Gitiles
Code Review Sign In
review.vexxhost.dev / atmosphere / 6468889624411dde5c34ddc894191fd184cf12b1 / . / charts / ovn / values.yaml
blob: 3ffdecec51446f22bcb6b5e332ca8e1d6c3b137c [file] [log] [blame]
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]1# Licensed under the Apache License, Version 2.0 (the "License");
2# you may not use this file except in compliance with the License.
3# You may obtain a copy of the License at
4#
5# http://www.apache.org/licenses/LICENSE-2.0
6#
7# Unless required by applicable law or agreed to in writing, software
8# distributed under the License is distributed on an "AS IS" BASIS,
9# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
10# See the License for the specific language governing permissions and
11# limitations under the License.
12
13# Default values for openvswitch.
14# This is a YAML-formatted file.
15# Declare name/value pairs to be passed into your templates.
16# name: value
17
18---
19release_group: null
20
21images:
22 tags:
Oleksandr K.5b61f462024-10-25 18:42:27 +0200[diff] [blame]23 ovn_ovsdb_nb: docker.io/openstackhelm/ovn:ubuntu_focal
24 ovn_ovsdb_sb: docker.io/openstackhelm/ovn:ubuntu_focal
25 ovn_northd: docker.io/openstackhelm/ovn:ubuntu_focal
26 ovn_controller: docker.io/openstackhelm/ovn:ubuntu_focal
27 ovn_controller_kubectl: docker.io/openstackhelm/ceph-config-helper:latest-ubuntu_jammy
28 dep_check: quay.io/airshipit/kubernetes-entrypoint:latest-ubuntu_focal
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]29 image_repo_sync: docker.io/library/docker:17.07.0
vexxhost-bot99915542024-07-11 13:47:50 +0200[diff] [blame]30 vector: docker.io/timberio/vector:0.39.0-debian
31 ovn_logging_parser: docker.io/openstackhelm/neutron:2024.1-ubuntu_jammy
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]32 pull_policy: "IfNotPresent"
33 local_registry:
34 active: false
35 exclude:
36 - dep_check
37 - image_repo_sync
38
39labels:
40 ovn_ovsdb_nb:
Oleksandr K.5b61f462024-10-25 18:42:27 +0200[diff] [blame]41 node_selector_key: openstack-network-node
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]42 node_selector_value: enabled
43 ovn_ovsdb_sb:
Oleksandr K.5b61f462024-10-25 18:42:27 +0200[diff] [blame]44 node_selector_key: openstack-network-node
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]45 node_selector_value: enabled
46 ovn_northd:
Oleksandr K.5b61f462024-10-25 18:42:27 +0200[diff] [blame]47 node_selector_key: openstack-network-node
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]48 node_selector_value: enabled
49 ovn_controller:
Oleksandr K.5b61f462024-10-25 18:42:27 +0200[diff] [blame]50 node_selector_key: openvswitch
okozachenko1203f329c542023-07-27 22:42:01 +1000[diff] [blame]51 node_selector_value: enabled
52 ovn_controller_gw:
Oleksandr K.5b61f462024-10-25 18:42:27 +0200[diff] [blame]53 node_selector_key: l3-agent
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]54 node_selector_value: enabled
55
56volume:
57 ovn_ovsdb_nb:
58 enabled: true
59 class_name: general
60 size: 5Gi
61 ovn_ovsdb_sb:
62 enabled: true
63 class_name: general
64 size: 5Gi
65
66network:
67 interface:
68 # Tunnel interface will be used for VXLAN tunneling.
69 tunnel: null
70 # If tunnel is null there is a fallback mechanism to search
71 # for interface with routing using tunnel network cidr.
