RedHat: RHSA-2022-5069:01 Important: OpenShift Container Platform 4...

Advisories

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

=====================================================================
                   Red Hat Security Advisory

Synopsis:          Important: OpenShift Container Platform 4.11.0 bug fix and security update
Advisory ID:       RHSA-2022:5069-01
Product:           Red Hat OpenShift Enterprise
Advisory URL:      https://access.redhat.com/errata/RHSA-2022:5069
Issue date:        2022-08-10
CVE Names:         CVE-2018-25009 CVE-2018-25010 CVE-2018-25012 
                   CVE-2018-25013 CVE-2018-25014 CVE-2018-25032 
                   CVE-2019-5827 CVE-2019-13750 CVE-2019-13751 
                   CVE-2019-17594 CVE-2019-17595 CVE-2019-18218 
                   CVE-2019-19603 CVE-2019-20838 CVE-2020-13435 
                   CVE-2020-14155 CVE-2020-17541 CVE-2020-19131 
                   CVE-2020-24370 CVE-2020-28493 CVE-2020-35492 
                   CVE-2020-36330 CVE-2020-36331 CVE-2020-36332 
                   CVE-2021-3481 CVE-2021-3580 CVE-2021-3634 
                   CVE-2021-3672 CVE-2021-3695 CVE-2021-3696 
                   CVE-2021-3697 CVE-2021-3737 CVE-2021-4115 
                   CVE-2021-4156 CVE-2021-4189 CVE-2021-20095 
                   CVE-2021-20231 CVE-2021-20232 CVE-2021-23177 
                   CVE-2021-23566 CVE-2021-23648 CVE-2021-25219 
                   CVE-2021-31535 CVE-2021-31566 CVE-2021-36084 
                   CVE-2021-36085 CVE-2021-36086 CVE-2021-36087 
                   CVE-2021-38185 CVE-2021-38593 CVE-2021-40528 
                   CVE-2021-41190 CVE-2021-41617 CVE-2021-42771 
                   CVE-2021-43527 CVE-2021-43818 CVE-2021-44225 
                   CVE-2021-44906 CVE-2022-0235 CVE-2022-0778 
                   CVE-2022-1012 CVE-2022-1215 CVE-2022-1271 
                   CVE-2022-1292 CVE-2022-1586 CVE-2022-1621 
                   CVE-2022-1629 CVE-2022-1706 CVE-2022-1729 
                   CVE-2022-2068 CVE-2022-2097 CVE-2022-21698 
                   CVE-2022-22576 CVE-2022-23772 CVE-2022-23773 
                   CVE-2022-23806 CVE-2022-24407 CVE-2022-24675 
                   CVE-2022-24903 CVE-2022-24921 CVE-2022-25313 
                   CVE-2022-25314 CVE-2022-26691 CVE-2022-26945 
                   CVE-2022-27191 CVE-2022-27774 CVE-2022-27776 
                   CVE-2022-27782 CVE-2022-28327 CVE-2022-28733 
                   CVE-2022-28734 CVE-2022-28735 CVE-2022-28736 
                   CVE-2022-28737 CVE-2022-29162 CVE-2022-29810 
                   CVE-2022-29824 CVE-2022-30321 CVE-2022-30322 
                   CVE-2022-30323 CVE-2022-32250 
=====================================================================

1. Summary:

Red Hat OpenShift Container Platform release 4.11.0 is now available with
updates to packages and images that fix several bugs and add enhancements.

This release includes a security update for Red Hat OpenShift Container
Platform 4.11.

Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.

2. Description:

Red Hat OpenShift Container Platform is Red Hat's cloud computing
Kubernetes application platform solution designed for on-premise or private
cloud deployments.

This advisory contains the container images for Red Hat OpenShift Container
Platform 4.11.0. See the following advisory for the RPM packages for this
release:

https://access.redhat.com/errata/RHSA-2022:5068

Space precludes documenting all of the container images in this advisory.
See the following Release Notes documentation, which will be updated
shortly for this release, for details about these changes:

https://docs.openshift.com/container-platform/4.11/release_notes/ocp-4-11-release-notes.html

Security Fix(es):

* go-getter: command injection vulnerability (CVE-2022-26945)
* go-getter: unsafe download (issue 1 of 3) (CVE-2022-30321)
* go-getter: unsafe download (issue 2 of 3) (CVE-2022-30322)
* go-getter: unsafe download (issue 3 of 3) (CVE-2022-30323)
* nanoid: Information disclosure via valueOf() function (CVE-2021-23566)
* sanitize-url: XSS (CVE-2021-23648)
* minimist: prototype pollution (CVE-2021-44906)
* node-fetch: exposure of sensitive information to an unauthorized actor
(CVE-2022-0235)
* prometheus/client_golang: Denial of service using
InstrumentHandlerCounter (CVE-2022-21698)
* golang: crash in a golang.org/x/crypto/ssh server (CVE-2022-27191)
* go-getter: writes SSH credentials into logfile, exposing sensitive
credentials to local uses (CVE-2022-29810)
* opencontainers: OCI manifest and index parsing confusion (CVE-2021-41190)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

You may download the oc tool and use it to inspect release image metadata
as follows:

(For x86_64 architecture)

$ oc adm release info
quay.io/openshift-release-dev/ocp-release:4.11.0-x86_64

The image digest is
sha256:300bce8246cf880e792e106607925de0a404484637627edf5f517375517d54a4

(For aarch64 architecture)

$ oc adm release info
quay.io/openshift-release-dev/ocp-release:4.11.0-aarch64

The image digest is
sha256:29fa8419da2afdb64b5475d2b43dad8cc9205e566db3968c5738e7a91cf96dfe

(For s390x architecture)

$ oc adm release info
quay.io/openshift-release-dev/ocp-release:4.11.0-s390x

The image digest is
sha256:015d6180238b4024d11dfef6751143619a0458eccfb589f2058ceb1a6359dd46

(For ppc64le architecture)

$ oc adm release info
quay.io/openshift-release-dev/ocp-release:4.11.0-ppc64le

The image digest is
sha256:5052f8d5597c6656ca9b6bfd3de521504c79917aa80feb915d3c8546241f86ca

All OpenShift Container Platform 4.11 users are advised to upgrade to these
updated packages and images when they are available in the appropriate
release channel. To check for available updates, use the OpenShift Console
or the CLI oc command. Instructions for upgrading a cluster are available
at
https://docs.openshift.com/container-platform/4.11/updating/updating-cluster-cli.html

3. Solution:

For OpenShift Container Platform 4.11 see the following documentation,
which will be updated shortly for this release, for important instructions
on how to upgrade your cluster and fully apply this asynchronous errata
update:

https://docs.openshift.com/container-platform/4.11/release_notes/ocp-4-11-release-notes.html

Details on how to access this content are available at
https://docs.openshift.com/container-platform/4.11/updating/updating-cluster-cli.html

