Back to index

Download the installer for your operating system or run

oc adm release extract --tools quay.io/openshift-release-dev/ocp-release:4.7.56-x86_64

Team Approvals:

Tests:

• Blocking jobs
  • upgrade Succeeded release-openshift-origin-installer-e2e-aws-upgrade
  • upgrade-minor Succeeded release-openshift-origin-installer-e2e-aws-upgrade
• Informing jobs
  • aws Succeeded periodic-ci-openshift-release-master-nightly-4.7-e2e-aws
  • aws-serial Succeeded periodic-ci-openshift-release-master-nightly-4.7-e2e-aws-serial

Upgrades from:

• 4.7.55 (changes) - Success Success
• 4.7.54 (changes) - Success
• 4.7.53 (changes) - Success
• 4.7.52 (changes) - Success
• 4.7.51 (changes) - Success
• 4.7.41 (changes) - Success
• 4.7.32 (changes) - Success
• 4.7.22 (changes) - Failed
• 4.7.13 (changes) - Failed
• 4.7.4 (changes) - Success
• 4.7.3 (changes) - Failed
• 4.7.2 - Success
• 4.7.1 (changes) - Success
• 4.7.0 (changes) - Failed
• 4.6.60 (changes) - Success Success
• 4.6.59 (changes) - Success
• 4.6.58 (changes) - Success
• 4.6.57 (changes) - Success
• 4.6.56 (changes) - Success
• 4.6.50 (changes) - Success
• 4.6.45 (changes) - Failed
• 4.6.40 (changes) - Success
• 4.6.35 (changes) - Failed
• 4.6.30 (changes) - Failed
• 4.6.28 (changes) - Success
• 4.6.27 (changes) - Failed
• 4.6.26 (changes) - Success
• 4.6.25 (changes) - Failed
• 4.6.24 (changes) - Failed

Upgrades to:

• 4.8.52 (changes) - Success
• 4.8.51 (changes) - Failed
• 4.8.50 (changes) - Success
• 4.8.49 (changes) - Failed
• 4.8.48 (changes) - Success Failed
• 4.7.60 (changes) - Success
• 4.7.59 (changes) - Success
• 4.7.58 (changes) - Success
• 4.7.57 (changes) - S S F S F S S

---

Loading changelog, this may take a while ...

Changes from 4.7.2

Created: 2022-08-12 13:33:02 +0000 UTC

Image Digest: sha256:6232cf97cb029a4307450580483aa3e1601aa65066f5b7a856d3ec125b3c9b55

Release 4.7.56 was created from registry.ci.openshift.org/ocp/release:4.7.0-0.nightly-2022-08-11-164733

Components

• Kubernetes upgraded from 1.20.0-beta.2 to 1.20.15
• Red Hat Enterprise Linux CoreOS upgraded from 47.83.202103051045-0 to 47.84.202208101558-0 (diff)

New images

• driver-toolkit git bcd11a1f sha256:f9887ef32aa05b80db9956b8d04593ebaa8e4e2d88b1132bcf5786ecc27025fc

Rebuilt images without code change

• aws-ebs-csi-driver git f6a71bf7 sha256:b9ed84a563574b83dd7d51a93b69afd6eee8c564b171b69250602756e5250a85
• cluster-bootstrap git 6665cae3 sha256:d846506cee682baee7105c4cc0222c09c76ca75033269b3e9031c76405649af1
• coredns git d4a3ba3f sha256:aca4d312e56edc175b6b37c5e57074603e8d905240861287cde6fc33343ce1b5
• csi-driver-nfs git 9404d343 sha256:99d0448248ee71a46dc3028e18279d3fd72d663dbccf82ccd581d9f80e2aa13c
• csi-external-attacher git f152de8a sha256:5f9c523453786b5645f3272c2a1ed0b0bb11e11a02c5c02258c7f0b7fda1a5d4
• csi-external-provisioner git a49415e1 sha256:96ed07c1e982eae618a35cc147162aefa2a54c8865d684b703780b6e3ce2e26f
• csi-external-resizer git f77279e9 sha256:b881260fc8f65abbca9563d14f1d44a3675a7a3471da60e26c9ef9ee47835513
• csi-external-snapshotter git 26773735 sha256:976fcec512a6d0e54d0c8412a91f91ed158521f93d1f8c353ca9a0d6b036cb3a
• csi-livenessprobe git 3dad0280 sha256:f2a84343da6ba3a9a838daf26d0cf841513ee08016b77d3c962ff7f738f33b39
• csi-node-driver-registrar git 2a77963e sha256:03f6495dff62ca8706256f927e801f1b05408d92eb9c55bf9a4ac42f47d5b3ec
• csi-snapshot-controller git 26773735 sha256:653dd273210d144c4fa60fe3746ae70bd3b79bb009f26f4a6bca0af41f7e85d2
• csi-snapshot-validation-webhook git 26773735 sha256:bdd9f6d70a38c64b749d5f9a34d7857f9c2ebca879f2a772d46a485e6c323f41
• egress-router-cni git 96ebd378 sha256:f71bf0b8d3d636fddd980630a57fa403428750837c605811964c02ca63b8981a
• ironic-static-ip-manager git 43d640a0 sha256:3279e818d9a62b6eb6c6c12c9594bd30375d87071b5d97616338a58246f5c8c8
• k8s-prometheus-adapter git 212d80b4 sha256:3889675386cd6988ad2f737d98b45fb48fbb1f346f04d69ddd9ce35d56a9382b
• keepalived-ipfailover git 0e45f638 sha256:2ad8ffe3c9e0a6c70349a0c67df01fe23469a987f504b51dcec1bda7e8d24016
• kube-rbac-proxy git 14c288e6 sha256:1f59952e388e8efb391669b626bd2b391af8ddb018d27ab36bdd883b96fa83c9
• kube-state-metrics git 04bff708 sha256:f79193395952adffbc2268403da7241026ffc4dbbc051cfbc1c2b4a912484836
• machine-os-content sha256:b3e8a34995b2f0dababd9c2549fde6f4b6b400722b3817e9a705a9a7a457530b
• multus-route-override-cni git 1662c3ec sha256:507382976401b8b24c3d5500d36ea69b5d1e70553c74b93db29c4e729efe0866
• openshift-state-metrics git 40b0968e sha256:e84f68a111c98d138f5bf5fbbad6526f7d1e2387e24b783133e6badcaeb7da05
• ovirt-csi-driver git 72545e63 sha256:c4d36f66344c7d11e6f88682196e2f02c175892411fee1e1f9d8dcddd8f8c3fc
• pod git 0e45f638 sha256:c040a7c86911b8a70e648a6e4b293fd09869c7c15617408f07e75377839dd29d
• prometheus git cb5e53cd sha256:f92b4aff5821b3a88d6c3d7e5acf7c08e9821a39d4fbe9d70b34a5f4da9e154a
• prometheus-alertmanager git 9954cc42 sha256:f895b6930aaa4fbab97997a6fe51271c636379994eb698c58b4e83732f5aae43
• prometheus-config-reloader git 1f0fd51d sha256:5164f48bdd0da774e0f7db5ec933f7b2cedc63ab6583d392df51223f9adb5644
• prometheus-node-exporter git 76974e2e sha256:611d9fbab367263d58f2ee59b384b28078445fd12f14a6e897332ee6ec2beb40
• prometheus-operator git 1f0fd51d sha256:a0ca33a3452f08eeee216ff3bc4792cfd7f7133676a06d56763681749e2e6083

aws-ebs-csi-driver-operator

• Bug 1996070: Add maxUnavailable to DaemonSets #135
• Full changelog

aws-machine-controllers

• Bug 1976192: update aws-sdk-go to v1.38.25 #415
• Bug 1942966: Update EC2 instance types #398
• Updating ose-aws-machine-controllers builder & base images to be consistent with ART #373
• Bug 1924471: Bump dependencies to Kubernetes 1.20.6 to mitigate CVE-2021-3121 #409
• Bug 1952614: [OCPCLOUD-1115] Get instance tags from infrastructure object #405
• Bug 1935636: Ensure response body is closed when we are finished with the request #391
• Full changelog

aws-pod-identity-webhook

• Bug 2046237: update go.mod for go1.15 #149
• Full changelog

azure-machine-controllers

• Bug 2057559: Requeue create on invalid credentials errors #254
• And 6 elided commits (e.g. from squash or rebase merges)
• Full changelog

baremetal-installer, installer, installer-artifacts

• Bug 2007087: bump RHCOS 4.7 boot images #6012
• Bug 2066406: OpenStack+Kuryr: Fix cluster destroy with BYON #5754
• Bug 1973367: baremetal: pass IP_OPTIONS to os downloader #5013
• Bug 1928761: Validation of platform.openstack.machineSubnet #5434
• Bug 1964753: Bump RHCOS 4.7 boot image #5229
• Update OWNERS #5243
• Bug 1980866: [4.7] Prefer IPv6 hostIP on bootstrap IPv6 deployments #5067
• Bug 1981553: [release-4.7] aws: move elastic ip permissions to create networking category #5055
• Bug 1954595: Validate noProxy input and add prefix for proxy urls #5060
• OWNERS: add more core team members as approvers #5123
• Bug 1977481: Dockerfile: repin libvirt #5043
• Bug 1975819: upi/vsphere: Use Afterburn guestinfo for static IP and hostname config #5025
• Bug 1974282: gather: collect networking information in log bundle #5017
• Bug 1971163: Updating AWS instance types #4992
• Bug 1945467: aws: allow use of unknown regions in known partitions #4807
• Bug 1938426: Set default values to machine pools before validation #4750
• Bug 1967355: pattern removed from sed to prevent expansion #4975
• Bug 1956483: Bump boot images for RHCOS fixes #4961
• Bug 1947427: add proxy params to bootstrap ignition #4830
• Bug 1939014: generate glance url considering the region #4753
• Bug 1947216: pkg/asset/installconfig/aws: Add iam permission for destorying clusters #4827
• Bug 1948398: remove ovirt_cafile from ovirt-credentials secret #4842
• Bug 1962435: aws: using dotted domain when looking for public hosted zone #4948
• Bug 1940275: Revert “baremetal: send full ignition to masters” #4767
• Bug 1943500: Bump gophercloud utils #4794
• Bug 1958518: aws: restore setting aws platform spec in infra resource #4918
• Bug 1958428: aws: support more auth options in manual mode #4914
• Bug 1945907: Byo aws iam roles 4.7 #4813
• Bug 1954803: aws: support for bring-your-own hosted zone #4887
• Bug 1951571: registry.svc.ci.openshift.org is no longer valid #4853
• Bug 1954152: manifests: populate aws user tags in infrastructure #4882
• Bug 1935174: RHCOS bump for LUKS, prjquota, etc #4791
• Bug 1947122: gcp: install google cloud sdk with yum the recommended way #4824
• Bug 1933728: baremetal: include netmask in DNSMasq dhcp range #4698
• Bug 1930106: bump ignition to v3_2 #4701
• Full changelog

