Bump Go to 1.24.1 / 1.23.7

[ivanvc]

What would you like to be added?

Golang 1.24.1 and 1.23.7 were released today. According to our Dependency management documentation, we want to stay on the latest patch version. This means updating the release-3.4, release-3.5 and release-3.6 branches to 1.23.7 and main to 1.24.1.

This patch includes the security fix for CVE-2025-22870.

Progress track:

• etcd
  • main: go v1.24.1 - Bump go toolchain to 1.24.1 #19440
  • release-3.6: go v1.23.7 - [release-3.6] Bump go toolchain to 1.23.7 #19527
  • release-3.5: go v1.23.7 - [3.5] Bump go toolchain to 1.23.7 #19528
  • release-3.4: go v1.23.7 - [3.4] Bump go toolchain to v1.23.7 #19533
  • CHANGELOG - Update CHANGELOGs with recent merged pull requests #19532
• bbolt
  • main: go v1.24.1 - Bump go 1.24.1 bbolt#925
  • release-1.3: v1.23.7 - [1.3] Bump go toolchain to v1.23.7 bbolt#920
  • release-1.4: v1.23.7 - [1.4] Bump go toolchain to v1.23.7 bbolt#921
• raft
  • main: go v1.24.1 - Bump go toolchain to 1.24.1 raft#275
  • release-3.6: go v1.23.7 - [3.6] Bump go toolchain to 1.23.7 raft#276
• etcd-io/gofail main: go v1.23.7 - Updates golang toolchain to version 1.23.7 gofail#107
• etcd-io/auger main: go v1.24.1 - Update golang toolchain to version 1.24.1 auger#222
• etcd-io/etcd-operator: go v1.24.1 - chore: bump golang to 1.24.1 etcd-operator#96
• etcd-io/protodoc: go v1.23.7 - Updates golang toolchain to version 1.23.7 protodoc#17

Please look at the previous issues and their pull requests, e.g., #19333 and #19210.

Why is this needed?

To keep the project up to date with the latest Go versions. And to address CVE-2025-22870.

[ivanvc]

I'll do etcd-io/etcd's. The rest are up for grabs.

/assign

[moshevayner]

@ivanvc I'll take the etcd-operator one! (cc @ahrtr )

[ivanvc]

/assign @moshevayner (etcd-operator)

[tcchawla]

Hey @ivanvc, I can work on the bbolt

cc @ahrtr

[MrDXY]

Hi @ivanvc , I’m happy to help with the raft part!

• main: Bump go toolchain to 1.24.1 raft#275
• release-3.6: [3.6] Bump go toolchain to 1.23.7 raft#276

[ivanvc]

Thanks, @MrDXY!

Thanks, @tcchawla. Note that we already have a pull request for main, as we haven't been able to bump Go to 1.24. But, you can do the release-1.3 and release-1.4 branches.

[shreekara-rajendra]

Hi @ivanvc , I can take up etcd-io/auger.

cc @ahrtr

[shreekara-rajendra]

@ivanvc, I can take on the remaining two as well.

cc @ahrtr

[ivanvc]

@ivanvc, I can take on the remaining two as well.

cc @ahrtr

Sure, go for it.

[ivanvc]

I'm closing with all the tasks completed. Thanks to everyone who helped with this: @tcchawla, @moshevayner, @shreekara-rajendra, @MrDXY, and @Elbehery.