4.10.0-0.ci-2024-07-23-030300

Download the installer for your operating system or run

oc adm release extract --tools registry.ci.openshift.org/ocp/release:4.10.0-0.ci-2024-07-23-030300

Team Approvals:

Tests:

Blocking jobs
- aws-ovn-upgrade-4.10-micro Succeeded periodic-ci-openshift-release-master-ci-4.10-e2e-aws-ovn-upgrade
- aws-ovn-upgrade-4.10-minor Succeeded periodic-ci-openshift-release-master-ci-4.10-upgrade-from-stable-4.9-e2e-aws-ovn-upgrade
- aws-serial Succeeded periodic-ci-openshift-release-master-ci-4.10-e2e-aws-serial
- gcp-sdn-upgrade-4.10-micro Succeeded periodic-ci-openshift-release-master-ci-4.10-e2e-gcp-upgrade
Informing jobs
- azure-sdn-upgrade-4.10-minor Succeeded (3 retries) periodic-ci-openshift-release-master-ci-4.10-upgrade-from-stable-4.9-e2e-azure-upgrade
- credentials-request-freeze Succeeded periodic-ci-openshift-release-master-nightly-4.10-credentials-request-freeze
- gcp Succeeded periodic-ci-openshift-release-master-ci-4.10-e2e-gcp
- upgrade Failed periodic-ci-openshift-release-master-ci-4.10-e2e-gcp-upgrade
- upgrade-minor Succeeded periodic-ci-openshift-release-master-ci-4.10-upgrade-from-stable-4.9-e2e-aws-upgrade
- upgrade-minor-aws-ovn Failed periodic-ci-openshift-release-master-ci-4.10-upgrade-from-stable-4.9-e2e-aws-ovn-upgrade

Upgrades from:

4.10.0-0.ci-2024-06-18-021838 (changes) - S F S
4.9.59 (changes) - F S S F F F S

Upgrades to:

4.10.0-0.ci-2024-07-23-230545 (changes) - S S S
4.10.0-0.ci-2024-07-23-170545 (changes) - S S S

Loading changelog, this may take a while ...

Changes from 4.10.0-0.nightly-2023-11-05-194758

Created: 2024-07-23 03:05:28 +0000 UTC

Image Digest: sha256:0a45c80c2ecabf40a8c25e5b4aab409e579492d862fa86915dddad07709458b5

Components

Kubernetes 1.23.17
Red Hat Enterprise Linux CoreOS upgraded from 410.84.202311051728-0 to 410.84.202311180031-0 (diff)

New images

contour git 45e9b621 sha256:670ea96e56d324551a7bc17d10c7fc763933b58b43bd4221bec85706951ecadb
contour-operator git e07f7060 sha256:af9ba491671ebabb2565da6572e567837e5678b8d679e3c5796e4ad147360892
local-storage-static-provisioner git 6b1108c7 sha256:0d836714ec48893653daf569ad20f72e014d4da3d1cddabf161ce85e7d8d9d80
ovirt-installer git 62137b29 sha256:6243856743603fadf7957f3c9d54eef94e9aeacd4aebc026b285262da94946d0

Rebuilt images without code change

alibaba-cloud-csi-driver git 5c30ca11 sha256:f699c0de59ec59db0ac204baf86dc02380b2b1470087b1d818f34bdfead13c61
alibaba-disk-csi-driver-operator git f0d69663 sha256:f228c5cb827e8dd0de423347d08334e50f74dc3234050b73e91aff57b8eb61e2
alibaba-machine-controllers git 9617f1f0 sha256:6953ac440b49739fd03d1c46798a8f583558892688e9a094c0cdf7d6f59aa571
aws-ebs-csi-driver git 2bad4b40 sha256:6b280dd4bbc037aacf751270d34e2e4c613026ec80877f6b5bce0043dc1b6ffa
aws-ebs-csi-driver-operator git c2e6dc19 sha256:68c78d033b4a19f0359b0e2ea3e35008d724a517ef6edaf2fe18f7e9e6967e12
azure-cloud-controller-manager git ae571af8 sha256:9fb034315f921e0974bb6d0923fe7e2fcf720716cdb53d62bb7822d74396c232
azure-cloud-node-manager git ae571af8 sha256:19ed082fa7053fc5eef5e9f967634b16326d6241dfaed332336e1ba9f194f04b
azure-disk-csi-driver git c7c7188d sha256:dd5098b7b7863cb9de86f5aae024dbabdfb51ae686e829f2d02d25c773ba77bc
azure-disk-csi-driver-operator git 35aa99d7 sha256:8fcb6ac8900a3a31a036667415b463c78ffc82720fcab6d7451195fca5ae3f43
azure-file-csi-driver git 87b4a718 sha256:2205156aec439048c57ef93dc37ca0db44ca8a070a54fc9363f0ab061fb556dc
azure-file-csi-driver-operator git 3807eb37 sha256:b5026eaad14477303b95f9479eda58534c94909f43dd35d4c3c1dee9cbb3c72a
azure-machine-controllers git 04ed0af9 sha256:991ab9e3dfc15164a6e503388628ccfe7c4c057ff6c86815fd56967dbb9d8ded
baremetal-machine-controllers git adff401d sha256:f914c0a5ed3f120fafccb13e88bd2bfc9245cc5462a7f1b033c5d3c842f2d228
baremetal-operator git 41872192 sha256:278302ba9cc51caa499c9c6d71957c1c05e8867ac0f3240fbd912a0b50054d6b
cli git 89f320d2 sha256:3835c070d16413a6abc8867d2cb2b54ce19a080642c2872c53a57dfad3066aa3
cli-artifacts git 89f320d2 sha256:cadcdfdf4091b1a0679dcc55cc20724cc3a7a0c2eeca394ea317ed7bb3be4586
cloud-credential-operator git cb5054fc sha256:2fe64eaa6d399f0f3756a1cbdd214c825a68752263082747bbca464b03484856
cloud-network-config-controller git e2f6f5e0 sha256:bd7afade7bb0d8fcbd505670e837a8c1306b72dca37424fb9acf6aa6f2b0f8ae
cluster-baremetal-operator git 0e3d8397 sha256:c1a8b24a4567e9a2a419416a6716e06c0477bf91b17ab5ac95566d5fa0fb269b
cluster-bootstrap git 195cde60 sha256:63bfb9e0161f4a5730875c1e40eea3b5bcadfb4d841258544ddf877578e5187d
cluster-cloud-controller-manager-operator git 237ae996 sha256:04d4992e735b7597af237aff7abd0842690fb66a7f2fdaaef066e38f860c68bd
cluster-csi-snapshot-controller-operator git ace18623 sha256:37d0d26809ce25c7ba1cb818205def56eff288912ee3b93f6ba950caf26aad46
cluster-etcd-operator git e6fbce54 sha256:8a092e88288c47138366f9c606b6f06e6cbe9d752cbfa82d052b9f4cbafdaef0
cluster-image-registry-operator git 80540e65 sha256:e10cffb327277f8a5dd81be09e70a4a051ce02d2464fe3ccc963dde18d440860
cluster-kube-apiserver-operator git 9d85e4af sha256:f60b788168c5d0d2678a8d83a848ed753e284c6b5d1a52c29e4ee3d8abf36b81
cluster-kube-controller-manager-operator git 252604c2 sha256:d4579a39e57e7ea2b278a7ae609542e7af095b535e2497cc978621143adeac74
cluster-kube-scheduler-operator git 0ed42ed8 sha256:3058751218e8f1a6de46ad7fac73030dbfc25684aa33320d540388f34019c8e7
cluster-kube-storage-version-migrator-operator git 7e1f5684 sha256:c5d1adb75211c154e2068fffd79b80e65cb0499b9e01d076b0881fdc14145e74
cluster-monitoring-operator git c413a79d sha256:0c331d05211a5b05057aef840f23e7187f32429c50288b815df5d6d90514bc33
cluster-network-operator git c7855f10 sha256:63d116043b151ea69f46028913cfa8e4fd216394f235385f7d2094594198be69
cluster-node-tuning-operator git b1c5690f sha256:a46e73a9d6e06a067d466c1a255bec4292c66b4fb7ef2b96fed282df394a17ae
cluster-openshift-apiserver-operator git 91038370 sha256:dc16d8d94bcf54a6af8124aa1530cfcba0fdb4ae3287aeda5cdd91639a144877
cluster-openshift-controller-manager-operator git b8b65d15 sha256:b67835b72b81e1fa35b52b879d374f5c010076d7ba0f144dbad9807d0872e027
cluster-policy-controller git 85e14c7c sha256:b394f56c8ab982e38e514544879b5a8949da7a681bb9a80cd1a07d17f84a66e0
cluster-samples-operator git b27c4ce6 sha256:1beaebd4e21a2bd8759c7657ca32bfe8e60478efce653b2bd672ff068772ca6f
cluster-storage-operator git a8a23fae sha256:16cf42635a1996d8c2781fc0ac43068baa4df6861ca48bdbf46caf71d8185c7d
cluster-update-keys git 684f6f42 sha256:e71928656a8d7d9daf5f90a5f2c59d02aea96b94423d693879d76e7cb5865878
cluster-version-operator git 33e65325 sha256:6bc7bdb0e4cc3af0623913b8924d52efe30dab4eb745a1db6a03c7b6f45756f6
configmap-reloader git 1e5a18eb sha256:488f826996f82c4ccd0d2a24ae0a0e5d95096a1d0bcdcb2bf4c8f5cda7bf7633
console-operator git 7ec7b2f3 sha256:7381e0070079baaa798d71284add67c6af2aec9eea9fda2b103e1aa29322d1c8
container-networking-plugins git 3123ef8b sha256:79766f1fbb8fbf028510891167a7e97827378fb72282701d37e3293a251f263c
coredns git 6c032514 sha256:6bb5b9897df0ddfccf4e8946552855b76b94c3dc12bc8771d6149a4cfbdd41ba
csi-driver-manila git cb2949ca sha256:fe32c25d3fbfd81f935dd0e793f35d579e255ec319eaa9a90f3753edd6480305
csi-driver-manila-operator git 3b06768c sha256:b18f6296177f0de60cef12617248f4c7a4071730e5128c50c2b73108667ed4e8
csi-driver-nfs git e6b56647 sha256:6fa52ad3c6fe6453138a96e4b8dc4ea957bf9c788cd6cf1574f3e2b66a23ca9d
csi-driver-shared-resource git d06ff18b sha256:e9a477f00e594bea024c84254cd9285e0dc60ea5841f037ee457ecfcd141cc10
csi-driver-shared-resource-operator git 662615b3 sha256:d86d1e7cb1fc167385f1f98cdb7eb1440ea1ee3a4280c049e73d2c342863edbb
csi-external-attacher git 27e71f2b sha256:d4e2220f04f6073844155a68cc53b93badfad700bf3da2da1a9240dff8ba4984
csi-external-provisioner git 31de1e19 sha256:66b5883eef0b1fc23fd1ea04dbb0b3eba696205e06f928e86d74261d3719ddbd
csi-external-resizer git e5934091 sha256:a9c4dfa1d34bd439bc0b385c8ed05b6fefa581f677ee0a0200e106c82cfc2dfb
csi-external-snapshotter git fe4a0a2f sha256:07ae4c4c2ff69a9cb31b2d23478fdd28c63c6263cb2ea2da78558aaa8b595ce4
csi-livenessprobe git 270d66c3 sha256:250756e23c87b03856ea1d505fe14efc001d519eb478520d35d755a06260f77e
csi-node-driver-registrar git bb0bd823 sha256:aefcd3288cd2e8fc2dd1cfb1d86d42f79d93cd84bd3827323d9c28914ea6370d
csi-snapshot-controller git fe4a0a2f sha256:63fef3bc883c1d1fe29ef0f001df86bdd6a2a24bf3b0262160b0ce8c96db3218
csi-snapshot-validation-webhook git fe4a0a2f sha256:4743f9162723183844b24840879403eb080412395193fb5a7d494df9c3e388aa
deployer git 89f320d2 sha256:232a2c26585b5fc93001ab98b53987511ae4e3dcceb0e010d3a8a8443cd36b9c
docker-builder git beffada4 sha256:b65ba8c0a30b91842987426dee9a116008a436660cbdfe605fba713ec8a47538
docker-registry git 1892f21a sha256:26b626f9b0de3609f607fd85f4fb6865880dc100273846fcc8947cbcc8a2840c
egress-router-cni git 5c56bc8a sha256:f4f7d1197b4a3098ee1b4c9ff1e1a4bf8d2de7cd5e6662b7b345dd6bd511b8d2
etcd git c3be56f7 sha256:aaf64581465fcab92dd584a85f6bd826af868e9f60a628be91dcf53688e1793c
gcp-cloud-controller-manager git 4dc728d0 sha256:c2ec041fa6d5e668bb42454fc92722d42758d6fc31fa19187e09e88f393d6311
gcp-machine-controllers git a8d5b944 sha256:a74f0a8c6f063e98fa5fe06e8b33c8cc74977f9301d879cbf7cf01fa7ccc0f9c
gcp-pd-csi-driver git 19e9a57f sha256:a1e8bac61ce06e283f96d04ccf74552b4c59055d855ad5788da6e619bc0cd533
gcp-pd-csi-driver-operator git 0e369dee sha256:48fa38dda81680690dcb1a7585427749a4bf9ff4a018d31e3f100d4c8a6303d4
grafana git ca476d4c sha256:0a6ce8a61d40c6f7e1aa8ae9556ef0e535f9d7368de1d378e5e9d6592cd8a3c4
haproxy-router git c1e7f405 sha256:090a208ee7e1ac8000c4601fd6a22cc4847263580020571d308eb6407eefded3
hypershift git 13fd957d sha256:b9aedfb760db9fcf722ea12b7eceb60cd4d13db2eb76e0d15fa6b10e98db7935
ibm-cloud-controller-manager git e3039120 sha256:67883dd1ac482c4764689ce3d2a52f5447f40bf3e14395fbef7bad30da32e86e
ibm-vpc-block-csi-driver git fc60caeb sha256:c0c0f36ad63ca56e7dac226069c89e66a82ae953087f08000acf5b7d1b4895f9
ibm-vpc-block-csi-driver-operator git 28bad53d sha256:981fe04106ace6d52ba4214e81fbda8abc416c00eaf3bbdb50cb752b450ae600
ibm-vpc-node-label-updater git 7074dfc3 sha256:9c12fe743bc56e0b13d48a00f179d98fcad4a843a1e494ae34c70f2f6e9acdf0
ibmcloud-machine-controllers git 7449a94f sha256:b3b18d503f847c0e8455e3614b7404065cd8621cb72fcfb74ab4b77044d60b95
insights-operator git 871cc605 sha256:465314feff83e140843811b7f6f75a9fcd357d24e71962c46b1c8b0d760e3c8d
ironic git 5c57b589 sha256:eaf9c0cdb0c7893cf228a42d8528c8ad4c692b971c9388d9f31d977a9f7cb559
ironic-agent git 28ee0ef7 sha256:3af70fb766ad1e0a209fb01ce5dc0cbeaffbf3fb7ee79fb5271d5139bb687d1b
ironic-hardware-inventory-recorder git 62469223 sha256:3dc41ae7e413bf69a75d98fc3bd09a4cab06d2cd4d85c16d4fe1cbefd07442f8
ironic-machine-os-downloader git 81fe2974 sha256:f3712bad98159582328ce2b06aa0c8abeb370592dcf89cefac198a1408fcdf92
ironic-static-ip-manager git 45a1c542 sha256:b872e4f38fce6a2ea88ef12c6777d87677cef8d6cfd88f2e50ee8ef531424fa6
jenkins git e654cfb2 sha256:d8ff3857fe90e39a975534ffda10e9c79cfc401d73b1a9382536307afc165e8f
jenkins-agent-base git e654cfb2 sha256:55521e6df67630387db85ff89571d06e87cafce9445076b543aeeda20e3b8a96
jenkins-agent-maven git e654cfb2 sha256:3478f8d65bdb708e9c3f59975b0a6db4ce72fdc8f0001f841a3a2ff87a1a3930
jenkins-agent-nodejs git e654cfb2 sha256:6e6ac9ddebbdb7ac6e2078a7863ec6b1e2f2ff4ddd50bf7f930be7d1675ecfa9
k8s-prometheus-adapter git 4052b317 sha256:e8754712a9ead193da726eeffa0a0d7a34a08d33157d3c506c8617ab766f5659
kube-proxy git cc28efbf sha256:aba6c339b8892d16de4acaf53fa41c509c22361ea1088dcd4a035a21e4d4c2ce
kube-rbac-proxy git 4f198b2b sha256:baedb268ac66456018fb30af395bb3d69af5fff3252ff5d549f0231b1ebb6901
kube-state-metrics git df55d3ea sha256:2986209e45fe4d685627ab6c0b66b3009e8515fe243f14e4df34ced89cc261a5
kube-storage-version-migrator git 901a6d22 sha256:f9277501e063d5d93216f5277bdf60f283e1c1cd6486cd7ad43c05c44cb514e1
libvirt-machine-controllers git 3b330b72 sha256:e5e0ae2b833f9f130e85d79f160d633197614b02be04ebe69eb43452a3268546
machine-api-operator git a7dfb7f5 sha256:d45321aaa49efe7795bb8e77216a5fd174aca9c233a00641015556f8a64a36b1
machine-config-operator git 46b93e64 sha256:1fcf3f2d6f2418cdb830092a08f7b29925b4553aeea07678701343f27866b461
machine-os-content sha256:ab62f123bc651a2361c0aeea3e8cec3f7d086af68344956c407002bd4dae33f4
multus-admission-controller git 8557de96 sha256:bc8a34d1e2ad8a489e9ed9834dc3a960bd931eb95eb02b373d4a432c6a47e02f
multus-cni git 85da1c65 sha256:d9638b41d110e6bbd927362482e66066a9e38bc26ceee4d2dda926a580ccf641
multus-networkpolicy git f545a32b sha256:adbca65c666b1bded1ab1403dfbf7c2f1a3b9c263794173f8c25cee95385837e
multus-whereabouts-ipam-cni git f4a72d4c sha256:98da726bd8ca919af618d36198877d05580a5a88e921824e76ab95c2c9f6abb4
must-gather git db7f815b sha256:06c37a6719159c29831f29eeb7b94033642c3006c5880a49bf750dcf798f3e1b
network-interface-bond-cni git 6edc4a73 sha256:7a84ac2dff01843430188d6009a3e4d9055c1026d609defebbc93b6c7beed61b
network-metrics-daemon git 234c1388 sha256:c3c1616114eea7bb8a8c8649bf3d483ca87a5eb37825fc4c4c2f3784690965d1
network-tools git bcfec9c5 sha256:9a5e9dbaf2eea3b677d4ad4597e7cf5c1127a1bf606b4b52959dfe4166ee9ac9
oauth-apiserver git cd4f5bb0 sha256:4d5f82dd3038e12af679431a051e468f2e6eecd2a398a22ded9bf4cceba470b3
oauth-proxy git 799d414b sha256:4590b27bb9bb73f489572be33a0ba04675ed17f04a4d921dcef1862934bb3d17
oauth-server git 245b95f8 sha256:f1a6638546c54db7e8236132e57134850279a945a6941e3652cced9c7bd5bb3b
oc-mirror git 71ca0a1a sha256:2223423ee1103a661f24eeef4f6d77dd2429e70658781fa2fa38c8a375179eaf
openshift-apiserver git 7f883e65 sha256:9de0df3dab85b89931c4910188eb48ee1d231c3f338ac69e45a18fcd9086c7a3
openshift-controller-manager git 2c2d50db sha256:bacd460ec040ff2266125de7956ccf7ad16f284a89575ab3cd2680590fde0609
openshift-state-metrics git e5c50aae sha256:0cb339cfcd2420c5c615d8e0d3184fa32b52d950e1c9551ba31e967ae62d5d62
openstack-cinder-csi-driver git cb2949ca sha256:0da3dfdaf4e731cc970cb210e1e4542007162f9c71b09ef8a9673dcdfd60576f
openstack-cinder-csi-driver-operator git 12a5dee1 sha256:86b8649f1f4468796582577943817b632f34f6c28a8895b64079fb7740f31cdf
openstack-cloud-controller-manager git cb2949ca sha256:ff9cedf48f54e3fe89531f18519535f029673c4973cd361af212da048b6f8c34
openstack-machine-api-provider git 2401f74d sha256:8448ec3293bbe0477395549dc1e3e49c037343e099e7992137aa5bbf7f95055b
openstack-machine-controllers git 963993b2 sha256:aae6066f9ba823a0fcbaa3ba1f69b7c455c724a1710bff611cddbb78696ef627
operator-lifecycle-manager git 3f54f734 sha256:7c073a1b1ce802ccb664a95759bd97afa93012ebc379071889c5def9211ce102
operator-registry git 3f54f734 sha256:ba65133289403f4fd418373ce6db03b70ccccef7119852f435b8d0fb876ae04d
ovirt-csi-driver git 9773aef8 sha256:e0649177c1e97f000083d3a587f90394b800c644650ac43f997a54856b102c6f
ovirt-csi-driver-operator git 573ac478 sha256:31cb812f29a52554505d1a7c6b46eb9cccee4ef376e76bf142ac53d1e7607be5
ovirt-machine-controllers git 35ce9aaf sha256:6ca9270bc7ae2f369fd64e2726cdad7f6c3d663abb5a9c60fb62de3036334dc1
ovn-kubernetes git 51baafc3 sha256:ee4afb2a3ad8572bf19c6b6b85abb304319fdc12232ec35cd7e9444bb78199eb
prom-label-proxy git 5f4c8992 sha256:fed3d5ddab0c2969bd1fd2912396a6d579a3fa3da0118f61bf22bbcbc3b75740
prometheus git b91d7c75 sha256:3609ad787a542819ea75b7988220414acde6ef3e49497c0fd75ada8eaf5f51b6
prometheus-alertmanager git 01339596 sha256:5a8cd5792a4e99fdb92bfc6714b6e4688ce55423400bec206fd0f9e606fc0fdf
prometheus-config-reloader git e916c2d8 sha256:daa4d8e16f1eb10a379a2ad5246e9bbdfe5455ce3c143fc64c672ca9efbfa88b
prometheus-node-exporter git 0eed3102 sha256:9e69356edf4d1e36bb53156906c69762e987a454aa4ec5c83f7ac55483bede9a
prometheus-operator git e916c2d8 sha256:a1c8259efb9ade81bc78ce83bfd523aaea1cdcd8ebffca6ac1a0432d0d70e73e
sdn git cc28efbf sha256:59620f760205f8e3868205a1961cced470602ccb05ed2f28e73f1f3ee2c2370c
service-ca-operator git 1611373e sha256:0692de34bfd9f40455a5afc69fb47be56b1f386c55183b569d9d71d2969ff2e6
telemeter git 3b5eb87f sha256:bf6892b648ee7d2b34fe5091d330bd4a14a4255ec1cd49bc4162af8cfc2212d4
tests git 09fc485e sha256:01c3b2496e8e514b565661f9e0bf238a978ca11ee44bbfbb2023feef178f2000
thanos git ac176319 sha256:ed570073c03b402a890d64f292cb51f8e8d7f3cdd2b18ce24ee81b672ea6015c
tools git 89f320d2 sha256:335dbc8c9f64406078002625b7f07c5227c56bb281aa745da10003a702c3a2c7
vsphere-cloud-controller-manager git f2bc9eb3 sha256:82c398439acd0754f5325b5b35dea440438b18589da293fb985eca6946329209
vsphere-csi-driver git e310f4d3 sha256:32387b4368115abe975671057b1cff23701175771ce899d5b792fd66a0621026
vsphere-csi-driver-operator git f5d7362c sha256:f9d4722571e378dd2e9d25d3ac918e18eb0cc9bbce4b1cc77e749263b4144af8
vsphere-csi-driver-syncer git e310f4d3 sha256:9b1a6fbcfff50f54a718745d16461d08983f5bed47c9d28c8f69fdc0afddf7bb
vsphere-problem-detector git 353ea508 sha256:b82654fb593067ec79e8d66f80dd00c81d444edaca71dca5bbc38beba9af70f5

