Release Notes

The original OLM is now renamed to OLM (Classic). Starting with OpenShift 4.18, the new OLM v1 is enabled by default, alongside the old OLM (Classic). OLM (Classic) remains fully supported.

The Secret Store CSI Driver Operator allows OCP to mount secrets, keys or certificates stored in external secret stores directly into pods. Supported secret store providers include AWS Secrets Manager, Azure Key Vault, Google Secret Manager, and HashiCorp Vault.

Deploying OCP across multiple vCenter clusters can be helpful for high availability. This feature has to be configured during installation and can’t be enabled after the fact on an already running cluster. There is no support for shared storage between multiple vCenters using this feature.

OpenShift 4.18 brings multiple improvements in the user-workload monitoring stack:

OpenShift 4.18 deprecates the haproxy.router.openshift.io/ip_whitelist and haproxy.router.openshift.io/ip_blacklist annotations in favor of haproxy.router.openshift.io/ip_allowlist and haproxy.router.openshift.io/ip_denylist.

New clusters setup with OpenShift 4.18 use crun as the container runtime by default. runC is still supported, and upgrading existing clusters from OpenShift 4.17 to 4.18 doesn’t change the container runtime.

The node disruption policies feature has been promoted to GA. A node disruption policy allows you to define the configuration changes that cause a disruption to your cluster, and which changes don’t. This allows you to reduce node downtime when making small machine configuration changes in your cluster.

The OpenShift SDN network plugin has been removed from the OpenShift Container Platform.

Validating Admission Policies are now available in OpenShift 4.17. These policies allow you to validate the incoming requests to the API server.