Upgrade Cassandra clusters to 4.1.11
Closed, ResolvedPublic
Actions

Assigned To

Authored By

	Eevans
	Feb 25 2026, 9:44 PM

Description

We routinely upgrade to stay (more or less) current with bug fix releases, and it is that time again. Additionally, it may ~~be necessary~~ make sense to upgrade to Cassandra 5.x in order to get support for Java 17 (T418010), which in turns is needed to upgrade to Bookworm (T357791). When we do upgrade to Cassandra 5, we should do so from the latest 4.1.x.

aqs
cassandra-dev
restbase
sessionstore

CHANGES.txt

4.1.11
 * Fix ant generate-eclipse-files (CASSANDRA-21215)
 * No need to evict already prepared statements, as it creates a race condition between multiple threads (CASSANDRA-17401)
 * Disk usage guardrail cannot be disabled when failure threshold is reached (CASSANDRA-21057)
 * ReadCommandController should close fast to avoid deadlock when building secondary index (CASSANDRA-19564)
 * Redact security-sensitive information in system_views.settings (CASSANDRA-20856)
Merged from 4.0:
 * Add option to disable cqlsh history (CASSANDRA-21180)
 * Rate limit password changes (CASSANDRA-21202)
 * Node does not send multiple inflight echos (CASSANDRA-18866)
 * Obsolete expired SSTables before compaction starts (CASSANDRA-19776)
 * Switch lz4-java to at.yawk.lz4 version due to CVE (CASSANDRA-21052)
 * Restrict BytesType compatibility to scalar types only (CASSANDRA-20982)
 * Backport fix to nodetool gcstats output for direct memory (CASSANDRA-21037)
 * ArrayIndexOutOfBoundsException with repaired data tracking and counters (CASSANDRA-20871)
 * Fix cleanup of old incremental repair sessions in case of owned token range changes or a table deleting (CASSANDRA-20877)
 * Fix memory leak in BufferPoolAllocator when a capacity needs to be extended (CASSANDRA-20753)
 * Leveled Compaction doesn't validate maxBytesForLevel when the table is altered/created (CASSANDRA-20570)
 * Updated dtest-api to 0.0.18 and removed JMX-related classes that now live in the dtest-api (CASSANDRA-20884)
 * Fixed incorrect error message constant for keyspace name length validation (CASSANDRA-20915)
 * update shaded cassandra-driver-core to 3.11.5 (CASSANDRA-20904)


4.1.10
 * Improve CommitLogSegmentReader to skip SyncBlocks correctly in case of CRC errors (CASSANDRA-20664)
 * Do not crash on first boot with data_disk_usage_max_disk_size set when data directory is not created yet (CASSANDRA-20787)
 * Rework / simplification of nodetool get/setguardrailsconfig commands (CASSANDRA-20778)
 * IntrusiveStack.accumulate is not accumulating correctly (CASSANDRA-20670)
 * Add nodetool get/setguardrailsconfig commands (CASSANDRA-19552)
Merged from 4.0:
 * Prevent too long table names not fitting file names (CASSANDRA-20389)
 * Fix IndexOutOfBoundsException in sstablemetadata tool when a range tombstone is a max clustering value (CASSANDRA-20855)
 * Update Jackson to 2.19.2 (CASSANDRA-20848)
 * Update commons-lang3 to 3.18.0 (CASSANDRA-20849)
 * Add NativeTransportMaxConcurrentConnectionsPerIp to StorageProxyMBean (CASSANDRA-20642)
 * Make secondary index implementations notified about rows in fully expired SSTables in compaction (CASSANDRA-20829)
 * Ensure prepared_statement INSERT timestamp precedes eviction DELETE (CASSANDRA-19703)


