Gitiles
Code Review Sign In
review.vexxhost.dev / atmosphere / refs/heads/stable/2024.1 / . / charts / ovn / values.yaml
blob: 0191c8509bf71589a02b0dbd8bda983070d9a16c [file] [log] [blame]
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]1# Licensed under the Apache License, Version 2.0 (the "License");
2# you may not use this file except in compliance with the License.
3# You may obtain a copy of the License at
4#
5# http://www.apache.org/licenses/LICENSE-2.0
6#
7# Unless required by applicable law or agreed to in writing, software
8# distributed under the License is distributed on an "AS IS" BASIS,
9# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
10# See the License for the specific language governing permissions and
11# limitations under the License.
12
13# Default values for openvswitch.
14# This is a YAML-formatted file.
15# Declare name/value pairs to be passed into your templates.
16# name: value
17
18---
19release_group: null
20
21images:
22 tags:
Oleksandr K.a9dd1a42024-10-25 19:54:08 +0200[diff] [blame]23 ovn_ovsdb_nb: docker.io/openstackhelm/ovn:ubuntu_focal
24 ovn_ovsdb_sb: docker.io/openstackhelm/ovn:ubuntu_focal
25 ovn_northd: docker.io/openstackhelm/ovn:ubuntu_focal
26 ovn_controller: docker.io/openstackhelm/ovn:ubuntu_focal
27 ovn_controller_kubectl: docker.io/openstackhelm/ceph-config-helper:latest-ubuntu_jammy
28 dep_check: quay.io/airshipit/kubernetes-entrypoint:latest-ubuntu_focal
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]29 image_repo_sync: docker.io/library/docker:17.07.0
vexxhost-bot509956f2024-07-11 13:47:48 +0200[diff] [blame]30 vector: docker.io/timberio/vector:0.39.0-debian
31 ovn_logging_parser: docker.io/openstackhelm/neutron:2024.1-ubuntu_jammy
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]32 pull_policy: "IfNotPresent"
33 local_registry:
34 active: false
35 exclude:
36 - dep_check
37 - image_repo_sync
38
39labels:
40 ovn_ovsdb_nb:
Oleksandr K.a9dd1a42024-10-25 19:54:08 +0200[diff] [blame]41 node_selector_key: openstack-network-node
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]42 node_selector_value: enabled
43 ovn_ovsdb_sb:
Oleksandr K.a9dd1a42024-10-25 19:54:08 +0200[diff] [blame]44 node_selector_key: openstack-network-node
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]45 node_selector_value: enabled
46 ovn_northd:
Oleksandr K.a9dd1a42024-10-25 19:54:08 +0200[diff] [blame]47 node_selector_key: openstack-network-node
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]48 node_selector_value: enabled
49 ovn_controller:
Oleksandr K.a9dd1a42024-10-25 19:54:08 +0200[diff] [blame]50 node_selector_key: openvswitch
okozachenko1203f329c542023-07-27 22:42:01 +1000[diff] [blame]51 node_selector_value: enabled
52 ovn_controller_gw:
Oleksandr K.a9dd1a42024-10-25 19:54:08 +0200[diff] [blame]53 node_selector_key: l3-agent
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]54 node_selector_value: enabled
55
56volume:
57 ovn_ovsdb_nb:
58 enabled: true
59 class_name: general
60 size: 5Gi
61 ovn_ovsdb_sb:
62 enabled: true
63 class_name: general
64 size: 5Gi
65
66network:
67 interface:
68 # Tunnel interface will be used for VXLAN tunneling.
69 tunnel: null
70 # If tunnel is null there is a fallback mechanism to search
71 # for interface with routing using tunnel network cidr.
