apiVersion: apps/v1
kind: Deployment
metadata:
  annotations:
    deployment.kubernetes.io/revision: "1"
    meta.helm.sh/release-name: neutron
    meta.helm.sh/release-namespace: openstack
    openstackhelm.openstack.org/release_uuid: ""
  creationTimestamp: "2026-04-25T07:18:46Z"
  generation: 1
  labels:
    app.kubernetes.io/managed-by: Helm
    application: neutron
    component: server
    release_group: neutron
  name: neutron-server
  namespace: openstack
  resourceVersion: "17926"
  uid: a7e6f926-ae04-4d0c-8e9c-3894c1be4fd8
spec:
  progressDeadlineSeconds: 600
  replicas: 1
  revisionHistoryLimit: 3
  selector:
    matchLabels:
      application: neutron
      component: server
      release_group: neutron
  strategy:
    rollingUpdate:
      maxSurge: 3
      maxUnavailable: 1
    type: RollingUpdate
  template:
    metadata:
      annotations:
        configmap-bin-hash: 2b3466bd53c256ec73ac8983b6a36c494af1290cb8596398cf00ceb0ba2f4cef
        configmap-etc-hash: 33ddd089a92a31a882250c2916dc55b5aab5101f0b50df0c2bddb1a6b99d824d
        openstackhelm.openstack.org/release_uuid: ""
      creationTimestamp: null
      labels:
        application: neutron
        component: server
        release_group: neutron
    spec:
      affinity:
        podAntiAffinity:
          preferredDuringSchedulingIgnoredDuringExecution:
          - podAffinityTerm:
              labelSelector:
                matchExpressions:
                - key: release_group
                  operator: In
                  values:
                  - neutron
                - key: application
                  operator: In
                  values:
                  - neutron
                - key: component
                  operator: In
                  values:
                  - server
              topologyKey: kubernetes.io/hostname
            weight: 10
      containers:
      - command:
        - /tmp/neutron-server.sh
        - start
        image: harbor.atmosphere.dev/ghcr.io/vexxhost/neutron:main@sha256:55f9c67dda4cc7082739eea7cb21810862a56aac6fe8107a5f31627c601ab23e
        imagePullPolicy: IfNotPresent
        lifecycle:
          preStop:
            exec:
              command:
              - /tmp/neutron-server.sh
              - stop
        livenessProbe:
          failureThreshold: 3
          httpGet:
            path: /
            port: 9696
            scheme: HTTP
          initialDelaySeconds: 60
          periodSeconds: 15
          successThreshold: 1
          timeoutSeconds: 10
        name: neutron-server
        ports:
        - containerPort: 9696
          name: q-api
          protocol: TCP
        readinessProbe:
          failureThreshold: 3
          httpGet:
            path: /
            port: 9696
            scheme: HTTP
          periodSeconds: 15
          successThreshold: 1
          timeoutSeconds: 10
        resources: {}
        securityContext:
          allowPrivilegeEscalation: false
          readOnlyRootFilesystem: true
        terminationMessagePath: /dev/termination-log
        terminationMessagePolicy: File
        volumeMounts:
        - mountPath: /tmp
          name: pod-tmp
        - mountPath: /tmp/pod-shared
          name: pod-shared
        - mountPath: /var/lib/neutron
          name: pod-var-neutron
        - mountPath: /tmp/neutron-server.sh
          name: neutron-bin
          readOnly: true
          subPath: neutron-server.sh
        - mountPath: /etc/neutron/neutron.conf
          name: neutron-etc
          readOnly: true
          subPath: neutron.conf
        - mountPath: /etc/neutron/neutron-api-uwsgi.ini
          name: neutron-etc
          readOnly: true
          subPath: neutron-api-uwsgi.ini
        - mountPath: /etc/neutron/api_audit_map.conf
          name: neutron-etc
          readOnly: true
          subPath: api_audit_map.conf
        - mountPath: /etc/neutron/plugins/ml2/ml2_conf.ini
          name: neutron-etc
          readOnly: true
          subPath: ml2_conf.ini
        - mountPath: /etc/neutron/taas_plugin.ini
          name: neutron-etc
          readOnly: true
          subPath: taas_plugin.ini
        - mountPath: /etc/neutron/api-paste.ini
          name: neutron-etc
          readOnly: true
          subPath: api-paste.ini
        - mountPath: /etc/neutron/policy.yaml
          name: neutron-etc
          readOnly: true
          subPath: policy.yaml
        - mountPath: /etc/neutron/neutron_vpnaas.conf
          name: neutron-etc
          readOnly: true
          subPath: neutron_vpnaas.conf
        - mountPath: /etc/neutron/neutron_ovn_vpn_agent.ini
          name: neutron-etc
          readOnly: true
