apiVersion: apps/v1 kind: StatefulSet metadata: creationTimestamp: "2025-12-05T13:07:04Z" generation: 1 name: ironic-conductor namespace: openstack ownerReferences: - apiVersion: ironic.openstack.org/v1beta1 blockOwnerDeletion: true controller: true kind: IronicConductor name: ironic-conductor uid: 7f043d5f-7958-47b6-8042-48c57b4ecf9a resourceVersion: "36300" uid: e9458f17-e876-4ee7-920a-7e24ed7f45b5 spec: persistentVolumeClaimRetentionPolicy: whenDeleted: Retain whenScaled: Retain podManagementPolicy: OrderedReady replicas: 1 revisionHistoryLimit: 10 selector: matchLabels: component: conductor conductorGroup: null_conductor_group_null service: ironic serviceName: "" template: metadata: annotations: k8s.v1.cni.cncf.io/networks: '[{"name":"ironic","namespace":"openstack","interface":"ironic"}]' creationTimestamp: null labels: component: conductor conductorGroup: null_conductor_group_null service: ironic spec: affinity: podAntiAffinity: preferredDuringSchedulingIgnoredDuringExecution: - podAffinityTerm: labelSelector: matchExpressions: - key: service operator: In values: - ironic topologyKey: kubernetes.io/hostname weight: 100 containers: - args: - -c - /usr/local/bin/kolla_set_configs && /usr/local/bin/kolla_start command: - /bin/bash env: - name: CONFIG_HASH value: n6bh68h557hbdh96h54fh687h647h5c4h5b9h564h68ch66ch5fbh699h566h558h665h677h59bh67dh658h55fh9dh559h98h665h9bhf4h56h5c4h7bq - name: KOLLA_CONFIG_STRATEGY value: COPY_ALWAYS image: quay.io/podified-antelope-centos9/openstack-ironic-conductor@sha256:4deb460a113324762b3139301c6aacd48c57204d8d13eb1c387d7064ec19db0d imagePullPolicy: IfNotPresent livenessProbe: exec: command: - /bin/true failureThreshold: 3 initialDelaySeconds: 5 periodSeconds: 30 successThreshold: 1 timeoutSeconds: 5 name: ironic-conductor readinessProbe: exec: command: - /bin/true failureThreshold: 3 initialDelaySeconds: 5 periodSeconds: 30 successThreshold: 1 timeoutSeconds: 5 resources: {} securityContext: runAsUser: 0 terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /usr/local/bin/container-scripts name: scripts readOnly: true - mountPath: /var/lib/config-data/merged name: config-data-merged - mountPath: /etc/podinfo name: etc-podinfo - mountPath: /var/lib/config-data/default name: config-data readOnly: true - mountPath: /var/lib/config-data/custom name: config-data-custom readOnly: true - mountPath: /var/lib/kolla/config_files/config.json name: config-data readOnly: true subPath: ironic-conductor-config.json - mountPath: /var/lib/ironic name: var-lib-ironic - mountPath: /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem name: combined-ca-bundle readOnly: true subPath: tls-ca-bundle.pem - args: - -c - /usr/local/bin/kolla_set_configs && /usr/local/bin/kolla_start command: - /bin/bash env: - name: CONFIG_HASH value: n6bh68h557hbdh96h54fh687h647h5c4h5b9h564h68ch66ch5fbh699h566h558h665h677h59bh67dh658h55fh9dh559h98h665h9bhf4h56h5c4h7bq - name: KOLLA_CONFIG_STRATEGY value: COPY_ALWAYS image: quay.io/podified-antelope-centos9/openstack-ironic-pxe@sha256:7cb9e377fa81bbe84fcc006b27c45d56ea3d6ed2144fb9ebf5fb8df5b920d423 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 3 initialDelaySeconds: 5 periodSeconds: 30 successThreshold: 1 tcpSocket: port: 8088 timeoutSeconds: 10 name: httpboot readinessProbe: failureThreshold: 3 initialDelaySeconds: 5 periodSeconds: 30 successThreshold: 1 tcpSocket: port: 8088 timeoutSeconds: 10 resources: {} securityContext: runAsUser: 0 terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /usr/local/bin/container-scripts name: scripts readOnly: true - mountPath: /var/lib/config-data/merged name: config-data-merged - mountPath: /etc/podinfo name: etc-podinfo - mountPath: /var/lib/config-data/default name: config-data