Issued:
2020-07-27
Updated:
2020-07-27

RHBA-2020:2990 - OpenShift Container Platform 3.11.248 bug fix and enhancement update

Synopsis

OpenShift Container Platform 3.11.248 bug fix and enhancement update

Type/Severity

Bug Fix Advisory None

Topic

Red Hat OpenShift Container Platform release 3.11.248 is now available with updates to packages and images that fix several bugs and add enhancements.

Description

Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.

This advisory contains the RPM packages for Red Hat OpenShift Container Platform 3.11.248. See the following advisory for the container images for this release:

https://access.redhat.com/errata/RHBA-2020:2991

This release fixes the following bugs among others:

  • Previously, the egress IP tracker had methods that locked eit.mutex and had methods that called EVM functions that locked evm.mutex. Because evm.mutex had to write to the evm.updates channel, which was not buffered and was blocked until eit.setNodeOffline ran, this function also locked eit.mutex`. This caused a deadlock when there was a large amount of egress IPs. This bug fix removes the deadlock by buffering the updates channel so that it only serves as a notification system rather than containing actual data. (BZ#1824243)

  • Previously, the conditional set on a task checking the openshift_master_cluster_hostname variable expected the masters group in the inventory to be set. This caused the masters group to fail if it was not defined. This bug fix adds a conditional to check if masters is defined; if masters is not defined, the task is skipped instead of failing on an undefined variable. (BZ#1828484)

  • Previously, when providing a custom openshift_node_groups list, not a ConfigMaps were created. This was caused by new ConfigMap creation code that only created ConfigMaps if they were assigned to an active host. This code has been reverted, so all ConfigMaps specified in a openshift_node_groups list are created. (BZ#1845676)

  • Previously, Prometheus counters that show the number of active sessions were preserved across router restarts and increased indefinitely. With this update, haproxy_frontend_current_session and haproxy_server_current_session now accurately depict the number of active sessions. The value of these counters are now reset upon router restart. (BZ#1847478)

  • Previously, nodes in CI for GCP assigned masters and infra nodes were assigned to the same group. This caused all nodes to be labeled as masters and none as infra nodes. The node group mapping has been changed to allow infra and compute nodes to be assigned to the same group and apply the proper infra and compute labels. Now the CI cluster is built properly with all nodes labeled appropriately. (BZ#1848723)

All OpenShift Container Platform 3.11 users are advised to upgrade to these updated packages and images.

Solution

Before applying this update, ensure all previously released errata relevant to your system is applied.

See the following documentation, which will be updated shortly for release 3.11.248, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:

This page is not included, but the link has been rewritten to point to the nearest parent document.https://docs.openshift.com/container-platform/3.11/release_notes/ocp_3_11_release_notes.html

This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at This content is not included.https://access.redhat.com/articles/11258.

Affected Products

ProductVersionArch
Red Hat OpenShift Container Platform3.11x86_64
Red Hat OpenShift Container Platform for Power3.11ppc64le

