Bump github.com/nats-io/nats-server/v2 from 2.12.3 to 2.12.4

[dependabot]

Bumps github.com/nats-io/nats-server/v2 from 2.12.3 to 2.12.4.

Release notes

Sourced from github.com/nats-io/nats-server/v2's releases.

Release v2.12.4

Changelog

Refer to the 2.12 Upgrade Guide for backwards compatibility notes with 2.11.x.

Go Version

• 1.25.6 (#7736)

Dependencies

• github.com/google/go-tpm v0.9.8 (#7696)
• github.com/nats-io/nats.go v1.48.0 (#7696)
• github.com/klauspost/compress v1.18.3 (#7736)
• golang.org/x/crypto v0.47.0 (#7736)
• golang.org/x/sys v0.40.0 (#7736)

Added

Monitoring

• Added tls_cert_not_after to the varz monitoring endpoint for showing when TLS certificates are due to expire (#7709)

Improved

JetStream

• Creating consumer file stores no longer contends on the stream lock, improving consumer create performance on heavily loaded streams (#7700)
• Recalculating num pending with updated filter subjects no longer gathers and sorts the subject filter list twice (#7772)
• Switching to interest-based retention will now remove no-interest messages from the head of the stream (#7766)

Fixed

General

• The config parser now correctly detects and errors on self-referencing environment variables (#7737)
• Internal functions for handling headers should no longer corrupt message bodies if appended (#7752)

JetStream

• Raft single node elections now transition into leader state correctly (#7642)
• R1 streams will no longer incorrectly drift last sequence when exceeding limits (#7658)
• Deleted streams are no longer wrongfully revived if stalled on an upper-layer catchup (#7668)
• A panic that could happen when receiving a shutdown signal while JetStream is still starting up has been fixed (#7683)
• JetStream usage stats now correctly reflect purged whole blocks when optimising large purges (#7685)
• Recovering JetStream encryption keys now happens independently of the stream index recovery, fixing some cases where the key could be reset unexpectedly if the index is rebuilt (#7678)
• Non-replicated file-based consumers now detect corrupted state on disk and are deleted automatically (#7691)
• A panic that could occur when a compact and a hash check run concurrently on a store has been fixed (#7697)
• Raft no longer allows a repeat vote for the same term after a stepdown or leadership transfer (#7698)
• Replicated consumers are no longer incorrectly deleted if they become leader just as JetStream is about to shut down (#7699)

... (truncated)

Commits

• 34894c1 Release v2.12.4
• 4077af1 Cherry-picks for 2.12.4 (#7775)
• ae9b06e [IMPROVED] Remove no interest messages from head of stream
• acbb5fd [FIXED] Many concurrent checkInterestState goroutines
• e2dacf3 [FIXED] Interest stream desync after consumer filter update
• bd9298d [IMPROVED] Simplify recalculate pending with updated filter subject(s)
• 5d93f80 Release v2.12.4-RC.6
• 2b72612 Revert "Perform _writeFullState under read lock only"
• aa094cd Release v2.12.4-RC.5
• 190c6e6 Cherry-picks for 2.12.4-RC.5 (#7767)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)