4.1.9
 * Grant permission on keyspaces system_views and system_virtual_schema not possible (CASSANDRA-20171)
 * Fix mixed mode paxos ttl commit hang (CASSANDRA-20514)
 * Fix paxos mixed mode infinite loop (CASSANDRA-20493)
 * Optionally skip exception logging on invalid legacy protocol magic exception (CASSANDRA-19483)
 * Fix SimpleClient ability to release acquired capacity (CASSANDRA-20202)
 * Fix WaitQueue.Signal.awaitUninterruptibly may block forever if invoking thread is interrupted (CASSANDRA-20084)
Merged from 4.0:
 * Gossip doesn't converge due to race condition when updating EndpointStates multiple fields (CASSANDRA-20659)
 * Handle sstable metadata stats file getting a new mtime after compaction has finished (CASSANDRA-18119)
 * Honor MAX_PARALLEL_TRANSFERS correctly (CASSANDRA-20532)
 * Updating a column with a new TTL but same expiration time is non-deterministic and causes repair mismatches. (CASSANDRA-20561)
 * Avoid computing prepared statement size for unprepared batches (CASSANDRA-20556)
 * Fix Dropwizard Meter causes timeouts when infrequently used (CASSANDRA-19332)
 * Update OWASP dependency checker to version 12.1.0 (CASSANDRA-20501)
 * Suppress CVE-2025-25193 (CASSANDRA-20504)
 * Include in source tree and build packages a Snyk policy file that lists known false positives (CASSANDRA-20319)
 * Update zstd-jni to 1.5.7-2 (CASSANDRA-20453)
 * Suppress CVE-2024-12801 (CASSANDRA-20412)
 * Suppress CVE-2024-12798 (CASSANDRA-20408)
 * Fix autocompletion for role names/user names (CASSANDRA-20175)
 * Support null column value tombstones in FQL batch statements (CASSANDRA-20397)
 * Update Zstd library to 1.5.7-1 (CASSANDRA-20367)
 * Fix premature auto-failing of long-running repairs (CASSANDRA-20312)

Details

Related Changes in Gerrit:

Subject	Repo	Branch	Lines +/-
cassandra: promote 4.1.11 to '4.x'	operations/puppet	production	+5 -5
sessionstore: upgrade to Cassandra 4.1.11	operations/puppet	production	+1 -1
aqs: upgrade to Cassandra 4.1.11	operations/puppet	production	+1 -99
restbase: upgrade to Cassandra 4.1.11	operations/puppet	production	+1 -51
cassandra: pin dev package to 4.1.11	operations/puppet	production	+1 -1
restbase,aqs: canary Cassandra 4.1.11	operations/puppet	production	+148 -0
cassanrda_dev: upgrade to Cassandra 4.1.11 (cluster-wide)	operations/puppet	production	+1 -36
cassandra_dev: upgrade to Cassanra 4.1.11	operations/puppet	production	+35 -0

Customize query in gerrit

Related Objects
Search...

Status	Assigned	Task
Open	None	T357791 Cassandra upgrades to Debian Bookworm
Open	None	T418010 Upgrade Cassandra clusters to Java 17
Resolved	Eevans	T418417 Upgrade Cassandra clusters to 4.1.11

Event Timeline

Eevans created this task.Feb 25 2026, 9:44 PM

Restricted Application added a subscriber: Aklapper. · View Herald TranscriptFeb 25 2026, 9:44 PM

Eevans triaged this task as Medium priority.Feb 25 2026, 9:44 PM

Eevans moved this task from Backlog to In-Progress on the User-Eevans board.

Eevans mentioned this in T418419: Upgrade Cassandra clusters to 5.0.x.Feb 25 2026, 9:47 PM

Eevans added a parent task: T418010: Upgrade Cassandra clusters to Java 17.Mar 27 2026, 6:45 PM

Eevans renamed this task from Upgrade Cassandra clusters to 4.1.10 to Upgrade Cassandra clusters to 4.1.11.Mar 27 2026, 6:51 PM

component/cassandradev has had 4.1.11 imported to it, anything using target_version: dev will get a package upgrade (see: Cassandra#Cassandra version upgrades).

