Issued:: 2020-03-19
Updated:: 2020-03-19

RHBA-2020:0793 - OpenShift Container Platform 3.11 bug fix and enhancement update

Synopsis

OpenShift Container Platform 3.11 bug fix and enhancement update

Type/Severity

Bug Fix Advisory None

Topic

Red Hat OpenShift Container Platform release 3.11.188 is now available with updates to packages and images that fix several bugs and add enhancements.

Description

Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.

This advisory contains the RPM packages for Red Hat OpenShift Container Platform 3.11.188. See the following advisory for the container images for this release:

https://access.redhat.com/errata/RHBA-2020:0794

This release fixes the following bugs:

The etcd monitoring configuration would reset when performing z-stream updates. As a result, manual changes to the ConfigMap were not retained. Now, etcd monitoring can be configured with Ansible and is persistent when the playbook is executed. (BZ#1703032)
Image names were not displayed properly in the web console. Now, the special formatting has been removed from the image names and is not part of the deployment configuration. Image names display as expected. (BZ#1760767)
Service Catalog requests to the OpenShift API would result in a non-responsive API. Now, the Service Catalog has been updated to use a newer service broker client that resolves connections properly. The API remains responsive and connection limits are not observed. (BZ#1766373)
User-facing ClusterRoles were missing rules for controller revisions. As a result, project administrators could not perform a successful deployment of a StatefulSet. Now, the permissions have been corrected and StatefulSet deployments operate correctly for project users. (BZ#1768878)
Prometheus retention settings were overwritten by Ansible playbooks. Now, Ansible supports setting the retention configuration and is applied successfully. (BZ#1804655)

This release includes the following enhancements:

The maximum size of syslog messages sent by Fluentd is now configurable for both syslog (UDP) and syslog_buffered (TCP) plugins. The environment variable REMOTE_SYSLOG_MAX_SIZE is now available. This variable specifies the maximum size of syslog messages in bytes. Before this enhancement, the maximum message size was hard coded to 1024 bytes, which is now the default setting. (BZ#1794085)

All OpenShift Container Platform 3.11 users are advised to upgrade to these updated packages and images.

Solution

Before applying this update, ensure all previously released errata relevant to your system is applied.

See the following documentation, which will be updated shortly for release 3.11.188, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:

This page is not included, but the link has been rewritten to point to the nearest parent document.https://docs.openshift.com/container-platform/3.11/release_notes/ocp_3_11_release_notes.html

This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at This content is not included.https://access.redhat.com/articles/11258.

Affected Products

Product	Version	Arch
Red Hat OpenShift Container Platform	3.11	x86_64
Red Hat OpenShift Container Platform for Power	3.11	ppc64le