readOnly: true - mountPath: /var/lib/config-data/custom name: config-data-custom readOnly: true - mountPath: /var/lib/kolla/config_files/config.json name: config-data readOnly: true subPath: httpboot-config.json - mountPath: /var/lib/ironic name: var-lib-ironic - mountPath: /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem name: combined-ca-bundle readOnly: true subPath: tls-ca-bundle.pem - args: - -c - /usr/local/bin/kolla_set_configs && /usr/local/bin/kolla_start command: - /bin/bash env: - name: CONFIG_HASH value: n6bh68h557hbdh96h54fh687h647h5c4h5b9h564h68ch66ch5fbh699h566h558h665h677h59bh67dh658h55fh9dh559h98h665h9bhf4h56h5c4h7bq - name: KOLLA_CONFIG_STRATEGY value: COPY_ALWAYS image: quay.io/podified-antelope-centos9/openstack-ironic-pxe@sha256:7cb9e377fa81bbe84fcc006b27c45d56ea3d6ed2144fb9ebf5fb8df5b920d423 imagePullPolicy: IfNotPresent livenessProbe: exec: command: - sh - -c - ss -lun | grep :69 failureThreshold: 3 initialDelaySeconds: 3 periodSeconds: 30 successThreshold: 1 timeoutSeconds: 10 name: dnsmasq readinessProbe: exec: command: - sh - -c - ss -lun | grep :69 failureThreshold: 3 initialDelaySeconds: 3 periodSeconds: 30 successThreshold: 1 timeoutSeconds: 10 resources: {} securityContext: capabilities: add: - NET_ADMIN - NET_RAW runAsUser: 0 terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /usr/local/bin/container-scripts name: scripts readOnly: true - mountPath: /var/lib/config-data/merged name: config-data-merged - mountPath: /etc/podinfo name: etc-podinfo - mountPath: /var/lib/config-data/default name: config-data readOnly: true - mountPath: /var/lib/config-data/custom name: config-data-custom readOnly: true - mountPath: /var/lib/kolla/config_files/config.json name: config-data readOnly: true subPath: dnsmasq-config.json - mountPath: /var/lib/ironic name: var-lib-ironic - mountPath: /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem name: combined-ca-bundle readOnly: true subPath: tls-ca-bundle.pem dnsPolicy: ClusterFirst initContainers: - args: - -c - /usr/local/bin/container-scripts/init.sh command: - /bin/bash env: - name: IronicPassword valueFrom: secretKeyRef: key: IronicPassword name: osp-secret - name: PodName valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.name - name: PodNamespace valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.namespace - name: ProvisionNetwork value: ironic - name: TransportURL valueFrom: secretKeyRef: key: transport_url name: rabbitmq-transport-url-ironic-transport - name: QuorumQueues valueFrom: secretKeyRef: key: quorumqueues name: rabbitmq-transport-url-ironic-transport optional: true - name: DatabaseHost value: openstack.openstack.svc - name: DatabaseName value: ironic - name: DeployHTTPURL value: http://%(ProvisionNetworkIP)s:8088/ - name: IngressDomain value: apps.sno.openstack.lab image: quay.io/podified-antelope-centos9/openstack-ironic-conductor@sha256:4deb460a113324762b3139301c6aacd48c57204d8d13eb1c387d7064ec19db0d imagePullPolicy: IfNotPresent name: init resources: {} securityContext: runAsUser: 0 terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /usr/local/bin/container-scripts name: scripts readOnly: true - mountPath: /var/lib/config-data/default name: config-data readOnly: true - mountPath: /var/lib/config-data/merged name: config-data-merged - mountPath: /etc/podinfo name: etc-podinfo - mountPath: /var/lib/ironic name: var-lib-ironic - mountPath: /var/lib/config-data/custom name: config-data-custom readOnly: true - mountPath: /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem name: combined-ca-bundle readOnly: true subPath: tls-ca-bundle.pem - env: - name: DEST_DIR value: /var/lib/ironic/httpboot image: quay.io/podified-antelope-centos9/ironic-python-agent@sha256:9d930c44b5d90b140117dd05d976d10d29d93eed9a70118e594e00da64594562 imagePullPolicy: IfNotPresent name: ironic-python-agent-init resources: {} securityContext: privileged: true terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /usr/local/bin/container-scripts name: scripts readOnly: true - mountPath: /var/lib/config-data/default name: config-data readOnly: true - mountPath: /var/lib/config-data/merged name: config-data-merged - mountPath: /etc/podinfo name: etc-podinfo - mountPath: /var/lib/ironic name: var-lib-ironic - mountPath: /var/lib/config-data/custom name: config-data-custom readOnly: true - mountPath: /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem name: combined-ca-bundle readOnly: true subPath: tls-ca-bundle.pem - args: - -c - /usr/local/bin/container-scripts/pxe-init.sh command: - /bin/bash env: - name: IronicPassword valueFrom: secretKeyRef: key: IronicPassword name: osp-secret - name: PodName valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.name - name: PodNamespace valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.namespace - name: ProvisionNetwork value: ironic - name: TransportURL valueFrom: secretKeyRef: key: transport_url name: rabbitmq-transport-url-ironic-transport - name: QuorumQueues valueFrom: secretKeyRef: key: quorumqueues name: rabbitmq-transport-url-ironic-transport optional: true - name: DatabaseHost value: openstack.openstack.svc - name: DatabaseName value: ironic - name: DeployHTTPURL value: http://%(ProvisionNetworkIP)s:8088/ - name: IngressDomain value: apps.sno.openstack.lab image: quay.io/podified-antelope-centos9/openstack-ironic-pxe@sha256:7cb9e377fa81bbe84fcc006b27c45d56ea3d6ed2144fb9ebf5fb8df5b920d423 imagePullPolicy: IfNotPresent name: pxe-init resources: {} securityContext: privileged: true runAsUser: 0 terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /usr/local/bin/container-scripts name: scripts readOnly: true - mountPath: /var/lib/config-data/default name: config-data readOnly: true - mountPath: /var/lib/config-data/merged name: config-data-merged - mountPath: /etc/podinfo name: etc-podinfo - mountPath: /var/lib/ironic name: var-lib-ironic - mountPath: /var/lib/config-data/custom name: config-data-custom readOnly: true - mountPath: /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem name: combined-ca-bundle readOnly: true subPath: tls-ca-bundle.pem restartPolicy: Always schedulerName: default-scheduler securityContext: {} serviceAccount: ironic-ironic serviceAccountName: ironic-ironic terminationGracePeriodSeconds: 60 volumes: - name: scripts secret: defaultMode: 493 secretName: ironic-conductor-scripts - name: config-data secret: defaultMode: 416 secretName: ironic-conductor-config-data - emptyDir: {} name: config-data-merged - downwardAPI: defaultMode: 420 items: - fieldRef: apiVersion: v1 fieldPath: metadata.annotations['k8s.v1.cni.cncf.io/network-status'] path: network-status name: etc-podinfo - name: config-data-custom secret: defaultMode: 416 secretName: ironic-config-data - name: combined-ca-bundle secret: defaultMode: 292 secretName: combined-ca-bundle updateStrategy: rollingUpdate: partition: 0 type: RollingUpdate volumeClaimTemplates: - apiVersion: v1 kind: PersistentVolumeClaim metadata: creationTimestamp: null labels: component: conductor conductorGroup: null_conductor_group_null service: ironic name: var-lib-ironic spec: accessModes: - ReadWriteOnce resources: requests: storage: 10G storageClassName: lvms-local-storage volumeMode: Filesystem status: phase: Pending status: availableReplicas: 1 collisionCount: 0 currentReplicas: 1 currentRevision: ironic-conductor-77695985cc observedGeneration: 1 readyReplicas: 1 replicas: 1 updateRevision: ironic-conductor-77695985cc updatedReplicas: 1