apiVersion: v1 kind: Pod metadata: annotations: configmap-bin-hash: 3aa556ad27944df77b9719face81c2580e75df13709d13a9eaa07cb388ad9f4a configmap-etc-hash: 43326782f43b5f4c7ccdc53d68e182585462b9e348d55719fd2a3cc05819d93b openstackhelm.openstack.org/release_uuid: "" creationTimestamp: "2026-05-04T20:00:53Z" generateName: ovn-controller-default- labels: application: ovn component: ovn-controller controller-revision-hash: 5ffbb7d96f pod-template-generation: "1" release_group: ovn name: ovn-controller-default-7vx4q namespace: openstack ownerReferences: - apiVersion: apps/v1 blockOwnerDeletion: true controller: true kind: DaemonSet name: ovn-controller-default uid: 94dab0b8-4744-42a4-baf8-de3699648715 resourceVersion: "29278" uid: ebf1c4a6-3b9d-4ca3-a508-6f316670258a spec: affinity: nodeAffinity: requiredDuringSchedulingIgnoredDuringExecution: nodeSelectorTerms: - matchFields: - key: metadata.name operator: In values: - instance containers: - command: - /root/ovnkube.sh - ovn-controller env: - name: OVS_USER_ID value: openvswitch - name: OVN_DAEMONSET_VERSION value: "3" - name: OVN_LOGLEVEL_CONTROLLER value: -vconsole:info -vfile:info - name: OVN_KUBERNETES_NAMESPACE valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.namespace - name: OVN_KUBERNETES_NB_STATEFULSET value: ovn-ovsdb-nb - name: OVN_KUBERNETES_SB_STATEFULSET value: ovn-ovsdb-sb - name: OVN_SSL_ENABLE value: "no" image: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn:v24.03.7-3@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a imagePullPolicy: IfNotPresent name: controller readinessProbe: exec: command: - /usr/bin/ovn-kube-util - readiness-probe - -t - ovn-controller failureThreshold: 3 initialDelaySeconds: 30 periodSeconds: 60 successThreshold: 1 timeoutSeconds: 30 resources: {} securityContext: privileged: true readOnlyRootFilesystem: true terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /run/openvswitch name: run-openvswitch - mountPath: /var/log/ovn name: logs - mountPath: /run/ovn name: run-openvswitch - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-7r2zh readOnly: true - command: - vector - --config - /etc/vector/vector.toml image: harbor.atmosphere.dev/docker.io/timberio/vector:0.38.0-debian imagePullPolicy: IfNotPresent name: vector resources: {} securityContext: allowPrivilegeEscalation: false readOnlyRootFilesystem: true terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /etc/vector name: vector-config - mountPath: /logs name: logs - mountPath: /var/lib/vector name: vector-data - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-7r2zh readOnly: true - command: - /tmp/ovn-network-logging-parser.sh - start env: - name: VECTOR_HTTP_ENDPOINT value: http://localhost:5001 image: harbor.atmosphere.dev/ghcr.io/vexxhost/neutron:2025.2@sha256:3b5601c66a466275bfe35858b5620269336a61ff3693bdd4f552f13d820f893b imagePullPolicy: IfNotPresent name: log-parser ports: - containerPort: 9697 hostPort: 9697 name: http protocol: TCP resources: {} securityContext: allowPrivilegeEscalation: false readOnlyRootFilesystem: true terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /etc/neutron/neutron.conf name: neutron-etc readOnly: true subPath: neutron.conf - mountPath: /tmp/ovn-network-logging-parser.sh name: ovn-bin readOnly: true subPath: ovn-network-logging-parser.sh - mountPath: /etc/neutron/neutron-ovn-network-logging-parser-uwsgi.ini name: ovn-etc readOnly: true subPath: neutron-ovn-network-logging-parser-uwsgi.ini - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-7r2zh readOnly: true dnsPolicy: ClusterFirstWithHostNet enableServiceLinks: true hostIPC: true hostNetwork: true hostPID: true initContainers: - command: - kubernetes-entrypoint env: - name: POD_NAME valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.name - name: NAMESPACE valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.namespace - name: INTERFACE_NAME value: eth0 - name: PATH value: /usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/ - name: DEPENDENCY_SERVICE value: openstack:ovn-ovsdb-sb - name: DEPENDENCY_DAEMONSET - name: DEPENDENCY_CONTAINER - name: DEPENDENCY_POD_JSON value: '[{"labels":{"application":"openvswitch","component":"server"},"requireSameNode":true}]' - name: DEPENDENCY_CUSTOM_RESOURCE image: harbor.atmosphere.dev/ghcr.io/vexxhost/kubernetes-entrypoint:edge@sha256:8921b64b87af184a1421dd856b2703bcf3cff9f50863cd0d18371cf964a87bd3 imagePullPolicy: IfNotPresent name: init resources: {} securityContext: allowPrivilegeEscalation: false readOnlyRootFilesystem: true runAsUser: 65534 terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-7r2zh readOnly: true - command: - /bin/bash - -c - | kubectl get node ${NODENAME} -o jsonpath='{.metadata.labels.openstack-control-plane}' > /tmp/gw-enabled/gw-enabled env: - name: NODENAME valueFrom: fieldRef: apiVersion: v1 fieldPath: spec.nodeName image: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn:v24.03.7-3@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a imagePullPolicy: IfNotPresent name: get-gw-enabled resources: {} terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /tmp/gw-enabled name: gw-enabled - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-7r2zh readOnly: true - command: - /tmp/ovn-controller-init.sh env: - name: NODE_NAME valueFrom: fieldRef: apiVersion: v1 fieldPath: spec.nodeName image: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn:v24.03.7-3@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a imagePullPolicy: IfNotPresent name: controller-init resources: {} securityContext: privileged: true readOnlyRootFilesystem: true terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /tmp/ovn-controller-init.sh name: ovn-bin readOnly: true subPath: ovn-controller-init.sh - mountPath: /run/openvswitch name: run-openvswitch - mountPath: /tmp/auto_bridge_add name: ovn-etc readOnly: true subPath: auto_bridge_add - mountPath: /tmp/gw-enabled name: gw-enabled readOnly: true - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-7r2zh readOnly: true nodeName: instance nodeSelector: openvswitch: enabled preemptionPolicy: PreemptLowerPriority priority: 0 restartPolicy: Always schedulerName: default-scheduler securityContext: {} serviceAccount: ovn-controller serviceAccountName: ovn-controller terminationGracePeriodSeconds: 30 tolerations: - effect: NoExecute key: node.kubernetes.io/not-ready operator: Exists - effect: NoExecute key: node.kubernetes.io/unreachable operator: Exists - effect: NoSchedule key: node.kubernetes.io/disk-pressure operator: Exists - effect: NoSchedule key: node.kubernetes.io/memory-pressure operator: Exists - effect: NoSchedule key: node.kubernetes.io/pid-pressure operator: Exists - effect: NoSchedule key: node.kubernetes.io/unschedulable operator: Exists - effect: NoSchedule key: node.kubernetes.io/network-unavailable operator: Exists volumes: - configMap: defaultMode: 511 name: ovn-controller-default-bin name: ovn-bin - hostPath: path: /run/openvswitch type: DirectoryOrCreate name: run-openvswitch - name: ovn-etc secret: defaultMode: 292 secretName: ovn-controller-default-etc - hostPath: path: /var/log/ovn type: DirectoryOrCreate name: logs - hostPath: path: /run/ovn type: DirectoryOrCreate name: run-ovn - emptyDir: {} name: gw-enabled - name: vector-config secret: defaultMode: 420 secretName: ovn-vector-config - emptyDir: {} name: vector-data - name: neutron-etc secret: defaultMode: 292 secretName: neutron-etc - name: kube-api-access-7r2zh projected: