From a344e332cd1917e67f313edb463c9ccff4a39f3c Mon Sep 17 00:00:00 2001
From: Alex Dellapenta <adellape@redhat.com>
Date: Fri, 30 Jun 2017 17:51:26 -0400
Subject: [PATCH 1/3] Updates for OCP 3.4.1.44 release

---
 .../install/disconnected_install.adoc         |  2 +-
 .../upgrading/automated_upgrades.adoc         |  2 +-
 install_config/upgrading/manual_upgrades.adoc | 23 ++++++++++-
 release_notes/ocp_3_4_release_notes.adoc      | 41 +++++++++++++++++++
 release_notes/revhistory_release_notes.adoc   | 20 +++++++++
 welcome/revhistory_full.adoc                  |  5 +++
 6 files changed, 90 insertions(+), 3 deletions(-)

diff --git a/install_config/install/disconnected_install.adoc b/install_config/install/disconnected_install.adoc
index ca5da1646ada..de0d7a785ece 100644
--- a/install_config/install/disconnected_install.adoc
+++ b/install_config/install/disconnected_install.adoc
@@ -2,7 +2,7 @@
 = Disconnected Installation
 {product-author}
 {product-version}
-:latest-tag: v3.4.1.24
+:latest-tag: v3.4.1.44
 :latest-int-tag: 3.4.1
 :latest-registry-console-tag: 3.4
 :data-uri:
diff --git a/install_config/upgrading/automated_upgrades.adoc b/install_config/upgrading/automated_upgrades.adoc
index 5ea8ca2655f9..758bd6e9143d 100644
--- a/install_config/upgrading/automated_upgrades.adoc
+++ b/install_config/upgrading/automated_upgrades.adoc
@@ -2,7 +2,7 @@
 = Performing Automated In-place Cluster Upgrades
 {product-author}
 {product-version}
-:latest-tag: v3.4.1.24
+:latest-tag: v3.4.1.44
 :data-uri:
 :icons:
 :experimental:
diff --git a/install_config/upgrading/manual_upgrades.adoc b/install_config/upgrading/manual_upgrades.adoc
index c5f3cc8ccd27..75141227035b 100644
--- a/install_config/upgrading/manual_upgrades.adoc
+++ b/install_config/upgrading/manual_upgrades.adoc
@@ -2,7 +2,7 @@
 = Performing Manual In-place Cluster Upgrades
 {product-author}
 {product-version}
-:latest-tag: v3.4.1.24
+:latest-tag: v3.4.1.44
 :data-uri:
 :icons:
 :experimental:
@@ -1499,6 +1499,27 @@ upgrade process.
 There are no additional manual steps for the upgrade to
 xref:../../release_notes/ocp_3_4_release_notes.adoc#ocp-3-4-1-24[{product-title} 3.4.1.24] that are not already mentioned inline during the standard manual
 upgrade process.
+
+[[manual-step-ocp-3-4-1-33]]
+=== {product-title} 3.4.1.33
+
+There are no additional manual steps for the upgrade to
+xref:../../release_notes/ocp_3_4_release_notes.adoc#ocp-3-4-1-33[{product-title} 3.4.1.33] that are not already mentioned inline during the standard manual
+upgrade process.
+
+[[manual-step-ocp-3-4-1-37]]
+=== {product-title} 3.4.1.37
+
+There are no additional manual steps for the upgrade to
+xref:../../release_notes/ocp_3_4_release_notes.adoc#ocp-3-4-1-37[{product-title} 3.4.1.37] that are not already mentioned inline during the standard manual
+upgrade process.
+
+[[manual-step-ocp-3-4-1-44]]
+=== {product-title} 3.4.1.44
+
+There are no additional manual steps for the upgrade to
+xref:../../release_notes/ocp_3_4_release_notes.adoc#ocp-3-4-1-44[{product-title} 3.4.1.44] that are not already mentioned inline during the standard manual
+upgrade process.
 endif::[]
 