alibaba-cloud-controller-manager

NO-JIRA: Update OWNERS #56
NO-JIRA: Update OWNERS #53
OCPBUGS-23004: Merge https://github.com/kubernetes/cloud-provider-alibaba-cloud:master (8244569) into master #37
OCPBUGS-25563: Updating ose-alibaba-cloud-controller-manager-container image to be consistent with ART #44
OCPBUGS-25632: Add Snyk file to exclude vendor directory on scan #47
OCPBUGS-25457: Bump golang.org/x/net to v0.19.0 #42
OCPBUGS-24926: Updating ose-alibaba-cloud-controller-manager-container image to be consistent with ART #40
OCPBUGS-24111: Updating ose-alibaba-cloud-controller-manager-container image to be consistent with ART #39
Update OWNERS #36
Rebase onto latest upstream version #35
OCPBUGS-10120: Updating ose-alibaba-cloud-controller-manager images to be consistent with ART #30
Update OWNERS #29
Update OWNERS #27
Updating ose-alibaba-cloud-controller-manager images to be consistent with ART #26
Merge https://github.com/kubernetes/cloud-provider-alibaba-cloud:master into master #21
Updating ose-alibaba-cloud-controller-manager images to be consistent with ART #22
Merge https://github.com/kubernetes/cloud-provider-alibaba-cloud:master into master #20
Full changelog

aws-cloud-controller-manager

SPLAT-2253: tests/ote: fix parser issue when listing images #122
SPLAT-2337: tests/ote: Fix platform name in the spec build #121
SPLAT-2337: tests/ote: Introduce openshift test extension binary #117
OCPCLOUD-3092: Merge https://github.com/kubernetes/cloud-provider-aws:master (bea9adf) into main #112
OCPBUGS-62354: Updating ose-aws-cloud-controller-manager-container image to be consistent with ART for 4.21 #118
NO-JIRA: Update OWNERS #116
OCPCLOUD-2928: Merge https://github.com/kubernetes/cloud-provider-aws:master (b0e098d) into main #106
OCPBUGS-57684: Updating ose-aws-cloud-controller-manager-container image to be consistent with ART for 4.20 #110
OCPCLOUD-2843: Update cloud-provider-aws to K8s 1.32, attempt 3 #104
TRT-2005: Revert #102 “OCPCLOUD-2843: Merge https://github.com/kubernetes/cloud-provider-aws:master (b1f753a) into master” #103
OCPCLOUD-2843: Merge https://github.com/kubernetes/cloud-provider-aws:master (b1f753a) into master #102
TRT-2003: Revert #98 “OCPCLOUD-2843: Merge https://github.com/kubernetes/cloud-provider-aws:master (c9d7595) into master” #100
OCPCLOUD-2843: Merge https://github.com/kubernetes/cloud-provider-aws:master (c9d7595) into master #98
OCPBUGS-45516: Updating ose-aws-cloud-controller-manager-container image to be consistent with ART for 4.19 #99
OCPCLOUD-2725: Reintroduce rebase to K8s 1.31 #97
TRT-1828: Revert #90 “OCPCLOUD-2725: Merge https://github.com/kubernetes/cloud-provider-aws:master (d7e05d5) into master” #95
OCPCLOUD-2725: Merge https://github.com/kubernetes/cloud-provider-aws:master (d7e05d5) into master #90
OCPBUGS-39599: Updating ose-aws-cloud-controller-manager-container image to be consistent with ART for 4.18 #94
NO-JIRA: Update OWNERS #91
OCPCLOUD-2608: Merge https://github.com/kubernetes/cloud-provider-aws:master (0445cf1) into master #62
OCPBUGS-33979: update for CVE-2023-45288 [release-4.17] #87
OCPBUGS-31572: Ensure that addresses are added in network device index order #86
OCPBUGS-8213: Ensure removal of security group rules on deleting load balancers #57
OCPBUGS-30466: Update google.golang.org/protobuf to v1.33.0 #79
OCPBUGS-27879: Add snyk exclusion file #78
OCPBUGS-28548: Updates build-rpm.sh to set release to build time #75
OCPBUGS-28548: spec: add Provides: ose-aws-ecr-image-credential-provider #74
OCPBUGS-25662: UPSTREAM: <carry>: Removes escaping from pwd in rpm build script #69
OCPBUGS-25662: Updates rpm build script #68
OCPBUGS-25662: ecr-credential-provider RPM CI builds #65
OCPBUGS-25662: Installs ecr-credential-provider to /usr/libexec #66
OCPBUGS-25662: Adds ecr-credential-provider specfile #63
OCPBUGS-22542, OCPBUGS-26061, OCPCLOUD-2423: Merge https://github.com/kubernetes/cloud-provider-aws:master (65e4f1a) into master #53
OCPBUGS-24959: Updating ose-aws-cloud-controller-manager-container image to be consistent with ART #59
OCPBUGS-24135: Updating ose-aws-cloud-controller-manager-container image to be consistent with ART #58
OCPBUGS-21839: Upgrade x/net to v0.17.0 #51
Update OWNERS #52
OCPCLOUD-2187: Merge https://github.com/kubernetes/cloud-provider-aws:master (43b808d) into master #47
OCPBUGS-19218: Updating ose-aws-cloud-controller-manager images to be consistent with ART #48
Merge https://github.com/kubernetes/cloud-provider-aws:master (d055109) into master #44
OCPBUGS-14696: Merge https://github.com/kubernetes/cloud-provider-aws:master (cab0100) into master #45
Revert “OCPCLOUD-2051: Merge https://github.com/kubernetes/cloud-provider-aws:master (cab0100) into master” #43
OCPCLOUD-2051: Merge https://github.com/kubernetes/cloud-provider-aws:master (cab0100) into master #41
Updating ose-aws-cloud-controller-manager images to be consistent with ART #38
Merge https://github.com/kubernetes/cloud-provider-aws:master (f33bf21) into master #36
OCPBUGS-10147: Updating ose-aws-cloud-controller-manager images to be consistent with ART #37
Update OWNERS #35
Merge https://github.com/kubernetes/cloud-provider-aws:master into master #34
Updating ose-aws-cloud-controller-manager images to be consistent with ART #30
Update OWNERS #31
Updating ose-aws-cloud-controller-manager images to be consistent with ART #25
OCPBUGS-2076: Replace k8s.io/cloud-provider with openshift’s version #28
OCPBUGS-1413: Rebase 03.10.2022 k8s 1.25 #26
Merge https://github.com/kubernetes/cloud-provider-aws:master into master #24
Updating ose-aws-cloud-controller-manager images to be consistent with ART #23
Updating ose-aws-cloud-controller-manager images to be consistent with ART #21
Bug 2087042: Merge https://github.com/kubernetes/cloud-provider-aws:master into master #22
Updating ose-aws-cloud-controller-manager images to be consistent with ART #20
Full changelog