4. Bugs fixed (https://bugzilla.redhat.com/):

1817075 - MCC & MCO don't free leader leases during shut down -> 10 minutes of leader election timeouts
1822752 - cluster-version operator stops applying manifests when blocked by a precondition check
1823143 - oc adm release extract --command, --tools doesn't pull from localregistry when given a localregistry/image
1858418 - [OCPonRHV] OpenShift installer fails when Blank template is missing in oVirt/RHV
1859153 - [AWS] An IAM error occurred occasionally during the installation phase: Invalid IAM Instance Profile name
1896181 - [ovirt] install fails: due to terraform error "Cannot run VM. VM is being updated" on vm resource
1898265 - [OCP 4.5][AWS] Installation failed: error updating LB Target Group
1902307 - [vSphere] cloud labels management via cloud provider makes nodes not ready
1905850 - `oc adm policy who-can` failed to check the `operatorcondition/status` resource
1916279 - [OCPonRHV] Sometimes terraform installation fails on -failed to fetch Cluster(another terraform bug)
1917898 - [ovirt] install fails: due to terraform error "Tag not matched: expect  but got " on vm resource
1918005 - [vsphere] If there are multiple port groups with the same name installation fails
1918417 - IPv6 errors after exiting crictl
1918690 - Should update the KCM resource-graph timely with the latest configure
1919980 - oVirt installer fails due to terraform error "Failed to wait for Templte(...) to become ok"
1921182 - InspectFailed: kubelet Failed to inspect image: rpc error: code = DeadlineExceeded desc = context deadline exceeded
1923536 - Image pullthrough does not pass 429 errors back to capable clients
1926975 - [aws-c2s] kube-apiserver crashloops due to missing cloud config
1928932 - deploy/route_crd.yaml in openshift/router uses deprecated v1beta1 CRD API
1932812 - Installer uses the terraform-provider in the Installer's directory if it exists
1934304 - MemoryPressure Top Pod Consumers seems to be 2x expected value
1943937 - CatalogSource incorrect parsing validation
1944264 - [ovn] CNO should gracefully terminate OVN databases
1944851 - List of ingress routes not cleaned up when routers no longer exist - take 2
1945329 - In k8s 1.21 bump conntrack 'should drop INVALID conntrack entries' tests are disabled
1948556 - Cannot read property 'apiGroup' of undefined error viewing operator CSV
1949827 - Kubelet bound to incorrect IPs, referring to incorrect NICs in 4.5.x
1957012 - Deleting the KubeDescheduler CR does not remove the corresponding deployment or configmap
1957668 - oc login does not show link to console
1958198 - authentication operator takes too long to pick up a configuration change
1958512 - No 1.25 shown in REMOVEDINRELEASE for apis audited with k8s.io/removed-release 1.25 and k8s.io/deprecated true
1961233 - Add CI test coverage for DNS availability during upgrades
1961844 - baremetal ClusterOperator installed by CVO does not have relatedObjects
1965468 - [OSP] Delete volume snapshots based on cluster ID in their metadata
1965934 - can not get new result with "Refresh off" if click "Run queries" again
1965969 - [aws] the public hosted zone id is not correct in the destroy log, while destroying a cluster which is using BYO private hosted zone.
1968253 - GCP CSI driver can provision volume with access mode ROX
1969794 - [OSP] Document how to use image registry PVC backend with custom availability zones
1975543 - [OLM] Remove stale cruft installed by CVO in earlier releases
1976111 - [tracker] multipathd.socket is missing start conditions
1976782 - Openshift registry starts to segfault after S3 storage configuration
1977100 - Pod failed to start with message "set CPU load balancing: readdirent /proc/sys/kernel/sched_domain/cpu66/domain0: no such file or directory"
1978303 - KAS pod logs show: [SHOULD NOT HAPPEN] ...failed to convert new object...CertificateSigningRequest) to smd typed: .status.conditions: duplicate entries for key [type=\"Approved\"]
1978798 - [Network Operator] Upgrade: The configuration to enable network policy ACL logging is missing on the cluster upgraded from 4.7->4.8
1979671 - Warning annotation for pods with cpu requests or limits on single-node OpenShift cluster without workload partitioning
1982737 - OLM does not warn on invalid CSV
1983056 - IP conflict while recreating Pod with fixed name
1984785 - LSO CSV does not contain disconnected annotation
1989610 - Unsupported data types should not be rendered on operand details page
1990125 - co/image-registry is degrade because ImagePrunerDegraded: Job has reached the specified backoff limit
1990384 - 502 error on "Observe -> Alerting" UI after disabled local alertmanager
1992553 - all the alert rules' annotations "summary" and "description" should comply with the OpenShift alerting guidelines
1994117 - Some hardcodes are detected at the code level in orphaned code
1994820 - machine controller doesn't send vCPU quota failed messages to cluster install logs
1995953 - Ingresscontroller change the replicas to scaleup first time will be rolling update for all the ingress pods
1996544 - AWS region ap-northeast-3 is missing in installer prompt
1996638 - Helm operator manager container restart when CR is creating&deleting
1997120 - test_recreate_pod_in_namespace fails - Timed out waiting for namespace
1997142 - OperatorHub: Filtering the OperatorHub catalog is extremely slow
1997704 - [osp][octavia lb] given loadBalancerIP is ignored when creating a LoadBalancer type svc
1999325 - FailedMount MountVolume.SetUp failed for volume "kube-api-access" : object "openshift-kube-scheduler"/"kube-root-ca.crt" not registered
1999529 - Must gather fails to gather logs for all the namespace if server doesn't have volumesnapshotclasses resource
1999891 - must-gather collects backup data even when Pods fails to be created
2000653 - Add hypershift namespace to exclude namespaces list in descheduler configmap
2002009 - IPI Baremetal, qemu-convert takes to long to save image into drive on slow/large disks
2002602 - Storageclass creation page goes blank when "Enable encryption" is clicked if there is a syntax error in the configmap
2002868 - Node exporter not able to scrape OVS metrics
2005321 - Web Terminal is not opened on Stage of DevSandbox when terminal instance is not created yet
2005694 - Removing proxy object takes up to 10 minutes for the changes to propagate to the MCO
2006067 - Objects are not valid as a React child
2006201 - ovirt-csi-driver-node pods are crashing intermittently
2007246 - Openshift Container Platform - Ingress Controller does not set allowPrivilegeEscalation in the router deployment
2007340 - Accessibility issues on topology - list view
2007611 - TLS issues with the internal registry and AWS S3 bucket
2007647 - oc adm release info --changes-from does not show changes in repos that squash-merge
2008486 - Double scroll bar shows up on dragging the task quick search to the bottom
2009345 - Overview page does not load from openshift console for some set of users after upgrading to 4.7.19
2009352 - Add image-registry usage metrics to telemeter
2009845 - Respect overrides changes during installation
2010361 - OpenShift Alerting Rules Style-Guide Compliance
2010364 - OpenShift Alerting Rules Style-Guide Compliance
2010393 - [sig-arch][Late] clients should not use APIs that are removed in upcoming releases [Suite:openshift/conformance/parallel]
2011525 - Rate-limit incoming BFD to prevent ovn-controller DoS
2011895 - Details about cloud errors are missing from PV/PVC errors
2012111 - LSO still try to find localvolumeset which is already deleted
2012969 - need to figure out why osupdatedstart to reboot is zero seconds
2013144 - Developer catalog category links could not be open in a new tab (sharing and open a deep link works fine)
2013461 - Import deployment from Git with s2i expose always port 8080 (Service and Pod template, not Route) if another Route port is selected by the user
2013734 - unable to label downloads route in openshift-console namespace
2013822 - ensure that the `container-tools` content comes from the RHAOS plashets
2014161 - PipelineRun logs are delayed and stuck on a high log volume
2014240 - Image registry uses ICSPs only when source exactly matches image
2014420 - Topology page is crashed
2014640 - Cannot change storage class of boot disk when cloning from template
2015023 - Operator objects are re-created even after deleting it
2015042 - Adding a template from the catalog creates a secret that is not owned by the TemplateInstance
2015356 - Different status shows on VM list page and details page
2015375 - PVC creation for ODF/IBM Flashsystem shows incorrect types
2015459 - [azure][openstack]When image registry configure an invalid proxy, registry pods are CrashLoopBackOff
2015800 - [IBM]Shouldn't change status.storage.bucket and status.storage.resourceKeyCRN when update sepc.stroage,ibmcos with invalid value
2016425 - Adoption controller generating invalid metadata.Labels for an already adopted Subscription resource
2016534 - externalIP does not work when egressIP is also present
2017001 - Topology context menu for Serverless components always open downwards
2018188 - VRRP ID conflict between keepalived-ipfailover and cluster VIPs
2018517 - [sig-arch] events should not repeat pathologically expand_less failures -  s390x CI
2019532 - Logger object in LSO does not log source location accurately
2019564 - User settings resources (ConfigMap, Role, RB) should be deleted when a user is deleted
2020483 - Parameter $__auto_interval_period is in Period drop-down list
2020622 - e2e-aws-upi and e2e-azure-upi jobs are not working
2021041 - [vsphere] Not found TagCategory when destroying ipi cluster
2021446 - openshift-ingress-canary is not reporting DEGRADED state, even though the canary route is not available and accessible
2022253 - Web terminal view is broken
2022507 - Pods stuck in OutOfpods state after running cluster-density
2022611 - Remove BlockPools(no use case) and Object(redundat with Overview) tab on the storagesystem page for NooBaa only and remove BlockPools tab for External mode deployment
2022745 - Cluster reader is not able to list NodeNetwork* objects
2023295 - Must-gather tool gathering data from custom namespaces.
2023691 - ClusterIP internalTrafficPolicy does not work for ovn-kubernetes
2024427 - oc completion zsh doesn't auto complete
2024708 - The form for creating operational CRs is badly rendering filed names ("obsoleteCPUs" -> "Obsolete CP Us" )
2024821 - [Azure-File-CSI] need more clear info when requesting pvc with volumeMode Block
2024938 - CVE-2021-41190 opencontainers: OCI manifest and index parsing confusion
2025624 - Ingress router metrics endpoint serving old certificates after certificate rotation
2026356 - [IPI on Azure] The bootstrap machine type should be same as master
2026461 - Completed pods in Openshift cluster not releasing IP addresses and results in err: range is full unless manually deleted
2027603 - [UI] Dropdown doesn't close on it's own after arbiter zone selection on 'Capacity and nodes' page
2027613 - Users can't silence alerts from the dev console
2028493 - OVN-migration failed - ovnkube-node: error waiting for node readiness: timed out waiting for the condition
2028532 - noobaa-pg-db-0 pod stuck in Init:0/2
2028821 - Misspelled label in ODF management UI - MCG performance view
2029438 - Bootstrap node cannot resolve api-int because NetworkManager replaces resolv.conf
2029470 - Recover from suddenly appearing old operand revision WAS: kube-scheduler-operator test failure: Node's not achieving new revision
2029797 - Uncaught exception: ResizeObserver loop limit exceeded
2029835 - CSI migration for vSphere: Inline-volume tests failing
2030034 - prometheusrules.openshift.io: dial tcp: lookup prometheus-operator.openshift-monitoring.svc on 172.30.0.10:53: no such host
2030530 - VM created via customize wizard has single quotation marks surrounding its password
2030733 - wrong IP selected to connect to the nodes when ExternalCloudProvider enabled
2030776 - e2e-operator always uses quay master images during presubmit tests
2032559 - CNO allows migration to dual-stack in unsupported configurations
2032717 - Unable to download ignition after coreos-installer install --copy-network
2032924 - PVs are not being cleaned up after PVC deletion
2033482 - [vsphere] two variables in tf are undeclared and get warning message during installation
2033575 - monitoring targets are down after the cluster run for more than 1 day
2033711 - IBM VPC operator needs e2e csi tests for ibmcloud
2033862 - MachineSet is not scaling up due to an OpenStack error trying to create multiple ports with the same MAC address
2034147 - OpenShift VMware IPI Installation fails with Resource customization when corespersocket is unset and vCPU count is not a multiple of 4
2034296 - Kubelet and Crio fails to start during upgrde to 4.7.37
2034411 - [Egress Router] No NAT rules for ipv6 source and destination created in ip6tables-save
2034688 - Allow Prometheus/Thanos to return 401 or 403 when the request isn't authenticated
2034958 - [sig-network] Conntrack should be able to preserve UDP traffic when initial unready endpoints get ready
2035005 - MCD is not always removing in progress taint after a successful update
2035334 - [RFE] [OCPonRHV] Provision machines with preallocated disks
2035899 - Operator-sdk run bundle doesn't support arm64 env
2036202 - Bump podman to >= 3.3.0 so that  setup of multiple credentials for a single registry which can be distinguished by their path  will work
2036594 - [MAPO] Machine goes to failed state due to a momentary error of the cluster etcd
2036948 - SR-IOV Network Device Plugin should handle offloaded VF instead of supporting only PF
2037190 - dns operator status flaps between True/False/False and True/True/(False|True) after updating dnses.operator.openshift.io/default
2037447 - Ingress Operator is not closing TCP connections.
2037513 - I/O metrics from the Kubernetes/Compute Resources/Cluster Dashboard show as no datapoints found
2037542 - Pipeline Builder footer is not sticky and yaml tab doesn't use full height
2037610 - typo for the Terminated message from thanos-querier pod description info
2037620 - Upgrade playbook should quit directly when trying to upgrade RHEL-7 workers to 4.10
2037625 - AppliedClusterResourceQuotas can not be shown on project overview
2037626 - unable to fetch ignition file when scaleup rhel worker nodes on cluster enabled Tang disk encryption
2037628 - Add test id to kms flows for automation
2037721 - PodDisruptionBudgetAtLimit alert fired in SNO cluster
2037762 - Wrong ServiceMonitor definition is causing failure during Prometheus configuration reload and preventing changes from being applied
2037841 - [RFE] use /dev/ptp_hyperv on Azure/AzureStack
2038115 - Namespace and application bar is not sticky anymore
2038244 - Import from git ignore the given servername and could not validate On-Premises GitHub and BitBucket installations
2038405 - openshift-e2e-aws-workers-rhel-workflow in CI step registry broken
2038774 - IBM-Cloud OVN IPsec fails, IKE UDP ports and  ESP protocol not in security group
2039135 - the error message is not clear when using "opm index prune" to prune a file-based index image
2039161 - Note about token for encrypted PVCs should be removed when only cluster wide encryption checkbox is selected
2039253 - ovnkube-node crashes on duplicate endpoints
2039256 - Domain validation fails when TLD contains a digit.
2039277 - Topology list view items are not highlighted on keyboard navigation
2039462 - Application tab in User Preferences dropdown menus are too wide.
2039477 - validation icon is missing from Import from git
2039589 - The toolbox command always ignores [command] the first time
2039647 - Some developer perspective links are not deep-linked causes developer to sometimes delete/modify resources in the wrong project
2040180 - Bug when adding a new table panel to a dashboard for OCP UI with only one value column
2040195 - Ignition fails to enable systemd units with backslash-escaped characters in their names
2040277 - ThanosRuleNoEvaluationFor10Intervals alert description is wrong
2040488 - OpenShift-Ansible BYOH Unit Tests are Broken
2040635 - CPU Utilisation is negative number for "Kubernetes / Compute Resources / Cluster" dashboard
2040654 - 'oc adm must-gather -- some_script' should exit with same non-zero code as the failed 'some_script' exits
2040779 - Nodeport svc not accessible when the backend pod is on a window node
2040933 - OCP 4.10 nightly build will fail to install if multiple NICs are defined on KVM nodes
2041133 - 'oc explain route.status.ingress.conditions' shows type 'Currently only Ready' but actually is 'Admitted'
2041454 - Garbage values accepted for `--reference-policy` in `oc import-image` without any error
2041616 - Ingress operator tries to manage DNS of additional ingresscontrollers that are not under clusters basedomain, which can't work
2041769 - Pipeline Metrics page not showing data for normal user
2041774 - Failing git detection should not recommend Devfiles as import strategy
2041814 - The KubeletConfigController wrongly process multiple confs for a pool
2041940 - Namespace pre-population not happening till a Pod is created
2042027 - Incorrect feedback for "oc label pods --all"
2042348 - Volume ID is missing in output message when expanding volume which is not mounted.
2042446 - CSIWithOldVSphereHWVersion alert recurring despite upgrade to vmx-15
2042501 - use lease for leader election
2042587 - ocm-operator: Improve reconciliation of CA ConfigMaps
2042652 - Unable to deploy hw-event-proxy operator
2042838 - The status of container is not consistent on Container details and pod details page
2042852 - Topology toolbars are unaligned to other toolbars
2042999 - A pod cannot reach kubernetes.default.svc.cluster.local cluster IP
2043035 - Wrong error code provided when request contains invalid argument
2043068 -  available of  text disappears in Utilization item if x is 0
2043080 - openshift-installer intermittent failure on AWS with Error: InvalidVpcID.NotFound: The vpc ID 'vpc-123456789' does not exist
2043094 - ovnkube-node not deleting stale conntrack entries when endpoints go away
2043118 - Host should transition through Preparing when HostFirmwareSettings changed
2043132 - Add a metric when vsphere csi storageclass creation fails
2043314 - `oc debug node` does not meet compliance requirement
2043336 - Creating multi SriovNetworkNodePolicy cause the worker always be draining
2043428 - Address Alibaba CSI driver operator review comments
2043533 - Update ironic, inspector, and ironic-python-agent to latest bugfix release
2043672 - [MAPO] root volumes not working
2044140 - When 'oc adm upgrade --to-image ...' rejects an update as not recommended, it should mention --allow-explicit-upgrade
2044207 - [KMS] The data in the text box does not get cleared on switching the authentication method
2044227 - Test Managed cluster should only include cluster daemonsets that have maxUnavailable update of 10 or 33 percent fails
2044412 - Topology list misses separator lines and hover effect let the list jump 1px
2044421 - Topology list does not allow selecting an application group anymore
2044591 - CVE-2022-0235 node-fetch: exposure of sensitive information to an unauthorized actor
2044803 - Unify button text style on VM tabs
2044824 - Failing test in periodics: [sig-network] Services should respect internalTrafficPolicy=Local Pod and Node, to Pod (hostNetwork: true) [Feature:ServiceInternalTrafficPolicy] [Skipped:Network/OVNKubernetes] [Suite:openshift/conformance/parallel] [Suite:k8s]
2045065 - Scheduled pod has nodeName changed
2045073 - Bump golang and build images for local-storage-operator
2045087 - Failed to apply sriov policy on intel nics
2045551 - Remove enabled FeatureGates from TechPreviewNoUpgrade
2045559 - API_VIP moved when kube-api container on another master node was stopped
2045577 - [ocp 4.9 | ovn-kubernetes] ovsdb_idl|WARN|transaction error: {"details":"cannot delete Datapath_Binding row 29e48972-xxxx because of 2 remaining reference(s)","error":"referential integrity violation
2045872 - SNO: cluster-policy-controller failed to start due to missing serving-cert/tls.crt
2045880 - CVE-2022-21698 prometheus/client_golang: Denial of service using InstrumentHandlerCounter
2046133 - [MAPO]IPI proxy installation failed
2046156 - Network policy: preview of affected pods for non-admin shows empty popup
2046157 - Still uses pod-security.admission.config.k8s.io/v1alpha1 in admission plugin config
2046191 - Opeartor pod is missing correct qosClass and priorityClass
2046277 - openshift-installer intermittent failure on AWS with "Error: Provider produced inconsistent result after apply" when creating the module.vpc.aws_subnet.private_subnet[0] resource
2046319 - oc debug cronjob command failed with error "unable to extract pod template from type *v1.CronJob".
2046435 - Better Devfile Import Strategy support in the 'Import from Git' flow
2046496 - Awkward wrapping of project toolbar on mobile
2046497 - Re-enable TestMetricsEndpoint test case in console operator e2e tests
2046498 - "All Projects" and "all applications" use different casing on topology page
2046591 - Auto-update boot source is not available while create new template from it
2046594 - "Requested template could not be found" while creating VM from user-created template
2046598 - Auto-update boot source size unit is byte on customize wizard
2046601 - Cannot create VM from template
2046618 - Start last run action should contain current user name in the started-by annotation of the PLR
2046662 - Should upgrade the go version to be 1.17 for example go operator memcached-operator
2047197 - Sould upgrade the operator_sdk.util version to "0.4.0" for the "osdk_metric" module
2047257 - [CP MIGRATION] Node drain failure during control plane node migration
2047277 - Storage status is missing from status card of virtualization overview
2047308 - Remove metrics and events for master port offsets
2047310 - Running VMs per template card needs empty state when no VMs exist
2047320 - New route annotation to show another URL or hide topology URL decorator doesn't work for Knative Services
2047335 - 'oc get project' caused 'Observed a panic: cannot deep copy core.NamespacePhase' when AllRequestBodies is used
2047362 - Removing prometheus UI access breaks origin test
2047445 - ovs-configure mis-detecting the ipv6 status on IPv4 only cluster causing Deployment failure
2047670 - Installer should pre-check that the hosted zone is not associated with the VPC and throw the error message.
2047702 - Issue described on bug #2013528 reproduced: mapi_current_pending_csr is always set to 1 on OpenShift Container Platform 4.8
2047710 - [OVN] ovn-dbchecker CrashLoopBackOff and sbdb jsonrpc unix socket receive error
2047732 - [IBM]Volume is not deleted after destroy cluster
2047741 - openshift-installer intermittent failure on AWS with "Error: Provider produced inconsistent result after apply" when creating the module.masters.aws_network_interface.master[1] resource
2047790 - [sig-network][Feature:Router] The HAProxy router should override the route host for overridden domains with a custom value [Skipped:Disconnected] [Suite:openshift/conformance/parallel]
2047799 - release-openshift-ocp-installer-e2e-aws-upi-4.9
2047870 - Prevent redundant queries of BIOS settings in HostFirmwareController
2047895 - Fix architecture naming in oc adm release mirror for aarch64
2047911 - e2e: Mock CSI tests fail on IBM ROKS clusters
2047913 - [sig-network][Feature:Router] The HAProxy router should override the route host for overridden domains with a custom value [Skipped:Disconnected] [Suite:openshift/conformance/parallel]
2047925 - [FJ OCP4.10 Bug]: IRONIC_KERNEL_PARAMS does not contain coreos_kernel_params during iPXE boot
2047935 - [4.11] Bootimage bump tracker
2047998 - [alicloud] CCM deploys alibaba-cloud-controller-manager from quay.io/openshift/origin-*
2048059 - Service Level Agreement (SLA) always show 'Unknown'
2048067 - [IPI on Alibabacloud] "Platform Provisioning Check" tells '"ap-southeast-6": enhanced NAT gateway is not supported', which seems false
2048186 - Image registry operator panics when finalizes config deletion
2048214 - Can not push images to image-registry when enabling KMS encryption in AlibabaCloud
2048219 - MetalLB: User should not be allowed add same bgp advertisement twice in BGP address pool
2048221 - Capitalization of titles in the VM details page is inconsistent.
2048222 - [AWS GovCloud] Cluster can not be installed on AWS GovCloud regions via terminal interactive UI.
2048276 - Cypress E2E tests fail due to a typo in test-cypress.sh
2048333 - prometheus-adapter becomes inaccessible during rollout
2048352 - [OVN] node does not recover after NetworkManager restart, NotReady and unreachable
2048442 - [KMS] UI does not have option to specify kube auth path and namespace for cluster wide encryption
2048451 - Custom serviceEndpoints in install-config are reported to be unreachable when environment uses a proxy
2048538 - Network policies are not implemented or updated by OVN-Kubernetes
2048541 - incorrect rbac check for install operator quick starts
2048563 - Leader election conventions for cluster topology
2048575 - IP reconciler cron job failing on single node
2048686 - Check MAC address provided on the install-config.yaml file
2048687 - All bare metal jobs are failing now due to End of Life of centos 8
2048793 - Many Conformance tests are failing in OCP 4.10 with Kuryr
2048803 - CRI-O seccomp profile out of date
2048824 - [IBMCloud] ibm-vpc-block-csi-node does not specify an update strategy, only resource requests, or priority class
2048841 - [ovn] Missing lr-policy-list and snat rules for egressip when new pods are added
2048955 - Alibaba Disk CSI Driver does not have CI
2049073 - AWS EFS CSI driver should use the trusted CA bundle when cluster proxy is configured
2049078 - Bond CNI: Failed to  attach Bond NAD to pod
2049108 - openshift-installer intermittent failure on AWS with 'Error: Error waiting for NAT Gateway (nat-xxxxx) to become available'
2049117 - e2e-metal-ipi-serial-ovn-ipv6 is failing frequently
2049133 - oc adm catalog mirror throws 'missing signature key' error when using file://local/index
2049142 - Missing "app" label
2049169 - oVirt CSI driver should use the trusted CA bundle when cluster proxy is configured
2049234 - ImagePull fails with error  "unable to pull manifest from example.com/busy.box:v5  invalid reference format"
2049410 - external-dns-operator creates provider section, even when not requested
2049483 - Sidepanel for Connectors/workloads in topology shows invalid tabs
2049613 - MTU migration on SDN IPv4 causes API alerts
2049671 - system:serviceaccount:openshift-cluster-csi-drivers:aws-ebs-csi-driver-operator trying to GET and DELETE /api/v1/namespaces/openshift-cluster-csi-drivers/configmaps/kube-cloud-config which does not exist
2049687 - superfluous apirequestcount entries in audit log
2049775 - cloud-provider-config change not applied when ExternalCloudProvider enabled
2049787 - (dummy bug) ovn-kubernetes ExternalTrafficPolicy still SNATs
2049832 - ContainerCreateError when trying to launch large (>500) numbers of pods across nodes
2049872 - cluster storage operator AWS credentialsrequest lacks KMS privileges
2049889 - oc new-app --search nodejs warns about access to sample content on quay.io
2050005 - Plugin module IDs can clash with console module IDs causing runtime errors
2050011 - Observe > Metrics page: Timespan text input and dropdown do not align
2050120 - Missing metrics in kube-state-metrics
2050146 - Installation on PSI fails with: 'openstack platform does not have the required standard-attr-tag network extension'
2050173 - [aws-ebs-csi-driver] Merge upstream changes since v1.2.0
2050180 - [aws-efs-csi-driver] Merge upstream changes since v1.3.2
2050300 - panic in cluster-storage-operator while updating status
2050332 - Malformed ClusterClaim lifetimes cause the clusterclaims-controller to silently fail to reconcile all clusterclaims
2050335 - azure-disk failed to mount with error special device does not exist
2050345 - alert data for burn budget needs to be updated to prevent regression
2050407 - revert "force cert rotation every couple days for development" in 4.11
2050409 - ip-reconcile job is failing consistently
2050452 - Update osType and hardware version used by RHCOS OVA to indicate it is a RHEL 8 guest
2050466 - machine config update with invalid container runtime config should be more robust
2050637 - Blog Link not re-directing to the intented website in the last modal in the Dev Console Onboarding Tour
2050698 - After upgrading the cluster the console still show 0 of N, 0% progress for worker nodes
2050707 - up test for prometheus pod look to far in the past
2050767 - Vsphere upi tries to access vsphere during manifests generation phase
2050853 - CVE-2021-23566 nanoid: Information disclosure via valueOf() function
2050882 - Crio appears to be coredumping in some scenarios
2050902 - not all resources created during import have common labels
2050946 - Cluster-version operator fails to notice TechPreviewNoUpgrade featureSet change after initialization-lookup error
2051320 - Need to build ose-aws-efs-csi-driver-operator-bundle-container image for 4.11
2051333 - [aws] records in public hosted zone and BYO private hosted zone were not deleted.
2051377 - Unable to switch vfio-pci to netdevice in policy
2051378 - Template wizard is crashed when there are no templates existing
2051423 - migrate loadbalancers from amphora to ovn not working
2051457 - [RFE] PDB for cloud-controller-manager to avoid going too many replicas down
2051470 - prometheus: Add validations for relabel configs
2051558 - RoleBinding in project without subject is causing "Project access" page to fail
2051578 - Sort is broken for the Status and Version columns on the Cluster Settings > ClusterOperators page
2051583 - sriov must-gather image doesn't work
2051593 - Summary Interval Hardcoded in PTP Operator if Set in the Global Body Instead of Command Line
2051611 - Remove Check which enforces summary_interval must match logSyncInterval
2051642 - Remove "Tech-Preview" Label for the Web Terminal GA release
2051657 - Remove 'Tech preview' from minnimal deployment Storage System creation
2051718 - MetaLLB: Validation Webhook: BGPPeer hold time is allowed to be set to less than 3s
2051722 - MetalLB: BGPPeer object does not have ability to set ebgpMultiHop
2051881 - [vSphere CSI driver Operator] RWX volumes counts metrics `vsphere_rwx_volumes_total` not valid
2051954 - Allow changing of policyAuditConfig ratelimit post-deployment
2051969 - Need to build local-storage-operator-metadata-container image for 4.11
2051985 - An APIRequestCount without dots in the name can cause a panic
2052016 - MetalLB: Webhook Validation: Two BGPPeers instances can have different router ID set.
2052034 - Can't start correct debug pod using pod definition yaml in OCP 4.8
2052055 - Whereabouts should implement client-go 1.22+
2052056 - Static pod installer should throttle creating new revisions
2052071 - local storage operator metrics target down after upgrade
2052095 - Infinite OAuth redirect loop post-upgrade to 4.10.0-rc.1
2052270 - FSyncControllerDegraded has "treshold" -> "threshold" typos
2052309 - [IBM Cloud] ibm-vpc-block-csi-controller does not specify an update strategy, priority class, or only resource requests
2052332 - Probe failures and pod restarts during 4.7 to 4.8 upgrade
2052393 - Failed to scaleup RHEL machine against OVN cluster due to jq tool is required by configure-ovs.sh
2052398 - 4.9 to 4.10 upgrade fails for ovnkube-masters
2052415 - Pod density test causing problems when using kube-burner
2052513 - Failing webhooks will block an upgrade to 4.10 mid-way through the upgrade.
2052578 - Create new app from a private git repository using 'oc new app' with basic auth does not work.
2052595 - Remove dev preview badge from IBM FlashSystem deployment windows
2052618 - Node reboot causes duplicate persistent volumes
2052671 - Add Sprint 214 translations
2052674 - Remove extra spaces
2052700 - kube-controller-manger should use configmap lease
2052701 - kube-scheduler should use configmap lease
2052814 - go fmt fails in OSM after migration to go 1.17
2052840 - IMAGE_BUILDER=docker make test-e2e-operator-ocp runs with podman instead of docker
2052953 - Observe dashboard always opens for last viewed workload instead of the selected one
2052956 - Installing virtualization operator duplicates the first action on workloads in topology
2052975 - High cpu load on Juniper Qfx5120 Network switches after upgrade to Openshift 4.8.26
2052986 - Console crashes when Mid cycle hook in Recreate strategy(edit deployment/deploymentConfig) selects Lifecycle strategy as "Tags the current image as an image stream tag if the deployment succeeds"
2053006 - [ibm]Operator storage PROGRESSING and DEGRADED is true during fresh install for ocp4.11
2053104 - [vSphere CSI driver Operator] hw_version_total metric update wrong value after upgrade nodes hardware version from `vmx-13` to  `vmx-15`
2053112 - nncp status is unknown when nnce is Progressing
2053118 - nncp Available condition reason should be exposed in `oc get`
2053168 - Ensure the core dynamic plugin SDK package has correct types and code
2053205 - ci-openshift-cluster-network-operator-master-e2e-agnostic-upgrade is failing most of the time
2053304 - Debug terminal no longer works in admin console
2053312 - requestheader IDP test doesn't wait for cleanup, causing high failure rates
2053334 - rhel worker scaleup playbook failed because missing some dependency of podman
2053343 - Cluster Autoscaler not scaling down nodes which seem to qualify for scale-down
2053491 - nmstate interprets interface names as float64 and subsequently crashes on state update
2053501 - Git import detection does not happen for private repositories
2053582 - inability to detect static lifecycle failure
2053596 - [IBM Cloud] Storage IOPS limitations and lack of IPI ETCD deployment options trigger leader election during cluster initialization
2053609 - LoadBalancer SCTP service leaves stale conntrack entry that causes issues if service is recreated
2053622 - PDB warning alert when CR replica count is set to zero
2053685 - Topology performance: Immutable .toJSON consumes a lot of CPU time when rendering a large topology graph (~100 nodes)
2053721 - When using RootDeviceHint rotational setting the host can fail to provision
2053922 - [OCP 4.8][OVN] pod interface: error while waiting on OVS.Interface.external-ids
2054095 - [release-4.11] Gather images.conifg.openshift.io cluster resource definiition
2054197 - The ProjectHelmChartRepositrory schema has merged but has not been initialized in the cluster yet
2054200 - Custom created services in openshift-ingress removed even though the services are not of type LoadBalancer
2054238 - console-master-e2e-gcp-console is broken
2054254 - vSphere test failure: [Serial] [sig-auth][Feature:OAuthServer] [RequestHeaders] [IdP] test RequestHeaders IdP [Suite:openshift/conformance/serial]
2054285 - Services other than knative service also shows as KSVC in add subscription/trigger modal
2054319 - must-gather | gather_metallb_logs can't detect metallb pod
2054351 - Rrestart of ptp4l/phc2sys  on change of PTPConfig  generates more than one times, socket error in event frame work
2054385 - redhat-operatori ndex image build failed with AMQ brew build - amq-interconnect-operator-metadata-container-1.10.13
2054564 - DPU network operator 4.10 branch need to sync with master
2054630 - cancel create silence from kebab menu of alerts page will navigated to the previous page
2054693 - Error deploying HorizontalPodAutoscaler with oc new-app command in OpenShift 4
2054701 - [MAPO] Events are not created for MAPO machines
2054705 - [tracker] nf_reinject calls nf_queue_entry_free on an already freed entry->state
2054735 - Bad link in CNV console
2054770 - IPI baremetal deployment metal3 pod crashes when using capital letters in hosts bootMACAddress
2054787 - SRO controller goes to CrashLoopBackOff status when the pull-secret does not have the correct permissions
2054950 - A large number is showing on disk size field
2055305 - Thanos Querier high CPU and memory usage till OOM
2055386 - MetalLB changes the shared external IP of a service upon updating the externalTrafficPolicy definition
2055433 - Unable to create br-ex as gateway is not found
2055470 - Ingresscontroller LB scope change behaviour differs for different values of aws-load-balancer-internal annotation
2055492 - The default YAML on vm wizard is not latest
2055601 - installer did not destroy *.app dns recored in a IPI on ASH install
2055702 - Enable Serverless tests in CI
2055723 - CCM operator doesn't deploy resources after enabling TechPreviewNoUpgrade feature set.
2055729 - NodePerfCheck fires and stays active on momentary high latency
2055814 - Custom dynamic exntension point causes runtime and compile time error
2055861 - cronjob collect-profiles failed leads node reach to OutOfpods status
2055980 - [dynamic SDK][internal] console plugin SDK does not support table actions
2056454 - Implement preallocated disks for oVirt in the cluster API provider
2056460 - Implement preallocated disks for oVirt in the OCP installer
2056496 - If image does not exists for builder image then upload jar form crashes
2056519 - unable to install IPI PRIVATE OpenShift cluster in Azure due to organization policies
2056607 - Running kubernetes-nmstate handler e2e tests stuck on OVN clusters
2056752 - Better to named the oc-mirror version info with more information like the `oc version --client`
2056802 - "enforcedLabelLimit|enforcedLabelNameLengthLimit|enforcedLabelValueLengthLimit" do not take effect
2056841 - [UI] [DR] Web console update is available pop-up is seen multiple times on Hub cluster where ODF operator is not installed and unnecessarily it pop-up on the Managed cluster as well where ODF operator is installed
2056893 - incorrect warning for --to-image in oc adm upgrade help
2056967 - MetalLB: speaker metrics is not updated when deleting a service
2057025 - Resource requests for the init-config-reloader container of prometheus-k8s-* pods are too high
2057054 - SDK: k8s methods resolves into Response instead of the Resource
2057079 - [cluster-csi-snapshot-controller-operator] CI failure: events should not repeat pathologically
2057101 - oc commands working with images print an incorrect and inappropriate warning
2057160 - configure-ovs selects wrong interface on reboot
2057183 - OperatorHub: Missing "valid subscriptions" filter
2057251 - response code for Pod count graph changed from 422 to 200 periodically for about 30 minutes if pod is rescheduled
2057358 - [Secondary Scheduler] - cannot build bundle index image using the secondary scheduler operator bundle
2057387 - [Secondary Scheduler] - olm.skiprange, com.redhat.openshift.versions is incorrect and no minkubeversion
2057403 - CMO logs show forbidden: User "system:serviceaccount:openshift-monitoring:cluster-monitoring-operator" cannot get resource "replicasets" in API group "apps" in the namespace "openshift-monitoring"
2057495 - Alibaba Disk CSI driver does not provision small PVCs
2057558 - Marketplace operator polls too frequently for cluster operator status changes
2057633 - oc rsync reports misleading error when container is not found
2057642 - ClusterOperator status.conditions[].reason "etcd disk metrics exceeded..." should be a CamelCase slug
2057644 - FSyncControllerDegraded latches True, even after fsync latency recovers on all members
2057696 - Removing console still blocks OCP install from completing
2057762 - ingress operator should report Upgradeable False to remind user before upgrade to 4.10 when Non-SAN certs are used
2057832 - expr for record rule: "cluster:telemetry_selected_series:count" is improper
2057967 - KubeJobCompletion does not account for possible job states
2057990 - Add extra debug information to image signature workflow test
2057994 - SRIOV-CNI failed to load netconf: LoadConf(): failed to get VF information
2058030 - On OCP 4.10+ using OVNK8s on BM IPI, nodes register as localhost.localdomain
2058217 - [vsphere-problem-detector-operator] 'vsphere_rwx_volumes_total' metric name make confused
2058225 - openshift_csi_share_* metrics are not found from telemeter server
2058282 - Websockets stop updating during cluster upgrades
2058291 - CI builds should have correct version of Kube without needing to push tags everytime
2058368 - Openshift OVN-K got restarted mutilple times with the error  " ovsdb-server/memory-trim-on-compaction on'' failed: exit status 1   and " ovndbchecker.go:118] unable to turn on memory       trimming for SB DB, stderr "  , cluster  unavailable
2058370 - e2e-aws-driver-toolkit CI job is failing
2058421 - 4.9.23-s390x-machine-os-content manifest invalid when mirroring content for disconnected install
2058424 - ConsolePlugin proxy always passes Authorization header even if `authorize` property is omitted or false
2058623 - Bootstrap server dropdown menu in Create Event Source- KafkaSource form is empty even if it's created
2058626 - Multiple Azure upstream kube fsgroupchangepolicy tests are permafailing expecting gid "1000" but geting "root"
2058671 - whereabouts IPAM CNI ip-reconciler cronjob specification requires hostnetwork, api-int lb usage & proper backoff
2058692 - [Secondary Scheduler] Creating secondaryscheduler instance fails with error "key failed with : secondaryschedulers.operator.openshift.io "secondary-scheduler" not found"
2059187 - [Secondary Scheduler] -  key failed with : serviceaccounts "secondary-scheduler" is forbidden
2059212 - [tracker] Backport https://github.com/util-linux/util-linux/commit/eab90ef8d4f66394285e0cff1dfc0a27242c05aa
2059213 - ART cannot build installer images due to missing terraform binaries for some architectures
2059338 - A fully upgraded 4.10 cluster defaults to HW-13 hardware version even if HW-15 is default (and supported)
2059490 - The operator image in CSV file of the ART DPU network operator bundle is incorrect
2059567 - vMedia based IPI installation of OpenShift fails on Nokia servers due to issues with virtual media attachment and boot source override
2059586 - (release-4.11) Insights operator doesn't reconcile clusteroperator status condition messages
2059654 - Dynamic demo plugin proxy example out of date
2059674 - Demo plugin fails to build
2059716 - cloud-controller-manager flaps operator version during 4.9 -> 4.10 update
2059791 - [vSphere CSI driver Operator] didn't update 'vsphere_csi_driver_error' metric value when fixed the error manually
2059840 - [LSO]Could not gather logs for pod diskmaker-discovery and diskmaker-manager
2059943 - MetalLB: Move CI config files to metallb repo from dev-scripts repo
2060037 - Configure logging level of FRR containers
2060083 - CMO doesn't react to changes in clusteroperator console
2060091 - CMO produces invalid alertmanager statefulset if console cluster .status.consoleURL is unset
2060133 - [OVN RHEL upgrade] could not find IP addresses: failed to lookup link br-ex: Link not found
2060147 - RHEL8 Workers Need to Ensure libseccomp is up to date at install time
2060159 - LGW: External->Service of type ETP=Cluster doesn't go to the node
2060329 - Detect unsupported amount of workloads before rendering a lazy or crashing topology
2060334 - Azure VNET lookup fails when the NIC subnet is in a different resource group
2060361 - Unable to enumerate NICs due to missing the 'primary' field due to security restrictions
2060406 - Test 'operators should not create watch channels very often' fails
2060492 - Update PtpConfigSlave source-crs to use network_transport L2 instead of UDPv4
2060509 - Incorrect installation of ibmcloud vpc csi driver in IBM Cloud ROKS 4.10
2060532 - LSO e2e tests are run against default image and namespace
2060534 - openshift-apiserver pod in crashloop due to unable to reach kubernetes svc ip
2060549 - ErrorAddingLogicalPort: duplicate IP found in ECMP Pod route cache!
2060553 - service domain can't be resolved when networkpolicy is used in OCP 4.10-rc
2060583 - Remove Console internal-kubevirt plugin SDK package
2060605 - Broken access to public images: Unable to connect to the server: no basic auth credentials
2060617 - IBMCloud destroy DNS regex not strict enough
2060687 - Azure Ci:  SubscriptionDoesNotSupportZone  - does not support availability zones at location 'westus'
2060697 - [AWS] partitionNumber cannot work for specifying Partition number
2060714 - [DOCS] Change source_labels to sourceLabels in "Configuring remote write storage" section
2060837 - [oc-mirror] Catalog merging error when two or more bundles does not have a set Replace field
2060894 - Preceding/Trailing Whitespaces In Form Elements on the add page
2060924 - Console white-screens while using debug terminal
2060968 - Installation failing due to ironic-agent.service not starting properly
2060970 - Bump recommended FCOS to 35.20220213.3.0
2061002 - Conntrack entry is not removed for LoadBalancer IP
2061301 - Traffic Splitting Dialog is Confusing With Only One Revision
2061303 - Cachito request failure with vendor directory is out of sync with go.mod/go.sum
2061304 - workload info gatherer - don't serialize empty images map
2061333 - White screen for Pipeline builder page
2061447 - [GSS] local pv's are in terminating state
2061496 - etcd RecentBackup=Unknown ControllerStarted contains no message string
2061527 - [IBMCloud] infrastructure asset missing CloudProviderType
2061544 - AzureStack is hard-coded to use Standard_LRS for the disk type
2061549 - AzureStack install with internal publishing does not create api DNS record
2061611 - [upstream] The marker of KubeBuilder doesn't work if it is close to the code
2061732 - Cinder CSI crashes when API is not available
2061755 - Missing breadcrumb on the resource creation page
2061833 - A single worker can be assigned to multiple baremetal hosts
2061891 - [IPI on IBMCLOUD]  missing ?br-sao? region in openshift installer
2061916 - mixed ingress and egress policies can result in half-isolated pods
2061918 - Topology Sidepanel style is broken
2061919 - Egress Ip entry stays on node's primary NIC post deletion from hostsubnet
2062007 - MCC bootstrap command lacks template flag
2062126 - IPfailover pod is crashing during creation showing keepalived_script doesn't exist
2062151 - Add RBAC for 'infrastructures' to operator bundle
2062355 - kubernetes-nmstate resources and logs not included in must-gathers
2062459 - Ingress pods scheduled on the same node
2062524 - [Kamelet Sink] Topology crashes on click of Event sink node if the resource is created source to Uri over ref
2062558 - Egress IP with openshift sdn in not functional on worker node.
2062568 - CVO does not trigger new upgrade again after fail to update to unavailable payload
2062645 - configure-ovs: don't restart networking if not necessary
2062713 - Special Resource Operator(SRO) - No sro_used_nodes metric
2062849 - hw event proxy is not binding on ipv6 local address
2062920 - Project selector is too tall with only a few projects
2062998 - AWS GovCloud regions are recognized as the unknown regions
2063047 - Configuring a full-path query log file in CMO breaks Prometheus with the latest version of the operator
2063115 - ose-aws-efs-csi-driver has invalid dependency in go.mod
2063164 - metal-ipi-ovn-ipv6 Job Permafailing and Blocking OpenShift 4.11 Payloads: insights operator is not available
2063183 - DefragDialTimeout is set to low for large scale OpenShift Container Platform - Cluster
2063194 - cluster-autoscaler-default will fail when automated etcd defrag is running on large scale OpenShift Container Platform 4 - Cluster
2063321 - [OVN]After reboot egress node,  lr-policy-list was not correct, some duplicate records or missed internal IPs
2063324 - MCO template output directories created with wrong mode causing render failure in unprivileged container environments
2063375 - ptp operator upgrade from 4.9 to 4.10 stuck at pending due to service account requirements not met
2063414 - on OKD 4.10, when image-registry is enabled, the /etc/hosts entry is missing on some nodes
2063699 - Builds - Builds - Logs: i18n misses.
2063708 - Builds - Builds - Logs: translation correction needed.
2063720 - Metallb EBGP neighbor stuck in active until adding ebgp-multihop (directly connected neighbors)
2063732 - Workloads - StatefulSets : I18n misses
2063747 - When building a bundle, the push command fails because is passes a redundant "IMG=" on the the CLI
2063753 - User Preferences - Language - Language selection : Page refresh rquired to change the UI into selected Language.
2063756 - User Preferences - Applications - Insecure traffic : i18n misses
2063795 - Remove go-ovirt-client go.mod replace directive
2063829 - During an IPI install with the 4.10.4 installer on vSphere, getting "Check": platform.vsphere.network: Invalid value: "VLAN_3912": unable to find network provided"
2063831 - etcd quorum pods landing on same node
2063897 - Community tasks not shown in pipeline builder page
2063905 - PrometheusOperatorWatchErrors alert may fire shortly in case of transient errors from the API server
2063938 - sing the hard coded rest-mapper in library-go
2063955 - cannot download operator catalogs due to missing images
2063957 - User Management - Users : While Impersonating user, UI is not switching into user's set language
2064024 - SNO OCP upgrade with DU workload stuck at waiting for kube-apiserver static pod
2064170 - [Azure] Missing punctuation in the  installconfig.controlPlane.platform.azure.osDisk explain
2064239 - Virtualization Overview page turns into blank page
2064256 - The Knative traffic distribution doesn't update percentage in sidebar
2064553 - UI should prefer to use the virtio-win configmap than v2v-vmware configmap for windows creation
2064596 - Fix the hubUrl docs link in pipeline quicksearch modal
2064607 - Pipeline builder makes too many (100+) API calls upfront
2064613 - [OCPonRHV]- after few days that cluster is alive we got error in storage operator
2064693 - [IPI][OSP] Openshift-install fails to find the shiftstack cloud defined in clouds.yaml in the current directory
2064702 - CVE-2022-27191 golang: crash in a golang.org/x/crypto/ssh server
2064705 - the alertmanagerconfig validation catches the wrong value for invalid field
2064744 - Errors trying to use the Debug Container feature
2064984 - Update error message for label limits
2065076 - Access monitoring Routes based on monitoring-shared-config creates wrong URL
2065160 - Possible leak of load balancer targets on AWS Machine API Provider
2065224 - Configuration for cloudFront in image-registry operator configuration is ignored & duration is corrupted
2065290 - CVE-2021-23648 sanitize-url: XSS
2065338 - VolumeSnapshot creation date sorting is broken
2065507 - `oc adm upgrade` should return ReleaseAccepted condition to show upgrade status.
2065510 - [AWS] failed to create cluster on ap-southeast-3
2065513 - Dev Perspective -> Project Dashboard shows Resource Quotas which are a bit misleading, and too many decimal places
2065547 - (release-4.11) Gather kube-controller-manager pod logs with garbage collector errors
2065552 - [AWS] Failed to install cluster on AWS ap-southeast-3 region due to image-registry panic error
2065577 - user with user-workload-monitoring-config-edit role can not create user-workload-monitoring-config configmap
2065597 - Cinder CSI is not configurable
2065682 - Remote write relabel config adds label __tmp_openshift_cluster_id__ to all metrics
2065689 - Internal Image registry with GCS backend does not redirect client
2065749 - Kubelet slowly leaking memory and pods eventually unable to start
2065785 - ip-reconciler job does not complete, halts node drain
2065804 - Console backend check for Web Terminal Operator incorrectly returns HTTP 204
2065806 - stop considering Mint mode as supported on Azure
2065840 - the cronjob object is created  with a  wrong api version batch/v1beta1 when created  via the openshift console
2065893 - [4.11] Bootimage bump tracker
2066009 - CVE-2021-44906 minimist: prototype pollution
2066232 - e2e-aws-workers-rhel8 is failing on ansible check
2066418 - [4.11] Update channels information link is taking to a 404 error page
2066444 - The "ingress" clusteroperator's relatedObjects field has kind names instead of resource names
2066457 - Prometheus CI failure: 503 Service Unavailable
2066463 - [IBMCloud] failed to list DNS zones: Exactly one of ApiKey or RefreshToken must be specified
2066605 - coredns template block matches cluster API to loose
2066615 - Downstream OSDK still use upstream image for Hybird type operator
2066619 - The GitCommit of the `oc-mirror version` is not correct
2066665 - [ibm-vpc-block] Unable to change default storage class
2066700 - [node-tuning-operator] - Minimize wildcard/privilege Usage in Cluster and Local Roles
2066754 - Cypress reports for core tests are not captured
2066782 - Attached disk keeps in loading status when add disk to a power off VM by non-privileged user
2066865 - Flaky test: In-tree Volumes [Driver: azure-disk] [Testpattern: Dynamic PV (delayed binding)] topology should provision a volume and schedule a pod with AllowedTopologies
2066886 - openshift-apiserver pods never going NotReady
2066887 - Dependabot alert: Path traversal in github.com/valyala/fasthttp
2066889 - Dependabot alert: Path traversal in github.com/valyala/fasthttp
2066923 - No rule to make target 'docker-push' when building the SRO bundle
2066945 - SRO appends "arm64" instead of "aarch64" to the kernel name and it doesn't match the DTK
2067004 - CMO contains grafana image though grafana is removed
2067005 - Prometheus rule contains grafana though grafana is removed
2067062 - should update prometheus-operator resources version
2067064 - RoleBinding in Developer Console is dropping all subjects when editing
2067155 - Incorrect operator display name shown in pipelines quickstart in devconsole
2067180 - Missing i18n translations
2067298 - Console 4.10 operand form refresh
2067312 - PPT event source is lost when received by the consumer
2067384 - OCP 4.10 should be firing APIRemovedInNextEUSReleaseInUse for APIs removed in 1.25
2067456 - OCP 4.11 should be firing APIRemovedInNextEUSReleaseInUse and APIRemovedInNextReleaseInUse for APIs removed in 1.25
2067995 - Internal registries with a big number of images delay pod creation due to recursive SELinux file context relabeling
2068115 - resource tab extension fails to show up
2068148 - [4.11] /etc/redhat-release symlink is broken
2068180 - OCP UPI on AWS with STS enabled is breaking the Ingress operator
2068181 - Event source powered with kamelet type source doesn't show associated deployment in resources tab
2068490 - OLM descriptors integration test failing
2068538 - Crashloop back-off popover visual spacing defects
2068601 - Potential etcd inconsistent revision and data occurs
2068613 - ClusterRoleUpdated/ClusterRoleBindingUpdated Spamming Event Logs
2068908 - Manual blog link change needed
2069068 - reconciling Prometheus Operator Deployment failed while upgrading from 4.7.46 to 4.8.35
2069075 - [Alibaba 4.11.0-0.nightly] cluster storage component in Progressing state
2069181 - Disabling community tasks is not working
2069198 - Flaky CI test in e2e/pipeline-ci
2069307 - oc mirror hangs when processing the Red Hat 4.10 catalog
2069312 - extend rest mappings with 'job' definition
2069457 - Ingress operator has superfluous finalizer deletion logic for LoadBalancer-type services
2069577 - ConsolePlugin example proxy authorize is wrong
2069612 - Special Resource Operator (SRO) - Crash when nodeSelector does not match any nodes
2069632 - Not able to download previous container logs from console
2069643 - ConfigMaps leftovers while uninstalling SpecialResource with configmap
2069654 - Creating VMs with YAML on Openshift Virtualization UI is missing labels `flavor`, `os` and `workload`
2069685 - UI crashes on load if a pinned resource model does not exist
2069705 - prometheus target "serviceMonitor/openshift-metallb-system/monitor-metallb-controller/0" has a failure with "server returned HTTP status 502 Bad Gateway"
2069740 - On-prem loadbalancer ports conflict with kube node port range
2069760 - In developer perspective divider does not show up in navigation
2069904 - Sync upstream 1.18.1 downstream
2069914 - Application Launcher groupings are not case-sensitive
2069997 - [4.11] should add user containers in /etc/subuid and /etc/subgid to support run pods in user namespaces
2070000 - Add warning alerts for installing standalone k8s-nmstate
2070020 - InContext doesn't work for Event Sources
2070047 - Kuryr: Prometheus when installed on the cluster shouldn't report any alerts in firing state apart from Watchdog and AlertmanagerReceiversNotConfigured
2070160 - Copy-to-clipboard and 
 elements cause display issues for ACM dynamic plugins
2070172 - SRO uses the chart's name as Helm release, not the SpecialResource's
2070181 - [MAPO] serverGroupName ignored
2070457 - Image vulnerability Popover overflows from the visible area
2070674 - [GCP] Routes get timed out and nonresponsive after creating 2K service routes
2070703 - some ipv6 network policy tests consistently failing
2070720 - [UI] Filter reset doesn't work on Pods/Secrets/etc pages and complete list disappears
2070731 - details switch label is not clickable on add page
2070791 - [GCP]Image registry are crash on cluster with GCP workload identity enabled
2070792 - service "openshift-marketplace/marketplace-operator-metrics" is not annotated with capability
2070805 - ClusterVersion: could not download the update
2070854 - cv.status.capabilities.enabledCapabilities doesn?t show the day-2 enabled caps when there are errors on resources update
2070887 - Cv condition ImplicitlyEnabledCapabilities doesn?t complain about the disabled capabilities which is previously enabled
2070888 - Cannot bind driver vfio-pci when apply sriovnodenetworkpolicy with type vfio-pci
2070929 - OVN-Kubernetes: EgressIP breaks access from a pod with EgressIP to other host networked pods on different nodes
