is detected in SFTP communication, the error
           message contains the following.
           A message detailing the error is now included as shown in.
            FileOpenError,STORAGE_ERROR_INFO ": libssh2 error [-31]:
            sftp error [3] permission denied," strZ(fileNoPerm));
        - Preventive Method
          1.
          When the info command is executed, the backup reference (If your 
          application is parsing the backup reference information, 
          modify it to match the format.
          To obtain the same information as before, specify the 
          --set option.
          2.
          If an application analyzes the results of the --repo-cipher-type
          or --repo-host option when the help command is executed, modify
          the analysis so that it can handle multiple index information 
          returns.
          3.
          If your application is parsing error messages, modify them to 
          support the new format.
        - Back out method of the functions
          None
        - User action
          Same as preventive method 
          

-------------------------------------------------------------------------------
[List of fixed files]

 Files replaced by the patch:

    $INS_DIR/bin/pgbackrest
    $INS_DIR/lib/libcom_err.so.3
    $INS_DIR/lib/libcrypto.so.3
    $INS_DIR/lib/libgssapi_krb5.so.2
    $INS_DIR/lib/libk5crypto.so.3
    $INS_DIR/lib/libkrb5.so.3
    $INS_DIR/lib/libkrb5support.so.0
    $INS_DIR/lib/liblber-2.5.so.0
    $INS_DIR/lib/libldap-2.5.so.0
    $INS_DIR/lib/libpq.so.5
    $INS_DIR/lib/libssh2.so.1
    $INS_DIR/lib/libssl.so.3
    $INS_DIR/lib/libxml2.so.2

-------------------------------------------------------------------------------