aws-machine-controllers

NO-JIRA: bump k8s 1.34: bump Makefile and Dockerfile #158
OCPCLOUD-3085: Bump k8s to 1.34 #156
NO-JIRA: Update OWNERS #138
OCPCLOUD-3072: Add support for AMD SEV-SNP #141
OCPBUGS-62395: Updating ose-machine-api-provider-aws-container image to be consistent with ART for 4.21 #139
OCPBUGS-38759: client: re-use a single file for building the session instead of randomly named files #140
OCPCLOUD-2935: Bump k8s dependencies to 1.33; go 1.24 #136
NO-JIRA: Update OWNERS #135
OCPBUGS-56849, OCPCLOUD-2985, OCPCLOUD-2986: Bump machine-api-operator to pull in authoritativeAPI fix #134
OCPBUGS-57724: Updating ose-machine-api-provider-aws-container image to be consistent with ART for 4.20 #133
OCPBUGS-57581: fix: machineset annotation controller: guard on status authoritativeAPI #132
OCPCLOUD-2717: bump openshift/api #131
OCPBUGS-56487: fix: make machineset annotation controller respect paused condition #129
OCPBUGS-55720: Update machine-api-operator pkg with fixes #127
OCPBUGS-52454: Add spotMarketRequest on marketType spot #126
OCPCLOUD-2780: select instance ‘MarketType’ option #125
OCPCLOUD-2836: Update dependencies to k8s 1.32 #123
OCPBUGS-45578: Updating ose-machine-api-provider-aws-container image to be consistent with ART for 4.19 #119
OCPBUGS-44373: fix Associate*IpAddress flag when launch EC2 #116
OCPBUGS-15255: Add terminated as a handled state so terminated instances don’t get stuck #83
OCPCLOUD-2732: Bump deps to 1.31 #114
OCPCLOUD-2565: Revendor MAO Pausing changes #113
OCPCLOUD-2703: OWNERS: update subcomponent #112
OCPBUGS-41104: Updating ose-machine-api-provider-aws-container image to be consistent with ART for 4.18 #111
OCPCLOUD-2693: Support Capacity Reservations by adding ‘CapacityReservationId’ #110
OCPCLOUD-2565: Featuregate implementation #109
OCPCLOUD-2565: Add feature gates flag #108
OCPBUGS-36469: Update placementGroupPartition to honour it as a pointer #107
CFE-1064: Add support for PlacementGroupPartition of placement group #101
NO-JIRA: Update OWNERS #105
OCPCLOUD-2615: Update dependencies to K8s 1.30 #104
OCPBUGS-34255: Updating ose-machine-api-provider-aws-container image to be consistent with ART for 4.17 #103
OCPBUGS-28325: add an extra vendor exclude to snyk config #100
OCPCLOUD-2429: Rebase k8s to 1.29 and update dependencies #99
OCPBUGS-26187: Add Snyk file to exclude vendor directory on scan #98
OCPBUGS-24934: Updating ose-machine-api-provider-aws-container image to be consistent with ART #94
OCPBUGS-24116: Updating ose-machine-api-provider-aws-container image to be consistent with ART #93
SPLAT-1220: Assign Carrier IP to launch EC2 in AWS Wavelength Zones #78
OCPCLOUD-2193: Update k8s to 1.28 #87
Update OWNERS #86
OCPBUGS-21640: Update golang.org/x/net to v0.17.0 #85
OCPBUGS-20266: update bad url endpoint termination handler test #84
OCPBUGS-19190: Updating ose-machine-api-provider-aws images to be consistent with ART #82
OCPBUGS-18338: Fix CI by running tests natively by default #81
OCPBUGS-11524: Add test for multi security groups per machine #80
OCPCLOUD-2113: Add support for PlacementGroupName in instances #77
Fixes for the labels capacity annotation #76
MIXEDARCH-256: Handle the kubernetes.io/architecture label based on the AWS instance type #71
OCPCLOUD-2058: Update k8s to 1.27 #72
OCPBUGS-6882: Fix getting AZ from subnet id to check mismatch #73
OCPBUGS-12082: Updating ose-machine-api-provider-aws images to be consistent with ART #67
OCPBUGS-12554: Bump x/net package to v0.9.0 #69
OCPBUGS-6882: Log to user that the subnet id and zone fields are mismatched #63
OCPBUGS-11223: Reduce metrics cardinality #65
OCPBUGS-10127: Updating ose-machine-api-provider-aws images to be consistent with ART #62
Update OWNERS #61
: Update tooling #58
Updating ose-machine-api-provider-aws images to be consistent with ART #54
OCPCLOUD-1802: Port to ginkgo v2 #55
Update OWNERS #56
OCPCLOUD-1131: Implement fetching instance types from API #53
Updating ose-machine-api-provider-aws images to be consistent with ART #45
OCPBUGS-1411: Bump k8s dependencies to 1.25 #52
Update Machine API Operator dependency #51
Update Machine API operator dependency #49
pkg/actuators/machineset/controller: Fix %s in scale-from-zero logging #43
Bug 2106733: Fix panic when accessing nil machine annotations map #46
Bug 2060068: check securityGroupIDs for emptiness #44
Bug 2060068: return error when no security group found #41
Bug 2082667: Bump MAPI dependency. Separate node drain controller. #42
Bug 2087039: update dependencies to K8s 1.24, go 1.18 #40
Bug 2091433: Update EC2 instance types #39
Bump machine-api-operator to 25e61c2 #38
Validate unknown regions using AWS API #32
AWS Placement Group controller logic #33
Bug 2072195: Custom DHCP Option Set: empty domain-name is a valid custom domain #36
Remove unreleased AWS Placement Groups support #35
AWS IMDSv2 support #34
Refactor provider status to use metav1.Condition #31
Bug 2067791: Bump prometheus/client_golang #30
Add AWSPlacementGroup controller #25
Bug 2065510: Update AWS SDK to 1.43.20 #29
Bug 2065160: Ensure IP based NLB targets are deregistered before Machines are removed #28
Bug 2060697: Update openshift/api dependency #27
Leverage basic AWSPlacementGroup for AWS PG membership #23
Ensure Machine level tags have precedence over infrastructure level tags #24
Allow Machines to select EFA network interfaces #8
CFE-68: user defined resource tags on EC2 instances updatable #15
Full changelog

aws-pod-identity-webhook

CCO-664: merge upstream changes #205
OCPBUGS-62587: Updating ose-aws-pod-identity-webhook-container image to be consistent with ART for 4.21 #206
OCPBUGS-57618: Updating ose-aws-pod-identity-webhook-container image to be consistent with ART for 4.20 #204
OCPBUGS-52509: github.com/go-jose/go-jose/v4 v4.0.5 #200
OCPBUGS-45443: Updating ose-aws-pod-identity-webhook-container image to be consistent with ART for 4.19 #199
CCO-594: upstream rebase #198
OCPBUGS-39541: Updating ose-aws-pod-identity-webhook-container image to be consistent with ART for 4.18 #196
OCPBUGS-36522: Rename Dockerfile #195
OCPBUGS-34147: Updating ose-aws-pod-identity-webhook-container image to be consistent with ART for 4.17 #194
OCPBUGS-34147: Updating ose-aws-pod-identity-webhook-container image to be consistent with ART for 4.17 #193
OCPBUGS-30711: Upgrade go-jose module to 4.0.1 #187
OCPBUGS-25588: Updating ose-aws-pod-identity-webhook-container image to be consistent with ART #183
OCPBUGS-25002: Updating ose-aws-pod-identity-webhook-container image to be consistent with ART #181
OCPBUGS-25002: Updating ose-aws-pod-identity-webhook-container image to be consistent with ART #180
NO-ISSUE: Sync OWNERS with team members #173
snyk: exclude vendor/ #170
Bump k8s deps for CVE-2023-39325 #169
OCPBUGS-19264: Updating ose-aws-pod-identity-webhook images to be consistent with ART #167
CCO-429: Rebase master #166
Bump to go 1.20 in go.mod #163
Updating ose-aws-pod-identity-webhook images to be consistent with ART #162
Updating ose-aws-pod-identity-webhook images to be consistent with ART #159
Updating ose-aws-pod-identity-webhook images to be consistent with ART #158
Update OWNERS #157
Updating ose-aws-pod-identity-webhook images to be consistent with ART #156
Updating ose-aws-pod-identity-webhook images to be consistent with ART #155
Updating ose-aws-pod-identity-webhook images to be consistent with ART #153
Bug 2093986: Comply to restricted pod security level #154
Bug 2067792: upgrade prometheus/client_golang to v1.12.1 #152
Updating ose-aws-pod-identity-webhook images to be consistent with ART #151
Full changelog

baremetal-installer, installer, installer-artifacts

OCPBUGS-23541: Specify google cloud CLI to version 256.0.0 #7755
Full changelog

baremetal-runtimecfg

OCPBUGS-62581: Updating ose-baremetal-runtimecfg-container image to be consistent with ART for 4.21 #370
CORS-4175: Extend in-cluster DNS support to Azure #366
no-jira: Bump openshift/api version to bring updates to AzurePlatformStatus #367
NO-ISSUE: Update OWNERS #353
OCPBUGS-57607: Updating ose-baremetal-runtimecfg-container image to be consistent with ART for 4.20 #350
MGMT-20739: Add control-plane-topology as an arg to dynkeepalived and temporarily add a dummy backend when installing TNF/TNA with assisted-installer #348
OCPBUGS-55971: Re-add ENABLE_NODEIP_DEBUG env var #347
OCPBUGS-57065: iptables: Switch PREROUTING REDIRECT rule to DNAT instead #349
NO-ISSUE: Add emy as reviewer #346
OPNET-629: Use HAProxy monitor endpoint instead of API #343
OCPBUGS-48469: Pass in platform as a optional parameter to runtimecfg cmds #345
OCPEDGE-1689: Include Arbiter nodes in the API backends if there is only one master #344
OCPBUGS-48469: Include cloud platform specific parameters to argument list for corednsmonitor #341
Revert “OPNET-629: Use HAProxy monitor endpoint instead of API” #342
OPNET-629: Use HAProxy monitor endpoint instead of API #336
OCPBUGS-48194: Bump logrus version #338
OCPBUGS-45431: Updating ose-baremetal-runtimecfg-container image to be consistent with ART for 4.19 #335
OCPBUGS-44694: Extend haproxy-monitor fall time #334
OCPBUGS-39523: Updating ose-baremetal-runtimecfg-container image to be consistent with ART for 4.18 #333
OCPBUGS-38877: Increase “fall” value for haproxy-monitor check #332
OCPBUGS-38281: Handle errors in iptables healthcheck #327
OPNET-552: Move to stream9 for local builds #328
OCPBUGS-38288: Distinguish NotExist from nil for keepalived sentinel file errors. #326
OCPBUGS-32348: Change mechanism of debug flag #309
OCPBUGS-32141: Fix handling of ELB Node IP detection #316
OCPBUGS-34706: Add support for OVN HostCidrs annotation #317
OCPBUGS-34136: Updating ose-baremetal-runtimecfg-container image to be consistent with ART for 4.17 #314
OCPBUGS-32141: Handle scenario when VIP does not belong to L2 #313
OCPBUGS-29067: Fix generation of DNSUpstreams on cloud platforms #308
NO-ISSUE: Fix wrong golang version, bump to 1.21 #311
Revert “OCPBUGS-32348: Make log level configurable” #310
OCPBUGS-32348: Make log level configurable #305
OCPBUGS-29067: Do not add VRRP config to Node on Cloud Platforms #303
OCPBUGS-29931: Updating ose-baremetal-runtimecfg-container image to be consistent with ART for 4.16 #300
OCPBUGS-29919: Decrease log level when detecting node IP #301
OCPBUGS-29095: Ignore egress IP when selecting Node IP #298
OCPBUGS-24865: Updating ose-baremetal-runtimecfg-container image to be consistent with ART #291
NO-ISSUE: Upgrade k8s api and client-go deps #297
OCPBUGS-26765: Add .snyk file to ignore vendor and test files #292
CORS-2818: Adding ability to render Cloud LB IPs #286
OCPBUGS-23432: Use shorter IP label for keepalived VIP #287
OCPBUGS-22204: deps: upgrade x/sys #280
OCPBUGS-19492: Increase timeout for bootstrap kubeapi #276
OCPBUGS-19098: Updating baremetal-runtimecfg images to be consistent with ART #274
OCPBUGS-18257: Move haproxy firewall rule check earlier in loop #270
OCPBUGS-15947: Don’t render config with incomplete unicast peer list #266
Remove old scripts #251
OCPBUGS-14403: Use machine-config state instead of comparing roles #257
OCPBUGS-14936: node: remove duplicate #260
OCPBUGS-12739: Fix bug with IP conversion using net.IP #258
OCPBUGS-12739: Use NonVirtualIP as a hint for selecting Peers #256
OCPBUGS-12739: Use lazy match when getting IP from OVN #254
OCPBUGS-12739: Dump whole Node object when failing to get node IP #253
OCPBUGS-12739: Print error message when node annotation doesn’t parse #252
OCPBUGS-11691: Verify kubelet version in upgrade check #247
OCPBUGS-12564: Update x/net and parent dependencies #245
OCPBUGS-4370: Add label to VIP via keepalived #236
OCPBUGS-12739: In keepalived config print structs instead of pointers #241
OCPBUGS-12729: Make nested dual stack VIP configs respect EnableUnicast #237
Updating baremetal-runtimecfg images to be consistent with ART #234
OCPBUGS-10695: Use subnet mask to detect IP stack #227
OCPBUGS-5816: Fixup isUpgradeStillRunning logic #230
node.go: remove no required check #228
Updating baremetal-runtimecfg images to be consistent with ART #225
OPNET-197: Extend logic for detecting Node IP #218
OPNET-210: Support preferIPv6 for IPI too #223
Extend utility functions for address manipulation #221
OCPBUGS-3127: 5 minutes timeout for getSuitableIPs #219
OPNET-133: Enabling remote worker feature only for baremetal platform #224
node-ip: fix user-managed-lb flag #222
OPNET-214: node-ip: adjust logic for user-managed-lb #220
OCPBUGS-6004: filter ovn fd69::2 ip from list of ips in case ovn #215
Add mko as reviewer and approver #216
OPNET-133: Support remote worker in onprem installations #207
Updating baremetal-runtimecfg images to be consistent with ART #211
Remove creydr as a reviewer and approver #209
Add mandre and tsorya as approvers #208
OCPBUGS-2988: If primary ip address was already created no need to choose new ip #200
OCPBUGS-2994: Adding timeout for kubeapi calls for keepalived monitor #201
OCPBUGS-2512: Improve IP address sort order for interface selection #199
Updating baremetal-runtimecfg images to be consistent with ART #196
Run go fmt #197
Adding node ip hint for all who want to use it #185
OCPBUGS-669: Empty chosen list when retrying ip selection #191
Add list of Node configs to handle multiple VIPs #176
OCPBUGS-669: Apply ipv6 bind check to non-VIP case too #188
Updating baremetal-runtimecfg images to be consistent with ART #184
Bug 2096226: Check chosen node-ip can be used #181
Bug 2086483: Update k8s dependencies to 1.24 #180
Updating baremetal-runtimecfg images to be consistent with ART #179
Bug 2069740: Avoid kubernetes node port range #175
node: update IsUpgradeStillRunning() logic #173
Update OWNERS to reflect current team #177
Dockerfile: migrate repo to CentOS 8 Stream #174
Updating baremetal-runtimecfg images to be consistent with ART #168
Full changelog