baremetal-machine-controllers

• Updating baremetal-machine-controller images to be consistent with ART #161
• Bug 1938967: Updating baremetal-machine-controller builder & base images to be consistent with ART #134
• Bug 1936844: [release-4.7] Changing the default behaviour of the CAPBM to request hard reboot #144
• Full changelog

baremetal-operator

• Bug 1972430: Don’t deprovision provisioned host due to error #159
• Bug 1961341: config: use rbacv1 instead of rbacv1beta1 #148
• Bug 1910352: Fail registration when boot MAC address conflicts #131
• Bug 1936407: Backport of BMO code to 4.7 to support different reboot modes #132
• Full changelog

baremetal-runtimecfg

• Bug 1962949: Keepalived- verify that unicast peers list isn’t empty on master nodes #140
• Bug 1942488: sort AddressesDefault by route priority, ifindex, and IPv4/IPv6 preference #132
• Full changelog

cli, cli-artifacts, deployer, tools

• Bug 2039763: Remove git:// from new-app tests #1024
• Bug 2004194: Registry mirror panic #927
• Bug 1995074: revert incorrect allowance of ssh:// prefix with scp styled URLs #902
• Bug 1974264: make oc logs work with BuildConfig’s JenkinsPipeline strategy #864
• Bug 1976284: skip-multiple-scopes with adm catalog mirror #869
• Bug 1963784: Preserve AuthInfo when switching projects #861
• Bug 1970811: set User-Agent when talking with registries #848
• Bug 1969928: exclude security during exctraction #844
• Fix unit test failure #838
• Bug 1942938: [release-4.7] inspect clusteroperators as a backup to must-gather if it fails #766
• Bug 1924453: Bump github.com/gogo/protobuf to v1.3.2 #753
• Bug 1942059: when mirroring to a file destination, mount images under the index location #779
• Bug 1939477: Fix unit test to use new IS #769
• Full changelog

cloud-credential-operator

• Bug 2064428: Remove Azure mint mode support as Active Directory Graph API will be sunset #455
• Bug 2027750: Check for aws status in infra platform status field before client setup #427
• Bug 1958983: rework GCP passthrough permissions checking #338
• Bug 1948396: oVirt credentials secret contains unnecessary “ovirt_cafile” #322
• Bug 1948702: [release-4.7] manifests/0000_90_cloud-credential-operator_04_alertrules: Drop CloudCredentialOperatorDown #324
• Bug 1928151: spell fix user-visible string #301
• Full changelog

cluster-authentication-operator

• Bug 2003633: manifests, bindata: explicitely set runAsUser for operator and operand #485
• Updating ose-cluster-authentication-operator builder & base images to be consistent with ART #408
• Bug 1971087: add a controller to remove webhooktokenauthenticator config #418
• Bug 1956797: bump kube to 0.20.6 to prevent delegated authz panics #443
• Bug 1941840: endpoints controller: close response bodies #440
• Bug 1949941: add a scraper and an alert to check for old-style tokens #437
• Full changelog

cluster-autoscaler

• Bug 1924416: Bump dependencies to Kubernetes 1.20.6 to mitigate CVE-2021-3121 #204
• Updating atomic-openshift-cluster-autoscaler builder & base images to be consistent with ART #187
• Updating vertical-pod-autoscaler builder & base images to be consistent with ART #190
• Full changelog

cluster-autoscaler-operator

• Updating ose-cluster-autoscaler-operator images to be consistent with ART #239
• Bug 1961341: manifests: use v1 for RBAC #206
• Bug 1924478: Bump dependencies to Kubernetes 1.20.6 to mitigate CVE-2021-3121 #207
• Full changelog

cluster-baremetal-operator

• Bug 1976924: Update bmh crd #190
• Bug 1933726: provisioning: configure DHCP range with netmask #112
• Bug 1973367: Pass IP_OPTIONS=dhcp|dhcp6 down to OS Downloader container #171
• Bug 1972291: Use a cache URL with the .svc.cluster.local suffix #161
• Bug 1936544: Inject proxy environment variables everywhere #117
• Full changelog

cluster-config-operator

• Bug 1954152: vendor: bump to the latest openshift/api #200
• Full changelog

cluster-csi-snapshot-controller-operator

• Bug 1961719: manifests/05_operator_rbac: Drop the unused namespace property #89
• Bug 1967328: Remove exclude annotation from manifests to include in ROKS #91
• Bug 1929881: Fix installation on ROKS #80
• Full changelog

cluster-dns-operator

• Bug 1967766: Corefile: Set bufsize to 512 bytes for all servers #277
• Bug 1953097: Corefile: Enable bufsize plugin for all servers #267
• Bug 1953609: Enable errors plugin for custom upstream resolvers #268
• Bug 1942228: Fix spurious reconciliation of DNS daemonset and service #250
• Bug 1943826: Corefile: Use 30 second max TTL for caching of negative responses #254
• Bug 1937089: Configure CoreDNS to shut down gracefully #247
• Bug 1936587: Set CoreDNS’s cache’s maximum TTL to 900 seconds #245
• Full changelog

cluster-etcd-operator

• Bug 1976988: [release-4.7]: Increase inertia duration for the EtcdMembersDegraded condition #618
• Bug 1976287: Validate the status of the etcd snapshot during backup and restore #617
• Bug 1951447: pkg/etcdenvvar/etcd_env.go: Sort endpoints to prevent rollout #568
• Bug 1958416: pkg/dnshelpers: fallback to spec if status is not populated for serviceNetwork #594
• Bug 1955418: manifests: Shift FlowSchema to level 50 #582
• Bug 1954121: [release-4.7] Improve cert controller detection and correction of invalid certs #577
• OWNERS: add lilic as reviewer #588
• Bug 1954073: bindata, pkg: Propagate operator log level to etcd itself #578
• Full changelog

cluster-image-registry-operator

• Bug 1988388: Properly set custom tolerations #708
• Bug 1984979: Creating StorageAccount V2 instead of V1 #707
• Updating ose-cluster-image-registry-operator builder & base images to be consistent with ART #651
• Bug 1977159: bump aws-sdk-go to v1.38.35 #704
• Bug 1973693: Setting required pod anti-affinity rules #697
• Bug 1960562: manifests: fix selector in image-registry-operator #689
• Bug 1957308: Setting user tags always when Storage is Managed #684
• Bug 1955176: Setting user provided tags on bucket creation #682
• Full changelog

cluster-ingress-operator

• Bug 1996897: Add startup probe to the router deployment #645
• Bug 1978845: Specify topology spread constraints #632
• Bug 1973983: Canary: Handle downgrades from 4.8 to 4.7 properly #627
• Bug 1960776: Reconcile openshift-ingress namespace on upgrade #616
• Bug 1942603: [release-4.7] Add the new NetworkPolicy-matching label to the namespace #615
• Bug 1954097: Annotate services of type LoadBalancer with user tags (AWS only) #606
• Bug 1937214: Fix spurious reconciliation of NodePort services #570
• Bug 1935891: Canary: Perform canary test probes over https #566
• Bug 1936093: Canary: Use cluster-wide proxy for canary client #568
• Bug 1934904: Canary: Schedule canary server pods to worker and infra nodes #564
• Full changelog

cluster-kube-apiserver-operator

• Bug 2001243: Enforce OpenShift’s defined kubelet version skew policies #1223
• Bug 1927321: competing connectivitycheckcontrollers cause pod restarts during upgrades #1041
• Full changelog

cluster-kube-controller-manager-operator

• Bug 1924488: Bump github.com/gogo/protobuf to v1.3.2 #508
• Full changelog

cluster-kube-scheduler-operator

• Bug 1924490: Bump github.com/gogo/protobuf to v1.3.2 #334
• Full changelog

cluster-kube-storage-version-migrator-operator

• Updating ose-cluster-kube-storage-version-migrator-operator builder & base images to be consistent with ART #38
• Full changelog

cluster-machine-approver

• Bug 1924492: Bump dependencies to Kubernetes 1.20.6 to mitigate CVE-2021-3121 #120
• Updating ose-cluster-machine-approver builder & base images to be consistent with ART #103
• Full changelog

cluster-monitoring-operator

• Bug 2014023: Backport etcd telemetry #1433
• Bug 1986591: node exporter calls /proc/cpuinfo multiple times causing the node to freeze #1300
• Bug 1969963: Recording rule for builds by strategy #1206
• Bug 1967966: Switch back anti-affinity to soft from hard for Prometheus #1200
• Bug 1956565: manifest allowlist: add acm_managed_cluster_info in 4.7 #1144
• Bug 1961069: remove dependency of e2e tests on AWS #1162
• Bug 1957703: [4.7]: Add hard anti-affinity constraints to Prometheuses #1150
• Bug 1950290: remove KubeClientCertificateExpiration alert rule #1171
• Bug 1955482: fix kube-state-metrics regexp patterns #1163
• Bug 1955482: Drop high-cardinality metrics from kube-state-metrics which aren’t used #1141
• Bug 1955469: remove node_mountstatsnfs* metrics #1154
• Bug 1955462: drop container_memory_failures_total metric backport #1160
• Bug 1952149: oc adm top reporting unknown status for Windows node #1130
• Bug 1955449: drop crio image metrics #1134
• Bug 1945856: Revert “Bug 1934516: [4.7]: jsonnet/prometheus.jsonnet: Apply system-cluster-critical class to cluster Prometheus ” #1103
• Bug 1945851: Backport Remove the “instance” and “pod” labels for kube-state-metrics metrics #1101
• Bug 1926876: pkg/manifests: fix prometheus-proxy trustedCA #1051
• Bug 1932820: Remove kube-apiserver-availability.rules #1069
• Full changelog

