apiVersion: apps/v1 kind: StatefulSet metadata: creationTimestamp: "2025-12-05T13:05:15Z" generation: 1 name: ovn-northd namespace: openstack ownerReferences: - apiVersion: ovn.openstack.org/v1beta1 blockOwnerDeletion: true controller: true kind: OVNNorthd name: ovnnorthd uid: 02ab84a3-481f-4073-9303-59ea7cd558e1 resourceVersion: "30285" uid: 7b0b0095-36a6-4112-9579-6a42592e3a06 spec: persistentVolumeClaimRetentionPolicy: whenDeleted: Retain whenScaled: Retain podManagementPolicy: Parallel replicas: 1 revisionHistoryLimit: 10 selector: matchLabels: service: ovn-northd serviceName: ovn-northd template: metadata: creationTimestamp: null labels: service: ovn-northd spec: affinity: podAntiAffinity: preferredDuringSchedulingIgnoredDuringExecution: - podAffinityTerm: labelSelector: matchExpressions: - key: service operator: In values: - ovn-northd topologyKey: kubernetes.io/hostname weight: 100 containers: - args: - -vfile:off - -vconsole:info - --n-threads=1 - --ovnnb-db=ssl:ovsdbserver-nb-0.openstack.svc.cluster.local:6641 - --ovnsb-db=ssl:ovsdbserver-sb-0.openstack.svc.cluster.local:6642 - --certificate=/etc/pki/tls/certs/ovndb.crt - --private-key=/etc/pki/tls/private/ovndb.key - --ca-cert=/etc/pki/tls/certs/ovndbca.crt command: - /usr/bin/ovn-northd env: - name: CONFIG_HASH value: nb8h7ch549h5f7h558hd5h64fhdch5b8h67bh68ch5c5h5c9h5bbh68bh54h7fh577h6ch68chf6h57fh5d9h5b6h64dh9chb7h5fchcdh66dh7dh547q - name: OVN_RUNDIR value: /tmp - name: certs value: n5ffh597h68h5fh569hbch64fh54ch589h79h9chcdh5ch549h68fh54bh5dchbch675h674h6ch98h566h577h558hf8hfchc4h656h8dh66hfbq - name: certs_metrics value: n5d9h586h66fh677h56dh5dhf4h5fbh88h644h74hdh5fch68dh99h688hc5h5b7h5b6h597h75h5f7h67h649h6dh656h5d7hb9hd5h59ch576h676q - name: ovnnorthd-config value: n5c8h7ch56bh8dh8hc4h5dch9dh68h6bhb7h598h549h5dbh66fh6bh5b4h5cch5d6h55ch57fhfch588h89h5ddh5d6h65bh65bh8dhc4h67dh569q - name: ovnnorthd-scripts value: n664hd8h66ch58dh64hc9h66bhd4h558h697h67bh557hdch664h567h669h555h696h556h556h5fh5bh569hbh665h9dh4h9bh564hc8h5b7h5c4q - name: tls-ca-bundle.pem value: nbch575h584h574h56h7ch5hfch55h5fch545h546h689h57ch5b4h585h5cchbh75h5chcbh58ch5bdh4hc5h65dh57fh574h58dh9dh65dh588q image: quay.io/podified-antelope-centos9/openstack-ovn-northd@sha256:c8e13f116261ef06b59e9034c605f68d53eb6f760426c35ee6ed3785b97b1800 imagePullPolicy: IfNotPresent livenessProbe: exec: command: - /usr/local/bin/container-scripts/status_check.sh failureThreshold: 3 initialDelaySeconds: 10 periodSeconds: 5 successThreshold: 1 timeoutSeconds: 1 name: ovn-northd readinessProbe: exec: command: - /usr/local/bin/container-scripts/status_check.sh failureThreshold: 3 initialDelaySeconds: 10 periodSeconds: 5 successThreshold: 1 timeoutSeconds: 1 resources: {} securityContext: allowPrivilegeEscalation: false capabilities: drop: - ALL runAsNonRoot: true terminationMessagePath: /dev/termination-log terminationMessagePolicy: FallbackToLogsOnError volumeMounts: - mountPath: /usr/local/bin/container-scripts name: scripts readOnly: true - mountPath: /tmp name: ovn-rundir - mountPath: /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem name: combined-ca-bundle readOnly: true subPath: tls-ca-bundle.pem - mountPath: /etc/pki/tls/certs/ovndb.crt name: ovn-northd-tls-certs readOnly: true subPath: tls.crt - mountPath: /etc/pki/tls/private/ovndb.key name: ovn-northd-tls-certs readOnly: true subPath: tls.key - mountPath: /etc/pki/tls/certs/ovndbca.crt name: ovn-northd-tls-certs readOnly: true subPath: ca.crt - command: - /app/openstack-network-exporter env: - name: OPENSTACK_NETWORK_EXPORTER_YAML value: /etc/config/openstack-network-exporter.yaml - name: CONFIG_HASH value: nb8h7ch549h5f7h558hd5h64fhdch5b8h67bh68ch5c5h5c9h5bbh68bh54h7fh577h6ch68chf6h57fh5d9h5b6h64dh9chb7h5fchcdh66dh7dh547q image: quay.io/openstack-k8s-operators/openstack-network-exporter@sha256:ecd56e6733c475f2d441344fd98f288c3eac0261ba113695fec7520a954ccbc7 imagePullPolicy: IfNotPresent name: openstack-network-exporter resources: {} terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /tmp name: ovn-rundir - mountPath: /etc/config name: config readOnly: true - mountPath: /etc/pki/tls/certs/ovnmetrics.crt name: metrics-certs-tls-certs readOnly: true subPath: tls.crt - mountPath: /etc/pki/tls/private/ovnmetrics.key name: metrics-certs-tls-certs readOnly: true subPath: tls.key - mountPath: /etc/pki/tls/certs/ovndbca.crt name: metrics-certs-tls-certs readOnly: true subPath: ca.crt dnsPolicy: ClusterFirst restartPolicy: Always schedulerName: default-scheduler securityContext: {} serviceAccount: ovnnorthd-ovnnorthd serviceAccountName: ovnnorthd-ovnnorthd terminationGracePeriodSeconds: 30 volumes: - configMap: defaultMode: 493 name: ovnnorthd-scripts name: scripts - emptyDir: {} name: ovn-rundir - configMap: defaultMode: 493 name: ovnnorthd-config name: config - name: combined-ca-bundle secret: defaultMode: 292 secretName: combined-ca-bundle - name: ovn-northd-tls-certs secret: defaultMode: 256 secretName: cert-ovnnorthd-ovndbs - name: metrics-certs-tls-certs secret: defaultMode: 256 secretName: cert-ovn-metrics updateStrategy: rollingUpdate: partition: 0 type: RollingUpdate status: availableReplicas: 1 collisionCount: 0 currentReplicas: 1 currentRevision: ovn-northd-7c88665457 observedGeneration: 1 readyReplicas: 1 replicas: 1 updateRevision: ovn-northd-7c88665457 updatedReplicas: 1