cluster-authentication-operator

CNTRLPLANE-1789: Bump kube to 1.34 #807
OCPBUGS-65473: fix: remove route and oauth service from clusteroperator expected output #808
CNTRLPLANE-947: operator: set oauth-specific relatedObjects dynamically in the operator status #800
OCPBUGS-62941: (bugfix): configure status controller to remove unset versions #798
OCPBUGS-62447: Updating ose-cluster-authentication-operator-container image to be consistent with ART for 4.21 #793
API-1835: test/oauth-server-staticresource: adds a test to show which input resources are required to run the operator and the staticResourceController #790
NO-JIRA: Update OIDC e2e test to expect admission-time validation error of invalid CEL expression #797
API-1835: fix integration tests #795
OCPBUGS-57444: set appropriate rolling update settings #789
NO-JIRA: om: fix integration testing #788
NO-JIRA: Bump library go rm co dep #782
OCPBUGS-59909: Don’t cache server errors when checking for password grant support #781
CNTRLPLANE-5: Wire a feature-gates config observer for oauth-apiserver. #773
AUTH-543: OIDC/OAuth resource configuration #740
AUTH-543, OCPBUGS-57808: (deps): Bump to Go 1.24 and k8s 1.33 #775
CNTRLPLANE-333: Add generation logic for new uid and extra fields in the Authentication CR #763
NO-JIRA: add logging when rendering bootstrap manifests #770
CNTRLPLANE-939: test/e2e-oidc: poll test preconditions for a short time instead of checking once #769
CNTRLPLANE-939: Create separate make rule for e2e oidc tests #768
AUTH-544: Extend e2e test to leverage new functionality #737
OCPBUGS-51203: fix logo not being correctly aligned in Webkit #758
OCPBUGS-48176: Avoid duplicate OAuth client creation #757
OCPEDGE-1510: feat: add minimum count for DualReplica #761
OCPEDGE-1610: bump(kube,library-go,ocp/api): #759
NO-JIRA: Keycloak e2e test improvements #714
OCPBUGS-51981: fix: update starter path to account for mom integration #760
CNTRLPLANE-71: update cao to manage rolebindingrestriction crd #748
AUTH-541: OIDC structured auth config #713
CONSOLE-4434, OCPBUGS-43610: update login templates to use PF6 and add validation #751
NO-JIRA: OWNERS: update approvers #756
MON-4129: adjust Prometheus classic histograms ‘le’ related selectors in relabel config to accommodate the update to Prometheus v3 #752
OCPBUGS-48177: Exclude etcd readiness checks from /readyz to ignore temporary etcd hiccups #753
OCPEDGE-1306: feat: change minimum for arbiter ha deployments #734
NO-JIRA: fix: resolve some integration tests #750
API-1835: bring MOM up to date for testing and the like #744
OCPBUGS-23435: bump library-go to bring in workload-conditions fix #739
API-1835: wire controllers from the apiserver controllerset #736
NO-JIRA: update build-machinery for spyglass artifacts #735
API-1835: Bump library-go to get update-free removestaleconditionscontroller #729
API-1835: bump library-go and MOM to get labels in revision controller #733
API-1835: use manifestclient.RecommendedRESTConfig() #731
API-1835: Add input-resources #730
API-1835: Bump openshift/build-machinery-go #732
API-1835: first integration-tests #726
API-1835: name all the runone functions #728
API-1835: Use test-operator-integration target from build-machinery-go #725
API-1835: Bump library-go to get SSA in multiple controllers #721
OCPBUGS-42932: ensure annotations map exists before mutating it #727
API-1835: adds output-resources to cluster-authentication operator. #720
NO-JIRA: add relatedResources to authentication for collection if operator crashes #722
API-1835: Bump library-go to get WorkloadController SSA #715
API-1835: demonstration mutation recording client #710
API-1835: Set Unknown conditions in WellKnownReadyController #716
API-1835: Migrate WellKnownReadyController to SSA #705
API-1835: Migrate a few existing controllers to ApplyOperatorStatus #698
OCPBUGS-42745: manifests should not use APIs that are removed in upcoming releases #709
API-1835: use the “normal” latest revision #704
OCPBUGS-42535: when no type is specified, don’t make illegal condition #702
OKD-226: Dockerfile.rhel7: Add ARG TAGS=ocp #687
API-1835: operator client update #697
API-1835: fix resync of operator informers #695
AUTH-546: Direct external OIDC e2e test #684
API-1835: Use dynamic operator client #694
create CRDs from openshift/api #696
OCPBUGS-41586: increase oauth-apiserver failureThreshold #692
OCPBUGS-39037: Updating ose-cluster-authentication-operator-container image to be consistent with ART for 4.18 #691
NO-JIRA: Bump library-go #688
OCPBUGS-35828: controller: set ownership annotation for webhook-auth secret #678
NO-JIRA: endpoint test: use httpbin #680
NO-JIRA: Several fixes for Keycloack IDP test #679
NO-JIRA: OWNERS: add ibihim, liouk, rm old #677
OCPBUGS-33654: update OpenShift favicon to new brand standard #674
OCPBUGS-33654: update OpenShift favicon to new brand standard #670
NO-JIRA: remove go-jose not to get flagged with its CVEs #668
AUTH-482: set required-scc for openshift workloads #656
OCPBUGS-24195: the apiservice controller waits until bootstrap complete #662
OCPBUGS-22969: Use v1 for flowcontrol API #640
NO-JIRA: e2e Keycloak: retry logging in as admin #666
OCPBUGS-32089: wellknown-readiness: perform several attempts to connect before going unavailable #664
NO-ISSUE: bump to the latest version of openshift/api #663
NO-ISSUE: bump dependencies #659
NO-JIRA: test/lib: create SA on deploy #660
NO-ISSUE: oauth-apiserver: disable priority and fairness #658
NO-ISSUE: oauth-apiserver: enable shutdown-send-retry-after #657
NO-JIRA: _output - remove dir #651
OCPBUGS-18939: manifest: drop slo latency metrics in favor of sli #632
WRKLDS-1004: use AlwaysAllow UnhealthyPodEvictionPolicy in PDBs #646
OCPBUGS-24883: Updating ose-cluster-authentication-operator-container image to be consistent with ART #644
OCPBUGS-18115: Remove “include.release.openshift.io/ibm-cloud-managed:” annotation #636
OCPBUGS-24217: Annotate certs with ownership information #642
OCPBUGS-21719: go.mod: bump golang.org/x/net to v0.17.0 #635
OCPBUGS-17987: generate only >=0 number of random bits #629
OCPBUGS-19125: Updating ose-cluster-authentication-operator images to be consistent with ART #634
OCPBUGS-8093: properly set the pod name and namespace in graceful termination lifecycle events #628
Add openshift-cli-client in NamesFilter #625
OCPBUGS-16501: bump PSa, lib-go and storage-version-migrator to get rid of goproxy dep #624
AUTH-356: Add openshift-cli-client OAuth Client #606
Correctly link oauth apiserver ServiceMonitor with its Service #616
OCPBUGS-2765: Library go bump #613
OCPBUGS-14010: increase timeout for probes #612
AUTH-363: make proxy config check less obtrusive #608
OCPBUGS-10577: update apf configuration to use v1beta3 #594
OCPBUGS-10041: update openshift/api to include aesgcm provider in the default apiserver schema #601
API-1509: Enable AESGCM encryption #598
OCPBUGS-6189: art image update #596
OCPBUGS-3929: update apf configuration to use v1beta2 #592
OCPBUGS-3440: Restart authentication operator if console capability is enabled #589
OCPBUGS-3441: Update cluster-authentication-operator not to go degraded without console [4.13] #587
make the custom route controller use server-side-apply to avoid stomping unknown fields #582
e2e: address PSa failures #581
Bug 2111842: v/o/library-go - version-bump #576
Updating ose-cluster-authentication-operator images to be consistent with ART #575
Updating ose-cluster-authentication-operator images to be consistent with ART #571
Bug 2078287: only ever include certificates in the oauth-serving-cert CM #573
AUTH-133: bindata/oauth-openshift: specify pod security level #570
Update Links #568
Bug 1958198: Avoid zero or low resync intervals #491
manifests: specify pod security level #565
e2e: Use Keycloak v18.0.0 #567
AUTH-89: add audit options to oauth-server on oauth-audit-profile Variant03 #563
MGMT-9797: Bump openshift/api dependency to 04e1813ebb11 #564
make apiserver readiness probe honor readyz #561
Bug 2063342: vendor: bump library-go #558
Bug 2059515: e2e: Use Keycloak v17.0.0 #554
Update OCP branding within oauth-templates #540
Full changelog

cluster-autoscaler

OCPBUGS-57131: update node info processors to include unschedulable nodes #390
AUTOSCALE-433: Fixup vpa tests downstream #394
OCPBUGS-60790: refactor cloud provider options #380
AUTOSCALE-335, AUTOSCALE-336, OCPBUGS-62383, OCPBUGS-62477: 1.34.0 upstream rebase #386
OCPBUGS-62383: Updating ose-vertical-pod-autoscaler-container image to be consistent with ART for 4.21 #383
OCPBUGS-62477: Updating atomic-openshift-cluster-autoscaler-container image to be consistent with ART for 4.21 #384
NO-JIRA: Remove OWNERS automation preamble #382
AUTOSCALE-242, AUTOSCALE-244: 1.33.0 upstream rebase #365
OCPBUGS-54231: revert openshift replica fix #369
AUTOSCALE-284: Rename Cluster Autoscaler component in OWNERS file #360
OCPBUGS-57710: Updating ose-vertical-pod-autoscaler-container image to be consistent with ART for 4.20 #357
OCPBUGS-54231: Fix cool down status condition to trigger scale down #355
OCPCLOUD-2835: rebase on upstream 1.32.0 release #340
NO-JIRA: improve nodes listing in ClusterAPI provider #354
OCPBUGS-11115: refactor findScalableResourceProviderIDs #349
OCPBUGS-11115: improve failed machine detection in clusterapi #347
OCPBUGS-11115: make DecreaseTargetSize more accurate #343
OCPBUGS-11115: improve replica counting on openshift #278
OCPCLOUD-2500: Update to recognize both upstream and openshift ScaleFromZero annotations #335
PODAUTO-266: Update VPA dockerfile to 4.19 #334
OCPBUGS-25852: UPSTREAM: <carry>: 🐛(metrics) Initialize metrics for autoscaler errors, scale events, and pod evictions #332
OCPBUGS-45686: Updating atomic-openshift-cluster-autoscaler-container image to be consistent with ART for 4.19 #331
OCPBUGS-45565: Updating ose-vertical-pod-autoscaler-container image to be consistent with ART for 4.19 #330
OCPBUGS-45075: VPA OWNERS: Remove John Kyros, et al., add Max Cao #322
PODAUTO-257: Update VPA Dockerfile for 4.18 #321
OCPCLOUD-2733: rebase on upstream 1.31.0 release #319
OCPBUGS-38277: Updating atomic-openshift-cluster-autoscaler-container image to be consistent with ART for 4.18 #313
OCPBUGS-37498: Updating ose-vertical-pod-autoscaler-container image to be consistent with ART for 4.17 #311
PODAUTO-202: Update VPA ocp/builder Dockerfile images to openshift/release images #310
PODAUTO-199: Upstream rebase to VPA 1.1.2 #309
OCPBUGS-34242: Updating ose-vertical-pod-autoscaler-container image to be consistent with ART for 4.17 #304
NO-JIRA: Update OWNERS #307
OCPCLOUD-2616: rebase on upstream 1.30.1 release #306
OCPBUGS-34428: Updating atomic-openshift-cluster-autoscaler-container image to be consistent with ART for 4.17 #305
OCPBUGS-33904: Updating atomic-openshift-cluster-autoscaler-container image to be consistent with ART for 4.17 #302
OCPBUGS-33592: fix: scale up broken for providers not implementing NodeGroup.GetOptions() #300
NO-JIRA: UPSTREAM: 6796: Avoid expesive pointer copy in capi nodegroup #298
OCPBUGS-31421: add check for taint.value == nil #292
OCPBUGS-28334: update snyk file #287
PODAUTO-99: Fix VPA e2e test failures #286
OCPCLOUD-2431: rebase on upstream 1.29.0 release #285
PODAUTO-104: Add downstream pod autoscaling team member jkyros to VPA OWNERS #283
OCPBUGS-27509: Fix unstructured taint parsing in Cluster API provider #281
OCPBUGS-26504: Updating atomic-openshift-cluster-autoscaler-container image to be consistent with ART for 4.16 #279
OCPBUGS-25855: Updating ose-vertical-pod-autoscaler-container image to be consistent with ART for 4.16 #277
OCPBUGS-25625: Add Snyk file to exclude vendor directory on scan #276
OCPBUGS-24783: Updating atomic-openshift-cluster-autoscaler-container image to be consistent with ART #271
OCPBUGS-25579: Updating ose-vertical-pod-autoscaler-container image to be consistent with ART #274
PODAUTO-91: Add joelsmith to OWNERS for approving of VPA-only PRs #273
OCPBUGS-24974: Updating ose-vertical-pod-autoscaler-container image to be consistent with ART #272
OCPBUGS-24146: Updating ose-vertical-pod-autoscaler-container image to be consistent with ART #269
OCPCLOUD-2195: rebase on upstream 1.28.0 release #265
Update OWNERS #264
OCPBUGS-18137: UPSTREAM: 6066: Allow overriding the kubernetes.io/arch label set by the scale from zero methods via a new cmdline arg #261
OCPBUGS-19232: Updating vertical-pod-autoscaler images to be consistent with ART #262
OCPBUGS-18852: Updating atomic-openshift-cluster-autoscaler images to be consistent with ART #260
Updating vertical-pod-autoscaler images to be consistent with ART #253
OCPCLOUD-2060 Merge https://github.com/kubernetes/autoscaler:master (d3ec0c4) into master #256
OCPBUGS-13228: Updating atomic-openshift-cluster-autoscaler images to be consistent with ART #255
Updating atomic-openshift-cluster-autoscaler images to be consistent with ART #252
OCPCLOUD-1851: Upstream rebase to CA 1.26.1 and VPA 0.13 #250
Update OWNERS #251
Updating vertical-pod-autoscaler images to be consistent with ART #248
Update OWNERS #249
Updating atomic-openshift-cluster-autoscaler images to be consistent with ART #246
Updating vertical-pod-autoscaler images to be consistent with ART #243
rebase on upstream 1.25.0 #241
Bug 2001027: update clusterapi nodegroups processor #240
Updating vertical-pod-autoscaler images to be consistent with ART #235
Bug 1944065: Have VPA ignore phantom containers named “POD” #233
Bug 2087037: Rebase onto latest master from upstream #231
Bug 2087037: Rebase Autoscaler onto upstream release-1.24 branch #227
added bindata.go in e2e/vendor to fix the e2e test failures #225
add user configurable cluster api version #223
Full changelog