There aren't any (normative) changes to config between 4.1.8 & 4.1.11:

eevans@nyx:~/dev/src/git/cassandra/cassandra(4.1.11)$ for f in conf/*; do git diff 4.1.8:$f 4.1.11:$f; done
diff --git conf/cqlshrc.sample conf/cqlshrc.sample
index 4878b589bc..7d944f580b 100644
--- conf/cqlshrc.sample
+++ conf/cqlshrc.sample
@@ -108,6 +108,16 @@ port = 9042
 
 
 
+[history]
+;; Controls whether command history is saved to ~/.cassandra/cqlsh_history
+;; When disabled, existing history will still be loaded but new commands
+;; will not be saved. This can be useful for security purposes to prevent
+;; sensitive commands (e.g., those containing passwords) from being persisted.
+;; This can also be controlled via the --disable-history command line option.
+; disabled = false
+
+
+
 ;[ssl]
 ; certfile = ~/keys/cassandra.cert
 
fatal: path 'conf/hotspot_compiler' exists on disk, but not in '4.1.8'
eevans@nyx:~/dev/src/git/cassandra/cassandra(4.1.11)$

Eevans updated the task description. (Show Details)Mar 27 2026, 9:30 PM

Change #1262310 had a related patch set uploaded (by Eevans; author: Eevans):

[operations/puppet@production] cassandra_dev: upgrade to Cassanra 4.1.11

https://gerrit.wikimedia.org/r/1262310

gerritbot added a project: Patch-For-Review.Mar 27 2026, 9:35 PM

Change #1262310 merged by Eevans:

[operations/puppet@production] cassandra_dev: upgrade to Cassanra 4.1.11

https://gerrit.wikimedia.org/r/1262310

Maintenance_bot removed a project: Patch-For-Review.Mar 30 2026, 3:31 PM

Mentioned in SAL (#wikimedia-operations) [2026-03-30T15:31:47Z] <urandom> upgrade cassandra-dev2001 to Cassandra 4.1.11 — T418417

Eevans updated the task description. (Show Details)Mar 30 2026, 3:32 PM

Change #1264723 had a related patch set uploaded (by Eevans; author: Eevans):

[operations/puppet@production] cassanrda_dev: upgrade to Cassandra 4.1.11 (cluster-wide)

https://gerrit.wikimedia.org/r/1264723

gerritbot added a project: Patch-For-Review.Mar 30 2026, 7:28 PM

Change #1264723 merged by Eevans:

[operations/puppet@production] cassanrda_dev: upgrade to Cassandra 4.1.11 (cluster-wide)

https://gerrit.wikimedia.org/r/1264723

Mentioned in SAL (#wikimedia-operations) [2026-03-30T20:06:21Z] <eevans@cumin1003> START - Cookbook sre.cassandra.roll-restart for nodes matching cassandra-dev200[2-3].codfw.wmnet: Applying upgrade to Cassandra 4.1.11 — T418417 - eevans@cumin1003

Mentioned in SAL (#wikimedia-operations) [2026-03-30T20:19:56Z] <eevans@cumin1003> END (PASS) - Cookbook sre.cassandra.roll-restart (exit_code=0) for nodes matching cassandra-dev200[2-3].codfw.wmnet: Applying upgrade to Cassandra 4.1.11 — T418417 - eevans@cumin1003

Maintenance_bot removed a project: Patch-For-Review.Mar 30 2026, 8:31 PM

Eevans updated the task description. (Show Details)Mar 30 2026, 8:42 PM

Change #1264741 had a related patch set uploaded (by Eevans; author: Eevans):

[operations/puppet@production] restbase,aqs: canary Cassandra 4.1.11

https://gerrit.wikimedia.org/r/1264741

gerritbot added a project: Patch-For-Review.Mar 30 2026, 8:54 PM

Change #1264741 merged by Eevans:

[operations/puppet@production] restbase,aqs: canary Cassandra 4.1.11

https://gerrit.wikimedia.org/r/1264741

Maintenance_bot removed a project: Patch-For-Review.Mar 31 2026, 2:31 PM

Mentioned in SAL (#wikimedia-operations) [2026-03-31T16:37:56Z] <eevans@cumin1003> START - Cookbook sre.cassandra.roll-restart for nodes matching aqs1010.eqiad.wmnet: Upgrade Cassandra to 4.1.11 — T418417 - eevans@cumin1003

Mentioned in SAL (#wikimedia-operations) [2026-03-31T16:45:41Z] <eevans@cumin1003> END (PASS) - Cookbook sre.cassandra.roll-restart (exit_code=0) for nodes matching aqs1010.eqiad.wmnet: Upgrade Cassandra to 4.1.11 — T418417 - eevans@cumin1003

