apiVersion: apps/v1 kind: StatefulSet metadata: creationTimestamp: "2025-12-04T12:22:11Z" generation: 1 name: ironic-conductor namespace: openstack ownerReferences: - apiVersion: ironic.openstack.org/v1beta1 blockOwnerDeletion: true controller: true kind: IronicConductor name: ironic-conductor uid: 1d142123-090f-4c76-9646-87ae72b4d435 resourceVersion: "37327" uid: 71e66e74-e865-4257-a49f-2c79d1c65e9e spec: persistentVolumeClaimRetentionPolicy: whenDeleted: Retain whenScaled: Retain podManagementPolicy: OrderedReady replicas: 1 revisionHistoryLimit: 10 selector: matchLabels: component: conductor conductorGroup: null_conductor_group_null service: ironic serviceName: "" template: metadata: annotations: k8s.v1.cni.cncf.io/networks: '[{"name":"ironic","namespace":"openstack","interface":"ironic"}]' creationTimestamp: null labels: component: conductor conductorGroup: null_conductor_group_null service: ironic spec: affinity: podAntiAffinity: preferredDuringSchedulingIgnoredDuringExecution: - podAffinityTerm: labelSelector: matchExpressions: - key: service operator: In values: - ironic topologyKey: kubernetes.io/hostname weight: 100 containers: - args: - -c - /usr/local/bin/kolla_set_configs && /usr/local/bin/kolla_start command: - /bin/bash env: - name: CONFIG_HASH value: n58dh58h56h65ch5bh9h558hbch569hf4h56ch55dh554h569h699h5fbh5f7h89h678h55fh584h679h685h5dfh67bh655h685hcch665h5bchfdh675q - name: KOLLA_CONFIG_STRATEGY value: COPY_ALWAYS image: quay.io/podified-antelope-centos9/openstack-ironic-conductor@sha256:4deb460a113324762b3139301c6aacd48c57204d8d13eb1c387d7064ec19db0d imagePullPolicy: IfNotPresent livenessProbe: exec: command: - /bin/true failureThreshold: 3 initialDelaySeconds: 5 periodSeconds: 30 successThreshold: 1 timeoutSeconds: 5 name: ironic-conductor readinessProbe: exec: command: - /bin/true failureThreshold: 3 initialDelaySeconds: 5 periodSeconds: 30 successThreshold: 1 timeoutSeconds: 5 resources: {} securityContext: runAsUser: 0 terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /usr/local/bin/container-scripts name: scripts readOnly: true - mountPath: /var/lib/config-data/merged name: config-data-merged - mountPath: /etc/podinfo name: etc-podinfo - mountPath: /var/lib/config-data/default name: config-data readOnly: true - mountPath: /var/lib/config-data/custom name: config-data-custom readOnly: true - mountPath: /var/lib/kolla/config_files/config.json name: config-data readOnly: true subPath: ironic-conductor-config.json - mountPath: /var/lib/ironic name: var-lib-ironic - mountPath: /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem name: combined-ca-bundle readOnly: true subPath: tls-ca-bundle.pem - args: - -c - /usr/local/bin/kolla_set_configs && /usr/local/bin/kolla_start command: - /bin/bash env: - name: CONFIG_HASH value: n58dh58h56h65ch5bh9h558hbch569hf4h56ch55dh554h569h699h5fbh5f7h89h678h55fh584h679h685h5dfh67bh655h685hcch665h5bchfdh675q - name: KOLLA_CONFIG_STRATEGY value: COPY_ALWAYS image: quay.io/podified-antelope-centos9/openstack-ironic-pxe@sha256:7cb9e377fa81bbe84fcc006b27c45d56ea3d6ed2144fb9ebf5fb8df5b920d423 imagePullPolicy: IfNotPresent livenessProbe: failureThreshold: 3 initialDelaySeconds: 5 periodSeconds: 30 successThreshold: 1 tcpSocket: port: 8088 timeoutSeconds: 10 name: httpboot readinessProbe: failureThreshold: 3 initialDelaySeconds: 5 periodSeconds: 30 successThreshold: 1 tcpSocket: port: 8088 timeoutSeconds: 10 resources: {} securityContext: runAsUser: 0 terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /usr/local/bin/container-scripts name: scripts readOnly: true - mountPath: /var/lib/config-data/merged name: config-data-merged - mountPath: /etc/podinfo name: etc-podinfo - mountPath: /var/lib/config-data/default name: config-data readOnly: true - mountPath: /var/lib/config-data/custom name: config-data-custom readOnly: true - mountPath: /var/lib/kolla/config_files/config.json name: config-data readOnly: true subPath: httpboot-config.json - mountPath: /var/lib/ironic name: var-lib-ironic - mountPath: /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem name: combined-ca-bundle readOnly: true subPath: tls-ca-bundle.pem - args: - -c - /usr/local/bin/kolla_set_configs && /usr/local/bin/kolla_start command: - /bin/bash env: - name: CONFIG_HASH value: n58dh58h56h65ch5bh9h558hbch569hf4h56ch55dh554h569h699h5fbh5f7h89h678h55fh584h679h685h5dfh67bh655h685hcch665h5bchfdh675q - name: KOLLA_CONFIG_STRATEGY value: COPY_ALWAYS image: quay.io/podified-antelope-centos9/openstack-ironic-pxe@sha256:7cb9e377fa81bbe84fcc006b27c45d56ea3d6ed2144fb9ebf5fb8df5b920d423 imagePullPolicy: IfNotPresent livenessProbe: exec: command: - sh - -c - ss -lun | grep :69 failureThreshold: 3 initialDelaySeconds: 3 periodSeconds: 30 successThreshold: 1 timeoutSeconds: 10 name: dnsmasq readinessProbe: exec: command: - sh - -c - ss -lun | grep :69 failureThreshold: 3 initialDelaySeconds: 3 periodSeconds: 30 successThreshold: 1 timeoutSeconds: 10 resources: {} securityContext: capabilities: add: - NET_ADMIN - NET_RAW runAsUser: 0 terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /usr/local/bin/container-scripts name: scripts readOnly: true - mountPath: /var/lib/config-data/merged name: config-data-merged - mountPath: /etc/podinfo name: etc-podinfo - mountPath: /var/lib/config-data/default name: config-data readOnly: true - mountPath: /var/lib/config-data/custom name: config-data-custom readOnly: true - mountPath: /var/lib/kolla/config_files/config.json name: config-data readOnly: true subPath: dnsmasq-config.json - mountPath: /var/lib/ironic name: var-lib-ironic - mountPath: /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem name: combined-ca-bundle readOnly: true subPath: tls-ca-bundle.pem dnsPolicy: ClusterFirst initContainers: - args: - -c - /usr/local/bin/container-scripts/init.sh command: - /bin/bash env: - name: IronicPassword valueFrom: secretKeyRef: key: IronicPassword name: osp-secret - name: PodName valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.name - name: PodNamespace valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.namespace - name: ProvisionNetwork value: ironic - name: TransportURL valueFrom: secretKeyRef: key: transport_url name: rabbitmq-transport-url-ironic-transport - name: QuorumQueues valueFrom: secretKeyRef: key: quorumqueues name: rabbitmq-transport-url-ironic-transport optional: true - name: DatabaseHost value: openstack.openstack.svc - name: DatabaseName value: ironic - name: DeployHTTPURL value: http://%(ProvisionNetworkIP)s:8088/ - name: IngressDomain value: apps.sno.openstack.lab image: quay.io/podified-antelope-centos9/openstack-ironic-conductor@sha256:4deb460a113324762b3139301c6aacd48c57204d8d13eb1c387d7064ec19db0d imagePullPolicy: IfNotPresent name: init resources: {} securityContext: runAsUser: 0 terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /usr/local/bin/container-scripts name: scripts readOnly: true - mountPath: /var/lib/config-data/default name: config-data readOnly: true - mountPath: /var/lib/config-data/merged name: config-data-merged - mountPath: /etc/podinfo name: etc-podinfo - mountPath: /var/lib/ironic name: var-lib-ironic - mountPath: /var/lib/config-data/custom name: config-data-custom readOnly: true - mountPath: /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem name: combined-ca-bundle readOnly: true subPath: tls-ca-bundle.pem - env: - name: DEST_DIR value: /var/lib/ironic/httpboot image: quay.io/podified-antelope-centos9/ironic-python-agent@sha256:9d930c44b5d90b140117dd05d976d10d29d93eed9a70118e594e00da64594562 imagePullPolicy: IfNotPresent name: ironic-python-agent-init resources: {} securityContext: privileged: true terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /usr/local/bin/container-scripts name: scripts readOnly: true - mountPath: /var/lib/config-data/default name: config-data readOnly: true - mountPath: /var/lib/config-data/merged name: config-data-merged - mountPath: /etc/podinfo name: etc-podinfo - mountPath: /var/lib/ironic name: var-lib-ironic - mountPath: /var/lib/config-data/custom name: config-data-custom readOnly: true - mountPath: /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem name: combined-ca-bundle readOnly: true subPath: tls-ca-bundle.pem - args: - -c - /usr/local/bin/container-scripts/pxe-init.sh command: - /bin/bash env: - name: IronicPassword valueFrom: secretKeyRef: key: IronicPassword name: osp-secret - name: PodName valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.name - name: PodNamespace valueFrom: fieldRef: apiVersion: v1 fieldPath: metadata.namespace - name: ProvisionNetwork value: ironic - name: TransportURL valueFrom: secretKeyRef: key: transport_url name: rabbitmq-transport-url-ironic-transport - name: QuorumQueues valueFrom: secretKeyRef: key: quorumqueues name: rabbitmq-transport-url-ironic-transport optional: true - name: DatabaseHost value: openstack.openstack.svc - name: DatabaseName value: ironic - name: DeployHTTPURL value: http://%(ProvisionNetworkIP)s:8088/ - name: IngressDomain value: apps.sno.openstack.lab image: quay.io/podified-antelope-centos9/openstack-ironic-pxe@sha256:7cb9e377fa81bbe84fcc006b27c45d56ea3d6ed2144fb9ebf5fb8df5b920d423 imagePullPolicy: IfNotPresent name: pxe-init resources: {} securityContext: privileged: true runAsUser: 0 terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /usr/local/bin/container-scripts name: scripts readOnly: true - mountPath: /var/lib/config-data/default name: config-data readOnly: true - mountPath: /var/lib/config-data/merged name: config-data-merged - mountPath: /etc/podinfo name: etc-podinfo - mountPath: /var/lib/ironic name: var-lib-ironic - mountPath: /var/lib/config-data/custom name: config-data-custom readOnly: true - mountPath: /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem name: combined-ca-bundle readOnly: true subPath: tls-ca-bundle.pem restartPolicy: Always schedulerName: default-scheduler securityContext: {} serviceAccount: ironic-ironic serviceAccountName: ironic-ironic terminationGracePeriodSeconds: 60 volumes: - name: scripts secret: defaultMode: 493 secretName: ironic-conductor-scripts - name: config-data secret: defaultMode: 416 secretName: ironic-conductor-config-data - emptyDir: {} name: config-data-merged - downwardAPI: defaultMode: 420 items: - fieldRef: apiVersion: v1 fieldPath: metadata.annotations['k8s.v1.cni.cncf.io/network-status'] path: network-status name: etc-podinfo - name: config-data-custom secret: defaultMode: 416 secretName: ironic-config-data - name: combined-ca-bundle secret: defaultMode: 292 secretName: combined-ca-bundle updateStrategy: rollingUpdate: partition: 0 type: RollingUpdate volumeClaimTemplates: - apiVersion: v1 kind: PersistentVolumeClaim metadata: creationTimestamp: null labels: component: conductor conductorGroup: null_conductor_group_null service: ironic name: var-lib-ironic spec: accessModes: - ReadWriteOnce resources: requests: storage: 10G storageClassName: lvms-local-storage volumeMode: Filesystem status: phase: Pending status: availableReplicas: 1 collisionCount: 0 currentReplicas: 1 currentRevision: ironic-conductor-67f5645586 observedGeneration: 1 readyReplicas: 1 replicas: 1 updateRevision: ironic-conductor-67f5645586 updatedReplicas: 1