cluster-autoscaler-operator

AUTOSCALE-336: Prepare for 4.21 #355
OCPBUGS-62589: Updating ose-cluster-autoscaler-operator-container image to be consistent with ART for 4.21 #354
AUTOSCALE-384: Add “cordon node before terminating” option to cluster autoscaler resource #356
AUTOSCALE-244: Allow cluster-operator service account to patch machinesets/scale subresource #352
AUTOSCALE-244: Prepare for 4.20 and fix missing volumeattachments rbac #351
AUTOSCALE-125: newPodScaleUpDelay field for CA #349
AUTOSCALE-284: Rename Cluster Autoscaler component in OWNERS file #347
NO-JIRA: Remove tombstones yamls #348
OCPBUGS-57621: Updating ose-cluster-autoscaler-operator-container image to be consistent with ART for 4.20 #346
OCPBUGS-42875: mitigate operator Degraded status flapping #344
OCPBUGS-57041: update cluster provider type early #343
NO-JIRA: Add autoscale members to OWNERS file #345
OCPCLOUD-2829: Bump k8s 1.32 #339
OCPBUGS-45451: Updating ose-cluster-autoscaler-operator-container image to be consistent with ART for 4.19 #336
OCPBUGS-42132: set max soft bulk taint count to zero #334
OCPBUGS-39543: Updating ose-cluster-autoscaler-operator-container image to be consistent with ART for 4.18 #331
OCPCLOUD-2739: Bump deps to 1.31 #333
SPLAT-1719: Remove Alibaba #330
NO-JIRA: Update OWNERS #329
OCPBUGS-35952: add aws zone-id to ignore labels #328
OCPCLOUD-2617: Bump k8s to 1.30 #327
OCPBUGS-34151: Updating ose-cluster-autoscaler-operator-container image to be consistent with ART for 4.17 #323
AUTH-482: set required-scc for openshift workloads #315
OCPBUGS-20565: Set webhook minimum TLS version to 1.3 #320
OCPCLOUD-2493: Add empty string as value for GpuType if GpuCount is empty 0 #317
OCPBUGS-31960: Bump x/net to v.0.24.0 #318
OCPCLOUD-2493: Update CAO to add upstream annotations #316
OCPCLOUD-2523: add ExpanderOrderList api option #304
OCPBUGS-29863: Apply hypershift cluster-profile for ibm-cloud-managed #314
OCPBUGS-28207: update min/max memory limit documentation #313
MIXEDARCH-429: Revert “OCPBUGS-18137: Provide the architecture of the control plane as argument to –scale-up-from-zero-default-arch” #311
OCPBUGS-28230: add FallbackToLogsOnError for easier debugging #312
MIXEDARCH-429: Add the environment variable value for CAPI_SCALE_ZERO_DEFAULT_ARCH #297
OCPCLOUD-2432: Bump k8s packages to v1.29 #310
OCPBUGS-25559: Updating ose-cluster-autoscaler-operator-container image to be consistent with ART #305
OCPBUGS-25633: Add Snyk file to exclude vendor directory on scan #306
OCPBUGS-24911: Updating ose-cluster-autoscaler-operator-container image to be consistent with ART #303
OCPBUGS-24102: Updating ose-cluster-autoscaler-operator-container image to be consistent with ART #302
OCPCLOUD-2137: Check scale from zero annotations on MachineSets #294
OCPBUGS-21791: Bump x/net package to v0.17.0 #295
Update OWNERS #296
OCPCLOUD-2196: Update dependencies k8s 1.28 #293
OCPBUGS-18137: Provide the architecture of the control plane as argument to –scale-up-from-zero-default-arch #284
OCPBUGS-18954: Ensure status reporter caches exit if they don’t sync #285
OCPBUGS-19411: cluster-autoscaler-operator: clusterrole add clusteroperators watch #287
OCPBUGS-19169: Updating ose-cluster-autoscaler-operator images to be consistent with ART #286
OCPBUGS-18278: Address long acquire times during upgrade #281
OCPBUGS-18338: Fix CI by running tests natively by default #282
Reconcile when external process change the clusteroperator status #279
OCPBUGS-14356: add nutanix labels that should be ignored #275
CNF-5642 make operator optional #269
OCPCLOUD-2061: Rebase dependencies to k8s 1.27 #274
Updating ose-cluster-autoscaler-operator images to be consistent with ART #273
OCPBUGS-10105: Updating ose-cluster-autoscaler-operator images to be consistent with ART #271
Bug 1943194: update GPU resource limits type to have validation #268
Update OWNERS #270
revert GPU label changes from pr 223 #267
: Update tooling in Cluster Autoscaler Operator #266
Add infrastructures resource to config.openshift.io #265
Allow infrastructures.config.openshift.io to be listed #264
Register configv1 types to schemes #262
Updating ose-cluster-autoscaler-operator images to be consistent with ART #259
: Update CAO to ignore platform related zone labels #260
Update OWNERS #261
: Set default container for operator #258
Add client certificate and key to service monitor #249
Updating ose-cluster-autoscaler-operator images to be consistent with ART #248
OCPCLOUD-1677: add flag for duplicated events #253
Bug 1997396: fix an error with autoscaler alert rules #254
OCPBUGS-1411: Bump k8s deps to 1.25 #252
Bug 1997396: update alerts for resource limits #250
OCPCLOUD-1427: Expose autoscaler “–balancing-ignore-label” flag through CRD #251
Add verbosity option to ClusterAutoscaler object #247
Bug 2087039: update dependencies to K8s 1.24, go 1.18 #246
Bug 2067803: Bump prometheus/client_golang #242
Bug 2063194: add leader election flags to autoscaler deployment #241
add capi version to autoscaler deployment #240
Updating ose-cluster-autoscaler-operator images to be consistent with ART #238
Full changelog

cluster-config-operator

OCPBUGS-62330: Updating ose-cluster-config-operator-container image to be consistent with ART for 4.21 #450
CNTRLPLANE-1311: set up openshift-tests-extension of cluster-config-operator and add a sanity test #448
OCPEDGE-1970: bump(ocp/api): pull in HighlyAvailableArbiter promotion #446
OCPEDGE-1876: bump(o/api,k8s/api,go-version) #445
OCPBUGS-57187: featuregates: always complete featuregates when feature set is CustomNoUpgrade #440
OCPEDGE-1833: feat: bump api dep to pull in change in DualReplica #439
OCPBUGS-52744: Bump golang.org/x/crypto #433
OCPEDGE-1643: bump: ocp/api ocp/library-go k8s #431
OCPBUGS-45477: Updating ose-cluster-config-operator-container image to be consistent with ART for 4.19 #430
OCPEDGE-1308: bump(api,k8s) #428
OCPBUGS-39572: Updating ose-cluster-config-operator-container image to be consistent with ART for 4.18 #426
CFE-921: Update openshift/api package to latest version #423
OCPBUGS-34178: Updating ose-cluster-config-operator-container image to be consistent with ART for 4.17 #419
SPLAT-1630: Bump API version to get new VSphereMultiVCenters featuregate. #418
AUTH-482: set required-scc for openshift workloads #410
OCPBUGS-24871: Updating ose-cluster-config-operator-container image to be consistent with ART #390
TRT-1581: default to self-managed clusterprofile #414
NO-JIRA: change the customnoupgrade featureset to work as force enable and force disable #412
OCPBUGS-29576: Apply hypershift cluster-profile for ibm-cloud-managed #408
NO-JIRA: add check to ensure clusterprofile matches for featuregates #411
OCPBUGS-28621: Fix PSa labels #406
STOR-1700: Bump(openshift/api): to get new VolumeGroupSnapshot API #405
OCPBUGS-28621: Add required PSa labels #401
SPLAT-1400: promote vSphere control plane machinesets from tech preview #400
OCPBUGS-26541: remove duplicate manifests in image #399
Revert “OCPBUGS-26541: remove duplicate manifests in image” #397
OCPBUGS-26541: remove duplicate manifests in image #392
OCPNODE-1671: Update api,client-go to add imagepolicy api #376
Revert “OCPBUGS-19106: Updating ose-cluster-config-operator-container image to be consistent with ART” #388
OCPBUGS-19106: Updating ose-cluster-config-operator-container image to be consistent with ART #385
read featuregates from openshift/api #349
yield CRDs and empty resource rendering to api imge #379
CNF-10479: Bump up api to pull mixed cpu allocation feature gate #386
NP-793: Bump github.com/openshift/api #375
create manifest directory during rendering #382
SPLAT-1272: Update for Nutanix failure domains api changes #378
create parent dir for output #381
Allow split rendering between cluster-config and openshift/api #380
MON-3480: Add MetricsServer FeatureGate #377
NO-JIRA: pkg/cmd/render/config: Remove ReadFeatureGateV1OrDie #361
MCO-813: add MCN featuregate #368
SPLAT-1127: bring in vSphere CPMSO API updates #342
OCPBUGS-21781: Update openshift/api package to latest version #365
OCPBUGS-21744: bump library-go to include switch to HTTP/1.1 #366
CFE-887: Bump openshift/api to add DNSNameResolver. #364
Enable ValidatingAdmissionPolicy in TechPreviewNoUpgrade. #358
OCPBUGS-20164: Remove Build CRD #360
Remove AdmissionWebhookMatchConditions feature gate #359
OCPVE-708: feat: bump(api) #357
OCPCLOUD-1989: Promote GCP CCM from TPNU to default #319
OCPBUGS-19106: Updating ose-cluster-config-operator images to be consistent with ART #353
CCO-412: Bump API to promote azureWorkloadIdentity to defaultFeatures #351
Revert “Bump to enable ValidatingAdmissionPolicy in tech preview.” #346
Bump to enable ValidatingAdmissionPolicy in tech preview. #343
Bump openshift/api to add ValidatingAdmissionPolicy feature gate. #340
OCPVE-626: bump(openshift/api@master) #341
CFE-689: Update openshift/api package to latest version #335
OCPBUGS-16614: go.mod: bump openshift/api #338
OCPBUGS-16614: go.mod: update openshift/api #334
OCPBUGS-16507: bump sigs.k8s.io/kube-storage-version-migrator #333
OCPCLOUD-2010: Remove feature gate for external platform #331
SDN-4024: Vendor openshift/api to get ANP feature-gate changes #330
Promote privateHostedZoneAWS from Tech Preview to Default #328
Update openshift/api #327
OCPBUGS-13547: Promote Azure CCM from TPNU to default #307
OCPBUGS-15877: go upgradeable=false when latencysensitive is used and not corrected #325
Enable feature gate for externalCertificate on Route API #326
stomp the latencysensitive featureset for equivalent default #324
WRKLDS-757: Sync with openshift/api to drop MatchLabelKeysInPodTopologySpread from TechPreviewNoUpgrade #322
SPLAT-1099: bump openshift/api for vSphere static IP feature gate and platform spec #323
remove dead flag for file #309
Changes to move to api@2d36f53 #321
OCPBUGS-12767: Add CustomNoUpgrade CRD versions to payload #320
OCPCLOUD-2010: Re-vendor api to support external platform #306
Update openshift/api to disable EventedPLEG featuregate in techpreview #317
update openshift/api for types and gates #316
Update github.com/openshift/api to pull in evented pleg and sigstore feature flags #312
Update github.com/openshift/api to pull in feature gates #311
OCPBUGS-6266: Rename config-operator_00_namespace run level to 00 #303
Update library-go dependency #305
Add JoelSpeed to owners #302
Update API and library-go #301
Require consistency in rendered artifacts #299
specify all known featureGates in disabled #297
update render to handle directories of manifests #295
adjust to refined openshift/api types #296
update ordering and featuregates #294
add featuregate status #288
Updating ose-cluster-config-operator images to be consistent with ART #287
OCPBUGS-10037: update openshift/api to get new apiserver schema #289
update openshift/api to get new techprevew apiserver schema #286
CFE-601: Update openshift/api package version #279
OSASINFRA-3097: update openshift/api to get External LB fields #278
OCPBUGS-6185: Update go version and ART images #280
OCPBUGS-4207: Revert “Increase verbosity level to track probe timeouts” #274
Update go.mod api,client-go to register crd #270
OCPBUGS-3123: add –feature-set option to render options #271
NE-975: Update openshift/api for updated ingress config loadBalancer fields #268
Increase verbosity level to track probe timeouts #267
Bug 1843043: Update openshift/api for modified config resource description #264
update openshift/api for new ingress manifest #263
Update go.mod api,client-go to register crd #262
This is not the repo you’re looking for. #261
Bump k8s dependencies #260
Update images to be consistent with ART #253
Bug 2082763: Drop the OperatorHub CR instance #245
bump openshift/api, client-go #251
manifests/deployment: comply to restricted pod security level #248
Reorder the empty Node CR resource to ensure it is applied after the Node CRD #244
Bump(o/client-go); Add empty config/v1/node/cluster object #238
Bug 2074243: Bump openshift/api to c3bb724c28 #243
Revert config/v1/Node crd.yaml #242
Bump openshift/api, openshit/client-go to add ImageMirrorSet CRDs #236
bumped openshift API to have node object related changes #233
Full changelog