2071019 - rebase vsphere csi driver 2.5
2071021 - vsphere driver has snapshot support missing
2071033 - conditionally relabel volumes given annotation not working - SELinux context match is wrong
2071139 - Ingress pods scheduled on the same node
2071364 - All image building tests are broken with "            error: build error: attempting to convert BUILD_LOGLEVEL env var value "" to integer: strconv.Atoi: parsing "": invalid syntax
2071578 - Monitoring navigation should not be shown if monitoring is not available (CRC)
2071599 - RoleBidings are not getting updated for ClusterRole in OpenShift Web Console
2071614 - Updating EgressNetworkPolicy rejecting with error UnsupportedMediaType
2071617 - remove Kubevirt extensions in favour of dynamic plugin
2071650 - ovn-k ovn_db_cluster metrics are not exposed for SNO
2071691 - OCP Console global PatternFly overrides adds padding to breadcrumbs
2071700 - v1 events show "Generated from" message without the source/reporting component
2071715 - Shows 404 on Environment nav in Developer console
2071719 - OCP Console global PatternFly overrides link button whitespace
2071747 - Link to documentation from the overview page goes to a missing link
2071761 - Translation Keys Are Not Namespaced
2071799 - Multus CNI should exit cleanly on CNI DEL when the API server is unavailable
2071859 - ovn-kube pods spec.dnsPolicy should be Default
2071914 - cloud-network-config-controller 4.10.5:  Error building cloud provider client, err: %vfailed to initialize Azure environment: autorest/azure: There is no cloud environment matching the name ""
2071998 - Cluster-version operator should share details of signature verification when it fails in 'Force: true' updates
2072106 - cluster-ingress-operator tests do not build on go 1.18
2072134 - Routes are not accessible within cluster from hostnet pods
2072139 - vsphere driver has permissions to create/update PV objects
2072154 - Secondary Scheduler operator panics
2072171 - Test "[sig-network][Feature:EgressFirewall] EgressFirewall should have no impact outside its namespace [Suite:openshift/conformance/parallel]" fails
2072195 - machine api doesn't issue client cert when AWS DNS suffix missing
2072215 - Whereabouts ip-reconciler should be opt-in and not required
2072389 - CVO exits upgrade immediately rather than waiting for etcd backup
2072439 - openshift-cloud-network-config-controller reports wrong range of IP addresses for Azure worker nodes
2072455 - make bundle overwrites supported-nic-ids_v1_configmap.yaml
2072570 - The namespace titles for operator-install-single-namespace test keep changing
2072710 - Perfscale - pods time out waiting for OVS port binding (ovn-installed)
2072766 - Cluster Network Operator stuck in CrashLoopBackOff when scheduled to same master
2072780 - OVN kube-master does not clear NetworkUnavailableCondition on GCP BYOH Windows node
2072793 - Drop "Used Filesystem" from "Virtualization -> Overview"
2072805 - Observe > Dashboards: $__range variables cause PromQL query errors
2072807 - Observe > Dashboards: Missing `panel.styles` attribute for table panels causes JS error
2072842 - (release-4.11) Gather namespace names with overlapping UID ranges
2072883 - sometimes monitoring dashboards charts can not be loaded successfully
2072891 - Update gcp-pd-csi-driver to 1.5.1;
2072911 - panic observed in kubedescheduler operator
2072924 - periodic-ci-openshift-release-master-ci-4.11-e2e-azure-techpreview-serial
2072957 - ContainerCreateError loop leads to several thousand empty logfiles in the file system
2072998 - update aws-efs-csi-driver to the latest version
2072999 - Navigate from logs of selected Tekton task instead of last one
2073021 - [vsphere] Failed to update OS on master nodes
2073112 - Prometheus (uwm) externalLabels not showing always in alerts.
2073113 - Warning is logged to the console: W0407 Defaulting of registry auth file to "${HOME}/.docker/config.json" is deprecated.
2073176 - removing data in form does not remove data from yaml editor
2073197 - Error in Spoke/SNO agent: Source image rejected: A signature was required, but no signature exists
2073329 - Pipelines-plugin- Having different title for Pipeline Runs tab, on Pipeline Details page it's "PipelineRuns" and on Repository Details page it's "Pipeline Runs".
2073373 - Update azure-disk-csi-driver to 1.16.0
2073378 - failed egressIP assignment - cloud-network-config-controller does not delete failed cloudprivateipconfig
2073398 - machine-api-provider-openstack does not clean up OSP ports after failed server provisioning
2073436 - Update azure-file-csi-driver to v1.14.0
2073437 - Topology performance: Firehose/useK8sWatchResources cache can return unexpected data format if isList differs on multiple calls
2073452 - [sig-network] pods should successfully create sandboxes by other - failed (add)
2073473 - [OVN SCALE][ovn-northd] Unnecessary SB record no-op changes added to SB transaction.
2073522 - Update ibm-vpc-block-csi-driver to v4.2.0
2073525 - Update vpc-node-label-updater to v4.1.2
2073901 - Installation failed due to etcd operator Err:DefragControllerDegraded: failed to dial endpoint https://10.0.0.7:2379 with maintenance client: context canceled
2073937 - Invalid retention time and invalid retention size should be validated at one place and have error log in one place for UMW
2073938 - APIRemovedInNextEUSReleaseInUse alert for runtimeclasses
2073945 - APIRemovedInNextEUSReleaseInUse alert for podsecuritypolicies
2073972 - Invalid retention time and invalid retention size should be validated at one place and have error log in one place for platform monitoring
2074009 - [OVN] ovn-northd doesn't clean Chassis_Private record after scale down to 0 a machineSet
2074031 - Admins should be able to tune garbage collector aggressiveness (GOGC) for kube-apiserver if necessary
2074062 - Node Tuning Operator(NTO) - Cloud provider profile rollback doesn't work well
2074084 - CMO metrics not visible in the OCP webconsole UI
2074100 - CRD filtering according to name broken
2074210 - asia-south2, australia-southeast2, and southamerica-west1Missing from GCP regions
2074237 - oc new-app --image-stream flag behavior is unclear
2074243 - DefaultPlacement API allow empty enum value and remove default
2074447 - cluster-dashboard: CPU Utilisation iowait and steal
2074465 - PipelineRun fails in import from Git flow if "main" branch is default
2074471 - Cannot delete namespace with a LB type svc and Kuryr when ExternalCloudProvider is enabled
2074475 - [e2e][automation] kubevirt plugin cypress tests fail
2074483 - coreos-installer doesnt work on Dell machines
2074544 - e2e-metal-ipi-ovn-ipv6 failing due to recent CEO changes
2074585 - MCG standalone deployment page goes blank when the KMS option is enabled
2074606 - occm does not have permissions to annotate SVC objects
2074612 - Operator fails to install due to service name lookup failure
2074613 - nodeip-configuration container incorrectly attempts to relabel /etc/systemd/system
2074635 - Unable to start Web Terminal after deleting existing instance
2074659 - AWS installconfig ValidateForProvisioning always provides blank values to validate zone records
2074706 - Custom EC2 endpoint is not considered by AWS EBS CSI driver
2074710 - Transition to go-ovirt-client
2074756 - Namespace column provide wrong data in ClusterRole Details -> Rolebindings tab
2074767 - Metrics page show incorrect values due to metrics level config
2074807 - NodeFilesystemSpaceFillingUp alert fires even before kubelet GC kicks in
2074902 - `oc debug node/nodename ? chroot /host somecommand` should exit with non-zero when the sub-command failed
2075015 - etcd-guard connection refused event repeating pathologically (payload blocking)
2075024 - Metal upgrades permafailing on metal3 containers crash looping
2075050 - oc-mirror fails to calculate between two channels with different prefixes for the same version of OCP
2075091 - Symptom Detection.Undiagnosed panic detected in pod
2075117 - Developer catalog: Order dropdown (A-Z, Z-A) is miss-aligned (in a separate row)
2075149 - Trigger Translations When Extensions Are Updated
2075189 - Imports from dynamic-plugin-sdk lead to failed module resolution errors
2075459 - Set up cluster on aws with rootvolumn io2 failed due to no iops despite it being configured
2075475 - OVN-Kubernetes: egress router pod (redirect mode), access from pod on different worker-node (redirect) doesn't work
2075478 - Bump documentationBaseURL to 4.11
2075491 - nmstate operator cannot be upgraded on SNO
2075575 - Local Dev Env - Prometheus 404 Call errors spam the console
2075584 - improve clarity of build failure messages when using csi shared resources but tech preview is not enabled
2075592 - Regression - Top of the web terminal drawer is missing a stroke/dropshadow
2075621 - Cluster upgrade.[sig-mco] Machine config pools complete upgrade
2075647 - 'oc adm upgrade ...' POSTs ClusterVersion, clobbering any unrecognized spec properties
2075671 - Cluster Ingress Operator K8S API cache contains duplicate objects
2075778 - Fix failing TestGetRegistrySamples test
2075873 - Bump recommended FCOS to 35.20220327.3.0
2076193 - oc patch command for the liveness probe and readiness probe parameters of an OpenShift router deployment doesn't take effect
2076270 - [OCPonRHV] MachineSet scale down operation fails to delete the worker VMs
2076277 - [RFE] [OCPonRHV] Add storage domain ID valueto Compute/ControlPlain section in the machine object
2076290 - PTP operator readme missing documentation on BC setup via PTP config
2076297 - Router process ignores shutdown signal while starting up
2076323 - OLM blocks all operator installs if an openshift-marketplace catalogsource is unavailable
2076355 - The KubeletConfigController wrongly process multiple confs for a pool after having kubeletconfig in bootstrap
2076393 - [VSphere] survey fails to list datacenters
2076521 - Nodes in the same zone are not updated in the right order
2076527 - Pipeline Builder: Make unnecessary tekton hub API calls when the user types 'too fast'
2076544 - Whitespace (padding) is missing after an PatternFly update, already in 4.10
2076553 - Project access view replace group ref with user ref when updating their Role
2076614 - Missing Events component from the SDK API
2076637 - Configure metrics for vsphere driver to be reported
2076646 - openshift-install destroy unable to delete PVC disks in GCP if cluster identifier is longer than 22 characters
2076793 - CVO exits upgrade immediately rather than waiting for etcd backup
2076831 - [ocp4.11]Mem/cpu high utilization by apiserver/etcd for cluster stayed 10 hours
2076877 - network operator tracker to switch to use flowcontrol.apiserver.k8s.io/v1beta2 instead v1beta1 to be deprecated in k8s 1.26
2076880 - OKD: add cluster domain to the uploaded vm configs so that 30-local-dns-prepender can use it
2076975 - Metric unset during static route conversion in configure-ovs.sh
2076984 - TestConfigurableRouteNoConsumingUserNoRBAC fails in CI
2077050 - OCP should default to pd-ssd disk type on GCP
2077150 - Breadcrumbs on a few screens don't have correct top margin spacing
2077160 - Update owners for openshift/cluster-etcd-operator
2077357 - [release-4.11] 200ms packet delay with OVN controller turn on
2077373 - Accessibility warning on developer perspective
2077386 - Import page shows untranslated values for the route advanced routing>security options (devconsole~Edge)
2077457 - failure in test case "[sig-network][Feature:Router] The HAProxy router should serve the correct routes when running with the haproxy config manager"
2077497 - Rebase etcd to 3.5.3 or later
2077597 - machine-api-controller is not taking the proxy configuration when it needs to reach the RHV API
2077599 - OCP should alert users if they are on vsphere version <7.0.2
2077662 - AWS Platform Provisioning Check incorrectly identifies record as part of domain of cluster
2077797 - LSO pods don't have any resource requests
2077851 - "make vendor" target is not working
2077943 - If there is a service with multiple ports, and the route uses 8080, when editing the 8080 port isn't replaced, but a random port gets replaced and 8080 still stays
2077994 - Publish RHEL CoreOS AMIs in AWS ap-southeast-3 region
2078013 - drop multipathd.socket workaround
2078375 - When using the wizard with template using data source the resulting vm use pvc source
2078396 - [OVN AWS] EgressIP was not balanced to another egress node after original node was removed egress label
2078431 - [OCPonRHV] - ERROR failed to instantiate provider "openshift/local/ovirt" to obtain schema:  ERROR fork/exec
2078526 - Multicast breaks after master node reboot/sync
2078573 - SDN CNI -Fail to create nncp when vxlan is up
2078634 - CRI-O not killing Calico CNI stalled (zombie) processes.
2078698 - search box may not completely remove content
2078769 - Different not translated filter group names (incl. Secret, Pipeline, PIpelineRun)
2078778 - [4.11] oc get ValidatingWebhookConfiguration,MutatingWebhookConfiguration fails and caused ?apiserver panic'd...http2: panic serving xxx.xx.xxx.21:49748: cannot deep copy int? when AllRequestBodies audit-profile is used.
2078781 - PreflightValidation does not handle multiarch images
2078866 - [BM][IPI] Installation with bonds fail - DaemonSet "openshift-ovn-kubernetes/ovnkube-node" rollout is not making progress
2078875 - OpenShift Installer fail to remove Neutron ports
2078895 - [OCPonRHV]-"cow" unsupported value in format field in install-config.yaml
2078910 - CNO spitting out ".spec.groups[0].rules[4].runbook_url: field not declared in schema"
2078945 - Ensure only one apiserver-watcher process is active on a node.
2078954 - network-metrics-daemon makes costly global pod list calls scaling per node
2078969 - Avoid update races between old and new NTO operands during cluster upgrades
2079012 - egressIP not migrated to correct workers after deleting machineset it was assigned
2079062 - Test for console demo plugin toast notification needs to be increased for ci testing
2079197 - [RFE] alert when more than one default storage class is detected
2079216 - Partial cluster update reference doc link returns 404
2079292 - containers prometheus-operator/kube-rbac-proxy violate PodSecurity
2079315 - (release-4.11) Gather ODF config data with Insights
2079422 - Deprecated 1.25 API call
2079439 - OVN Pods Assigned Same IP Simultaneously
2079468 - Enhance the waitForIngressControllerCondition for better CI results
2079500 - okd-baremetal-install uses fcos for bootstrap but rhcos for cluster
2079610 - Opeatorhub status shows errors
2079663 - change default image features in RBD storageclass
2079673 - Add flags to disable migrated code
2079685 - Storageclass creation page with "Enable encryption" is not displaying saved KMS connection details when vaulttenantsa details are available in csi-kms-details config
2079724 - cluster-etcd-operator - disable defrag-controller as there is unpredictable impact on large OpenShift Container Platform 4 - Cluster
2079788 - Operator restarts while applying the acm-ice example
2079789 - cluster drops ImplicitlyEnabledCapabilities during upgrade
2079803 - Upgrade-triggered etcd backup will be skip during serial upgrade
2079805 - Secondary scheduler operator should comply to restricted pod security level
2079818 - Developer catalog installation overlay (modal?) shows a duplicated padding
2079837 - [RFE] Hub/Spoke example with daemonset
2079844 - EFS cluster csi driver status stuck in AWSEFSDriverCredentialsRequestControllerProgressing with sts installation
2079845 - The Event Sinks catalog page now has a blank space on the left
2079869 - Builds for multiple kernel versions should be ran in parallel when possible
2079913 - [4.10] APIRemovedInNextEUSReleaseInUse alert for OVN endpointslices
2079961 - The search results accordion has no spacing between it and the side navigation bar.
2079965 - [rebase v1.24]  [sig-node] PodOSRejection [NodeConformance] Kubelet should reject pod when the node OS doesn't match pod's OS [Suite:openshift/conformance/parallel] [Suite:k8s]
2080054 - TAGS arg for installer-artifacts images is not propagated to build images
2080153 - aws-load-balancer-operator-controller-manager pod stuck in ContainerCreating status
2080197 - etcd leader changes produce test churn during early stage of test
2080255 - EgressIP broken on AWS with OpenShiftSDN / latest nightly build
2080267 - [Fresh Installation] Openshift-machine-config-operator namespace is flooded with events related to clusterrole, clusterrolebinding
2080279 - CVE-2022-29810 go-getter: writes SSH credentials into logfile, exposing sensitive credentials to local uses
2080379 - Group all e2e tests as parallel or serial
2080387 - Visual connector not appear between the node if a node get created using "move connector" to a different application
2080416 - oc bash-completion problem
2080429 - CVO must ensure non-upgrade related changes are saved when desired payload fails to load
2080446 - Sync ironic images with latest bug fixes packages
2080679 - [rebase v1.24] [sig-cli] test failure
2080681 - [rebase v1.24]  [sig-cluster-lifecycle] CSRs from machines that are not recognized by the cloud provider are not approved [Suite:openshift/conformance/parallel]
2080687 - [rebase v1.24]  [sig-network][Feature:Router] tests are failing
2080873 - Topology graph crashes after update to 4.11 when Layout 2 (ColaForce) was selected previously
2080964 - Cluster operator special-resource-operator is always in Failing state with reason: "Reconciling simple-kmod"
2080976 - Avoid hooks config maps when hooks are empty
2081012 - [rebase v1.24]  [sig-devex][Feature:OpenShiftControllerManager] TestAutomaticCreationOfPullSecrets [Suite:openshift/conformance/parallel]
2081018 - [rebase v1.24] [sig-imageregistry][Feature:Image] oc tag should work when only imagestreams api is available
2081021 - [rebase v1.24] [sig-api-machinery] API data in etcd should be stored at the correct location and version for all resources
2081062 - Unrevert RHCOS back to 8.6
2081067 - admin dev-console /settings/cluster should point out history may be excerpted
2081069 - [sig-network] pods should successfully create sandboxes by adding pod to network
2081081 - PreflightValidation "odd number of arguments passed as key-value pairs for logging" error
2081084 - [rebase v1.24] [sig-instrumentation] Events API should ensure that an event can be fetched, patched, deleted, and listed
2081087 - [rebase v1.24] [sig-auth] ServiceAccounts should allow opting out of API token automount
2081119 - `oc explain` output of default overlaySize is outdated
2081172 - MetallLB: YAML view in webconsole does not show all the available key value pairs of all the objects
2081201 - cloud-init User check for Windows VM refuses to accept capitalized usernames
2081447 - Ingress operator performs spurious updates in response to API's defaulting of router deployment's router container's ports' protocol field
2081562 - lifecycle.posStart hook does not have network connectivity.
2081685 - Typo in NNCE Conditions
2081743 - [e2e] tests failing
2081788 - MetalLB: the crds are not validated until metallb is deployed
2081821 - SpecialResourceModule CRD is not installed after deploying SRO operator using brew bundle image via OLM
2081895 - Use the managed resource (and not the manifest) for resource health checks
2081997 - disconnected insights operator remains degraded after editing pull secret
2082075 - Removing huge amount of ports takes a lot of time.
2082235 - CNO exposes a generic apiserver that apparently does nothing
2082283 - Transition to new oVirt Terraform provider
2082360 - OCP 4.10.4, CNI: SDN; Whereabouts IPAM: Duplicate IP address with bond-cni
2082380 - [4.10.z] customize wizard is crashed
2082403 - [LSO] No new build local-storage-operator-metadata-container created
2082428 - oc patch healthCheckInterval with invalid "5 s" to the ingress-controller successfully
2082441 - [UPI] aws-load-balancer-operator-controller-manager failed to get VPC ID in UPI on AWS
2082492 - [IPI IBM]Can't create image-registry-private-configuration secret with error "specified resource key credentials does not contain HMAC keys"
2082535 - [OCPonRHV]-workers are cloned when "clone: false" is specified in install-config.yaml
2082538 - apirequests limits of Cluster CAPI Operator are too low for GCP platform
2082566 - OCP dashboard fails to load when the query to Prometheus takes more than 30s to return
2082604 - [IBMCloud][x86_64] IBM VPC does not properly support RHCOS Custom Image tagging
2082667 - No new machines provisioned while machineset controller drained old nodes for change to machineset
2082687 - [IBM Cloud][x86_64][CCCMO] IBM x86_64 CCM using unsupported --port argument
2082763 - Cluster install stuck on the applying for operatorhub "cluster"
2083149 - "Update blocked" label incorrectly displays on new minor versions in the "Other available paths" modal
2083153 - Unable to use application credentials for Manila PVC creation on OpenStack
2083154 - Dynamic plugin sdk tsdoc generation does not render docs for parameters
2083219 - DPU network operator doesn't deal with c1... inteface names
2083237 - [vsphere-ipi] Machineset scale up process delay
2083299 - SRO does not fetch mirrored DTK images in disconnected clusters
2083445 - [FJ OCP4.11 Bug]: RAID setting during IPI cluster deployment fails if iRMC port number is specified
2083451 - Update external serivces URLs to console.redhat.com
2083459 - Make numvfs > totalvfs error message more verbose
2083466 - Failed to create clusters on AWS C2S/SC2S due to image-registry MissingEndpoint error
2083514 - Operator ignores managementState Removed
2083641 - OpenShift Console Knative Eventing ContainerSource generates wrong api version when pointed to k8s Service
2083756 - Linkify not upgradeable message on ClusterSettings page
2083770 - Release image signature manifest filename extension is yaml
2083919 - openshift4/ose-operator-registry:4.10.0 having security vulnerabilities
2083942 - Learner promotion can temporarily fail with rpc not supported for learner errors
2083964 - Sink resources dropdown is not persisted in form yaml switcher in event source creation form
2083999 - "--prune-over-size-limit" is not working as expected
2084079 - prometheus route is not updated to "path: /api" after upgrade from 4.10 to 4.11
2084081 - nmstate-operator installed cluster on POWER shows issues while adding new dhcp interface
2084124 - The Update cluster modal includes a broken link
2084215 - Resource configmap "openshift-machine-api/kube-rbac-proxy" is defined by 2 manifests
2084249 - panic in ovn pod from an e2e-aws-single-node-serial nightly run
2084280 - GCP API Checks Fail if non-required APIs are not enabled
2084288 - "alert/Watchdog must have no gaps or changes" failing after bump
2084292 - Access to dashboard resources is needed in dynamic plugin SDK
2084331 - Resource with multiple capabilities included unless all capabilities are disabled
2084433 - Podsecurity violation error getting logged for ingresscontroller during deployment.
2084438 - Change Ping source spec.jsonData (deprecated) field  to spec.data
2084441 - [IPI-Azure]fail to check the vm capabilities in install cluster
2084459 - Topology list view crashes when switching from chart view after moving sink from knative service to uri
2084463 - 5 control plane replica tests fail on ephemeral volumes
2084539 - update azure arm templates to support customer provided vnet
2084545 - [rebase v1.24] cluster-api-operator causes all techpreview tests to fail
2084580 - [4.10] No cluster name sanity validation - cluster name with a dot (".") character
2084615 - Add to navigation option on search page is not properly aligned
2084635 - PipelineRun creation from the GUI for a Pipeline with 2 workspaces hardcode the PVC storageclass
2084732 - A special resource that was created in OCP 4.9 can't be deleted after an upgrade to 4.10
2085187 - installer-artifacts fails to build with go 1.18
2085326 - kube-state-metrics is tripping APIRemovedInNextEUSReleaseInUse
2085336 - [IPI-Azure] Fail to create the worker node which HyperVGenerations is V2 or V1 and vmNetworkingType is Accelerated
2085380 - [IPI-Azure] Incorrect error prompt validate VM image and instance HyperV gen match when install cluster
2085407 - There is no Edit link/icon for labels on Node details page
2085721 - customization controller image name is wrong
2086056 - Missing doc for OVS HW offload
2086086 - Update Cluster Sample Operator dependencies and libraries for OCP 4.11
2086092 - update kube to v.24
2086143 - CNO uses too much memory
2086198 - Cluster CAPI Operator creates unnecessary defaulting webhooks
2086301 - kubernetes nmstate pods are not running after creating instance
2086408 - Podsecurity violation error getting logged for  externalDNS operand pods during deployment
2086417 - Pipeline created from add flow has GIT Revision as required field
2086437 - EgressQoS CRD not available
2086450 - aws-load-balancer-controller-cluster pod logged Podsecurity violation error during deployment
2086459 - oc adm inspect fails when one of resources not exist
2086461 - CNO probes MTU unnecessarily in Hypershift, making cluster startup take too long
2086465 - External identity providers should log login attempts in the audit trail
2086469 - No data about title 'API Request Duration by Verb - 99th Percentile' display on the dashboard 'API Performance'
2086483 - baremetal-runtimecfg k8s dependencies should be on a par with 1.24 rebase
2086505 - Update oauth-server images to be consistent with ART
2086519 - workloads must comply to restricted security policy
2086521 - Icons of Knative actions are not clearly visible on the context menu in the dark mode
2086542 - Cannot create service binding through drag and drop
2086544 - ovn-k master daemonset on hypershift shouldn't log token
2086546 - Service binding connector is not visible in the dark mode
2086718 - PowerVS destroy code does not work
2086728 - [hypershift] Move drain to controller
2086731 - Vertical pod autoscaler operator needs a 4.11 bump
2086734 - Update csi driver images to be consistent with ART
2086737 - cloud-provider-openstack rebase to kubernetes v1.24
2086754 - Cluster resource override operator needs a 4.11 bump
2086759 - [IPI] OCP-4.11 baremetal - boot partition is not mounted on temporary directory
2086791 - Azure: Validate UltraSSD instances in multi-zone regions
2086851 - pods with multiple external gateways may only be have ECMP routes for one gateway
2086936 - vsphere ipi should use cores by default instead of sockets
2086958 - flaky e2e in kube-controller-manager-operator TestPodDisruptionBudgetAtLimitAlert
2086959 - flaky e2e in kube-controller-manager-operator TestLogLevel
2086962 - oc-mirror publishes metadata with --dry-run when publishing to mirror
2086964 - oc-mirror fails on differential run when mirroring a package with multiple channels specified
2086972 - oc-mirror does not error invalid metadata is passed to the describe command
2086974 - oc-mirror does not work with headsonly for operator 4.8
2087024 - The oc-mirror result mapping.txt is not correct , can?t be used by `oc image mirror` command
2087026 - DTK's imagestream is missing from OCP 4.11 payload
2087037 - Cluster Autoscaler should use K8s 1.24 dependencies
2087039 - Machine API components should use K8s 1.24 dependencies
2087042 - Cloud providers components should use K8s 1.24 dependencies
2087084 - remove unintentional nic support
2087103 - "Updating to release image" from 'oc' should point out that the cluster-version operator hasn't accepted the update
2087114 - Add simple-procfs-kmod in modprobe example in README.md
2087213 - Spoke BMH stuck "inspecting" when deployed via ZTP in 4.11 OCP hub
2087271 - oc-mirror does not check for existing workspace when performing mirror2mirror synchronization
2087556 - Failed to render DPU ovnk manifests
2087579 - ` --keep-manifest-list=true` does not work for `oc adm release new` , only pick up the linux/amd64 manifest from the manifest list
2087680 - [Descheduler] Sync with sigs.k8s.io/descheduler
2087684 - KCMO should not be able to apply LowUpdateSlowReaction from Default WorkerLatencyProfile
2087685 - KASO should not be able to apply LowUpdateSlowReaction from Default WorkerLatencyProfile
2087687 - MCO does not generate event when user applies Default -> LowUpdateSlowReaction WorkerLatencyProfile
2087764 - Rewrite the registry backend will hit error
2087771 - [tracker] NetworkManager 1.36.0 loses DHCP lease and doesn't try again
2087772 - Bindable badge causes some layout issues with the side panel of bindable operator backed services
2087942 - CNO references images that are divergent from ART
2087944 - KafkaSink Node visualized incorrectly
2087983 - remove etcd_perf before restore
2087993 - PreflightValidation many "msg":"TODO: preflight checks" in the operator log
2088130 - oc-mirror init does not allow for automated testing
2088161 - Match dockerfile image name with the name used in the release repo
2088248 - Create HANA VM does not use values from customized HANA templates
2088304 - ose-console: enable source containers for open source requirements
2088428 - clusteroperator/baremetal stays in progressing: Applying metal3 resources state on a fresh install
2088431 - AvoidBuggyIPs field of addresspool should be removed
2088483 - oc adm catalog mirror returns 0 even if there are errors
2088489 - Topology list does not allow selecting an application group anymore (again)
2088533 - CRDs for openshift.io should have subresource.status failes on sharedconfigmaps.sharedresource and sharedsecrets.sharedresource
2088535 - MetalLB: Enable debug log level for downstream CI
2088541 - Default CatalogSources in openshift-marketplace namespace keeps throwing pod security admission warnings `would violate PodSecurity "restricted:v1.24"`
2088561 - BMH unable to start inspection: File name too long
2088634 - oc-mirror does not fail when catalog is invalid
2088660 - Nutanix IPI installation inside container failed
2088663 - Better to change the default value of --max-per-registry to 6
2089163 - NMState CRD out of sync with code
2089191 - should remove grafana from cluster-monitoring-config configmap in hypershift cluster
2089224 - openshift-monitoring/cluster-monitoring-config configmap always revert to default setting
2089254 - CAPI operator: Rotate token secret if its older than 30 minutes
2089276 - origin tests for egressIP and azure fail
2089295 - [Nutanix]machine stuck in Deleting phase when delete a machineset whose replicas>=2 and machine is Provisioning phase on Nutanix
2089309 - [OCP 4.11] Ironic inspector image fails to clean disks that are part of a multipath setup if they are passive paths
2089334 - All cloud providers should use service account credentials
2089344 - Failed to deploy simple-kmod
2089350 - Rebase sdn to 1.24
2089387 - LSO not taking mpath. ignoring device
2089392 - 120 node baremetal upgrade from 4.9.29 --> 4.10.13  crashloops on machine-approver
2089396 - oc-mirror does not show pruned image plan
2089405 - New topology package shows gray build icons instead of green/red icons for builds and pipelines
2089419 - do not block 4.10 to 4.11 upgrades if an existing CSI driver is found. Instead, warn about presence of third party CSI driver
2089488 - Special resources are missing the managementState field
2089563 - Update Power VS MAPI to use api's from openshift/api repo
2089574 - UWM prometheus-operator pod can't start up due to no master node in hypershift cluster
2089675 - Could not move Serverless Service without Revision (or while starting?)
2089681 - [Hypershift] EgressIP doesn't work in hypershift guest cluster
2089682 - Installer expects all nutanix subnets to have a cluster reference which is not the case for e.g. overlay networks
2089687 - alert message of MCDDrainError needs to be updated for new drain controller
2089696 - CR reconciliation is stuck in daemonset lifecycle
2089716 - [4.11][reliability]one worker node became NotReady on which ovnkube-node pod's memory increased sharply
2089719 - acm-simple-kmod fails to build
2089720 - [Hypershift] ICSP doesn't work for the guest cluster
2089743 - acm-ice fails to deploy: helm chart does not appear to be a gzipped archive
2089773 - Pipeline status filter and status colors doesn't work correctly with non-english languages
2089775 - keepalived can keep ingress VIP on wrong node under certain circumstances
2089805 - Config duration metrics aren't exposed
2089827 - MetalLB CI - backward compatible tests are failing due to the order of delete
2089909 - PTP e2e testing not working on SNO cluster
2089918 - oc-mirror skip-missing still returns 404 errors when images do not exist
2089930 - Bump OVN to 22.06
2089933 - Pods do not post readiness status on termination
2089968 - Multus CNI daemonset should use hostPath mounts with type: directory
2089973 - bump libs to k8s 1.24 for OCP 4.11
2089996 - Unnecessary yarn install runs in e2e tests
2090017 - Enable source containers to meet open source requirements
2090049 - destroying GCP cluster which has a compute node without infra id in name would fail to delete 2 k8s firewall-rules and VPC network
2090092 - Will hit error if specify the channel not the latest
2090151 - [RHEL scale up] increase the wait time so that the node has enough time to get ready
2090178 - VM SSH command generated by UI points at api VIP
2090182 - [Nutanix]Create a machineset with invalid image, machine stuck in "Provisioning" phase
2090236 - Only reconcile annotations and status for clusters
2090266 - oc adm release extract is failing on mutli arch image
2090268 - [AWS EFS] Operator not getting installed successfully on Hypershift Guest cluster
2090336 - Multus logging should be disabled prior to release
2090343 - Multus debug logging should be enabled temporarily for debugging podsandbox creation failures.
2090358 - Initiating drain log message is displayed before the drain actually starts
2090359 - Nutanix mapi-controller: misleading error message when the failure is caused by wrong credentials
2090405 - [tracker] weird port mapping with asymmetric traffic [rhel-8.6.0.z]
2090430 - gofmt code
2090436 - It takes 30min-60min to update the machine count in custom MachineConfigPools (MCPs) when a node is removed from the pool
2090437 - Bump CNO to k8s 1.24
2090465 - golang version mismatch
2090487 - Change default SNO Networking Type and disallow OpenShiftSDN a supported networking Type
2090537 - failure in ovndb migration when db is not ready in HA mode
2090549 - dpu-network-operator shall be able to run on amd64 arch platform
2090621 - Metal3 plugin does not work properly with updated NodeMaintenance CRD
2090627 - Git commit and branch are empty in MetalLB log
2090692 - Bump to latest 1.24 k8s release
2090730 - must-gather should include multus logs.
2090731 - nmstate deploys two instances of webhook on a single-node cluster
2090751 - oc image mirror skip-missing flag does not skip images
2090755 - MetalLB: BGPAdvertisement validation allows duplicate entries for ip pool selector, ip address pools, node selector and bgp peers
2090774 - Add Readme to plugin directory
2090794 - MachineConfigPool cannot apply a configuration after fixing the pods that caused a drain alert
2090809 - gm.ClockClass  invalid syntax parse error in linux ptp daemon logs
2090816 - OCP 4.8 Baremetal IPI installation failure: "Bootstrap failed to complete: timed out waiting for the condition"
2090819 - oc-mirror does not catch invalid registry input when a namespace is specified
2090827 - Rebase CoreDNS to 1.9.2 and k8s 1.24
2090829 - Bump OpenShift router to k8s 1.24
2090838 - Flaky test: ignore flapping host interface 'tunbr'
2090843 - addLogicalPort() performance/scale optimizations
2090895 - Dynamic plugin nav extension "startsWith" property does not work
2090929 - [etcd] cluster-backup.sh script has a conflict to use the '/etc/kubernetes/static-pod-certs' folder if a custom API certificate is defined
2090993 - [AI Day2] Worker node overview page crashes in Openshift console with TypeError
2091029 - Cancel rollout action only appears when rollout is completed
2091030 - Some BM may fail booting with default bootMode strategy
2091033 - [Descheduler]: provide ability to override included/excluded namespaces
2091087 - ODC Helm backend Owners file needs updates
2091106 - Dependabot alert: Unhandled exception in gopkg.in/yaml.v3
2091142 - Dependabot alert: Unhandled exception in gopkg.in/yaml.v3
2091167 - IPsec runtime enabling not work in hypershift
2091218 - Update Dev Console Helm backend to use helm 3.9.0
2091433 - Update AWS instance types
2091542 - Error Loading/404 not found page shown after clicking "Current namespace only"
2091547 - Internet connection test with proxy permanently fails
2091567 - oVirt CSI driver should use latest go-ovirt-client
2091595 - Alertmanager configuration can't use OpsGenie's entity field when AlertmanagerConfig is enabled
2091599 - PTP Dual Nic  | Extend Events 4.11 - Up/Down master interface affects all the other interface in the same NIC accoording the events and metric
2091603 - WebSocket connection restarts when switching tabs in WebTerminal
2091613 - simple-kmod fails to build due to missing KVC
2091634 - OVS 2.15 stops handling traffic once ovs-dpctl(2.17.2) is used against it
2091730 - MCO e2e tests are failing with "No token found in openshift-monitoring secrets"
2091746 - "Oh no! Something went wrong" shown after user creates MCP without 'spec'
2091770 - CVO gets stuck downloading an upgrade, with the version pod complaining about invalid options
2091854 - clusteroperator status filter doesn't match all values in Status column
2091901 - Log stream paused right after updating log lines in Web Console in OCP4.10
2091902 - unable to retrieve the complete list of server APIs: metrics.k8s.io/v1beta1: the server has received too many requests and has asked us to try again later
2091990 - wrong external-ids for ovn-controller lflow-cache-limit-kb
2092003 - PR 3162 | BZ 2084450 - invalid URL schema for AWS causes tests to perma fail and break the cloud-network-config-controller
2092041 - Bump cluster-dns-operator to k8s 1.24
2092042 - Bump cluster-ingress-operator to k8s 1.24
2092047 - Kube 1.24 rebase for cloud-network-config-controller
2092137 - Search doesn't show all entries when name filter is cleared
2092296 - Change Default MachineCIDR of Power VS Platform from 10.x to 192.168.0.0/16
2092390 - [RDR] [UI] Multiple instances of Object Bucket, Object Bucket Claims and 'Overview' tab is present under Storage section on the Hub cluster when navigated back from the Managed cluster using the Hybrid console dropdown
2092395 - etcdHighNumberOfFailedGRPCRequests alerts with wrong results
2092408 - Wrong icon is used in the virtualization overview permissions card
2092414 - In virtualization overview "running vm per templates" template list can be improved
2092442 - Minimum time between drain retries is not the expected one
2092464 - marketplace catalog defaults to v4.10
2092473 - libovsdb performance backports
2092495 - ovn: use up to 4 northd threads in non-SNO clusters
2092502 - [azure-file-csi-driver] Stop shipping a NFS StorageClass
2092509 - Invalid memory address error if non existing caBundle is configured in DNS-over-TLS using ForwardPlugins
2092572 - acm-simple-kmod chart should create the namespace on the spoke cluster
2092579 - Don't retry pod deletion if objects are not existing
2092650 - [BM IPI with Provisioning Network] Worker nodes are not provisioned: ironic-agent is stuck before writing into disks
2092703 - Incorrect mount propagation information in container status
2092815 - can't delete the unwanted image from registry by oc-mirror
2092851 - [Descheduler]: allow to customize the LowNodeUtilization strategy thresholds
2092867 - make repository name unique in acm-ice/acm-simple-kmod examples
2092880 - etcdHighNumberOfLeaderChanges returns incorrect number of leadership changes
2092887 - oc-mirror list releases command uses filter-options flag instead of filter-by-os
2092889 - Incorrect updating of EgressACLs using direction "from-lport"
2092918 - CVE-2022-30321 go-getter: unsafe download (issue 1 of 3)
2092923 - CVE-2022-30322 go-getter: unsafe download (issue 2 of 3)
2092925 - CVE-2022-30323 go-getter: unsafe download (issue 3 of 3)
2092928 - CVE-2022-26945 go-getter: command injection vulnerability
2092937 - WebScale: OVN-k8s forwarding to external-gw over the secondary interfaces failing
2092966 - [OCP 4.11] [azure] /etc/udev/rules.d/66-azure-storage.rules missing from initramfs
2093044 - Azure machine-api-provider-azure Availability Set Name Length Limit
2093047 - Dynamic Plugins: Generated API markdown duplicates `checkAccess` and `useAccessReview` doc
2093126 - [4.11] Bootimage bump tracker
2093236 - DNS operator stopped reconciling after 4.10 to 4.11 upgrade | 4.11 nightly to 4.11 nightly upgrade
2093288 - Default catalogs fails liveness/readiness probes
2093357 - Upgrading sno spoke with acm-ice, causes the sno to get unreachable
2093368 - Installer orphans FIPs created for LoadBalancer Services on `cluster destroy`
2093396 - Remove node-tainting for too-small MTU
2093445 - ManagementState reconciliation breaks SR
2093454 - Router proxy protocol doesn't work with dual-stack (IPv4 and IPv6) clusters
2093462 - Ingress Operator isn't reconciling the ingress cluster operator object
2093586 - Topology: Ctrl+space opens the quick search modal, but doesn't close it again
2093593 - Import from Devfile shows configuration options that shoudn't be there
2093597 - Import: Advanced option sentence is splited into two parts and headlines has no padding
2093600 - Project access tab should apply new permissions before it delete old ones
2093601 - Project access page doesn't allow the user to update the settings twice (without manually reload the content)
2093783 - Should bump cluster-kube-descheduler-operator to kubernetes version V1.24
2093797 - 'oc registry login' with serviceaccount function need update
2093819 - An etcd member for a new machine was never added to the cluster
2093930 - Gather console helm install  totals metric
2093957 - Oc-mirror write dup metadata to registry backend
2093986 - Podsecurity violation error getting logged for pod-identity-webhook
2093992 - Cluster version operator acknowledges upgrade failing on periodic-ci-openshift-release-master-nightly-4.11-e2e-metal-ipi-upgrade-ovn-ipv6
2094023 - Add Git Flow - Template Labels for Deployment show as DeploymentConfig
2094024 - bump oauth-apiserver deps to include 1.23.1 k8s that fixes etcd blips
2094039 - egressIP panics with nil pointer dereference
2094055 - Bump coreos-installer for s390x Secure Execution
2094071 - No runbook created for SouthboundStale alert
2094088 - Columns in NBDB may never be updated by OVNK
2094104 - Demo dynamic plugin image tests should be skipped when testing console-operator
2094152 - Alerts in the virtualization overview status card aren't filtered
2094196 - Add default and validating webhooks for Power VS MAPI
2094227 - Topology: Create Service Binding should not be the last option (even under delete)
2094239 - custom pool Nodes with 0 nodes are always populated in progress bar
2094303 - If og is configured with sa, operator installation will be failed.
2094335 - [Nutanix] - debug logs are enabled by default in machine-controller
2094342 - apirequests limits of Cluster CAPI Operator are too low for Azure platform
2094438 - Make AWS URL parsing more lenient for GetNodeEgressIPConfiguration
2094525 - Allow automatic upgrades for efs operator
2094532 - ovn-windows CI jobs are broken
2094675 - PTP Dual Nic  | Extend Events 4.11 - when kill the phc2sys We have notification for the ptp4l physical master moved to free run
2094694 - [Nutanix] No cluster name sanity validation - cluster name with a dot (".") character
2094704 - Verbose log activated on kube-rbac-proxy in deployment prometheus-k8s
2094801 - Kuryr controller keep restarting when handling IPs with leading zeros
2094806 - Machine API oVrit component should use K8s 1.24 dependencies
2094816 - Kuryr controller restarts when over quota
2094833 - Repository overview page does not show default PipelineRun template for developer user
2094857 - CloudShellTerminal loops indefinitely if DevWorkspace CR goes into failed state
2094864 - Rebase CAPG to latest changes
2094866 - oc-mirror does not always delete all manifests associated with an image during pruning
2094896 - Run 'openshift-install agent create image' has segfault exception if cluster-manifests directory missing
2094902 - Fix installer cross-compiling
2094932 - MGMT-10403 Ingress should enable single-node cluster expansion on upgraded clusters
2095049 - managed-csi StorageClass does not create PVs
2095071 - Backend tests fails after devfile registry update
2095083 - Observe > Dashboards: Graphs may change a lot on automatic refresh
2095110 - [ovn] northd container termination script must use bash
2095113 - [ovnkube] bump to openvswitch2.17-2.17.0-22.el8fdp
2095226 - Added changes to verify cloud connection and dhcpservices quota of a powervs instance
2095229 - ingress-operator pod in CrashLoopBackOff in 4.11 after upgrade starting in 4.6 due to go panic
2095231 - Kafka Sink sidebar in topology is empty
2095247 - Event sink form doesn't show channel as sink until app is refreshed
2095248 - [vSphere-CSI-Driver] does not report volume count limits correctly caused pod with multi volumes maybe schedule to not satisfied volume count node
2095256 - Samples Owner needs to be Updated
2095264 - ovs-configuration.service fails with Error: Failed to modify connection 'ovs-if-br-ex': failed to update connection: error writing to file '/etc/NetworkManager/systemConnectionsMerged/ovs-if-br-ex.nmconnection'
2095362 - oVirt CSI driver operator should use latest go-ovirt-client
2095574 - e2e-agnostic CI job fails
2095687 - Debug Container shown for build logs and on click ui breaks
2095703 - machinedeletionhooks doesn't work in vsphere cluster and BM cluster
2095716 - New PSA component for Pod Security Standards enforcement is refusing openshift-operators ns
2095756 - CNO panics with concurrent map read/write
2095772 - Memory requests for ovnkube-master containers are over-sized
2095917 - Nutanix set osDisk with diskSizeGB rather than diskSizeMiB
2095941 - DNS Traffic not kept local to zone or node when Calico SDN utilized
2096053 - Builder Image icons in Git Import flow are hard to see in Dark mode
2096226 - crio fails to bind to tentative IP, causing service failure since RHOCS was rebased on RHEL 8.6
2096315 - NodeClockNotSynchronising alert's severity should be critical
2096350 - Web console doesn't display webhook errors for upgrades
2096352 - Collect whole journal in gather
2096380 - acm-simple-kmod references deprecated KVC example
2096392 - Topology node icons are not properly visible in Dark mode
2096394 - Add page Card items background color does not match with column background color in Dark mode
2096413 - br-ex not created due to default bond interface having a different mac address than expected
2096496 - FIPS issue on OCP SNO with RT Kernel via performance profile
2096605 - [vsphere] no validation checking for diskType
2096691 - [Alibaba 4.11] Specifying ResourceGroup id in install-config.yaml, New pv are still getting created to default ResourceGroups
2096855 - `oc adm release new` failed with error when use  an existing  multi-arch release image as input
2096905 - Openshift installer should not use the prism client embedded in nutanix terraform provider
2096908 - Dark theme issue in pipeline builder, Helm rollback form, and Git import
2097000 - KafkaConnections disappear from Topology after creating KafkaSink in Topology
2097043 - No clean way to specify operand issues to KEDA OLM operator
2097047 - MetalLB:  matchExpressions used in CR like L2Advertisement, BGPAdvertisement, BGPPeers allow duplicate entries
2097067 - ClusterVersion history pruner does not always retain initial completed update entry
2097153 - poor performance on API call to vCenter ListTags with thousands of tags
2097186 - PSa autolabeling in 4.11 env upgraded from 4.10 does not work due to missing RBAC objects
2097239 - Change Lower CPU limits for Power VS cloud
2097246 - Kuryr: verify and unit jobs failing due to upstream OpenStack dropping py36 support
2097260 - openshift-install create manifests failed for Power VS platform
2097276 - MetalLB CI deploys the operator via manifests and not using the csv
2097282 - chore: update external-provisioner to the latest upstream release
2097283 - chore: update external-snapshotter to the latest upstream release
2097284 - chore: update external-attacher to the latest upstream release
2097286 - chore: update node-driver-registrar to the latest upstream release
2097334 - oc plugin help shows 'kubectl'
2097346 - Monitoring must-gather doesn't seem to be working anymore in 4.11
2097400 - Shared Resource CSI Driver needs additional permissions for validation webhook
2097454 - Placeholder bug for OCP 4.11.0 metadata release
2097503 - chore: rebase against latest external-resizer
2097555 - IngressControllersNotUpgradeable: load balancer service has been modified; changes must be reverted before upgrading
2097607 - Add Power VS support to Webhooks tests in actuator e2e test
2097685 - Ironic-agent can't restart because of existing container
2097716 - settings under httpConfig is dropped with AlertmanagerConfig v1beta1
2097810 - Required Network tools missing for Testing e2e PTP
2097832 - clean up unused IPv6DualStackNoUpgrade feature gate
2097940 - openshift-install destroy cluster traps if vpcRegion not specified
2097954 - 4.11 installation failed at monitoring and network clusteroperators with error "conmon: option parsing failed: Unknown option --log-global-size-max" making all jobs failing
2098172 - oc-mirror does not validatethe registry in the storage config
2098175 - invalid license in python-dataclasses-0.8-2.el8 spec
2098177 - python-pint-0.10.1-2.el8 has unused Patch0 in spec file
2098242 - typo in SRO specialresourcemodule
2098243 - Add error check to Platform create for Power VS
2098392 - [OCP 4.11] Ironic cannot match "wwn" rootDeviceHint for a multipath device
2098508 - Control-plane-machine-set-operator report panic
2098610 - No need to check the push permission with ?manifests-only option
2099293 - oVirt cluster API provider should use latest go-ovirt-client
2099330 - Edit application grouping is shown to user with view only access in a cluster
2099340 - CAPI e2e tests for AWS are missing
2099357 - ovn-kubernetes needs explicit RBAC coordination leases for 1.24 bump
2099358 - Dark mode+Topology update: Unexpected selected+hover border and background colors for app groups
2099528 - Layout issue: No spacing in delete modals
2099561 - Prometheus returns HTTP 500 error on /favicon.ico
2099582 - Format and update Repository overview content
2099611 - Failures on etcd-operator watch channels
2099637 - Should print error when use --keep-manifest-list=false for manifestlist image
2099654 - Topology performance: Endless rerender loop when showing a Http EventSink (KameletBinding)
2099668 - KubeControllerManager should degrade when GC stops working
2099695 - Update CAPG after rebase
2099751 - specialresourcemodule stacktrace while looping over build status
2099755 - EgressIP node's mgmtIP reachability configuration option
2099763 - Update icons for event sources and sinks in topology, Add page, and context menu
2099811 - UDP Packet loss in OpenShift using IPv6 [upcall]
2099821 - exporting a pointer for the loop variable
2099875 - The speaker won't start if there's another component on the host listening on 8080
2099899 - oc-mirror looks for layers in the wrong repository when searching for release images during publishing
2099928 - [FJ OCP4.11 Bug]: Add unit tests to image_customization_test file
2099968 - [Azure-File-CSI] failed to provisioning volume in ARO cluster
2100001 - Sync upstream v1.22.0 downstream
2100007 - Run bundle-upgrade failed from the traditional File-Based Catalog installed operator
2100033 - OCP 4.11 IPI - Some csr remain "Pending" post deployment
2100038 - failure to update special-resource-lifecycle table during update Event
2100079 - SDN needs explicit RBAC coordination leases for 1.24 bump
2100138 - release info --bugs has no differentiator between Jira and Bugzilla
2100155 - kube-apiserver-operator should raise an alert when there is a Pod Security admission violation
2100159 - Dark theme: Build icon for pending status is not inverted in topology sidebar
2100323 - Sqlit-based catsrc cannot be ready due to "Error: open ./db-xxxx: permission denied"
2100347 - KASO retains old config values when switching from Medium/Default to empty worker latency profile
2100356 - Remove Condition tab and create option from console as it is deprecated in OSP-1.8
2100439 - [gce-pd] GCE PD in-tree storage plugin tests not running
2100496 - [OCPonRHV]-oVirt API returns affinity groups without a description field
2100507 - Remove redundant log lines from obj_retry.go
2100536 - Update API to allow EgressIP node reachability check
2100601 - Update CNO to allow EgressIP node reachability check
2100643 - [Migration] [GCP]OVN can not rollback to SDN
2100644 - openshift-ansible FTBFS on RHEL8
2100669 - Telemetry should not log the full path if it contains a username
2100749 - [OCP 4.11] multipath support needs multipath modules
2100825 - Update machine-api-powervs go modules to latest version
2100841 - tiny openshift-install usability fix for setting KUBECONFIG
2101460 - An etcd member for a new machine was never added to the cluster
2101498 - Revert Bug 2082599: add upper bound to number of failed attempts
2102086 - The base image is still 4.10 for operator-sdk 1.22
2102302 - Dummy bug for 4.10 backports
2102362 - Valid regions should be allowed in GCP install config
2102500 - Kubernetes NMState pods can not evict due to PDB on an SNO cluster
2102639 - Drain happens before other image-registry pod is ready to service requests, causing disruption
2102782 - topolvm-controller get into CrashLoopBackOff few minutes after install
2102834 - [cloud-credential-operator]container has runAsNonRoot and image will run as root
2102947 - [VPA] recommender is logging errors for pods with init containers
2103053 - [4.11] Backport Prow CI improvements from master
2103075 - Listing secrets in all namespaces with a specific labelSelector does not work properly
2103080 - br-ex not created due to default bond interface having a different mac address than expected
2103177 - disabling ipv6 router advertisements using "all" does not disable it on secondary interfaces
2103728 - Carry HAProxy patch 'BUG/MEDIUM: h2: match absolute-path not path-absolute for :path'
2103749 - MachineConfigPool is not getting updated
2104282 - heterogeneous arch: oc adm extract encodes arch specific release payload pullspec rather than the manifestlisted pullspec
2104432 - [dpu-network-operator] Updating images to be consistent with ART
2104552 - kube-controller-manager operator 4.11.0-rc.0 degraded on disabled monitoring stack
2104561 - 4.10 to 4.11 update: Degraded node: unexpected on-disk state: mode mismatch for file: "/etc/crio/crio.conf.d/01-ctrcfg-pidsLimit"; expected: -rw-r--r--/420/0644; received: ----------/0/0
2104589 - must-gather namespace should have ?privileged? warn and audit pod security labels besides enforce
2104701 - In CI 4.10 HAProxy must-gather takes longer than 10 minutes
2104717 - NetworkPolicies: ovnkube-master pods crashing due to panic: "invalid memory address or nil pointer dereference"
2104727 - Bootstrap node should honor http proxy
2104906 - Uninstall fails with Observed a panic: runtime.boundsError
2104951 - Web console doesn't display webhook errors for upgrades
2104991 - Completed pods may not be correctly cleaned up
2105101 - NodeIP is used instead of EgressIP if egressPod is recreated within 60 seconds
2105106 - co/node-tuning: Waiting for 15/72 Profiles to be applied
2105146 - Degraded=True noise with: UpgradeBackupControllerDegraded: unable to retrieve cluster version, no completed update was found in cluster version status history
2105167 - BuildConfig throws error when using a label with a / in it
2105334 - vmware-vsphere-csi-driver-controller can't use host port error on e2e-vsphere-serial
2105382 - Add a validation webhook for Nutanix machine provider spec in Machine API Operator
2105468 - The ccoctl does not seem to know how to leverage the VMs service account to talk to GCP APIs.
2105937 - telemeter golangci-lint outdated blocking ART PRs that update to Go1.18
2106051 - Unable to deploy acm-ice using latest SRO 4.11 build
2106058 - vSphere defaults to SecureBoot on; breaks installation of out-of-tree drivers [4.11.0]
2106062 - [4.11] Bootimage bump tracker
2106116 - IngressController spec.tuningOptions.healthCheckInterval validation allows invalid values such as "0abc"
2106163 - Samples ImageStreams vs. registry.redhat.io: unsupported: V2 schema 1 manifest digests are no longer supported for image pulls
2106313 - bond-cni: backport bond-cni GA items to 4.11
2106543 - Typo in must-gather release-4.10
2106594 - crud/other-routes.spec.ts Cypress test failing at a high rate in CI
2106723 - [4.11] Upgrade from 4.11.0-rc0 -> 4.11.0-rc.1 failed. rpm-ostree status shows No space left on device
2106855 - [4.11.z] externalTrafficPolicy=Local is not working in local gateway mode if ovnkube-node is restarted
2107493 - ReplicaSet prometheus-operator-admission-webhook has timed out progressing
2107501 - metallb greenwave tests failure
2107690 - Driver Container builds fail with "error determining starting point for build: no FROM statement found"
2108175 - etcd backup seems to not be triggered in 4.10.18-->4.10.20 upgrade
2108617 - [oc adm release] extraction of the installer against a manifestlisted payload referenced by tag leads to a bad release image reference
2108686 - rpm-ostreed: start limit hit easily
2110505 - [Upgrade]deployment openshift-machine-api/machine-api-operator has a replica failure FailedCreate
2110715 - openshift-controller-manager(-operator) namespace should clear run-level annotations
2111055 - dummy bug for 4.10.z bz2110938

