RHBA-2021:0634 - Bug Fix Advisory

Topic

Red Hat OpenShift Container Platform release 4.6.19 is now available with
updates to packages and images that fix several bugs.

Description

Red Hat OpenShift Container Platform is Red Hat's cloud computing
Kubernetes application platform solution designed for on-premise or private
cloud deployments.

This advisory contains the container images for Red Hat OpenShift Container
Platform 4.6.19. See the following advisory for the RPM packages for this
release:

https://access.redhat.com/errata/RHBA-2021:0633

Space precludes documenting all of the container images in this advisory.
See the following Release Notes documentation, which will be updated
shortly for this release, for details about these changes:

https://docs.openshift.com/container-platform/4.6/release_notes/ocp-4-6-release-notes.html

This update fixes the following bugs among others:

• Previously, the `httpClient()` chart repository did not consider any proxy environment variable, and thus no helm charts were displayed in the Developer Catalog. This update ensures that proxy environment variables are considered by providing a `http.ProxyFromEnvironment` function to the `Transport` struct's initialization. (BZ#1919138)
• Previously, when a Tuned profile was updated, the supervisor process would ignore profile updates and reload a valid profile. This update keeps state information about Tuned profile application successes and failures, which results in recovering from profile application failures when receiving new, valid profiles. (BZ#1920525)
• Previously, if the hostname from the vSphere metadata was not set before the `NetworkManager` started, the vSphere metadata would be ignored. This update now sets the hostname as `vsphere-hostname.service` before the `NetworkManager` starts, so long as this information is available within the vSphere metadata. (BZ#1904825)
• Previously, the Cluster Version Operator was not syncing `ClusterVersion` during graceful shutdowns. During updates, the outgoing Cluster Version Operator was likely to exit after verifying the incoming release, but before pushing the `verified: true` value into the `ClusterVersion` history. With this update, the Cluster Version Operator now provides additional time to perform a final `ClusterVersion` status synchronization during shutdown. As a result, the `verified` values of `ClusterVersion` are now consistently `true`. (BZ#1927515)
• The `dhclient` binary was removed from Red Hat Enterprise Linux CoreOS (RHCOS) when the switch to using `NetworkManager` in the initramfs was made. Consequently, users that had configured RHCOS to use `dhclient` for Dynamic Host Configuration Protocol (DHCP) operations were left with systems that were unable to properly acquire a DHCP address. This update includes the `dhclient` binary in RHCOS, and allows RHCOS systems to perform DHCP operations using `dhclient` successfully. (BZ#1915997)

You may download the oc tool and use it to inspect release image metadata
as follows:

$ oc adm release info
quay.io/openshift-release-dev/ocp-release:4.6.19-x86_64

The image digest is
sha256:47df4bfe1cfd6d63dd2e880f00075ed1d37f997fd54884ed823ded9f5d96abfc

(For s390x architecture)

$ oc adm release info
quay.io/openshift-release-dev/ocp-release:4.6.19-s390x

The image digest is
sha256:af04b7bd6599842e0ccdac5f1bf108ca2914bcc9c0ab5ba30d3563c329989b32

(For ppc64le architecture)

$ oc adm release info
quay.io/openshift-release-dev/ocp-release:4.6.19-ppc64le

The image digest is
sha256:b64ea18a3f1aa2e9a5162fd92f6342c7cea7ab2b13ac9bebcfc67a0ce9dfb77b

All OpenShift Container Platform 4.6 users are advised to upgrade to these
updated packages and images when they are available in the appropriate
release channel. To check for available updates, use the OpenShift Console
or the CLI oc command. Instructions for upgrading a cluster are available
at
https://docs.openshift.com/container-platform/4.6/updating/updating-cluster-between-minor.html#understanding-upgrade-channels_updating-cluster-between-minor.

Solution

For OpenShift Container Platform 4.6 see the following documentation, which
will be updated shortly for this release, for important instructions on how
to upgrade your cluster and fully apply this asynchronous errata update:

https://docs.openshift.com/container-platform/4.6/release_notes/ocp-4-6-release-notes.html

Details on how to access this content are available at
https://docs.openshift.com/container-platform/4.6/updating/updating-cluster-cli.html.

Affected Products

• Red Hat OpenShift Container Platform 4.6 for RHEL 8 x86_64
• Red Hat OpenShift Container Platform for Power 4.6 for RHEL 8 ppc64le
• Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.6 for RHEL 8 s390x

Fixes

• BZ - 1908940 - Skip TestKernelType test on OKD, adjust TestExtensions
• BZ - 1913030 - [release-4.6] recycler template should be moved to KCM operator
• BZ - 1915068 - Build operator-registry with golang-1.15
• BZ - 1915997 - [4.6.z] RHCOS 4.6 ostree removed dhclient
• BZ - 1920525 - NTO does not update when the tuned profile is updated.
• BZ - 1921180 - CVO transitions from "Initializing" to "Updating" despite not attempting many manifests
• BZ - 1921554 - (release-4.6) Collect logs from openshift-sdn namespace
• BZ - 1924785 - Cinder volume provisioning crashes on nil cloud provider
• BZ - 1927515 - 4.5.15 and later cluster-version operator does not sync ClusterVersion status before exiting, leaving 'verified: false' even for verified updates
• BZ - 1929404 - [RFE] linuxptp operator needs to expose the uds_address_socket to be used by an application pod

CVEs

(none)

References

(none)