Mentioned in SAL (#wikimedia-operations) [2026-03-31T16:48:15Z] <eevans@cumin1003> START - Cookbook sre.cassandra.roll-restart for nodes matching aqs2001.codfw.wmnet: Upgrade Cassandra to 4.1.11 — T418417 - eevans@cumin1003

Mentioned in SAL (#wikimedia-operations) [2026-03-31T16:55:57Z] <eevans@cumin1003> END (PASS) - Cookbook sre.cassandra.roll-restart (exit_code=0) for nodes matching aqs2001.codfw.wmnet: Upgrade Cassandra to 4.1.11 — T418417 - eevans@cumin1003

Mentioned in SAL (#wikimedia-operations) [2026-03-31T17:18:31Z] <eevans@cumin1003> START - Cookbook sre.cassandra.roll-restart for nodes matching restbase[1031,2034]*: Upgrade Cassandra to 4.1.11 — T418417 - eevans@cumin1003

Mentioned in SAL (#wikimedia-operations) [2026-03-31T17:35:54Z] <eevans@cumin1003> END (PASS) - Cookbook sre.cassandra.roll-restart (exit_code=0) for nodes matching restbase[1031,2034]*: Upgrade Cassandra to 4.1.11 — T418417 - eevans@cumin1003

Mentioned in SAL (#wikimedia-operations) [2026-03-31T17:46:48Z] <eevans@cumin1003> START - Cookbook sre.cassandra.roll-restart for nodes matching restbase[1031,2034]*,aqs[1010,2001]*: Actually upgrade Cassandra to 4.1.11 — T418417 - eevans@cumin1003

Mentioned in SAL (#wikimedia-operations) [2026-03-31T18:19:42Z] <eevans@cumin1003> END (PASS) - Cookbook sre.cassandra.roll-restart (exit_code=0) for nodes matching restbase[1031,2034]*,aqs[1010,2001]*: Actually upgrade Cassandra to 4.1.11 — T418417 - eevans@cumin1003

Change #1265567 had a related patch set uploaded (by Eevans; author: Eevans):

[operations/puppet@production] cassandra: pin dev package to 4.1.11

https://gerrit.wikimedia.org/r/1265567

gerritbot added a project: Patch-For-Review.Mar 31 2026, 8:49 PM

Change #1265567 merged by Eevans:

[operations/puppet@production] cassandra: pin dev package to 4.1.11

https://gerrit.wikimedia.org/r/1265567

Eevans updated the task description. (Show Details)Mar 31 2026, 8:59 PM

Maintenance_bot removed a project: Patch-For-Review.Mar 31 2026, 9:31 PM

Change #1266387 had a related patch set uploaded (by Eevans; author: Eevans):

[operations/puppet@production] restbase: upgrade to Cassandra 4.1.11

https://gerrit.wikimedia.org/r/1266387

Change #1266388 had a related patch set uploaded (by Eevans; author: Eevans):

[operations/puppet@production] aqs: upgrade to Cassandra 4.1.11

https://gerrit.wikimedia.org/r/1266388

Change #1266389 had a related patch set uploaded (by Eevans; author: Eevans):

[operations/puppet@production] sessionstore: upgrade to Cassandra 4.1.11

https://gerrit.wikimedia.org/r/1266389

Eevans updated the task description. (Show Details)Apr 1 2026, 8:27 PM

Change #1266387 merged by Eevans:

[operations/puppet@production] restbase: upgrade to Cassandra 4.1.11

https://gerrit.wikimedia.org/r/1266387

Mentioned in SAL (#wikimedia-operations) [2026-04-06T14:26:23Z] <eevans@cumin1003> START - Cookbook sre.cassandra.roll-restart for nodes matching A:restbase-eqiad: Actually upgrade Cassandra to 4.1.11 — T418417 - eevans@cumin1003

Mentioned in SAL (#wikimedia-operations) [2026-04-06T16:31:53Z] <eevans@cumin1003> END (PASS) - Cookbook sre.cassandra.roll-restart (exit_code=0) for nodes matching A:restbase-eqiad: Actually upgrade Cassandra to 4.1.11 — T418417 - eevans@cumin1003

Mentioned in SAL (#wikimedia-operations) [2026-04-06T16:32:29Z] <eevans@cumin1003> START - Cookbook sre.cassandra.roll-restart for nodes matching A:restbase-codfw: Actually upgrade Cassandra to 4.1.11 — T418417 - eevans@cumin1003

