Bump github.com/nats-io/nats-server/v2 from 2.10.12 to 2.10.22

[dependabot]

Bumps github.com/nats-io/nats-server/v2 from 2.10.12 to 2.10.22.

Release notes

Sourced from github.com/nats-io/nats-server/v2's releases.

Release v2.10.22

Changelog

Refer to the 2.10 Upgrade Guide for backwards compatibility notes with 2.9.x.

Go Version

• 1.22.8

Dependencies

• golang.org/x/crypto v0.28.0 (#5971)
• golang.org/x/sys v0.26.0 (#5971)
• golang.org/x/time v0.7.0 (#5971)
• go.uber.org/automaxprocs v1.6.0 (#5944)
• github.com/klauspost/compress v1.17.11 (#6002)

Added

Config

• A warning will now be logged at startup if the JetStream store directory appears to be in a temporary folder (#5935)

Improved

General

• More efficient searching of sublists for the number of subscriptions (#5918)

JetStream

• Improve performance when checking interest and correcting ack state on interest-based or work queue streams (#5963)
• Safer default file permissions for JetStream filestore and logs (#6013)

Fixed

JetStream

• Large number of message delete tombstones will no longer result in unusually large message blocks on disk (#5973)
• The server will no longer panic when restoring corrupted subject state containing null characters (#5978)
• A data race when processing append entries has been fixed (#5970)
• Fix a stream desync across replicas that could occur after stalled or failed catch-ups (#5939)
• Consumers will no longer race with the filestore when fetching messages, fixing some cases where consumers can get stuck with workqueue streams and max messages per subject limits (#6003)
• Pull consumers will now recalculate max delivered when expiring messages, such that the redelivered status does not report incorrectly and cause a stall with a max deliver limit (#5995)
• Clustered streams should no longer desync if a catch-up fails due to a loss of leader (#5986)
• Fixed a panic that could occur when calculating asset placement in a JetStream cluster (#5996)
• Fixed a panic when shutting down a clustered stream (#6007)
• Revert earlier PR #5785 to restore consumer start sequence clipping, fixing an issue where sourcing/mirroring consumers could skip messages (#6014)

Leafnodes

• Load balancing of queue groups over leafnode connections (#5982)

Complete Changes

nats-io/nats-server@v2.10.21...v2.10.22

... (truncated)

Commits

• 240e9a4 Release v2.10.22 (#6013)
• 2147089 Release v2.10.22
• 14c46af Fix TestJetStreamClusterConsumeWithStartSequence to account for clipping of...
• 317f223 Add unit tests that prove sources and mirrors have their consumer start seque...
• 23de885 Revert "Fix consumer start sequence when sequence not yet in stream"
• 97a0df3 Update default file and directory permissions
• 417ca01 Bump to 2.10.22-RC.3
• d493f0d Cherry-picks for 2.10.22-RC.3 (#6012)
• 05331c3 Move two performance tests on checkInterest to NoRace suite.
• c4f3251 Fix possible panic on monitorStream when shutting down
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)