From fd086203e001f055e05095b69c14e42e849e23de Mon Sep 17 00:00:00 2001 From: mohitrajain Date: Tue, 2 Jun 2026 23:58:09 +0200 Subject: [PATCH 1/4] fix: WPB-25752 release 5.25-R2 with MLS disabled by default --- changelog.d/2-wire-builds/5.25-mls-disabled | 1 + values/wire-server/demo-values.example.yaml | 4 ++-- values/wire-server/prod-values.example.yaml | 4 ++-- 3 files changed, 5 insertions(+), 4 deletions(-) create mode 100644 changelog.d/2-wire-builds/5.25-mls-disabled diff --git a/changelog.d/2-wire-builds/5.25-mls-disabled b/changelog.d/2-wire-builds/5.25-mls-disabled new file mode 100644 index 000000000..a2e6ea948 --- /dev/null +++ b/changelog.d/2-wire-builds/5.25-mls-disabled @@ -0,0 +1 @@ +Fixed: disabled the MLS by default for 5.25-R1 diff --git a/values/wire-server/demo-values.example.yaml b/values/wire-server/demo-values.example.yaml index f12567827..83311ae5f 100644 --- a/values/wire-server/demo-values.example.yaml +++ b/values/wire-server/demo-values.example.yaml @@ -55,7 +55,7 @@ brig: teamMemberWelcome: https://wire.example.com/download # change this enableFederation: false # Keep false unless federation is explicitly configured optSettings: - setEnableMLS: true # Enable for MLS protocol use + setEnableMLS: false # Enable for MLS protocol use setFederationDomain: example.com # change this per host deployment # Sync the domain with the 'host' variable in the sftd chart # Comment the next line (by adding '#' before it) if conference calling is not used @@ -199,7 +199,7 @@ galley: status: disabled config: protocolToggleUsers: [] - defaultProtocol: mls + defaultProtocol: proteus allowedCipherSuites: [2] defaultCipherSuite: 2 supportedProtocols: [proteus, mls] diff --git a/values/wire-server/prod-values.example.yaml b/values/wire-server/prod-values.example.yaml index 31932fbe5..3c097f0ae 100644 --- a/values/wire-server/prod-values.example.yaml +++ b/values/wire-server/prod-values.example.yaml @@ -55,7 +55,7 @@ brig: teamMemberWelcome: https://wire.example.com/download # change this enableFederation: false # Keep false unless federation is explicitly configured optSettings: - setEnableMLS: true # Enable for MLS protocol use + setEnableMLS: false # Enable for MLS protocol use setFederationDomain: example.com # change this per host deployment # Sync the domain with the 'host' variable in the sftd chart # Comment the next line (by adding '#' before it) if conference calling is not used @@ -199,7 +199,7 @@ galley: status: disabled config: protocolToggleUsers: [] - defaultProtocol: mls + defaultProtocol: proteus allowedCipherSuites: [2] defaultCipherSuite: 2 supportedProtocols: [proteus, mls] From 1d2d185a53ac71e3cdb4691719e90fd716a135c0 Mon Sep 17 00:00:00 2001 From: mohitrajain Date: Wed, 3 Jun 2026 17:02:06 +0200 Subject: [PATCH 2/4] fix: WPB-25752 update default artifact hashes for wiab-stag and dev and update changelog --- CHANGELOG.md | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/CHANGELOG.md b/CHANGELOG.md index 972567033..80d31660a 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -12,6 +12,12 @@ --> +# Relase 5.25 R2 + +## Release notes + +* Changed: disabled the MLS by default in 5.25-R1 and release it as 5.25R2 + # Relase 5.25 R1 ## Release notes From 1616b71b6c6ec9addd1b9e32738fb208793a8b70 Mon Sep 17 00:00:00 2001 From: mohitrajain Date: Tue, 23 Jun 2026 20:29:16 +0200 Subject: [PATCH 3/4] fix: WPB-25752 update the webapp image for 5.25R2 --- values/webapp/demo-values.example.yaml | 4 ++-- values/webapp/prod-values.example.yaml | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/values/webapp/demo-values.example.yaml b/values/webapp/demo-values.example.yaml index 97a45fb7a..144e571e0 100644 --- a/values/webapp/demo-values.example.yaml +++ b/values/webapp/demo-values.example.yaml @@ -1,6 +1,6 @@ replicaCount: 1 -# image: -# tag: some-tag (only override if you want a newer/different version than what is in the chart) +image: + tag: 2026-06-08-production.0 config: externalUrls: backendRest: nginz-https.example.com diff --git a/values/webapp/prod-values.example.yaml b/values/webapp/prod-values.example.yaml index 0d6286cd1..b322ba7aa 100644 --- a/values/webapp/prod-values.example.yaml +++ b/values/webapp/prod-values.example.yaml @@ -1,6 +1,6 @@ replicaCount: 3 -# image: -# tag: some-tag (only override if you want a newer/different version than what is in the chart) +image: + tag: 2026-06-08-production.0 config: externalUrls: backendRest: nginz-https.example.com From 6dd9d8a7493bbb56f54356da73d7aa347db17340 Mon Sep 17 00:00:00 2001 From: mohit rajain Date: Thu, 2 Jul 2026 08:39:57 +0200 Subject: [PATCH 4/4] fix: WPB-25752 update the webapp image for 5.25R2 with 2025-09-24 release and update core_crypto and api_version envVars --- values/webapp/prod-values.example.yaml | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/values/webapp/prod-values.example.yaml b/values/webapp/prod-values.example.yaml index b322ba7aa..76e6ec0ff 100644 --- a/values/webapp/prod-values.example.yaml +++ b/values/webapp/prod-values.example.yaml @@ -1,6 +1,6 @@ replicaCount: 3 image: - tag: 2026-06-08-production.0 + tag: 2025-09-24-production.0 config: externalUrls: backendRest: nginz-https.example.com @@ -11,6 +11,8 @@ config: # See full list of available environment variables: https://github.com/wireapp/wire-web-config-default/blob/master/wire-webapp/.env.defaults envVars: APP_NAME: "Webapp" + FEATURE_USE_CORE_CRYPTO: "true" + MAX_API_VERSION: "12" ENFORCE_HTTPS: "true" FEATURE_CHECK_CONSENT: "false" # Note: disabling showing the user creation is not the same thing as user creation being disabled.