Mentioned in SAL (#wikimedia-operations) [2026-04-06T18:37:06Z] <eevans@cumin1003> END (PASS) - Cookbook sre.cassandra.roll-restart (exit_code=0) for nodes matching A:restbase-codfw: Actually upgrade Cassandra to 4.1.11 — T418417 - eevans@cumin1003

Eevans updated the task description. (Show Details)Apr 6 2026, 7:51 PM

Change #1266388 merged by Eevans:

[operations/puppet@production] aqs: upgrade to Cassandra 4.1.11

https://gerrit.wikimedia.org/r/1266388

Mentioned in SAL (#wikimedia-operations) [2026-04-06T20:00:43Z] <eevans@cumin1003> START - Cookbook sre.cassandra.roll-restart for nodes matching A:aqs-eqiad: Actually upgrade Cassandra to 4.1.11 — T418417 - eevans@cumin1003

Mentioned in SAL (#wikimedia-operations) [2026-04-06T21:25:28Z] <eevans@cumin1003> END (PASS) - Cookbook sre.cassandra.roll-restart (exit_code=0) for nodes matching A:aqs-eqiad: Actually upgrade Cassandra to 4.1.11 — T418417 - eevans@cumin1003

Mentioned in SAL (#wikimedia-operations) [2026-04-06T21:26:15Z] <eevans@cumin1003> START - Cookbook sre.cassandra.roll-restart for nodes matching A:aqs-codfw: Actually upgrade Cassandra to 4.1.11 — T418417 - eevans@cumin1003

Mentioned in SAL (#wikimedia-operations) [2026-04-06T22:56:06Z] <eevans@cumin1003> END (PASS) - Cookbook sre.cassandra.roll-restart (exit_code=0) for nodes matching A:aqs-codfw: Actually upgrade Cassandra to 4.1.11 — T418417 - eevans@cumin1003

Eevans updated the task description. (Show Details)Apr 6 2026, 10:57 PM

Change #1266389 merged by Eevans:

[operations/puppet@production] sessionstore: upgrade to Cassandra 4.1.11

https://gerrit.wikimedia.org/r/1266389

Mentioned in SAL (#wikimedia-operations) [2026-04-07T13:40:28Z] <eevans@cumin1003> START - Cookbook sre.cassandra.roll-restart for nodes matching sessionstore2*: Upgrade Cassandra to 4.1.11 — T418417 - eevans@cumin1003

Mentioned in SAL (#wikimedia-operations) [2026-04-07T13:58:21Z] <eevans@cumin1003> END (PASS) - Cookbook sre.cassandra.roll-restart (exit_code=0) for nodes matching sessionstore2*: Upgrade Cassandra to 4.1.11 — T418417 - eevans@cumin1003

Mentioned in SAL (#wikimedia-operations) [2026-04-07T13:58:46Z] <eevans@cumin1003> START - Cookbook sre.cassandra.roll-restart for nodes matching sessionstore1*: Upgrade Cassandra to 4.1.11 — T418417 - eevans@cumin1003

Mentioned in SAL (#wikimedia-operations) [2026-04-07T14:16:39Z] <eevans@cumin1003> END (PASS) - Cookbook sre.cassandra.roll-restart (exit_code=0) for nodes matching sessionstore1*: Upgrade Cassandra to 4.1.11 — T418417 - eevans@cumin1003

Eevans updated the task description. (Show Details)Apr 7 2026, 2:20 PM

Maintenance_bot removed a project: Patch-For-Review.Apr 7 2026, 2:31 PM

Change #1268621 had a related patch set uploaded (by Eevans; author: Eevans):

[operations/puppet@production] cassandra: promote 4.1.11 to '4.x'

https://gerrit.wikimedia.org/r/1268621

gerritbot added a project: Patch-For-Review.Apr 7 2026, 6:13 PM

Change #1268621 merged by Eevans:

[operations/puppet@production] cassandra: promote 4.1.11 to '4.x'

https://gerrit.wikimedia.org/r/1268621

Done.

Eevans closed this task as Resolved.Apr 7 2026, 7:02 PM

Eevans claimed this task.