cluster-network-operator

• Bug 2058675: ip-reconciler cronjob specification requires hostnetwork, api-int lb usage & proper backoff [backport 4.7] #1325
• Adds dougbtv to owners [release-4.7] #1404
• [release 4.8] Updates owners #1337
• Bug 2041893: Allow to use proxy to connect to OSP cloud #1284
• Bug 2021224: ovnkube: set ovn-controller lflow cache limit to 1GB #1217
• Bug 2034355: Whereabouts IP Reconciliaton [backport 4.7] #1266
• Bug 1924839: [release-4.7] Update protobuf version to address CVE-2021-3121 #1084
• Bug 1990932: [Backport 4.7] Whereabouts should have RBAC for leases #1186
• Bug 2003800: Use 10% for sdn maxUnavailable for rolling update #1202
• Bug 1996063: Use 10% for nw-check-target maxUnavailable #1184
• Bug 1988426: Change to use mountPath: /host #1170
• Bug 1962036: Use the election mechanism provided by library-go #1098
• Bug 1972549: Remove reference to v1beta1 API #1134
• Bug 1982217: Use 10% for ovnkube-node for maxUnavailable #1153
• Bug 1969860: Escape characters on ini file #1127
• Bug 1967994: Backport daemonset to drop icmp frag needed packets received from other nodes in the cluster to Rel 4.7 #1119
• Bug 1972183: config: Set enable-profiling true by default and allow enable-profiling as a proxy argument #1129
• Bug 1967388: annotate flowcontrol with networkoperator.openshift.io/ignore-errors #1118
• Bug 1967972: Add tokenreviews permissions for kube-proxy #1120
• Bug 1942603: [release-4.7] Allow from router policy support for cluster network operator #1087
• Bug 1937396: kuryr/alerts: change the rule for free count #1011
• Bug 1957749: ovnkube: add missing resource requests for SBDB #1088
• Bug 1954302: Remove OVS daemonsets #1076
• Bug 1956352: [4.7] OVN kubernetes dual-stack conversion #1082
• Bug 1941214: Use 10% for ovs maxUnavailable for rolling update #1031
• Bug 1936719: OSD-6600 network-metrics missing priorityClass #1007
• Bug 1927321: competing connectivitycheckcontrollers cause pod restarts during upgrades #1050
• Bug 1941212: The Multus daemonset should handle 10% maxUnavailable #1030
• Bug 1940806: OVN Upgrade: fix upgrade order of node and master #1029
• Bug 1929371: Don’t set ClusterOperator Version until rollout is complete #983
• Bug 1937829: Cherry-pick dual stack migration #1017
• Bug 1928028: Kuryr: Let Kuryr autodetect primary CNI interface #978
• Bug 1935473: Include LB members for Machines created on day-2 operation #1002
• Full changelog

cluster-node-tuning-operator

• Bug 2014430: stalld: update to v1.13.0 #281
• Bug 1986739: gather all Tuned CRs #255
• Bug 1958885: Switch to client-go leader-with-lease election. #238
• Bug 1960542: manifests: fix selector in node-tuning-operator ServiceMonitor #228
• Bug 1928614: Keep ignition units in sync with [service] plugin. #215
• And 2 elided commits (e.g. from squash or rebase merges)
• Full changelog

cluster-openshift-apiserver-operator

• Bug 1996045: bindata: run openshift-apiserver as root explicitly. #468
• Updating ose-cluster-openshift-apiserver-operator builder & base images to be consistent with ART #427
• Bug 1955502: explicitly allow apiserver pods to write to their root FS #449
• Bug 1927321: competing connectivitycheckcontrollers cause pod restarts during upgrades #444
• Full changelog

cluster-openshift-controller-manager-operator

• Bug 1924494: Update k8s.io dependencies to address CVE-2021-3121 #222
• Bug 1944142: Bump kubernetes to 0.20.5 #204
• Bug 1931856: Set registry routes in operand config #199
• Full changelog

cluster-policy-controller

• Bug 1924496: Bump github.com/gogo/protobuf to v1.3.2 #58
• Full changelog

cluster-samples-operator

• Bug 2001977: delete hello-openshift in payload imagestream #393
• Bug 1923036: Update Jenkins monitored templates names #359
• Bug 1961518: manifests: fix selector in ServiceMonitor #375
• Bug 1950808: add DeepCopy to avoid SharedInformer cache mutation #370
• Full changelog

cluster-storage-operator

• Bug 2104632: Add missing ibm cloud annotations to prometheus rbac #297
• Bug 2030740: Add trusted CA bundle to vsphere operators #248
• Bug 1986030: Manila CSI driver is not in must-gather #193
• Bug 1961719: manifests: remove namespace from cluster-storage-operator-role binding #170
• Bug 1959546: Add alert about vsphere-problem-detector unable to connect #169
• Full changelog

cluster-update-keys

• Pack both keys in one verifier-public-key-ci entry #36
• Adding the new Openshift CI Signer key #34
• Full changelog

cluster-version-operator

• Bug 2030628: [release-4.7] Respect noProxy #711
• Bug 2007674: pkg/cvo/egress: Load HTTPS proxy from Proxy status #664
• Bug 1961341: Remove rbacv1beta1 support #652
• Bug 1991010: pkg/cvo/metrics: Ignore Degraded for cluster_operator_up #638
• Bug 1924428: CVE-2021-3121 gogo/protobuf lacks certain index validation #625
• Bug 1970272: Fixing the log message in rbac.go for clusterrole #609
• Bug 1970272: Log object updates and show existing/required diff #589
• Bug 1969501: install/0000_90_cluster-version-operator_02_servicemonitor: Soften ClusterOperatorDegraded #587
• Bug 1969378: avoid hotlooping on RoleBindings with empty APIGroup #584
• Bug 1966977: Prevent hotlooping in ImageStreams #580
• Bug 1959238: pkg/cvo/sync_worker: Shift ClusterOperator pre-creation into the manifest-task node #557
• Bug 1943754: Ensure automountServiceAccountToken is synced on service account updates #539
• Bug 1941217: pkg/cvo/sync_worker: Skip precreation of baremetal ClusterOperator #534
• Bug 1926795: install/0000_90_cluster-version-operator_02_servicemonitor.yaml: adjust “CannotRetrieveUpdates” to “warning” #516
• Full changelog

configmap-reloader

• Updating configmap-reload builder & base images to be consistent with ART #27
• vendor: regenerate #31
• Full changelog

console

• Bug 2090384: Eliminate use of lookaside cache and move to Cachito #11574
• Bug 2073602: (Topology) Performance improvement by reducing rerenderings and deep-copy toJSON() calls #11309
• Bug 2060451: Fix a crash when the preferred namespace contains just numbers #11135
• Bug 2052859: override normal namespace hiding for pods view in node details #11027
• Bug 2055411: Filter superseded helm secrets and fix firehose to support partial metadata #11078
• Bug 2044949: fix dev-catalog stuck in loading state #10923
• Bug 2055403: Add support for fetching partial metadata and fix helm list page crash #11077
• Bug 2049313: Topology performance: Do not fetch HPA for each Deployment (Pod Ring) #10991
• Bug 2052858: Add subject name selector field to SinkBinding form #11026
• (4.7 Backport) Bug 1981412: Change OCM links from cloud. to console.redhat.com #9470 #9471
• Bug 2005298: Block and File and Object dashboards should not be part of OCP Console for ODF Managed Services #10097
• Bug 2005138: Console overview operators shown upgrading when still waiting on approval #10093
• [release 4.7] Bug 1969754: windows vms fail to start rls 4.7 #9657
• Bug 2004946: Use httpd in workload YAML templates #10089
• Bug 1973707: Add chart URl to annotations during helm install/upgrade #9299
• Bug 1995617: Fix Pipeline Download All #9839
• Bug 1986724: Show the content of Insights widget when there are 0 recommendations for cluster #9655
• Bug 1989642: Preserve user annotations while editing an app #9714
• Bug 1975560: Fix typo in olm message #9335
• Bug 1975469: Handle array to string conversion for HTTPS checkbox value #9332
• Updating openshift-enterprise-console images to be consistent with ART #8596
• Bug 1973572: Hardcode strings in Home->Overview page #9322
• Bug 1942864: Warning Alert for Encrypted PVs in Create StorageClass #8464
• Bug 1965526: Removing library charts from the merged helm repo index entries. #9076
• Bug 1970796: update cluster-local label for ksvc #9220
• Bug 1970720: fix rotated pipelinerun status icon issue in safari #9216
• Bug 1969536: Omit bitbucket branch in URL if it contains slash #9180
• Bug 1954962: removes extra annotations form spec template for ksvc #8823
• Bug 1948537: add hide/reveal button for kms token #8616
• Bug 1942160: Update the scope of GitOpsService resource #8450
• Bug 1971667: Track and show error messages in modals #9232
• Bug 1969791: fixes: WebTerminal widget should send resize events #9190
• Bug 1969105: Update IP address on pods list to show podIP other than … #9172
• Bug 1967106: can’t open terminal for pods that have more than one co… #9117
• Bug 1966275: Fix Pipeline Parameters in Modals accept empty string defaults #9085
• Bug 1961567: Remove the broken Devfile Sample for BuildConfigs #8956
• Bug 1963025: Fix documentation link to network policies #8953
• Bug 1953606: Fixing failure domain issue with custom pools (4.7 backport) #8775
• Bug 1970485: Add pipeline annotation to secrets for private git repo import with pipeline #9207
• Bug 1964400: Fix RGW Total Used Query #9038
• Bug 1958873: Fix disk replacement during second replacement #9083
• Bug 1961887: Update Taskrun tab to make namespace based calls #8968
• Bug 1959356: Tech preview badge for arbiter #8870
• Bug 1964322: The status of “Used Capacity Breakdown [Pods]” is “Not available” #9028
• Bug 1957499: OperatorHub - console accepts any value for infraFeatures #8859
• Bug 1960686: Fix hot loop in global config page #8935
• Bug 1947091: Fix skipped task status when using conditions #8582
• Bug 1962493: Hide TaskRun edit actions for rows in Pipelinerun’s TaskRun tab #8987
• Bug 1966798: [release-4.7] Remove monitoring labelling step for 4.7 tests #9073
• Bug 1951210: Fix default resource log download file name #8707
• Bug 1944046: Warn using an unsupported IE browser #8494
• [release 4.7] Bug 1939553: Support binary file type secret entries #8389
• Bug 1960544: Overly generic CSS rules for dd and dt elements breaks styling elsewhere in console #8925
• Bug 1960093: Make console works against api proxy #8914
• Bug 1942027: Fix RBAC check when creating a resource #8448
• Bug 1956336: Fix Triggers section in eventlistener details page #8842
• Bug 1953937: Fixing PVC creation page issue in 4.7(Reverting wrong commit) #8784
• Bug 1952578: Don’t poll ClusterVersion when user doesn’t have authority #8749
• Bug 1950489: Fix “Create binding” link from Role page, RoleBindings tab #8685
• Bug 1948958: Fix ingress details page to show referenced secret name #8633
• Bug 1944955: Fix close button in the new ‘Storage cluster exists’ warning alert modal #8524
• Bug 1956313: Save additional parameters from build guidance container and drop it #8841
• Bug 1953728: Fix issues related to loading dynamic plugins #8780
• Bug 1945594: fixing-project-creation-and-updated-packageJson #8536
• Bug 1950214: Fix start pipeline action access review #8681
• Bug 1948369: Remove cluster label from predefined monitoring queries #8613
• Bug 1954109: Backport telemetry dynamic extension to release-4.7 #8783
• Bug 1952209: Consistent formatting of dates and times #8734
• Bug 1952293: adds check for templates #8736
• Bug 1942843: Modified description for storage class encryption - 4.7 Backport #8462
• Bug 1948938: [release-4.7] Prow script point to deleted resource #8619
• Bug 1944855: Update Dockerfile.product for nodejs v14.16.0 #8488
• Bug 1945153: Remove pipeline Tech preview badge for pipelines GA operator #8528
• Bug 1943643: fix pipeline metrics endpoint for 1.4 osp #8489
• Bug 1944349: fix backwards incompatible trigger api changes #8503
• Bug 1943441: Add ‘Roll Back’ action for Replication Controllers and Replica Sets #8475
• Bug 1925792: Fix translation for edit annotation #8078
• Bug 1941468: Change link for not available state #8431
• Bug 1939608: Fix null handling in FilterToolbar_ to prevent possible exceptions #8394
• Bug 1937356: Fix to show correct internal image-stream name in container image edit flow’s internal registry image-stream dropdown for kn service #8353
• Bug 1927198: fix pvc string in pvc.view #8126
• Bug 1927311: avoid 404 errors attempting to load en-US #8128
• Bug 1931382: Hide pipeline section in container image edit flow #8209
• Bug 1933665: [release-4.7] Create ImageStream and other resources for samples step by step #8255
• Bug 1935672: [release-4.7] fix pipelinerun status icon rendering issue #8311
• Bug 1932272: Fix KMS validation error for 4.7 release #8221
• Bug 1937313: Removed loaded prop and nested component #8351
• Bug 1936803: support service binding operator version 0.5.0 #8335
• Bug 1937469: Pod/node/ip/template isn’t showing when vm is running #8357
• Bug 1932277: Create new pool with arbiter - wrong replica (4.7 release) #8234
• Bug 1930152: Do not fail new VM wizard when no storage classes are available #8190
• Bug 1937086: Fix topology crash due to selfLink deprecation #8317
• Full changelog