Updated Packages

atomic-openshift-tests-3.11.188-1.git.0.db0eaa8.el7.x86_64.rpm
cri-o-debuginfo-1.11.16-0.8.dev.rhaos3.11.git6d43aae.el7.x86_64.rpm
atomic-openshift-hypershift-3.11.188-1.git.0.db0eaa8.el7.x86_64.rpm
atomic-openshift-service-idler-3.11.188-1.git.13.4bfd95c.el7.x86_64.rpm
atomic-openshift-web-console-3.11.188-1.git.50.6c5dfa6.el7.x86_64.rpm
atomic-openshift-web-console-3.11.188-1.git.50.6c5dfa6.el7.src.rpm
atomic-enterprise-service-catalog-svcat-3.11.188-1.git.0.378c33d.el7.x86_64.rpm
prometheus-3.11.188-1.git.0.c949832.el7.x86_64.rpm
apb-base-scripts-1.3.7-1.el7.noarch.rpm
openshift-enterprise-autoheal-3.11.188-1.git.0.c8be9e0.el7.x86_64.rpm
atomic-openshift-dockerregistry-3.11.188-1.git.0.65450c1.el7.src.rpm
prometheus-node-exporter-3.11.188-1.git.0.c9128cd.el7.x86_64.rpm
atomic-openshift-master-3.11.188-1.git.0.db0eaa8.el7.x86_64.rpm
atomic-openshift-node-problem-detector-3.11.188-1.git.0.78c30de.el7.x86_64.rpm
atomic-openshift-service-idler-3.11.188-1.git.13.4bfd95c.el7.ppc64le.rpm
atomic-openshift-tests-3.11.188-1.git.0.db0eaa8.el7.ppc64le.rpm
openshift-enterprise-cluster-capacity-3.11.188-1.git.0.acc4418.el7.src.rpm
atomic-openshift-3.11.188-1.git.0.db0eaa8.el7.x86_64.rpm
openshift-enterprise-cluster-capacity-3.11.188-1.git.0.acc4418.el7.ppc64le.rpm
atomic-openshift-clients-3.11.188-1.git.0.db0eaa8.el7.x86_64.rpm
atomic-openshift-dockerregistry-3.11.188-1.git.0.65450c1.el7.x86_64.rpm
atomic-openshift-cluster-autoscaler-3.11.188-1.git.0.197fe04.el7.src.rpm
atomic-openshift-hyperkube-3.11.188-1.git.0.db0eaa8.el7.ppc64le.rpm
golang-github-prometheus-node_exporter-3.11.188-1.git.0.c9128cd.el7.src.rpm
atomic-openshift-metrics-server-3.11.188-1.git.51.dfeac3d.el7.ppc64le.rpm
atomic-openshift-node-problem-detector-3.11.188-1.git.0.78c30de.el7.ppc64le.rpm
jenkins-2-plugins-3.11.1583723786-1.el7.noarch.rpm
openshift-ansible-3.11.188-1.git.0.accd104.el7.src.rpm
openshift-ansible-playbooks-3.11.188-1.git.0.accd104.el7.noarch.rpm
openshift-kuryr-controller-3.11.188-1.git.0.0f48c66.el7.noarch.rpm
atomic-openshift-descheduler-3.11.188-1.git.152.ef98a8a.el7.x86_64.rpm
atomic-openshift-metrics-server-3.11.188-1.git.51.dfeac3d.el7.src.rpm
atomic-enterprise-service-catalog-3.11.188-1.git.0.378c33d.el7.x86_64.rpm
atomic-openshift-3.11.188-1.git.0.db0eaa8.el7.src.rpm
atomic-openshift-docker-excluder-3.11.188-1.git.0.db0eaa8.el7.noarch.rpm
atomic-openshift-pod-3.11.188-1.git.0.db0eaa8.el7.x86_64.rpm
openshift-kuryr-cni-3.11.188-1.git.0.0f48c66.el7.noarch.rpm
python2-kuryr-kubernetes-3.11.188-1.git.0.0f48c66.el7.noarch.rpm
atomic-openshift-web-console-3.11.188-1.git.50.6c5dfa6.el7.ppc64le.rpm
openshift-ansible-3.11.188-1.git.0.accd104.el7.noarch.rpm
golang-github-prometheus-alertmanager-3.11.188-1.git.91.a66172f.el7.src.rpm
golang-github-openshift-oauth-proxy-3.11.188-1.git.0.176b35e.el7.x86_64.rpm
atomic-openshift-cluster-autoscaler-3.11.188-1.git.0.197fe04.el7.ppc64le.rpm
apb-base-scripts-1.3.7-1.el7.src.rpm
openshift-ansible-docs-3.11.188-1.git.0.accd104.el7.noarch.rpm
golang-github-prometheus-prometheus-3.11.188-1.git.0.c949832.el7.src.rpm
