Description of problem: When upgrading to 3.7 servicecatalog fails because the apiserver service is not working. Checking further inside the pods it is missing requestheader-client-ca-file and making the pod to crash. While a new installation of 3.7 has the correct configmap Version-Release number of the following components: rpm -q openshift-ansible openshift-ansible-3.7.9-1.git.7.eedd332.el7.noarch rpm -q ansible ansible-2.4.0.0-5.el7.noarch ansible --version ansible 2.4.0.0 config file = /etc/ansible/ansible.cfg configured module search path = [u'/root/.ansible/plugins/modules', u'/usr/share/ansible/plugins/modules'] ansible python module location = /usr/lib/python2.7/site-packages/ansible executable location = /usr/bin/ansible python version = 2.7.5 (default, Aug 2 2016, 04:20:16) [GCC 4.8.5 20150623 (Red Hat 4.8.5-4)] How reproducible: Steps to Reproduce: 1. 2. 3. Actual results: requestheader-client-ca-file missing in configmap extension-apiserver-authentication after upgrade Expected results: requestheader-client-ca-file should be there in configmap extension-apiserver-authentication after upgrade Additional info: Please attach logs from ansible-playbook with the -vvv flag
This is evidence that the API aggregator was not enabled upon upgrade, which has been fixed in bug 1523298.
QE recreated this issue, and will verify later.
Reproduce steps refer to https://bugzilla.redhat.com/show_bug.cgi?id=1523298#c12
PR link copied from bug 1523298: https://github.com/openshift/openshift-ansible/pull/6736
I tested the newer 3.7.24-1.git.0.18a2c6a.el7.noarch, and it works well! LGTM.
Jeff, I think the target release should be "3.7.z", please update if yes
I think the real mistake is not closing this as a dupe, rather than setting it to modified and copying the doc text from the other bug. *** This bug has been marked as a duplicate of bug 1523298 ***
(In reply to Jian Zhang from comment #6) > I tested the newer 3.7.24-1.git.0.18a2c6a.el7.noarch, and it works well! > LGTM. I have met the same problem,but i can not find the package "3.7.24-1.git.0.18a2c6a.el7.noarch",can you tell me where to find it? by the way,my package is "3.7.23-1.git.0.8edc154.el7.noarch".
(In reply to Wen Jun from comment #9) > (In reply to Jian Zhang from comment #6) > > I tested the newer 3.7.24-1.git.0.18a2c6a.el7.noarch, and it works well! > > LGTM. > > I have met the same problem,but i can not find the package > "3.7.24-1.git.0.18a2c6a.el7.noarch",can you tell me where to find it? > by the way,my package is "3.7.23-1.git.0.8edc154.el7.noarch". The errata for public release was delayed, I'm not sure when the final date is. In the coming weeks.