console-operator

• Bug 2042534: Bump build-machinery-go for console-operator to pickup change in yaml-patch repository #629
• Bug 2016654: Use hard requirements for antiaffinity rules #605
• Bug 1960589: [release-4.7] quickstarts: remove “spec.version” #547
• Bug 1936337: Check for error when generating default and user-defined config for the console-config configmap #512
• Full changelog

container-networking-plugins

• Updating ose-containernetworking-plugins builder & base images to be consistent with ART #41
• Bug 1925077: vendor: bump libcni #44
• Full changelog

csi-driver-manila, openstack-cinder-csi-driver

• Bug 1969345: Backport ignore proxy connecting to CSI sockets #54
• Bug 1933659: Add udev to the driver image #47
• Full changelog

csi-driver-manila-operator

• Bug 2002555: Do not degrade cluster on failure to reach Manila #126
• Bug 1987036: Use cluster Proxy when available #110
• Bug 1996070: Add maxUnavailable to DaemonSets #116
• Full changelog

docker-builder

• Bug 1995074: bump(s2i): revert incorrect ssh scp fix #261
• Bug 1924455: Update dependencies to address CVE-2021-3121 #258
• Updating openshift-enterprise-builder builder & base images to be consistent with ART #188
• Bug 1943726: add bracket logging on openshift/builder calls into buildah to assist test-platform team triage #237
• Bug 1945692: move entitlement related secrets back to mounts.conf #240
• Bug 1924554: bump(cni) 0.8.1 #234
• Bug 1940052: retry image pulls during builds #226
• Bug 1939218: bump(containers/*): #224
• Full changelog

docker-registry

• Bug 1984094: use apimachinery with HTTP/2 health checks enabled #288
• Updating openshift-enterprise-registry builder & base images to be consistent with ART #262
• Bug 1977159: bump aws-sdk-go to v1.38.35 #282
• Full changelog

etcd

• Update OWNERS #126
• Bug 1970141: discover-etcd-initial-cluster: retry if member is not part of member list and dataDir exists #82
• ETCD-178: Bug 1944386: openshift-tools: fix on off flow and add unit tests #74
• Full changelog

gcp-machine-controllers

• Updating ose-gcp-machine-controllers builder & base images to be consistent with ART #143
• Bug 1924508: Bump dependencies to Kubernetes 1.20.6 to mitigate CVE-2021-3121 #164
• Bug 1935636: Ensure response body is closed when we are finished with the request #151
• Full changelog

gcp-pd-csi-driver

• Updating ose-gcp-pd-csi-driver builder & base images to be consistent with ART #10
• Full changelog

gcp-pd-csi-driver-operator

• Bug 1996070: Add maxUnavailable to DaemonSets #33
• Bug 1940005: Add CSIDriver object #18
• Full changelog

grafana

• Updating grafana builder & base images to be consistent with ART #54
• Full changelog

haproxy-router

• Bug 1994645: config template: accept IPv6 IPs for whitelisting #325
• Bug 1967733: template helper - generateHAProxyWhiteListFile, use right arg type #297
• Bug 1965402: Revert ‘Bug 1896977: Enhance host name validation in router’ #293
• Bug 1963243: Add a condition to check if the Endpoints ID is duplicated #288
• Bug 1942534: [4.7 backport] Route gets admitted with invalid host name if override annotation is used #273
• Bug 1938921: router/template: Cache compiled regular expressions #269
• Full changelog

hello-openshift, tests

• Bug 2034370: test: Nodes that are deleted should not fire the unready alert #26716
• Bug 2031104: Skipping Django Test until bug is fixed #26688
• Bug 2022188: Add more tests for image policy #26626
• Bug 2019520: Skip test ‘clone repository using git:// protocol should clone using git:// if no proxy is configured’ #26563
• Bug 1983616: Wait longer in tests where namespace cleanup is slow #26282
• Bug 1982929: Improve GC Check for Builds #26334
• Re-enable quota test #26284
• Bug 1980540: Use cluster-logging for operator installation smoke test. #26315
• Bug 1977383: [release-4.7] Update resource quota test for compatibility with service ca configmap publishing #26303
• Bug 1928862: [4.7] Bump openshift/kubernetes #26259
• Bug 1978000: builds: comment out multi-namespace template test #26296
• NOOP - Trigger a new CI build #26291
• Bug 1977383: [release-4.7] Skip cluster quota test to enable service ca publisher to merge to o/k #26283
• Bug 1970411: properly remove project after test ends #26217
• Bug 1966358: Dockerfile.rhel: fix a bash typo #26194
• Bug 1961367: Add Cinder client to the test image #26171
• Bug 1955600: test/extended/router: Fix-up Unidling test #26120
• Bug 1963115: narrow verify /run test to /run/secrets #26180
• Bug 1963115: move verify run test from tools to cli image to avoid additional /run content #26176
• Bug 1958797: test/extended/router/idle: Only run on OVNKubernetes or OpenShiftSDN #26145
• Bug 1947705: Add test of documented backup/restore procedure #26110
• Bug 1955669: flake testKubeletToAPIServerGracefulTermination #26121
• Bug 1942055: upgrade/upgrade.go: Enhance upgrade ack time out error #26012
• Bug 1941574: test/extended/router/idle: skip test on virt platforms #25999
• Bug 1940866: Add BareMetalPlatformType into e2e upgrade service unsupported list #25989
• Bug 1927953: test/extended/router/idle: address flakes/failures seen in CI #25892
• Bug 1931622: test: add vsphere to unsupported platforms for LB service #25913
• Bug 1932806: release-4.7: e2e: test OAuth API connections in the tests by that name #25894
• Bug 1935707: [release-4.7] test: Detect when the master pool is still updating after upgrade #25941
• Bug 1931401: fix sig-cli flakes #25910
• Bug 1939477: Update tests to use Ruby 2.7 #25966
• Bug 1927554: adjust route host for redis/nodejs/cakephp to accomodate new apiserver restrictions #25884
• Full changelog