 ifdef::openshift-origin[]
diff --git a/release_notes/ocp_3_4_release_notes.adoc b/release_notes/ocp_3_4_release_notes.adoc
index 9cc95d531ea7..4cadc963b298 100644
--- a/release_notes/ocp_3_4_release_notes.adoc
+++ b/release_notes/ocp_3_4_release_notes.adoc
@@ -1498,3 +1498,44 @@ initiate Ansible-based installation or upgrade procedures:
 * Previously, it was only possible to redeploy the etcd CA certificate by also redeploying the OpenShift CA certificate, which was unnecessary maintenance. With this enhancement, the etcd CA certificate may now be replaced independent of the OpenShift CA certificate using the etcd CA certificate redeployment playbook (*_playbooks/byo/openshift-cluster/redeploy-etcd-ca.yml_*). Note that the OpenShift CA redeployment playbook (*_playbooks/byo/openshift-cluster/redeploy-openshift-ca.yml_*) now only replaces the OpenShift CA certificate. Similarly, the etcd CA redeployment playbook only redeploys the etcd CA certificate. (link:https://bugzilla.redhat.com/show_bug.cgi?id=1463773[*BZ#1463773*])
 
 * Each {product-title} version works properly with specific range of versions of packages. Thus, the package versions must be limited and the ranges enforced. This enhancement extends the installation and upgrade playbooks to install the **-excluder* packages that protects RPMs against upgrading to undesired versions. As a result, the range of versions of packages for each {product-title} version (since 3.3) is now protected. (link:https://bugzilla.redhat.com/show_bug.cgi?id=1436343[*BZ#1436343*])
+
+[[ocp-3-4-1-44]]
+=== RHBA-2017:1640 - {product-title} 3.4.1.44 Bug Fix Update
+
+Issued: 2017-07-11
+
+{product-title} release 3.4.1.44 is now available. The packages and bug fixes
+included in the update are documented in the
+link:https://access.redhat.com/errata/RHBA-2017:1640[RHBA-2017:1640] advisory.
+The container images included in the update are documented in the
+link:https://access.redhat.com/errata/RHBA-2017:1646[RHBA-2017:1646] advisory.
+
+Space precluded documenting all of the bug fixes for this release in the
+advisory. See the following sections for notes on upgrading and details on the
+bug fixes included in this release.
+
+[[ocp-3-4-1-44-upgrading]]
+==== Upgrading
+
+To upgrade an existing {product-title} 3.3 or 3.4 cluster to this latest release, use the
+automated upgrade playbook. See
+xref:../install_config/upgrading/automated_upgrades.adoc#running-the-upgrade-playbook-directly[Performing Automated In-place Cluster Upgrades] for instructions.
+
+[[ocp-3-4-1-44-bug-fixes]]
+==== Bug Fixes
+
+* When doing an incremental build, the S2I builder pulls its builder image before calling the *_save-artifacts_* script and does not ensure that the builder image is still there when it calls *_assemble_*. This leaves a gap of time between the start of the build and the calling of the *_assemble_* script in which the image can be removed. If the image is removed, the build fails. This bug fix adds a call to ensure that the builder image exists right before calling the *_assemble_* script. As a result, the chance of the *_assemble_* script running and not finding an available builder image is greatly reduced. (link:https://bugzilla.redhat.com/show_bug.cgi?id=1446925[*BZ#1446925*])
+
