updating-cluster-cli.adoc

Updating a cluster using the CLI

You can perform minor version and patch updates on an {product-title} cluster by using the OpenShift CLI (oc).

Prerequisites

• Have access to the cluster as a user with admin privileges. See Using RBAC to define and apply permissions.

• Have a recent etcd backup in case your update fails and you must restore your cluster to a previous state.

• Have a recent Container Storage Interface (CSI) volume snapshot in case you need to restore persistent volumes due to a pod failure.

• Your {op-system-base}7 workers are replaced with {op-system-base}8 or {op-system} workers. Red Hat does not support in-place {op-system-base}7 to {op-system-base}8 updates for {op-system-base} workers; those hosts must be replaced with a clean operating system install.

• You have updated all Operators previously installed through Operator Lifecycle Manager (OLM) to a version that is compatible with your target release. Updating the Operators ensures they have a valid update path when the default OperatorHub catalogs switch from the current minor version to the next during a cluster update. See Updating installed Operators for more information on how to check compatibility and, if necessary, update the installed Operators.

• Ensure that all machine config pools (MCPs) are running and not paused. Nodes associated with a paused MCP are skipped during the update process. You can pause the MCPs if you are performing a canary rollout update strategy.

• If your cluster uses manually maintained credentials, update the cloud provider resources for the new release. For more information, including how to determine if this is a requirement for your cluster, see Preparing to update a cluster with manually maintained credentials.

• Ensure that you address all Upgradeable=False conditions so the cluster allows an update to the next minor version. An alert displays at the top of the Cluster Settings page when you have one or more cluster Operators that cannot be updated. You can still update to the next available patch update for the minor release you are currently on.

• If you run an Operator or you have configured any application with the pod disruption budget, you might experience an interruption during the update process. If minAvailable is set to 1 in PodDisruptionBudget, the nodes are drained to apply pending machine configs which might block the eviction process. If several nodes are rebooted, all the pods might run on only one node, and the PodDisruptionBudget field can prevent the node drain.

Important

When an update is failing to complete, the Cluster Version Operator (CVO) reports the status of any blocking components while attempting to reconcile the update. Rolling your cluster back to a previous version is not supported. If your update is failing to complete, contact Red Hat support. Using the unsupportedConfigOverrides section to modify the configuration of an Operator is unsupported and might block cluster updates. You must remove this setting before you can update your cluster.

Additional resources

• Support policy for unmanaged Operators

modules/machine-health-checks-pausing.adoc

modules/updating-sno.adoc

Additional resources

• For information on which machine configuration changes require a reboot, see the note in About the Machine Config Operator.

modules/update-upgrading-cli.adoc

modules/update-upgrading-oc-adm-upgrade-recommend.adoc

modules/update-upgrading-oc-adm-upgrade-status.adoc

Additional resources

• Performing a Control Plane Only update

• Updating along a conditional update path

• Understanding update channels and releases

modules/update-conditional-updates.adoc

Additional resources

• Understanding update channels and releases

modules/update-changing-update-server-cli.adoc