apiVersion: v1 kind: Pod metadata: annotations: configmap-bin-hash: 3aa556ad27944df77b9719face81c2580e75df13709d13a9eaa07cb388ad9f4a configmap-etc-hash: 43326782f43b5f4c7ccdc53d68e182585462b9e348d55719fd2a3cc05819d93b openstackhelm.openstack.org/release_uuid: "" creationTimestamp: "2026-05-09T22:14:49Z" generateName: ovn-controller-default- labels: application: ovn component: ovn-controller controller-revision-hash: 78d4f97d9 pod-template-generation: "1" release_group: ovn name: ovn-controller-default-xwvxn namespace: openstack ownerReferences: - apiVersion: apps/v1 blockOwnerDeletion: true controller: true kind: DaemonSet name: ovn-controller-default uid: a71ba390-788c-415f-a15b-91947544a12e resourceVersion: "16927" uid: bfe89026-e1e3-4808-8218-9ede6299c4d7 spec: affinity: nodeAffinity: requiredDuringSchedulingIgnoredDuringExecution: nodeSelectorTerms: - matchFields: - key: metadata.name operator: In values: - instance containers: - command: - /root/ovnkube.sh - ovn-controller env: - name: OVS_USER_ID value: openvswitch - name: OVN_DAEMONSET_VERSION value: "3" - name: OVN_LOGLEVEL_CONTROLLER value: -vconsole:info -vfile:info - name: OVN_KUBERNETES_NAMESPACE valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.namespace - name: OVN_KUBERNETES_NB_STATEFULSET value: ovn-ovsdb-nb - name: OVN_KUBERNETES_SB_STATEFULSET value: ovn-ovsdb-sb - name: OVN_SSL_ENABLE value: "no" image: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn:v24.03.7-3@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a imagePullPolicy: IfNotPresent name: controller readinessProbe: exec: command: - /usr/bin/ovn-kube-util - readiness-probe - -t - ovn-controller failureThreshold: 3 initialDelaySeconds: 30 periodSeconds: 60 successThreshold: 1 timeoutSeconds: 30 resources: {} securityContext: privileged: true readOnlyRootFilesystem: true terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /run/openvswitch name: run-openvswitch - mountPath: /var/log/ovn name: logs - mountPath: /run/ovn name: run-openvswitch - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-t9s6c readOnly: true - command: - vector - --config - /etc/vector/vector.toml image: harbor.atmosphere.dev/docker.io/timberio/vector:0.38.0-debian imagePullPolicy: IfNotPresent name: vector resources: {} securityContext: allowPrivilegeEscalation: false readOnlyRootFilesystem: true terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /etc/vector name: vector-config - mountPath: /logs name: logs - mountPath: /var/lib/vector name: vector-data - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-t9s6c readOnly: true - command: - /tmp/ovn-network-logging-parser.sh - start env: - name: VECTOR_HTTP_ENDPOINT value: http://localhost:5001 image: harbor.atmosphere.dev/ghcr.io/vexxhost/neutron:2025.1@sha256:5791017788abc228a862ecba12e4db82f3e6df1a294497f6fcf37d0f2f5917e3 imagePullPolicy: IfNotPresent name: log-parser ports: - containerPort: 9697 hostPort: 9697 name: http protocol: TCP resources: {} securityContext: allowPrivilegeEscalation: false readOnlyRootFilesystem: true terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /etc/neutron/neutron.conf name: neutron-etc readOnly: true subPath: neutron.conf - mountPath: /tmp/ovn-network-logging-parser.sh name: ovn-bin readOnly: true subPath: ovn-network-logging-parser.sh - mountPath: /etc/neutron/neutron-ovn-network-logging-parser-uwsgi.ini name: ovn-etc readOnly: true subPath: neutron-ovn-network-logging-parser-uwsgi.ini - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-t9s6c readOnly: true dnsPolicy: ClusterFirstWithHostNet enableServiceLinks: true hostIPC: true hostNetwork: true hostPID: true initContainers: - command: - kubernetes-entrypoint env: - name: POD_NAME valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.name - name: NAMESPACE valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.namespace - name: INTERFACE_NAME value: eth0 - name: PATH value: /usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/ - name: DEPENDENCY_SERVICE value: openstack:ovn-ovsdb-sb - name: DEPENDENCY_DAEMONSET - name: DEPENDENCY_CONTAINER - name: DEPENDENCY_POD_JSON value: '[{"labels":{"application":"openvswitch","component":"server"},"requireSameNode":true}]' - name: DEPENDENCY_CUSTOM_RESOURCE image: harbor.atmosphere.dev/ghcr.io/vexxhost/kubernetes-entrypoint:edge@sha256:8921b64b87af184a1421dd856b2703bcf3cff9f50863cd0d18371cf964a87bd3 imagePullPolicy: IfNotPresent name: init resources: {} securityContext: allowPrivilegeEscalation: false readOnlyRootFilesystem: true runAsUser: 65534 terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-t9s6c readOnly: true - command: - /bin/bash - -c - | kubectl get node ${NODENAME} -o jsonpath='{.metadata.labels.openstack-control-plane}' > /tmp/gw-enabled/gw-enabled env: - name: NODENAME valueFrom: fieldRef: apiVersion: v1 fieldPath: spec.nodeName image: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn:v24.03.7-3@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a imagePullPolicy: IfNotPresent name: get-gw-enabled resources: {} terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /tmp/gw-enabled name: gw-enabled - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-t9s6c readOnly: true - command: - /tmp/ovn-controller-init.sh env: - name: NODE_NAME valueFrom: fieldRef: apiVersion: v1 fieldPath: spec.nodeName image: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn:v24.03.7-3@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a imagePullPolicy: IfNotPresent name: controller-init resources: {} securityContext: privileged: true readOnlyRootFilesystem: true terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /tmp/ovn-controller-init.sh name: ovn-bin readOnly: true subPath: ovn-controller-init.sh - mountPath: /run/openvswitch name: run-openvswitch - mountPath: /tmp/auto_bridge_add name: ovn-etc readOnly: true subPath: auto_bridge_add - mountPath: /tmp/gw-enabled name: gw-enabled readOnly: true - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-t9s6c readOnly: true nodeName: instance nodeSelector: openvswitch: enabled preemptionPolicy: PreemptLowerPriority priority: 0 restartPolicy: Always schedulerName: default-scheduler securityContext: {} serviceAccount: ovn-controller serviceAccountName: ovn-controller terminationGracePeriodSeconds: 30 tolerations: - effect: NoExecute key: node.kubernetes.io/not-ready operator: Exists - effect: NoExecute key: node.kubernetes.io/unreachable operator: Exists - effect: NoSchedule key: node.kubernetes.io/disk-pressure operator: Exists - effect: NoSchedule key: node.kubernetes.io/memory-pressure operator: Exists - effect: NoSchedule key: node.kubernetes.io/pid-pressure operator: Exists - effect: NoSchedule key: node.kubernetes.io/unschedulable operator: Exists - effect: NoSchedule key: node.kubernetes.io/network-unavailable operator: Exists volumes: - configMap: defaultMode: 511 name: ovn-controller-default-bin name: ovn-bin - hostPath: path: /run/openvswitch type: DirectoryOrCreate name: run-openvswitch - name: ovn-etc secret: defaultMode: 292 secretName: ovn-controller-default-etc - hostPath: path: /var/log/ovn type: DirectoryOrCreate name: logs - hostPath: path: /run/ovn type: DirectoryOrCreate name: run-ovn - emptyDir: {} name: gw-enabled - name: vector-config secret: defaultMode: 420 secretName: ovn-vector-config - emptyDir: {} name: vector-data - name: neutron-etc secret: defaultMode: 292 secretName: neutron-etc - name: kube-api-access-t9s6c projected: defaultMode: 420 sources: - serviceAccountToken: expirationSeconds: 3607 path: token - configMap: items: - key: ca.crt path: ca.crt name: kube-root-ca.crt - downwardAPI: items: - fieldRef: apiVersion: v1 fieldPath: metadata.namespace path: namespace status: conditions: - lastProbeTime: null lastTransitionTime: "2026-05-09T22:19:05Z" status: "True" type: Initialized - lastProbeTime: null lastTransitionTime: "2026-05-09T22:19:59Z" status: "True" type: Ready - lastProbeTime: null lastTransitionTime: "2026-05-09T22:19:59Z" status: "True" type: ContainersReady - lastProbeTime: null lastTransitionTime: "2026-05-09T22:14:49Z" status: "True" type: PodScheduled containerStatuses: - containerID: containerd://d89da9c6798185984763046c40a2ebadebc5bde4178bda45b5d19729fbc03856 image: sha256:f183e9d034a520ebdfadc9ee3e250ce9012a8aa7baf1d41322996382ff01e8f5 imageID: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a lastState: {} name: controller ready: true restartCount: 0 started: true state: running: startedAt: "2026-05-09T22:19:05Z" - containerID: containerd://9ec192c56e78dae30de99465196686b5c02156a8c66f04882daafb56d5eb2391 image: sha256:708b48a5a4804e4916a150a1184bc5cd19b4908136bcb83e62ccb170a91cdd96 imageID: harbor.atmosphere.dev/ghcr.io/vexxhost/neutron@sha256:5791017788abc228a862ecba12e4db82f3e6df1a294497f6fcf37d0f2f5917e3 lastState: {} name: log-parser ready: true restartCount: 0 started: true state: running: startedAt: "2026-05-09T22:19:05Z" - containerID: containerd://7408f905f9933e89fd2952ffc6b2ae3309934fa4e289e70d88f9220ebe9a222e image: harbor.atmosphere.dev/docker.io/timberio/vector:0.38.0-debian imageID: harbor.atmosphere.dev/docker.io/timberio/vector@sha256:7605ccc5a57b6d37650037c7c6495a6331ecd18b5ec326842e76f9d70d445e0b lastState: {} name: vector ready: true restartCount: 0 started: true state: running: startedAt: "2026-05-09T22:19:05Z" hostIP: 199.204.45.157 initContainerStatuses: - containerID: containerd://eb44927d0f0c45b7e7cb6406241f4ce69c572243a08bb93a94a2087f3a9e0ed8 image: sha256:d656bd5737950b86b0ecff4b0206024769c78ea55e2f9f4c840c3cc2a10caaf8 imageID: harbor.atmosphere.dev/ghcr.io/vexxhost/kubernetes-entrypoint@sha256:8921b64b87af184a1421dd856b2703bcf3cff9f50863cd0d18371cf964a87bd3 lastState: {} name: init ready: true restartCount: 0 started: false state: terminated: containerID: containerd://eb44927d0f0c45b7e7cb6406241f4ce69c572243a08bb93a94a2087f3a9e0ed8 exitCode: 0 finishedAt: "2026-05-09T22:19:01Z" reason: Completed startedAt: "2026-05-09T22:18:59Z" - containerID: containerd://8e1c055541d19a305776601da1aab1770dfcef3db74bc22f53d14870de24b9dc image: sha256:f183e9d034a520ebdfadc9ee3e250ce9012a8aa7baf1d41322996382ff01e8f5 imageID: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a lastState: {} name: get-gw-enabled ready: true restartCount: 0 started: false state: terminated: containerID: containerd://8e1c055541d19a305776601da1aab1770dfcef3db74bc22f53d14870de24b9dc exitCode: 0 finishedAt: "2026-05-09T22:19:02Z" reason: Completed startedAt: "2026-05-09T22:19:02Z" - containerID: containerd://e0f9a81e40c93285ed73b4cbc58dde60162af77b29e7b3ba2dd7d4074f38a49d image: sha256:f183e9d034a520ebdfadc9ee3e250ce9012a8aa7baf1d41322996382ff01e8f5 imageID: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a lastState: {} name: controller-init ready: true restartCount: 0 started: false state: terminated: containerID: containerd://e0f9a81e40c93285ed73b4cbc58dde60162af77b29e7b3ba2dd7d4074f38a49d exitCode: 0 finishedAt: "2026-05-09T22:19:03Z" reason: Completed startedAt: "2026-05-09T22:19:03Z" phase: Running podIP: 199.204.45.157 podIPs: - ip: 199.204.45.157 qosClass: BestEffort startTime: "2026-05-09T22:14:49Z"