5. References:

https://access.redhat.com/security/cve/CVE-2018-25009
https://access.redhat.com/security/cve/CVE-2018-25010
https://access.redhat.com/security/cve/CVE-2018-25012
https://access.redhat.com/security/cve/CVE-2018-25013
https://access.redhat.com/security/cve/CVE-2018-25014
https://access.redhat.com/security/cve/CVE-2018-25032
https://access.redhat.com/security/cve/CVE-2019-5827
https://access.redhat.com/security/cve/CVE-2019-13750
https://access.redhat.com/security/cve/CVE-2019-13751
https://access.redhat.com/security/cve/CVE-2019-17594
https://access.redhat.com/security/cve/CVE-2019-17595
https://access.redhat.com/security/cve/CVE-2019-18218
https://access.redhat.com/security/cve/CVE-2019-19603
https://access.redhat.com/security/cve/CVE-2019-20838
https://access.redhat.com/security/cve/CVE-2020-13435
https://access.redhat.com/security/cve/CVE-2020-14155
https://access.redhat.com/security/cve/CVE-2020-17541
https://access.redhat.com/security/cve/CVE-2020-19131
https://access.redhat.com/security/cve/CVE-2020-24370
https://access.redhat.com/security/cve/CVE-2020-28493
https://access.redhat.com/security/cve/CVE-2020-35492
https://access.redhat.com/security/cve/CVE-2020-36330
https://access.redhat.com/security/cve/CVE-2020-36331
https://access.redhat.com/security/cve/CVE-2020-36332
https://access.redhat.com/security/cve/CVE-2021-3481
https://access.redhat.com/security/cve/CVE-2021-3580
https://access.redhat.com/security/cve/CVE-2021-3634
https://access.redhat.com/security/cve/CVE-2021-3672
https://access.redhat.com/security/cve/CVE-2021-3695
https://access.redhat.com/security/cve/CVE-2021-3696
https://access.redhat.com/security/cve/CVE-2021-3697
https://access.redhat.com/security/cve/CVE-2021-3737
https://access.redhat.com/security/cve/CVE-2021-4115
https://access.redhat.com/security/cve/CVE-2021-4156
https://access.redhat.com/security/cve/CVE-2021-4189
https://access.redhat.com/security/cve/CVE-2021-20095
https://access.redhat.com/security/cve/CVE-2021-20231
https://access.redhat.com/security/cve/CVE-2021-20232
https://access.redhat.com/security/cve/CVE-2021-23177
https://access.redhat.com/security/cve/CVE-2021-23566
https://access.redhat.com/security/cve/CVE-2021-23648
https://access.redhat.com/security/cve/CVE-2021-25219
https://access.redhat.com/security/cve/CVE-2021-31535
https://access.redhat.com/security/cve/CVE-2021-31566
https://access.redhat.com/security/cve/CVE-2021-36084
https://access.redhat.com/security/cve/CVE-2021-36085
https://access.redhat.com/security/cve/CVE-2021-36086
https://access.redhat.com/security/cve/CVE-2021-36087
https://access.redhat.com/security/cve/CVE-2021-38185
https://access.redhat.com/security/cve/CVE-2021-38593
https://access.redhat.com/security/cve/CVE-2021-40528
https://access.redhat.com/security/cve/CVE-2021-41190
https://access.redhat.com/security/cve/CVE-2021-41617
https://access.redhat.com/security/cve/CVE-2021-42771
https://access.redhat.com/security/cve/CVE-2021-43527
https://access.redhat.com/security/cve/CVE-2021-43818
https://access.redhat.com/security/cve/CVE-2021-44225
https://access.redhat.com/security/cve/CVE-2021-44906
https://access.redhat.com/security/cve/CVE-2022-0235
https://access.redhat.com/security/cve/CVE-2022-0778
https://access.redhat.com/security/cve/CVE-2022-1012
https://access.redhat.com/security/cve/CVE-2022-1215
https://access.redhat.com/security/cve/CVE-2022-1271
https://access.redhat.com/security/cve/CVE-2022-1292
https://access.redhat.com/security/cve/CVE-2022-1586
https://access.redhat.com/security/cve/CVE-2022-1621
https://access.redhat.com/security/cve/CVE-2022-1629
https://access.redhat.com/security/cve/CVE-2022-1706
https://access.redhat.com/security/cve/CVE-2022-1729
https://access.redhat.com/security/cve/CVE-2022-2068
https://access.redhat.com/security/cve/CVE-2022-2097
https://access.redhat.com/security/cve/CVE-2022-21698
https://access.redhat.com/security/cve/CVE-2022-22576
https://access.redhat.com/security/cve/CVE-2022-23772
https://access.redhat.com/security/cve/CVE-2022-23773
https://access.redhat.com/security/cve/CVE-2022-23806
https://access.redhat.com/security/cve/CVE-2022-24407
https://access.redhat.com/security/cve/CVE-2022-24675
https://access.redhat.com/security/cve/CVE-2022-24903
https://access.redhat.com/security/cve/CVE-2022-24921
https://access.redhat.com/security/cve/CVE-2022-25313
https://access.redhat.com/security/cve/CVE-2022-25314
https://access.redhat.com/security/cve/CVE-2022-26691
https://access.redhat.com/security/cve/CVE-2022-26945
https://access.redhat.com/security/cve/CVE-2022-27191
https://access.redhat.com/security/cve/CVE-2022-27774
https://access.redhat.com/security/cve/CVE-2022-27776
https://access.redhat.com/security/cve/CVE-2022-27782
https://access.redhat.com/security/cve/CVE-2022-28327
https://access.redhat.com/security/cve/CVE-2022-28733
https://access.redhat.com/security/cve/CVE-2022-28734
https://access.redhat.com/security/cve/CVE-2022-28735
https://access.redhat.com/security/cve/CVE-2022-28736
https://access.redhat.com/security/cve/CVE-2022-28737
https://access.redhat.com/security/cve/CVE-2022-29162
https://access.redhat.com/security/cve/CVE-2022-29810
https://access.redhat.com/security/cve/CVE-2022-29824
https://access.redhat.com/security/cve/CVE-2022-30321
https://access.redhat.com/security/cve/CVE-2022-30322
https://access.redhat.com/security/cve/CVE-2022-30323
https://access.redhat.com/security/cve/CVE-2022-32250
https://access.redhat.com/security/updates/classification/#important

