Two Enhancements merged this week related to single node OpenShift, with updates after they merged.
-
560: (38/174) general: single-node production deployment approach (dhellmann)
This enhancement describes the approach to deploying single-node production OpenShift instances without using a cluster profile. With a few changes to existing operators that would also be needed for a profile-based approach, and with the high-availability mode API described in #555, it is possible to produce single-node deployments without introducing a new cluster profile.
- 587: (0/0) general: add risk about disruptive changes to single-node-production-deployment-approach (dhellmann)
-
555: (36/195) general: Cluster High-availability Mode API (dhellmann)
As we add more deployment topologies for OpenShift, we need a way to communicate expectations to the operators managing the cluster. This enhancement describes an API for telling operators how hard to work to provide high-availability of their operands.
- 584: (0/0) general: Update Infrastructure topology from SingleNode to SingleReplica (ravidbro)
There was 1 new enhancement for the EUS-to-EUS upgrade initiative this week.
-
585: (17/17) update: EUS Upgrades MVP (sdodson)
This enhancement outlines a set of cross platform improvements meant to ensure the safety of multiple back-to-back minor version upgrades associated with EUS to EUS upgrades. Additionally, we outline improvements applicable to all upgrades meant to reduce the duration of upgrades and workload disruption.
All of the work detailed herein is prerequisite to enabling upgrades which skip reboots. However where non-overlapping resources exist we can pursue reboot removal in parallel such as the Node team validating upstream's stated Kubelet version skew policies.
There was active discussion of 1 enhancement for the central machine management initiative.
- 574: (31/216) installer: First iteration of running the Assisted Installer in end-user clusters. (mhrivnak)
<PR ID>: (activity this week / total activity) summary
There were 3 other Merged pull requests:
-
424: (0/0) authentication: updates Separate-OAuth-API-Resources enhancement to reflect the current state of the world (p0lyn0mial)
The API resources used by the OpenShift OAuth server will be moved to their own
oauth-apiserverrepository. The oauth-apiserver binary will be managed by the existing authentication-operator. -
430: (0/24) network: Proposal for networkpolicy for multus interface (i.e. net-attach-def) (s1061123)
This proposal to bring networkpolicy features for multus interface.
-
518: (6/92) cluster-logging: Enhancement proposal: Forwarding JSON logs. (alanconway)
When applications write structured JSON logs, consumers want to access fields of JSON log entries for indexing and other purposes. The current logging data model stores the log entry as a JSON string, not a JSON object. Consumers can't access the log entry fields without a second JSON parse of this string.
This proposal will allow alternate structured forms of output record
-
569: (1/4) network: Bug 1908145: Add workloads localhost ports for recovery-controllers (damemi)
-
573: (0/1) network: host-port-registry: "workers" → "nodes" (Miciah)
<PR ID>: (activity this week / total activity) summary
There were 8 Closed pull requests:
- 22: (0/21) oauth-proxy: auto-config cluster proxy settings for the oauth-proxy (deads2k)
- 64: (0/10) network: OVN-Kubernetes: clarify test plan, latency commitments (squeed)
- 128: (0/1) olm: Fix typos and indents in
Operator/InstallYAML (tlwu2013) - 133: (0/0) machine-api: Machine health-checking: add disable annotation (ondrejmular)
- 138: (0/1) autoscaling: Enable webhook serving on localhost of hostnetwork (tkashem)
- 295: (0/1) general: enhancements/update/operators: Collect operator-dev-doc (wking)
- 396: (0/37) network: Enhancement proposal for making service node port range configurable (abhat)
- 414: (0/12) update: Cluster profile: add details about the default profile (guillaumerose)
<PR ID>: (activity this week / total activity) summary
There were 2 other New pull requests:
-
577: (45/45) ingress: describe one-stop-shopping for exposing customized routes (deads2k)
Add
CustomizeableRoute{Spec,Status}toIngressSpecin a way that allows multiple operators to provide information about Routes (or Ingresses, or maybe even something else), that a cluster-admin wants to provide custom names and/or custom serving certificates for. -
581: (7/7) network: WIP Add Netflow support proposal (rcarrillocruz)
NetFlow is a protocol developed by Cisco for collecting IP traffic information and monitoring network flow. It is widely used by network departments.
OVS (Open vSwitch) has supported NetFlow for quite some time now. OpenShift uses OVN/OVS for OVN-Kubernetes network plugin. OpenShift should have the ability to export cluster traffic as NetFlow data.
-
586: (0/0) network: host-port-registry: Add IPsec (markdgray)
-
588: (0/0) network: host-port-registry: add 6080 port (sttts)
<PR ID>: (activity this week / total activity) summary
There were 10 Active pull requests:
- 562: (68/125) security: Enhancing SCC to Gate Runtime Classes (haircommander)
- 570: (63/176) cluster-logging: Enhancement Proposal: API to Forward Logs to CloudWatch (alanconway)
- 524: (51/145) network: New method for providing configurable self-hosted LB/DNS/VIP for on-prem (yboaron)
- 565: (43/272) installer: single-node deployment with bootstrap-in-place (eranco74)
- 567: (35/47) machine-api: Added proposal for remediation history (slintes)
- 576: (34/34) cluster-logging: Move ES cert management into Elasticsearch Operator (ewolinetz)
- 575: (14/43) installer: Installer Enhacement Proposal: Manifests from STDIN (oglok)
- 571: (10/28) network: Cloud API component for egress IP (alexanderConstantinescu)
- 547: (4/14) baremetal: Propose BMC-less remediation enhancement (AKA poison pill) (n1r1)
- 564: (3/5) cluster-logging: Allowing users to specify a delete policy based on amount of storage used within the ES cluster (ewolinetz)