72 tunnel_network_cidr: "0/0"
73
74conf:
okozachenko1203f329c542023-07-27 22:42:01 +1000[diff] [blame]75 ovn_cms_options: "availability-zones=nova"
Oleksandr K.a9dd1a42024-10-25 19:54:08 +0200[diff] [blame]76 ovn_cms_options_gw_enabled: "enable-chassis-as-gw,availability-zones=nova"
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]77 ovn_encap_type: geneve
78 ovn_bridge: br-int
79 ovn_bridge_mappings: external:br-ex
thywyne85e0ed2023-12-22 16:52:24 +0000[diff] [blame]80 # For DPDK enabled environments, enable netdev datapath type for br-int
81 # ovn_bridge_datapath_type: netdev
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]82
83 # auto_bridge_add:
84 # br-private: eth0
85 # br-public: eth1
86 auto_bridge_add: {}
vexxhost-bot509956f2024-07-11 13:47:48 +0200[diff] [blame]87 ovn_network_logging_parser_uwsgi:
88 uwsgi:
89 add-header: "Connection: close"
90 buffer-size: 65535
91 die-on-term: true
92 enable-threads: true
93 exit-on-reload: false
94 hook-master-start: unix_signal:15 gracefully_kill_them_all
95 lazy-apps: true
96 log-x-forwarded-for: true
97 master: true
98 processes: 1
99 procname-prefix-spaced: "neutron-ovn-network-logging-parser:"
100 route-user-agent: '^kube-probe.* donotlog:'
101 thunder-lock: true
102 worker-reload-mercy: 80
103 wsgi-file: /var/lib/openstack/bin/neutron-ovn-network-logging-parser-wsgi
vexxhost-botcbc6c722024-11-07 12:10:13 -0500[diff] [blame]104 vector: |
105 [sources.file_logs]
106 type = "file"
107 include = [ "/logs/ovn-controller.log" ]
108
109 [sinks.ovn_log_parser_in]
110 type = "http"
111 inputs = ["file_logs"]
112 uri = "{{ tuple "ovn_logging_parser" "default" "api" . | include "helm-toolkit.endpoints.keystone_endpoint_uri_lookup" }}"
113 encoding.codec = "json"
114 method = "post"
115
116 [sources.ovn_log_parser_out]
117 type = "http_server"
118 address = "0.0.0.0:5001"
119 encoding = "json"
120
121 [transforms.parse_log_message]
122 type = "remap"
123 inputs = ["ovn_log_parser_out"]
124 source = '''
125 del(.source_type)
126 del(.path)
127 '''
128
129 [sinks.loki_sink]
130 type = "loki"
131 labels.event_source = "network_logs"
132 inputs = ["parse_log_message"]
133 endpoint = "http://loki.monitoring:3100"
134 encoding.codec = "json"
135 tenant_id = "{{`{{ project_id }}`}}"
vexxhost-bot509956f2024-07-11 13:47:48 +0200[diff] [blame]136
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]137pod:
Oleksandr K.a9dd1a42024-10-25 19:54:08 +0200[diff] [blame]138 # NOTE: should be same as nova.pod.use_fqdn.compute
139 use_fqdn:
140 compute: true
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]141 security_context:
142 ovn_northd:
143 container:
144 northd:
145 capabilities:
146 add:
147 - SYS_NICE
148 ovn_controller:
149 container:
Mohammed Naser1d75a922023-07-23 19:24:49 +0000[diff] [blame]150 controller_init:
Oleksandr K.a9dd1a42024-10-25 19:54:08 +0200[diff] [blame]151 readOnlyRootFilesystem: true
Mohammed Naser1d75a922023-07-23 19:24:49 +0000[diff] [blame]152 privileged: true
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]153 controller:
Oleksandr K.a9dd1a42024-10-25 19:54:08 +0200[diff] [blame]154 readOnlyRootFilesystem: true
okozachenko1203f329c542023-07-27 22:42:01 +1000[diff] [blame]155 privileged: true
vexxhost-bot509956f2024-07-11 13:47:48 +0200[diff] [blame]156 ovn_logging_parser:
157 allowPrivilegeEscalation: false
158 readOnlyRootFilesystem: true
159 vector:
160 allowPrivilegeEscalation: false
161 readOnlyRootFilesystem: true