hyperkube

• Bug 2082029: Rebase 1.20.15 #1253
• Bug 2043804: IPs with leading zeros are still valid in the apiserver #1234
• Bug 2060528: Backport inotify patch to 4.7 #1205
• Bug 2024640: Rebase v1.20.14 #1101
• Bug 2054669: UPSTREAM: 89885: SQUASH: Retry fetching clouds.conf #1178
• Bug 2024996: Fix subpath source check #1068
• Bug 2022720: UPSTREAM: 106261: Don’t guess SELinux support on error #1055
• Bug 2022188: Image policy should mutate DeploymentConfigs, StatefulSets, and new CronJobs #1073
• Bug 2022259: Rebase v1.20.12 #1046
• Bug 1939537: UPSTREAM: 100678: apf: exempt probes /healthz /livez /readyz #658
• Bug 1926724: UPSTREAM: 98028: add auto update for priority & fairness bootstrap configuration objects #563
• Bug 2008508: Rebase v1.20.11 #982
• Bug 1993753: UPSTREAM: 104348: Pass additional flags to subpath mount to avoid fla… #941
• Bug 2003027: Rebase 1.20.10 #935
• Bug 1996846: UPSTREAM: 98571: kubelet: Stop probing a pod during graceful shutdown #901
• Bug 1973766: 4.7: Do not throw error when we can’t get canonical path #881
• Bug 1981775: Bump apiserver libary go 4.7 #879
• Bug 1981634: UPSTREAM: <drop>: use the legacy service-ca.crt content for clusters started in 4.7 or before #857
• Bug 1977383: [release-4.7] Ensure service ca configmap is created in all namespaces #834
• Bug 1977383: [release-4.7] Fix watch conformance test #843
• Bug 1977383: Update resource quota test for compatibility with service ca configmap publishing #839
• Bug 1975553: only chown if non-windows machine with projected volumes #826
• Bug 1928862: [release-4.7] UPSTREAM: <carry>: kube-apiserver: ignore SIGTERM/INT after the first one #739
• Bug 1966810: UPSTREAM: 102224: Fix expired unit test certs #780
• Bug 1963263: UPSTREAM: 102000: Ref counting is only applicable to Remote endpoints #763
• Bug 1955883: UPSTREAM: 99095: Prevent Kubelet stuck in DiskPressure when imagefs minreclaim is set #725
• Bug 1951726: Speed up PV provisioning for vsphere driver (ocp-4.7) #690
• Bug 1942141: fixes cinder PV labelling #635
• Bug 1951815: UPSTREAM: 99393: kubelet: reduce configmap and secret watch #692
• Bug 1955231: UPSTREAM: 101345: kubelet: improve the node informer sync check #721
• Bug 1952917: UPSTREAM: 100228: For LoadBalancer Service type don’t create a HNS policy for empty or invalid external loadbalancer IP #697
• Bug 1928862: Enable snapshot tests #569
• Bug 1945856: 99729:Only system-node-critical pods should be OOM Killed last #642
• Bug 1927717: UPSTREAM: 98939: fixes race in TestSyncPodsDeletesWhenSourcesAreReady #567
• Bug 1931702: UPSTREAM: 96958: kubelet: remove periodic messages from log-level 2 #589
• Bug 1931745: UPSTREAM: 98956: Fix race when KillPod followed by IsPodPendingTermining #590
• Bug 1929674: kubelet: fix create sandbox delete pod race #591
• Bug 1933094: UPSTREAM: 98742: Sync completed pods until their containers have been terminated #595
• Full changelog

insights-operator

• Bug 2028092: gather webhook configurations (#508) (#561) #508
• Bug 2026659: Gather all the container logs from related namespaces of degraded clusteroperator (#516) (#555) #516
• Bug 2026410: Fix PDB gatherer (#552) #552
• Bug 2024614: Anonymize identity provider attributes in the (#520) (#527) (#541) (#549) #520
• Bug 2022637: Anonymize the ImageRegistry storage information also in status (#546) #546
• Bug 2002539: Fix wrong rebase of PSP gatherer (#512) #512
• Bug 2002539: Gather installed PSP names (#489) (#493) #489
• Bug 1982170: Set also the summary operation when updating status (#480) #480
• [release 4.7] Bug 1960645: Adds virt_platform metric to the collected metrics (#428) #428
• [release 4.7] Bug 1953579: GatherClusterOperators and GatherClusterOperatorsPodAndEvents (#410) #410
• Add vsphere_node_hw_version_total metric (#416) #416
• Bug 1950926: Extend OLM data with CSV display name (#400) (#402) #400
• Bug 1942068: Gahter datahubs.installers.datahub.sap.com resources from SAP clusters (#383) #383
• Bug 1939061: Sap license management logs gatherer 4.7 (#372) #372
• Adds memory usage to the metadata (#364) #364
• Bug 1935070: Extend the OLM operator data with related … (#362) #362
• Bug 1934442: Gather info about unhealthy SAP pods (#360) #360
• Bug 1936802: Authentication log gatherer - do not scan all the pods in openshfit-authentication (#369) #369
• Bug 1936861: Include namespace name in binarydata configmap path & test (#368) (#370) #368
• Full changelog

ironic

• Bug 1958965: Updated ironic packages #166
• Bug 1937695: Supply a default for COPY args #155
• Full changelog

ironic-hardware-inventory-recorder

• Updating ironic-hardware-inventory-recorder-image builder & base images to be consistent with ART #502
• Full changelog

ironic-inspector

• Bug 2002405: Sync inspector to include the latest bugfixes for 4.7 #70
• Full changelog

ironic-ipa-downloader

• Bug 2013591: Bump IPA version to 15.2-20211013.1 #86
• Bug 1963210: Add support for no_proxy #78
• Bug 1937809: Update ironic-images package #63
• Full changelog

ironic-machine-os-downloader

• Bug 1948538: Clear proxy env variables if go would have #77
• Bug 1963210: Add support for no_proxy #53
• Bug 1973367: Modify dhcp kernel args based on ipv4/ipv6 #55
• Bug 1971549: Unconditionally remove TMPDIR #45
• Full changelog

jenkins, jenkins-agent-base, jenkins-agent-maven, jenkins-agent-nodejs

• Bug 2076250: Mitigate multiple CVEs #1436
• Bug 2069142: [release-4.7] 2022-02-15 Security Advisory #1415
• Bug 2044939: Jenkins Fixes for CVE-2022-20617 and CVE-2022-20612 #1371
• Bug 2020613: Update Jenkins and plugins per 2021-11 advisory #1348
• Bug 1972361: Bump jenkins version 2.289.2 #1281
• [release 4.7] Bug 1947810: Update Jenkins to 2.277.3 and disable setup wizard #1259
• Bug 1952562: bump config-file-provider to 3.7.1 #1265
• [release 4.7] Bug 1929118: update kubernetes-client-api #1230
• Full changelog

kube-proxy, sdn

• Bug 2005494: Support allow-from-router feature using openshift-host-network namespace #300
• Bug 2002291: [4.7] proxy: don’t re-check every userspace proxy rule on every change #348
• Bug 1987297: when assigning and releasing egressIP try more than once before failing #327
• Bug 2001531: improve SDN’s OVS healthcheck and logging #343
• Bug 1995872: Disable conntrack for vxlan traffic #338
• Bug 1971669: Fix 4.7 SDN Egress Network Policy #334
• Bug 1962637: ValidateMTU: check only the interface that holds the node ip #304
• Bug 1923231: rebase to sdn-4.7-kubernetes-1.20.0-rc.0 #286
• Bug 1941993: Fix incorrect unmonitoring of egress nodes #279
• Bug 1924830: CVE-2021-3121 gogo/protobuf lacks certain index validation #265
• Bug 1936920: networkpolicy: pass traffic through NAT to handle possible tuple collisions #272
• Full changelog

kube-storage-version-migrator

• Updating ose-kube-storage-version-migrator builder & base images to be consistent with ART #167
• Full changelog

kuryr-cni, kuryr-controller

• Bug 2028396: Make completed Pods Ports reusable #608
• Bug 2018244: Update TOX_CONSTRAINTS_FILE for stable/xena #588
• Bug 2001518: Increase keystoneauth’s connection pool size #554
• Bug 1972631: Workaround OVN bug causing subports to be DOWN #525
• Bug 1970320: Fix Subnet retrival when creating Service without Selector #522
• Bug 1949541: Fixing bug, Kuryr-Controller crashes when it’s missing the status #501
• Bug 1959766: Fix NPs for OVN LBs with hairpin traffic #516
• Bug 1929066: Skip pool pre population if no Status is present on CRD #505
• Bug 1941941: Include service subnet to be open for namespaceSelector set to all. #504
• Bug 1929066: Fix port pools #455
• Bug 1949551: kuryr-controller restarting after 3 days cluster running - pools without members #502
• Bug 1938960: Ignore headless services in NP code #487
• Bug 1938960: Do not default protocol to TCP for allow-all NPs #480
• Bug 1930017: Narrow connection to the cluster only on namespaceSelector #460
• Bug 1928029: Get trunks more diligently #449
• Full changelog

libvirt-machine-controllers

• Updating ose-libvirt-machine-controllers builder & base images to be consistent with ART #212
• Bug 1938316: [release-4.7] Update MAO and set metrics on :8081 address #219
• Full changelog

machine-api-operator

• Bug 2022839: GCP CI runs are complaining about APIs not being enabled #954
• Bump some SHAs #937
• Bug 1993118: Make sure nodes don’t have attached volumes before vm deletion #904
• Bug 1999590: [release-4.7] add alert for machine with long deletion phase #907
• Bug 1989648: Prevent machine from stucking in Deleting phase on vSphere if related node object not found #895
• Bug 1933586: Make sure phase is always set before creation #858
• Bug 1924517: Bump dependencies to Kubernetes 1.20.6 to mitigate CVE-2021-3121 #867
• Bug 1955689: Webhook filter should check for both mutating and validating webhooks #861
• Bug 1947372: vSphere, detach virtual disks before virtual machine destroy if node not available #841
• Bug 1954610: Update GCP default image to match 4.7 release #856
• Bug 1929721: Add SecurityProfile.EncryptionAtHost parameter to enable host-based VM encryption #818
• Full changelog

