2025-11-07: Rails 7.2 Manual Rollout to production

Production Change

Change Summary

Related to: &1704

The plan is to test deploying a Rails 7.2 package to gitlab.com staging-main (gstg) and production-main (gprd).

During the change duration, auto-deploys will need to be paused.

Change Details

1. Services Impacted - GitLab Rails
2. Change Technician - @acafefebrissy (EMEA)
3. Change Reviewer - @jennykim-gitlab
4. Scheduled Date and Time (UTC in format YYYY-MM-DD HH:MM) - 2025-11-07 09:00
5. Time tracking - 8 hours
6. Downtime Component - none

Set Maintenance Mode in GitLab

If your change involves scheduled maintenance, add a step to set and unset maintenance mode per our runbooks. This will make sure SLA calculations adjust for the maintenance period.

No need for setting Maintenance mode.

Detailed steps for the change

Pre-execution steps

• Make sure all tasks in Change Technician checklist are done
• For C1 and C2 change issues, the SRE on-call has been informed prior to change being rolled out. (In #production channel, mention @sre-oncall and this issue and await their acknowledgement.)
  • The SRE on-call provided approval with the eoc_approved label on the issue.
• For C1, C2, or blocks deployments change issues, Release managers have been informed prior to change being rolled out. (In #production channel, mention @release-managers and this issue and await their acknowledgment.)
• There are currently no active incidents that are severity1 or severity2
• If the change involves doing maintenance on a database host, an appropriate silence targeting the host(s) should be added for the duration of the change.
• Set label changein-progress /label ~change::in-progress

Pause auto deploys

• Pause auto-deploy

  /chatops run auto_deploy pause

• Make sure the job deploy:start-new-pipeline of the latest auto-deploy pipeline doesn't run, so it doesn't create a new deploy auto-deploy pipeline.

  • Cancel the job from the pipeline: <canceled pipeline link>

Preparing the Auto-deploy Package

• Record the last Rails 7.1 package that was successfully deployed to production in the Rollback section

18.6.202511070250-0d20a88989b.f003730c2ed

• Set GITLAB_BUNDLE_GEMFILE to Gemfile.next in the following projects:
  • Omnibus-gitlab: https://dev.gitlab.org/gitlab/omnibus-gitlab/-/settings/ci_cd
  • CNG: https://dev.gitlab.org/gitlab/charts/components/images/-/settings/ci_cd
• Run git commit --allow-empty -m "Empty commit to trigger a new auto-deploy pkg" to add an extra commit to an existing Omnibus auto deploy branch in the security mirror. This new commit will be used to trigger creation of a new package in the next step.
  • Latest omnibus auto-deploy branch: https://gitlab.com/gitlab-org/security/gitlab/-/commits/18-6-auto-deploy-2025110710
  • Empty commit: https://gitlab.com/gitlab-org/security/gitlab/-/commit/ffc89185f0a8e7c2be204cc3cfef9cef4cb73833
• Trigger creation of a new package by running the auto_build: Create new package scheduled pipeline:. You can find the new tag on:
  • Omnibus: https://dev.gitlab.org/gitlab/omnibus-gitlab/-/tags
  • CNG: https://dev.gitlab.org/gitlab/charts/components/images/-/tags
  • or https://auto-deploy-view-e121e0.gitlab.io/ (this updates every 10 mins).
• The pipelines should be created automatically:
  • CNG: https://dev.gitlab.org/gitlab/charts/components/images/-/pipelines
  • Omnibus: https://dev.gitlab.org/gitlab/omnibus-gitlab/-/pipelines
• Set MANUAL_GPRD_DEPLOY to true in https://ops.gitlab.net/gitlab-com/gl-infra/k8s-workloads/gitlab-com/-/settings/ci_cd

Rollout up to staging

• /chatops run auto_deploy pipeline 18.6.202511071016-ffc89185f0a.e3d48169378 with the package version
  • Auto-deploy pipeline: https://ops.gitlab.net/gitlab-org/release/tools/-/pipelines/5176032
• Notify Slack channels #development, #backend, #frontend and #staging-ref that the deployment has started.
• Ping monitoring engineer (@igor / @igor.drozdov) and @release-managers in Slack when package is deployed to gstg-cny.
  • Check monitoring

