Release 2025_012 (2025-04-28)

Impact

24.11

  • MySQL servers and OpenVPN connections will be restarted.

NixOS 24.11 platform

  • Update fc-qemu to fix performance issue that caused a storage outage due to OSD hotspot behaviour. (PL-133632)

  • Configure the sender domain for mailutils based programs to be the fully qualified hostname by default. (PL-133552)

  • coturn: ensure that the coturn process can bind to port 443 when enabled by the Jitsi role. (PL-133419)

  • Increase interval for scrubbing VMs. In large clusters this is becoming too expensive and since we introduced the per-VM supervisor this isn’t as relevant any longer. (PL-133632)

  • kvm: provide resolver services to layer 3 routed guest interfaces also on the subnet virtual router IPv6 address. (PL-133325)

  • fc.qemu: multiple changes to improve the support for cloud-init-based VMs (Ubuntu) (PL-133325)

    • Provision IPv6 nameserver to support IPv6-only VMs

    • Upgrade packages on first boot.

    • Fix cloud-init instance ID handling to avoid regenerating SSH host keys too often.

    • Ensure network settings are updated on every boot.

  • Pull upstream NixOS changes, security fixes, and package updates:

    • chromedriver: 135.0.7049.84 -> 135.0.7049.95

    • chromium: 135.0.7049.84 -> 135.0.7049.95

    • element-web: 1.11.96 -> 1.11.97

    • erlang: 25.3.2.19 -> 25.3.2.20

    • firefox: 137.0.1 -> 137.0.2

    • gitaly: 17.9.3 -> 17.10.4

    • gitlab: 17.9.3 -> 17.10.4

    • gitlab-ee: 17.9.3 -> 17.10.4

    • gitlab-pages: 17.9.3 -> 17.10.4

    • gitlab-workhorse: 17.9.3 -> 17.10.4

    • go: 1.23.7 -> 1.23.8

    • go_1_23: 1.23.7 -> 1.23.8

    • mysql80: 8.0.41 -> 8.0.42

    • openvpn: 2.6.12 -> 2.6.14

    • php83: 8.3.19 -> 8.3.20

    • php84: 8.4.5 -> 8.4.6

    • ruby: 3.3.6 -> 3.3.7

    • ruby_3_2: 3.2.6 -> 3.2.8

    • webkitgtk: 2.46.6 -> 2.48.0

Documentation

Detailed Changes