6. Contact:

The Red Hat security contact is . More contact
details at https://access.redhat.com/security/team/contact/

Copyright 2022 Red Hat, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=9r0B
-----END PGP SIGNATURE-----
--
RHSA-announce mailing list
[email protected]
https://listman.redhat.com/mailman/listinfo/rhsa-announce

RedHat: RHSA-2022-5069:01 Important: OpenShift Container Platform 4.11.0

Red Hat OpenShift Container Platform release 4.11.0 is now available with updates to packages and images that fix several bugs and add enhancements

Summary

Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.
This advisory contains the container images for Red Hat OpenShift Container Platform 4.11.0. See the following advisory for the RPM packages for this release:
https://access.redhat.com/errata/RHSA-2022:5068
Space precludes documenting all of the container images in this advisory. See the following Release Notes documentation, which will be updated shortly for this release, for details about these changes:
https://docs.openshift.com/container-platform/4.11/release_notes/ocp-4-11-release-notes.html
Security Fix(es):
* go-getter: command injection vulnerability (CVE-2022-26945) * go-getter: unsafe download (issue 1 of 3) (CVE-2022-30321) * go-getter: unsafe download (issue 2 of 3) (CVE-2022-30322) * go-getter: unsafe download (issue 3 of 3) (CVE-2022-30323) * nanoid: Information disclosure via valueOf() function (CVE-2021-23566) * sanitize-url: XSS (CVE-2021-23648) * minimist: prototype pollution (CVE-2021-44906) * node-fetch: exposure of sensitive information to an unauthorized actor (CVE-2022-0235) * prometheus/client_golang: Denial of service using InstrumentHandlerCounter (CVE-2022-21698) * golang: crash in a golang.org/x/crypto/ssh server (CVE-2022-27191) * go-getter: writes SSH credentials into logfile, exposing sensitive credentials to local uses (CVE-2022-29810) * opencontainers: OCI manifest and index parsing confusion (CVE-2021-41190)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
You may download the oc tool and use it to inspect release image metadata as follows:
(For x86_64 architecture)
$ oc adm release info quay.io/openshift-release-dev/ocp-release:4.11.0-x86_64
The image digest is sha256:300bce8246cf880e792e106607925de0a404484637627edf5f517375517d54a4
(For aarch64 architecture)
$ oc adm release info quay.io/openshift-release-dev/ocp-release:4.11.0-aarch64
The image digest is sha256:29fa8419da2afdb64b5475d2b43dad8cc9205e566db3968c5738e7a91cf96dfe
(For s390x architecture)
$ oc adm release info quay.io/openshift-release-dev/ocp-release:4.11.0-s390x
The image digest is sha256:015d6180238b4024d11dfef6751143619a0458eccfb589f2058ceb1a6359dd46
(For ppc64le architecture)
$ oc adm release info quay.io/openshift-release-dev/ocp-release:4.11.0-ppc64le
The image digest is sha256:5052f8d5597c6656ca9b6bfd3de521504c79917aa80feb915d3c8546241f86ca
All OpenShift Container Platform 4.11 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift Console or the CLI oc command. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.11/updating/updating-cluster-cli.html

Solution

For OpenShift Container Platform 4.11 see the following documentation,which will be updated shortly for this release, for important instructionson how to upgrade your cluster and fully apply this asynchronous errataupdate:https://docs.openshift.com/container-platform/4.11/release_notes/ocp-4-11-release-notes.htmlDetails on how to access this content are available athttps://docs.openshift.com/container-platform/4.11/updating/updating-cluster-cli.html

References

https://access.redhat.com/security/cve/CVE-2018-25009 https://access.redhat.com/security/cve/CVE-2018-25010 https://access.redhat.com/security/cve/CVE-2018-25012 https://access.redhat.com/security/cve/CVE-2018-25013 https://access.redhat.com/security/cve/CVE-2018-25014 https://access.redhat.com/security/cve/CVE-2018-25032 https://access.redhat.com/security/cve/CVE-2019-5827 https://access.redhat.com/security/cve/CVE-2019-13750 https://access.redhat.com/security/cve/CVE-2019-13751 https://access.redhat.com/security/cve/CVE-2019-17594 https://access.redhat.com/security/cve/CVE-2019-17595 https://access.redhat.com/security/cve/CVE-2019-18218 https://access.redhat.com/security/cve/CVE-2019-19603 https://access.redhat.com/security/cve/CVE-2019-20838 https://access.redhat.com/security/cve/CVE-2020-13435 https://access.redhat.com/security/cve/CVE-2020-14155 https://access.redhat.com/security/cve/CVE-2020-17541 https://access.redhat.com/security/cve/CVE-2020-19131 https://access.redhat.com/security/cve/CVE-2020-24370 https://access.redhat.com/security/cve/CVE-2020-28493 https://access.redhat.com/security/cve/CVE-2020-35492 https://access.redhat.com/security/cve/CVE-2020-36330 https://access.redhat.com/security/cve/CVE-2020-36331 https://access.redhat.com/security/cve/CVE-2020-36332 https://access.redhat.com/security/cve/CVE-2021-3481 https://access.redhat.com/security/cve/CVE-2021-3580 https://access.redhat.com/security/cve/CVE-2021-3634 https://access.redhat.com/security/cve/CVE-2021-3672 https://access.redhat.com/security/cve/CVE-2021-3695 https://access.redhat.com/security/cve/CVE-2021-3696 https://access.redhat.com/security/cve/CVE-2021-3697 https://access.redhat.com/security/cve/CVE-2021-3737 https://access.redhat.com/security/cve/CVE-2021-4115 https://access.redhat.com/security/cve/CVE-2021-4156 https://access.redhat.com/security/cve/CVE-2021-4189 https://access.redhat.com/security/cve/CVE-2021-20095 https://access.redhat.com/security/cve/CVE-2021-20231 https://access.redhat.com/security/cve/CVE-2021-20232 https://access.redhat.com/security/cve/CVE-2021-23177 https://access.redhat.com/security/cve/CVE-2021-23566 https://access.redhat.com/security/cve/CVE-2021-23648 https://access.redhat.com/security/cve/CVE-2021-25219 https://access.redhat.com/security/cve/CVE-2021-31535 https://access.redhat.com/security/cve/CVE-2021-31566 https://access.redhat.com/security/cve/CVE-2021-36084 https://access.redhat.com/security/cve/CVE-2021-36085 https://access.redhat.com/security/cve/CVE-2021-36086 https://access.redhat.com/security/cve/CVE-2021-36087 https://access.redhat.com/security/cve/CVE-2021-38185 https://access.redhat.com/security/cve/CVE-2021-38593 https://access.redhat.com/security/cve/CVE-2021-40528 https://access.redhat.com/security/cve/CVE-2021-41190 https://access.redhat.com/security/cve/CVE-2021-41617 https://access.redhat.com/security/cve/CVE-2021-42771 https://access.redhat.com/security/cve/CVE-2021-43527 https://access.redhat.com/security/cve/CVE-2021-43818 https://access.redhat.com/security/cve/CVE-2021-44225 https://access.redhat.com/security/cve/CVE-2021-44906 https://access.redhat.com/security/cve/CVE-2022-0235 https://access.redhat.com/security/cve/CVE-2022-0778 https://access.redhat.com/security/cve/CVE-2022-1012 https://access.redhat.com/security/cve/CVE-2022-1215 https://access.redhat.com/security/cve/CVE-2022-1271 https://access.redhat.com/security/cve/CVE-2022-1292 https://access.redhat.com/security/cve/CVE-2022-1586 https://access.redhat.com/security/cve/CVE-2022-1621 https://access.redhat.com/security/cve/CVE-2022-1629 https://access.redhat.com/security/cve/CVE-2022-1706 https://access.redhat.com/security/cve/CVE-2022-1729 https://access.redhat.com/security/cve/CVE-2022-2068 https://access.redhat.com/security/cve/CVE-2022-2097 https://access.redhat.com/security/cve/CVE-2022-21698 https://access.redhat.com/security/cve/CVE-2022-22576 https://access.redhat.com/security/cve/CVE-2022-23772 https://access.redhat.com/security/cve/CVE-2022-23773 https://access.redhat.com/security/cve/CVE-2022-23806 https://access.redhat.com/security/cve/CVE-2022-24407 https://access.redhat.com/security/cve/CVE-2022-24675 https://access.redhat.com/security/cve/CVE-2022-24903 https://access.redhat.com/security/cve/CVE-2022-24921 https://access.redhat.com/security/cve/CVE-2022-25313 https://access.redhat.com/security/cve/CVE-2022-25314 https://access.redhat.com/security/cve/CVE-2022-26691 https://access.redhat.com/security/cve/CVE-2022-26945 https://access.redhat.com/security/cve/CVE-2022-27191 https://access.redhat.com/security/cve/CVE-2022-27774 https://access.redhat.com/security/cve/CVE-2022-27776 https://access.redhat.com/security/cve/CVE-2022-27782 https://access.redhat.com/security/cve/CVE-2022-28327 https://access.redhat.com/security/cve/CVE-2022-28733 https://access.redhat.com/security/cve/CVE-2022-28734 https://access.redhat.com/security/cve/CVE-2022-28735 https://access.redhat.com/security/cve/CVE-2022-28736 https://access.redhat.com/security/cve/CVE-2022-28737 https://access.redhat.com/security/cve/CVE-2022-29162 https://access.redhat.com/security/cve/CVE-2022-29810 https://access.redhat.com/security/cve/CVE-2022-29824 https://access.redhat.com/security/cve/CVE-2022-30321 https://access.redhat.com/security/cve/CVE-2022-30322 https://access.redhat.com/security/cve/CVE-2022-30323 https://access.redhat.com/security/cve/CVE-2022-32250 https://access.redhat.com/security/updates/classification/#important

Package List

Severity
Advisory ID: RHSA-2022:5069-01
Product: Red Hat OpenShift Enterprise
Advisory URL: https://access.redhat.com/errata/RHSA-2022:5069
Issued Date: : 2022-08-10
CVE Names: CVE-2018-25009 CVE-2018-25010 CVE-2018-25012 CVE-2018-25013 CVE-2018-25014 CVE-2018-25032 CVE-2019-5827 CVE-2019-13750 CVE-2019-13751 CVE-2019-17594 CVE-2019-17595 CVE-2019-18218 CVE-2019-19603 CVE-2019-20838 CVE-2020-13435 CVE-2020-14155 CVE-2020-17541 CVE-2020-19131 CVE-2020-24370 CVE-2020-28493 CVE-2020-35492 CVE-2020-36330 CVE-2020-36331 CVE-2020-36332 CVE-2021-3481 CVE-2021-3580 CVE-2021-3634 CVE-2021-3672 CVE-2021-3695 CVE-2021-3696 CVE-2021-3697 CVE-2021-3737 CVE-2021-4115 CVE-2021-4156 CVE-2021-4189 CVE-2021-20095 CVE-2021-20231 CVE-2021-20232 CVE-2021-23177 CVE-2021-23566 CVE-2021-23648 CVE-2021-25219 CVE-2021-31535 CVE-2021-31566 CVE-2021-36084 CVE-2021-36085 CVE-2021-36086 CVE-2021-36087 CVE-2021-38185 CVE-2021-38593 CVE-2021-40528 CVE-2021-41190 CVE-2021-41617 CVE-2021-42771 CVE-2021-43527 CVE-2021-43818 CVE-2021-44225 CVE-2021-44906 CVE-2022-0235 CVE-2022-0778 CVE-2022-1012 CVE-2022-1215 CVE-2022-1271 CVE-2022-1292 CVE-2022-1586 CVE-2022-1621 CVE-2022-1629 CVE-2022-1706 CVE-2022-1729 CVE-2022-2068 CVE-2022-2097 CVE-2022-21698 CVE-2022-22576 CVE-2022-23772 CVE-2022-23773 CVE-2022-23806 CVE-2022-24407 CVE-2022-24675 CVE-2022-24903 CVE-2022-24921 CVE-2022-25313 CVE-2022-25314 CVE-2022-26691 CVE-2022-26945 CVE-2022-27191 CVE-2022-27774 CVE-2022-27776 CVE-2022-27782 CVE-2022-28327 CVE-2022-28733 CVE-2022-28734 CVE-2022-28735 CVE-2022-28736 CVE-2022-28737 CVE-2022-29162 CVE-2022-29810 CVE-2022-29824 CVE-2022-30321 CVE-2022-30322 CVE-2022-30323 CVE-2022-32250

Topic

Red Hat OpenShift Container Platform release 4.11.0 is now available withupdates to packages and images that fix several bugs and add enhancements.This release includes a security update for Red Hat OpenShift ContainerPlatform 4.11.Red Hat Product Security has rated this update as having a security impactof Important. A Common Vulnerability Scoring System (CVSS) base score,which gives a detailed severity rating, is available for each vulnerabilityfrom the CVE link(s) in the References section.

Relevant Releases Architectures

Bugs Fixed

1817075 - MCC & MCO don't free leader leases during shut down -> 10 minutes of leader election timeouts

1822752 - cluster-version operator stops applying manifests when blocked by a precondition check

1823143 - oc adm release extract --command, --tools doesn't pull from localregistry when given a localregistry/image

1858418 - [OCPonRHV] OpenShift installer fails when Blank template is missing in oVirt/RHV

1859153 - [AWS] An IAM error occurred occasionally during the installation phase: Invalid IAM Instance Profile name

1896181 - [ovirt] install fails: due to terraform error "Cannot run VM. VM is being updated" on vm resource

1898265 - [OCP 4.5][AWS] Installation failed: error updating LB Target Group

1902307 - [vSphere] cloud labels management via cloud provider makes nodes not ready

1905850 - `oc adm policy who-can` failed to check the `operatorcondition/status` resource

1916279 - [OCPonRHV] Sometimes terraform installation fails on -failed to fetch Cluster(another terraform bug)

1917898 - [ovirt] install fails: due to terraform error "Tag not matched: expect but got " on vm resource

1918005 - [vsphere] If there are multiple port groups with the same name installation fails

1918417 - IPv6 errors after exiting crictl

1918690 - Should update the KCM resource-graph timely with the latest configure

1919980 - oVirt installer fails due to terraform error "Failed to wait for Templte(...) to become ok"

1921182 - InspectFailed: kubelet Failed to inspect image: rpc error: code = DeadlineExceeded desc = context deadline exceeded

1923536 - Image pullthrough does not pass 429 errors back to capable clients

1926975 - [aws-c2s] kube-apiserver crashloops due to missing cloud config

1928932 - deploy/route_crd.yaml in openshift/router uses deprecated v1beta1 CRD API

1932812 - Installer uses the terraform-provider in the Installer's directory if it exists

1934304 - MemoryPressure Top Pod Consumers seems to be 2x expected value

1943937 - CatalogSource incorrect parsing validation

1944264 - [ovn] CNO should gracefully terminate OVN databases

1944851 - List of ingress routes not cleaned up when routers no longer exist - take 2

1945329 - In k8s 1.21 bump conntrack 'should drop INVALID conntrack entries' tests are disabled

1948556 - Cannot read property 'apiGroup' of undefined error viewing operator CSV

1949827 - Kubelet bound to incorrect IPs, referring to incorrect NICs in 4.5.x

1957012 - Deleting the KubeDescheduler CR does not remove the corresponding deployment or configmap

1957668 - oc login does not show link to console

1958198 - authentication operator takes too long to pick up a configuration change

1958512 - No 1.25 shown in REMOVEDINRELEASE for apis audited with k8s.io/removed-release 1.25 and k8s.io/deprecated true

1961233 - Add CI test coverage for DNS availability during upgrades

1961844 - baremetal ClusterOperator installed by CVO does not have relatedObjects

1965468 - [OSP] Delete volume snapshots based on cluster ID in their metadata

1965934 - can not get new result with "Refresh off" if click "Run queries" again

1965969 - [aws] the public hosted zone id is not correct in the destroy log, while destroying a cluster which is using BYO private hosted zone.

1968253 - GCP CSI driver can provision volume with access mode ROX

1969794 - [OSP] Document how to use image registry PVC backend with custom availability zones

1975543 - [OLM] Remove stale cruft installed by CVO in earlier releases

1976111 - [tracker] multipathd.socket is missing start conditions

1976782 - Openshift registry starts to segfault after S3 storage configuration

1977100 - Pod failed to start with message "set CPU load balancing: readdirent /proc/sys/kernel/sched_domain/cpu66/domain0: no such file or directory"

1978303 - KAS pod logs show: [SHOULD NOT HAPPEN] ...failed to convert new object...CertificateSigningRequest) to smd typed: .status.conditions: duplicate entries for key [type=\"Approved\"]

1978798 - [Network Operator] Upgrade: The configuration to enable network policy ACL logging is missing on the cluster upgraded from 4.7->4.8

1979671 - Warning annotation for pods with cpu requests or limits on single-node OpenShift cluster without workload partitioning

1982737 - OLM does not warn on invalid CSV

1983056 - IP conflict while recreating Pod with fixed name

1984785 - LSO CSV does not contain disconnected annotation

1989610 - Unsupported data types should not be rendered on operand details page

1990125 - co/image-registry is degrade because ImagePrunerDegraded: Job has reached the specified backoff limit

1990384 - 502 error on "Observe -> Alerting" UI after disabled local alertmanager

1992553 - all the alert rules' annotations "summary" and "description" should comply with the OpenShift alerting guidelines

1994117 - Some hardcodes are detected at the code level in orphaned code

1994820 - machine controller doesn't send vCPU quota failed messages to cluster install logs

1995953 - Ingresscontroller change the replicas to scaleup first time will be rolling update for all the ingress pods

1996544 - AWS region ap-northeast-3 is missing in installer prompt

1996638 - Helm operator manager container restart when CR is creating&deleting

1997120 - test_recreate_pod_in_namespace fails - Timed out waiting for namespace

1997142 - OperatorHub: Filtering the OperatorHub catalog is extremely slow

1997704 - [osp][octavia lb] given loadBalancerIP is ignored when creating a LoadBalancer type svc

1999325 - FailedMount MountVolume.SetUp failed for volume "kube-api-access" : object "openshift-kube-scheduler"/"kube-root-ca.crt" not registered

1999529 - Must gather fails to gather logs for all the namespace if server doesn't have volumesnapshotclasses resource

1999891 - must-gather collects backup data even when Pods fails to be created

2000653 - Add hypershift namespace to exclude namespaces list in descheduler configmap

2002009 - IPI Baremetal, qemu-convert takes to long to save image into drive on slow/large disks

2002602 - Storageclass creation page goes blank when "Enable encryption" is clicked if there is a syntax error in the configmap

2002868 - Node exporter not able to scrape OVS metrics

2005321 - Web Terminal is not opened on Stage of DevSandbox when terminal instance is not created yet

2005694 - Removing proxy object takes up to 10 minutes for the changes to propagate to the MCO

2006067 - Objects are not valid as a React child

2006201 - ovirt-csi-driver-node pods are crashing intermittently

2007246 - Openshift Container Platform - Ingress Controller does not set allowPrivilegeEscalation in the router deployment

2007340 - Accessibility issues on topology - list view

2007611 - TLS issues with the internal registry and AWS S3 bucket

2007647 - oc adm release info --changes-from does not show changes in repos that squash-merge

2008486 - Double scroll bar shows up on dragging the task quick search to the bottom

2009345 - Overview page does not load from openshift console for some set of users after upgrading to 4.7.19

2009352 - Add image-registry usage metrics to telemeter

2009845 - Respect overrides changes during installation

2010361 - OpenShift Alerting Rules Style-Guide Compliance

2010364 - OpenShift Alerting Rules Style-Guide Compliance

2010393 - [sig-arch][Late] clients should not use APIs that are removed in upcoming releases [Suite:openshift/conformance/parallel]

2011525 - Rate-limit incoming BFD to prevent ovn-controller DoS

2011895 - Details about cloud errors are missing from PV/PVC errors

2012111 - LSO still try to find localvolumeset which is already deleted

2012969 - need to figure out why osupdatedstart to reboot is zero seconds

2013144 - Developer catalog category links could not be open in a new tab (sharing and open a deep link works fine)

2013461 - Import deployment from Git with s2i expose always port 8080 (Service and Pod template, not Route) if another Route port is selected by the user

2013734 - unable to label downloads route in openshift-console namespace

2013822 - ensure that the `container-tools` content comes from the RHAOS plashets

2014161 - PipelineRun logs are delayed and stuck on a high log volume

2014240 - Image registry uses ICSPs only when source exactly matches image

2014420 - Topology page is crashed

2014640 - Cannot change storage class of boot disk when cloning from template

2015023 - Operator objects are re-created even after deleting it

2015042 - Adding a template from the catalog creates a secret that is not owned by the TemplateInstance

2015356 - Different status shows on VM list page and details page

2015375 - PVC creation for ODF/IBM Flashsystem shows incorrect types

2015459 - [azure][openstack]When image registry configure an invalid proxy, registry pods are CrashLoopBackOff

2015800 - [IBM]Shouldn't change status.storage.bucket and status.storage.resourceKeyCRN when update sepc.stroage,ibmcos with invalid value

2016425 - Adoption controller generating invalid metadata.Labels for an already adopted Subscription resource

2016534 - externalIP does not work when egressIP is also present

2017001 - Topology context menu for Serverless components always open downwards

2018188 - VRRP ID conflict between keepalived-ipfailover and cluster VIPs

2018517 - [sig-arch] events should not repeat pathologically expand_less failures - s390x CI

2019532 - Logger object in LSO does not log source location accurately

2019564 - User settings resources (ConfigMap, Role, RB) should be deleted when a user is deleted

2020483 - Parameter $__auto_interval_period is in Period drop-down list

2020622 - e2e-aws-upi and e2e-azure-upi jobs are not working

2021041 - [vsphere] Not found TagCategory when destroying ipi cluster

2021446 - openshift-ingress-canary is not reporting DEGRADED state, even though the canary route is not available and accessible

2022253 - Web terminal view is broken

2022507 - Pods stuck in OutOfpods state after running cluster-density

2022611 - Remove BlockPools(no use case) and Object(redundat with Overview) tab on the storagesystem page for NooBaa only and remove BlockPools tab for External mode deployment

2022745 - Cluster reader is not able to list NodeNetwork* objects

2023295 - Must-gather tool gathering data from custom namespaces.

2023691 - ClusterIP internalTrafficPolicy does not work for ovn-kubernetes

2024427 - oc completion zsh doesn't auto complete

2024708 - The form for creating operational CRs is badly rendering filed names ("obsoleteCPUs" -> "Obsolete CP Us" )

2024821 - [Azure-File-CSI] need more clear info when requesting pvc with volumeMode Block

2024938 - CVE-2021-41190 opencontainers: OCI manifest and index parsing confusion

2025624 - Ingress router metrics endpoint serving old certificates after certificate rotation

2026356 - [IPI on Azure] The bootstrap machine type should be same as master

2026461 - Completed pods in Openshift cluster not releasing IP addresses and results in err: range is full unless manually deleted

2027603 - [UI] Dropdown doesn't close on it's own after arbiter zone selection on 'Capacity and nodes' page

2027613 - Users can't silence alerts from the dev console

2028493 - OVN-migration failed - ovnkube-node: error waiting for node readiness: timed out waiting for the condition

2028532 - noobaa-pg-db-0 pod stuck in Init:0/2

2028821 - Misspelled label in ODF management UI - MCG performance view

2029438 - Bootstrap node cannot resolve api-int because NetworkManager replaces resolv.conf

2029470 - Recover from suddenly appearing old operand revision WAS: kube-scheduler-operator test failure: Node's not achieving new revision

2029797 - Uncaught exception: ResizeObserver loop limit exceeded

2029835 - CSI migration for vSphere: Inline-volume tests failing

2030034 - prometheusrules.openshift.io: dial tcp: lookup prometheus-operator.openshift-monitoring.svc on 172.30.0.10:53: no such host

2030530 - VM created via customize wizard has single quotation marks surrounding its password

2030733 - wrong IP selected to connect to the nodes when ExternalCloudProvider enabled

2030776 - e2e-operator always uses quay master images during presubmit tests

2032559 - CNO allows migration to dual-stack in unsupported configurations

2032717 - Unable to download ignition after coreos-installer install --copy-network

2032924 - PVs are not being cleaned up after PVC deletion

2033482 - [vsphere] two variables in tf are undeclared and get warning message during installation

2033575 - monitoring targets are down after the cluster run for more than 1 day

2033711 - IBM VPC operator needs e2e csi tests for ibmcloud

2033862 - MachineSet is not scaling up due to an OpenStack error trying to create multiple ports with the same MAC address

2034147 - OpenShift VMware IPI Installation fails with Resource customization when corespersocket is unset and vCPU count is not a multiple of 4

2034296 - Kubelet and Crio fails to start during upgrde to 4.7.37

2034411 - [Egress Router] No NAT rules for ipv6 source and destination created in ip6tables-save

2034688 - Allow Prometheus/Thanos to return 401 or 403 when the request isn't authenticated

2034958 - [sig-network] Conntrack should be able to preserve UDP traffic when initial unready endpoints get ready

2035005 - MCD is not always removing in progress taint after a successful update

2035334 - [RFE] [OCPonRHV] Provision machines with preallocated disks

2035899 - Operator-sdk run bundle doesn't support arm64 env

2036202 - Bump podman to >= 3.3.0 so that setup of multiple credentials for a single registry which can be distinguished by their path will work

2036594 - [MAPO] Machine goes to failed state due to a momentary error of the cluster etcd

2036948 - SR-IOV Network Device Plugin should handle offloaded VF instead of supporting only PF

2037190 - dns operator status flaps between True/False/False and True/True/(False|True) after updating dnses.operator.openshift.io/default

2037447 - Ingress Operator is not closing TCP connections.

2037513 - I/O metrics from the Kubernetes/Compute Resources/Cluster Dashboard show as no datapoints found

2037542 - Pipeline Builder footer is not sticky and yaml tab doesn't use full height

2037610 - typo for the Terminated message from thanos-querier pod description info

2037620 - Upgrade playbook should quit directly when trying to upgrade RHEL-7 workers to 4.10

2037625 - AppliedClusterResourceQuotas can not be shown on project overview

2037626 - unable to fetch ignition file when scaleup rhel worker nodes on cluster enabled Tang disk encryption

2037628 - Add test id to kms flows for automation

2037721 - PodDisruptionBudgetAtLimit alert fired in SNO cluster

2037762 - Wrong ServiceMonitor definition is causing failure during Prometheus configuration reload and preventing changes from being applied

2037841 - [RFE] use /dev/ptp_hyperv on Azure/AzureStack

2038115 - Namespace and application bar is not sticky anymore

2038244 - Import from git ignore the given servername and could not validate On-Premises GitHub and BitBucket installations

2038405 - openshift-e2e-aws-workers-rhel-workflow in CI step registry broken

2038774 - IBM-Cloud OVN IPsec fails, IKE UDP ports and ESP protocol not in security group

2039135 - the error message is not clear when using "opm index prune" to prune a file-based index image

2039161 - Note about token for encrypted PVCs should be removed when only cluster wide encryption checkbox is selected

2039253 - ovnkube-node crashes on duplicate endpoints

2039256 - Domain validation fails when TLD contains a digit.

2039277 - Topology list view items are not highlighted on keyboard navigation

2039462 - Application tab in User Preferences dropdown menus are too wide.

2039477 - validation icon is missing from Import from git

2039589 - The toolbox command always ignores [command] the first time

2039647 - Some developer perspective links are not deep-linked causes developer to sometimes delete/modify resources in the wrong project

2040180 - Bug when adding a new table panel to a dashboard for OCP UI with only one value column

2040195 - Ignition fails to enable systemd units with backslash-escaped characters in their names

2040277 - ThanosRuleNoEvaluationFor10Intervals alert description is wrong

2040488 - OpenShift-Ansible BYOH Unit Tests are Broken

2040635 - CPU Utilisation is negative number for "Kubernetes / Compute Resources / Cluster" dashboard

2040654 - 'oc adm must-gather -- some_script' should exit with same non-zero code as the failed 'some_script' exits

2040779 - Nodeport svc not accessible when the backend pod is on a window node

2040933 - OCP 4.10 nightly build will fail to install if multiple NICs are defined on KVM nodes

2041133 - 'oc explain route.status.ingress.conditions' shows type 'Currently only Ready' but actually is 'Admitted'

2041454 - Garbage values accepted for `--reference-policy` in `oc import-image` without any error

2041616 - Ingress operator tries to manage DNS of additional ingresscontrollers that are not under clusters basedomain, which can't work

2041769 - Pipeline Metrics page not showing data for normal user

2041774 - Failing git detection should not recommend Devfiles as import strategy

2041814 - The KubeletConfigController wrongly process multiple confs for a pool

2041940 - Namespace pre-population not happening till a Pod is created

2042027 - Incorrect feedback for "oc label pods --all"

2042348 - Volume ID is missing in output message when expanding volume which is not mounted.

2042446 - CSIWithOldVSphereHWVersion alert recurring despite upgrade to vmx-15

2042501 - use lease for leader election

2042587 - ocm-operator: Improve reconciliation of CA ConfigMaps

2042652 - Unable to deploy hw-event-proxy operator

2042838 - The status of container is not consistent on Container details and pod details page

2042852 - Topology toolbars are unaligned to other toolbars

2042999 - A pod cannot reach kubernetes.default.svc.cluster.local cluster IP

2043035 - Wrong error code provided when request contains invalid argument

2043068 - available of text disappears in Utilization item if x is 0

2043080 - openshift-installer intermittent failure on AWS with Error: InvalidVpcID.NotFound: The vpc ID 'vpc-123456789' does not exist

2043094 - ovnkube-node not deleting stale conntrack entries when endpoints go away

2043118 - Host should transition through Preparing when HostFirmwareSettings changed

2043132 - Add a metric when vsphere csi storageclass creation fails

2043314 - `oc debug node` does not meet compliance requirement

2043336 - Creating multi SriovNetworkNodePolicy cause the worker always be draining

2043428 - Address Alibaba CSI driver operator review comments

2043533 - Update ironic, inspector, and ironic-python-agent to latest bugfix release

2043672 - [MAPO] root volumes not working

2044140 - When 'oc adm upgrade --to-image ...' rejects an update as not recommended, it should mention --allow-explicit-upgrade

2044207 - [KMS] The data in the text box does not get cleared on switching the authentication method

2044227 - Test Managed cluster should only include cluster daemonsets that have maxUnavailable update of 10 or 33 percent fails

2044412 - Topology list misses separator lines and hover effect let the list jump 1px

2044421 - Topology list does not allow selecting an application group anymore

2044591 - CVE-2022-0235 node-fetch: exposure of sensitive information to an unauthorized actor

2044803 - Unify button text style on VM tabs

2044824 - Failing test in periodics: [sig-network] Services should respect internalTrafficPolicy=Local Pod and Node, to Pod (hostNetwork: true) [Feature:ServiceInternalTrafficPolicy] [Skipped:Network/OVNKubernetes] [Suite:openshift/conformance/parallel] [Suite:k8s]

2045065 - Scheduled pod has nodeName changed

2045073 - Bump golang and build images for local-storage-operator

2045087 - Failed to apply sriov policy on intel nics

2045551 - Remove enabled FeatureGates from TechPreviewNoUpgrade

2045559 - API_VIP moved when kube-api container on another master node was stopped

2045577 - [ocp 4.9 | ovn-kubernetes] ovsdb_idl|WARN|transaction error: {"details":"cannot delete Datapath_Binding row 29e48972-xxxx because of 2 remaining reference(s)","error":"referential integrity violation

2045872 - SNO: cluster-policy-controller failed to start due to missing serving-cert/tls.crt

2045880 - CVE-2022-21698 prometheus/client_golang: Denial of service using InstrumentHandlerCounter

2046133 - [MAPO]IPI proxy installation failed

2046156 - Network policy: preview of affected pods for non-admin shows empty popup

2046157 - Still uses pod-security.admission.config.k8s.io/v1alpha1 in admission plugin config

2046191 - Opeartor pod is missing correct qosClass and priorityClass

2046277 - openshift-installer intermittent failure on AWS with "Error: Provider produced inconsistent result after apply" when creating the module.vpc.aws_subnet.private_subnet[0] resource

2046319 - oc debug cronjob command failed with error "unable to extract pod template from type *v1.CronJob".

