25.03.002 changelog

25.03.002

Released on 18 March, 2025.

Server

A feature introduced in 25.03.001 to reset partial connections was shown to be unstable in some environments and is being disabled for further evaluation. Set WIREGUARD_ENABLE_KERNEL_LOGGING=true to enable.
Fixed an issue when collecting BGP related logs from Controller SoS bundles.
Added service manager settings that retry failed attempts at running dex.service.
Updated the Controller command-line based support bundle utility to resolve deprecation warnings.
Fixed an incorrect systemd setting for the backup daemon.
Added service manager settings that retry failed attempts at running hostname-setup.service.

The bandwidth consumption of the Control Plane interface has been greatly reduced, now measuring roughly 1% of previous usage.
The initial Controller setup page is now gated behind authentication. See the setup documentation for additional information.

Updated the base Controller appliance operating system to reflect the latest upstream package updates.

The table below lists relevant user-facing packages that may impact custom configuration settings on deployed Controllers:

Vulnerabilities closed due to updated packages or backported patches include:

At the time of writing, a scan of all operating system dependencies yielded no outstanding critical vulnerabilities requiring immediate action.

When upgrading your Controller, please bear the following release notes in mind:

This update includes an update from Linux kernel version 6.1.123 to 6.1.130. System services should continue to operate normally across kernel updates, but if you require that the system run on the newer kernel, you should follow-up with any update actions with a system reboot to run on the newer kernel, but this step is not required.