72 tunnel_network_cidr: "0/0"
73
74conf:
okozachenko1203f329c542023-07-27 22:42:01 +1000[diff] [blame]75 ovn_cms_options: "availability-zones=nova"
Oleksandr K.5b61f462024-10-25 18:42:27 +0200[diff] [blame]76 ovn_cms_options_gw_enabled: "enable-chassis-as-gw,availability-zones=nova"
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]77 ovn_encap_type: geneve
78 ovn_bridge: br-int
79 ovn_bridge_mappings: external:br-ex
thywyne85e0ed2023-12-22 16:52:24 +0000[diff] [blame]80 # For DPDK enabled environments, enable netdev datapath type for br-int
81 # ovn_bridge_datapath_type: netdev
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]82
83 # auto_bridge_add:
84 # br-private: eth0
85 # br-public: eth1
86 auto_bridge_add: {}
87
vexxhost-bot99915542024-07-11 13:47:50 +0200[diff] [blame]88 ovn_network_logging_parser_uwsgi:
89 uwsgi:
90 add-header: "Connection: close"
91 buffer-size: 65535
92 die-on-term: true
93 enable-threads: true
94 exit-on-reload: false
95 hook-master-start: unix_signal:15 gracefully_kill_them_all
96 lazy-apps: true
97 log-x-forwarded-for: true
98 master: true
99 processes: 1
100 procname-prefix-spaced: "neutron-ovn-network-logging-parser:"
101 route-user-agent: '^kube-probe.* donotlog:'
102 thunder-lock: true
103 worker-reload-mercy: 80
104 wsgi-file: /var/lib/openstack/bin/neutron-ovn-network-logging-parser-wsgi
vexxhost-botbd2a6742024-11-08 11:33:02 -0500[diff] [blame]105 vector: |
106 [sources.file_logs]
107 type = "file"
108 include = [ "/logs/ovn-controller.log" ]
109
110 [sinks.ovn_log_parser_in]
111 type = "http"
112 inputs = ["file_logs"]
113 uri = "{{ tuple "ovn_logging_parser" "default" "api" . | include "helm-toolkit.endpoints.keystone_endpoint_uri_lookup" }}"
114 encoding.codec = "json"
115 method = "post"
116
117 [sources.ovn_log_parser_out]
118 type = "http_server"
119 address = "0.0.0.0:5001"
120 encoding = "json"
121
122 [transforms.parse_log_message]
123 type = "remap"
124 inputs = ["ovn_log_parser_out"]
125 source = '''
126 del(.source_type)
127 del(.path)
128 '''
129
130 [sinks.loki_sink]
131 type = "loki"
132 labels.event_source = "network_logs"
133 inputs = ["parse_log_message"]
134 endpoint = "http://loki.monitoring:3100"
135 encoding.codec = "json"
136 tenant_id = "{{`{{ project_id }}`}}"
vexxhost-bot99915542024-07-11 13:47:50 +0200[diff] [blame]137
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]138pod:
Oleksandr K.5b61f462024-10-25 18:42:27 +0200[diff] [blame]139 # NOTE: should be same as nova.pod.use_fqdn.compute
140 use_fqdn:
141 compute: true
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]142 security_context:
143 ovn_northd:
144 container:
145 northd:
146 capabilities:
147 add:
148 - SYS_NICE
149 ovn_controller:
150 container:
Mohammed Naser1d75a922023-07-23 19:24:49 +0000[diff] [blame]151 controller_init:
Oleksandr K.5b61f462024-10-25 18:42:27 +0200[diff] [blame]152 readOnlyRootFilesystem: true
Mohammed Naser1d75a922023-07-23 19:24:49 +0000[diff] [blame]153 privileged: true
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]154 controller:
Oleksandr K.5b61f462024-10-25 18:42:27 +0200[diff] [blame]155 readOnlyRootFilesystem: true
okozachenko1203f329c542023-07-27 22:42:01 +1000[diff] [blame]156 privileged: true
vexxhost-bot99915542024-07-11 13:47:50 +0200[diff] [blame]157 ovn_logging_parser:
158 allowPrivilegeEscalation: false
159 readOnlyRootFilesystem: true
160 vector:
161 allowPrivilegeEscalation: false
162 readOnlyRootFilesystem: true
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]163 tolerations:
164 ovn_ovsdb_nb:
165 enabled: false
166 ovn_ovsdb_sb:
167 enabled: false
168 ovn_northd:
169 enabled: false