          subPath: neutron_ovn_vpn_agent.ini
      - command:
        - /tmp/neutron-policy-server.sh
        - start
        image: harbor.atmosphere.dev/ghcr.io/vexxhost/neutron:main@sha256:55f9c67dda4cc7082739eea7cb21810862a56aac6fe8107a5f31627c601ab23e
        imagePullPolicy: IfNotPresent
        name: neutron-policy-server
        ports:
        - containerPort: 9697
          name: q-policy
          protocol: TCP
        readinessProbe:
          failureThreshold: 3
          httpGet:
            path: /health
            port: 9697
            scheme: HTTP
          periodSeconds: 10
          successThreshold: 1
          timeoutSeconds: 1
        resources: {}
        securityContext:
          allowPrivilegeEscalation: false
          readOnlyRootFilesystem: true
        terminationMessagePath: /dev/termination-log
        terminationMessagePolicy: File
        volumeMounts:
        - mountPath: /tmp/neutron-policy-server.sh
          name: neutron-bin
          readOnly: true
          subPath: neutron-policy-server.sh
        - mountPath: /etc/neutron/neutron-policy-server-uwsgi.ini
          name: neutron-etc
          readOnly: true
          subPath: neutron-policy-server-uwsgi.ini
        - mountPath: /etc/neutron/neutron.conf
          name: neutron-etc
          readOnly: true
          subPath: neutron.conf
        - mountPath: /etc/neutron/plugins/ml2/ml2_conf.ini
          name: neutron-etc
          readOnly: true
          subPath: ml2_conf.ini
      dnsPolicy: ClusterFirst
      initContainers:
      - command:
        - kubernetes-entrypoint
        env:
        - name: POD_NAME
          valueFrom:
            fieldRef:
              apiVersion: v1
              fieldPath: metadata.name
        - name: NAMESPACE
          valueFrom:
            fieldRef:
              apiVersion: v1
              fieldPath: metadata.namespace
        - name: INTERFACE_NAME
          value: eth0
        - name: PATH
          value: /usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/
        - name: DEPENDENCY_SERVICE
          value: openstack:percona-xtradb-haproxy,openstack:rabbitmq-neutron,openstack:memcached,openstack:keystone-api
        - name: DEPENDENCY_JOBS
          value: neutron-db-sync,neutron-ks-user,neutron-ks-endpoints,neutron-rabbit-init
        - name: DEPENDENCY_DAEMONSET
        - name: DEPENDENCY_CONTAINER
        - name: DEPENDENCY_POD_JSON
        - name: DEPENDENCY_CUSTOM_RESOURCE
        image: harbor.atmosphere.dev/ghcr.io/vexxhost/kubernetes-entrypoint:edge
        imagePullPolicy: IfNotPresent
        name: init
        resources: {}
        securityContext:
          allowPrivilegeEscalation: false
          readOnlyRootFilesystem: true
          runAsUser: 65534
        terminationMessagePath: /dev/termination-log
        terminationMessagePolicy: File
      - command:
        - /tmp/neutron-ovn-init.sh
        image: harbor.atmosphere.dev/ghcr.io/vexxhost/neutron:main@sha256:55f9c67dda4cc7082739eea7cb21810862a56aac6fe8107a5f31627c601ab23e
        imagePullPolicy: IfNotPresent
        name: ovn-neutron-init
        resources: {}
        terminationMessagePath: /dev/termination-log
        terminationMessagePolicy: File
        volumeMounts:
        - mountPath: /tmp/pod-shared
          name: pod-shared
        - mountPath: /tmp/neutron-ovn-init.sh
          name: neutron-bin
          readOnly: true
          subPath: neutron-ovn-init.sh
      nodeSelector:
        openstack-control-plane: enabled
      restartPolicy: Always
      schedulerName: default-scheduler
      securityContext:
        runAsUser: 42424
      serviceAccount: neutron-server
      serviceAccountName: neutron-server
      terminationGracePeriodSeconds: 30
      volumes:
      - emptyDir: {}
        name: pod-tmp
      - emptyDir: {}
        name: pod-shared
      - emptyDir: {}
        name: pod-var-neutron
      - configMap:
          defaultMode: 365
          name: neutron-bin
        name: neutron-bin
      - name: neutron-etc
        secret:
          defaultMode: 292
          secretName: neutron-etc
status:
  availableReplicas: 1
  conditions:
  - lastTransitionTime: "2026-04-25T07:18:46Z"
    lastUpdateTime: "2026-04-25T07:18:46Z"
    message: Deployment has minimum availability.
    reason: MinimumReplicasAvailable
    status: "True"
    type: Available
  - lastTransitionTime: "2026-04-25T07:18:46Z"
    lastUpdateTime: "2026-04-25T07:22:58Z"
    message: ReplicaSet "neutron-server-75fcc85468" has successfully progressed.
    reason: NewReplicaSetAvailable
    status: "True"
    type: Progressing
  observedGeneration: 1
  readyReplicas: 1
  replicas: 1
  updatedReplicas: 1