-
Notifications
You must be signed in to change notification settings - Fork 1.9k
OSDOCS-18962:Update the z-stream RNs for 4.21.9 #109590
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Merged
mburke5678
merged 1 commit into
openshift:enterprise-4.21
from
tedaveryredhat:OSDOCS-18962
Apr 8, 2026
Merged
Changes from all commits
Commits
File filter
Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,59 @@ | ||
| // Module included in the following assemblies: | ||
| // | ||
| // * release_notes/ocp-4-21-release-notes.adoc | ||
|
|
||
| :_mod-docs-content-type: REFERENCE | ||
| [id="zstream-4-21-9_{context}"] | ||
| = RHBA-2026:6561 - {product-title} {product-version}.9 fixed issues advisory | ||
|
|
||
| Issued: 08 April 2026 | ||
|
|
||
| [role="_abstract"] | ||
| {product-title} release {product-version}.9 is now available. The list of fixed issues that are included in the update is documented in the link:https://access.redhat.com/errata/RHBA-2026:6561[RHBA-2026:6561] advisory. The RPM packages that are included in the update are provided by the link:https://access.redhat.com/errata/RHBA-2026:6557[RHBA-2026:6557] advisory. | ||
|
|
||
| Space precluded documenting all of the container images for this release in the advisory. | ||
|
|
||
| You can view the container images in this release by running the following command: | ||
|
|
||
| [source,terminal] | ||
| ---- | ||
| $ oc adm release info 4.21.9 --pullspecs | ||
| ---- | ||
|
|
||
| [id="zstream-4-21-9-fixed-issues_{context}"] | ||
| == Fixed issues | ||
|
|
||
| * Before this update, if you specified using a managed {rh-openstack-first} Load Balancer, the validation failed when the virtual IP (VIP) was in the `MachineNetwork` allocation pool. With this release, the validation does not fail when you specify using a managed {rh-openstack} Load Balancer. (link:https://redhat.atlassian.net/browse/OCPBUGS-64603[OCPBUGS-64603]) | ||
|
|
||
| * Before this update, the `spec.externallyProvisioned` field could not be changed after a bare-metal host (BMH) was created. As a consequence, hosts that needed hardware inspection before being handed off to an external provisioner (such as the image-based installer for O-RAN deployments) could not follow the required workflow (inspect first with the`externallyProvisioned`field set to `false`, then switch to the `externallyProvisioned` field set to `true`). With this update, the validating webhook permits changing the value of the `spec.externallyProvisioned` parameter from `false` to `true` when the host is in the `Available` state (that is, after the inspection has completed). As a result, workflows are enabled where the Bare Metal Operator (BMO) performs hardware inspection to gather CPU, memory, disk, and NIC details, and then an external tool handles provisioning. Changing the value from `true` to `false` is still blocked, and enabling the field in any state other than `Available` is also rejected. (link:https://redhat.atlassian.net/browse/OCPBUGS-65683[OCPBUGS-65683]) | ||
|
|
||
| * Before this update, the {olm-first} installation flow incorrectly displayed {gcp-first}-specific variables for Operators, such as the Kiali Operator, that did not have the `token-auth-gcp:true` annotation. As a consequence, you were prompted to provide unnecessary {gcp-full} Workload Identity parameters during Operator installation, which caused confusion and potential misconfiguration. With this release, the console installation logic correctly respects the absence of the `token-auth-gcp` annotation and suppresses the {gcp-full}-specific configuration fields accordingly. As a result, the installation flow correctly identifies when the {gcp-full}-specific authentication is not required, which provides a streamlined and accurate setup experience. (link:https://redhat.atlassian.net/browse/OCPBUGS-77000[OCPBUGS-77000]) and (link:https://redhat.atlassian.net/browse/OCPBUGS-77013[OCPBUGS-77013]) | ||
|
|
||
| * Before this update, the egress IP address was incorrectly assigned to the br-ex bridge when you configured additional interfaces. This issue caused egress IP address assignment conflicts and routing issues with unexpected traffic paths. With this release, the egress IP address is not assigned to the br-ex bridge. As a result, the egress IP address is correctly assigned to the secondary interface, which resolves routing conflicts. (link:https://redhat.atlassian.net/browse/OCPBUGS-77257[OCPBUGS-77257]) | ||
|
|
||
| * Before this update, when you used an outdated version of the`vpc-go-sdk` parameter that could not process `any` Security Group (SG) Rules prevented the Messaging Application Programming Interface (MAPI) from creating new machines. As a consequence, older {ibm-cloud-title} SDK versions that could not process SG Rules with the 'any' protocol caused new machines to get stuck during provisioning. With this release, the {ibm-cloud-title} `vpc-go-sdk` parameter is updated to handle the 'any' protocol in SG Rules. As a result, new machines can be created in {ibm-cloud-title} because they do not get stuck during provisioning. (link:https://redhat.atlassian.net/browse/OCPBUGS-77445[OCPBUGS-77445]) | ||
|
|
||
| * Before this update, after you killed the `cloud-event-process` process on the sidecar of the `linuxptp-daemon` pod with the boundary clock (BC) configuration, the clock class was missing. As a consequence, you could not recover the clock class unless you restarted the `linuxptp-daemon` pod. With this release, the clock class can be recovered quickly after you restart the `cloud-event-process` process. (link:https://redhat.atlassian.net/browse/OCPBUGS-77871[OCPBUGS-77871]) | ||