atomic-openshift-sdn-ovs-3.11.188-1.git.0.db0eaa8.el7.ppc64le.rpm
atomic-openshift-cluster-autoscaler-3.11.188-1.git.0.197fe04.el7.x86_64.rpm
atomic-openshift-pod-3.11.188-1.git.0.db0eaa8.el7.ppc64le.rpm
openshift-enterprise-autoheal-3.11.188-1.git.0.c8be9e0.el7.ppc64le.rpm
atomic-openshift-master-3.11.188-1.git.0.db0eaa8.el7.ppc64le.rpm
atomic-openshift-descheduler-3.11.188-1.git.152.ef98a8a.el7.src.rpm
atomic-enterprise-service-catalog-svcat-3.11.188-1.git.0.378c33d.el7.ppc64le.rpm
openshift-kuryr-3.11.188-1.git.0.0f48c66.el7.src.rpm
openshift-enterprise-cluster-capacity-3.11.188-1.git.0.acc4418.el7.x86_64.rpm
atomic-openshift-template-service-broker-3.11.188-1.git.0.db0eaa8.el7.x86_64.rpm
cri-o-1.11.16-0.8.dev.rhaos3.11.git6d43aae.el7.x86_64.rpm
atomic-openshift-node-3.11.188-1.git.0.db0eaa8.el7.x86_64.rpm
atomic-openshift-metrics-server-3.11.188-1.git.51.dfeac3d.el7.x86_64.rpm
atomic-openshift-descheduler-3.11.188-1.git.152.ef98a8a.el7.ppc64le.rpm
atomic-enterprise-service-catalog-3.11.188-1.git.0.378c33d.el7.ppc64le.rpm
golang-github-openshift-oauth-proxy-3.11.188-1.git.0.176b35e.el7.src.rpm
jenkins-2.204.2.1583722864-1.el7.src.rpm
golang-github-openshift-oauth-proxy-3.11.188-1.git.0.176b35e.el7.ppc64le.rpm
prometheus-alertmanager-3.11.188-1.git.91.a66172f.el7.x86_64.rpm
openshift-ansible-roles-3.11.188-1.git.0.accd104.el7.noarch.rpm
jenkins-2.204.2.1583722864-1.el7.noarch.rpm
atomic-enterprise-service-catalog-3.11.188-1.git.0.378c33d.el7.src.rpm
atomic-openshift-hypershift-3.11.188-1.git.0.db0eaa8.el7.ppc64le.rpm
atomic-openshift-node-3.11.188-1.git.0.db0eaa8.el7.ppc64le.rpm
atomic-openshift-excluder-3.11.188-1.git.0.db0eaa8.el7.noarch.rpm
openshift-enterprise-autoheal-3.11.188-1.git.0.c8be9e0.el7.src.rpm
openshift-kuryr-common-3.11.188-1.git.0.0f48c66.el7.noarch.rpm
prometheus-3.11.188-1.git.0.c949832.el7.ppc64le.rpm
atomic-openshift-template-service-broker-3.11.188-1.git.0.db0eaa8.el7.ppc64le.rpm
cri-o-debuginfo-1.11.16-0.8.dev.rhaos3.11.git6d43aae.el7.ppc64le.rpm
openshift-ansible-test-3.11.188-1.git.0.accd104.el7.noarch.rpm
atomic-openshift-3.11.188-1.git.0.db0eaa8.el7.ppc64le.rpm
cri-o-1.11.16-0.8.dev.rhaos3.11.git6d43aae.el7.src.rpm
atomic-openshift-hyperkube-3.11.188-1.git.0.db0eaa8.el7.x86_64.rpm
prometheus-alertmanager-3.11.188-1.git.91.a66172f.el7.ppc64le.rpm
atomic-openshift-clients-redistributable-3.11.188-1.git.0.db0eaa8.el7.x86_64.rpm
atomic-openshift-sdn-ovs-3.11.188-1.git.0.db0eaa8.el7.x86_64.rpm
cri-o-1.11.16-0.8.dev.rhaos3.11.git6d43aae.el7.ppc64le.rpm
prometheus-node-exporter-3.11.188-1.git.0.c9128cd.el7.ppc64le.rpm
atomic-openshift-node-problem-detector-3.11.188-1.git.0.78c30de.el7.src.rpm
atomic-openshift-service-idler-3.11.188-1.git.13.4bfd95c.el7.src.rpm
atomic-openshift-clients-3.11.188-1.git.0.db0eaa8.el7.ppc64le.rpm
jenkins-2-plugins-3.11.1583723786-1.el7.src.rpm

Fixes

CVEs

(none)

References

(none)

Additional information

The Red Hat security contact is This content is not included.secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
Offline Security Data data is available for integration with other systems. See Offline Security Data API to get started.