2046435 - Better Devfile Import Strategy support in the 'Import from Git' flow

2046496 - Awkward wrapping of project toolbar on mobile

2046497 - Re-enable TestMetricsEndpoint test case in console operator e2e tests

2046498 - "All Projects" and "all applications" use different casing on topology page

2046591 - Auto-update boot source is not available while create new template from it

2046594 - "Requested template could not be found" while creating VM from user-created template

2046598 - Auto-update boot source size unit is byte on customize wizard

2046601 - Cannot create VM from template

2046618 - Start last run action should contain current user name in the started-by annotation of the PLR

2046662 - Should upgrade the go version to be 1.17 for example go operator memcached-operator

2047197 - Sould upgrade the operator_sdk.util version to "0.4.0" for the "osdk_metric" module

2047257 - [CP MIGRATION] Node drain failure during control plane node migration

2047277 - Storage status is missing from status card of virtualization overview

2047308 - Remove metrics and events for master port offsets

2047310 - Running VMs per template card needs empty state when no VMs exist

2047320 - New route annotation to show another URL or hide topology URL decorator doesn't work for Knative Services

2047335 - 'oc get project' caused 'Observed a panic: cannot deep copy core.NamespacePhase' when AllRequestBodies is used

2047362 - Removing prometheus UI access breaks origin test

2047445 - ovs-configure mis-detecting the ipv6 status on IPv4 only cluster causing Deployment failure

2047670 - Installer should pre-check that the hosted zone is not associated with the VPC and throw the error message.

2047702 - Issue described on bug #2013528 reproduced: mapi_current_pending_csr is always set to 1 on OpenShift Container Platform 4.8

2047710 - [OVN] ovn-dbchecker CrashLoopBackOff and sbdb jsonrpc unix socket receive error

2047732 - [IBM]Volume is not deleted after destroy cluster

2047741 - openshift-installer intermittent failure on AWS with "Error: Provider produced inconsistent result after apply" when creating the module.masters.aws_network_interface.master[1] resource

2047790 - [sig-network][Feature:Router] The HAProxy router should override the route host for overridden domains with a custom value [Skipped:Disconnected] [Suite:openshift/conformance/parallel]

2047799 - release-openshift-ocp-installer-e2e-aws-upi-4.9

2047870 - Prevent redundant queries of BIOS settings in HostFirmwareController

2047895 - Fix architecture naming in oc adm release mirror for aarch64

2047911 - e2e: Mock CSI tests fail on IBM ROKS clusters

2047913 - [sig-network][Feature:Router] The HAProxy router should override the route host for overridden domains with a custom value [Skipped:Disconnected] [Suite:openshift/conformance/parallel]

2047925 - [FJ OCP4.10 Bug]: IRONIC_KERNEL_PARAMS does not contain coreos_kernel_params during iPXE boot

2047935 - [4.11] Bootimage bump tracker

2047998 - [alicloud] CCM deploys alibaba-cloud-controller-manager from quay.io/openshift/origin-*

2048059 - Service Level Agreement (SLA) always show 'Unknown'

2048067 - [IPI on Alibabacloud] "Platform Provisioning Check" tells '"ap-southeast-6": enhanced NAT gateway is not supported', which seems false

2048186 - Image registry operator panics when finalizes config deletion

2048214 - Can not push images to image-registry when enabling KMS encryption in AlibabaCloud

2048219 - MetalLB: User should not be allowed add same bgp advertisement twice in BGP address pool

2048221 - Capitalization of titles in the VM details page is inconsistent.

2048222 - [AWS GovCloud] Cluster can not be installed on AWS GovCloud regions via terminal interactive UI.

2048276 - Cypress E2E tests fail due to a typo in test-cypress.sh

2048333 - prometheus-adapter becomes inaccessible during rollout

2048352 - [OVN] node does not recover after NetworkManager restart, NotReady and unreachable

2048442 - [KMS] UI does not have option to specify kube auth path and namespace for cluster wide encryption

2048451 - Custom serviceEndpoints in install-config are reported to be unreachable when environment uses a proxy

2048538 - Network policies are not implemented or updated by OVN-Kubernetes

2048541 - incorrect rbac check for install operator quick starts

2048563 - Leader election conventions for cluster topology

2048575 - IP reconciler cron job failing on single node

2048686 - Check MAC address provided on the install-config.yaml file

2048687 - All bare metal jobs are failing now due to End of Life of centos 8

2048793 - Many Conformance tests are failing in OCP 4.10 with Kuryr

2048803 - CRI-O seccomp profile out of date

2048824 - [IBMCloud] ibm-vpc-block-csi-node does not specify an update strategy, only resource requests, or priority class

2048841 - [ovn] Missing lr-policy-list and snat rules for egressip when new pods are added

2048955 - Alibaba Disk CSI Driver does not have CI

2049073 - AWS EFS CSI driver should use the trusted CA bundle when cluster proxy is configured

2049078 - Bond CNI: Failed to attach Bond NAD to pod

2049108 - openshift-installer intermittent failure on AWS with 'Error: Error waiting for NAT Gateway (nat-xxxxx) to become available'

2049117 - e2e-metal-ipi-serial-ovn-ipv6 is failing frequently

2049133 - oc adm catalog mirror throws 'missing signature key' error when using file://local/index

2049142 - Missing "app" label

2049169 - oVirt CSI driver should use the trusted CA bundle when cluster proxy is configured

2049234 - ImagePull fails with error "unable to pull manifest from example.com/busy.box:v5 invalid reference format"

2049410 - external-dns-operator creates provider section, even when not requested

2049483 - Sidepanel for Connectors/workloads in topology shows invalid tabs

2049613 - MTU migration on SDN IPv4 causes API alerts

2049671 - system:serviceaccount:openshift-cluster-csi-drivers:aws-ebs-csi-driver-operator trying to GET and DELETE /api/v1/namespaces/openshift-cluster-csi-drivers/configmaps/kube-cloud-config which does not exist

2049687 - superfluous apirequestcount entries in audit log

2049775 - cloud-provider-config change not applied when ExternalCloudProvider enabled

2049787 - (dummy bug) ovn-kubernetes ExternalTrafficPolicy still SNATs

2049832 - ContainerCreateError when trying to launch large (>500) numbers of pods across nodes

2049872 - cluster storage operator AWS credentialsrequest lacks KMS privileges

2049889 - oc new-app --search nodejs warns about access to sample content on quay.io

2050005 - Plugin module IDs can clash with console module IDs causing runtime errors

2050011 - Observe > Metrics page: Timespan text input and dropdown do not align

2050120 - Missing metrics in kube-state-metrics

2050146 - Installation on PSI fails with: 'openstack platform does not have the required standard-attr-tag network extension'

2050173 - [aws-ebs-csi-driver] Merge upstream changes since v1.2.0

2050180 - [aws-efs-csi-driver] Merge upstream changes since v1.3.2

2050300 - panic in cluster-storage-operator while updating status

2050332 - Malformed ClusterClaim lifetimes cause the clusterclaims-controller to silently fail to reconcile all clusterclaims

2050335 - azure-disk failed to mount with error special device does not exist

2050345 - alert data for burn budget needs to be updated to prevent regression

2050407 - revert "force cert rotation every couple days for development" in 4.11

2050409 - ip-reconcile job is failing consistently

2050452 - Update osType and hardware version used by RHCOS OVA to indicate it is a RHEL 8 guest

2050466 - machine config update with invalid container runtime config should be more robust

2050637 - Blog Link not re-directing to the intented website in the last modal in the Dev Console Onboarding Tour

2050698 - After upgrading the cluster the console still show 0 of N, 0% progress for worker nodes

2050707 - up test for prometheus pod look to far in the past

2050767 - Vsphere upi tries to access vsphere during manifests generation phase

2050853 - CVE-2021-23566 nanoid: Information disclosure via valueOf() function

2050882 - Crio appears to be coredumping in some scenarios

2050902 - not all resources created during import have common labels

2050946 - Cluster-version operator fails to notice TechPreviewNoUpgrade featureSet change after initialization-lookup error

2051320 - Need to build ose-aws-efs-csi-driver-operator-bundle-container image for 4.11

2051333 - [aws] records in public hosted zone and BYO private hosted zone were not deleted.

2051377 - Unable to switch vfio-pci to netdevice in policy

2051378 - Template wizard is crashed when there are no templates existing

2051423 - migrate loadbalancers from amphora to ovn not working

2051457 - [RFE] PDB for cloud-controller-manager to avoid going too many replicas down

2051470 - prometheus: Add validations for relabel configs

2051558 - RoleBinding in project without subject is causing "Project access" page to fail

2051578 - Sort is broken for the Status and Version columns on the Cluster Settings > ClusterOperators page

2051583 - sriov must-gather image doesn't work

2051593 - Summary Interval Hardcoded in PTP Operator if Set in the Global Body Instead of Command Line

2051611 - Remove Check which enforces summary_interval must match logSyncInterval

2051642 - Remove "Tech-Preview" Label for the Web Terminal GA release

2051657 - Remove 'Tech preview' from minnimal deployment Storage System creation

2051718 - MetaLLB: Validation Webhook: BGPPeer hold time is allowed to be set to less than 3s

2051722 - MetalLB: BGPPeer object does not have ability to set ebgpMultiHop

2051881 - [vSphere CSI driver Operator] RWX volumes counts metrics `vsphere_rwx_volumes_total` not valid

2051954 - Allow changing of policyAuditConfig ratelimit post-deployment

2051969 - Need to build local-storage-operator-metadata-container image for 4.11

2051985 - An APIRequestCount without dots in the name can cause a panic

2052016 - MetalLB: Webhook Validation: Two BGPPeers instances can have different router ID set.

2052034 - Can't start correct debug pod using pod definition yaml in OCP 4.8

2052055 - Whereabouts should implement client-go 1.22+

2052056 - Static pod installer should throttle creating new revisions

2052071 - local storage operator metrics target down after upgrade

2052095 - Infinite OAuth redirect loop post-upgrade to 4.10.0-rc.1

2052270 - FSyncControllerDegraded has "treshold" -> "threshold" typos

2052309 - [IBM Cloud] ibm-vpc-block-csi-controller does not specify an update strategy, priority class, or only resource requests

2052332 - Probe failures and pod restarts during 4.7 to 4.8 upgrade

2052393 - Failed to scaleup RHEL machine against OVN cluster due to jq tool is required by configure-ovs.sh

2052398 - 4.9 to 4.10 upgrade fails for ovnkube-masters

2052415 - Pod density test causing problems when using kube-burner

2052513 - Failing webhooks will block an upgrade to 4.10 mid-way through the upgrade.

2052578 - Create new app from a private git repository using 'oc new app' with basic auth does not work.

2052595 - Remove dev preview badge from IBM FlashSystem deployment windows

2052618 - Node reboot causes duplicate persistent volumes

2052671 - Add Sprint 214 translations

2052674 - Remove extra spaces

2052700 - kube-controller-manger should use configmap lease

2052701 - kube-scheduler should use configmap lease

2052814 - go fmt fails in OSM after migration to go 1.17

2052840 - IMAGE_BUILDER=docker make test-e2e-operator-ocp runs with podman instead of docker

2052953 - Observe dashboard always opens for last viewed workload instead of the selected one

2052956 - Installing virtualization operator duplicates the first action on workloads in topology

2052975 - High cpu load on Juniper Qfx5120 Network switches after upgrade to Openshift 4.8.26

2052986 - Console crashes when Mid cycle hook in Recreate strategy(edit deployment/deploymentConfig) selects Lifecycle strategy as "Tags the current image as an image stream tag if the deployment succeeds"

2053006 - [ibm]Operator storage PROGRESSING and DEGRADED is true during fresh install for ocp4.11

2053104 - [vSphere CSI driver Operator] hw_version_total metric update wrong value after upgrade nodes hardware version from `vmx-13` to `vmx-15`

2053112 - nncp status is unknown when nnce is Progressing

2053118 - nncp Available condition reason should be exposed in `oc get`

2053168 - Ensure the core dynamic plugin SDK package has correct types and code

2053205 - ci-openshift-cluster-network-operator-master-e2e-agnostic-upgrade is failing most of the time

2053304 - Debug terminal no longer works in admin console

2053312 - requestheader IDP test doesn't wait for cleanup, causing high failure rates

2053334 - rhel worker scaleup playbook failed because missing some dependency of podman

2053343 - Cluster Autoscaler not scaling down nodes which seem to qualify for scale-down

2053491 - nmstate interprets interface names as float64 and subsequently crashes on state update

2053501 - Git import detection does not happen for private repositories

2053582 - inability to detect static lifecycle failure

2053596 - [IBM Cloud] Storage IOPS limitations and lack of IPI ETCD deployment options trigger leader election during cluster initialization

2053609 - LoadBalancer SCTP service leaves stale conntrack entry that causes issues if service is recreated

2053622 - PDB warning alert when CR replica count is set to zero

2053685 - Topology performance: Immutable .toJSON consumes a lot of CPU time when rendering a large topology graph (~100 nodes)

2053721 - When using RootDeviceHint rotational setting the host can fail to provision

2053922 - [OCP 4.8][OVN] pod interface: error while waiting on OVS.Interface.external-ids

2054095 - [release-4.11] Gather images.conifg.openshift.io cluster resource definiition

2054197 - The ProjectHelmChartRepositrory schema has merged but has not been initialized in the cluster yet

2054200 - Custom created services in openshift-ingress removed even though the services are not of type LoadBalancer

2054238 - console-master-e2e-gcp-console is broken

2054254 - vSphere test failure: [Serial] [sig-auth][Feature:OAuthServer] [RequestHeaders] [IdP] test RequestHeaders IdP [Suite:openshift/conformance/serial]

2054285 - Services other than knative service also shows as KSVC in add subscription/trigger modal

2054319 - must-gather | gather_metallb_logs can't detect metallb pod

2054351 - Rrestart of ptp4l/phc2sys on change of PTPConfig generates more than one times, socket error in event frame work

2054385 - redhat-operatori ndex image build failed with AMQ brew build - amq-interconnect-operator-metadata-container-1.10.13

2054564 - DPU network operator 4.10 branch need to sync with master

2054630 - cancel create silence from kebab menu of alerts page will navigated to the previous page

2054693 - Error deploying HorizontalPodAutoscaler with oc new-app command in OpenShift 4

2054701 - [MAPO] Events are not created for MAPO machines

2054705 - [tracker] nf_reinject calls nf_queue_entry_free on an already freed entry->state

2054735 - Bad link in CNV console

2054770 - IPI baremetal deployment metal3 pod crashes when using capital letters in hosts bootMACAddress

2054787 - SRO controller goes to CrashLoopBackOff status when the pull-secret does not have the correct permissions

2054950 - A large number is showing on disk size field

2055305 - Thanos Querier high CPU and memory usage till OOM

2055386 - MetalLB changes the shared external IP of a service upon updating the externalTrafficPolicy definition

2055433 - Unable to create br-ex as gateway is not found

2055470 - Ingresscontroller LB scope change behaviour differs for different values of aws-load-balancer-internal annotation

2055492 - The default YAML on vm wizard is not latest

2055601 - installer did not destroy *.app dns recored in a IPI on ASH install

2055702 - Enable Serverless tests in CI

2055723 - CCM operator doesn't deploy resources after enabling TechPreviewNoUpgrade feature set.

2055729 - NodePerfCheck fires and stays active on momentary high latency

2055814 - Custom dynamic exntension point causes runtime and compile time error

2055861 - cronjob collect-profiles failed leads node reach to OutOfpods status

2055980 - [dynamic SDK][internal] console plugin SDK does not support table actions

2056454 - Implement preallocated disks for oVirt in the cluster API provider

2056460 - Implement preallocated disks for oVirt in the OCP installer

2056496 - If image does not exists for builder image then upload jar form crashes

2056519 - unable to install IPI PRIVATE OpenShift cluster in Azure due to organization policies

2056607 - Running kubernetes-nmstate handler e2e tests stuck on OVN clusters

2056752 - Better to named the oc-mirror version info with more information like the `oc version --client`

2056802 - "enforcedLabelLimit|enforcedLabelNameLengthLimit|enforcedLabelValueLengthLimit" do not take effect

2056841 - [UI] [DR] Web console update is available pop-up is seen multiple times on Hub cluster where ODF operator is not installed and unnecessarily it pop-up on the Managed cluster as well where ODF operator is installed

2056893 - incorrect warning for --to-image in oc adm upgrade help

2056967 - MetalLB: speaker metrics is not updated when deleting a service

2057025 - Resource requests for the init-config-reloader container of prometheus-k8s-* pods are too high

2057054 - SDK: k8s methods resolves into Response instead of the Resource

2057079 - [cluster-csi-snapshot-controller-operator] CI failure: events should not repeat pathologically

2057101 - oc commands working with images print an incorrect and inappropriate warning

2057160 - configure-ovs selects wrong interface on reboot

2057183 - OperatorHub: Missing "valid subscriptions" filter

2057251 - response code for Pod count graph changed from 422 to 200 periodically for about 30 minutes if pod is rescheduled

2057358 - [Secondary Scheduler] - cannot build bundle index image using the secondary scheduler operator bundle

2057387 - [Secondary Scheduler] - olm.skiprange, com.redhat.openshift.versions is incorrect and no minkubeversion

2057403 - CMO logs show forbidden: User "system:serviceaccount:openshift-monitoring:cluster-monitoring-operator" cannot get resource "replicasets" in API group "apps" in the namespace "openshift-monitoring"

2057495 - Alibaba Disk CSI driver does not provision small PVCs

2057558 - Marketplace operator polls too frequently for cluster operator status changes

2057633 - oc rsync reports misleading error when container is not found

2057642 - ClusterOperator status.conditions[].reason "etcd disk metrics exceeded..." should be a CamelCase slug

2057644 - FSyncControllerDegraded latches True, even after fsync latency recovers on all members

2057696 - Removing console still blocks OCP install from completing

2057762 - ingress operator should report Upgradeable False to remind user before upgrade to 4.10 when Non-SAN certs are used

2057832 - expr for record rule: "cluster:telemetry_selected_series:count" is improper

2057967 - KubeJobCompletion does not account for possible job states

2057990 - Add extra debug information to image signature workflow test

2057994 - SRIOV-CNI failed to load netconf: LoadConf(): failed to get VF information

2058030 - On OCP 4.10+ using OVNK8s on BM IPI, nodes register as localhost.localdomain

2058217 - [vsphere-problem-detector-operator] 'vsphere_rwx_volumes_total' metric name make confused

2058225 - openshift_csi_share_* metrics are not found from telemeter server

2058282 - Websockets stop updating during cluster upgrades

2058291 - CI builds should have correct version of Kube without needing to push tags everytime

2058368 - Openshift OVN-K got restarted mutilple times with the error " ovsdb-server/memory-trim-on-compaction on'' failed: exit status 1 and " ovndbchecker.go:118] unable to turn on memory trimming for SB DB, stderr " , cluster unavailable

2058370 - e2e-aws-driver-toolkit CI job is failing

2058421 - 4.9.23-s390x-machine-os-content manifest invalid when mirroring content for disconnected install

2058424 - ConsolePlugin proxy always passes Authorization header even if `authorize` property is omitted or false

2058623 - Bootstrap server dropdown menu in Create Event Source- KafkaSource form is empty even if it's created

2058626 - Multiple Azure upstream kube fsgroupchangepolicy tests are permafailing expecting gid "1000" but geting "root"

2058671 - whereabouts IPAM CNI ip-reconciler cronjob specification requires hostnetwork, api-int lb usage & proper backoff

2058692 - [Secondary Scheduler] Creating secondaryscheduler instance fails with error "key failed with : secondaryschedulers.operator.openshift.io "secondary-scheduler" not found"

2059187 - [Secondary Scheduler] - key failed with : serviceaccounts "secondary-scheduler" is forbidden

2059212 - [tracker] Backport https://github.com/util-linux/util-linux/commit/eab90ef8d4f66394285e0cff1dfc0a27242c05aa

2059213 - ART cannot build installer images due to missing terraform binaries for some architectures

2059338 - A fully upgraded 4.10 cluster defaults to HW-13 hardware version even if HW-15 is default (and supported)

2059490 - The operator image in CSV file of the ART DPU network operator bundle is incorrect

2059567 - vMedia based IPI installation of OpenShift fails on Nokia servers due to issues with virtual media attachment and boot source override

2059586 - (release-4.11) Insights operator doesn't reconcile clusteroperator status condition messages

2059654 - Dynamic demo plugin proxy example out of date

2059674 - Demo plugin fails to build

2059716 - cloud-controller-manager flaps operator version during 4.9 -> 4.10 update

2059791 - [vSphere CSI driver Operator] didn't update 'vsphere_csi_driver_error' metric value when fixed the error manually

2059840 - [LSO]Could not gather logs for pod diskmaker-discovery and diskmaker-manager

2059943 - MetalLB: Move CI config files to metallb repo from dev-scripts repo

2060037 - Configure logging level of FRR containers

2060083 - CMO doesn't react to changes in clusteroperator console

2060091 - CMO produces invalid alertmanager statefulset if console cluster .status.consoleURL is unset

2060133 - [OVN RHEL upgrade] could not find IP addresses: failed to lookup link br-ex: Link not found

2060147 - RHEL8 Workers Need to Ensure libseccomp is up to date at install time

2060159 - LGW: External->Service of type ETP=Cluster doesn't go to the node

2060329 - Detect unsupported amount of workloads before rendering a lazy or crashing topology

2060334 - Azure VNET lookup fails when the NIC subnet is in a different resource group

2060361 - Unable to enumerate NICs due to missing the 'primary' field due to security restrictions

2060406 - Test 'operators should not create watch channels very often' fails

2060492 - Update PtpConfigSlave source-crs to use network_transport L2 instead of UDPv4

2060509 - Incorrect installation of ibmcloud vpc csi driver in IBM Cloud ROKS 4.10

2060532 - LSO e2e tests are run against default image and namespace

2060534 - openshift-apiserver pod in crashloop due to unable to reach kubernetes svc ip

2060549 - ErrorAddingLogicalPort: duplicate IP found in ECMP Pod route cache!

2060553 - service domain can't be resolved when networkpolicy is used in OCP 4.10-rc

2060583 - Remove Console internal-kubevirt plugin SDK package

2060605 - Broken access to public images: Unable to connect to the server: no basic auth credentials

2060617 - IBMCloud destroy DNS regex not strict enough

2060687 - Azure Ci: SubscriptionDoesNotSupportZone - does not support availability zones at location 'westus'

2060697 - [AWS] partitionNumber cannot work for specifying Partition number

2060714 - [DOCS] Change source_labels to sourceLabels in "Configuring remote write storage" section

2060837 - [oc-mirror] Catalog merging error when two or more bundles does not have a set Replace field

2060894 - Preceding/Trailing Whitespaces In Form Elements on the add page

2060924 - Console white-screens while using debug terminal

2060968 - Installation failing due to ironic-agent.service not starting properly

2060970 - Bump recommended FCOS to 35.20220213.3.0

2061002 - Conntrack entry is not removed for LoadBalancer IP

2061301 - Traffic Splitting Dialog is Confusing With Only One Revision

2061303 - Cachito request failure with vendor directory is out of sync with go.mod/go.sum

2061304 - workload info gatherer - don't serialize empty images map

2061333 - White screen for Pipeline builder page

2061447 - [GSS] local pv's are in terminating state

2061496 - etcd RecentBackup=Unknown ControllerStarted contains no message string

2061527 - [IBMCloud] infrastructure asset missing CloudProviderType

2061544 - AzureStack is hard-coded to use Standard_LRS for the disk type

2061549 - AzureStack install with internal publishing does not create api DNS record

2061611 - [upstream] The marker of KubeBuilder doesn't work if it is close to the code

2061732 - Cinder CSI crashes when API is not available

2061755 - Missing breadcrumb on the resource creation page

2061833 - A single worker can be assigned to multiple baremetal hosts

2061891 - [IPI on IBMCLOUD] missing ?br-sao? region in openshift installer

2061916 - mixed ingress and egress policies can result in half-isolated pods

2061918 - Topology Sidepanel style is broken

2061919 - Egress Ip entry stays on node's primary NIC post deletion from hostsubnet

2062007 - MCC bootstrap command lacks template flag

2062126 - IPfailover pod is crashing during creation showing keepalived_script doesn't exist

2062151 - Add RBAC for 'infrastructures' to operator bundle

2062355 - kubernetes-nmstate resources and logs not included in must-gathers

2062459 - Ingress pods scheduled on the same node

2062524 - [Kamelet Sink] Topology crashes on click of Event sink node if the resource is created source to Uri over ref

2062558 - Egress IP with openshift sdn in not functional on worker node.

2062568 - CVO does not trigger new upgrade again after fail to update to unavailable payload

2062645 - configure-ovs: don't restart networking if not necessary

2062713 - Special Resource Operator(SRO) - No sro_used_nodes metric

2062849 - hw event proxy is not binding on ipv6 local address

2062920 - Project selector is too tall with only a few projects

2062998 - AWS GovCloud regions are recognized as the unknown regions

2063047 - Configuring a full-path query log file in CMO breaks Prometheus with the latest version of the operator

2063115 - ose-aws-efs-csi-driver has invalid dependency in go.mod

2063164 - metal-ipi-ovn-ipv6 Job Permafailing and Blocking OpenShift 4.11 Payloads: insights operator is not available

2063183 - DefragDialTimeout is set to low for large scale OpenShift Container Platform - Cluster

2063194 - cluster-autoscaler-default will fail when automated etcd defrag is running on large scale OpenShift Container Platform 4 - Cluster

2063321 - [OVN]After reboot egress node, lr-policy-list was not correct, some duplicate records or missed internal IPs

2063324 - MCO template output directories created with wrong mode causing render failure in unprivileged container environments

2063375 - ptp operator upgrade from 4.9 to 4.10 stuck at pending due to service account requirements not met

2063414 - on OKD 4.10, when image-registry is enabled, the /etc/hosts entry is missing on some nodes

2063699 - Builds - Builds - Logs: i18n misses.

2063708 - Builds - Builds - Logs: translation correction needed.

2063720 - Metallb EBGP neighbor stuck in active until adding ebgp-multihop (directly connected neighbors)

2063732 - Workloads - StatefulSets : I18n misses

2063747 - When building a bundle, the push command fails because is passes a redundant "IMG=" on the the CLI

2063753 - User Preferences - Language - Language selection : Page refresh rquired to change the UI into selected Language.

2063756 - User Preferences - Applications - Insecure traffic : i18n misses

2063795 - Remove go-ovirt-client go.mod replace directive

2063829 - During an IPI install with the 4.10.4 installer on vSphere, getting "Check": platform.vsphere.network: Invalid value: "VLAN_3912": unable to find network provided"

2063831 - etcd quorum pods landing on same node

2063897 - Community tasks not shown in pipeline builder page

2063905 - PrometheusOperatorWatchErrors alert may fire shortly in case of transient errors from the API server

2063938 - sing the hard coded rest-mapper in library-go

2063955 - cannot download operator catalogs due to missing images

2063957 - User Management - Users : While Impersonating user, UI is not switching into user's set language

2064024 - SNO OCP upgrade with DU workload stuck at waiting for kube-apiserver static pod

2064170 - [Azure] Missing punctuation in the installconfig.controlPlane.platform.azure.osDisk explain

2064239 - Virtualization Overview page turns into blank page

2064256 - The Knative traffic distribution doesn't update percentage in sidebar

2064553 - UI should prefer to use the virtio-win configmap than v2v-vmware configmap for windows creation

2064596 - Fix the hubUrl docs link in pipeline quicksearch modal

2064607 - Pipeline builder makes too many (100+) API calls upfront

2064613 - [OCPonRHV]- after few days that cluster is alive we got error in storage operator

2064693 - [IPI][OSP] Openshift-install fails to find the shiftstack cloud defined in clouds.yaml in the current directory

2064702 - CVE-2022-27191 golang: crash in a golang.org/x/crypto/ssh server

2064705 - the alertmanagerconfig validation catches the wrong value for invalid field

2064744 - Errors trying to use the Debug Container feature

2064984 - Update error message for label limits

2065076 - Access monitoring Routes based on monitoring-shared-config creates wrong URL

2065160 - Possible leak of load balancer targets on AWS Machine API Provider

2065224 - Configuration for cloudFront in image-registry operator configuration is ignored & duration is corrupted

2065290 - CVE-2021-23648 sanitize-url: XSS

2065338 - VolumeSnapshot creation date sorting is broken

2065507 - `oc adm upgrade` should return ReleaseAccepted condition to show upgrade status.