+* When Elasticsearch logging is not configured with console logging, the method that determines whether the cluster is available is not written to the logs returned by the `oc logs` command. This causes the *_runs.sh_* script to time out and exits looking for the log message. This bug fix evaluates the logging configuration to determine where to look for the `cluster.service` message. As a result, the *_run.sh_* script finds the desired message and continues to start the cluster. (link:https://bugzilla.redhat.com/show_bug.cgi?id=1461294[*BZ#1461294*])
+
+* The Elasticsearch (ES) default value for sharing storage between ES instances was wrong. The incorrect default value allowed an ES pod starting up (when another ES pod was shutting down, e.g., during deployment configuration redeployments) to create a new location on the persistent volume (PV) for managing the storage volume. This duplicated data, and in some instances, potentially caused data loss. With this bug fix, all ES pods now run with `node.max_local_storage_nodes` set to `1`. As a result, the ES pods starting up or shutting down will no longer share the same storage, preventing data duplication and data loss. (link:https://bugzilla.redhat.com/show_bug.cgi?id=1462277[*BZ#1462277*])
+
+* The version of Netty that is part of Cassandra 3.0.9 had a memory leak. This bug fix updates Cassandra to 3.0.13, which has a version of Netty that has a fix for the memory leak. (link:https://bugzilla.redhat.com/show_bug.cgi?id=1457499[*BZ#1457499*])
+
+* When an IP address was re-used, it would be generated with a random MAC address that would be different from the previous one. Any node with an ARP cache that still held the old entry for the IP would not be able to communicate with the node. This bug fix generates the MAC address deterministically from the IP address. As a result, a re-used IP address will always have the same MAC address, so the ARP cache no longer gets out of sync, allowing traffic to flow. (link:https://bugzilla.redhat.com/show_bug.cgi?id=1462952[*BZ#1462952*])
+
+* Due to a coding error, `Pop()` operations could panic and cause the router to stop. This bug fix updates this logic and as a result panics no longer occur. (link:https://bugzilla.redhat.com/show_bug.cgi?id=1464567[*BZ#1464567*])
+
+* When master controller routines watch for persistent volume Recycle success events, they may never receive one, but still keep trying indefinitely. This caused the potential for high CPU usage by the master controller as it leaks routines. This bug fix updates the routines to stop watching for these Recycle success events when they will never be received. As a result, the chance of high CPU usage by the master controller is reduced. (link:https://bugzilla.redhat.com/show_bug.cgi?id=1438741[*BZ#1438741*])
+
+* Due to older Kubernetes libraries requiring directory renames instead of deletion, certain `emptyDir` situations could cause high CPU usage. This bug updates these processes to delete `emptyDir` instead of rename, and as a result the high CPU is avoided. (link:https://bugzilla.redhat.com/show_bug.cgi?id=1460260[*BZ#1460260*])
diff --git a/release_notes/revhistory_release_notes.adoc b/release_notes/revhistory_release_notes.adoc
index 366095d20595..e860a5ec8abf 100644
--- a/release_notes/revhistory_release_notes.adoc
+++ b/release_notes/revhistory_release_notes.adoc
@@ -8,6 +8,26 @@
 
