Hotfix upgrade instructions for version 1.15.3
You must account for the following requirements to ensure a successful upgrade to GDC 1.15.3:
For new bootstraps, you must bootstrap the root organization directly to the 1.15.3-gdch.3086 binary.
To prevent a critical operating system (OS) downgrade when upgrading your environment from version 1.14.12, you must complete the following:
Load all available hotfixes and version 1.15.3-gdch.3086 into the system first.
Verify hotfixes are loaded prior to starting the upgrade to ensure the correct OS version is used.
Hotfix 3
Fixed
The 1.15.3-gdch.3086-3 hotfix is available. This hotfix fixes the following issues:
Security:
- Updates Transport Layer Security (TLS) standards to restrict and enforce approved cipher suites (AES-256).
Hotfix 2
Fixed
The 1.15.3-gdch.3086-2 hotfix is available. This hotfix fixes the following issues:
Firewall:
- The
FirewallNoderesource is in aNotReadystate after upgrade.
Networking:
- The
unet-root-admin-cmjob fails due to a missing organization.
Node OS:
- Linux Unified Key Setup (LUKS) keys are missing after upgrade prevents node from booting.
Operations lifecycle:
- The
iam-aissubcomponent fails due to a race condition.
Hotfix 1
Fixed
The 1.15.3-gdch.3086-1 hotfix is available. This hotfix fixes the following issues:
Node OS:
- Updated the Rocky OS image version to 20260107 to apply the latest security patches and important updates.