2065510 - [AWS] failed to create cluster on ap-southeast-3

2065513 - Dev Perspective -> Project Dashboard shows Resource Quotas which are a bit misleading, and too many decimal places

2065547 - (release-4.11) Gather kube-controller-manager pod logs with garbage collector errors

2065552 - [AWS] Failed to install cluster on AWS ap-southeast-3 region due to image-registry panic error

2065577 - user with user-workload-monitoring-config-edit role can not create user-workload-monitoring-config configmap

2065597 - Cinder CSI is not configurable

2065682 - Remote write relabel config adds label __tmp_openshift_cluster_id__ to all metrics

2065689 - Internal Image registry with GCS backend does not redirect client

2065749 - Kubelet slowly leaking memory and pods eventually unable to start

2065785 - ip-reconciler job does not complete, halts node drain

2065804 - Console backend check for Web Terminal Operator incorrectly returns HTTP 204

2065806 - stop considering Mint mode as supported on Azure

2065840 - the cronjob object is created with a wrong api version batch/v1beta1 when created via the openshift console

2065893 - [4.11] Bootimage bump tracker

2066009 - CVE-2021-44906 minimist: prototype pollution

2066232 - e2e-aws-workers-rhel8 is failing on ansible check

2066418 - [4.11] Update channels information link is taking to a 404 error page

2066444 - The "ingress" clusteroperator's relatedObjects field has kind names instead of resource names

2066457 - Prometheus CI failure: 503 Service Unavailable

2066463 - [IBMCloud] failed to list DNS zones: Exactly one of ApiKey or RefreshToken must be specified

2066605 - coredns template block matches cluster API to loose

2066615 - Downstream OSDK still use upstream image for Hybird type operator

2066619 - The GitCommit of the `oc-mirror version` is not correct

2066665 - [ibm-vpc-block] Unable to change default storage class

2066700 - [node-tuning-operator] - Minimize wildcard/privilege Usage in Cluster and Local Roles

2066754 - Cypress reports for core tests are not captured

2066782 - Attached disk keeps in loading status when add disk to a power off VM by non-privileged user

2066865 - Flaky test: In-tree Volumes [Driver: azure-disk] [Testpattern: Dynamic PV (delayed binding)] topology should provision a volume and schedule a pod with AllowedTopologies

2066886 - openshift-apiserver pods never going NotReady

2066887 - Dependabot alert: Path traversal in github.com/valyala/fasthttp

2066889 - Dependabot alert: Path traversal in github.com/valyala/fasthttp

2066923 - No rule to make target 'docker-push' when building the SRO bundle

2066945 - SRO appends "arm64" instead of "aarch64" to the kernel name and it doesn't match the DTK

2067004 - CMO contains grafana image though grafana is removed

2067005 - Prometheus rule contains grafana though grafana is removed

2067062 - should update prometheus-operator resources version

2067064 - RoleBinding in Developer Console is dropping all subjects when editing

2067155 - Incorrect operator display name shown in pipelines quickstart in devconsole

2067180 - Missing i18n translations

2067298 - Console 4.10 operand form refresh

2067312 - PPT event source is lost when received by the consumer

2067384 - OCP 4.10 should be firing APIRemovedInNextEUSReleaseInUse for APIs removed in 1.25

2067456 - OCP 4.11 should be firing APIRemovedInNextEUSReleaseInUse and APIRemovedInNextReleaseInUse for APIs removed in 1.25

2067995 - Internal registries with a big number of images delay pod creation due to recursive SELinux file context relabeling

2068115 - resource tab extension fails to show up

2068148 - [4.11] /etc/redhat-release symlink is broken

2068180 - OCP UPI on AWS with STS enabled is breaking the Ingress operator

2068181 - Event source powered with kamelet type source doesn't show associated deployment in resources tab

2068490 - OLM descriptors integration test failing

2068538 - Crashloop back-off popover visual spacing defects

2068601 - Potential etcd inconsistent revision and data occurs

2068613 - ClusterRoleUpdated/ClusterRoleBindingUpdated Spamming Event Logs

2068908 - Manual blog link change needed

2069068 - reconciling Prometheus Operator Deployment failed while upgrading from 4.7.46 to 4.8.35

2069075 - [Alibaba 4.11.0-0.nightly] cluster storage component in Progressing state

2069181 - Disabling community tasks is not working

2069198 - Flaky CI test in e2e/pipeline-ci

2069307 - oc mirror hangs when processing the Red Hat 4.10 catalog

2069312 - extend rest mappings with 'job' definition

2069457 - Ingress operator has superfluous finalizer deletion logic for LoadBalancer-type services

2069577 - ConsolePlugin example proxy authorize is wrong

2069612 - Special Resource Operator (SRO) - Crash when nodeSelector does not match any nodes

2069632 - Not able to download previous container logs from console

2069643 - ConfigMaps leftovers while uninstalling SpecialResource with configmap

2069654 - Creating VMs with YAML on Openshift Virtualization UI is missing labels `flavor`, `os` and `workload`

2069685 - UI crashes on load if a pinned resource model does not exist

2069705 - prometheus target "serviceMonitor/openshift-metallb-system/monitor-metallb-controller/0" has a failure with "server returned HTTP status 502 Bad Gateway"

2069740 - On-prem loadbalancer ports conflict with kube node port range

2069760 - In developer perspective divider does not show up in navigation

2069904 - Sync upstream 1.18.1 downstream

2069914 - Application Launcher groupings are not case-sensitive

2069997 - [4.11] should add user containers in /etc/subuid and /etc/subgid to support run pods in user namespaces

2070000 - Add warning alerts for installing standalone k8s-nmstate

2070020 - InContext doesn't work for Event Sources

2070047 - Kuryr: Prometheus when installed on the cluster shouldn't report any alerts in firing state apart from Watchdog and AlertmanagerReceiversNotConfigured

2070160 - Copy-to-clipboard and

 elements cause display issues for ACM dynamic plugins

2070172 - SRO uses the chart's name as Helm release, not the SpecialResource's

2070181 - [MAPO] serverGroupName ignored

2070457 - Image vulnerability Popover overflows from the visible area

2070674 - [GCP] Routes get timed out and nonresponsive after creating 2K service routes

2070703 - some ipv6 network policy tests consistently failing

2070720 - [UI] Filter reset doesn't work on Pods/Secrets/etc pages and complete list disappears

2070731 - details switch label is not clickable on add page

2070791 - [GCP]Image registry are crash on cluster with GCP workload identity enabled

2070792 - service "openshift-marketplace/marketplace-operator-metrics" is not annotated with capability

2070805 - ClusterVersion: could not download the update

2070854 - cv.status.capabilities.enabledCapabilities doesn?t show the day-2 enabled caps when there are errors on resources update

2070887 - Cv condition ImplicitlyEnabledCapabilities doesn?t complain about the disabled capabilities which is previously enabled

2070888 - Cannot bind driver vfio-pci when apply sriovnodenetworkpolicy with type vfio-pci

2070929 - OVN-Kubernetes: EgressIP breaks access from a pod with EgressIP to other host networked pods on different nodes

2071019 - rebase vsphere csi driver 2.5

2071021 - vsphere driver has snapshot support missing

2071033 - conditionally relabel volumes given annotation not working - SELinux context match is wrong

2071139 - Ingress pods scheduled on the same node

2071364 - All image building tests are broken with " error: build error: attempting to convert BUILD_LOGLEVEL env var value "" to integer: strconv.Atoi: parsing "": invalid syntax

2071578 - Monitoring navigation should not be shown if monitoring is not available (CRC)

2071599 - RoleBidings are not getting updated for ClusterRole in OpenShift Web Console

2071614 - Updating EgressNetworkPolicy rejecting with error UnsupportedMediaType

2071617 - remove Kubevirt extensions in favour of dynamic plugin

2071650 - ovn-k ovn_db_cluster metrics are not exposed for SNO

2071691 - OCP Console global PatternFly overrides adds padding to breadcrumbs

2071700 - v1 events show "Generated from" message without the source/reporting component

2071715 - Shows 404 on Environment nav in Developer console

2071719 - OCP Console global PatternFly overrides link button whitespace

2071747 - Link to documentation from the overview page goes to a missing link

2071761 - Translation Keys Are Not Namespaced

2071799 - Multus CNI should exit cleanly on CNI DEL when the API server is unavailable

2071859 - ovn-kube pods spec.dnsPolicy should be Default

2071914 - cloud-network-config-controller 4.10.5: Error building cloud provider client, err: %vfailed to initialize Azure environment: autorest/azure: There is no cloud environment matching the name ""

2071998 - Cluster-version operator should share details of signature verification when it fails in 'Force: true' updates

2072106 - cluster-ingress-operator tests do not build on go 1.18

2072134 - Routes are not accessible within cluster from hostnet pods

2072139 - vsphere driver has permissions to create/update PV objects

2072154 - Secondary Scheduler operator panics

2072171 - Test "[sig-network][Feature:EgressFirewall] EgressFirewall should have no impact outside its namespace [Suite:openshift/conformance/parallel]" fails

2072195 - machine api doesn't issue client cert when AWS DNS suffix missing

2072215 - Whereabouts ip-reconciler should be opt-in and not required

2072389 - CVO exits upgrade immediately rather than waiting for etcd backup

2072439 - openshift-cloud-network-config-controller reports wrong range of IP addresses for Azure worker nodes

2072455 - make bundle overwrites supported-nic-ids_v1_configmap.yaml

2072570 - The namespace titles for operator-install-single-namespace test keep changing

2072710 - Perfscale - pods time out waiting for OVS port binding (ovn-installed)

2072766 - Cluster Network Operator stuck in CrashLoopBackOff when scheduled to same master

2072780 - OVN kube-master does not clear NetworkUnavailableCondition on GCP BYOH Windows node

2072793 - Drop "Used Filesystem" from "Virtualization -> Overview"

2072805 - Observe > Dashboards: $__range variables cause PromQL query errors

2072807 - Observe > Dashboards: Missing `panel.styles` attribute for table panels causes JS error

2072842 - (release-4.11) Gather namespace names with overlapping UID ranges

2072883 - sometimes monitoring dashboards charts can not be loaded successfully

2072891 - Update gcp-pd-csi-driver to 1.5.1;

2072911 - panic observed in kubedescheduler operator

2072924 - periodic-ci-openshift-release-master-ci-4.11-e2e-azure-techpreview-serial

2072957 - ContainerCreateError loop leads to several thousand empty logfiles in the file system

2072998 - update aws-efs-csi-driver to the latest version

2072999 - Navigate from logs of selected Tekton task instead of last one

2073021 - [vsphere] Failed to update OS on master nodes

2073112 - Prometheus (uwm) externalLabels not showing always in alerts.

2073113 - Warning is logged to the console: W0407 Defaulting of registry auth file to "${HOME}/.docker/config.json" is deprecated.

2073176 - removing data in form does not remove data from yaml editor

2073197 - Error in Spoke/SNO agent: Source image rejected: A signature was required, but no signature exists

2073329 - Pipelines-plugin- Having different title for Pipeline Runs tab, on Pipeline Details page it's "PipelineRuns" and on Repository Details page it's "Pipeline Runs".

2073373 - Update azure-disk-csi-driver to 1.16.0

2073378 - failed egressIP assignment - cloud-network-config-controller does not delete failed cloudprivateipconfig

2073398 - machine-api-provider-openstack does not clean up OSP ports after failed server provisioning

2073436 - Update azure-file-csi-driver to v1.14.0

2073437 - Topology performance: Firehose/useK8sWatchResources cache can return unexpected data format if isList differs on multiple calls

2073452 - [sig-network] pods should successfully create sandboxes by other - failed (add)

2073473 - [OVN SCALE][ovn-northd] Unnecessary SB record no-op changes added to SB transaction.

2073522 - Update ibm-vpc-block-csi-driver to v4.2.0

2073525 - Update vpc-node-label-updater to v4.1.2

2073901 - Installation failed due to etcd operator Err:DefragControllerDegraded: failed to dial endpoint https://10.0.0.7:2379 with maintenance client: context canceled

2073937 - Invalid retention time and invalid retention size should be validated at one place and have error log in one place for UMW

2073938 - APIRemovedInNextEUSReleaseInUse alert for runtimeclasses

2073945 - APIRemovedInNextEUSReleaseInUse alert for podsecuritypolicies

2073972 - Invalid retention time and invalid retention size should be validated at one place and have error log in one place for platform monitoring

2074009 - [OVN] ovn-northd doesn't clean Chassis_Private record after scale down to 0 a machineSet

2074031 - Admins should be able to tune garbage collector aggressiveness (GOGC) for kube-apiserver if necessary

2074062 - Node Tuning Operator(NTO) - Cloud provider profile rollback doesn't work well

2074084 - CMO metrics not visible in the OCP webconsole UI

2074100 - CRD filtering according to name broken

2074210 - asia-south2, australia-southeast2, and southamerica-west1Missing from GCP regions

2074237 - oc new-app --image-stream flag behavior is unclear

2074243 - DefaultPlacement API allow empty enum value and remove default

2074447 - cluster-dashboard: CPU Utilisation iowait and steal

2074465 - PipelineRun fails in import from Git flow if "main" branch is default

2074471 - Cannot delete namespace with a LB type svc and Kuryr when ExternalCloudProvider is enabled

2074475 - [e2e][automation] kubevirt plugin cypress tests fail

2074483 - coreos-installer doesnt work on Dell machines

2074544 - e2e-metal-ipi-ovn-ipv6 failing due to recent CEO changes

2074585 - MCG standalone deployment page goes blank when the KMS option is enabled

2074606 - occm does not have permissions to annotate SVC objects

2074612 - Operator fails to install due to service name lookup failure

2074613 - nodeip-configuration container incorrectly attempts to relabel /etc/systemd/system

2074635 - Unable to start Web Terminal after deleting existing instance

2074659 - AWS installconfig ValidateForProvisioning always provides blank values to validate zone records

2074706 - Custom EC2 endpoint is not considered by AWS EBS CSI driver

2074710 - Transition to go-ovirt-client

2074756 - Namespace column provide wrong data in ClusterRole Details -> Rolebindings tab

2074767 - Metrics page show incorrect values due to metrics level config

2074807 - NodeFilesystemSpaceFillingUp alert fires even before kubelet GC kicks in

2074902 - `oc debug node/nodename ? chroot /host somecommand` should exit with non-zero when the sub-command failed

2075015 - etcd-guard connection refused event repeating pathologically (payload blocking)

2075024 - Metal upgrades permafailing on metal3 containers crash looping

2075050 - oc-mirror fails to calculate between two channels with different prefixes for the same version of OCP

2075091 - Symptom Detection.Undiagnosed panic detected in pod

2075117 - Developer catalog: Order dropdown (A-Z, Z-A) is miss-aligned (in a separate row)

2075149 - Trigger Translations When Extensions Are Updated

2075189 - Imports from dynamic-plugin-sdk lead to failed module resolution errors

2075459 - Set up cluster on aws with rootvolumn io2 failed due to no iops despite it being configured

2075475 - OVN-Kubernetes: egress router pod (redirect mode), access from pod on different worker-node (redirect) doesn't work

2075478 - Bump documentationBaseURL to 4.11

2075491 - nmstate operator cannot be upgraded on SNO

2075575 - Local Dev Env - Prometheus 404 Call errors spam the console

2075584 - improve clarity of build failure messages when using csi shared resources but tech preview is not enabled

2075592 - Regression - Top of the web terminal drawer is missing a stroke/dropshadow

2075621 - Cluster upgrade.[sig-mco] Machine config pools complete upgrade

2075647 - 'oc adm upgrade ...' POSTs ClusterVersion, clobbering any unrecognized spec properties

2075671 - Cluster Ingress Operator K8S API cache contains duplicate objects

2075778 - Fix failing TestGetRegistrySamples test

2075873 - Bump recommended FCOS to 35.20220327.3.0

2076193 - oc patch command for the liveness probe and readiness probe parameters of an OpenShift router deployment doesn't take effect

2076270 - [OCPonRHV] MachineSet scale down operation fails to delete the worker VMs

2076277 - [RFE] [OCPonRHV] Add storage domain ID valueto Compute/ControlPlain section in the machine object

2076290 - PTP operator readme missing documentation on BC setup via PTP config

2076297 - Router process ignores shutdown signal while starting up

2076323 - OLM blocks all operator installs if an openshift-marketplace catalogsource is unavailable

2076355 - The KubeletConfigController wrongly process multiple confs for a pool after having kubeletconfig in bootstrap

2076393 - [VSphere] survey fails to list datacenters

2076521 - Nodes in the same zone are not updated in the right order

2076527 - Pipeline Builder: Make unnecessary tekton hub API calls when the user types 'too fast'

2076544 - Whitespace (padding) is missing after an PatternFly update, already in 4.10

2076553 - Project access view replace group ref with user ref when updating their Role

2076614 - Missing Events component from the SDK API

2076637 - Configure metrics for vsphere driver to be reported

2076646 - openshift-install destroy unable to delete PVC disks in GCP if cluster identifier is longer than 22 characters

2076793 - CVO exits upgrade immediately rather than waiting for etcd backup

2076831 - [ocp4.11]Mem/cpu high utilization by apiserver/etcd for cluster stayed 10 hours

2076877 - network operator tracker to switch to use flowcontrol.apiserver.k8s.io/v1beta2 instead v1beta1 to be deprecated in k8s 1.26

2076880 - OKD: add cluster domain to the uploaded vm configs so that 30-local-dns-prepender can use it

2076975 - Metric unset during static route conversion in configure-ovs.sh

2076984 - TestConfigurableRouteNoConsumingUserNoRBAC fails in CI

2077050 - OCP should default to pd-ssd disk type on GCP

2077150 - Breadcrumbs on a few screens don't have correct top margin spacing

2077160 - Update owners for openshift/cluster-etcd-operator

2077357 - [release-4.11] 200ms packet delay with OVN controller turn on

2077373 - Accessibility warning on developer perspective

2077386 - Import page shows untranslated values for the route advanced routing>security options (devconsole~Edge)

2077457 - failure in test case "[sig-network][Feature:Router] The HAProxy router should serve the correct routes when running with the haproxy config manager"

2077497 - Rebase etcd to 3.5.3 or later

2077597 - machine-api-controller is not taking the proxy configuration when it needs to reach the RHV API

2077599 - OCP should alert users if they are on vsphere version <7.0.2

2077662 - AWS Platform Provisioning Check incorrectly identifies record as part of domain of cluster

2077797 - LSO pods don't have any resource requests

2077851 - "make vendor" target is not working

2077943 - If there is a service with multiple ports, and the route uses 8080, when editing the 8080 port isn't replaced, but a random port gets replaced and 8080 still stays

2077994 - Publish RHEL CoreOS AMIs in AWS ap-southeast-3 region

2078013 - drop multipathd.socket workaround

2078375 - When using the wizard with template using data source the resulting vm use pvc source

2078396 - [OVN AWS] EgressIP was not balanced to another egress node after original node was removed egress label

2078431 - [OCPonRHV] - ERROR failed to instantiate provider "openshift/local/ovirt" to obtain schema: ERROR fork/exec

2078526 - Multicast breaks after master node reboot/sync

2078573 - SDN CNI -Fail to create nncp when vxlan is up

2078634 - CRI-O not killing Calico CNI stalled (zombie) processes.

2078698 - search box may not completely remove content

2078769 - Different not translated filter group names (incl. Secret, Pipeline, PIpelineRun)

2078778 - [4.11] oc get ValidatingWebhookConfiguration,MutatingWebhookConfiguration fails and caused ?apiserver panic'd...http2: panic serving xxx.xx.xxx.21:49748: cannot deep copy int? when AllRequestBodies audit-profile is used.

2078781 - PreflightValidation does not handle multiarch images

2078866 - [BM][IPI] Installation with bonds fail - DaemonSet "openshift-ovn-kubernetes/ovnkube-node" rollout is not making progress

2078875 - OpenShift Installer fail to remove Neutron ports

2078895 - [OCPonRHV]-"cow" unsupported value in format field in install-config.yaml

2078910 - CNO spitting out ".spec.groups[0].rules[4].runbook_url: field not declared in schema"

2078945 - Ensure only one apiserver-watcher process is active on a node.

2078954 - network-metrics-daemon makes costly global pod list calls scaling per node

2078969 - Avoid update races between old and new NTO operands during cluster upgrades

2079012 - egressIP not migrated to correct workers after deleting machineset it was assigned

2079062 - Test for console demo plugin toast notification needs to be increased for ci testing

2079197 - [RFE] alert when more than one default storage class is detected

2079216 - Partial cluster update reference doc link returns 404

2079292 - containers prometheus-operator/kube-rbac-proxy violate PodSecurity

2079315 - (release-4.11) Gather ODF config data with Insights

2079422 - Deprecated 1.25 API call

2079439 - OVN Pods Assigned Same IP Simultaneously

2079468 - Enhance the waitForIngressControllerCondition for better CI results

2079500 - okd-baremetal-install uses fcos for bootstrap but rhcos for cluster

2079610 - Opeatorhub status shows errors

2079663 - change default image features in RBD storageclass

2079673 - Add flags to disable migrated code

2079685 - Storageclass creation page with "Enable encryption" is not displaying saved KMS connection details when vaulttenantsa details are available in csi-kms-details config

2079724 - cluster-etcd-operator - disable defrag-controller as there is unpredictable impact on large OpenShift Container Platform 4 - Cluster

2079788 - Operator restarts while applying the acm-ice example

2079789 - cluster drops ImplicitlyEnabledCapabilities during upgrade

2079803 - Upgrade-triggered etcd backup will be skip during serial upgrade

2079805 - Secondary scheduler operator should comply to restricted pod security level

2079818 - Developer catalog installation overlay (modal?) shows a duplicated padding

2079837 - [RFE] Hub/Spoke example with daemonset

2079844 - EFS cluster csi driver status stuck in AWSEFSDriverCredentialsRequestControllerProgressing with sts installation

2079845 - The Event Sinks catalog page now has a blank space on the left

2079869 - Builds for multiple kernel versions should be ran in parallel when possible

2079913 - [4.10] APIRemovedInNextEUSReleaseInUse alert for OVN endpointslices

2079961 - The search results accordion has no spacing between it and the side navigation bar.

2079965 - [rebase v1.24] [sig-node] PodOSRejection [NodeConformance] Kubelet should reject pod when the node OS doesn't match pod's OS [Suite:openshift/conformance/parallel] [Suite:k8s]

2080054 - TAGS arg for installer-artifacts images is not propagated to build images

2080153 - aws-load-balancer-operator-controller-manager pod stuck in ContainerCreating status

2080197 - etcd leader changes produce test churn during early stage of test

2080255 - EgressIP broken on AWS with OpenShiftSDN / latest nightly build

2080267 - [Fresh Installation] Openshift-machine-config-operator namespace is flooded with events related to clusterrole, clusterrolebinding

2080279 - CVE-2022-29810 go-getter: writes SSH credentials into logfile, exposing sensitive credentials to local uses

2080379 - Group all e2e tests as parallel or serial

2080387 - Visual connector not appear between the node if a node get created using "move connector" to a different application

2080416 - oc bash-completion problem

2080429 - CVO must ensure non-upgrade related changes are saved when desired payload fails to load

2080446 - Sync ironic images with latest bug fixes packages

2080679 - [rebase v1.24] [sig-cli] test failure

2080681 - [rebase v1.24] [sig-cluster-lifecycle] CSRs from machines that are not recognized by the cloud provider are not approved [Suite:openshift/conformance/parallel]

2080687 - [rebase v1.24] [sig-network][Feature:Router] tests are failing

2080873 - Topology graph crashes after update to 4.11 when Layout 2 (ColaForce) was selected previously

2080964 - Cluster operator special-resource-operator is always in Failing state with reason: "Reconciling simple-kmod"

2080976 - Avoid hooks config maps when hooks are empty

2081012 - [rebase v1.24] [sig-devex][Feature:OpenShiftControllerManager] TestAutomaticCreationOfPullSecrets [Suite:openshift/conformance/parallel]

2081018 - [rebase v1.24] [sig-imageregistry][Feature:Image] oc tag should work when only imagestreams api is available

2081021 - [rebase v1.24] [sig-api-machinery] API data in etcd should be stored at the correct location and version for all resources

2081062 - Unrevert RHCOS back to 8.6

2081067 - admin dev-console /settings/cluster should point out history may be excerpted

2081069 - [sig-network] pods should successfully create sandboxes by adding pod to network

2081081 - PreflightValidation "odd number of arguments passed as key-value pairs for logging" error

2081084 - [rebase v1.24] [sig-instrumentation] Events API should ensure that an event can be fetched, patched, deleted, and listed

2081087 - [rebase v1.24] [sig-auth] ServiceAccounts should allow opting out of API token automount

2081119 - `oc explain` output of default overlaySize is outdated

2081172 - MetallLB: YAML view in webconsole does not show all the available key value pairs of all the objects

2081201 - cloud-init User check for Windows VM refuses to accept capitalized usernames

2081447 - Ingress operator performs spurious updates in response to API's defaulting of router deployment's router container's ports' protocol field

2081562 - lifecycle.posStart hook does not have network connectivity.

2081685 - Typo in NNCE Conditions

2081743 - [e2e] tests failing

2081788 - MetalLB: the crds are not validated until metallb is deployed

2081821 - SpecialResourceModule CRD is not installed after deploying SRO operator using brew bundle image via OLM

2081895 - Use the managed resource (and not the manifest) for resource health checks

2081997 - disconnected insights operator remains degraded after editing pull secret

2082075 - Removing huge amount of ports takes a lot of time.

2082235 - CNO exposes a generic apiserver that apparently does nothing

2082283 - Transition to new oVirt Terraform provider

2082360 - OCP 4.10.4, CNI: SDN; Whereabouts IPAM: Duplicate IP address with bond-cni

2082380 - [4.10.z] customize wizard is crashed

2082403 - [LSO] No new build local-storage-operator-metadata-container created

2082428 - oc patch healthCheckInterval with invalid "5 s" to the ingress-controller successfully

2082441 - [UPI] aws-load-balancer-operator-controller-manager failed to get VPC ID in UPI on AWS

2082492 - [IPI IBM]Can't create image-registry-private-configuration secret with error "specified resource key credentials does not contain HMAC keys"

2082535 - [OCPonRHV]-workers are cloned when "clone: false" is specified in install-config.yaml

2082538 - apirequests limits of Cluster CAPI Operator are too low for GCP platform

2082566 - OCP dashboard fails to load when the query to Prometheus takes more than 30s to return

2082604 - [IBMCloud][x86_64] IBM VPC does not properly support RHCOS Custom Image tagging

2082667 - No new machines provisioned while machineset controller drained old nodes for change to machineset

2082687 - [IBM Cloud][x86_64][CCCMO] IBM x86_64 CCM using unsupported --port argument

2082763 - Cluster install stuck on the applying for operatorhub "cluster"

2083149 - "Update blocked" label incorrectly displays on new minor versions in the "Other available paths" modal

2083153 - Unable to use application credentials for Manila PVC creation on OpenStack

2083154 - Dynamic plugin sdk tsdoc generation does not render docs for parameters

2083219 - DPU network operator doesn't deal with c1... inteface names

2083237 - [vsphere-ipi] Machineset scale up process delay

2083299 - SRO does not fetch mirrored DTK images in disconnected clusters

2083445 - [FJ OCP4.11 Bug]: RAID setting during IPI cluster deployment fails if iRMC port number is specified

2083451 - Update external serivces URLs to console.redhat.com

2083459 - Make numvfs > totalvfs error message more verbose

2083466 - Failed to create clusters on AWS C2S/SC2S due to image-registry MissingEndpoint error

2083514 - Operator ignores managementState Removed

2083641 - OpenShift Console Knative Eventing ContainerSource generates wrong api version when pointed to k8s Service

2083756 - Linkify not upgradeable message on ClusterSettings page

2083770 - Release image signature manifest filename extension is yaml

2083919 - openshift4/ose-operator-registry:4.10.0 having security vulnerabilities

2083942 - Learner promotion can temporarily fail with rpc not supported for learner errors

2083964 - Sink resources dropdown is not persisted in form yaml switcher in event source creation form

2083999 - "--prune-over-size-limit" is not working as expected

2084079 - prometheus route is not updated to "path: /api" after upgrade from 4.10 to 4.11

2084081 - nmstate-operator installed cluster on POWER shows issues while adding new dhcp interface

2084124 - The Update cluster modal includes a broken link

2084215 - Resource configmap "openshift-machine-api/kube-rbac-proxy" is defined by 2 manifests

2084249 - panic in ovn pod from an e2e-aws-single-node-serial nightly run

2084280 - GCP API Checks Fail if non-required APIs are not enabled

2084288 - "alert/Watchdog must have no gaps or changes" failing after bump

2084292 - Access to dashboard resources is needed in dynamic plugin SDK

2084331 - Resource with multiple capabilities included unless all capabilities are disabled

2084433 - Podsecurity violation error getting logged for ingresscontroller during deployment.