 // do-release: revhist-tables
 
+== Tue Jul 11 2017
+
+// tag::release_notes_tue_jul_11_2017[]
+[cols="1,3",options="header"]
+|===
+
+|Affected Topic |Description of Change
+//Tue Jul 11 2017
+
+|xref:../release_notes/index.adoc#release-notes-index[Overview]
+|Clarified that "client" referred to the `oc` client.
+
+|xref:../release_notes/ocp_3_4_release_notes.adoc#release-notes-ocp-3-4-release-notes[{product-title} 3.4 Release Notes]
+|Added release notes for
+xref:../release_notes/ocp_3_4_release_notes.adoc#ocp-3-4-1-44[RHBA-2017:1640 - OpenShift Container Platform 3.4.1.44 Bug Fix Update].
+
+|===
+
+// end::release_notes_tue_jul_11_2017[]
+
 == Thu Jun 29 2017
 
 // tag::release_notes_thu_jun_29_2017[]
diff --git a/welcome/revhistory_full.adoc b/welcome/revhistory_full.adoc
index 873f31083a29..f44504f9f01a 100644
--- a/welcome/revhistory_full.adoc
+++ b/welcome/revhistory_full.adoc
@@ -11,6 +11,11 @@ date.
 
 // do-release: revhist-tables
 
+== Tue Jul 11 2017
+
+.Release Notes
+include::release_notes/revhistory_release_notes.adoc[tag=release_notes_tue_jul_11_2017]
+
 == Thu Jul 06 2017
 .Installation and Configuration
 include::install_config/revhistory_install_config.adoc[tag=install_config_thu_jul_06_2017]

From 0f147795188d8fda427970baf77dd3528f381e74 Mon Sep 17 00:00:00 2001
From: Alex Dellapenta <adellape@redhat.com>
Date: Wed, 5 Jul 2017 12:55:34 -0400
Subject: [PATCH 2/3] Clarify 'client' usage, add redcircles

---
 release_notes/images/redcircle-1.png | Bin 0 -> 596 bytes
 release_notes/images/redcircle-2.png | Bin 0 -> 731 bytes
 release_notes/images/redcircle-3.png | Bin 0 -> 755 bytes
 release_notes/index.adoc             |  38 +++++++++++++++------------
 4 files changed, 21 insertions(+), 17 deletions(-)
 create mode 100644 release_notes/images/redcircle-1.png
 create mode 100644 release_notes/images/redcircle-2.png
 create mode 100644 release_notes/images/redcircle-3.png

diff --git a/release_notes/images/redcircle-1.png b/release_notes/images/redcircle-1.png
new file mode 100644
index 0000000000000000000000000000000000000000..4cbb364a2d76902701bb1b08e16bafb3ccb94ab4
GIT binary patch
literal 596
zcmV-a0;~OrP)<h;3K|Lk000e1NJLTq000*N000&U1^@s6D|QD300006VoOIv0RI60
z0RN!9r;`8x010qNS#tmY3ljhU3ljkVnw%H_000McNliru;Rgi{Egju}Rha+)0pUqR
zK~y-)z16=<8(|#B@%LS9eq16%N*A$0%#gN0F4#$jBU?KbcOy=XyF>qjlC4fg5ElvP
zWbrQu2L^LfL<m;U9HpCrLhiAqt#=(tQkvW)*EIIvrstm5efU0npReRNj>7{zV|`ce
z@3}cRKvb*T)@t0=Y9L7{nar<uZjOn?MF<33w@Y5hTNf8JmX;8eO5guS7ZynD>=2rn
z=~<KAHe79OQCHQ0Fo393sH-Yh+uMVaUlxmeUR@ok#?u=cJjv(X@z(h{bydX{VklgW
zMtO03OemS`DvNE?$mKlYu~+X&T|2zI-e)4@j@v@eSY8I({u395;Zfrdk+=Ii`}mGn
zd~kYkc!)5JF8t`o{p(bo=?|}=T;#^|SDv=j!7VTRQxP+p<@C)i-+k8J>c%~j)1p<a
z^5ZWKwkNrLcQ>-OZ(AK)$z(=`x2^w!M@ERZtxkv9LU1}i&)1Wae}cp5G|vqKSy6r`
zm!nY<r4mvwI5aE;gCzI%kQJr(R*cNfGF2!HjZYN{gwyH%_xa`KCSTUpur13M8i>bv
zy1vfiT+ZLH_-2}zD=Re1<-YKEHcO&Z;?d-!|4G#8&$Ba{x=vHqv2-0AhnS`@u4%+H
ijc_XEeFhIXpnn2Sz{#wUqZ%gw0000<MNUMnLSTX;3l5+F

