Gitiles
Code Review Sign In
review.vexxhost.dev / atmosphere / ec7f2bbac882af4ce33b7418ffbba74c9307ab79 / . / charts / ovn / values.yaml
blob: 5c35a2f57ffb019d79a89b6de7444d43808e0d49 [file] [log] [blame]
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]1# Licensed under the Apache License, Version 2.0 (the "License");
2# you may not use this file except in compliance with the License.
3# You may obtain a copy of the License at
4#
5# http://www.apache.org/licenses/LICENSE-2.0
6#
7# Unless required by applicable law or agreed to in writing, software
8# distributed under the License is distributed on an "AS IS" BASIS,
9# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
10# See the License for the specific language governing permissions and
11# limitations under the License.
12
13# Default values for openvswitch.
14# This is a YAML-formatted file.
15# Declare name/value pairs to be passed into your templates.
16# name: value
17
18---
19release_group: null
20
21images:
22 tags:
23 ovn_ovsdb_nb: docker.io/openstackhelm/ovn:latest-ubuntu_focal
24 ovn_ovsdb_sb: docker.io/openstackhelm/ovn:latest-ubuntu_focal
25 ovn_northd: docker.io/openstackhelm/ovn:latest-ubuntu_focal
26 ovn_controller: docker.io/openstackhelm/ovn:latest-ubuntu_focal
27 dep_check: quay.io/airshipit/kubernetes-entrypoint:v1.0.0
28 image_repo_sync: docker.io/library/docker:17.07.0
vexxhost-bot509956f2024-07-11 13:47:48 +0200[diff] [blame]29 vector: docker.io/timberio/vector:0.39.0-debian
30 ovn_logging_parser: docker.io/openstackhelm/neutron:2024.1-ubuntu_jammy
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]31 pull_policy: "IfNotPresent"
32 local_registry:
33 active: false
34 exclude:
35 - dep_check
36 - image_repo_sync
37
38labels:
39 ovn_ovsdb_nb:
okozachenko120383519462023-07-29 01:30:02 +1000[diff] [blame]40 node_selector_key: openstack-compute-node
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]41 node_selector_value: enabled
42 ovn_ovsdb_sb:
okozachenko120383519462023-07-29 01:30:02 +1000[diff] [blame]43 node_selector_key: openstack-compute-node
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]44 node_selector_value: enabled
45 ovn_northd:
okozachenko120383519462023-07-29 01:30:02 +1000[diff] [blame]46 node_selector_key: openstack-compute-node
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]47 node_selector_value: enabled
48 ovn_controller:
okozachenko120383519462023-07-29 01:30:02 +1000[diff] [blame]49 node_selector_key: openstack-compute-node
okozachenko1203f329c542023-07-27 22:42:01 +1000[diff] [blame]50 node_selector_value: enabled
51 ovn_controller_gw:
52 node_selector_key: openstack-control-plane
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]53 node_selector_value: enabled
54
55volume:
56 ovn_ovsdb_nb:
57 enabled: true
58 class_name: general
59 size: 5Gi
60 ovn_ovsdb_sb:
61 enabled: true
62 class_name: general
63 size: 5Gi
64
65network:
66 interface:
67 # Tunnel interface will be used for VXLAN tunneling.
68 tunnel: null
69 # If tunnel is null there is a fallback mechanism to search
70 # for interface with routing using tunnel network cidr.
71 tunnel_network_cidr: "0/0"
72
73conf:
okozachenko1203f329c542023-07-27 22:42:01 +1000[diff] [blame]74 ovn_cms_options: "availability-zones=nova"
75 gw_ovn_cms_options: "enable-chassis-as-gw,availability-zones=nova"
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]76 ovn_encap_type: geneve
77 ovn_bridge: br-int
78 ovn_bridge_mappings: external:br-ex
thywyne85e0ed2023-12-22 16:52:24 +0000[diff] [blame]79 # For DPDK enabled environments, enable netdev datapath type for br-int
80 # ovn_bridge_datapath_type: netdev
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]81
82 # auto_bridge_add:
83 # br-private: eth0
84 # br-public: eth1
85 auto_bridge_add: {}
86
87 # NOTE: should be same as nova.conf.use_fqdn.compute
88 use_fqdn:
89 compute: true
90
vexxhost-bot509956f2024-07-11 13:47:48 +0200[diff] [blame]91 ovn_network_logging_parser_uwsgi:
92 uwsgi:
93 add-header: "Connection: close"
94 buffer-size: 65535
95 die-on-term: true
96 enable-threads: true
97 exit-on-reload: false
98 hook-master-start: unix_signal:15 gracefully_kill_them_all
99 lazy-apps: true
100 log-x-forwarded-for: true
101 master: true
102 processes: 1
103 procname-prefix-spaced: "neutron-ovn-network-logging-parser:"
104 route-user-agent: '^kube-probe.* donotlog:'
105 thunder-lock: true
106 worker-reload-mercy: 80
107 wsgi-file: /var/lib/openstack/bin/neutron-ovn-network-logging-parser-wsgi
108
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]109pod:
110 security_context:
111 ovn_northd:
112 container:
113 northd:
114 capabilities:
115 add:
116 - SYS_NICE
117 ovn_controller:
118 container:
Mohammed Naser1d75a922023-07-23 19:24:49 +0000[diff] [blame]119 controller_init:
120 privileged: true
121 runAsUser: 0
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]122 controller:
123 capabilities:
124 add:
125 - SYS_NICE
okozachenko1203f329c542023-07-27 22:42:01 +1000[diff] [blame]126 ovn_controller_gw:
127 container:
128 controller_init:
129 privileged: true
130 runAsUser: 0
131 controller:
132 capabilities:
133 add:
134 - SYS_NICE
vexxhost-bot509956f2024-07-11 13:47:48 +0200[diff] [blame]135 ovn_logging_parser:
136 allowPrivilegeEscalation: false
137 readOnlyRootFilesystem: true
138 vector:
139 allowPrivilegeEscalation: false
140 readOnlyRootFilesystem: true
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]141 tolerations:
142 ovn_ovsdb_nb:
143 enabled: false
144 ovn_ovsdb_sb:
145 enabled: false
146 ovn_northd:
147 enabled: false
148 ovn_controller:
149 enabled: false
okozachenko1203f329c542023-07-27 22:42:01 +1000[diff] [blame]150 ovn_controller_gw:
151 enabled: false
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]152 affinity:
153 anti:
154 type:
155 default: preferredDuringSchedulingIgnoredDuringExecution
156 topologyKey:
157 default: kubernetes.io/hostname
158 weight:
159 default: 10
160
161 probes:
162 ovn_northd:
163 northd:
164 readiness:
165 enabled: true
166 params:
Mohammed Naser12207172024-02-05 18:49:35 -0500[diff] [blame]167 initialDelaySeconds: 30
168 timeoutSeconds: 30
169 periodSeconds: 60
170 ovn_ovsdb_nb:
171 ovsdb:
172 readiness:
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]173 enabled: true
174 params:
Mohammed Naser12207172024-02-05 18:49:35 -0500[diff] [blame]175 initialDelaySeconds: 30
176 timeoutSeconds: 30
177 periodSeconds: 60
178 ovn_ovsdb_sb:
179 ovsdb:
180 readiness:
181 enabled: true
182 params:
183 initialDelaySeconds: 30
184 timeoutSeconds: 30
185 periodSeconds: 60
186 ovn_controller:
187 controller:
188 readiness:
189 enabled: true
190 params:
191 initialDelaySeconds: 30
192 timeoutSeconds: 30
193 periodSeconds: 60
194 ovn_controller_gw:
195 controller:
196 readiness:
197 enabled: true
198 params:
199 initialDelaySeconds: 30
200 timeoutSeconds: 30
201 periodSeconds: 60
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]202 dns_policy: "ClusterFirstWithHostNet"
203 replicas:
204 ovn_ovsdb_nb: 1
205 ovn_ovsdb_sb: 1
206 ovn_northd: 1
207 lifecycle:
208 upgrades:
209 daemonsets:
210 pod_replacement_strategy: RollingUpdate
211 ovn_ovsdb_nb:
212 enabled: true
213 min_ready_seconds: 0
214 max_unavailable: 1
215 ovn_ovsdb_sb:
216 enabled: true
217 min_ready_seconds: 0
218 max_unavailable: 1
219 ovn_northd:
220 enabled: true
221 min_ready_seconds: 0
222 max_unavailable: 1
223 ovn_controller:
224 enabled: true
225 min_ready_seconds: 0
226 max_unavailable: 1
okozachenko1203f329c542023-07-27 22:42:01 +1000[diff] [blame]227 ovn_controller_gw:
228 enabled: true
229 min_ready_seconds: 0
230 max_unavailable: 1
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]231 resources:
232 enabled: false
233 ovs:
234 ovn_ovsdb_nb:
235 requests:
Mohammed Naser12207172024-02-05 18:49:35 -0500[diff] [blame]236 memory: "384Mi"
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]237 cpu: "100m"
238 limits:
239 memory: "1024Mi"
Mohammed Naser12207172024-02-05 18:49:35 -0500[diff] [blame]240 cpu: "1000m"
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]241 ovn_ovsdb_sb:
242 requests:
Mohammed Naser12207172024-02-05 18:49:35 -0500[diff] [blame]243 memory: "384Mi"
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]244 cpu: "100m"
245 limits:
246 memory: "1024Mi"
Mohammed Naser12207172024-02-05 18:49:35 -0500[diff] [blame]247 cpu: "1000m"
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]248 ovn_northd:
249 requests:
250 memory: "128Mi"
251 cpu: "100m"
252 limits:
253 memory: "1024Mi"
254 cpu: "2000m"
255 ovn_controller:
256 requests:
257 memory: "128Mi"
258 cpu: "100m"
259 limits:
260 memory: "1024Mi"
261 cpu: "2000m"
okozachenko1203f329c542023-07-27 22:42:01 +1000[diff] [blame]262 ovn_controller_gw:
263 requests:
264 memory: "128Mi"
265 cpu: "100m"
266 limits:
267 memory: "1024Mi"
268 cpu: "2000m"
vexxhost-bot509956f2024-07-11 13:47:48 +0200[diff] [blame]269 ovn_controller_gw:
270 ovn_logging_parser:
271 requests:
272 memory: "128Mi"
273 cpu: "100m"
274 limits:
275 memory: "256Mi"
276 cpu: "500m"
277 vector:
278 requests:
279 memory: "128Mi"
280 cpu: "100m"
281 limits:
282 memory: "256Mi"
283 cpu: "500m"
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]284 jobs:
285 image_repo_sync:
286 requests:
287 memory: "128Mi"
288 cpu: "100m"
289 limits:
290 memory: "1024Mi"
291 cpu: "2000m"
vexxhost-bot509956f2024-07-11 13:47:48 +0200[diff] [blame]292 sidecars:
293 ovn_logging_parser: false
294 vector: false
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]295
296secrets:
297 oci_image_registry:
vexxhost-bot269be062024-07-13 14:18:55 +0200[diff] [blame]298 ovn: ovn-oci-image-registry-key
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]299
300# TODO: Check these endpoints?!