Updated Packages

  • atomic-openshift-metrics-server-3.11.248-1.git.1.b53e0e3.el7.src.rpm
  • atomic-enterprise-service-catalog-3.11.248-1.git.1.9aad2ef.el7.ppc64le.rpm
  • prometheus-alertmanager-3.11.248-1.git.1.66abd18.el7.x86_64.rpm
  • atomic-openshift-cluster-autoscaler-3.11.248-1.git.1.b5530f6.el7.x86_64.rpm
  • golang-github-prometheus-node_exporter-3.11.248-1.git.1.32f87fc.el7.src.rpm
  • golang-github-openshift-oauth-proxy-3.11.248-1.git.1.9885abb.el7.src.rpm
  • openshift-enterprise-cluster-capacity-3.11.248-1.git.1.37b107c.el7.src.rpm
  • prometheus-node-exporter-3.11.248-1.git.1.32f87fc.el7.ppc64le.rpm
  • atomic-enterprise-service-catalog-svcat-3.11.248-1.git.1.9aad2ef.el7.ppc64le.rpm
  • prometheus-3.11.248-1.git.1.ad54f5b.el7.ppc64le.rpm
  • python2-kuryr-kubernetes-3.11.248-1.git.1.f90c804.el7.noarch.rpm
  • python2-urllib3-1.24.3-1.el7.noarch.rpm
  • atomic-openshift-metrics-server-3.11.248-1.git.1.b53e0e3.el7.ppc64le.rpm
  • atomic-openshift-node-problem-detector-3.11.248-1.git.1.628ff22.el7.ppc64le.rpm
  • atomic-openshift-service-idler-3.11.248-1.git.1.4c42a90.el7.x86_64.rpm
  • openshift-ansible-docs-3.11.248-1.git.0.fd212c7.el7.noarch.rpm
  • atomic-openshift-metrics-server-3.11.248-1.git.1.b53e0e3.el7.x86_64.rpm
  • golang-github-openshift-oauth-proxy-3.11.248-1.git.1.9885abb.el7.ppc64le.rpm
  • golang-github-openshift-oauth-proxy-3.11.248-1.git.1.9885abb.el7.x86_64.rpm
  • atomic-enterprise-service-catalog-3.11.248-1.git.1.9aad2ef.el7.src.rpm
  • atomic-openshift-cluster-autoscaler-3.11.248-1.git.1.b5530f6.el7.ppc64le.rpm
  • jenkins-2-plugins-3.11.1593081747-1.el7.src.rpm
  • openshift-ansible-test-3.11.248-1.git.0.fd212c7.el7.noarch.rpm
  • golang-github-prometheus-prometheus-3.11.248-1.git.1.ad54f5b.el7.src.rpm
  • openshift-kuryr-common-3.11.248-1.git.1.f90c804.el7.noarch.rpm
  • openshift-kuryr-cni-3.11.248-1.git.1.f90c804.el7.noarch.rpm
  • atomic-openshift-dockerregistry-3.11.248-1.git.1.bb4a1fc.el7.x86_64.rpm
  • atomic-openshift-node-problem-detector-3.11.248-1.git.1.628ff22.el7.x86_64.rpm
  • prometheus-node-exporter-3.11.248-1.git.1.32f87fc.el7.x86_64.rpm
  • prometheus-alertmanager-3.11.248-1.git.1.66abd18.el7.ppc64le.rpm
  • golang-github-prometheus-alertmanager-3.11.248-1.git.1.66abd18.el7.src.rpm
  • atomic-openshift-descheduler-3.11.248-1.git.1.108ef32.el7.src.rpm
  • openshift-enterprise-cluster-capacity-3.11.248-1.git.1.37b107c.el7.ppc64le.rpm
  • openshift-ansible-3.11.248-1.git.0.fd212c7.el7.noarch.rpm
  • atomic-openshift-cluster-autoscaler-3.11.248-1.git.1.b5530f6.el7.src.rpm
  • openshift-kuryr-controller-3.11.248-1.git.1.f90c804.el7.noarch.rpm
  • atomic-openshift-service-idler-3.11.248-1.git.1.4c42a90.el7.src.rpm
  • atomic-openshift-node-problem-detector-3.11.248-1.git.1.628ff22.el7.src.rpm
  • atomic-enterprise-service-catalog-svcat-3.11.248-1.git.1.9aad2ef.el7.x86_64.rpm
  • atomic-openshift-descheduler-3.11.248-1.git.1.108ef32.el7.x86_64.rpm
  • python-urllib3-1.24.3-1.el7.src.rpm
  • openshift-kuryr-3.11.248-1.git.1.f90c804.el7.src.rpm
  • jenkins-2-plugins-3.11.1593081747-1.el7.noarch.rpm
  • openshift-ansible-3.11.248-1.git.0.fd212c7.el7.src.rpm
  • atomic-enterprise-service-catalog-3.11.248-1.git.1.9aad2ef.el7.x86_64.rpm
  • openshift-enterprise-autoheal-3.11.248-1.git.1.0020348.el7.x86_64.rpm
  • atomic-openshift-descheduler-3.11.248-1.git.1.108ef32.el7.ppc64le.rpm
  • openshift-enterprise-autoheal-3.11.248-1.git.1.0020348.el7.src.rpm
  • openshift-enterprise-autoheal-3.11.248-1.git.1.0020348.el7.ppc64le.rpm
  • openshift-ansible-playbooks-3.11.248-1.git.0.fd212c7.el7.noarch.rpm
  • openshift-ansible-roles-3.11.248-1.git.0.fd212c7.el7.noarch.rpm
  • openshift-enterprise-cluster-capacity-3.11.248-1.git.1.37b107c.el7.x86_64.rpm
  • atomic-openshift-dockerregistry-3.11.248-1.git.1.bb4a1fc.el7.src.rpm
  • prometheus-3.11.248-1.git.1.ad54f5b.el7.x86_64.rpm
  • atomic-openshift-service-idler-3.11.248-1.git.1.4c42a90.el7.ppc64le.rpm

Fixes

CVEs

References

(none)

Additional information