2084438 - Change Ping source spec.jsonData (deprecated) field to spec.data

2084441 - [IPI-Azure]fail to check the vm capabilities in install cluster

2084459 - Topology list view crashes when switching from chart view after moving sink from knative service to uri

2084463 - 5 control plane replica tests fail on ephemeral volumes

2084539 - update azure arm templates to support customer provided vnet

2084545 - [rebase v1.24] cluster-api-operator causes all techpreview tests to fail

2084580 - [4.10] No cluster name sanity validation - cluster name with a dot (".") character

2084615 - Add to navigation option on search page is not properly aligned

2084635 - PipelineRun creation from the GUI for a Pipeline with 2 workspaces hardcode the PVC storageclass

2084732 - A special resource that was created in OCP 4.9 can't be deleted after an upgrade to 4.10

2085187 - installer-artifacts fails to build with go 1.18

2085326 - kube-state-metrics is tripping APIRemovedInNextEUSReleaseInUse

2085336 - [IPI-Azure] Fail to create the worker node which HyperVGenerations is V2 or V1 and vmNetworkingType is Accelerated

2085380 - [IPI-Azure] Incorrect error prompt validate VM image and instance HyperV gen match when install cluster

2085407 - There is no Edit link/icon for labels on Node details page

2085721 - customization controller image name is wrong

2086056 - Missing doc for OVS HW offload

2086086 - Update Cluster Sample Operator dependencies and libraries for OCP 4.11

2086092 - update kube to v.24

2086143 - CNO uses too much memory

2086198 - Cluster CAPI Operator creates unnecessary defaulting webhooks

2086301 - kubernetes nmstate pods are not running after creating instance

2086408 - Podsecurity violation error getting logged for externalDNS operand pods during deployment

2086417 - Pipeline created from add flow has GIT Revision as required field

2086437 - EgressQoS CRD not available

2086450 - aws-load-balancer-controller-cluster pod logged Podsecurity violation error during deployment

2086459 - oc adm inspect fails when one of resources not exist

2086461 - CNO probes MTU unnecessarily in Hypershift, making cluster startup take too long

2086465 - External identity providers should log login attempts in the audit trail

2086469 - No data about title 'API Request Duration by Verb - 99th Percentile' display on the dashboard 'API Performance'

2086483 - baremetal-runtimecfg k8s dependencies should be on a par with 1.24 rebase

2086505 - Update oauth-server images to be consistent with ART

2086519 - workloads must comply to restricted security policy

2086521 - Icons of Knative actions are not clearly visible on the context menu in the dark mode

2086542 - Cannot create service binding through drag and drop

2086544 - ovn-k master daemonset on hypershift shouldn't log token

2086546 - Service binding connector is not visible in the dark mode

2086718 - PowerVS destroy code does not work

2086728 - [hypershift] Move drain to controller

2086731 - Vertical pod autoscaler operator needs a 4.11 bump

2086734 - Update csi driver images to be consistent with ART

2086737 - cloud-provider-openstack rebase to kubernetes v1.24

2086754 - Cluster resource override operator needs a 4.11 bump

2086759 - [IPI] OCP-4.11 baremetal - boot partition is not mounted on temporary directory

2086791 - Azure: Validate UltraSSD instances in multi-zone regions

2086851 - pods with multiple external gateways may only be have ECMP routes for one gateway

2086936 - vsphere ipi should use cores by default instead of sockets

2086958 - flaky e2e in kube-controller-manager-operator TestPodDisruptionBudgetAtLimitAlert

2086959 - flaky e2e in kube-controller-manager-operator TestLogLevel

2086962 - oc-mirror publishes metadata with --dry-run when publishing to mirror

2086964 - oc-mirror fails on differential run when mirroring a package with multiple channels specified

2086972 - oc-mirror does not error invalid metadata is passed to the describe command

2086974 - oc-mirror does not work with headsonly for operator 4.8

2087024 - The oc-mirror result mapping.txt is not correct , can?t be used by `oc image mirror` command

2087026 - DTK's imagestream is missing from OCP 4.11 payload

2087037 - Cluster Autoscaler should use K8s 1.24 dependencies

2087039 - Machine API components should use K8s 1.24 dependencies

2087042 - Cloud providers components should use K8s 1.24 dependencies

2087084 - remove unintentional nic support

2087103 - "Updating to release image" from 'oc' should point out that the cluster-version operator hasn't accepted the update

2087114 - Add simple-procfs-kmod in modprobe example in README.md

2087213 - Spoke BMH stuck "inspecting" when deployed via ZTP in 4.11 OCP hub

2087271 - oc-mirror does not check for existing workspace when performing mirror2mirror synchronization

2087556 - Failed to render DPU ovnk manifests

2087579 - ` --keep-manifest-list=true` does not work for `oc adm release new` , only pick up the linux/amd64 manifest from the manifest list

2087680 - [Descheduler] Sync with sigs.k8s.io/descheduler

2087684 - KCMO should not be able to apply LowUpdateSlowReaction from Default WorkerLatencyProfile

2087685 - KASO should not be able to apply LowUpdateSlowReaction from Default WorkerLatencyProfile

2087687 - MCO does not generate event when user applies Default -> LowUpdateSlowReaction WorkerLatencyProfile

2087764 - Rewrite the registry backend will hit error

2087771 - [tracker] NetworkManager 1.36.0 loses DHCP lease and doesn't try again

2087772 - Bindable badge causes some layout issues with the side panel of bindable operator backed services

2087942 - CNO references images that are divergent from ART

2087944 - KafkaSink Node visualized incorrectly

2087983 - remove etcd_perf before restore

2087993 - PreflightValidation many "msg":"TODO: preflight checks" in the operator log

2088130 - oc-mirror init does not allow for automated testing

2088161 - Match dockerfile image name with the name used in the release repo

2088248 - Create HANA VM does not use values from customized HANA templates

2088304 - ose-console: enable source containers for open source requirements

2088428 - clusteroperator/baremetal stays in progressing: Applying metal3 resources state on a fresh install

2088431 - AvoidBuggyIPs field of addresspool should be removed

2088483 - oc adm catalog mirror returns 0 even if there are errors

2088489 - Topology list does not allow selecting an application group anymore (again)

2088533 - CRDs for openshift.io should have subresource.status failes on sharedconfigmaps.sharedresource and sharedsecrets.sharedresource

2088535 - MetalLB: Enable debug log level for downstream CI

2088541 - Default CatalogSources in openshift-marketplace namespace keeps throwing pod security admission warnings `would violate PodSecurity "restricted:v1.24"`

2088561 - BMH unable to start inspection: File name too long

2088634 - oc-mirror does not fail when catalog is invalid

2088660 - Nutanix IPI installation inside container failed

2088663 - Better to change the default value of --max-per-registry to 6

2089163 - NMState CRD out of sync with code

2089191 - should remove grafana from cluster-monitoring-config configmap in hypershift cluster

2089224 - openshift-monitoring/cluster-monitoring-config configmap always revert to default setting

2089254 - CAPI operator: Rotate token secret if its older than 30 minutes

2089276 - origin tests for egressIP and azure fail

2089295 - [Nutanix]machine stuck in Deleting phase when delete a machineset whose replicas>=2 and machine is Provisioning phase on Nutanix

2089309 - [OCP 4.11] Ironic inspector image fails to clean disks that are part of a multipath setup if they are passive paths

2089334 - All cloud providers should use service account credentials

2089344 - Failed to deploy simple-kmod

2089350 - Rebase sdn to 1.24

2089387 - LSO not taking mpath. ignoring device

2089392 - 120 node baremetal upgrade from 4.9.29 --> 4.10.13 crashloops on machine-approver

2089396 - oc-mirror does not show pruned image plan

2089405 - New topology package shows gray build icons instead of green/red icons for builds and pipelines

2089419 - do not block 4.10 to 4.11 upgrades if an existing CSI driver is found. Instead, warn about presence of third party CSI driver

2089488 - Special resources are missing the managementState field

2089563 - Update Power VS MAPI to use api's from openshift/api repo

2089574 - UWM prometheus-operator pod can't start up due to no master node in hypershift cluster

2089675 - Could not move Serverless Service without Revision (or while starting?)

2089681 - [Hypershift] EgressIP doesn't work in hypershift guest cluster

2089682 - Installer expects all nutanix subnets to have a cluster reference which is not the case for e.g. overlay networks

2089687 - alert message of MCDDrainError needs to be updated for new drain controller

2089696 - CR reconciliation is stuck in daemonset lifecycle

2089716 - [4.11][reliability]one worker node became NotReady on which ovnkube-node pod's memory increased sharply

2089719 - acm-simple-kmod fails to build

2089720 - [Hypershift] ICSP doesn't work for the guest cluster

2089743 - acm-ice fails to deploy: helm chart does not appear to be a gzipped archive

2089773 - Pipeline status filter and status colors doesn't work correctly with non-english languages

2089775 - keepalived can keep ingress VIP on wrong node under certain circumstances

2089805 - Config duration metrics aren't exposed

2089827 - MetalLB CI - backward compatible tests are failing due to the order of delete

2089909 - PTP e2e testing not working on SNO cluster

2089918 - oc-mirror skip-missing still returns 404 errors when images do not exist

2089930 - Bump OVN to 22.06

2089933 - Pods do not post readiness status on termination

2089968 - Multus CNI daemonset should use hostPath mounts with type: directory

2089973 - bump libs to k8s 1.24 for OCP 4.11

2089996 - Unnecessary yarn install runs in e2e tests

2090017 - Enable source containers to meet open source requirements

2090049 - destroying GCP cluster which has a compute node without infra id in name would fail to delete 2 k8s firewall-rules and VPC network

2090092 - Will hit error if specify the channel not the latest

2090151 - [RHEL scale up] increase the wait time so that the node has enough time to get ready

2090178 - VM SSH command generated by UI points at api VIP

2090182 - [Nutanix]Create a machineset with invalid image, machine stuck in "Provisioning" phase

2090236 - Only reconcile annotations and status for clusters

2090266 - oc adm release extract is failing on mutli arch image

2090268 - [AWS EFS] Operator not getting installed successfully on Hypershift Guest cluster

2090336 - Multus logging should be disabled prior to release

2090343 - Multus debug logging should be enabled temporarily for debugging podsandbox creation failures.

2090358 - Initiating drain log message is displayed before the drain actually starts

2090359 - Nutanix mapi-controller: misleading error message when the failure is caused by wrong credentials

2090405 - [tracker] weird port mapping with asymmetric traffic [rhel-8.6.0.z]

2090430 - gofmt code

2090436 - It takes 30min-60min to update the machine count in custom MachineConfigPools (MCPs) when a node is removed from the pool

2090437 - Bump CNO to k8s 1.24

2090465 - golang version mismatch

2090487 - Change default SNO Networking Type and disallow OpenShiftSDN a supported networking Type

2090537 - failure in ovndb migration when db is not ready in HA mode

2090549 - dpu-network-operator shall be able to run on amd64 arch platform

2090621 - Metal3 plugin does not work properly with updated NodeMaintenance CRD

2090627 - Git commit and branch are empty in MetalLB log

2090692 - Bump to latest 1.24 k8s release

2090730 - must-gather should include multus logs.

2090731 - nmstate deploys two instances of webhook on a single-node cluster

2090751 - oc image mirror skip-missing flag does not skip images

2090755 - MetalLB: BGPAdvertisement validation allows duplicate entries for ip pool selector, ip address pools, node selector and bgp peers

2090774 - Add Readme to plugin directory

2090794 - MachineConfigPool cannot apply a configuration after fixing the pods that caused a drain alert

2090809 - gm.ClockClass invalid syntax parse error in linux ptp daemon logs

2090816 - OCP 4.8 Baremetal IPI installation failure: "Bootstrap failed to complete: timed out waiting for the condition"

2090819 - oc-mirror does not catch invalid registry input when a namespace is specified

2090827 - Rebase CoreDNS to 1.9.2 and k8s 1.24

2090829 - Bump OpenShift router to k8s 1.24

2090838 - Flaky test: ignore flapping host interface 'tunbr'

2090843 - addLogicalPort() performance/scale optimizations

2090895 - Dynamic plugin nav extension "startsWith" property does not work

2090929 - [etcd] cluster-backup.sh script has a conflict to use the '/etc/kubernetes/static-pod-certs' folder if a custom API certificate is defined

2090993 - [AI Day2] Worker node overview page crashes in Openshift console with TypeError

2091029 - Cancel rollout action only appears when rollout is completed

2091030 - Some BM may fail booting with default bootMode strategy

2091033 - [Descheduler]: provide ability to override included/excluded namespaces

2091087 - ODC Helm backend Owners file needs updates

2091106 - Dependabot alert: Unhandled exception in gopkg.in/yaml.v3

2091142 - Dependabot alert: Unhandled exception in gopkg.in/yaml.v3

2091167 - IPsec runtime enabling not work in hypershift

2091218 - Update Dev Console Helm backend to use helm 3.9.0

2091433 - Update AWS instance types

2091542 - Error Loading/404 not found page shown after clicking "Current namespace only"

2091547 - Internet connection test with proxy permanently fails

2091567 - oVirt CSI driver should use latest go-ovirt-client

2091595 - Alertmanager configuration can't use OpsGenie's entity field when AlertmanagerConfig is enabled

2091599 - PTP Dual Nic | Extend Events 4.11 - Up/Down master interface affects all the other interface in the same NIC accoording the events and metric

2091603 - WebSocket connection restarts when switching tabs in WebTerminal

2091613 - simple-kmod fails to build due to missing KVC

2091634 - OVS 2.15 stops handling traffic once ovs-dpctl(2.17.2) is used against it

2091730 - MCO e2e tests are failing with "No token found in openshift-monitoring secrets"

2091746 - "Oh no! Something went wrong" shown after user creates MCP without 'spec'

2091770 - CVO gets stuck downloading an upgrade, with the version pod complaining about invalid options

2091854 - clusteroperator status filter doesn't match all values in Status column

2091901 - Log stream paused right after updating log lines in Web Console in OCP4.10

2091902 - unable to retrieve the complete list of server APIs: metrics.k8s.io/v1beta1: the server has received too many requests and has asked us to try again later

2091990 - wrong external-ids for ovn-controller lflow-cache-limit-kb

2092003 - PR 3162 | BZ 2084450 - invalid URL schema for AWS causes tests to perma fail and break the cloud-network-config-controller

2092041 - Bump cluster-dns-operator to k8s 1.24

2092042 - Bump cluster-ingress-operator to k8s 1.24

2092047 - Kube 1.24 rebase for cloud-network-config-controller

2092137 - Search doesn't show all entries when name filter is cleared

2092296 - Change Default MachineCIDR of Power VS Platform from 10.x to 192.168.0.0/16

2092390 - [RDR] [UI] Multiple instances of Object Bucket, Object Bucket Claims and 'Overview' tab is present under Storage section on the Hub cluster when navigated back from the Managed cluster using the Hybrid console dropdown

2092395 - etcdHighNumberOfFailedGRPCRequests alerts with wrong results

2092408 - Wrong icon is used in the virtualization overview permissions card

2092414 - In virtualization overview "running vm per templates" template list can be improved

2092442 - Minimum time between drain retries is not the expected one

2092464 - marketplace catalog defaults to v4.10

2092473 - libovsdb performance backports

2092495 - ovn: use up to 4 northd threads in non-SNO clusters

2092502 - [azure-file-csi-driver] Stop shipping a NFS StorageClass

2092509 - Invalid memory address error if non existing caBundle is configured in DNS-over-TLS using ForwardPlugins

2092572 - acm-simple-kmod chart should create the namespace on the spoke cluster

2092579 - Don't retry pod deletion if objects are not existing

2092650 - [BM IPI with Provisioning Network] Worker nodes are not provisioned: ironic-agent is stuck before writing into disks

2092703 - Incorrect mount propagation information in container status

2092815 - can't delete the unwanted image from registry by oc-mirror

2092851 - [Descheduler]: allow to customize the LowNodeUtilization strategy thresholds

2092867 - make repository name unique in acm-ice/acm-simple-kmod examples

2092880 - etcdHighNumberOfLeaderChanges returns incorrect number of leadership changes

2092887 - oc-mirror list releases command uses filter-options flag instead of filter-by-os

2092889 - Incorrect updating of EgressACLs using direction "from-lport"

2092918 - CVE-2022-30321 go-getter: unsafe download (issue 1 of 3)

2092923 - CVE-2022-30322 go-getter: unsafe download (issue 2 of 3)

2092925 - CVE-2022-30323 go-getter: unsafe download (issue 3 of 3)

2092928 - CVE-2022-26945 go-getter: command injection vulnerability

2092937 - WebScale: OVN-k8s forwarding to external-gw over the secondary interfaces failing

2092966 - [OCP 4.11] [azure] /etc/udev/rules.d/66-azure-storage.rules missing from initramfs

2093044 - Azure machine-api-provider-azure Availability Set Name Length Limit

2093047 - Dynamic Plugins: Generated API markdown duplicates `checkAccess` and `useAccessReview` doc

2093126 - [4.11] Bootimage bump tracker

2093236 - DNS operator stopped reconciling after 4.10 to 4.11 upgrade | 4.11 nightly to 4.11 nightly upgrade

2093288 - Default catalogs fails liveness/readiness probes

2093357 - Upgrading sno spoke with acm-ice, causes the sno to get unreachable

2093368 - Installer orphans FIPs created for LoadBalancer Services on `cluster destroy`

2093396 - Remove node-tainting for too-small MTU

2093445 - ManagementState reconciliation breaks SR

2093454 - Router proxy protocol doesn't work with dual-stack (IPv4 and IPv6) clusters

2093462 - Ingress Operator isn't reconciling the ingress cluster operator object

2093586 - Topology: Ctrl+space opens the quick search modal, but doesn't close it again

2093593 - Import from Devfile shows configuration options that shoudn't be there

2093597 - Import: Advanced option sentence is splited into two parts and headlines has no padding

2093600 - Project access tab should apply new permissions before it delete old ones

2093601 - Project access page doesn't allow the user to update the settings twice (without manually reload the content)

2093783 - Should bump cluster-kube-descheduler-operator to kubernetes version V1.24

2093797 - 'oc registry login' with serviceaccount function need update

2093819 - An etcd member for a new machine was never added to the cluster

2093930 - Gather console helm install totals metric

2093957 - Oc-mirror write dup metadata to registry backend

2093986 - Podsecurity violation error getting logged for pod-identity-webhook

2093992 - Cluster version operator acknowledges upgrade failing on periodic-ci-openshift-release-master-nightly-4.11-e2e-metal-ipi-upgrade-ovn-ipv6

2094023 - Add Git Flow - Template Labels for Deployment show as DeploymentConfig

2094024 - bump oauth-apiserver deps to include 1.23.1 k8s that fixes etcd blips

2094039 - egressIP panics with nil pointer dereference

2094055 - Bump coreos-installer for s390x Secure Execution

2094071 - No runbook created for SouthboundStale alert

2094088 - Columns in NBDB may never be updated by OVNK

2094104 - Demo dynamic plugin image tests should be skipped when testing console-operator

2094152 - Alerts in the virtualization overview status card aren't filtered

2094196 - Add default and validating webhooks for Power VS MAPI

2094227 - Topology: Create Service Binding should not be the last option (even under delete)

2094239 - custom pool Nodes with 0 nodes are always populated in progress bar

2094303 - If og is configured with sa, operator installation will be failed.

2094335 - [Nutanix] - debug logs are enabled by default in machine-controller

2094342 - apirequests limits of Cluster CAPI Operator are too low for Azure platform

2094438 - Make AWS URL parsing more lenient for GetNodeEgressIPConfiguration

2094525 - Allow automatic upgrades for efs operator

2094532 - ovn-windows CI jobs are broken

2094675 - PTP Dual Nic | Extend Events 4.11 - when kill the phc2sys We have notification for the ptp4l physical master moved to free run

2094694 - [Nutanix] No cluster name sanity validation - cluster name with a dot (".") character

2094704 - Verbose log activated on kube-rbac-proxy in deployment prometheus-k8s

2094801 - Kuryr controller keep restarting when handling IPs with leading zeros

2094806 - Machine API oVrit component should use K8s 1.24 dependencies

2094816 - Kuryr controller restarts when over quota

2094833 - Repository overview page does not show default PipelineRun template for developer user

2094857 - CloudShellTerminal loops indefinitely if DevWorkspace CR goes into failed state

2094864 - Rebase CAPG to latest changes

2094866 - oc-mirror does not always delete all manifests associated with an image during pruning

2094896 - Run 'openshift-install agent create image' has segfault exception if cluster-manifests directory missing

2094902 - Fix installer cross-compiling

2094932 - MGMT-10403 Ingress should enable single-node cluster expansion on upgraded clusters

2095049 - managed-csi StorageClass does not create PVs

2095071 - Backend tests fails after devfile registry update

2095083 - Observe > Dashboards: Graphs may change a lot on automatic refresh

2095110 - [ovn] northd container termination script must use bash

2095113 - [ovnkube] bump to openvswitch2.17-2.17.0-22.el8fdp

2095226 - Added changes to verify cloud connection and dhcpservices quota of a powervs instance

2095229 - ingress-operator pod in CrashLoopBackOff in 4.11 after upgrade starting in 4.6 due to go panic

2095231 - Kafka Sink sidebar in topology is empty

2095247 - Event sink form doesn't show channel as sink until app is refreshed

2095248 - [vSphere-CSI-Driver] does not report volume count limits correctly caused pod with multi volumes maybe schedule to not satisfied volume count node

2095256 - Samples Owner needs to be Updated

2095264 - ovs-configuration.service fails with Error: Failed to modify connection 'ovs-if-br-ex': failed to update connection: error writing to file '/etc/NetworkManager/systemConnectionsMerged/ovs-if-br-ex.nmconnection'

2095362 - oVirt CSI driver operator should use latest go-ovirt-client

2095574 - e2e-agnostic CI job fails

2095687 - Debug Container shown for build logs and on click ui breaks

2095703 - machinedeletionhooks doesn't work in vsphere cluster and BM cluster

2095716 - New PSA component for Pod Security Standards enforcement is refusing openshift-operators ns

2095756 - CNO panics with concurrent map read/write

2095772 - Memory requests for ovnkube-master containers are over-sized

2095917 - Nutanix set osDisk with diskSizeGB rather than diskSizeMiB

2095941 - DNS Traffic not kept local to zone or node when Calico SDN utilized

2096053 - Builder Image icons in Git Import flow are hard to see in Dark mode

2096226 - crio fails to bind to tentative IP, causing service failure since RHOCS was rebased on RHEL 8.6

2096315 - NodeClockNotSynchronising alert's severity should be critical

2096350 - Web console doesn't display webhook errors for upgrades

2096352 - Collect whole journal in gather

2096380 - acm-simple-kmod references deprecated KVC example

2096392 - Topology node icons are not properly visible in Dark mode

2096394 - Add page Card items background color does not match with column background color in Dark mode

2096413 - br-ex not created due to default bond interface having a different mac address than expected

2096496 - FIPS issue on OCP SNO with RT Kernel via performance profile

2096605 - [vsphere] no validation checking for diskType

2096691 - [Alibaba 4.11] Specifying ResourceGroup id in install-config.yaml, New pv are still getting created to default ResourceGroups

2096855 - `oc adm release new` failed with error when use an existing multi-arch release image as input

2096905 - Openshift installer should not use the prism client embedded in nutanix terraform provider

2096908 - Dark theme issue in pipeline builder, Helm rollback form, and Git import

2097000 - KafkaConnections disappear from Topology after creating KafkaSink in Topology

2097043 - No clean way to specify operand issues to KEDA OLM operator

2097047 - MetalLB: matchExpressions used in CR like L2Advertisement, BGPAdvertisement, BGPPeers allow duplicate entries

2097067 - ClusterVersion history pruner does not always retain initial completed update entry

2097153 - poor performance on API call to vCenter ListTags with thousands of tags

2097186 - PSa autolabeling in 4.11 env upgraded from 4.10 does not work due to missing RBAC objects

2097239 - Change Lower CPU limits for Power VS cloud

2097246 - Kuryr: verify and unit jobs failing due to upstream OpenStack dropping py36 support

2097260 - openshift-install create manifests failed for Power VS platform

2097276 - MetalLB CI deploys the operator via manifests and not using the csv

2097282 - chore: update external-provisioner to the latest upstream release

2097283 - chore: update external-snapshotter to the latest upstream release

2097284 - chore: update external-attacher to the latest upstream release

2097286 - chore: update node-driver-registrar to the latest upstream release

2097334 - oc plugin help shows 'kubectl'

2097346 - Monitoring must-gather doesn't seem to be working anymore in 4.11

2097400 - Shared Resource CSI Driver needs additional permissions for validation webhook

2097454 - Placeholder bug for OCP 4.11.0 metadata release

2097503 - chore: rebase against latest external-resizer

2097555 - IngressControllersNotUpgradeable: load balancer service has been modified; changes must be reverted before upgrading

2097607 - Add Power VS support to Webhooks tests in actuator e2e test

2097685 - Ironic-agent can't restart because of existing container

2097716 - settings under httpConfig is dropped with AlertmanagerConfig v1beta1

2097810 - Required Network tools missing for Testing e2e PTP

2097832 - clean up unused IPv6DualStackNoUpgrade feature gate

2097940 - openshift-install destroy cluster traps if vpcRegion not specified

2097954 - 4.11 installation failed at monitoring and network clusteroperators with error "conmon: option parsing failed: Unknown option --log-global-size-max" making all jobs failing

2098172 - oc-mirror does not validatethe registry in the storage config

2098175 - invalid license in python-dataclasses-0.8-2.el8 spec

2098177 - python-pint-0.10.1-2.el8 has unused Patch0 in spec file

2098242 - typo in SRO specialresourcemodule

2098243 - Add error check to Platform create for Power VS

2098392 - [OCP 4.11] Ironic cannot match "wwn" rootDeviceHint for a multipath device

2098508 - Control-plane-machine-set-operator report panic

2098610 - No need to check the push permission with ?manifests-only option

2099293 - oVirt cluster API provider should use latest go-ovirt-client

2099330 - Edit application grouping is shown to user with view only access in a cluster

2099340 - CAPI e2e tests for AWS are missing

2099357 - ovn-kubernetes needs explicit RBAC coordination leases for 1.24 bump

2099358 - Dark mode+Topology update: Unexpected selected+hover border and background colors for app groups

2099528 - Layout issue: No spacing in delete modals

2099561 - Prometheus returns HTTP 500 error on /favicon.ico

2099582 - Format and update Repository overview content

2099611 - Failures on etcd-operator watch channels

2099637 - Should print error when use --keep-manifest-list=false for manifestlist image

2099654 - Topology performance: Endless rerender loop when showing a Http EventSink (KameletBinding)

2099668 - KubeControllerManager should degrade when GC stops working

2099695 - Update CAPG after rebase

2099751 - specialresourcemodule stacktrace while looping over build status

2099755 - EgressIP node's mgmtIP reachability configuration option

2099763 - Update icons for event sources and sinks in topology, Add page, and context menu

2099811 - UDP Packet loss in OpenShift using IPv6 [upcall]

2099821 - exporting a pointer for the loop variable

2099875 - The speaker won't start if there's another component on the host listening on 8080

2099899 - oc-mirror looks for layers in the wrong repository when searching for release images during publishing

2099928 - [FJ OCP4.11 Bug]: Add unit tests to image_customization_test file

2099968 - [Azure-File-CSI] failed to provisioning volume in ARO cluster

2100001 - Sync upstream v1.22.0 downstream

2100007 - Run bundle-upgrade failed from the traditional File-Based Catalog installed operator

2100033 - OCP 4.11 IPI - Some csr remain "Pending" post deployment

2100038 - failure to update special-resource-lifecycle table during update Event

2100079 - SDN needs explicit RBAC coordination leases for 1.24 bump

2100138 - release info --bugs has no differentiator between Jira and Bugzilla

2100155 - kube-apiserver-operator should raise an alert when there is a Pod Security admission violation

2100159 - Dark theme: Build icon for pending status is not inverted in topology sidebar

2100323 - Sqlit-based catsrc cannot be ready due to "Error: open ./db-xxxx: permission denied"

2100347 - KASO retains old config values when switching from Medium/Default to empty worker latency profile

2100356 - Remove Condition tab and create option from console as it is deprecated in OSP-1.8

2100439 - [gce-pd] GCE PD in-tree storage plugin tests not running

2100496 - [OCPonRHV]-oVirt API returns affinity groups without a description field

2100507 - Remove redundant log lines from obj_retry.go

2100536 - Update API to allow EgressIP node reachability check

2100601 - Update CNO to allow EgressIP node reachability check

2100643 - [Migration] [GCP]OVN can not rollback to SDN

2100644 - openshift-ansible FTBFS on RHEL8

2100669 - Telemetry should not log the full path if it contains a username

2100749 - [OCP 4.11] multipath support needs multipath modules

2100825 - Update machine-api-powervs go modules to latest version

2100841 - tiny openshift-install usability fix for setting KUBECONFIG

2101460 - An etcd member for a new machine was never added to the cluster

2101498 - Revert Bug 2082599: add upper bound to number of failed attempts

2102086 - The base image is still 4.10 for operator-sdk 1.22

2102302 - Dummy bug for 4.10 backports

2102362 - Valid regions should be allowed in GCP install config

2102500 - Kubernetes NMState pods can not evict due to PDB on an SNO cluster

2102639 - Drain happens before other image-registry pod is ready to service requests, causing disruption

2102782 - topolvm-controller get into CrashLoopBackOff few minutes after install

2102834 - [cloud-credential-operator]container has runAsNonRoot and image will run as root

2102947 - [VPA] recommender is logging errors for pods with init containers

2103053 - [4.11] Backport Prow CI improvements from master

2103075 - Listing secrets in all namespaces with a specific labelSelector does not work properly

2103080 - br-ex not created due to default bond interface having a different mac address than expected

2103177 - disabling ipv6 router advertisements using "all" does not disable it on secondary interfaces

2103728 - Carry HAProxy patch 'BUG/MEDIUM: h2: match absolute-path not path-absolute for :path'

2103749 - MachineConfigPool is not getting updated

2104282 - heterogeneous arch: oc adm extract encodes arch specific release payload pullspec rather than the manifestlisted pullspec

2104432 - [dpu-network-operator] Updating images to be consistent with ART

2104552 - kube-controller-manager operator 4.11.0-rc.0 degraded on disabled monitoring stack

2104561 - 4.10 to 4.11 update: Degraded node: unexpected on-disk state: mode mismatch for file: "/etc/crio/crio.conf.d/01-ctrcfg-pidsLimit"; expected: -rw-r--r--/420/0644; received: ----------/0/0

2104589 - must-gather namespace should have ?privileged? warn and audit pod security labels besides enforce

2104701 - In CI 4.10 HAProxy must-gather takes longer than 10 minutes

2104717 - NetworkPolicies: ovnkube-master pods crashing due to panic: "invalid memory address or nil pointer dereference"

2104727 - Bootstrap node should honor http proxy

2104906 - Uninstall fails with Observed a panic: runtime.boundsError

2104951 - Web console doesn't display webhook errors for upgrades

2104991 - Completed pods may not be correctly cleaned up

2105101 - NodeIP is used instead of EgressIP if egressPod is recreated within 60 seconds

2105106 - co/node-tuning: Waiting for 15/72 Profiles to be applied

2105146 - Degraded=True noise with: UpgradeBackupControllerDegraded: unable to retrieve cluster version, no completed update was found in cluster version status history

2105167 - BuildConfig throws error when using a label with a / in it

2105334 - vmware-vsphere-csi-driver-controller can't use host port error on e2e-vsphere-serial

2105382 - Add a validation webhook for Nutanix machine provider spec in Machine API Operator

2105468 - The ccoctl does not seem to know how to leverage the VMs service account to talk to GCP APIs.

2105937 - telemeter golangci-lint outdated blocking ART PRs that update to Go1.18

2106051 - Unable to deploy acm-ice using latest SRO 4.11 build

2106058 - vSphere defaults to SecureBoot on; breaks installation of out-of-tree drivers [4.11.0]

2106062 - [4.11] Bootimage bump tracker

2106116 - IngressController spec.tuningOptions.healthCheckInterval validation allows invalid values such as "0abc"

2106163 - Samples ImageStreams vs. registry.redhat.io: unsupported: V2 schema 1 manifest digests are no longer supported for image pulls

2106313 - bond-cni: backport bond-cni GA items to 4.11

2106543 - Typo in must-gather release-4.10

2106594 - crud/other-routes.spec.ts Cypress test failing at a high rate in CI

2106723 - [4.11] Upgrade from 4.11.0-rc0 -> 4.11.0-rc.1 failed. rpm-ostree status shows No space left on device

2106855 - [4.11.z] externalTrafficPolicy=Local is not working in local gateway mode if ovnkube-node is restarted

2107493 - ReplicaSet prometheus-operator-admission-webhook has timed out progressing

2107501 - metallb greenwave tests failure

2107690 - Driver Container builds fail with "error determining starting point for build: no FROM statement found"

2108175 - etcd backup seems to not be triggered in 4.10.18-->4.10.20 upgrade

2108617 - [oc adm release] extraction of the installer against a manifestlisted payload referenced by tag leads to a bad release image reference

2108686 - rpm-ostreed: start limit hit easily

2110505 - [Upgrade]deployment openshift-machine-api/machine-api-operator has a replica failure FailedCreate

2110715 - openshift-controller-manager(-operator) namespace should clear run-level annotations

2111055 - dummy bug for 4.10.z bz2110938

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.