301endpoints:
302 cluster_domain_suffix: cluster.local
303 local_image_registry:
304 name: docker-registry
305 namespace: docker-registry
306 hosts:
307 default: localhost
308 internal: docker-registry
309 node: localhost
310 host_fqdn_override:
311 default: null
312 port:
313 registry:
314 node: 5000
315 oci_image_registry:
316 name: oci-image-registry
317 namespace: oci-image-registry
318 auth:
319 enabled: false
320 openvswitch:
321 username: openvswitch
322 password: password
323 hosts:
324 default: localhost
325 host_fqdn_override:
326 default: null
327 port:
328 registry:
329 default: null
330 ovn_ovsdb_nb:
331 name: ovn-ovsdb-nb
332 namespace: null
333 hosts:
334 default: ovn-ovsdb-nb
335 host_fqdn_override:
336 default: null
337 port:
338 ovsdb:
Mohammed Naserad8989f2023-07-22 22:29:32 +0000[diff] [blame]339 default: 6641
340 raft:
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]341 default: 6643
342 ovn_ovsdb_sb:
343 name: ovn-ovsdb-sb
344 namespace: null
345 hosts:
346 default: ovn-ovsdb-sb
347 host_fqdn_override:
348 default: null
349 port:
350 ovsdb:
Mohammed Naserad8989f2023-07-22 22:29:32 +0000[diff] [blame]351 default: 6642
352 raft:
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]353 default: 6644
vexxhost-bot509956f2024-07-11 13:47:48 +0200[diff] [blame]354 ovn_logging_parser:
355 name: ovn-logging-parser
356 namespace: null
357 hosts:
358 default: localhost
359 host_fqdn_override:
360 default: localhost
361 scheme:
362 default: 'http'
363 service: 'http'
364 path:
365 default: "/logs"
366 port:
367 api:
368 default: 9697
369 service: 9697
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]370
371network_policy:
372 ovn_ovsdb_nb:
373 ingress:
374 - {}
375 egress:
376 - {}
377 ovn_ovsdb_sb:
378 ingress:
379 - {}
380 egress:
381 - {}
382 ovn_northd:
383 ingress:
384 - {}
385 egress:
386 - {}
387 ovn_controller:
388 ingress:
389 - {}
okozachenko1203f329c542023-07-27 22:42:01 +1000[diff] [blame]390 ovn_controller_gw:
391 ingress:
392 - {}
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]393 egress:
394 - {}
395
396dependencies:
397 dynamic:
398 common:
399 local_image_registry:
400 jobs:
401 - openvswitch-image-repo-sync
402 services:
403 - endpoint: node
404 service: local_image_registry
405 static:
406 ovn_ovsdb_nb: null
407 ovn_ovsdb_sb: null
408 ovn_northd:
409 services:
410 - endpoint: internal
411 service: ovn-ovsdb-nb
412 - endpoint: internal
413 service: ovn-ovsdb-sb
414 ovn_controller:
415 services:
416 - endpoint: internal
417 service: ovn-ovsdb-sb
okozachenko1203f329c542023-07-27 22:42:01 +1000[diff] [blame]418 ovn_controller_gw:
419 services:
420 - endpoint: internal
421 service: ovn-ovsdb-sb
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]422 pod:
423 - requireSameNode: true
424 labels:
425 application: openvswitch
426 component: server
427 image_repo_sync:
428 services:
429 - endpoint: internal
430 service: local_image_registry
431
432manifests:
433 configmap_bin: true
434 configmap_etc: true
435 deployment_northd: true
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]436 service_ovn_ovsdb_nb: true
437 service_ovn_ovsdb_sb: true
438 statefulset_ovn_ovsdb_nb: true
439 statefulset_ovn_ovsdb_sb: true
440 deployment_ovn_northd: true
441 daemonset_ovn_controller: true
okozachenko1203f329c542023-07-27 22:42:01 +1000[diff] [blame]442 daemonset_ovn_controller_gw: true
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]443 job_image_repo_sync: true
444...