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]162 tolerations:
163 ovn_ovsdb_nb:
164 enabled: false
165 ovn_ovsdb_sb:
166 enabled: false
167 ovn_northd:
168 enabled: false
169 ovn_controller:
170 enabled: false
171 affinity:
172 anti:
173 type:
174 default: preferredDuringSchedulingIgnoredDuringExecution
175 topologyKey:
176 default: kubernetes.io/hostname
177 weight:
178 default: 10
179
180 probes:
181 ovn_northd:
182 northd:
183 readiness:
184 enabled: true
185 params:
Mohammed Naser12207172024-02-05 18:49:35 -0500[diff] [blame]186 initialDelaySeconds: 30
187 timeoutSeconds: 30
188 periodSeconds: 60
189 ovn_ovsdb_nb:
190 ovsdb:
191 readiness:
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]192 enabled: true
193 params:
Mohammed Naser12207172024-02-05 18:49:35 -0500[diff] [blame]194 initialDelaySeconds: 30
195 timeoutSeconds: 30
196 periodSeconds: 60
197 ovn_ovsdb_sb:
198 ovsdb:
199 readiness:
200 enabled: true
201 params:
202 initialDelaySeconds: 30
203 timeoutSeconds: 30
204 periodSeconds: 60
205 ovn_controller:
206 controller:
207 readiness:
208 enabled: true
209 params:
210 initialDelaySeconds: 30
211 timeoutSeconds: 30
212 periodSeconds: 60
213 ovn_controller_gw:
214 controller:
215 readiness:
216 enabled: true
217 params:
218 initialDelaySeconds: 30
219 timeoutSeconds: 30
220 periodSeconds: 60
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]221 dns_policy: "ClusterFirstWithHostNet"
222 replicas:
223 ovn_ovsdb_nb: 1
224 ovn_ovsdb_sb: 1
225 ovn_northd: 1
226 lifecycle:
227 upgrades:
228 daemonsets:
229 pod_replacement_strategy: RollingUpdate
230 ovn_ovsdb_nb:
231 enabled: true
232 min_ready_seconds: 0
233 max_unavailable: 1
234 ovn_ovsdb_sb:
235 enabled: true
236 min_ready_seconds: 0
237 max_unavailable: 1
238 ovn_northd:
239 enabled: true
240 min_ready_seconds: 0
241 max_unavailable: 1
242 ovn_controller:
243 enabled: true
244 min_ready_seconds: 0
245 max_unavailable: 1
246 resources:
247 enabled: false
vexxhost-bot21de0392025-01-14 08:53:00 -0500[diff] [blame]248 ovn_ovsdb_nb:
249 requests:
250 memory: "384Mi"
251 cpu: "100m"
252 limits:
253 memory: "1024Mi"
254 cpu: "1000m"
255 ovn_ovsdb_sb:
256 requests:
257 memory: "384Mi"
258 cpu: "100m"
259 limits:
260 memory: "1024Mi"
261 cpu: "1000m"
262 ovn_northd:
263 requests:
264 memory: "128Mi"
265 cpu: "100m"
266 limits:
267 memory: "1024Mi"
268 cpu: "2000m"
269 ovn_controller:
270 requests:
271 memory: "128Mi"
272 cpu: "100m"
273 limits:
274 memory: "1024Mi"
275 cpu: "2000m"
Oleksandr K.a9dd1a42024-10-25 19:54:08 +0200[diff] [blame]276 ovn_logging_parser:
277 requests:
278 memory: "128Mi"
279 cpu: "100m"
280 limits:
281 memory: "256Mi"
282 cpu: "500m"
283 vector:
284 requests:
285 memory: "128Mi"
286 cpu: "100m"
287 limits:
288 memory: "256Mi"
289 cpu: "500m"
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]290 jobs:
291 image_repo_sync:
292 requests:
293 memory: "128Mi"
294 cpu: "100m"
295 limits:
296 memory: "1024Mi"
297 cpu: "2000m"
Oleksandr K.a9dd1a42024-10-25 19:54:08 +0200[diff] [blame]298
vexxhost-bot509956f2024-07-11 13:47:48 +0200[diff] [blame]299 sidecars:
300 ovn_logging_parser: false
301 vector: false
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]302
303secrets:
304 oci_image_registry:
vexxhost-bot269be062024-07-13 14:18:55 +0200[diff] [blame]305 ovn: ovn-oci-image-registry-key
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]306
307# TODO: Check these endpoints?!