|
|
||
| * Before this update, when you created snapshots of large {azure-first} UltraSSD_LRS or PremiumV2_LRS persistent volumes, the snapshots might have failed because of a hard-coded 10-minute timeout in the CSI driver. This timeout was insufficient for the {azure-short} background copy process on large disks. With this release, the {azure-short} Disk CSI driver supports instant access snapshots, which are configurable in the `instantAccessDurationMinutes` parameter (60-300 minutes) in the `VolumeSnapshotClass` parameter. As a result, snapshots on large volumes are successfully created. (link:https://redhat.atlassian.net/browse/OCPBUGS-78012[OCPBUGS-78012]) | ||
|
|
||
| * Before this update, DNS name rules in the `EgressFirewall` custom resource (CR) were not working correctly when an error was encountered during DNS name resolution or a zero TTL value was returned by the DNS name server. For both scenarios, the next lookup occurred only after 30 minutes. However, these scenarios could be transient and might have gotten resolved well before the next lookup. With this release, the lookup occurs every five seconds when an error is encountered during DNS name resolution or a zero TTL value is returned by the DNS name server. When an error is encountered during the DNS lookup, the lookup occurs with an exponential backoff after 10 retries, with the maximum backoff time capped at two minutes. (link:https://redhat.atlassian.net/browse/OCPBUGS-78094[OCPBUGS-78094]) | ||
|
|
||
| * Before this update, nodes with dynamic system reserved allocation enabled, including all workers installed in 4.21 and later, could not scale down if the node only had 8 GiB of memory, the documented minimum supported worker size for {product-title}. With this release, the memory reservation scaling reserves only 1 GiB of the first 8 GiB, 6% of the next 120 GiB, and 2% of all remaining memory. As a result, nodes as small as 8 GiB are properly removed through autoscaling. (link:https://redhat.atlassian.net/browse/OCPBUGS-78201[OCPBUGS-78201]) | ||
|
|
||
| * Before this update, the pagination state persisted incorrectly when switching namespaces. As a consequence, empty tables were displayed. With this release, the pagination resets to *page 1* when switching namespaces while keeping the items-per-page preference. (link:https://redhat.atlassian.net/browse/OCPBUGS-78599[OCPBUGS-78599]) | ||
|
|
||
| * Before this update, an invalid namespace on the *Search* page was being passed through to each resource list component when *All Projects* was selected from the project selector. As a consequence, each list component displayed a 404 error. With this release, the *Search* page is updated so that it no longer passes a namespace through to these components when *All Project* is selected in the project selector. As a result, the list components do not display a 404 error. (link:https://redhat.atlassian.net/browse/OCPBUGS-78799[OCPBUGS-78799]) | ||
|
|
||
| * Before this update, Baremetal Operator's virtual media baseboard management controller (BMC) drivers required the `bootMACAddress` parameter for inspection, making it impossible to perform automatic MAC discovery. As a consequence, you were required to manually specify MAC addresses to inspect a bare-metal host (BMH) configured with virtual media based provisioning. With this release, the virtual media BMC drivers make the `bootMACAddress` parameter optional for hardware inspection. As a result, virtual media BMC BMHs can now be successfully created and inspected without requiring the `bootMACAddress` parameter, making it possible to discover MAC addresses automatically (for example, for use with O-Cloud Manager). Note that the `bootMACAddress` parameter is still required in install-config, installer-provisioned infrastructure installations and assisted-installer installations. (link:https://redhat.atlassian.net/browse/OCPBUGS-78835[OCPBUGS-78835]) | ||
|
|
||
| * Before this update, when you clicked the *Import to console* action on an {product-title} Lightspeed YAML code block which was generated as part of the AI response, the action correctly redirected to the YAML import page, but the editor was not pre-populated with the YAML code block. With this release, the code block is correctly populated. (link:https://redhat.atlassian.net/browse/OCPBUGS-79035[OCPBUGS-79035]) | ||
|
|
||
| * Before this update, the Catalog Operator pod failed during the {sno} cluster install. With this release, the nil pointer dereference in the `sortUnpackJobs` parameter when sorting non-failed jobs is fixed. As a result, the Catalog Operator pod does not fail during the cluster install. (link:https://redhat.atlassian.net/browse/OCPBUGS-79400[OCPBUGS-79400]) | ||
|
|
||
| * Before this update, the keyboard shortcut navigation on the *Name text* filter was removed as part of the table update. With this release, the keyboard shortcut is restored. (link:https://redhat.atlassian.net/browse/OCPBUGS-79533[OCPBUGS-79533]) | ||
|
|
||
| [id="zstream-4-21-9-updating_{context}"] | ||
| == Updating | ||
|
|
||
| To update an {product-title} 4.21 cluster to this latest release, see xref:../updating/updating_a_cluster/updating-cluster-cli.adoc#updating-cluster-cli[Updating a cluster using the CLI]. | ||
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
🤖 [error] OpenShiftAsciiDoc.NoXrefInModules: Do not include xrefs in modules, only assemblies (exception: release notes modules).