cluster-dns-operator

NE-2138: Bump cluster-dns-operator to Kubernetes 1.33 for 4.21 #448
NO-JIRA: Add bentito (btofel@redhat.com) to OWNERS #449
NO-JIRA: Add davidesalerno to OWNERS #447
OCPBUGS-59781: Read only root filesystem #445
OCPBUGS-59781: Read only root filesystem #439
NO-JIRA: Add rikatz to OWNERS #442
OCPBUGS-57704: Updating ose-cluster-dns-operator-container image to be consistent with ART for 4.20 #438
OCPBUGS-51193: Add runbook_url for CoreDNSErrorsHigh #426
OCPBUGS-45558: Updating ose-cluster-dns-operator-container image to be consistent with ART for 4.19 #425
OCPBUGS-40849: Updating ose-cluster-dns-operator-container image to be consistent with ART for 4.18 #421
OCPBUGS-38102: Bump to k8s.io/* v0.30.3 and controller-runtime v0.18.4 #420
OCPBUGS-33750: Bump version of DNSNameResolver controller #415
OCPBUGS-34229: Updating ose-cluster-dns-operator-container image to be consistent with ART for 4.17 #414
OCPBUGS-34229: Updating ose-cluster-dns-operator-container image to be consistent with ART for 4.17 #413
CFE-964: Add DNSNameResolver controller #394
OCPBUGS-32941: Bump to Kubernetes 1.29 and controller-runtime 0.17.3 #408
OCPBUGS-27924: Updating ose-cluster-dns-operator-container image to be consistent with ART for 4.16 #402
CFE-852: Enable ocp_dnsnameresolver CoreDNS plugin #393
OCPBUGS-28230: add FallbackToLogsOnError for easier debugging #403
OCPBUGS-24884: Updating ose-cluster-dns-operator-container image to be consistent with ART #397
OCPBUGS-24602: Enable topology-aware hints iff nodes in >=2 zones #398
OCPBUGS-23741: Bump to k8s.io v0.28.3, controller-runtime v0.16.3 #395
OCPBUGS-20024: Ignore max unavailable for status #386
OCPBUGS-22018: Bump golang.org/x/net/http2 to v0.17.0 for CVE-2023-39325 in cluster-dns-operator #387
OCPBUGS-20024: Revert “Revert “Set DNS DaemonSet’s maxSurge value to 10%”” #384
OCPBUGS-19510: test/e2e: Set controller-runtime logger #381
OCPBUGS-19126: Updating ose-cluster-dns-operator images to be consistent with ART #380
OCPBUGS-18034: Only bump lastTransitionTime on ‘status’ changes #375
OCPBUGS-15605: Update bufsize to 1232 bytes #370
OCPBUGS-13209: Revert “Set DNS DaemonSet’s maxSurge value to 10%” #379
NE-1268: Replace bindata using embed #361
OCPBUGS-12863: Replace Bugzilla link with Red Hat Issue Tracker #374
OCPBUGS-14395: Set controller-runtime logger to a null logger #369
OCPBUGS-6829: Add support for protocolStrategy API field to enable force_tcp configuration #359
OCPBUGS-13965: Bump vendors k8s libraries to 0.27.2 #368
OCPBUGS-13099: Updating ose-cluster-dns-operator images to be consistent with ART #363
OCPBUGS-12859: deflake TestDNSLogging #365
OCPBUGS-5943: Enable topology-aware hints if, and only if, nodes have zones #364
OCPBUGS-5943: Set DNS DaemonSet’s maxSurge value to 10% #358
OCPBUGS-10080: Updating ose-cluster-dns-operator images to be consistent with ART #357
OCPBUGS-4359: update-node-resolver.sh: Check for errors from >> #355
OCPBUGS-6382: Address CVE-2022-41717 #353
OCPBUGS-7648: Bump vendored k8s libraries to 0.26.1 and controller-runtime to 0.14.4 #356
OCPBUGS-4359: ensure original hosts file contents are preserved #352
Updating ose-cluster-dns-operator images to be consistent with ART #351
Updating ose-cluster-dns-operator images to be consistent with ART, and generate bindata #344
OCPBUGS-753: keep dns-default annotations intact #340
NE-929: CoreDNS Cache Tuning - Functional Implementation #335
OCPBUGS-1439: Fix TestDNSLogging race condition #341
OCPBUGS-1549: Reconcile the DNS namespace #343
OCPBUGS-1558: Bump vendored k8s libraries to 1.25 #342
NE-1066: Enable the chaos plugin for CoreDNS in order to expose CoreDNS metadata #337
DPP-10859: Update Bugzilla links to “Networking” component #333
Bug 2092041: Bump k8s to 1.24 and Golang to 1.18 #328
Bug 2095941: topology aware hints to prefer to keep dns traffic within a zone #322
Bug 2093236: propagate retry request for progressing updates #325
Bug 2061244: desiredDNSDaemonSet: Allow autoscaler to evict #320
Bug 2037190: Skip frequent updates to progressing and degraded conditions to prevent status flaps #318
NE-755: Support CoreDNS forwarding DNS requests over TLS #314
AUTH-182: manifests/deployment: comply to restricted pod security level #319
NE-815 Extract test Corefiles inside DNS ConfigMap test to individual files #315
Added gcs278 to OWNERS #312
And 3 elided commits (e.g. from squash or rebase merges)
Full changelog