308endpoints:
309 cluster_domain_suffix: cluster.local
310 local_image_registry:
311 name: docker-registry
312 namespace: docker-registry
313 hosts:
314 default: localhost
315 internal: docker-registry
316 node: localhost
317 host_fqdn_override:
318 default: null
319 port:
320 registry:
321 node: 5000
322 oci_image_registry:
323 name: oci-image-registry
324 namespace: oci-image-registry
325 auth:
326 enabled: false
327 openvswitch:
328 username: openvswitch
329 password: password
330 hosts:
331 default: localhost
332 host_fqdn_override:
333 default: null
334 port:
335 registry:
336 default: null
337 ovn_ovsdb_nb:
338 name: ovn-ovsdb-nb
339 namespace: null
340 hosts:
341 default: ovn-ovsdb-nb
342 host_fqdn_override:
343 default: null
344 port:
345 ovsdb:
Mohammed Naserad8989f2023-07-22 22:29:32 +0000[diff] [blame]346 default: 6641
347 raft:
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]348 default: 6643
349 ovn_ovsdb_sb:
350 name: ovn-ovsdb-sb
351 namespace: null
352 hosts:
353 default: ovn-ovsdb-sb
354 host_fqdn_override:
355 default: null
356 port:
357 ovsdb:
Mohammed Naserad8989f2023-07-22 22:29:32 +0000[diff] [blame]358 default: 6642
359 raft:
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]360 default: 6644
vexxhost-bot509956f2024-07-11 13:47:48 +0200[diff] [blame]361 ovn_logging_parser:
362 name: ovn-logging-parser
363 namespace: null
364 hosts:
365 default: localhost
366 host_fqdn_override:
367 default: localhost
368 scheme:
369 default: 'http'
370 service: 'http'
371 path:
372 default: "/logs"
373 port:
374 api:
375 default: 9697
376 service: 9697
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]377
378network_policy:
379 ovn_ovsdb_nb:
380 ingress:
381 - {}
382 egress:
383 - {}
384 ovn_ovsdb_sb:
385 ingress:
386 - {}
387 egress:
388 - {}
389 ovn_northd:
390 ingress:
391 - {}
392 egress:
393 - {}
394 ovn_controller:
395 ingress:
396 - {}
397 egress:
398 - {}
399
400dependencies:
401 dynamic:
402 common:
403 local_image_registry:
404 jobs:
405 - openvswitch-image-repo-sync
406 services:
407 - endpoint: node
408 service: local_image_registry
409 static:
410 ovn_ovsdb_nb: null
411 ovn_ovsdb_sb: null
412 ovn_northd:
413 services:
414 - endpoint: internal
415 service: ovn-ovsdb-nb
416 - endpoint: internal
417 service: ovn-ovsdb-sb
418 ovn_controller:
419 services:
420 - endpoint: internal
421 service: ovn-ovsdb-sb
422 pod:
423 - requireSameNode: true
424 labels:
425 application: openvswitch
426 component: server
427 image_repo_sync:
428 services:
429 - endpoint: internal
430 service: local_image_registry
431
432manifests:
433 configmap_bin: true
434 configmap_etc: true
435 deployment_northd: true
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]436 service_ovn_ovsdb_nb: true
437 service_ovn_ovsdb_sb: true
438 statefulset_ovn_ovsdb_nb: true
439 statefulset_ovn_ovsdb_sb: true
440 deployment_ovn_northd: true
441 daemonset_ovn_controller: true
Mohammed Naser54ee9922023-07-22 18:40:25 +0000[diff] [blame]442 job_image_repo_sync: true
443...