Release Notes

This page lists notable changes in OpenShift releases which we find important. Reading release notes for you as a service.

OpenShift 4.10

The generally available version 4.10.3 got released on 2022-03-10. The release notes are available in the upstream documentation under OpenShift Container Platform 4.10 release notes.

CSI on vShpere

CSI on vShpere is now generally available but requires some minimal versions of vSphere software.

Change cluster network MTU after cluster installation
Ingress Controller router compression
Using fsGroup to reduce pod timeouts

If a storage volume contains many files (~1,000,000 or greater), you may experience pod timeouts.

OpenShift Container Platform 4.10 introduces the ability to use fsGroup and fsGroupChangePolicy to skip recursive permission change for the storage volume, therefore helping to avoid pod timeout problems.

— Upstream OpenShift 4.10 Release Notes
Changed alert rule names

Some alert rules got renamed. Check if your cluster configuration alters any of those alerts and update it accordingly.

TLS X.509 certificates must have a Subject Alternative Name

X.509 certificates must have a properly set the Subject Alternative Name field. If you update your cluster without this, you risk breaking your cluster or rendering it inaccessible.

— Upstream OpenShift 4.10 Release Notes
Upgraded clusters might have insecure RBAC rules

Clusters upgraded from version before 4.8 might allow unauthenticated API requests to certain resources. Check the OpenShift 4.10 release notes for details on which clusters are affected. There you will also find a snippet on how to resolve this.

OpenShift 4.9

OpenShift 4.9 was released on 2021-10-18. See the official release blog post Red Hat OpenShift 4.9 Is Now Generally Available for more information.

The release notes are available in the upstream documentation under OpenShift Container Platform 4.9 release notes.

Notable changes with a possible user-visible and operational impact:

Kubernetes 1.22 removed deprecated resource versions

OpenShift 4.9 ships with Kubernetes 1.22. Prior to Kubernetes 1.22 a bunch of resource version were marked as deprecated. In version 1.22, those deprecated versions got removed. Before you upgrade a cluster to OpenShift 4.9, one has to ensure that none of the deprecated resource versions are used. If this is ignored, things might break. See Preparing to upgrade to OpenShift Container Platform 4.9 for more details.

Example 1. Administrator acknowledgment

Upgrade to OpenShift 4.9 requires a special administrator acknowledgment. Check Preparing to upgrade to OpenShift Container Platform 4.9 for instructions on how to do so.

Ingress controller timeout configuration parameters
Mutual TLS Authentication

OpenShift 4.8

OpenShift 4.8 was released on 2021-08-02. See the official release blog post Red Hat OpenShift 4.8 Is Now Generally Available for more information.

The release notes are available in the upstream documentation under OpenShift Container Platform 4.8 release notes.

Notable changes with a possible user-visible impact:

HAproxy Upgrade to 2.2

OpenShift Container Platform updated to HAProxy 2.2, which changes HTTP header names to lowercase by default, for example, changing Host: xyz.com to host: xyz.com. For legacy applications that are sensitive to the capitalization of HTTP header names, use the Ingress Controller spec.httpHeaders.headerNameCaseAdjustments API field to accommodate legacy applications until they can be fixed. Make sure to add the necessary configuration by using spec.httpHeaders.headerNameCaseAdjustments before upgrading OpenShift Container Platform now that HAProxy 2.2 is available.

For more information, see Converting HTTP header case.

— Upstream OpenShift 4.8 Release Notes

The Commodore Component openshift4-ingress allows to configure the Ingress Controller like that:

parameters:
  openshift4_ingress:
    ingressControllers:
      default:
        httpHeaders:
          headerNameCaseAdjustments: true
Local Storage Operator

When upgrading to OpenShift 4.8, the Local Storage Operator needs to be updated too. The Commodore Component openshift4-local-storage needs to be configured to use the new version:

parameters:
  openshift4_local_storage:
    local_storage_operator:
      channel: "4.8"

With the introduction of Dynamic Facts this manual change won’t be necessary anymore. Please check if this change is still needed before manually pinning the channel.