170 ovn_controller:
171 enabled: false
172 affinity:
173 anti:
174 type:
175 default: preferredDuringSchedulingIgnoredDuringExecution
176 topologyKey:
177 default: kubernetes.io/hostname
178 weight:
179 default: 10
180
181 probes:
182 ovn_northd:
183 northd:
184 readiness:
185 enabled: true
186 params:
Mohammed Naser12207172024-02-05 18:49:35 -0500[diff] [blame]187 initialDelaySeconds: 30
188 timeoutSeconds: 30
189 periodSeconds: 60
190 ovn_ovsdb_nb:
191 ovsdb:
192 readiness:
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]193 enabled: true
194 params:
Mohammed Naser12207172024-02-05 18:49:35 -0500[diff] [blame]195 initialDelaySeconds: 30
196 timeoutSeconds: 30
197 periodSeconds: 60
198 ovn_ovsdb_sb:
199 ovsdb:
200 readiness:
201 enabled: true
202 params:
203 initialDelaySeconds: 30
204 timeoutSeconds: 30
205 periodSeconds: 60
206 ovn_controller:
207 controller:
208 readiness:
209 enabled: true
210 params:
211 initialDelaySeconds: 30
212 timeoutSeconds: 30
213 periodSeconds: 60
214 ovn_controller_gw:
215 controller:
216 readiness:
217 enabled: true
218 params:
219 initialDelaySeconds: 30
220 timeoutSeconds: 30
221 periodSeconds: 60
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]222 dns_policy: "ClusterFirstWithHostNet"
223 replicas:
224 ovn_ovsdb_nb: 1
225 ovn_ovsdb_sb: 1
226 ovn_northd: 1
227 lifecycle:
228 upgrades:
229 daemonsets:
230 pod_replacement_strategy: RollingUpdate
231 ovn_ovsdb_nb:
232 enabled: true
233 min_ready_seconds: 0
234 max_unavailable: 1
235 ovn_ovsdb_sb:
236 enabled: true
237 min_ready_seconds: 0
238 max_unavailable: 1
239 ovn_northd:
240 enabled: true
241 min_ready_seconds: 0
242 max_unavailable: 1
243 ovn_controller:
244 enabled: true
245 min_ready_seconds: 0
246 max_unavailable: 1
247 resources:
248 enabled: false
249 ovs:
250 ovn_ovsdb_nb:
251 requests:
Mohammed Naser12207172024-02-05 18:49:35 -0500[diff] [blame]252 memory: "384Mi"
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]253 cpu: "100m"
254 limits:
255 memory: "1024Mi"
Mohammed Naser12207172024-02-05 18:49:35 -0500[diff] [blame]256 cpu: "1000m"
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]257 ovn_ovsdb_sb:
258 requests:
Mohammed Naser12207172024-02-05 18:49:35 -0500[diff] [blame]259 memory: "384Mi"
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]260 cpu: "100m"
261 limits:
262 memory: "1024Mi"
Mohammed Naser12207172024-02-05 18:49:35 -0500[diff] [blame]263 cpu: "1000m"
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]264 ovn_northd:
265 requests:
266 memory: "128Mi"
267 cpu: "100m"
268 limits:
269 memory: "1024Mi"
270 cpu: "2000m"
271 ovn_controller:
272 requests:
273 memory: "128Mi"
274 cpu: "100m"
275 limits:
276 memory: "1024Mi"
277 cpu: "2000m"
Oleksandr K.5b61f462024-10-25 18:42:27 +0200[diff] [blame]278 ovn_logging_parser:
279 requests:
280 memory: "128Mi"
281 cpu: "100m"
282 limits:
283 memory: "256Mi"
284 cpu: "500m"
285 vector:
286 requests:
287 memory: "128Mi"
288 cpu: "100m"
289 limits:
290 memory: "256Mi"
291 cpu: "500m"
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]292 jobs:
293 image_repo_sync:
294 requests:
295 memory: "128Mi"
296 cpu: "100m"
297 limits:
298 memory: "1024Mi"
299 cpu: "2000m"
Oleksandr K.5b61f462024-10-25 18:42:27 +0200[diff] [blame]300
vexxhost-bot99915542024-07-11 13:47:50 +0200[diff] [blame]301 sidecars:
302 ovn_logging_parser: false
303 vector: false
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]304
305secrets:
306 oci_image_registry:
vexxhost-bot54201152024-07-13 14:17:09 +0200[diff] [blame]307 ovn: ovn-oci-image-registry-key
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]308
309# TODO: Check these endpoints?!