• Make sure Quality smoke and reliable pipelines on gstg-cny have passed. If there are failures, ask the Quality on-call to have a look to determine if the failures are related to the Rails 7.2 rollout.
• Let deployment continue up to gprd-cny.
• Ping monitoring engineer (@igor / @igor.drozdov) and @release-managers in Slack when package is deployed to gprd-cny.
  • Check monitoring
• Make sure Quality smoke and reliable pipelines on gprd-cny have passed. If there are failures, ask the Quality on-call to have a look to determine if the failures are related to the Rails 7.2 rollout.
• Promote the package to gstg once the monitoring engineers (@igor / @igor.drozdov) give green light.
• Keep an eye for any gprd deployment jobs and cancel them. Cancelled production:checks job
• Ping monitoring engineer (@igor / @igor.drozdov) and @release-managers in Slack when package is deployed to gstg.
  • Check monitoring

Deploy to Production

We will manually deploy to the zonal clusters manually, then the regional cluster. Bake to account for monitoring time in-between each cluster.

• Double check that MANUAL_GPRD_DEPLOY has been set to true in https://ops.gitlab.net/gitlab-com/gl-infra/k8s-workloads/gitlab-com/-/settings/ci_cd
• Cancel notify_success:gprd job to not accidentally announce a successful deploy during baking time of manual jobs
• Restart the previously cancelled gprd deployment job(s) to start deployment to production

Zonal cluster b

• Manually run gprd-us-east1-b:auto-deploy
• Ping monitoring engineer (@igor / @igor.drozdov) and @release-managers in Slack when package is deployed to the zonal cluster gprd-us-east1-b.
  • Check monitoring. Remember to set the zone to b
• Bake for 30 minutes, or until monitoring engineer gives green light.

Zonal cluster c

• Manually run gprd-us-east1-c:auto-deploy
• Ping monitoring engineer (@igor / @igor.drozdov) and @release-managers in Slack when package is deployed to the zonal cluster gprd-us-east1-c.
  • Check monitoring. Remember to set the zone to c
• Bake for 30 minutes, or until engineers give green light.

Zonal cluster d

• Manually run gprd-us-east1-d:auto-deploy
• Ping monitoring engineer (@igor / @igor.drozdov) and @release-managers in Slack when package is deployed to the zonal cluster gprd-us-east1-d.
  • Check monitoring. Remember to set the zone to d
• Bake for 15 minutes, or until engineers give green light.

Regional cluster

• Manually run gprd:auto-deploy
• Inform the monitoring engineer (@igor / @igor.drozdov), @sre-on-call, and @release-managers in #production on the Slack when the package is deployed to gprd.
  • Check monitoring

Post-deploy

• Restart the previously cancelled notify_success:gprd job to notify the successful deployment to gprd on Slack #announcements channel
• Remove MANUAL_GPRD_DEPLOY in https://ops.gitlab.net/gitlab-com/gl-infra/k8s-workloads/gitlab-com/-/settings/ci_cd
• Do not execute post-deploy migrations for the rest of the day (EMEA and AMER) beyond this point.

Unpause auto deploys

• /chatops run auto_deploy unpause
• Set label changecomplete /label ~change::complete

Rollback

Last Rails 7.1 package that was successfully deployed to production

18.6.202511070250-0d20a88989b.f003730c2ed

Rollback steps - steps to be taken in the event of a need to rollback this change

Estimated Time to Complete (mins) - 60 minutes

Rollback production-canary only

If you have not promoted to production and need to rollback production-canary, follow the following steps:

• Notify @sre-on-call, @release-managers in #production that Production Canary will be drained.
• /chatops run canary --disable --production
• Follow the steps in Make sure that the next auto deploy package will be built with Rails 7.1

Rollback production and staging

If we need to rollback production and staging, follow the steps in https://gitlab.com/gitlab-org/release/docs/-/blob/master/runbooks/rollback-a-deployment.md to rollback to a Rails 7.1 package. The steps are reproduced here as well:

• /chatops run rollback check gprd
• Notify @sre-on-call, @release-managers in #production that a rollback is about to be started. Make sure they know that Canary will also be drained.
• /chatops run canary --disable --production
• /chatops run deploy <PACKAGE NAME> gprd --rollback
• /chatops run rollback check gstg
• Notify @sre-on-call, @release-managers in #staging that a rollback is about to be started. Make sure they know that Canary will also be drained.
• /chatops run canary --disable --staging
• /chatops run deploy <PACKAGE NAME> gstg --rollback

Make sure that the next auto deploy package will be built with Rails 7.1

• Remove GITLAB_BUNDLE_GEMFILE variable in https://dev.gitlab.org/gitlab/omnibus-gitlab/-/settings/ci_cd.
• Remove GITLAB_BUNDLE_GEMFILE variable in https://dev.gitlab.org/gitlab/charts/components/images/-/settings/ci_cd.
• If you had already unpaused auto-deploys, cancel any auto-deploy pipelines whose packages were built before you set the GITLAB_BUNDLE_GEMFILE variable
• Set label changeaborted /label ~change::aborted

Monitoring

Key metrics to observe

• Dashboards/metrics:
  • Monitor the following dashboards for unhealthy dip in service health for the environment/cluster that is being rolled out.
  • Deployment health, configurable with environment, stage, and type/service
  • Kubernetes compute resource/cluster health, configurable with clusters
  • Kubernetes compute resource/pods health, configurable with clusters and namespace
  • Kubernetes networking, configurable with clusters
  • Per-service dashboards (change env and stage to toggle between gstg/gprd and main/cny):
    • api (overview, containers)
    • web (overview, containers)
    • websockets (overview, containers)
    • git (overview, containers)
    • sidekiq (overview, containers)
  • Kibana - Puma (edit json.type to filter by service, json.stage for cny vs main)
    • Production 5xx responses
    • Staging 5xx responses
  • Kibana - Sidekiq (edit json.shard to switch between job types)
    • Failed production jobs
    • Failed staging jobs
  • Sentry
    • Production overview
    • Staging overview
• QA runs can be observed via Slack:
  • #announcements - Besides QA messages, multiple messages are sent to this channel to account for the different deployments.
  • QA slack channels - There is a channel per environment, for example, a failure on gstg and gstg-cny will be posted in #qa-staging, a failure on gprd-cny and gprd will be posted in #qa-production, etc.
• Dealing with deploy failures: https://gitlab.com/gitlab-org/release/docs/-/blob/master/general/deploy/failures.md

Change Reviewer checklist

C4 C3 C2 C1:

• Check if the following applies:
  • The scheduled day and time of execution of the change is appropriate.
  • The change plan is technically accurate.
  • The change plan includes estimated timing values based on previous testing.
  • The change plan includes a viable rollback plan.
  • The specified metrics/monitoring dashboards provide sufficient visibility for the change.

C2 C1:

• Check if the following applies:
  • The complexity of the plan is appropriate for the corresponding risk of the change. (i.e. the plan contains clear details).
  • The change plan includes success measures for all steps/milestones during the execution.
  • The change adequately minimizes risk within the environment/service.
  • The performance implications of executing the change are well-understood and documented.
  • The specified metrics/monitoring dashboards provide sufficient visibility for the change.
    • If not, is it possible (or necessary) to make changes to observability platforms for added visibility?
  • The change has a primary and secondary SRE with knowledge of the details available during the change window.
  • The change window has been agreed with Release Managers in advance of the change. If the change is planned for APAC hours, this issue has an agreed pre-change approval.
  • The labels blocks deployments and/or blocks feature-flags are applied as necessary.

Change Technician checklist

• The change plan is technically accurate.
• This Change Issue is linked to the appropriate Issue and/or Epic
• Change has been tested in staging and results noted in a comment on this issue.
  • The change was tested in canary
• A dry-run has been conducted and results noted in a comment on this issue.
• The change execution window respects the Production Change Lock periods.
• For C1 and C2 change issues, the change event is added to the GitLab Production calendar.
• For C1 and C2 change issues, the Infrastructure Manager provided approval with the manager_approved label on the issue. Mention @gitlab-org/saas-platforms/inframanagers in this issue to request approval and provide visibility to all infrastructure managers.
• For C1, C2, or blocks deployments change issues, confirm with Release managers that the change does not overlap or hinder any release process (In #production channel, mention @release-managers and this issue and await their acknowledgment.)