literal 0
HcmV?d00001

diff --git a/release_notes/images/redcircle-2.png b/release_notes/images/redcircle-2.png
new file mode 100644
index 0000000000000000000000000000000000000000..23f4a0d23f93f85f06c4d2d82c3b1681f193785d
GIT binary patch
literal 731
zcmV<10wn#3P)<h;3K|Lk000e1NJLTq000*N000&U1^@s6D|QD300006VoOIv0RI60
z0RN!9r;`8x010qNS#tmY3ljhU3ljkVnw%H_000McNliru;Rgi{E)a+udglND0%%D@
zK~y-)wbegJ8&Mp<@o%CgF&C-QT8j8D#u9CiJM2;&LdJHgxYWg{n@+VLbagaS>!gB+
zMFM6rb<wRFFleR|sfbl$|3F)`pqSH3HJ1);QmS`}r1;>b_ul7z@Ar7WpDCSAr@5g~
zoO3pn;%I&zWo?a9S>{xh!DPZNNx#3=Rw_C>p{PiAyU8f><lY|f?rxN5H0S??_I8{z
zGguoMuFRSBHXKe)vMGvrVE`o>Wm6P6oSMoX`N8-&p9TgB%5m-37?u6~`gn48mrYSb
zQ<Q>mvmo$beI2XIbtx^HM%?ee3R~S&yqcr=>lqKzXNd84)IP1##Wh7C-qQn`_Ajo)
zV!Aml?iitFumg)KbG#^%y62;EcA7hN26wQsf)a~e!dF*y7hi;W+3oQ0-r2^^6Ca<$
zM__A0sJ9wl@*gXUCk${nMtQr;1%R~)hg1&g7RpxA5Kmmj6+=8TZs8c2=5CXUIzG&g
z@8pd<`$9EU%?S%H7jX?roQHead9h5cnvt=xk=rH7V5ybT=V2O0BvRpCK6Jeyndgid
zD=%*8ndSa#AI0i7&TU=PgcoRBn4|VtU0yt!mQr2Zisg|+34pC0$K(3!j4BU9=%X&4
zv9d2zQxvw^+Bn<T_^&c+^LS{E#W36Lf74<X1f0PjCX1zD*krNb3WYG+?N_T}X-f;$
zfk44{bs&Jv<H=pm4<;t~GBkviNL&joDleyIbd=kE|Mi;1&;5P&`}#OpTFMER`FuEo
zK}xEsuHT8WWq5m=lSqV<NQ6Wr0_ijkua`2f7l+r2&Fwb6gPUy7zW~SV`18yq=t%$o
N002ovPDHLkV1oFGP&fbp

literal 0
HcmV?d00001

diff --git a/release_notes/images/redcircle-3.png b/release_notes/images/redcircle-3.png
new file mode 100644
index 0000000000000000000000000000000000000000..06ac69f6a99cc0bcd22037e24da6be5e0a73387b
GIT binary patch
literal 755
zcmV<P0u23$P)<h;3K|Lk000e1NJLTq000*N000&U1^@s6D|QD300006VoOIv0RI60
z0RN!9r;`8x010qNS#tmY3ljhU3ljkVnw%H_000McNliru;Rgi{E*}`9XLbMp0)R<G
zK~y-)wUs|i6Hy$;KW(8LJqU;*4Fd9KXtlv>a48H;M@Pb<3k5dV7#J8C?W9bUgb)bn
zz(!bviKYon+r=X!h$KKUYDypq(t}p)or6*YdZnr1lDFLZzR&x;@B6*q&!B0V#vOen
zd1o^jjusbDqESv|nNwK?g8_@v`Db)=aIdEaOs1U64SJEMcXrtA?L`TP^X@Npb<r|6
zM_Fs@jX7hk1&32pY)I0rU;rf?W<!!VoSwct@&mu0PeVgRdE7KHLG9pRZg_fon+-`q
zRg|LOMp5MH+8SkTZP#p3Rd&7J8(@>vN7K9aJo|pebL|Z2!wO9=Z5VRERYhU9uMbr9
zDqM-ha(b)^c0`wz^T-0<7G$($54AIIsj1VsgVj}(SnO&lDv?M|u@)U;t9gvfaT=)N
z!AgS19xEl)z`o7~kqDy8bqP=Ez#&a0RfpMTrPTh48oR)+;0#9}^}SC<B0MZ4asY$p
zHTI=`N&z*#z?ab(()rT!FDvW0no8-4HQCQze?NPpeiWgb#$b>~l0N)`m4#cJPJQ)$
zl;hc14t>KUmJ%R15nWZf@(WhUzdwE~FJF_DQSl~7qccG&o<J3xRCZf|O%(aKaCmvn
z$kUw5o2cC{sCHQ~lHxqR#QxYYU!(d5y<lZusH!Mzc6M^MzW!fjR&Y3Y5{qH9SS~#`
ziXtt600y(UXt2R-rfq&6qs4NwDwemm)8O+J4R7%I5FC#D_55IRlFuU}sL5nOP*Zg^
zjpO6o_j(I!7C+;0;sXPm1cQ0Ol^zc*fdHlT^@Vq$Y`$!5aS{q~5(<$Fg+SA&aJ#8=
lyQy%y5o|X7JGjdR{ToP&3yGB0S~may002ovPDHLkV1gd7Nsa&j

literal 0
HcmV?d00001

diff --git a/release_notes/index.adoc b/release_notes/index.adoc
index 9b77855bc472..d35769af0893 100644
--- a/release_notes/index.adoc
+++ b/release_notes/index.adoc
@@ -25,16 +25,21 @@ endif::[]
 == Versioning Policy
 