cluster-ingress-operator

NE-2161: Fix Gateway API CRD metadata updates during operator upgrades #1309
OCPBUGS-64675: Fix variable shadowing in testGatewayAPIDNS e2e #1304
NE-2161: Bump Gateway API CRDs to v1.3.0 #1303
OCPBUGS-61508: IngressOperator not exposing some metrics for degraded… #1290
NE-1334: Enhancement to add operator channel when creating gatewayclass #1301
NE-1334: Enhancement to add brew and stage secrets for pre-release image testing #1291
OCPBUGS-43919: desiredWildcardDNSRecord: Check for nil LB field #1189
OCPBUGS-62400: Updating ose-cluster-ingress-operator-container image to be consistent with ART for 4.21 #1286
NE-1334: Script to install ossm pre-release operator and run GWAPI e2e tests #1283
OCPBUGS-55649: Remove SetEIPForNLBIngressController feature gate #1280
OCPBUGS-55673: Remove IngressControllerLBSubnetsAWS featuregate #1242
NO-JIRA: Add bentito (btofel@redhat.com) to OWNERS #1281
NE-2139: Kubernetes to 1.33.4 and controller-runtime to 0.21 #1279
NO-JIRA: Add davidesalerno to OWNERS #1278
OCPBUGS-60859: Fix logic on gatewayapi test cleanup #1273
OCPBUGS-53432: deflake TestIngressControllerCustomEndpoints by proper waiting for CCM to be ready #1267
OCPBUGS-59139: Increase assertExpectedDNSRecords timeouts #1271
NE-2066: Set degraded=true when OSSM 3 can’t be installed #1268
OCPBUGS-60620: e2e: Deflake tests by using ReplicaSet for test workload #1262
OCPBUGS-54966: Improve detection of missing DNSRecord for Gateway #1212
OCPBUGS-60302: e2e - Reduce flakiness in testGatewayAPIResourcesProtection #1265
NE-2096: Bump to OSSM 3.1.0 and Istio 1.26.2 #1257
NO-JIRA: Add rikatz to OWNERS #1259
OCPBUGS-59894: Update GatewayAPI test to check if deployment has 1 or more pod #1250
NE-2108: docs - correct Istio version format in ossm-overrides.md #1253
NE-2108: Add OSSM channel and version override annotations #1246
NE-2104: desiredIstio: Enable GIE if InferencePool found #1245
OCPBUGS-59839: desiredIstio: Delete trustBundleName #1243
NE-2022: Bump to OSSM 3.0.1 and Istio 1.24.4 #1227
OCPBUGS-58358: desiredIstio: Do not enable a default PDB #1240
OCPBUGS-57728: Updating ose-cluster-ingress-operator-container image to be consistent with ART for 4.20 #1236
OCPBUGS-55652: Removed PrivateHostedZoneAWS from component #1230
OCPBUGS-54745: status: Conditionally add CRDs to relatedObjects #1217
OCPBUGS-55317: Check capabilities before watching OLM resource #1232
CNTRLPLANE-112: Remove ARO HCP MIv2 Authentication for Ingress Operator #1222
CNTRLPLANE-112: Add new Azure authentication type for managed Azure HCP for cluster-ingress #1191
NE-2009: Relax pod bound validating admission rule for HyperShift #1221
NE-1969: Set Degraded=True if unmanaged Gateway API CRDs exist #1205
NE-1957: Add Gateway API DNS Feature e2e tests #1213
OCPBUGS-54650, OCPBUGS-54651, OCPBUGS-54652: desiredSubscription: Specify annotations and SCC #1214
NE-2009: Move VAP to Default featureset #1216
OCPBUGS-54568: desiredIstio: Specify priorityClassName #1211
OCPBUGS-53424: Wait for install plans to enter the “Requires Approval” phase before approving them #1203
NE-2008: Add GRPC conformance tests #1208
NE-1277: status: Add Gateway API objects to relatedObjects #933
NE-1994: Add E2E test for Istio manual deployment #1204
NE-1969: Add “v1” version to OpenShift GatewayClass controller name #1202
NE-1934: Bump to OSSM 3.0 for Gateway API support #1152
CORS-3907: Update ingress operator to with custom endpoints #1197
NE-1953: Add experimental Gateway API group to Validating Admission Policy #1200
NE-1907: Manage OSSM operator subscription manually to ensure a compatible version is installed #1112
NE-1981: Move controller test helpers to dedicated package #1199
NE-1953: Add Validating Admission Policy for Gateway API CRDs #1192
NE-1954: Implement GatewayAPIController feature gate #1198
NE-1936: Bump k8s.io dependencies to v0.32.1 #1184
OCPBUGS-31550: Gateway API - recreating SMCP which breaks Gateway API #1115
OCPBUGS-32776: Fix IBM Public Cloud DNS Provider Update Logic #1133
OCPBUGS-48780: Fix IBMCloud DNS Propagation Issues in E2E #1164
OCPBUGS-43745: Skip Test_IdleConnectionTerminationPolicyDeferred when DCM feature gate is enabled #1186
NE-1260: Add Makefile target to run Gateway API conformance tests #1176
OCPBUGS-43745: Add support for IdleCloseTerminationPolicy (Go http.Client) #1182
OCPBUGS-45585: Updating ose-cluster-ingress-operator-container image to be consistent with ART for 4.19 #1173
OCPBUGS-41892: Single Watch on GWAPI CRD #1165
NE-1790: Follow up to enable Dynamic Configuration Manager feature gate #1174
SPLAT-1722: Remove alibaba #1111
CORS-3755: AWS: Add Ingress LB IPs to Infra CR when in-cluster DNS is enabled #1167
NE-1790: Enable Dynamic Configuration Manager feature gate #1159
OSASINFRA-3642: openstack: support setting external LB floating IP #1147
HOSTEDCP-2031: Use Client Certificate Authentication for ARO HCP deployments #1151
OCPBUGS-43412: Bump to k8s.io v0.31.1 (and deps) #1156
NE-1716: Bump Gateway API to v1.0.0 and OSSM to v2.6 #1163
CFE-1134: Watch infrastructure and update AWS tags #1148
OCPBUGS-43033: e2e/ingress_dns: support both private & public #1153
OCPBUGS-37932: Always log AWS service endpoints #1137
OCPBUGS-36340: Retry IngressController and Route updates in E2E tests #1116
OCPBUGS-42004: Set the MI client ID for the ARO HCP override #1144
AUTH-482: set required-scc for openshift workloads #1031
OCPBUGS-36044: Bump IBM/go-sdk-core to v5.17.4 #1120
OCPBUGS-41527: Add tolerations to survive scheduler taint manager e2e tests on workers #1143
OCPBUGS-41112: Updating ose-cluster-ingress-operator-container image to be consistent with ART for 4.18 #1140
OCPBUGS-39151: Add Missing Scope Change Instructions #1135
OCPBUGS-38871: ingress: deployment: explicitly set DeploymentStrategy in SingleReplica case #1134
OCPBUGS-37491: Ingress operator status not degraded when canary route fails #1125
OCPBUGS-38217: Clear LB Status Parameters on LB Type Change #1126
OCPBUGS-34418: Allow router pods to use the “restricted” SCC #1064
OCPBUGS-38441: Resolve DNS Resolution CI Flakes in Subnets and EIP E2E #1127
OCPBUGS-38079: Bump controller-runtime to v0.18.4 #1122
NE-1798: API bump for promotion of eipAllocation from feature gates to GA. #1118
NE-1688: Enable Azure MSI authentication for ARO HCP #1119
NE-1674: Add LB EIP Allocation for AWS #1109
NE-1531: Fix Initialization of NLB Status Parameters #1114
NE-1531: AWS Subnet Selection #1046
NE-1273: Add a watch to the ingress operator so it will recreate the gwapi crds #1106
OCPBUGS-37627: Fix getRouteHost error handling #1110
NE-1208: Gateway API E2E Testing #1023
OCPBUGS-31664: Fix SyncLoadBalancerFailed status message of IngressController #1102
OCPBUGS-36465: Delete and recreate canary route to clear spec.host #1095
OCPBUGS-34413: Refine logging for accurate infra CR status updates #1103
OCPBUGS-35342: Add e2e test for connect timeout #1084
NO-JIRA: Add grzpiotrowski to OWNERS #1090
NO-JIRA: addowner-Thealisyed #1091
OCPBUGS-35356: Retry IngressController updates in router status E2E #1085
OCPBUGS-9037: Change Canary to use passthrough route #978
OCPBUGS-35368: Add Regexp Anchor to TestAll #1087
OCPBUGS-23221: internalServiceChanged: Fix target port logic #1052
OCPBUGS-34262: Updating ose-cluster-ingress-operator-container image to be consistent with ART for 4.17 #1067
NE-1400: Bump to OSSM 2.5 and Gateway API v0.6.2 CRDs #1018
OCPBUGS-33792: Bump openshift/library-go to resolve NewPrometheusClient E2E failures #1054
OCPBUGS-32887: Allow operator to update Route spec.subdomain #1047
OCPBUGS-32942: Bump controller-runtime to v0.17.3 #1050
OCPBUGS-28673: implement connect timeout tuning option #1035
NE-1317: manifests - add ingress capability annotation #950
OCPBUGS-32371: Bump openshift/api, and update CRD generation #1045
OCPBUGS-25193: Add vnet subnet read and join permission for azure #1029
OCPBUGS-30834: Update to go 1.21 #1040
OCPBUGS-31722: Use centos7 tag for quay.io/centos7/httpd-24-centos7 image #1037
OCPBUGS-3522: Include recent errors in canary checks fail #865
OCPBUGS-30091: TestHostNetworkPortBinding: Delete t.Parallel() #1032
CFE-987: Use RouterExternalCertificate feature gate for adding ROUTER_ENABLE_EXTERNAL_CERTIFICATE env var to the router pods #1017
CORS-2317: Add Ingress LB IPs to Infra CR and set DNS unmanaged when BYO DNS is enabled #1016
OCPBUGS-28596: Updating ose-cluster-ingress-operator-container image to be consistent with ART for 4.16 #1020
OCPBUGS-28230: add FallbackToLogsOnError for easier debugging #1019
NE-1490: update to go v1.20 #1012
OCPBUGS-15253: Include namespace in prometheus alerts IngressWithoutClassName and UnmanagedRoutes #980
CCO-249: Replace GCP role with explicit permissions #844
OCPBUGS-25006: Updating ose-cluster-ingress-operator-container image to be consistent with ART #1006
OCPBUGS-24531: Revert “ OCPBUGS-24531 Skip CI for scope change until OCPBUGS-24044 is resolved” #1011
OCPBUGS-24531: Revert “Merge pull request #1007 from candita/OCPBUGS-24531-SkipScopeChangeTest” and add changes to skip test only for Azure and GCP #1008
OCPBUGS-24531: Skip CI for scope change until OCPBUGS-24044 is resolved #1007
OCPVE-780: annotate credentials request manifests #995
OCPBUGS-23742: Bump controller-runtime to v0.16.3 #1001
NE-1402: Add service endpoint override capability to IBM DNS provider #990
OCPBUGS-16762: Revert “OCPBUGS-16762: Bump openshift/api for container.maxLength fix” #982
OCPBUGS-14994: Don’t add clientca-configmap finalizer if deleting #948
OCPBUGS-22020: Bump golang.org/x/net for CVE-2023-44487 #985
OCPBUGS-21803: test/e2e: Add test case for 2000000 maxConnections #983
OCPBUGS-20192: Require non-readonly filesystem in router container #981
OCPBUGS-16762: Bump openshift/api for container.maxLength fix #979
OCPBUGS-3541: Don’t create route metrics for ingress controllers that are not admitted #869
OCPBUGS-18248: Prevent GatewayClass from getting recreated #975
OCPBUGS-19268: Updating ose-cluster-ingress-operator images to be consistent with ART #977
OCPBUGS-15900: TestMTLSWithCRLs: only try to parse HTTP status code from curl output when stdout is long enough. #973
OCPBUGS-3356: E2E test for cookie length truncation #871
OCPBUGS-15978: Check public DNS zone when reporting status #967
OCPBUGS-17359: test/e2e: Don’t use openshift/origin-node #970
NE-1140, NE-1145: Set/delete HTTP request/response headers via IngressController API #872
OCPBUGS-16089: Set spec.subdomain on the canary route #965
OCPBUGS-14995: desiredRouterDeployment: Set HostPort if needed #947
OCPBUGS-10875: gateway-service-dns: Set DNS policy appropriately #934
NE-1244: Use permissions instead of the “Contributor” role in Azure CredentialsRequest #929
OCPBUGS-12790: README: Fix Bugzilla link #968
RFE-3007: Expose option-contstats as an unsupported option #887
NE-1189: Refactor Test_desiredLoadBalancerService #886
NE-1187: Use t.Run for table-driven tests #884
NE-1183: Rename unit tests for specific functions #880
NE-1269: Replace bindata using embed #905
RFE-3765: Allow Ingress to Modify the HAProxy Log Length when using a Sidecar #900
OCPBUGS-9274: canary: Tolerate infra node NoExecute taint #932
OCPBUGS-7546: Allow only 1 disruption with 3 replicas #931
OCPBUGS-15100: Fix previous attempt of adding a missing trailing dot to hostname #956
OCPBUGS-14396: Set controller-runtime logger to a null logger for E2E #946
OCPBUGS-14998: Only use RoleARN for Route53 API #951
OCPBUGS-15100: Create valid DNS names for Gateway API on GCP #949
OCPBUGS-13106: Add ingress controller status logging on waitForIngressControllerCondition #924
OCPBUGS-13190: Avoid spurious updates for internalTrafficPolicy #927
OCPBUGS-13810: Update TestAWSELBConnectionIdleTimeout to not use wildcard DNS record #944
NE-1294: Add support for AWS shared VPC in another account #928
CCO-318: Enable Azure Workload Identity authentication. #906
OCPBUGS-6661, OCPBUGS-9464: Move mTLS CRL handling into the router, and fix accidental duplication of CRLs #939
OCPBUGS-13963: Bump vendors k8s libraries to 0.27.2 #936
Revert “OCPBUGS-6661, OCPBUGS-9464: Move mTLS CRL handling into the router, and fix accidental duplication of CRLs” #938
OCPBUGS-6661, OCPBUGS-9464: Move mTLS CRL handling into the router, and fix accidental duplication of CRLs #930
OCPBUGS-5478: add UBI based Dockerfile #925
CCO-318: Read feature gates for future usage #908
OCPBUGS-12913: Deflake TestRouterCompressionOperation #920
OCPBUGS-6784: bump controller-runtime to fix the multi namespace cache indexing #913
OCPBUGS-12579: Address CVE-2022-41723 #915
OCPBUGS-12790: Replace Bugzilla link with Red Hat Issue Tracker #916
OCPBUGS-10714: gatewayclass: Update for OSSM 2.4 API change #901
OCPBUGS-10189: Updating ose-cluster-ingress-operator images to be consistent with ART #898
OCPBUGS-10846: Fix TestClientTLS flakes #904
NE-1184: Test_desiredHttpErrorCodeConfigMap: Kill dead code and fix format #881
OCPBUGS-4054: configurable-route: Don’t use NewKindWithCache #860
NE-1186: Test_getRR: Fix typo: “excepted” → “expected” #883
CORS-2467: dns: azure: use azidentity with an adapter #846
NE-1105: Add support for Gateway API #890
OCPBUGS-7424: Bump vendored k8s libraries to 1.26.1 #888
CFE-679: Add user defined tags to the created DNS resources #874
OCPBUGS-6247: Updating ose-cluster-ingress-operator images to be consistent with ART #862
CORS-2072: GCP - Parse Zone ID with a project ID embedded #855
NE-1092: Add proxy protocol support for IBMCloud loadbalancers #812
OCPBUGS-6384: Address CVE-2022-41717 #876
OCPBUGS-4827: Add missing AWS permission for ListTagsForResources #868
OCPBUGS-6701: Avoid spurious updates for scope in IngressClass #879
OCPBUGS-6698: Fix conflict error message in ensureNodePortService #877
OCPBUGS-6700: updateIngressClass: Fix log message #878
NE-1124: Add support for External platform to CIO #873
OCPBUGS-4573: Target metrics port by name in internal service #864
OCPBUGS-434: Absorb PodsScheduled condition into MinAvailable #854
OCPBUGS-4759: Do not manage DNS for an ingresscontroller with domain mismatch in GCP #866
OCPBUGS-4703: Replace liveness-grace-period-seconds annotation #863
OCPBUGS-3404: Bump openshift/api for matchExpressions doc fix #856
OPNET-133: Support remote worker #858
OCPBUGS-1725: Ingress controller should not have affinity policy in single-replica clusters #810
OCPBUGS-1807: Fix bad handleSingleNode4Dot11Upgrade log message #808
OCPBUGS-2775: Changed “name” label to “shard_name” of route_metrics_controller_routes_per_shard metric #851
OCPBUGS-2848: Support matchExpressions selectors with route metrics #850
Bug 2117524: Update CRLs when they expire #828
OCPBUGS-853: certificate-publisher: Don’t publish extraneous certificates #824
Bug 1962502: Add alerts for unmanaged Routes and Ingresses without IngressClassName #823
NE-1071: Default HAProxy maxconn value to 50000 for OCP 4.12) #836
Updating ose-cluster-ingress-operator images to be consistent with ART #834
OCPBUGS-2435: TestRouterCompressionOperation: Nil-pointer fix #843
OCPBUGS-2493: Fix TestUnmanagedDNSToManagedDNSInternal E2E test race conditions #845
CFE-478: Added support for exporting Route type and Routes per Shard metrics #779
NE-975: Use ingress config to set default LB type on AWS #837
OCPBUGS-2429: Fix TestReloadInterval min value test cases and race conditions #842
OCPBUGS-2334: Added nil check for service object on load balancer scope change #839
NE-956: Configurable LB Source Ranges - Functional Implementation #817
Bug 2107462: Update CGO_ENABLED=1 #833
OCPBUGS-236: Bump openshift/api for reloadInterval fix #830
OCPBUGS-1554: Bump vendored k8s libraries to 1.25 #829
Enable switching of AWS CLB to NLB without deletion of IngressController object. #790
Bug 2066560: Make ingress clusteroperator progressing=true when router deployment is rolling out #769
Add IBM Cloud DNS support for Power VS #819
OCPBUGS-1049: test/e2e: Fix TestCanaryRoute security context #826
Bug 2089482: Do not use deprecated API field InfrastructureStatus.Platform #814
NE-969: Add IBM DNS Services provider support for private clusters #796
DPP-10860: Update Bugzilla links to “Networking” component #815
OCPBUGS-368: Fix e2e tests for pod security violations #818
NE-979: add ReloadInterval TuningOption #805
Bug 2101878: Fix another issue with route status clearing race condition caused by not validating generation id #811
Bug 2108708: Disable auto creation of default ingress contoller for hypershift #797
Bug 2101878: Fix route status clearing race condition caused by using the cache #794
Bug 2106086: Bump openshift/api for healthCheckInterval fix #804
Bug 2104481: Allow PROXY protocol for the “Private” endpoint publishing strategy #803
add Ethany-RH to OWNERS #800
Bug 2086887: Add better debug logging to TestIngressOperatorCacheIsNotGlobal to help debug flakes #793
Bug 2093462: status: Watch clusteroperators #714
Bug 2092042: Bump vendored k8s libraries to 1.24 #768
Bug 1944851: Clear route status when an ingress controller is deleted or a route is un-admitted #724
Bug 2094932: Patching config.ingresses status requires patch permissions #788
Bug 2097555: Fix loadBalancerServiceAnnotationsChanged check and update #783
Bug 2094932: Ingress operator needs permission to list nodes #785
Bug 2095229: desiredRouterDeployment: Check for nil hostNetwork #780
Bug 2094962: Fix flakey logic in haproxy timeout tests #775
Bug 2094932: MGMT-10403: Set the defaultPlacement for none-platform SNO clusters installed before 4.11 #767
Bug 2075671: Add a e2e test that verifies the ingress operator’s cache doesn’t include everything #764
Bug 2055601: Add cluster tag to *.apps domain record #737
Bug 2080379: Group all e2e tests as parallel or serial #756
Bug 2082428: Add MicroSecond processing #762
NE-408: Allow configuring ELB connection idle timeout #451
NE-825: Update router to use random balancing algorithm once again #727
Bug 2084433: AUTH-133: assets: comply to pod security #760
NE-577: Support a Configurable ROUTER_MAX_CONNECTIONS in HAproxy #735
Add support for route53 in the us-isob-east-1 region + fix #754
AUTH-184: manifests/deployment: comply to restricted pod security level #749
Bug 2081447: desiredRouterDeployment: Fix for port defaulting #753
Bug 2079468: Enhance the waitForIngressControllerCondition for better CI results #745
NE-882: Set ROUTER_DOMAIN to enable route subdomain field #674
Specify host port for host networking strategy #694
Bug 2007246: Add allowPrivilegeEscalation to the router container #743
MGMT-9797: Determine number of replicas according to DefaultPlacement #728
Bug 2076193: Remove special-casing for default ingresscontroller probe parameters #742
NE-585: Make ROUTER_BACKEND_CHECK_INTERVAL configurable #712
BUG 2076984: test/e2e: add resilience to RBAC test teardown #744
BUG 2054200: Fix removing custom created service in openshift-ingress with same name #707
Add Nutanix platform #730
Revert “Bug 2007246: Ingress Controller does not set allowPrivilegeEscalation in the router deployment” #741
Bug 2075671: Fix k8s client cache object global inclusion and duplication. #740
NE-781: Allow users to tune kubelet probe timeouts #736
Bug 2072106: Fix test Errorf limitation in go 1.18 #733
Bug 2071139: add pod eviction permission #734
Bug 2071139: delete default ingress pod if it is scheduled where another router pod already is #720
Bug 2069457: Delete LoadBalancer-type service finalizer logic #729
Bug 2021446: Set canary status as unknown if not admitted to default ingress controller #723
Bug 2066444: update relatedObjects for clusteroperator status #721
Bug 2007246: Ingress Controller does not set allowPrivilegeEscalation in the router deployment #718
Bug 1995953: Add unit test for verifying router deployment env is always sorted #715
Bug 2057762: Set Upgradeable=False if default cert has no SAN #708
Bug 2055470: Normalize the AWS internal LB annotation value #704
BUG 2037447: Disable keepalive for canary probe #701
pkg/operator/controller/ingress/status_test: Fix ...-tag -> ...-tags test-case description #700
Added gcs278 to OWNERS #698
And 7 elided commits (e.g. from squash or rebase merges)
Full changelog

