2090827 – Rebase CoreDNS to 1.9.2 and k8s 1.24

Bug 2090827 - Rebase CoreDNS to 1.9.2 and k8s 1.24

Summary: Rebase CoreDNS to 1.9.2 and k8s 1.24

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	OpenShift Container Platform
Classification:	Red Hat
Component:	Networking
Sub Component:
Version:	4.11
Hardware:	Unspecified
OS:	Unspecified
Priority:	high
Severity:	high
Target Milestone:	---
Target Release:	4.11.0
Assignee:	Miciah Dashiel Butler Masters
QA Contact:	Melvin Joseph
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2022-05-26 15:57 UTC by Miciah Dashiel Butler Masters
Modified:	2022-12-15 12:05 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Doc Type:	Release Note
Doc Text:	Wildcard queries (that is, queries that include the label "*" or the label "any") for names within the cluster.local domain are deprecated. Such queries still resolve in OpenShift 4.11 as they do in earlier OpenShift versions, but these queries may not resolve in later versions of OpenShift. On OpenShift 4.10 and 4.11 clusters, you can check whether clients are using wildcard queries by looking for log messages containing the phrase "deprecated wildcard queries received" in the "dns" container of the "dns-default" pods in the "openshift-dns" namespace. For example: % oc --namespace=openshift-dns logs --container=dns --selector=dns.operator.openshift.io/daemonset-dns=default --tail=-1 --max-log-requests=6 \| grep -e 'deprecated wildcard queries received' -m1 [WARNING] plugin/kubernetes: 1 deprecated wildcard queries received. Wildcard queries will no longer be supported in the next minor release.
Clone Of:
Environment:
Last Closed:	2022-08-10 11:14:36 UTC
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Github	openshift coredns pull 73	0	None	open	Bug 2090827: Merge 1.9.2	2022-05-26 22:21:31 UTC
Red Hat Product Errata	RHSA-2022:5069	0	None	None	None	2022-08-10 11:15:00 UTC

Description Miciah Dashiel Butler Masters 2022-05-26 15:57:33 UTC

Description of problem:

The current version of openshift/coredns is based on CoreDNS 1.8.7 and vendors Kubernetes 1.23 packages.  OpenShift 4.11 is based on Kubernetes 1.24.  


OpenShift release version:

4.11.


Steps to Reproduce (in detail):

1. Check <https://github.com/openshift/coredns/blob/release-4.11/go.mod>.


Actual results:

Kubernetes packages (k8s.io/api, k8s.io/apimachinery, and k8s.io/client-go) are at version v0.23.1.


Expected results:

Kubernetes packages are at version v0.24.0 or later.


Impact of the problem:

Using old Kubernetes API and client packages brings risk of API compatibility issues.  Newer CoreDNS releases also include important fixes.  


Additional info:

The release-4.11 branch of the github.com/openshift/coredns repository is based on upstream github.com/coredns/coredns version 1.8.7.  Upstream CoreDNS moved to Kubernetes 1.24 in its 1.9.2 release (see <https://github.com/coredns/coredns/compare/v1.9.1...v1.9.2>).

Comment 1 Melvin Joseph 2022-05-30 16:40:11 UTC

melvinjoseph@mjoseph-mac Downloads % oc get clusterversion
NAME      VERSION                                                   AVAILABLE   PROGRESSING   SINCE   STATUS
version   4.11.0-0.ci.test-2022-05-30-150908-ci-ln-xfrkp2b-latest   True        False         51m     Cluster version is 4.11.0-0.ci.test-2022-05-30-150908-ci-ln-xfrkp2b-latest
melvinjoseph@mjoseph-mac Downloads % 
melvinjoseph@mjoseph-mac Downloads % 
melvinjoseph@mjoseph-mac Downloads % 
melvinjoseph@mjoseph-mac Downloads % 
melvinjoseph@mjoseph-mac Downloads % oc version
Client Version: 4.10.10
Server Version: 4.11.0-0.ci.test-2022-05-30-150908-ci-ln-xfrkp2b-latest
Kubernetes Version: v1.24.0-alpha.3.3613+01aa0f3f6052c9-dirty

melvinjoseph@mjoseph-mac Downloads % oc get pod -n openshift-dns
NAME                  READY   STATUS    RESTARTS   AGE
dns-default-24sk4     2/2     Running   0          67m
dns-default-42qtf     2/2     Running   0          61m
dns-default-f5cdr     2/2     Running   0          67m
dns-default-hcthw     2/2     Running   0          67m
dns-default-kkmdc     2/2     Running   0          60m
node-resolver-6bbpq   1/1     Running   0          61m
node-resolver-fgkgr   1/1     Running   0          67m
node-resolver-gfjv6   1/1     Running   0          61m
node-resolver-k9btf   1/1     Running   0          67m
node-resolver-lr54t   1/1     Running   0          67m
node-resolver-vvmhs   1/1     Running   0          61m
melvinjoseph@mjoseph-mac Downloads % oc rsh -n openshift-dns dns-default-24sk4 
Defaulted container "dns" out of: dns, kube-rbac-proxy
sh-4.4# coredns --version
CoreDNS-1.9.2
linux/amd64, go1.18, 
sh-4.4# exit
exit
melvinjoseph@mjoseph-mac Downloads % 

Hence verified

Comment 5 errata-xmlrpc 2022-08-10 11:14:36 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Important: OpenShift Container Platform 4.11.0 bug fix and security update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2022:5069

Note You need to log in before you can comment on or make changes to this bug.