apiVersion: v1 kind: Pod metadata: annotations: configmap-bin-hash: 3aa556ad27944df77b9719face81c2580e75df13709d13a9eaa07cb388ad9f4a configmap-etc-hash: 43326782f43b5f4c7ccdc53d68e182585462b9e348d55719fd2a3cc05819d93b openstackhelm.openstack.org/release_uuid: "" creationTimestamp: "2026-04-28T22:53:58Z" generateName: ovn-controller-default- labels: application: ovn component: ovn-controller controller-revision-hash: d6cb6f977 pod-template-generation: "1" release_group: ovn name: ovn-controller-default-qv97z namespace: openstack ownerReferences: - apiVersion: apps/v1 blockOwnerDeletion: true controller: true kind: DaemonSet name: ovn-controller-default uid: b3082c68-ba7c-435c-b614-bf9abd2602b2 resourceVersion: "17617" uid: ab4616b1-d113-44de-a96a-bf0959fb6d52 spec: affinity: nodeAffinity: requiredDuringSchedulingIgnoredDuringExecution: nodeSelectorTerms: - matchFields: - key: metadata.name operator: In values: - instance containers: - command: - /root/ovnkube.sh - ovn-controller env: - name: OVS_USER_ID value: openvswitch - name: OVN_DAEMONSET_VERSION value: "3" - name: OVN_LOGLEVEL_CONTROLLER value: -vconsole:info -vfile:info - name: OVN_KUBERNETES_NAMESPACE valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.namespace - name: OVN_KUBERNETES_NB_STATEFULSET value: ovn-ovsdb-nb - name: OVN_KUBERNETES_SB_STATEFULSET value: ovn-ovsdb-sb - name: OVN_SSL_ENABLE value: "no" image: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn:v24.03.7-3@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a imagePullPolicy: IfNotPresent name: controller readinessProbe: exec: command: - /usr/bin/ovn-kube-util - readiness-probe - -t - ovn-controller failureThreshold: 3 initialDelaySeconds: 30 periodSeconds: 60 successThreshold: 1 timeoutSeconds: 30 resources: {} securityContext: privileged: true readOnlyRootFilesystem: true terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /run/openvswitch name: run-openvswitch - mountPath: /var/log/ovn name: logs - mountPath: /run/ovn name: run-openvswitch - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-tcz7s readOnly: true - command: - vector - --config - /etc/vector/vector.toml image: harbor.atmosphere.dev/docker.io/timberio/vector:0.38.0-debian imagePullPolicy: IfNotPresent name: vector resources: {} securityContext: allowPrivilegeEscalation: false readOnlyRootFilesystem: true terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /etc/vector name: vector-config - mountPath: /logs name: logs - mountPath: /var/lib/vector name: vector-data - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-tcz7s readOnly: true - command: - /tmp/ovn-network-logging-parser.sh - start env: - name: VECTOR_HTTP_ENDPOINT value: http://localhost:5001 image: harbor.atmosphere.dev/ghcr.io/vexxhost/neutron:2025.1@sha256:1066aad64c5c7aada38a23434defb2931e8b3856b9fcb96dd7d45a9b1edf5bee imagePullPolicy: IfNotPresent name: log-parser ports: - containerPort: 9697 hostPort: 9697 name: http protocol: TCP resources: {} securityContext: allowPrivilegeEscalation: false readOnlyRootFilesystem: true terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /etc/neutron/neutron.conf name: neutron-etc readOnly: true subPath: neutron.conf - mountPath: /tmp/ovn-network-logging-parser.sh name: ovn-bin readOnly: true subPath: ovn-network-logging-parser.sh - mountPath: /etc/neutron/neutron-ovn-network-logging-parser-uwsgi.ini name: ovn-etc readOnly: true subPath: neutron-ovn-network-logging-parser-uwsgi.ini - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-tcz7s readOnly: true dnsPolicy: ClusterFirstWithHostNet enableServiceLinks: true hostIPC: true hostNetwork: true hostPID: true initContainers: - command: - kubernetes-entrypoint env: - name: POD_NAME valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.name - name: NAMESPACE valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.namespace - name: INTERFACE_NAME value: eth0 - name: PATH value: /usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/ - name: DEPENDENCY_SERVICE value: openstack:ovn-ovsdb-sb - name: DEPENDENCY_DAEMONSET - name: DEPENDENCY_CONTAINER - name: DEPENDENCY_POD_JSON value: '[{"labels":{"application":"openvswitch","component":"server"},"requireSameNode":true}]' - name: DEPENDENCY_CUSTOM_RESOURCE image: harbor.atmosphere.dev/ghcr.io/vexxhost/kubernetes-entrypoint:edge@sha256:8921b64b87af184a1421dd856b2703bcf3cff9f50863cd0d18371cf964a87bd3 imagePullPolicy: IfNotPresent name: init resources: {} securityContext: allowPrivilegeEscalation: false readOnlyRootFilesystem: true runAsUser: 65534 terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-tcz7s readOnly: true - command: - /bin/bash - -c - | kubectl get node ${NODENAME} -o jsonpath='{.metadata.labels.openstack-control-plane}' > /tmp/gw-enabled/gw-enabled env: - name: NODENAME valueFrom: fieldRef: apiVersion: v1 fieldPath: spec.nodeName image: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn:v24.03.7-3@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a imagePullPolicy: IfNotPresent name: get-gw-enabled resources: {} terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /tmp/gw-enabled name: gw-enabled - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-tcz7s readOnly: true - command: - /tmp/ovn-controller-init.sh env: - name: NODE_NAME valueFrom: fieldRef: apiVersion: v1 fieldPath: spec.nodeName image: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn:v24.03.7-3@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a imagePullPolicy: IfNotPresent name: controller-init resources: {} securityContext: privileged: true readOnlyRootFilesystem: true terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /tmp/ovn-controller-init.sh name: ovn-bin readOnly: true subPath: ovn-controller-init.sh - mountPath: /run/openvswitch name: run-openvswitch - mountPath: /tmp/auto_bridge_add name: ovn-etc readOnly: true subPath: auto_bridge_add - mountPath: /tmp/gw-enabled name: gw-enabled readOnly: true - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-tcz7s readOnly: true nodeName: instance nodeSelector: openvswitch: enabled preemptionPolicy: PreemptLowerPriority priority: 0 restartPolicy: Always schedulerName: default-scheduler securityContext: {} serviceAccount: ovn-controller serviceAccountName: ovn-controller terminationGracePeriodSeconds: 30 tolerations: - effect: NoExecute key: node.kubernetes.io/not-ready operator: Exists - effect: NoExecute key: node.kubernetes.io/unreachable operator: Exists - effect: NoSchedule key: node.kubernetes.io/disk-pressure operator: Exists - effect: NoSchedule key: node.kubernetes.io/memory-pressure operator: Exists - effect: NoSchedule key: node.kubernetes.io/pid-pressure operator: Exists - effect: NoSchedule key: node.kubernetes.io/unschedulable operator: Exists - effect: NoSchedule key: node.kubernetes.io/network-unavailable operator: Exists volumes: - configMap: defaultMode: 511 name: ovn-controller-default-bin name: ovn-bin - hostPath: path: /run/openvswitch type: DirectoryOrCreate name: run-openvswitch - name: ovn-etc secret: defaultMode: 292 secretName: ovn-controller-default-etc - hostPath: path: /var/log/ovn type: DirectoryOrCreate name: logs - hostPath: path: /run/ovn type: DirectoryOrCreate name: run-ovn - emptyDir: {} name: gw-enabled - name: vector-config secret: defaultMode: 420 secretName: ovn-vector-config - emptyDir: {} name: vector-data - name: neutron-etc secret: defaultMode: 292 secretName: neutron-etc - name: kube-api-access-tcz7s projected: defaultMode: 420 sources: - serviceAccountToken: expirationSeconds: 3607 path: token - configMap: items: - key: ca.crt path: ca.crt name: kube-root-ca.crt - downwardAPI: items: - fieldRef: apiVersion: v1 fieldPath: metadata.namespace path: namespace status: conditions: - lastProbeTime: null lastTransitionTime: "2026-04-28T23:00:16Z" status: "True" type: Initialized - lastProbeTime: null lastTransitionTime: "2026-04-28T23:01:11Z" status: "True" type: Ready - lastProbeTime: null lastTransitionTime: "2026-04-28T23:01:11Z" status: "True" type: ContainersReady - lastProbeTime: null lastTransitionTime: "2026-04-28T22:53:58Z" status: "True" type: PodScheduled containerStatuses: - containerID: containerd://20bfd935231244a7644b5fc24a8c1ad4c59b81ea5ffa016fcbfd491b48cb19ed image: sha256:f183e9d034a520ebdfadc9ee3e250ce9012a8aa7baf1d41322996382ff01e8f5 imageID: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a lastState: {} name: controller ready: true restartCount: 0 started: true state: running: startedAt: "2026-04-28T23:00:16Z" - containerID: containerd://6f1c65e7d3b5dd9da611f251d34fe76af3bfb7f1d8cd4f8d623daeac315d0a47 image: sha256:ae50dda3fbc7244e309900bfe535d00991eb0a410a1386e6a26d6d439b332842 imageID: harbor.atmosphere.dev/ghcr.io/vexxhost/neutron@sha256:1066aad64c5c7aada38a23434defb2931e8b3856b9fcb96dd7d45a9b1edf5bee lastState: {} name: log-parser ready: true restartCount: 0 started: true state: running: startedAt: "2026-04-28T23:00:16Z" - containerID: containerd://598d0bf9a4ae5402cecb9d4044c60180a3d663ef854733d8c10d42c073cfb9cf image: harbor.atmosphere.dev/docker.io/timberio/vector:0.38.0-debian imageID: harbor.atmosphere.dev/docker.io/timberio/vector@sha256:7605ccc5a57b6d37650037c7c6495a6331ecd18b5ec326842e76f9d70d445e0b lastState: {} name: vector ready: true restartCount: 0 started: true state: running: startedAt: "2026-04-28T23:00:16Z" hostIP: 199.204.45.57 initContainerStatuses: - containerID: containerd://def8b27f50f266bf8d3f3b52fc191693e3bc6b0cb4844b4331cd035afff6b3c4 image: sha256:d656bd5737950b86b0ecff4b0206024769c78ea55e2f9f4c840c3cc2a10caaf8 imageID: harbor.atmosphere.dev/ghcr.io/vexxhost/kubernetes-entrypoint@sha256:8921b64b87af184a1421dd856b2703bcf3cff9f50863cd0d18371cf964a87bd3 lastState: {} name: init ready: true restartCount: 0 started: false state: terminated: containerID: containerd://def8b27f50f266bf8d3f3b52fc191693e3bc6b0cb4844b4331cd035afff6b3c4 exitCode: 0 finishedAt: "2026-04-28T23:00:13Z" reason: Completed startedAt: "2026-04-28T23:00:11Z" - containerID: containerd://56c110f0e565bb30574e7e808a2dd93bf76ca0cab61401886a960e0dda5eada1 image: sha256:f183e9d034a520ebdfadc9ee3e250ce9012a8aa7baf1d41322996382ff01e8f5 imageID: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a lastState: {} name: get-gw-enabled ready: true restartCount: 0 started: false state: terminated: containerID: containerd://56c110f0e565bb30574e7e808a2dd93bf76ca0cab61401886a960e0dda5eada1 exitCode: 0 finishedAt: "2026-04-28T23:00:14Z" reason: Completed startedAt: "2026-04-28T23:00:14Z" - containerID: containerd://bfd04ae06265c885c64d68ba7720f588afae396bc0d0406b0d963abcfded8339 image: sha256:f183e9d034a520ebdfadc9ee3e250ce9012a8aa7baf1d41322996382ff01e8f5 imageID: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a lastState: {} name: controller-init ready: true restartCount: 0 started: false state: terminated: containerID: containerd://bfd04ae06265c885c64d68ba7720f588afae396bc0d0406b0d963abcfded8339 exitCode: 0 finishedAt: "2026-04-28T23:00:15Z" reason: Completed startedAt: "2026-04-28T23:00:15Z" phase: Running podIP: 199.204.45.57 podIPs: - ip: 199.204.45.57 qosClass: BestEffort startTime: "2026-04-28T22:53:58Z"