 {product-title} provides strict backwards compatibility guarantees for all
-supported APIs (excluding alpha APIs, which may be changed without notice, and
-beta APIs, which may occasionally be changed in a non-backwards compatible
-manner). {product-title} will continue to support older clients against newer
-servers. For example, a 3.1 client will work against 3.0, 3.1, and 3.2 servers.
+supported APIs, excluding alpha APIs (which may be changed without notice) and
+beta APIs (which may occasionally be changed in a non-backwards compatible
+manner).
+
+The {product-title} version must match between master and node hosts, excluding
+temporary mismatches during cluster upgrades. For example, in a 3.4 cluster, all
+masters must be 3.4 and all nodes must be 3.4. However, {product-title} will
+continue to support older `oc` clients against newer servers. For example, a 3.3
+`oc` will work against 3.2, 3.3, and 3.4 servers.
 
 Changes of APIs for non-security related reasons will involve, at minimum, two
-minor releases (3.1 to 3.2 to 3.3, for example) to allow older clients to
-update. Using new capabilities may require newer clients. A 3.2 server may have
-additional capabilities that a 3.1 client cannot use and a 3.2 client may have
-additional capabilities that are not supported by a 3.1 server.
+minor releases (3.1 to 3.2 to 3.3, for example) to allow older `oc` to update.
+Using new capabilities may require newer `oc`. A 3.2 server may have additional
+capabilities that a 3.1 `oc` cannot use and a 3.2 `oc` may have additional
+capabilities that are not supported by a 3.1 server.
 
 .Compatibility Matrix
 
@@ -42,19 +47,18 @@ additional capabilities that are not supported by a 3.1 server.
 |===
 
 |
-|*X.Y* (Client)
-|*X.Y+N* footnoteref:[versionpolicyn,Where *N* is a number greater than 1.] (Client)
+|*X.Y* (`oc` Client)
+|*X.Y+N* footnoteref:[versionpolicyn,Where *N* is a number greater than 1.] (`oc` Client)
 
 |*X.Y* (Server)
-|1
-|3
+|image:redcircle-1.png[]
+|image:redcircle-3.png[]
 
 |*X.Y+N* footnoteref:[versionpolicyn] (Server)
-|2
-|1
+|image:redcircle-2.png[]
+|image:redcircle-1.png[]
 
 |===
-
 <1> Fully compatible.
-<2> Client may not be able to access server features.
-<3> Client may provide options and features that may not be compatible with the accessed server.
+<2> `oc` client may not be able to access server features.
+<3> `oc` client may provide options and features that may not be compatible with the accessed server.

From 898bb1838c8214ca8b3a98c8ddda75808ff74473 Mon Sep 17 00:00:00 2001
From: Alex Dellapenta <adellape@redhat.com>
Date: Fri, 7 Jul 2017 16:46:01 -0400
Subject: [PATCH 3/3] Add redcircle imgs in callouts for release_notes/index

---
 release_notes/index.adoc | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/release_notes/index.adoc b/release_notes/index.adoc
index d35769af0893..d864ce5569a1 100644
--- a/release_notes/index.adoc
+++ b/release_notes/index.adoc
@@ -59,6 +59,8 @@ capabilities that are not supported by a 3.1 server.
 |image:redcircle-1.png[]
 
 |===
-<1> Fully compatible.
-<2> `oc` client may not be able to access server features.
-<3> `oc` client may provide options and features that may not be compatible with the accessed server.
+image:redcircle-1.png[] Fully compatible.
+
+image:redcircle-2.png[] `oc` client may not be able to access server features.
+
+image:redcircle-3.png[] `oc` client may provide options and features that may not be compatible with the accessed server.