Beginning last week, we have started highlighting enhancements related to our top priorities for the upcoming releases. To help with automating this, we are using the "priority/important-soon" label on these enhancements. If you're working on an enhancement related to a release priority, you can help by applying this label with leaving a "/priority important-soon" label on the enhancement PR.
This section calls out enhancements that have been labeled with "priority/important-soon", which indicates the enhancement is related to a top-level release priority.
<PR ID>: (activity this week / total activity) summary
-
593: (46/46) general: Add proposal for hiding container mountpoints from systemd (lack)
The current implementation of Kubelet and CRI-O both use the top-level namespace for all container and Kubelet mountpoints. However, moving these container-specific mountpoints into a private namespace reduced systemd overhead with no difference in functionality.
-
596: (1/1) general: clarify wording about cluster machine approver for single-node production deployment approach (dhellmann)
<PR ID>: (activity this week / total activity) summary
- 585: (60/77) update: EUS Upgrades MVP (sdodson)
- 565: (12/284) installer: single-node deployment with bootstrap-in-place (eranco74)
<PR ID>: (activity this week / total activity) summary
There were 6 other Merged pull requests:
-
369: (0/57) scheduling: Add new pod priority class (lilic)
By default OpenShift has two reserved priority classes for critical system pods to have guaranteed scheduling, this proposal suggests the need for a third less critical priority class which would be used for user facing features we ship with OpenShift, for example user workload monitoring pods, that are not system critical but should have a higher scheduling priority than any user workloads.
-
570: (1/62) cluster-logging: Enhancement Proposal: API to Forward Logs to CloudWatch (alanconway)
[Amazon CloudWatch][aws-cw] is a hosted monitoring and log storage service. This proposal extends the
ClusterLogForwarder
API with an output type for CloudWatch.
- 594: (2/2) general: enable markdown linter in this repository (dhellmann)
- 580: (0/0) general: tools: filter PRs before printing report (dhellmann)
- 586: (0/0) network: host-port-registry: Add IPsec (markdgray)
- 588: (0/0) network: host-port-registry: add 6080 port (sttts)
<PR ID>: (activity this week / total activity) summary
There were 2 Closed pull requests:
- 228: (0/3) etcd: enhancements/etcd/cluster-etcd-operator: update render command (hexfusion)
- 412: (0/35) machine-config: Namespaces for On-Prem Networking Services (cybertron)
<PR ID>: (activity this week / total activity) summary
There were 7 other New pull requests:
-
590: (0/0) authentication: add 'Allowing URI Scheme in OIDC sub claims' (stlaz)
Make the oauth-server capable of setting up identities for OIDC identity providers that use the URI scheme in the
sub
claim of their ID tokens. -
591: (0/0) authentication: useroauthaccesstokens - don't remove system:oauth-token-deleters (stlaz)
This enhancement describes how to allow OpenShift users to be able to list their access tokens so that they can easily delete an access token specific to an application, all of their tokens, a token from the past they no longer need etc.
-
592: (96/96) olm: Safer Cluster Upgrades for OLM Managed Operators (awgreene)
OpenShift Cluster Admins introduce new services to their clusters in the form of OLM Managed Operators. When performing a cluster upgrade, there is no guarantee that these operators will continue to run on the upgraded cluster.
OLM must make an effort to prevent cluster upgrades when it is possible to determine that one or more installed operators will not run on the next version of OpenShift.
-
595: (20/20) machine-api: Add Control Plane MachineSets proposal (michaelgugino)
This enhancement documents the intent to adopt existing control plane machines into machinesets for all clusters utilizing the machine-api.
-
597: (0/0) cluster-logging: Add groupPrefix field to cloudwatch output type (alanconway)
Amazon CloudWatch is a hosted monitoring and log storage service. This proposal extends the
ClusterLogForwarder
API with an output type for CloudWatch.
- 598: (0/0) general: Update owners for Cluster Infrastructure team lead change (JoelSpeed)
<PR ID>: (activity this week / total activity) summary
There were 10 other Active pull requests:
- 463: (72/554) machine-api: Describing steps to support out-of-tree providers (Danil-Grigorev)
- 577: (56/101) ingress: describe one-stop-shopping for exposing customized routes (deads2k)
- 524: (32/177) network: New method for providing configurable self-hosted LB/DNS/VIP for on-prem (yboaron)
- 576: (23/57) cluster-logging: Move ES cert management into Elasticsearch Operator (ewolinetz)
- 571: (22/75) network: Cloud API component for egress IP (alexanderConstantinescu)
- 562: (14/139) security: Enhancing SCC to Gate Runtime Classes (haircommander)
- 561: (12/18) network: Initial proposal of "allow-from-router" NetworkPolicy (danwinship)
- 357: (12/85) general: Supporting out-of-tree drivers on OpenShift (zvonkok)
- 564: (6/13) cluster-logging: Allowing users to specify a delete policy based on amount of storage used within the ES cluster (ewolinetz)
- 574: (4/83) installer: First iteration of running the Assisted Installer in end-user clusters. (mhrivnak)