310endpoints:
311 cluster_domain_suffix: cluster.local
312 local_image_registry:
313 name: docker-registry
314 namespace: docker-registry
315 hosts:
316 default: localhost
317 internal: docker-registry
318 node: localhost
319 host_fqdn_override:
320 default: null
321 port:
322 registry:
323 node: 5000
324 oci_image_registry:
325 name: oci-image-registry
326 namespace: oci-image-registry
327 auth:
328 enabled: false
329 openvswitch:
330 username: openvswitch
331 password: password
332 hosts:
333 default: localhost
334 host_fqdn_override:
335 default: null
336 port:
337 registry:
338 default: null
339 ovn_ovsdb_nb:
340 name: ovn-ovsdb-nb
341 namespace: null
342 hosts:
343 default: ovn-ovsdb-nb
344 host_fqdn_override:
345 default: null
346 port:
347 ovsdb:
Mohammed Naserad8989f2023-07-22 22:29:32 +0000[diff] [blame]348 default: 6641
349 raft:
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]350 default: 6643
351 ovn_ovsdb_sb:
352 name: ovn-ovsdb-sb
353 namespace: null
354 hosts:
355 default: ovn-ovsdb-sb
356 host_fqdn_override:
357 default: null
358 port:
359 ovsdb:
Mohammed Naserad8989f2023-07-22 22:29:32 +0000[diff] [blame]360 default: 6642
361 raft:
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]362 default: 6644
vexxhost-bot99915542024-07-11 13:47:50 +0200[diff] [blame]363 ovn_logging_parser:
364 name: ovn-logging-parser
365 namespace: null
366 hosts:
367 default: localhost
368 host_fqdn_override:
369 default: localhost
370 scheme:
371 default: 'http'
372 service: 'http'
373 path:
374 default: "/logs"
375 port:
376 api:
377 default: 9697
378 service: 9697
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]379
380network_policy:
381 ovn_ovsdb_nb:
382 ingress:
383 - {}
384 egress:
385 - {}
386 ovn_ovsdb_sb:
387 ingress:
388 - {}
389 egress:
390 - {}
391 ovn_northd:
392 ingress:
393 - {}
394 egress:
395 - {}
396 ovn_controller:
397 ingress:
398 - {}
399 egress:
400 - {}
401
402dependencies:
403 dynamic:
404 common:
405 local_image_registry:
406 jobs:
407 - openvswitch-image-repo-sync
408 services:
409 - endpoint: node
410 service: local_image_registry
411 static:
412 ovn_ovsdb_nb: null
413 ovn_ovsdb_sb: null
414 ovn_northd:
415 services:
416 - endpoint: internal
417 service: ovn-ovsdb-nb
418 - endpoint: internal
419 service: ovn-ovsdb-sb
420 ovn_controller:
421 services:
422 - endpoint: internal
423 service: ovn-ovsdb-sb
424 pod:
425 - requireSameNode: true
426 labels:
427 application: openvswitch
428 component: server
429 image_repo_sync:
430 services:
431 - endpoint: internal
432 service: local_image_registry
433
434manifests:
435 configmap_bin: true
436 configmap_etc: true
437 deployment_northd: true
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]438 service_ovn_ovsdb_nb: true
439 service_ovn_ovsdb_sb: true
440 statefulset_ovn_ovsdb_nb: true
441 statefulset_ovn_ovsdb_sb: true
442 deployment_ovn_northd: true
443 daemonset_ovn_controller: true
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]444 job_image_repo_sync: true
445...