machine-config-operator

• Bug 2105082: 4.7: daemon: Explicitly start rpm-ostreed, restart if we detect active txn #3240
• Bug 2101555: Add KUBELET_NODEIP_HINT to nodeip-configuration #3210
• Bug 2025470: annotate rendered config with OCP version #2993
• Bug 2057526: ovs-configuration: use lower than NM default ethernet route metric #2975
• Bug 2033000: fixes 1 to 1 containerruntime config mapping #2878
• Bug 2059724: Prepend to search domains instead of replacing #2977
• Bug 2038383: Respect DHCP option 119 for on-prem #2904
• Bug 2028525: [Release 4.7] daemon: make cordon/uncordon more robust and better logging #2854
• Bug 2026825: Send WARN message to stderr #2841
• Bug 1988102: [IPI ON-PREM] move Keepalived default ingress script to separate file #2825
• Bug 1975174: configure-ovs: fix nondeterministic master in slave profiles #2640
• Bug 2008692: Don’t write empty static pod manifests #2783
• Bug 1995621: Backport fix 1 to 1 relation to kubelet configs and machine config pools #2759
• Bug 2011375: templates: Silence audit events from container infra by default #2792
• Bug 2008759: Set timeoutSeconds for keepalived liveness probe #2773
• Bug 2008588: Check suffix annotation is a number #2781
• Bug 2004581: Set ovs syslog level to info #2767
• Bug 2000501: bump SystemMemoryExceedsReservation alert threshold to 95% #2749
• Bug 1989751: [on-prem] Disable liveness probe until keepalived.conf exists #2701
• Bug 1995853: Gracefully shutdown taking around 6-7 mins (libvirt provider) #2727
• Bug 1988102: [release-4.7] On-prem: add default ingress track script to Keepalived #2697
• Bug 1998112: vSpehere: disable vmxnet3 tx csum offload #2738
• Bug 1995810: crio: complete crio default config #2725
• Bug 1992240: change system-connections-merged directory to systemConnectionsMerged #2709
• Bug 1956462: ensure SSH key uniqueness #2563
• Bug 1993386: crio: use conmon from path #2715
• Bug 1992687: alerts: SystemMemoryExceedsReservation triggers too quickly #2710
• Bug 1970166: MCO: maxUnavailable of ds/machine-config-daemon does not get updated due to missing resourcemerge check #2682
• Bug 1977432: crio: enable internal_wipe option #2649
• Bug 1970590: daemon: Change runGetOut to not intermix stdout/stderr #2609
• Bug 1976232: Explicitly set keyfile as the default plugin of NetworkManager for RHEL7 #2641
• Bug 1971864: Stop setting nopreempt on bootstrap keepalived.conf #2616
• Bug 1973006: daemon: cordon the node before performing drain #2623
• Bug 1961341: rbac: update remaining apis to v1 #2620
• Bug 1971374: daemon/drain.go: bump initial drain sleeps down to 1min #2612
• Bug 1970154: operator/sync.go confirm renderedconfig osimageurl matches cvo #2607
• Bug 1968759: Bump drain timeout to 1h #2605
• Bug 1949348: gcp-routes should wait until network is stopped #2593
• Bug 1962288: [ovirt] Stop using db file for static internal records #2581
• Bug 1964568: Delete duplicated generated mc #2591
• Updating ose-machine-config-operator builder & base images to be consistent with ART #2399
• Bug 1949348: not allow healthcheck traffic to loop through the node #2526
• Bug 1953475: daemon: return nil for unsupported operation on an OS #2544
• docs/README: Useless bump to get a new commit hash #2584
• Bug 1956749: vsphere: platform none, vmxnet3v4 fix move to base #2564
• Bug 1950261: create the ovs-config-executed file to signal ovs is running on the host #2532
• Bug 1957015: [on-prem] Backport duplicate VIP fixes #2566
• Bug 1932383: Connect default NIC to cluster network #2427
• Bug 1942488: Use new –prefer-ipv6 flag to “runtimecfg node-ip” as appropriate #2525
• Bug 1950498: Add on-prem namespaces to relatedObjects #2533
• Bug 1951028: configure-ovs doesn’t handle bond interfaces correctly for OVNKubernetes #2536
• Bug 1944394: Do “systemctl daemon-reload” after running “runtimecfg node-ip” #2497
• Fixes: Bug 1943143: [vsphere] hostnames are changed when upgrading from 4.6 to 4.7.x causing upgrades to fail #2490
• Bug 1941246: vSphere: Disable tx-udp-tnl offload #2495
• Bug 1941128: pkg/operator/status: Use ‘DegradedPool’ reason for Upgradeable=False #2473
• Bug 1941367: Make getting the suffix of an MC more robust #2476
• Bug 1933205: Revert “pkg/daemon: Add IgnitionVersion to Daemon” #2438
• Bug 1927783: [vsphere] set hostname with –static to provide consistent node name for CSR approval #2405
• Bug 1931863: Apply system-connections-merged to all platforms #2426
• Bug 1936008: templates: add After=ostree-finalize-staged.service to kubelet.service #2455
• Bug 1929257: Fix 1:1 mapping for kubeletconfig:MC and some e2e test fixes #2462
• Bug 1939278: Backport kubelet CA no-drain rotation #2464
• Bug 1933368: operator/sync.go restore err when required pools not leveled #2441
• Bug 1932860: Remove recycler pod templates #2434
• Bug 1931615: OVS Config: fixes detecting bond NM files with static IP #2452
• Full changelog

mdns-publisher

• Bug 2004537: Update zeroconf vendoring #39
• Bug 1983695: [release-4.7] Truncate long service names to 63 characters #34
• Full changelog

multus-admission-controller

• Updating ose-multus-admission-controller builder & base images to be consistent with ART #30
• Full changelog

multus-cni

• Bug 1927896: make a copy of global RuntimeConfig on merge #91
• Bug 1936334: Updating multus-cni builder & base images to be consistent with ART #81
• Full changelog

multus-whereabouts-ipam-cni

• Bug 2028967: Whereabouts should reconcile IP addresses [backport 4.7] #79
• Bug 1965268: Syncs with upstream for leader election [backport 4.7] #65
• Bug 1931950: [backport 4.7] Fix for IPv6 when leading hextets equal zero #49
• Full changelog

must-gather

• Updating ose-must-gather builder & base images to be consistent with ART #202
• Bug 1954302: Add ovs related services to GENERAL_SERVICES #229
• Full changelog

network-metrics-daemon

• Added METRIC_TEST_IMAGE var (#58) #58
• Change repo from Docker to quay.io (#44) #44
• Updating ose-network-metrics-daemon images to be consistent with ART (#32) #32
• Full changelog

oauth-apiserver

• Bug 2043804: IPs with leading zeros are still valid in the apiserver #76
• Bug 1917904: bump k8s.io/apiserver to 1.20.4 #43
• Full changelog

oauth-proxy

• Updating golang-github-openshift-oauth-proxy builder & base images to be consistent with ART #198
• Full changelog

oauth-server

• Updating oauth-server images to be consistent with ART #90
• Bug 1965932: bump kube to 0.20.4 #79
• Full changelog

openshift-apiserver

• Add coreydaley as reviewer/approver for pkg/build #301
• Bug 2043804: IPs with leading zeros are still valid in the apiserver #287
• Bug 2022188: Image policy should mutate DeploymentConfigs #261
• Bug 1995074: revert incorrect ssh scp fix #242
• Bug 1965402: Revert ‘Bug 1965402: Enhance API host name validation’ #211
• Bug 1961557: sets shutdown-delay-duration from OpenShiftAPIServerConfig #199
• Bug 1917904: bump k8s.io/apiserver to 1.20.4 #187
• Full changelog

openshift-controller-manager

• Bug 1924531: Update k8s.io dependencies to address CVE-2021-3121 #191
• Bug 1955210: fixed LANG for the builder container #180
• Full changelog

openstack-cinder-csi-driver-operator

• Bug 2049879: Explicitly set default value for ReclaimPolicy #72
• Bug 2016286: Fix error when mounting /var/lib/kubelet/pods #58
• Bug 1996070: Add maxUnavailable to DaemonSets #54
• Full changelog

openstack-machine-controllers

• Bug 2000551: Adds Proxy to provider client http transport #200
• Full changelog

operator-lifecycle-manager

• Fix kubebuilder installation in the build root Dockerfile #2351
• Bug 1982693: remove cleanup from startup #2287
• Bug 1972075: Add OperatorCondition status sync and update operator upgradeable check #2206
• Bug 1945702: Fix inconsistent dependency candidate order. #2149
• Bug 1962314: Explicitly set readOnlyRootFilesystem: false on created registry pods. #2171
• Bug 1963141: Make ClusterOperator Available condition sticky. #2173
• Bug 1962312: Simplify deployment status check to reduce flapping. #2170
• Bug 1962302: Set reason/message for Available condition in packageserver co #2168
• Bug 1959009: Use DeploymentAvailable instead of custom test for CSV status. #2151
• Bug 1924467: Bumps k8s.io dependencies to v0.20.6 #2121
• Bug 1949139: Preserve existing ServiceAccount owner references during installs. #2088
• Bug 1951657: fix(catalog): Reduce namespace resync in resolution failure #2107
• Bug 1952851: Add resource requests for bundle unpacker #2109
• Bug 1951232: Fix resolution error if inner entry doesn’t provide a required API. #2106
• Bug 1947909: Do not adopt copied CSVs #2089
• Bug 1937375: only override deployment resources when explicitly defined in subscription config #2036
• Bug 1933839: bump k8s.io/apiserver for webhook authorizer panic fix #2022
• Bug 1936707: Allow non-CSV-owned ServiceAccounts to satisfy CSV requirements. #2034
• Bug 1938405: Support jittering relatively small resync intervals. #2041
• Updating operator-lifecycle-manager builder & base images to be consistent with ART #2013
• Bug 1934724: fix(resolver): Allow skipped versions to be installed initially #2027
• Bug 1929904: Infer package name property for unannotated CSVs, if possible. #2033
• And 9 elided commits (e.g. from squash or rebase merges)
• Full changelog

operator-marketplace

• Bug 1961341: [release-4.7] Update openshift rolebindings to v1 #409
• Updating marketplace-operator builder & base images to be consistent with ART #367
• Full changelog

operator-registry

• Bug 1968680: fix(containerd): drop xattrs during unpack #676
• Bug 1924468: Bump the k8s dependencies to v1.20.6 #638
• Bug 1937097: Add retries to opm index add #643
• Full changelog

ovirt-csi-driver-operator

• Bug 1996070: Backport maxUnavailable: 10% for DaemonSets #69
• Full changelog

ovirt-machine-controllers

• Bug 2001287: correct IPAddress detection for OVNKubernetes #120
• Bug 1939358: extract node machine ipaddress from the engine instead using DNS . #98
• Bug 1939360: providerIDController ignore nodes that have no machine #99
• Bug 1939199: move to go 1.15 and registry.ci.openshift.org #97
• Bug 1927256: Bump K8s dependencies to 1.20 #92
• Full changelog