cluster-machine-approver

OCPCLOUD-3082: K8s 1.34 bump and update dependencies #282
OCPBUGS-63519: port 9193 need to be internal and port 9194 need to have a service #279
OCPBUGS-62583: NO-JIRA: Updating ose-cluster-machine-approver-container image to be consistent with ART for 4.21 #277
NO-JIRA: Update OWNERS #276
NO-JIRA: set machine-approver-controller as default container #278
NO-JIRA: Fix some lints and nits #273
OCPCLOUD-2939: Bump k8s 1.33 #272
NO-JIRA: Update OWNERS #274
OCPBUGS-57610: Updating ose-cluster-machine-approver-container image to be consistent with ART for 4.20 #271
OCPBUGS-19856: Improve log message when searching for node by InternalDNS #269
No-Jira: ignore test file csr_check_test.go #270
OCPCLOUD-2832: Bump k8s 1.32 #268
OCPBUGS-48056: Fix race condition in CO status controller test #264
OCPCLOUD-2787: Deploy CAPI manifests in CustomNoUpgrade #262
OCPBUGS-36404: Filter CSRs by signerName #243
OCPBUGS-45434: Updating ose-cluster-machine-approver-container image to be consistent with ART for 4.19 #247
OCPBUGS-45306: Ensure trailing dots on DNS names do not block serving cert auth #253
OCPBUGS-45306: Client internal DNS checks should ignore trailing dot #248
OCPCLOUD-2736: Update to k8s 1.31 #240
OCPCLOUD-2703: OWNERS: update subcomponent #239
OCPBUGS-39526: Updating ose-cluster-machine-approver-container image to be consistent with ART for 4.18 #238
OCPBUGS-36871: Client internal DNS checks should be case insensitive #237
NO-JIRA: Update OWNERS #236
OCPCLOUD-2602: Update dependencies to Kube 1.30 #235
OCPBUGS-34138: Updating ose-cluster-machine-approver-container image to be consistent with ART for 4.17 #232
OCPBUGS-33644: check for machine crd before listing machines #231
OCPBUGS-29568: Apply hypershift cluster-profile for ibm-cloud-managed #229
OCPBUGS-28230: add FallbackToLogsOnError for easier debugging #227
OCPBUGS-26116: Add Snyk file to exclude vendor directory on scan #225
OCPCLOUD-2417: Update to kube 1.29 and controller-runtime 0.17.0 #224
OCPBUGS-23544: Increase concurrent reconciles to 10 #222
OCPBUGS-25582: Updating ose-cluster-machine-approver-container image to be consistent with ART #223
OCPBUGS-24985: Updating ose-cluster-machine-approver-container image to be consistent with ART #218
OCPBUGS-24154: Updating ose-cluster-machine-approver-container image to be consistent with ART #217
OCPCLOUD-2277: Ensure Cluster Machine Approver metrics are only available via HTTPS #211
OCPBUGS-21594: Filter non node CSRs in metrics #208
OCPBUGS-21793: Bump x/net package to v0.17.0 #204
Update OWNERS #205
OCPBUGS-19250: Updating ose-cluster-machine-approver images to be consistent with ART #201
OCPCLOUD-2181: Update K8s dependencies to 1.28 #203
OCPBUGS-17090: Set logger for controller runtime #200
OCPBUGS-18338: Fix CI by running tests natively by default #199
OCPBUGS-16156: check if machine api present #198
handle situation when machine CRD is not present #191
OCPCLOUD-2044: Update to Kubernetes 1.27 deps #195
OCPBUGS-10171: Go 1.20 bump with fixed unit tests #194
OCPBUGS-11225: Update node client allowed usages #189
OCPBUGS-11225: Update isNodeClientCert to allow for new key usages #186
OCPBUGS-11225: approver: fix ECDSA approvals in 1.27 #184
Update TLS Bootstrapping doc links in README #182
Updating ose-cluster-machine-approver images to be consistent with ART #180
Update OWNERS #179
: Update tooling for CMA #178
OCPCLOUD-1805: Port to ginkgo v2 #176
Updating ose-cluster-machine-approver images to be consistent with ART #174
Update OWNERS #177
OCPBUGS-2621: Update capi related CMA deployment ports #173
OCPBUGS-1411: Bump k8s dependencies to 1.25 #171
update to release.openshift.io/feature-set to match OCP 4.12 #172
ignore case when checking csr hostnames #170
Bug 2087039: update dependencies to K8s 1.24, go 1.18 #165
Set default container for log retrieval #163
Define all flags before parsing flags #161
Bug 2047702: Reconcile CSRs approved by other controllers #160
Add techpreview manifests for CAPI machines #159
Bug 1978303: update approve condition logic #158
Allow to define several API groups #157
Shrink csr_check_test.go size #155
Make ‘reject_expired’ tests works in any time zone #154
README.md: Elaborate a bit more on node join #150
Updating ose-cluster-machine-approver images to be consistent with ART #153
Full changelog

console

OCPBUGS-23310: add support for new features annotations while preserv… #13332
Full changelog

driver-toolkit

OCPBUGS-1: Jira integration test PR 3 #92
Updating the documentation on how to use DTK as a multi-stage image. #80
Remove all kmods-via-containers references and dependencies #79
Removing the ‘make buildprep’ from README.md. #78
OCPBUGS-1: Jira integration test PR 2 #77
Updating README.md. #76
OCPBUGS-1 Jira integration test PR #75
Updating driver-toolkit images to be consistent with ART #73
Bumping KVC to the last available commit. #74
And 58 elided commits (e.g. from squash or rebase merges)
Full changelog

hyperkube, pod

OCPBUGS-20111: UPSTREAM: <carry>: Do not allow nodes to set forbidden openshift labels #1749
Full changelog

image-customization-controller

OCPBUGS-21766: Watch networkData Secrets for changes #102
Full changelog

keepalived-ipfailover

OCPBUGS-62497: Updating openshift-enterprise-keepalived-ipfailover-container image to be consistent with ART for 4.21 #215
Updating openshift-enterprise-egress-dns-proxy-container image to be consistent with ART for 4.21 #214
Updating openshift-enterprise-base-rhel9-container image to be consistent with ART for 4.21 #213
OCPBUGS-57842: Updating openshift-enterprise-keepalived-ipfailover-container image to be consistent with ART for 4.20 #211
OCPBUGS-57831: Updating ose-egress-http-proxy-container image to be consistent with ART for 4.20 #210
OCPBUGS-57624: Updating openshift-enterprise-egress-router-container image to be consistent with ART for 4.20 #209
OCPBUGS-57572: Updating openshift-enterprise-egress-dns-proxy-container image to be consistent with ART for 4.20 #208
OCPBUGS-57510: Updating openshift-enterprise-base-rhel9-container image to be consistent with ART for 4.20 #207
OCPBUGS-48318: Change default value for OPENSHIFT_HA_VRRP_ID_OFFSET #206
OCPBUGS-45700: Updating openshift-enterprise-keepalived-ipfailover-container image to be consistent with ART for 4.19 #205
OCPBUGS-45831: Updating ose-egress-http-proxy-container image to be consistent with ART for 4.19 #204
OCPBUGS-45405: Updating openshift-enterprise-egress-dns-proxy-container image to be consistent with ART for 4.19 #201
NE-1908: Add instructions for keepalived-ipfailover image testing #198
OCPBUGS-45452: Updating openshift-enterprise-egress-router-container image to be consistent with ART for 4.19 #202
NO-JIRA: egress: update OWNERS #203
OCPBUGS-45342: Updating openshift-enterprise-base-rhel9-container image to be consistent with ART for 4.19 #200
OCPBUGS-33629: Only set the instancetype to master if the preempt strategy is not nopreempt. #197
OCPBUGS-39480: Updating openshift-enterprise-egress-dns-proxy-container image to be consistent with ART for 4.18 #193
OCPBUGS-41231: Updating openshift-enterprise-keepalived-ipfailover-container image to be consistent with ART for 4.18 #196
OCPBUGS-41213: Updating ose-egress-http-proxy-container image to be consistent with ART for 4.18 #195
OCPBUGS-39544: Updating openshift-enterprise-egress-router-container image to be consistent with ART for 4.18 #194
OCPBUGS-38285: Updating openshift-enterprise-base-rhel9-container image to be consistent with ART for 4.18 #191
OCPBUGS-38286: Updating openshift-enterprise-base-container image to be consistent with ART for 4.18 #192
OCPBUGS-34348: Updating openshift-enterprise-keepalived-ipfailover-container image to be consistent with ART for 4.17 #186
OKD-219: add util-linux to base image #187
OCPBUGS-34152: Updating openshift-enterprise-egress-router-container image to be consistent with ART for 4.17 #184
OCPBUGS-34338: Updating ose-egress-http-proxy-container image to be consistent with ART for 4.17 #185
OCPBUGS-34103: Updating openshift-enterprise-egress-dns-proxy-container image to be consistent with ART for 4.17 #183
OCPBUGS-33909: Updating openshift-enterprise-base-container image to be consistent with ART for 4.17 #182
OCPBUGS-33908: Updating openshift-enterprise-base-rhel9-container image to be consistent with ART for 4.17 #181
OKD-40: Revert #179 #180
OKD-40: Remove centos-openstack-zed and add in rdo repo to get python-cinderclient dependency #179
Add dnf-plugins-core in scos to help with OCP image compat #178
OKD-210: Add sig-cloud repository and enable rt repository #177
OKD-210: Add the sig-nfv repo in the CS9 base #176
OCPBUGS-24850: Bump OpenShift 4.16, RHEL9, and iptables package #175
OCPBUGS-24990: Updating openshift-enterprise-keepalived-ipfailover-container image to be consistent with ART #159
OCPBUGS-24800: Updating ose-egress-http-proxy-container image to be consistent with ART #156
NO-ISSUE: Add Scott and Mrunal as image approvers #170
NO-ISSUE: remove bparees from owners #169
OCPBUGS-29484: update unit tests in egress/dns-proxy #165
NE-1444: egress/dns-proxy: switch to haproxy28 RPM package #160
OCPBUGS-24861: Updating openshift-enterprise-egress-dns-proxy-container image to be consistent with ART #158
OCPBUGS-24751: Updating openshift-enterprise-base-rhel9-container image to be consistent with ART #155
OCPBUGS-24723: Updating openshift-enterprise-base-container image to be consistent with ART #154
OCPBUGS-19261: Updating openshift-enterprise-egress-dns-proxy images to be consistent with ART #153
OCPBUGS-19107: Updating ose-egress-http-proxy images to be consistent with ART #150
OCPBUGS-19239: Updating openshift-enterprise-egress-router images to be consistent with ART #151
OCPBUGS-18860: Updating openshift-enterprise-base-rhel9 images to be consistent with ART #149
OCPBUGS-18853: Updating openshift-enterprise-base images to be consistent with ART #148
OCPBUGS-10176: 15143307: Updating openshift-enterprise-keepalived-ipfailover images to be consistent with ART #132
OCPBUGS-10163: Updating openshift-enterprise-egress-router images to be consistent with ART #131
OCPBUGS-10181: 15143312: Updating openshift-enterprise-egress-dns-proxy images to be consistent with ART #133
NE-1304: container builds: switch to haproxy26 package #141
OCPBUGS-11385: Removed chroot setting #137
egress: update owners #139
OCPBUGS-11595: Revert “[NE-1267] container builds: switch to haproxy26 package” #138
egress/dns-proxy/Dockerfile: switch to haproxy26 package #136
OCPBUGS-10003: Revert “bump RHEL8 egress-dns-proxy image to haproxy26” #134
Updating ose-egress-http-proxy images to be consistent with ART #130
Updating openshift-enterprise-base-rhel9 images to be consistent with ART #129
Updating openshift-enterprise-base images to be consistent with ART #128
Add jupierce as approver / remove Clayton #127
rhel9 base image: Fix build failure #126
Dockerfile: add RHEL9 base image dockerfile #124
bump RHEL8 egress-dns-proxy image to haproxy26 #125
Updating openshift-enterprise-keepalived-ipfailover images to be consistent with ART #122
Updating ose-egress-http-proxy images to be consistent with ART #120
Updating openshift-enterprise-egress-dns-proxy images to be consistent with ART #123
Updating openshift-enterprise-base images to be consistent with ART #119
Updating openshift-enterprise-egress-dns-proxy images to be consistent with ART #117
Updating openshift-enterprise-keepalived-ipfailover images to be consistent with ART #116
Add bparees as approver #118
Updating openshift-enterprise-base images to be consistent with ART #113
Updating ose-egress-http-proxy images to be consistent with ART #105
Updating openshift-enterprise-egress-dns-proxy images to be consistent with ART #108
Updating openshift-enterprise-egress-router images to be consistent with ART #106
Bug 2062126: ipfailover: Autodetect the “ens3” NIC #111
Updating openshift-enterprise-base images to be consistent with ART #109
Bug 2018188: VRRP ID conflict between keepalived-ipfailover and cluster VIPs #104
Updating openshift-enterprise-keepalived-ipfailover images to be consistent with ART #107
And 1 elided commits (e.g. from squash or rebase merges)
Full changelog

machine-os-images

OCPBUGS-61477: Write sha checksum file to /coreos #71
OCPBUGS-61477: Provide SHA checksum for aarch64 iso #70
OCPBUGS-61477: Acquire aarch64 ISO at runtime #67
OCPBUGS-56049: Force rebuild for OCP 4.21 #66
OCPBUGS-62596: Updating ose-machine-os-images-container image to be consistent with ART for 4.21 #69
METAL-1509: Add aarch64 images #65
OCPBUGS-57659: Updating ose-machine-os-images-container image to be consistent with ART for 4.20 #64
OCPBUGS-55810: Dummy change to force a rebuild for 4.20 #62
NO-JIRA: Change to new host #54
OCPBUGS-50910: Decompress pxe file only if it’s a valid compressed file #51
OCPBUGS-44889: Allow external configuration of download host for production builds #46
NO-ISSUE: Update OWNERS #49
OCPBUGS-45474: Updating ose-machine-os-images-container image to be consistent with ART for 4.19 #48
NO-ISSUE: Fix shellcheck #45
NO-ISSUE: Fix shellcheck complaints #44
OCPBUGS-43991: Properly escape KERNEL_ARGS #43
OCPBUGS-39570: Updating ose-machine-os-images-container image to be consistent with ART for 4.18 #40
OCPBUGS-42621: Add missing space before square bracket #42
OCPBUGS-35895: Enable fips in iso kernel options on fips systems #39
OCPBUGS-34177: Updating ose-machine-os-images-container image to be consistent with ART for 4.17 #38
CORS-2797: Image to rhel9 #36
OCPBUGS-24816: Updating ose-machine-os-images-container image to be consistent with ART #34
NO-ISSUE: Dummy change to force bumping fcos image to 39.20231101.3.0 #33
NO-ISSUE: Force updating 4.15 CI images #32
OCPBUGS-19133: Updating ose-machine-os-images images to be consistent with ART #30
Fix condition check for logging #29
Force updating main rhcos image to version 414.92.202303281555-0 #28
Updating ose-machine-os-images images to be consistent with ART #26
Updating ose-machine-os-images images to be consistent with ART #25
Updating ose-machine-os-images images to be consistent with ART #20
OCPBUGS-884: Update rhcos release browser url #21
Bug 2090017: Get rid of lookaside cache in OCP build #15
Revert .ci-operator.yaml #16
Updating ose-machine-os-images images to be consistent with ART #11
Bug 2075024: Remove destination coreos if it exists #13
uncompress arm64 vmlinuz for pxe booting #12
Full changelog

multus-route-override-cni

NP-1041: Update owners #57
OCPBUGS-28557: Updating ose-multus-route-override-cni-container image to be consistent with ART for 4.16 #54
OCPBUGS-24721: Updating ose-multus-route-override-cni-container image to be consistent with ART #53
OCPBUGS-24721: Updating ose-multus-route-override-cni-container image to be consistent with ART #52
OCPBUGS-24721: Updating ose-multus-route-override-cni-container image to be consistent with ART #51
OCPBUGS-18848: Updating ose-multus-route-override-cni images to be consistent with ART #48
15393552: Updating ose-multus-route-override-cni images to be consistent with ART #47
15393552: Updating ose-multus-route-override-cni images to be consistent with ART #45
Revert ART changes to fix rhel9 base binary #44
Updating ose-multus-route-override-cni images to be consistent with ART #43
Fix Dockerfile to use rhel9 #42
Updating ose-multus-route-override-cni images to be consistent with ART #41
Add rhel9 binary #40
Updating ose-multus-route-override-cni images to be consistent with ART #36
Updating ose-multus-route-override-cni images to be consistent with ART #35
Updating ose-multus-route-override-cni images to be consistent with ART #34
Updating ose-multus-route-override-cni images to be consistent with ART #33
Dev/sync upstream #30
Updating ose-multus-route-override-cni images to be consistent with ART #28
Updating ose-multus-route-override-cni images to be consistent with ART #25
Updating ose-multus-route-override-cni images to be consistent with ART #21
Full changelog

operator-marketplace

Updating marketplace-operator images to be consistent with ART #536
Full changelog

powervs-machine-controllers

OCPBUGS-24726: snyk code scan exclude vendor directory #61
Full changelog

View changelog in Markdown or change previous release:

Source code for this page located on github