apiVersion: apps/v1 kind: StatefulSet metadata: creationTimestamp: "2025-12-04T12:20:31Z" generation: 1 name: ovn-northd namespace: openstack ownerReferences: - apiVersion: ovn.openstack.org/v1beta1 blockOwnerDeletion: true controller: true kind: OVNNorthd name: ovnnorthd uid: a3526432-b82b-4478-bfbc-58cfc11cb7a2 resourceVersion: "32132" uid: f04aa827-9114-4387-98b2-4591b3eb99e5 spec: persistentVolumeClaimRetentionPolicy: whenDeleted: Retain whenScaled: Retain podManagementPolicy: Parallel replicas: 1 revisionHistoryLimit: 10 selector: matchLabels: service: ovn-northd serviceName: ovn-northd template: metadata: creationTimestamp: null labels: service: ovn-northd spec: affinity: podAntiAffinity: preferredDuringSchedulingIgnoredDuringExecution: - podAffinityTerm: labelSelector: matchExpressions: - key: service operator: In values: - ovn-northd topologyKey: kubernetes.io/hostname weight: 100 containers: - args: - -vfile:off - -vconsole:info - --n-threads=1 - --ovnnb-db=ssl:ovsdbserver-nb-0.openstack.svc.cluster.local:6641 - --ovnsb-db=ssl:ovsdbserver-sb-0.openstack.svc.cluster.local:6642 - --certificate=/etc/pki/tls/certs/ovndb.crt - --private-key=/etc/pki/tls/private/ovndb.key - --ca-cert=/etc/pki/tls/certs/ovndbca.crt command: - /usr/bin/ovn-northd env: - name: CONFIG_HASH value: n649h685h59fh55hf8h677h565h54bh54dh5c5hc9h89h68dh55hdbh75h684hd7h5c4h5d8h9ch55dh59bh66fh5f5hd4h6fhb5h548h64bh5cbh5d7q - name: OVN_RUNDIR value: /tmp - name: certs value: nc9h668h68h55fh577h697h548h5f6hc4h586h5bfh566h5c9h5f9h85h5b4hb7h5d5h8h654h646hb6h5dh586h6h5c7h597h9chc4hb8h547h666q - name: certs_metrics value: n5f9h587h576h594h5ffh56fh57bh5fchd4h644h664h678hbfh5b9h5fhdbhd4hf5h8ch654h658hb7hb4hdbh559h546h89h695hc5h9h8fh5bfq - name: ovnnorthd-config value: n5c8h7ch56bh8dh8hc4h5dch9dh68h6bhb7h598h549h5dbh66fh6bh5b4h5cch5d6h55ch57fhfch588h89h5ddh5d6h65bh65bh8dhc4h67dh569q - name: ovnnorthd-scripts value: n664hd8h66ch58dh64hc9h66bhd4h558h697h67bh557hdch664h567h669h555h696h556h556h5fh5bh569hbh665h9dh4h9bh564hc8h5b7h5c4q - name: tls-ca-bundle.pem value: ncch677h8dh4hf9h68h585h594hc5h677h5fdhc6h68ch554h55dh9dh576hf8h66h5cdh679h656hch98h598h5f7h5cfh56bh65fh56h54h55dq image: quay.io/podified-antelope-centos9/openstack-ovn-northd@sha256:c8e13f116261ef06b59e9034c605f68d53eb6f760426c35ee6ed3785b97b1800 imagePullPolicy: IfNotPresent livenessProbe: exec: command: - /usr/local/bin/container-scripts/status_check.sh failureThreshold: 3 initialDelaySeconds: 10 periodSeconds: 5 successThreshold: 1 timeoutSeconds: 1 name: ovn-northd readinessProbe: exec: command: - /usr/local/bin/container-scripts/status_check.sh failureThreshold: 3 initialDelaySeconds: 10 periodSeconds: 5 successThreshold: 1 timeoutSeconds: 1 resources: {} securityContext: allowPrivilegeEscalation: false capabilities: drop: - ALL runAsNonRoot: true terminationMessagePath: /dev/termination-log terminationMessagePolicy: FallbackToLogsOnError volumeMounts: - mountPath: /usr/local/bin/container-scripts name: scripts readOnly: true - mountPath: /tmp name: ovn-rundir - mountPath: /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem name: combined-ca-bundle readOnly: true subPath: tls-ca-bundle.pem - mountPath: /etc/pki/tls/certs/ovndb.crt name: ovn-northd-tls-certs readOnly: true subPath: tls.crt - mountPath: /etc/pki/tls/private/ovndb.key name: ovn-northd-tls-certs readOnly: true subPath: tls.key - mountPath: /etc/pki/tls/certs/ovndbca.crt name: ovn-northd-tls-certs readOnly: true subPath: ca.crt - command: - /app/openstack-network-exporter env: - name: OPENSTACK_NETWORK_EXPORTER_YAML value: /etc/config/openstack-network-exporter.yaml - name: CONFIG_HASH value: n649h685h59fh55hf8h677h565h54bh54dh5c5hc9h89h68dh55hdbh75h684hd7h5c4h5d8h9ch55dh59bh66fh5f5hd4h6fhb5h548h64bh5cbh5d7q image: quay.io/openstack-k8s-operators/openstack-network-exporter@sha256:ecd56e6733c475f2d441344fd98f288c3eac0261ba113695fec7520a954ccbc7 imagePullPolicy: IfNotPresent name: openstack-network-exporter resources: {} terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /tmp name: ovn-rundir - mountPath: /etc/config name: config readOnly: true - mountPath: /etc/pki/tls/certs/ovnmetrics.crt name: metrics-certs-tls-certs readOnly: true subPath: tls.crt - mountPath: /etc/pki/tls/private/ovnmetrics.key name: metrics-certs-tls-certs readOnly: true subPath: tls.key - mountPath: /etc/pki/tls/certs/ovndbca.crt name: metrics-certs-tls-certs readOnly: true subPath: ca.crt dnsPolicy: ClusterFirst restartPolicy: Always schedulerName: default-scheduler securityContext: {} serviceAccount: ovnnorthd-ovnnorthd serviceAccountName: ovnnorthd-ovnnorthd terminationGracePeriodSeconds: 30 volumes: - configMap: defaultMode: 493 name: ovnnorthd-scripts name: scripts - emptyDir: {} name: ovn-rundir - configMap: defaultMode: 493 name: ovnnorthd-config name: config - name: combined-ca-bundle secret: defaultMode: 292 secretName: combined-ca-bundle - name: ovn-northd-tls-certs secret: defaultMode: 256 secretName: cert-ovnnorthd-ovndbs - name: metrics-certs-tls-certs secret: defaultMode: 256 secretName: cert-ovn-metrics updateStrategy: rollingUpdate: partition: 0 type: RollingUpdate status: availableReplicas: 1 collisionCount: 0 currentReplicas: 1 currentRevision: ovn-northd-6f9f9b6fc9 observedGeneration: 1 readyReplicas: 1 replicas: 1 updateRevision: ovn-northd-6f9f9b6fc9 updatedReplicas: 1