RHBA-2017:0189 - Bug Fix Advisory

Topic

Updated atomic-openshift-utils and openshift-ansible packages that fix several bugs are now available for OpenShift Container Platform 3.3 and 3.2.

Description

Red Hat OpenShift Container Platform is the company's cloud computing Platform-as-a-Service (PaaS) solution designed for on-premise or private cloud deployments.

The atomic-openshift-utils and openshift-ansible packages contain the installation utility and Ansible requirements for installing and upgrading OpenShift Container Platform 3.

This update fixes the following bugs:

• The dnsmasq configuration previously included the strict-order option, which meant that dnsmasq would iterate through the host's nameservers in order. This meant that if the first nameserver had failed, a lengthy timeout was observed while dnsmasq waits before moving on to the next nameserver. This bug fix removes the strict-order option, and as a result dnsmasq now prefers nameservers that it knows to be responsive over those which are unresponsive, ensuring faster name resolution. If you wish add this or any other option, use the advanced installer's `openshift_node_dnsmasq_additional_config_file` Ansible variable, which allows you to provide the path to a dnsmasq configuration file that will be deployed on all nodes. (BZ#1400130, BZ#1400139)
• The NetworkManager dispatcher script previously did not correctly update the /etc/resolv.conf file after a host was rebooted. This bug fix updates the script to ensure that /etc/resolv.conf is updated on reboot, ensuring proper use of dnsmasq. (BZ#1401427, BZ#1401428)
• The logging-deployer template had two fields defined incorrectly. This bug fix resolves those errors, and logging upgrades now work properly for OpenShift Container Platform 3.3. (BZ#1409475)

All OpenShift Container Platform 3.3 and 3.2 users are advised to upgrade to these updated packages.

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.

To apply this update, run the following on all hosts where you intend to initiate Ansible-based installation or upgrade procedures:

# yum update atomic-openshift-utils

This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/articles/11258.

Affected Products

• Red Hat OpenShift Container Platform 3.3 x86_64

Fixes

• BZ - 1400130 - [3.3] dnsmasq should not set strict-order
• BZ - 1400139 - [3.2] dnsmasq should not set strict-order
• BZ - 1401427 - [3.3]The nameservers in /etc/resolv.conf are generated to non-node's ip by NetworkManager after rebooting nodes
• BZ - 1401428 - [3.2]The nameservers in /etc/resolv.conf are generated to non-node's ip by NetworkManager after rebooting nodes
• BZ - 1409475 - [3.3] Rolebindings fail to update while upgrading EFK

CVEs

(none)

References

(none)