ovn-kubernetes

• Bug 2105274: EGW: Clean Stale Conntrack Entries #1194
• Bug 2063245: Fix Netpol retry mechanisms #1051
• Bug 2070339: Fix egress IP allocator sync #1017
• Bug 2069247: egressgw: Fix deadlocks #1013
• Bug 2021224: Add ovn-controller logical flow cache options #891
• Bug 2047325: Fix node connectivity to service backed by egress IP pods #946
• Bug 2043677: Fix pod handlers and pod IP parsing for egress IP #920
• Bug 2039282: filter out KubeAPIAuth when logging CNI requests #906
• Bug 2034506: Make config parsing more resilient for unknown fields #882
• Bug 2027874: [4.7z] Fixes race between node handler and pod sync #859
• Bug 2019093: Not exit when ovnkube runs with ‘–gateway-interface none’ #820
• Bug 2027468: 4.7 backport #850
• Bug 2014360: [4.7z] Scale fixes for pods/exgws #799
• Bug 2011402: [4.7] bump OVN to 20.12.0-183.el8fdp #786
• Bug 1935149: Resync node management port on subnet change #456
• Bug 2005519: [4.7z] Remove waiting for namespace and namespace lock contention #766
• Bug 2005468: [4.7z] Fixes skipping pods accidentally in retry #759
• Bug 2007653: Fix ensurePod to call addPortExternalGW only for annotation updates #765
• Bug 2006159: Fix duplicate incrementing of subnet allocation metric #764
• Bug 2004489: panic after EgressFirewall deletion and DNS record expiration #751
• Bug 2007665: [4.7z] Ensure host interfaces are deleted by CNI #769
• Bug 2005391: [4.7z] Fixes misuse of pod annotations during update event #754
• Bug 2005913: [4.7z] Sync ECMP routes on startup and fixes stale ECMP routes #763
• Bug 2001543: fix reserve joinSwitch LRP IPs #721
• Bug 2001364: [4.7z] Ensure client handling of canceled/dropped OVSDB monitor #719
• Bug 2001998: egressfirewall not set after upgrade #724
• Bug 1988495: Fix LocalGatway ExternalIP #638
• Bug 1999896: Revert “[release-4.7] fix reserve joinSwitch LRP IPs” #707
• Bug 1997574: Fix: sync egress IP for missed events on start-up #687
• Bug 1976242: Update existing policy ACLs on start #650
• Bug 1997104: fix reserve joinSwitch LRP IPs #683
• Bug 1995910: Backport ovnkube-trace requires ip package to be installed #674
• Bug 1991445: Bump OVN to 20.12.0-140.el8fdp #649
• Bug 1967132: policy: handle NetworkPolicies single “from” multiple “ipBlock” #562
• Bug 1985516: Add v6 management interface address for host network policy #625
• Bug 1962608: ensure missed events are handled during a reconnection #547
• Bug 1972484: egress firewall as ACLs + service connectivity fixes #592
• Bug 1940566: Properly log when hybrid overlay errors out #543
• Bug 1970779: Remove getDefaultIfAddr and use getNetworkInterfaceIPAddresses #571
• Bug 1962590: NewAddressSet: return nil in case of error #546
• Bug 1970322: revert 487 #570
• Bug 1962819: CNI cmdCheck: treat ingress_policing_rate=0 as not found #548
• Bug 1965075: CARRY: fix missed learn for hybrid exgw #556
• Bug 1946682: egress firewall as ACLs #487
• Bug 1942603: [release-4.7] Allow from router network policy support #526
• Bug 1956980: [release-4.7] fix ForEachAddressSet() as it is not calling the callback functions #523
• Bug 1959737: Fix: egress IP route health check detection state on restart #538
• Bug 1956270: service controller should not use the target-port #519
• Bug 1947097: [4.7z] Ensure no SNAT on GR for DisableSNATMultipleGws #533
• Bug 1939488: Backport Handle Multus network-status annotations on pod update #467
• Bug 1956318: Revert “removing the hybrid overlay externalGW code” #521
• Bug 1951064: master: cancel leader election on exit #505
• Bug 1950131: fix deadlock in EgressFirewall DNS code #513
• Bug 1951552: master: Delay deleting Namespace’s address set for 20 seconds #507
• Bug 1950432: [4.7] pods: bind pod logical switch ports to the node’s chassis with requested-chassis #503
• Bug 1924826: Backport Update gogo/protobuf to v1.3.2. #464
• Bug 1943316: [4.7] master: enable logical datapath groups for OVN >= 20.12 #478
• Bug 1946696: iptables: add filter on node local traffic #489
• Bug 1947835: Fix service update for policy type assertion #493
• Bug 1942702: backport lr-nat-del/add fixes #484
• Bug 1931520: Backport Fix ACL syntax for dual-stack #465
• Bug 1943310: [4.7] Enable DB memory trimming on compaction #477
• Bug 1932268: detect if the cluster has endpoint slices #442
• Bug 1935180: Backport Fix mcast querier #468
• Bug 1937829: Cherry-pick dual-stack conversion #460
• Bug 1934645: Backport enable support for BFD on external gateway routes #462
• Bug 1925475: Bump OVN to ovn2.13-20.12.0-24.el8fdp #451
• Bug 1937238: Refactor chain setup for NodePort and ExternalIP #457
• Full changelog

prom-label-proxy

• Updating prom-label-proxy builder & base images to be consistent with ART #330
• Full changelog

service-ca-operator

• Bug 1981634: add vulnerable legacy injector to allow for upgrade clusters to use #170
• Full changelog

telemeter

• Updating telemeter builder & base images to be consistent with ART #369
• Full changelog

thanos

• Bug 1994123: dockerignore: remove vendor from ignored list #69
• Bug 1944575: pkg/rules: fix deduplication of equal alerts with different labels #52
• Bug 1957646: cmd/thanos: use miekgdns resolver as default #56
• Full changelog

vsphere-problem-detector

• Bug 2039341: Deferred logout after checks are run #70
• Bug 1959546: Update to current master #40
• Bug 1936975: Fix deadlock when enqueing functions into the pool #35
• Full changelog