defaultMode: 420 sources: - serviceAccountToken: expirationSeconds: 3607 path: token - configMap: items: - key: ca.crt path: ca.crt name: kube-root-ca.crt - downwardAPI: items: - fieldRef: apiVersion: v1 fieldPath: metadata.namespace path: namespace status: conditions: - lastProbeTime: null lastTransitionTime: "2026-05-04T20:07:10Z" status: "True" type: Initialized - lastProbeTime: null lastTransitionTime: "2026-05-04T20:08:05Z" status: "True" type: Ready - lastProbeTime: null lastTransitionTime: "2026-05-04T20:08:05Z" status: "True" type: ContainersReady - lastProbeTime: null lastTransitionTime: "2026-05-04T20:00:53Z" status: "True" type: PodScheduled containerStatuses: - containerID: containerd://8d3cf59953e22dd84173c31e0fc39877391c27ab38dbdc0d81978e10de381e2e image: sha256:f183e9d034a520ebdfadc9ee3e250ce9012a8aa7baf1d41322996382ff01e8f5 imageID: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a lastState: {} name: controller ready: true restartCount: 0 started: true state: running: startedAt: "2026-05-04T20:07:10Z" - containerID: containerd://2bff19564822ce4ae45a57accb90d1c1212b0c801aca6538fd99b4737d34622b image: sha256:db20bb2a5ccafcae55bcef2169f9758975eb49198a2234bdc5fec1bb2fa3c4b5 imageID: harbor.atmosphere.dev/ghcr.io/vexxhost/neutron@sha256:3b5601c66a466275bfe35858b5620269336a61ff3693bdd4f552f13d820f893b lastState: {} name: log-parser ready: true restartCount: 0 started: true state: running: startedAt: "2026-05-04T20:07:11Z" - containerID: containerd://6790c9bea5f0f21a4db9dcd17b6b5dadbfb726295ab204b4f1e30977c2efb8bd image: harbor.atmosphere.dev/docker.io/timberio/vector:0.38.0-debian imageID: harbor.atmosphere.dev/docker.io/timberio/vector@sha256:7605ccc5a57b6d37650037c7c6495a6331ecd18b5ec326842e76f9d70d445e0b lastState: {} name: vector ready: true restartCount: 0 started: true state: running: startedAt: "2026-05-04T20:07:10Z" hostIP: 199.19.213.114 initContainerStatuses: - containerID: containerd://d6badd8eeecc929959b62fe8688292783812757fb5aed6572e4f003534dbdac4 image: sha256:d656bd5737950b86b0ecff4b0206024769c78ea55e2f9f4c840c3cc2a10caaf8 imageID: harbor.atmosphere.dev/ghcr.io/vexxhost/kubernetes-entrypoint@sha256:8921b64b87af184a1421dd856b2703bcf3cff9f50863cd0d18371cf964a87bd3 lastState: {} name: init ready: true restartCount: 0 started: false state: terminated: containerID: containerd://d6badd8eeecc929959b62fe8688292783812757fb5aed6572e4f003534dbdac4 exitCode: 0 finishedAt: "2026-05-04T20:07:08Z" reason: Completed startedAt: "2026-05-04T20:07:05Z" - containerID: containerd://c04e2aaa2ed594b072056af0a44aef32c930e3b631b23111666b01ba7164a299 image: sha256:f183e9d034a520ebdfadc9ee3e250ce9012a8aa7baf1d41322996382ff01e8f5 imageID: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a lastState: {} name: get-gw-enabled ready: true restartCount: 0 started: false state: terminated: containerID: containerd://c04e2aaa2ed594b072056af0a44aef32c930e3b631b23111666b01ba7164a299 exitCode: 0 finishedAt: "2026-05-04T20:07:08Z" reason: Completed startedAt: "2026-05-04T20:07:08Z" - containerID: containerd://b26ab34dd7dc517517f191b6ef381af9611c8a9f6863b713e3ed8f2ea7c938d1 image: sha256:f183e9d034a520ebdfadc9ee3e250ce9012a8aa7baf1d41322996382ff01e8f5 imageID: harbor.atmosphere.dev/ghcr.io/vexxhost/ovn@sha256:deb1966eff94d8da072a3647db63546722094deb3ef34b6b464609bcba61887a lastState: {} name: controller-init ready: true restartCount: 0 started: false state: terminated: containerID: containerd://b26ab34dd7dc517517f191b6ef381af9611c8a9f6863b713e3ed8f2ea7c938d1 exitCode: 0 finishedAt: "2026-05-04T20:07:10Z" reason: Completed startedAt: "2026-05-04T20:07:09Z" phase: Running podIP: 199.19.213.114 podIPs: - ip: 199.19.213.114 qosClass: BestEffort startTime: "2026-05-04T20:00:53Z"