Hello there!
We are happy to announce that voting is now open for a new GuestOS release.
The NNS proposal is here: IC NNS Proposal 137152.
Here is a summary of the changes since the last GuestOS release:
Release Notes for release-2025-06-26_03-25-base (60fb469c46e44e6071193a3314cc442044fcf17a
)
This release is based on changes since release-2025-06-19_03-24-base (035f978fb5cffaef57f73242e1bb2a56423e84c3
).
Please note that some commits may be excluded from this release if they’re not relevant, or not modifying the GuestOS image.
Additionally, descriptions of some changes might have been slightly modified to fit the release notes format.
To see a full list of commits added since last release, compare the revisions on GitHub.
Features:
85eda9431
Consensus,Execution,Interface: [,] populate HTTP context args and proto with replication enum (#5657)e3f0f679f
Consensus,Interface(replay): Allow ic-replay to replay until a target height while also performing an operation (#5633)9ed0c77bc
Execution,Interface: rename_canister endpoint (#5441)92381a066
Execution,Interface: Add hash of EnvironmentVariables and update CanisterChange with hash (#5628)016e8ed65
Execution,Interface: Update CanisterSettings for environment variables (#5617)2fe9ac7c8
Execution,Interface: Add System APIenv_var_name_exists
(#5653)892a0d8e6
Execution,Interface: Introduce canister settings change and checkpoint update (#5605)83923a194
Interface(ICRC_Ledger): Add 1xfer to icrc3_supported_block_types (#5608)00713b982
Interface(ICRC_Ledger): Set index in existing SNS and ck ledgers (#5237)0383d5b09
Interface,Node: Support SEV config and direct boot in the VM runner (#5614)b2873804e
Node: add time synchronization metric to metrics proxy (#5613)d1845117c
Node: Wrap components as prep for container upgrade (#5604)
Bugfixes:
9bdaa01ad
Consensus,Interface: Revert bound on notarized-certified gap during catch up (#5697)32414320d
Consensus,Interface(test): Increase DKG interval of large subnet recovery test (#5649)cc066e995
Consensus,Interface(ic-backup): always wait until the most recent checkpoint has been created and verified, and manifest created (#5631)086c66357
Node: Don’t map ID when extracting (#5673)
Chores:
93032e97e
Crypto,Interface(crypto): Modify VetKD to be robust about duplicated node shares (#5459)e5bcbd889
Execution,Interface: refactor hard-coded constants in DTS tests (#5637)a31284422
Execution,Interface: Early parsing ofSnapshotId
(#5630)acc5b0734
Interface: Bump tempfile version to latest (#5621)f1efa7993
Interface,Message Routing: Document flush_tip_channel (#5638)75c8507f6
Interface,Node: Move guest_vm_runner to a separate crate (#5695)8b5beb958
Node: Update Base Image Refs [2025-06-19-0808] (#5619)
Refactoring:
cfde1a05b
Consensus,Interface(orchestrator): Remove dependency to canister_client in orchestrator (#5686)9f45074f0
Execution,Interface: Use separate System API types for response handlers in a composite query (#5561)
Other changes:
Full list of changes (including the ones that are not relevant to GuestOS) can be found on GitHub.
IC-OS Verification
To build and verify the IC-OS GuestOS disk image, after installing curl if necessary (sudo apt install curl
), run:
# From https://github.com/dfinity/ic#verifying-releases
curl -fsSL https://raw.githubusercontent.com/dfinity/ic/master/ci/tools/repro-check | python3 - -c 60fb469c46e44e6071193a3314cc442044fcf17a --guestos
The two SHA256 sums printed above from a) the downloaded CDN image and b) the locally built image, must be identical, and must match the SHA256 from the payload of the NNS proposal.
While not required for this NNS proposal, as we are only electing a new GuestOS version here, you have the option to verify the build reproducibility of the HostOS by passing --hostos
to the script above instead of --guestos
, or the SetupOS by passing --setupos
.