apiVersion: v1 kind: Pod metadata: annotations: configmap-bin-hash: 3aa556ad27944df77b9719face81c2580e75df13709d13a9eaa07cb388ad9f4a configmap-etc-hash: 43326782f43b5f4c7ccdc53d68e182585462b9e348d55719fd2a3cc05819d93b openstackhelm.openstack.org/release_uuid: "" creationTimestamp: "2026-06-01T20:01:25Z" generateName: ovn-controller-default- labels: application: ovn component: ovn-controller controller-revision-hash: 5d6fc98597 pod-template-generation: "1" release_group: ovn name: ovn-controller-default-8t8bc namespace: openstack ownerReferences: - apiVersion: apps/v1 blockOwnerDeletion: true controller: true kind: DaemonSet name: ovn-controller-default uid: dc860958-c611-4fe9-afc5-be16b169faeb resourceVersion: "18065" uid: a7582a4b-9e32-47dc-ac04-7f4f591ee67c spec: affinity: nodeAffinity: requiredDuringSchedulingIgnoredDuringExecution: nodeSelectorTerms: - matchFields: - key: metadata.name operator: In values: - instance containers: - command: - /root/ovnkube.sh - ovn-controller env: - name: OVS_USER_ID value: openvswitch - name: OVN_DAEMONSET_VERSION value: "3" - name: OVN_LOGLEVEL_CONTROLLER value: -vconsole:info -vfile:info - name: OVN_KUBERNETES_NAMESPACE valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.namespace - name: OVN_KUBERNETES_NB_STATEFULSET value: ovn-ovsdb-nb - name: OVN_KUBERNETES_SB_STATEFULSET value: ovn-ovsdb-sb - name: OVN_SSL_ENABLE value: "no" image: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn:v24.03.7-3@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a imagePullPolicy: IfNotPresent name: controller readinessProbe: exec: command: - /usr/bin/ovn-kube-util - readiness-probe - -t - ovn-controller failureThreshold: 3 initialDelaySeconds: 30 periodSeconds: 60 successThreshold: 1 timeoutSeconds: 30 resources: {} securityContext: privileged: true readOnlyRootFilesystem: true terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /run/openvswitch name: run-openvswitch - mountPath: /var/log/ovn name: logs - mountPath: /run/ovn name: run-openvswitch - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-xv7pp readOnly: true - command: - vector - --config - /etc/vector/vector.toml image: harbor.atmosphere.dev/docker.io/timberio/vector:0.38.0-debian imagePullPolicy: IfNotPresent name: vector resources: {} securityContext: allowPrivilegeEscalation: false readOnlyRootFilesystem: true terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /etc/vector name: vector-config - mountPath: /logs name: logs - mountPath: /var/lib/vector name: vector-data - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-xv7pp readOnly: true - command: - /tmp/ovn-network-logging-parser.sh - start env: - name: VECTOR_HTTP_ENDPOINT value: http://localhost:5001 image: harbor.atmosphere.dev/ghcr.io/vexxhost/neutron:2025.2@sha256:40d250a56c48159f680560af1849bb9ae734c651f49d45354efbe9392d50aa6a imagePullPolicy: IfNotPresent name: log-parser ports: - containerPort: 9697 hostPort: 9697 name: http protocol: TCP resources: {} securityContext: allowPrivilegeEscalation: false readOnlyRootFilesystem: true terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /etc/neutron/neutron.conf name: neutron-etc readOnly: true subPath: neutron.conf - mountPath: /tmp/ovn-network-logging-parser.sh name: ovn-bin readOnly: true subPath: ovn-network-logging-parser.sh - mountPath: /etc/neutron/neutron-ovn-network-logging-parser-uwsgi.ini name: ovn-etc readOnly: true subPath: neutron-ovn-network-logging-parser-uwsgi.ini - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-xv7pp readOnly: true dnsPolicy: ClusterFirstWithHostNet enableServiceLinks: true hostIPC: true hostNetwork: true hostPID: true initContainers: - command: - kubernetes-entrypoint env: - name: POD_NAME valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.name - name: NAMESPACE valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.namespace - name: INTERFACE_NAME value: eth0 - name: PATH value: /usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/ - name: DEPENDENCY_SERVICE value: openstack:ovn-ovsdb-sb - name: DEPENDENCY_DAEMONSET - name: DEPENDENCY_CONTAINER - name: DEPENDENCY_POD_JSON value: '[{"labels":{"application":"openvswitch","component":"server"},"requireSameNode":true}]' - name: DEPENDENCY_CUSTOM_RESOURCE image: harbor.atmosphere.dev/ghcr.io/vexxhost/kubernetes-entrypoint:edge@sha256:8921b64b87af184a1421dd856b2703bcf3cff9f50863cd0d18371cf964a87bd3 imagePullPolicy: IfNotPresent name: init resources: {} securityContext: allowPrivilegeEscalation: false readOnlyRootFilesystem: true runAsUser: 65534 terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-xv7pp readOnly: true - command: - /bin/bash - -c - | kubectl get node ${NODENAME} -o jsonpath='{.metadata.labels.openstack-control-plane}' > /tmp/gw-enabled/gw-enabled env: - name: NODENAME valueFrom: fieldRef: apiVersion: v1 fieldPath: spec.nodeName image: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn:v24.03.7-3@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a imagePullPolicy: IfNotPresent name: get-gw-enabled resources: {} terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /tmp/gw-enabled name: gw-enabled - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-xv7pp readOnly: true - command: - /tmp/ovn-controller-init.sh env: - name: NODE_NAME valueFrom: fieldRef: apiVersion: v1 fieldPath: spec.nodeName image: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn:v24.03.7-3@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a imagePullPolicy: IfNotPresent name: controller-init resources: {} securityContext: privileged: true readOnlyRootFilesystem: true terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /tmp/ovn-controller-init.sh name: ovn-bin readOnly: true subPath: ovn-controller-init.sh - mountPath: /run/openvswitch name: run-openvswitch - mountPath: /tmp/auto_bridge_add name: ovn-etc readOnly: true subPath: auto_bridge_add - mountPath: /tmp/gw-enabled name: gw-enabled readOnly: true - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-xv7pp readOnly: true nodeName: instance nodeSelector: openvswitch: enabled preemptionPolicy: PreemptLowerPriority priority: 0 restartPolicy: Always schedulerName: default-scheduler securityContext: {} serviceAccount: ovn-controller serviceAccountName: ovn-controller terminationGracePeriodSeconds: 30 tolerations: - effect: NoExecute key: node.kubernetes.io/not-ready operator: Exists - effect: NoExecute key: node.kubernetes.io/unreachable operator: Exists - effect: NoSchedule key: node.kubernetes.io/disk-pressure operator: Exists - effect: NoSchedule key: node.kubernetes.io/memory-pressure operator: Exists - effect: NoSchedule key: node.kubernetes.io/pid-pressure operator: Exists - effect: NoSchedule key: node.kubernetes.io/unschedulable operator: Exists - effect: NoSchedule key: node.kubernetes.io/network-unavailable operator: Exists volumes: - configMap: defaultMode: 511 name: ovn-controller-default-bin name: ovn-bin - hostPath: path: /run/openvswitch type: DirectoryOrCreate name: run-openvswitch - name: ovn-etc secret: defaultMode: 292 secretName: ovn-controller-default-etc - hostPath: path: /var/log/ovn type: DirectoryOrCreate name: logs - hostPath: path: /run/ovn type: DirectoryOrCreate name: run-ovn - emptyDir: {} name: gw-enabled - name: vector-config secret: defaultMode: 420 secretName: ovn-vector-config - emptyDir: {} name: vector-data - name: neutron-etc secret: defaultMode: 292 secretName: neutron-etc - name: kube-api-access-xv7pp projected: defaultMode: 420 sources: - serviceAccountToken: expirationSeconds: 3607 path: token - configMap: items: - key: ca.crt path: ca.crt name: kube-root-ca.crt - downwardAPI: items: - fieldRef: apiVersion: v1 fieldPath: metadata.namespace path: namespace status: conditions: - lastProbeTime: null lastTransitionTime: "2026-06-01T20:07:42Z" status: "True" type: Initialized - lastProbeTime: null lastTransitionTime: "2026-06-01T20:08:38Z" status: "True" type: Ready - lastProbeTime: null lastTransitionTime: "2026-06-01T20:08:38Z" status: "True" type: ContainersReady - lastProbeTime: null lastTransitionTime: "2026-06-01T20:01:25Z" status: "True" type: PodScheduled containerStatuses: - containerID: containerd://90b1e74e29c4cc722dc8d416f4c11b3844d5d04525ca0a4da6531d8ab588c142 image: sha256:f183e9d034a520ebdfadc9ee3e250ce9012a8aa7baf1d41322996382ff01e8f5 imageID: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a lastState: {} name: controller ready: true restartCount: 0 started: true state: running: startedAt: "2026-06-01T20:07:42Z" - containerID: containerd://b6ccbc07fb8a376ecc268a04c0f42e1db6dc089701fa1ec8c43b4c0a62760b3d image: sha256:22e310be196f04a2694372a716d9736b66aff24fe115d9477cd6e4528c27bbff imageID: harbor.atmosphere.dev/ghcr.io/vexxhost/neutron@sha256:40d250a56c48159f680560af1849bb9ae734c651f49d45354efbe9392d50aa6a lastState: {} name: log-parser ready: true restartCount: 0 started: true state: running: startedAt: "2026-06-01T20:07:42Z" - containerID: containerd://4d6076eb2fb7bdc2f67880941160bc54cb7014c0174e5a6490c11af2a10f0c51 image: harbor.atmosphere.dev/docker.io/timberio/vector:0.38.0-debian imageID: harbor.atmosphere.dev/docker.io/timberio/vector@sha256:7605ccc5a57b6d37650037c7c6495a6331ecd18b5ec326842e76f9d70d445e0b lastState: {} name: vector ready: true restartCount: 0 started: true state: running: startedAt: "2026-06-01T20:07:42Z" hostIP: 199.204.45.78 initContainerStatuses: - containerID: containerd://3853c7f1226a75228681ae7efcb709f5f11f36fa7f9227bb14f57cec56cc801f image: sha256:d656bd5737950b86b0ecff4b0206024769c78ea55e2f9f4c840c3cc2a10caaf8 imageID: harbor.atmosphere.dev/ghcr.io/vexxhost/kubernetes-entrypoint@sha256:8921b64b87af184a1421dd856b2703bcf3cff9f50863cd0d18371cf964a87bd3 lastState: {} name: init ready: true restartCount: 0 started: false state: terminated: containerID: containerd://3853c7f1226a75228681ae7efcb709f5f11f36fa7f9227bb14f57cec56cc801f exitCode: 0 finishedAt: "2026-06-01T20:07:40Z" reason: Completed startedAt: "2026-06-01T20:07:38Z" - containerID: containerd://a5340855ff90928424f0a8ca8f769af072ad7a449cd17f710faf302fe1c4ec13 image: sha256:f183e9d034a520ebdfadc9ee3e250ce9012a8aa7baf1d41322996382ff01e8f5 imageID: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a lastState: {} name: get-gw-enabled ready: true restartCount: 0 started: false state: terminated: containerID: containerd://a5340855ff90928424f0a8ca8f769af072ad7a449cd17f710faf302fe1c4ec13 exitCode: 0 finishedAt: "2026-06-01T20:07:40Z" reason: Completed startedAt: "2026-06-01T20:07:40Z" - containerID: containerd://f95261f1f992233ba2ab04b3bb7c1899f665984d612b7e97e3ceb9f418abd2f6 image: sha256:f183e9d034a520ebdfadc9ee3e250ce9012a8aa7baf1d41322996382ff01e8f5 imageID: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a lastState: {} name: controller-init ready: true restartCount: 0 started: false state: terminated: containerID: containerd://f95261f1f992233ba2ab04b3bb7c1899f665984d612b7e97e3ceb9f418abd2f6 exitCode: 0 finishedAt: "2026-06-01T20:07:42Z" reason: Completed startedAt: "2026-06-01T20:07:41Z" phase: Running podIP: 199.204.45.78 podIPs: - ip: 199.204.45.78 qosClass: BestEffort startTime: "2026-06-01T20:01:25Z"