---

View changelog in Markdown or change previous release: 4.21.0-0.nightly-2025-10-30-1258044.21.0-0.nightly-2025-10-30-0605494.21.0-0.nightly-2025-10-29-2250084.21.0-0.nightly-2025-10-29-1623004.21.0-0.nightly-2025-10-29-1036434.21.0-0.nightly-2025-10-29-0350254.21.0-0.nightly-2025-10-28-2201134.21.0-0.nightly-2025-10-28-1237304.21.0-0.nightly-2025-10-28-0837304.21.0-0.nightly-2025-10-28-0437304.21.0-0.nightly-2025-10-28-0001244.21.0-0.nightly-2025-10-27-0852014.21.0-0.nightly-2025-10-26-1453584.21.0-0.nightly-2025-10-25-1836214.21.0-0.nightly-2025-10-23-2257334.21.0-0.nightly-2025-10-23-0902574.21.0-0.nightly-2025-10-23-0206414.21.0-0.nightly-2025-10-22-1237274.21.0-0.nightly-2025-10-20-0802284.21.0-0.nightly-2025-10-19-1811514.21.0-0.nightly-2025-10-19-0551394.21.0-0.nightly-2025-10-18-2259584.21.0-0.nightly-2025-09-27-232055───4.21.0-0.ci-2025-10-31-1519334.21.0-0.ci-2025-10-31-0919314.21.0-0.ci-2025-10-31-0319304.21.0-0.ci-2025-10-30-2119294.21.0-0.ci-2025-10-30-1519284.21.0-0.ci-2025-10-30-0919274.21.0-0.ci-2025-10-30-0319264.21.0-0.ci-2025-10-29-2119254.21.0-0.ci-2025-10-29-1519254.21.0-0.ci-2025-10-29-0919244.21.0-0.ci-2025-10-29-031923───4.20.0-0.nightly-2025-10-30-1149554.20.0-0.nightly-2025-10-30-0308384.20.0-0.nightly-2025-10-29-2014124.20.0-0.nightly-2025-10-29-1409014.20.0-0.nightly-2025-10-29-0516314.20.0-0.nightly-2025-10-28-2037114.20.0-0.nightly-2025-10-28-1527054.20.0-0.nightly-2025-10-28-1127054.20.0-0.nightly-2025-10-28-0727054.20.0-0.nightly-2025-10-28-0327054.20.0-0.nightly-2025-10-27-2327054.20.0-0.nightly-2025-10-27-1214494.20.0-0.nightly-2025-10-27-0502114.20.0-0.nightly-2025-10-26-1908314.20.0-0.nightly-2025-10-26-1153264.20.0-0.nightly-2025-10-26-0540334.20.0-0.nightly-2025-10-26-0020584.20.0-0.nightly-2025-10-25-1537494.20.0-0.nightly-2025-10-25-0702284.20.0-0.nightly-2025-10-25-0031424.20.0-0.nightly-2025-10-24-1809344.20.0-0.nightly-2025-10-24-1040584.20.0-0.nightly-2025-10-24-0338344.20.0-0.nightly-2025-10-23-2205504.20.0-0.nightly-2025-10-23-1250394.20.0-0.nightly-2025-10-23-0412314.20.0-0.nightly-2025-10-22-1944144.20.0-0.nightly-2025-10-22-1415004.20.0-0.nightly-2025-10-21-1733564.20.0-0.nightly-2025-10-21-0034344.20.0-0.nightly-2025-10-19-1539354.20.0-0.nightly-2025-10-19-0858174.20.0-0.nightly-2025-10-19-0347494.20.0-0.nightly-2025-10-18-2201004.20.0-0.nightly-2025-10-18-1609524.20.0-0.nightly-2025-05-26-181128───4.20.0-0.ci-2025-10-31-1331454.20.0-0.ci-2025-10-31-0731454.20.0-0.ci-2025-10-30-2257244.20.0-0.ci-2025-10-30-1408214.20.0-0.ci-2025-10-30-0808214.20.0-0.ci-2025-10-30-0208214.20.0-0.ci-2025-10-29-2008214.20.0-0.ci-2025-10-29-1408214.20.0-0.ci-2025-10-29-0455034.20.0-0.ci-2025-10-28-225503───4.19.0-0.nightly-2025-10-30-1214404.19.0-0.nightly-2025-10-30-0708274.19.0-0.nightly-2025-10-29-2142504.19.0-0.nightly-2025-10-29-1414404.19.0-0.nightly-2025-10-29-0801054.19.0-0.nightly-2025-10-29-0023014.19.0-0.nightly-2025-10-28-1556524.19.0-0.nightly-2025-10-28-0832484.19.0-0.nightly-2025-10-28-0432484.19.0-0.nightly-2025-10-28-0032484.19.0-0.nightly-2025-10-22-1412594.19.0-0.nightly-2025-10-21-0813034.19.0-0.nightly-2025-10-19-1707074.19.0-0.nightly-2025-10-19-1207564.19.0-0.nightly-2025-10-19-0700094.19.0-0.nightly-2025-10-19-0159524.19.0-0.nightly-2025-10-18-0956464.19.0-0.nightly-2025-10-17-235048───4.19.0-0.ci-2025-10-31-1156084.19.0-0.ci-2025-10-31-0322394.19.0-0.ci-2025-10-30-2122394.19.0-0.ci-2025-10-30-1345054.19.0-0.ci-2025-10-30-0501234.19.0-0.ci-2025-10-29-2013404.19.0-0.ci-2025-10-29-1413404.19.0-0.ci-2025-10-29-081340───4.18.0-0.nightly-2025-10-30-1230554.18.0-0.nightly-2025-10-30-0637174.18.0-0.nightly-2025-10-30-0044534.18.0-0.nightly-2025-10-29-1824554.18.0-0.nightly-2025-10-29-1249414.18.0-0.nightly-2025-10-29-0313304.18.0-0.nightly-2025-10-28-1712424.18.0-0.nightly-2025-10-28-1312424.18.0-0.nightly-2025-10-28-0255474.18.0-0.nightly-2025-10-27-2116274.18.0-0.nightly-2025-10-27-1216294.18.0-0.nightly-2025-10-27-0523264.18.0-0.nightly-2025-10-27-0123264.18.0-0.nightly-2025-10-26-1729114.18.0-0.nightly-2025-10-26-0950234.18.0-0.nightly-2025-10-26-0220254.18.0-0.nightly-2025-10-25-2033174.18.0-0.nightly-2025-10-25-1501454.18.0-0.nightly-2025-10-25-1101454.18.0-0.nightly-2025-10-25-0305114.18.0-0.nightly-2025-10-24-2111004.18.0-0.nightly-2025-10-24-1711004.18.0-0.nightly-2025-10-24-1102084.18.0-0.nightly-2025-10-24-0702084.18.0-0.nightly-2025-10-24-0034214.18.0-0.nightly-2025-10-23-1831504.18.0-0.nightly-2025-10-23-1056544.18.0-0.nightly-2025-10-23-0656544.18.0-0.nightly-2025-10-23-0054024.18.0-0.nightly-2025-10-22-1023014.18.0-0.nightly-2025-10-22-0235074.18.0-0.nightly-2025-10-21-0213044.18.0-0.nightly-2025-10-19-2350174.18.0-0.nightly-2025-10-19-1419324.18.0-0.nightly-2025-10-17-214633───4.18.0-0.ci-2025-10-31-1547244.18.0-0.ci-2025-10-31-0812024.18.0-0.ci-2025-10-31-0134354.18.0-0.ci-2025-10-30-1934344.18.0-0.ci-2025-10-30-1132584.18.0-0.ci-2025-10-30-0406244.18.0-0.ci-2025-10-29-2104404.18.0-0.ci-2025-10-29-1422224.18.0-0.ci-2025-10-29-0822224.18.0-0.ci-2025-10-29-0222224.18.0-0.ci-2025-10-28-202222───4.17.0-0.nightly-2025-10-30-1222444.17.0-0.nightly-2025-10-30-0618534.17.0-0.nightly-2025-10-30-0218534.17.0-0.nightly-2025-10-29-2122174.17.0-0.nightly-2025-10-29-1610264.17.0-0.nightly-2025-10-29-0829244.17.0-0.nightly-2025-10-29-0209244.17.0-0.nightly-2025-10-28-1721334.17.0-0.nightly-2025-10-28-0343124.17.0-0.nightly-2025-10-27-2137584.17.0-0.nightly-2025-10-27-1355494.17.0-0.nightly-2025-10-27-0843194.17.0-0.nightly-2025-10-27-0246524.17.0-0.nightly-2025-10-26-2036084.17.0-0.nightly-2025-10-26-1320234.17.0-0.nightly-2025-10-26-0920234.17.0-0.nightly-2025-10-26-0520234.17.0-0.nightly-2025-10-26-0109084.17.0-0.nightly-2025-10-25-1754574.17.0-0.nightly-2025-10-25-1354574.17.0-0.nightly-2025-10-25-0734564.17.0-0.nightly-2025-10-25-0040054.17.0-0.nightly-2025-10-24-1901524.17.0-0.nightly-2025-10-24-1146344.17.0-0.nightly-2025-10-24-0639164.17.0-0.nightly-2025-10-24-0239164.17.0-0.nightly-2025-10-23-2239164.17.0-0.nightly-2025-10-23-1839164.17.0-0.nightly-2025-10-23-1325324.17.0-0.nightly-2025-10-23-0753114.17.0-0.nightly-2025-10-23-0034584.17.0-0.nightly-2025-10-21-0928444.17.0-0.nightly-2025-10-21-0034244.17.0-0.nightly-2025-10-20-0050174.17.0-0.nightly-2025-10-19-1341014.17.0-0.nightly-2025-10-19-0940494.17.0-0.nightly-2025-10-18-2221284.17.0-0.nightly-2025-10-18-1716114.17.0-0.nightly-2025-10-18-0953154.17.0-0.nightly-2025-10-17-213314───4.17.0-0.ci-2025-10-31-1322214.17.0-0.ci-2025-10-31-0550594.17.0-0.ci-2025-10-30-2227104.17.0-0.ci-2025-10-30-1627104.17.0-0.ci-2025-10-30-1027104.17.0-0.ci-2025-10-30-0247104.17.0-0.ci-2025-10-29-1848244.17.0-0.ci-2025-10-29-1044134.17.0-0.ci-2025-10-29-021819───4.16.0-0.nightly-2025-10-30-0250254.16.0-0.nightly-2025-10-29-1902564.16.0-0.nightly-2025-10-29-1100144.16.0-0.nightly-2025-10-29-0342314.16.0-0.nightly-2025-10-28-2155514.16.0-0.nightly-2025-10-28-1633384.16.0-0.nightly-2025-10-28-0503144.16.0-0.nightly-2025-10-27-0337284.16.0-0.nightly-2025-10-26-1419004.16.0-0.nightly-2025-10-25-1350484.16.0-0.nightly-2025-10-23-0554254.16.0-0.nightly-2025-10-23-0154254.16.0-0.nightly-2025-10-22-1700034.16.0-0.nightly-2025-10-22-0217394.16.0-0.nightly-2025-10-21-023852───4.16.0-0.ci-2025-10-31-1518474.16.0-0.ci-2025-10-31-0703044.16.0-0.ci-2025-10-31-0103044.16.0-0.ci-2025-10-30-1722324.16.0-0.ci-2025-10-30-1122324.16.0-0.ci-2025-10-30-0522324.16.0-0.ci-2025-10-29-2144364.16.0-0.ci-2025-10-29-1544364.16.0-0.ci-2025-10-29-0841384.16.0-0.ci-2025-10-29-024138───4.15.0-0.nightly-2025-10-29-1439264.15.0-0.nightly-2025-10-29-0329284.15.0-0.nightly-2025-10-28-1352404.15.0-0.nightly-2025-10-22-2228314.15.0-0.nightly-2025-10-22-0521174.15.0-0.nightly-2025-10-21-072859───4.15.0-0.ci-2025-10-31-1504484.15.0-0.ci-2025-10-31-0413184.15.0-0.ci-2025-10-30-2213184.15.0-0.ci-2025-10-30-1321214.15.0-0.ci-2025-10-30-0615034.15.0-0.ci-2025-10-29-1810344.15.0-0.ci-2025-10-29-0356494.15.0-0.ci-2025-10-28-204421───4.14.0-0.nightly-2025-10-30-0303294.14.0-0.nightly-2025-10-29-1458554.14.0-0.nightly-2025-10-29-0452324.14.0-0.nightly-2025-10-28-2120224.14.0-0.nightly-2025-10-28-1354464.14.0-0.nightly-2025-10-27-0301104.14.0-0.nightly-2025-10-26-142656───4.14.0-0.ci-2025-10-31-1748224.14.0-0.ci-2025-10-30-1709254.14.0-0.ci-2025-10-30-0855114.14.0-0.ci-2025-10-29-1447304.14.0-0.ci-2025-10-28-2027584.14.0-0.ci-2025-10-28-142758───4.13.0-0.nightly-2025-10-30-0730554.13.0-0.nightly-2025-10-30-0130554.13.0-0.nightly-2025-10-29-1352464.13.0-0.nightly-2025-10-29-0148294.13.0-0.nightly-2025-10-28-1333374.13.0-0.nightly-2025-10-22-1628044.13.0-0.nightly-2025-10-22-040421───4.13.0-0.ci-2025-10-31-1408534.13.0-0.ci-2025-10-31-0808534.13.0-0.ci-2025-10-31-0208534.13.0-0.ci-2025-10-30-2008534.13.0-0.ci-2025-10-30-1408534.13.0-0.ci-2025-10-17-0726454.13.0-0.ci-2025-10-16-2027544.13.0-0.ci-2025-10-16-1013424.13.0-0.ci-2025-10-15-2235034.13.0-0.ci-2025-10-14-1341514.13.0-0.ci-2025-10-13-1536564.13.0-0.ci-2025-10-13-045803───4.12.0-0.nightly-2025-10-28-1357524.12.0-0.nightly-2025-10-28-0123534.12.0-0.nightly-2025-10-24-0101004.12.0-0.nightly-2025-10-23-1016434.12.0-0.nightly-2025-10-23-0127204.12.0-0.nightly-2025-10-22-1602524.12.0-0.nightly-2025-10-21-1413554.12.0-0.nightly-2025-10-20-0147124.12.0-0.nightly-2025-10-17-0204404.12.0-0.nightly-2025-10-16-014724───4.12.0-0.ci-2025-10-31-1446324.12.0-0.ci-2025-10-30-1101424.12.0-0.ci-2025-10-30-0139074.12.0-0.ci-2025-10-29-1447394.12.0-0.ci-2025-10-28-2103294.12.0-0.ci-2025-10-28-012356───4.11.0-0.nightly-2025-08-30-0110584.11.0-0.nightly-2025-08-27-2007484.11.0-0.nightly-2025-08-26-2039164.11.0-0.nightly-2025-08-21-0105404.11.0-0.nightly-2025-08-14-204255───4.11.0-0.ci-2025-09-22-2122234.11.0-0.ci-2025-09-22-1522234.11.0-0.ci-2025-09-12-1707384.11.0-0.ci-2025-09-05-0328514.11.0-0.ci-2025-09-04-212851───4.21.0-ec.24.21.0-ec.14.21.0-ec.0

Source code for this page located on github