apiVersion: v1 kind: Pod metadata: annotations: configmap-bin-hash: 3aa556ad27944df77b9719face81c2580e75df13709d13a9eaa07cb388ad9f4a configmap-etc-hash: 43326782f43b5f4c7ccdc53d68e182585462b9e348d55719fd2a3cc05819d93b openstackhelm.openstack.org/release_uuid: "" creationTimestamp: "2026-06-04T16:29:41Z" generateName: ovn-controller-default- labels: application: ovn component: ovn-controller controller-revision-hash: 797cd9dc79 pod-template-generation: "1" release_group: ovn name: ovn-controller-default-75fbh namespace: openstack ownerReferences: - apiVersion: apps/v1 blockOwnerDeletion: true controller: true kind: DaemonSet name: ovn-controller-default uid: e783f31e-d344-42d6-8dbd-b16082db8886 resourceVersion: "17808" uid: 6d24176d-8e58-4736-b80b-fe135b4c5004 spec: affinity: nodeAffinity: requiredDuringSchedulingIgnoredDuringExecution: nodeSelectorTerms: - matchFields: - key: metadata.name operator: In values: - instance containers: - command: - /root/ovnkube.sh - ovn-controller env: - name: OVS_USER_ID value: openvswitch - name: OVN_DAEMONSET_VERSION value: "3" - name: OVN_LOGLEVEL_CONTROLLER value: -vconsole:info -vfile:info - name: OVN_KUBERNETES_NAMESPACE valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.namespace - name: OVN_KUBERNETES_NB_STATEFULSET value: ovn-ovsdb-nb - name: OVN_KUBERNETES_SB_STATEFULSET value: ovn-ovsdb-sb - name: OVN_SSL_ENABLE value: "no" image: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn:v24.03.7-3@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a imagePullPolicy: IfNotPresent name: controller readinessProbe: exec: command: - /usr/bin/ovn-kube-util - readiness-probe - -t - ovn-controller failureThreshold: 3 initialDelaySeconds: 30 periodSeconds: 60 successThreshold: 1 timeoutSeconds: 30 resources: {} securityContext: privileged: true readOnlyRootFilesystem: true terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /run/openvswitch name: run-openvswitch - mountPath: /var/log/ovn name: logs - mountPath: /run/ovn name: run-openvswitch - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-gdcc9 readOnly: true - command: - vector - --config - /etc/vector/vector.toml image: harbor.atmosphere.dev/docker.io/timberio/vector:0.38.0-debian imagePullPolicy: IfNotPresent name: vector resources: {} securityContext: allowPrivilegeEscalation: false readOnlyRootFilesystem: true terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /etc/vector name: vector-config - mountPath: /logs name: logs - mountPath: /var/lib/vector name: vector-data - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-gdcc9 readOnly: true - command: - /tmp/ovn-network-logging-parser.sh - start env: - name: VECTOR_HTTP_ENDPOINT value: http://localhost:5001 image: harbor.atmosphere.dev/ghcr.io/vexxhost/neutron:2025.1@sha256:29a20eff0fb09c5bfb44c05e39d1521e1fd9b6a6861819a6da46c46b91d351e9 imagePullPolicy: IfNotPresent name: log-parser ports: - containerPort: 9697 hostPort: 9697 name: http protocol: TCP resources: {} securityContext: allowPrivilegeEscalation: false readOnlyRootFilesystem: true terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /etc/neutron/neutron.conf name: neutron-etc readOnly: true subPath: neutron.conf - mountPath: /tmp/ovn-network-logging-parser.sh name: ovn-bin readOnly: true subPath: ovn-network-logging-parser.sh - mountPath: /etc/neutron/neutron-ovn-network-logging-parser-uwsgi.ini name: ovn-etc readOnly: true subPath: neutron-ovn-network-logging-parser-uwsgi.ini - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-gdcc9 readOnly: true dnsPolicy: ClusterFirstWithHostNet enableServiceLinks: true hostIPC: true hostNetwork: true hostPID: true initContainers: - command: - kubernetes-entrypoint env: - name: POD_NAME valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.name - name: NAMESPACE valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.namespace - name: INTERFACE_NAME value: eth0 - name: PATH value: /usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/ - name: DEPENDENCY_SERVICE value: openstack:ovn-ovsdb-sb - name: DEPENDENCY_DAEMONSET - name: DEPENDENCY_CONTAINER - name: DEPENDENCY_POD_JSON value: '[{"labels":{"application":"openvswitch","component":"server"},"requireSameNode":true}]' - name: DEPENDENCY_CUSTOM_RESOURCE image: harbor.atmosphere.dev/ghcr.io/vexxhost/kubernetes-entrypoint:edge@sha256:8921b64b87af184a1421dd856b2703bcf3cff9f50863cd0d18371cf964a87bd3 imagePullPolicy: IfNotPresent name: init resources: {} securityContext: allowPrivilegeEscalation: false readOnlyRootFilesystem: true runAsUser: 65534 terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-gdcc9 readOnly: true - command: - /bin/bash - -c - | kubectl get node ${NODENAME} -o jsonpath='{.metadata.labels.openstack-control-plane}' > /tmp/gw-enabled/gw-enabled env: - name: NODENAME valueFrom: fieldRef: apiVersion: v1 fieldPath: spec.nodeName image: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn:v24.03.7-3@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a imagePullPolicy: IfNotPresent name: get-gw-enabled resources: {} terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /tmp/gw-enabled name: gw-enabled - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-gdcc9 readOnly: true - command: - /tmp/ovn-controller-init.sh env: - name: NODE_NAME valueFrom: fieldRef: apiVersion: v1 fieldPath: spec.nodeName image: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn:v24.03.7-3@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a imagePullPolicy: IfNotPresent name: controller-init resources: {} securityContext: privileged: true readOnlyRootFilesystem: true terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /tmp/ovn-controller-init.sh name: ovn-bin readOnly: true subPath: ovn-controller-init.sh - mountPath: /run/openvswitch name: run-openvswitch - mountPath: /tmp/auto_bridge_add name: ovn-etc readOnly: true subPath: auto_bridge_add - mountPath: /tmp/gw-enabled name: gw-enabled readOnly: true - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-gdcc9 readOnly: true nodeName: instance nodeSelector: openvswitch: enabled preemptionPolicy: PreemptLowerPriority priority: 0 restartPolicy: Always schedulerName: default-scheduler securityContext: {} serviceAccount: ovn-controller serviceAccountName: ovn-controller terminationGracePeriodSeconds: 30 tolerations: - effect: NoExecute key: node.kubernetes.io/not-ready operator: Exists - effect: NoExecute key: node.kubernetes.io/unreachable operator: Exists - effect: NoSchedule key: node.kubernetes.io/disk-pressure operator: Exists - effect: NoSchedule key: node.kubernetes.io/memory-pressure operator: Exists - effect: NoSchedule key: node.kubernetes.io/pid-pressure operator: Exists - effect: NoSchedule key: node.kubernetes.io/unschedulable operator: Exists - effect: NoSchedule key: node.kubernetes.io/network-unavailable operator: Exists volumes: - configMap: defaultMode: 511 name: ovn-controller-default-bin name: ovn-bin - hostPath: path: /run/openvswitch type: DirectoryOrCreate name: run-openvswitch - name: ovn-etc secret: defaultMode: 292 secretName: ovn-controller-default-etc - hostPath: path: /var/log/ovn type: DirectoryOrCreate name: logs - hostPath: path: /run/ovn type: DirectoryOrCreate name: run-ovn - emptyDir: {} name: gw-enabled - name: vector-config secret: defaultMode: 420 secretName: ovn-vector-config - emptyDir: {} name: vector-data - name: neutron-etc secret: defaultMode: 292 secretName: neutron-etc - name: kube-api-access-gdcc9 projected: defaultMode: 420 sources: - serviceAccountToken: expirationSeconds: 3607 path: token - configMap: items: - key: ca.crt path: ca.crt name: kube-root-ca.crt - downwardAPI: items: - fieldRef: apiVersion: v1 fieldPath: metadata.namespace path: namespace status: conditions: - lastProbeTime: null lastTransitionTime: "2026-06-04T16:35:58Z" status: "True" type: Initialized - lastProbeTime: null lastTransitionTime: "2026-06-04T16:36:53Z" status: "True" type: Ready - lastProbeTime: null lastTransitionTime: "2026-06-04T16:36:53Z" status: "True" type: ContainersReady - lastProbeTime: null lastTransitionTime: "2026-06-04T16:29:41Z" status: "True" type: PodScheduled containerStatuses: - containerID: containerd://f8d3ce6d6ada4c9163e9976393c7a05e9f10faca21621605deecac7f6b19c459 image: sha256:f183e9d034a520ebdfadc9ee3e250ce9012a8aa7baf1d41322996382ff01e8f5 imageID: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a lastState: {} name: controller ready: true restartCount: 0 started: true state: running: startedAt: "2026-06-04T16:35:59Z" - containerID: containerd://58e4b67a3f9f35e3e2110237b8204e1fb166a4972e1409cc932496e5d66094f0 image: sha256:7ae8eaba26e56bda1bc7222cdf4c421b52914f914d1ac3e5dd40c38201f86578 imageID: harbor.atmosphere.dev/ghcr.io/vexxhost/neutron@sha256:29a20eff0fb09c5bfb44c05e39d1521e1fd9b6a6861819a6da46c46b91d351e9 lastState: {} name: log-parser ready: true restartCount: 0 started: true state: running: startedAt: "2026-06-04T16:35:59Z" - containerID: containerd://9361275772830d715bb91335df86c520621400813f5a1fd4a9b0e0b3f8adf522 image: harbor.atmosphere.dev/docker.io/timberio/vector:0.38.0-debian imageID: harbor.atmosphere.dev/docker.io/timberio/vector@sha256:7605ccc5a57b6d37650037c7c6495a6331ecd18b5ec326842e76f9d70d445e0b lastState: {} name: vector ready: true restartCount: 0 started: true state: running: startedAt: "2026-06-04T16:35:59Z" hostIP: 199.204.45.148 initContainerStatuses: - containerID: containerd://6af4b7e6bb94beeab4ece8b7f6273aa815a7228bb2761487f36a509462347f8d image: sha256:d656bd5737950b86b0ecff4b0206024769c78ea55e2f9f4c840c3cc2a10caaf8 imageID: harbor.atmosphere.dev/ghcr.io/vexxhost/kubernetes-entrypoint@sha256:8921b64b87af184a1421dd856b2703bcf3cff9f50863cd0d18371cf964a87bd3 lastState: {} name: init ready: true restartCount: 0 started: false state: terminated: containerID: containerd://6af4b7e6bb94beeab4ece8b7f6273aa815a7228bb2761487f36a509462347f8d exitCode: 0 finishedAt: "2026-06-04T16:35:55Z" reason: Completed startedAt: "2026-06-04T16:35:53Z" - containerID: containerd://8e4b48eb99700856d05056cc78356d0e776c660e6c27b953908502ec1e92433f image: sha256:f183e9d034a520ebdfadc9ee3e250ce9012a8aa7baf1d41322996382ff01e8f5 imageID: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a lastState: {} name: get-gw-enabled ready: true restartCount: 0 started: false state: terminated: containerID: containerd://8e4b48eb99700856d05056cc78356d0e776c660e6c27b953908502ec1e92433f exitCode: 0 finishedAt: "2026-06-04T16:35:57Z" reason: Completed startedAt: "2026-06-04T16:35:56Z" - containerID: containerd://20f716e3b18e92526f11e255103313539b499f150df4d421fcae343727bd2d78 image: sha256:f183e9d034a520ebdfadc9ee3e250ce9012a8aa7baf1d41322996382ff01e8f5 imageID: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a lastState: {} name: controller-init ready: true restartCount: 0 started: false state: terminated: containerID: containerd://20f716e3b18e92526f11e255103313539b499f150df4d421fcae343727bd2d78 exitCode: 0 finishedAt: "2026-06-04T16:35:58Z" reason: Completed startedAt: "2026-06-04T16:35:58Z" phase: Running podIP: 199.204.45.148 podIPs: - ip: 199.204.45.148 qosClass: BestEffort startTime: "2026-06-04T16:29:41Z"