Release 2022_007 (2022-03-02)¶

Impact¶

Work around a suspected Apache/PHP bug regarding dynamic library loading and static thread local storage by restarting Apache instead of reloading gracefully (PL-130372).
We now use the black code formatter for our platform Python code.
Production channel URL for this release: https://hydra.flyingcircus.io/build/138434/download/1/nixexprs.tar.xz

The 21.11 platform version is now ready for non-production machines. We plan to upgrade customer staging VMs from 21.05 to 21.11 in a few weeks. Main development will be done on 21.11 from now on.
Significant breaking changes:
- HAproxy doesn’t support log localhost anymore, use log 127.0.0.1 instead.
- Postgresql 9.6 is end-of-life and has been removed.
- PHP 5.6 has been EOL for a long time and has been removed.
- OpenSSH 8.8 default settings break connections to older SSH implementations as ssh-rsa host keys and ssh-rsa public keys that were signed with SHA-1 are disabled now. They can be re-enabled temporarily, if needed.
iptables now uses nf_tables backend. This may lead to problems when mixing legacy and new firewall rules.
Notable package updates:
- bash now defaults to major version 5.
- python3 is now python39
- The varnish package was upgraded from 6.3.x to 7.x.
- k3s: 1.21 -> 1.22
- docker: 20.10.7 -> 20.10.9
- elasticsearch: 6.8.3 -> 6.8.21
- erlang: 23.3.4.5 -> 24.1.6
- docker-compose: 1.28.6 -> 1.29.2, 2.0.1
- git: 2.31.1 -> 2.33.1
- glibc: 2.32-54 -> 2.33-117
- kubernetes-helm: 3.5.4 -> 3.8.0
- imagemagick: 7.1.0-19 -> 7.1.0-24
- inetutils: 1.9.4 -> 2.2
- linux: 5.10.88 -> 5.10.99
- mailutils: 3.12 -> 3.13
- openssl: 1.1.1l -> 1.1.1m
- postfix: 3.6.0 -> 3.6.4
- rabbitmq: 3.8.9 -> 3.9.8
- sudo: 1.9.7 -> 1.9.7p2
- telegraf: 1.18.1 -> 1.20.3
- util-linux: 2.36.2 -> 2.37.3
- varnish: 6.3.2 -> 7.0.2
- systemd: 247 -> 249