Red Hat Product Errata RHBA-2017:0186 - Bug Fix Advisory
Issued:
2017-01-24
Updated:
2017-01-24

RHBA-2017:0186 - Bug Fix Advisory

Synopsis

Red Hat OpenShift Container Platform 3.4.0.40 bug fix update

Type/Severity

Bug Fix Advisory

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

Red Hat OpenShift Container Platform release 3.4.0.40 is now available with updates to packages and images that fix a bug.

Description

Red Hat OpenShift Container Platform is the company's cloud computing Platform-as-a-Service (PaaS) solution designed for on-premise or private cloud deployments.

This advisory contains the RPM packages for Red Hat OpenShift Container Platform release 3.4.0.40. See the following advisory for the container images for this release:

https://access.redhat.com/errata/RHBA-2017:0187

This update fixes the following bug:

  • Previously, upgrading from OpenShift Container Platform 3.3 to 3.4 caused all user identities to disappear, though they were still present in etcd, and OAuth-based users could no longer log in. New 3.4 installations were also affected. This was caused by an unintentional change in the etcd prefix for user identities; egressnetworkpolicies were similarly affected. This bug fix restores the previous etcd prefix for user identities and egressnetworkpolicies, and as a result users can log in again successfully.

Administrators who have already installed or upgraded to v3.4.0.39 must upgrade to v3.4.0.40, then perform a data migration using a data migration tool. See Solution section below. (BZ#1415570)

All OpenShift Container Platform 3 users are advised to upgrade to these updated packages and images.

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.

See the OpenShift Container Platform 3.4 documentation, which will be updated shortly for release 3.4.0.40, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:

https://docs.openshift.com/container-platform/3.4/release_notes/ocp_3_4_release_notes.html

This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/articles/11258.

Affected Products

  • Red Hat OpenShift Container Platform 3.4 x86_64

Fixes

  • BZ - 1415570 - Identity storage location in etcd changed from 3.3 to 3.4, upgrading causes all identities to be seen as missing

CVEs

(none)

References

(none)

Red Hat OpenShift Container Platform 3.4

SRPM
atomic-openshift-3.4.0.40-1.git.0.787e974.el7.src.rpm SHA-256: 96250d24316cdce4341a3f53eb8425ae3c97a91860565632f25bfb4db4100ef5
x86_64
atomic-openshift-3.4.0.40-1.git.0.787e974.el7.x86_64.rpm SHA-256: 19b6965a74f51ff90bbd031c4c4acc365a85535176b32c59a0030219dca6941e
atomic-openshift-clients-3.4.0.40-1.git.0.787e974.el7.x86_64.rpm SHA-256: 58075ea6c09e0dbf77009c7a5bb99057084d2b11f60767b9d9d4d19fe0af44d7
atomic-openshift-clients-redistributable-3.4.0.40-1.git.0.787e974.el7.x86_64.rpm SHA-256: e799d20a42f1eddb343ea9b7d52fddd52c138c5cd6484d95b872913f0a29da4c
atomic-openshift-docker-excluder-3.4.0.40-1.git.0.787e974.el7.noarch.rpm SHA-256: 416d90a57105a38797e3db1aaa5e56357fd2d9bf8a9ece1cd87d519c13ca7516
atomic-openshift-dockerregistry-3.4.0.40-1.git.0.787e974.el7.x86_64.rpm SHA-256: e3fad1b07b14aeb7b99953b6a9c131173e70e8a39cfd975531fb7b9ef6e966fa
atomic-openshift-excluder-3.4.0.40-1.git.0.787e974.el7.noarch.rpm SHA-256: f8c8923d09c89e85e37a1df455c1e5426d652a5500cbe0a5c115747644616489
atomic-openshift-master-3.4.0.40-1.git.0.787e974.el7.x86_64.rpm SHA-256: 412c83b6630066c8b136904a2c519160fbeda1ebf3070a6ad51f0c4812eafe96
atomic-openshift-node-3.4.0.40-1.git.0.787e974.el7.x86_64.rpm SHA-256: 9f13c7292c05ebf2e0a0501347b88c964e9ecb7e708274fc084796f3791b9619
atomic-openshift-pod-3.4.0.40-1.git.0.787e974.el7.x86_64.rpm SHA-256: 09beb991da7d1d7d0657882128b7cbb28b332b9e2d31bd08f9a7c0f4a27bcadc
atomic-openshift-sdn-ovs-3.4.0.40-1.git.0.787e974.el7.x86_64.rpm SHA-256: e54e10a49ecb1d52476a2090f309f0f67b7e38a4d4d7c9919e727d7417f50f06
atomic-openshift-tests-3.4.0.40-1.git.0.787e974.el7.x86_64.rpm SHA-256: 6c9045669eabb7e47bd390e331436c6703e16a597537a80ea1435a027e67fdec
tuned-profiles-atomic-openshift-node-3.4.0.40-1.git.0.787e974.el7.x86_64.rpm SHA-256: 77ef5162868dfccb2889a0ba8ef3440c9fe25fb0cb34748a8d93f4055c84bf4e

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.