<PR ID>: (activity this week / total activity) summary
There was 1 Prioritized Merged pull request:
-
463: (32/656) machine-api: Describing steps to support out-of-tree providers (Danil-Grigorev)
This enhancement proposal describes the migration of cloud platforms from the deprecated in-tree cloud providers to Cloud Controller Manager services that implement the
external cloud providerinterface.
<PR ID>: (activity this week / total activity) summary
There was 1 Prioritized New pull request:
-
830: (18/18) disaster-recovery: WIP Add enhancement for automated cluster backups (marun)
do-not-merge/work-in-progress, priority/important-soonEnable the configuration of automated cluster backups.
<PR ID>: (activity this week / total activity) summary
There was 1 Prioritized Active pull request:
-
828: (93/95) update: Add admin ack upgrade gate (jottofar)
priority/critical-urgentCVO currently blocks minor level upgrades when overrides are set, a resource deletion is pending, or an operator has set its upgradeable condition to false. This enhancement adds a generic upgrade blocking mechanism for blocking minor level upgrades. This generic upgrade blocker can consist of one or more items each of which will block a minor level upgrade. Each generic upgrade blocker item will be associated with some well-defined task to be completed by an administrator. Once the task has been completed the administrator will acknowledge completion and its associated item will no longer block minor level upgrades.
<PR ID>: (activity this week / total activity) summary
There were 3 Other Merged pull requests:
-
709: (2/90) installer: Add proposal for credentials management outside the openshift cluster for new platforms (akhil-rane)
The intent of this enhancement is to take the process of credentials management outside the OpenShift cluster for new platforms. We propose to make manual mode as default for clusters on new platforms, optionally supported by CLI tooling that follows the best practices of the hosting infrastructure at that time.
- 823: (13/14) cluster-logging: Remove tenant configuration from loki output configuration. (alanconway)
- 824: (2/4) authentication: auth: add sur and stlaz to group sync approvers (stlaz)
<PR ID>: (activity this week / total activity) summary
There were 7 Other New pull requests:
-
831: (5/5) single-node: WIP - aos-sno-pair enhancement (mshitrit)
do-not-merge/work-in-progressThis enhancement describes setting up a two nodes cluster with a reduced footprint which will serve edge cases.
-
833: (23/23) kube-apiserver: Fallback on Failing Revisions of Static Pods (sttts)
Static pods operators use a revisioned pod manifest and revisioned configmap and secret manifests to roll out and start a new configuration of the operand in an atomic way.
Configuration can be bad in different ways. In HA OpenShift, the static pod operator will wait for operands on one node to start up and to become healthy and ready. The operator will stop rolling out bad revisions further.
In SNO, there is no other pod to ensure availability when a roll-out of a new revision happens. Hence, a bad revision can be fatal for the cluster, especially for the kube-apiserver and etcd.
This enhancement is describing a fallback mechanism that will make the operand to revert to the last healthy revision when the new revision fails, and how the operator will notice this event and how it will react.
The fallback mechanism is opt-in by the operator, and kube-apiserver and etcd operators (and potentially kcm and ks) have to consult the deployment topology in the infrastructure resource to decide. Most of the text here is generic, but we will focus mainly on the cluster-kube-apiserver-operator use-case first.
-
834: (75/75) machine-api: Propose new controller for pausing MHC during cluster upgrades (slintes)
Automatically prevent unwanted remediation during cluster upgrades caused by temporarily unhealthy nodes.
-
836: (13/13) etcd: ETCD-58: WIP Add enhancement for automated defragmentation (hexfusion)
Enable automated defragmentation of the etcd cluster state.
-
837: (2/2) insights: Conditional Data Gathering for Insights Operator (Sergey1011010)
The conditional gatherer for Insights Operator collects data according to the defined rules*. Each rule contains one or more conditions such as "alert A is firing" and one or more gatherers with parameters such as "collect N lines of logs from containers in namespace N". Current version has these rules defined in the code and the proposal is to load them from an external source to make collection of new conditional data faster. It's NOT about running brand new code, but just calling the existing gatherers with different validated parameters, so the operator can't collect anything we don't expect.
* note that rule here and later has nothing to do with rules used to analyze data in archives written by CCX presentation team
- 832: (13/13) general: handling kube-apiserver disruption (deads2k)
- 835: (4/4) cluster-logging: Explicitly state that JSON log feature applies to all log types. (alanconway)
<PR ID>: (activity this week / total activity) summary
There were 15 Other Active pull requests:
- 817: (35/151) network: Baremetal IPI Network Configuration for Day-1 (cybertron)
- 821: (30/70) update: enhancements/update/targeted-update-edge-blocking: Propose a new enhancement (wking)
- 816: (22/23) ingress: Ingress: Add API for configuring ingress connection timeouts (rfredette)
- 791: (11/29) baremetal: Support RAID and BIOS configuration for baremetal IPI deployments (hs0210)
- 826: (6/38) cluster-logging: Creating initial skeleton of eo v2 api proposal (ewolinetz)
- 460: (4/20) ingress: Add empty-requests-policy enhancement (Miciah)
- 567: (3/110) machine-api: Added proposal for remediation history (slintes)
- 683: (3/55) insights: Insights Operator pulling and exposing data from the OCM API (tremes)
- 695: (1/27) cluster-version-operator: move CVO upgrades doc to enhancements (deads2k)
- 571: (1/233) network: Cloud API component for egress IP (alexanderConstantinescu)
- 812: (1/45) node: Add proposal about Node Operator (saschagrunert)
- 815: (1/39) console: CONSOLE-2425: Support localization of dynamic plugins (jhadvig)
- 827: (14/21) machine-api: Backport the
pausefeature for MachineHealthChecks (slintes) - 797: (2/19) ingress: custom routes: set up an explicit trust to the oauth-server (stlaz)
- 693: (1/29) general: CONVENTIONS: Add section on limits (smarterclayton)
<PR ID>: (activity this week / total activity) summary
There were 2 Other Closed pull requests:
- 357: (0/241) accelerators: Supporting out-of-tree drivers on OpenShift (zvonkok)
- 547: (3/41) baremetal: Propose BMC-less remediation enhancement (AKA poison pill) (n1r1)
<PR ID>: (activity this week / total activity) summary
There were 3 Old (labeled as stale, but discussion in last 7 days) pull requests:
- 137: (2/302) general: CLI in-cluster management (sallyom)
- 730: (2/9) network: mtu: ability to change running cluster's mtu setting (msherif1234)
- 618: (1/16) network: Add more details about host port ownership (danwinship)
<PR ID>: (activity this week / total activity) summary
There were 9 Other lifecycle/stale pull requests:
- 302: (0/30) kube-apiserver: [thought-experiment] single-node cluster static pod creation (deads2k)
- 613: (0/19) network: NetworkPolicies for System Namespaces (danwinship)
- 626: (0/39) machine-config: enhancements/machine-config: securing MCS (crawford)
- 643: (0/66) update: Add Reduced Reboots enhancement (sdodson)
- 661: (0/119) operator-framework-api: New OpenshiftCatalogueValidator (camilamacedo86)
- 673: (0/54) machine-api: short-circuiting-backoff (mshitrit)
- 682: (0/32) alerting: alerting as a feature (dofinn)
- 687: (0/108) storage: Add AWS EFS CSI driver operator (jsafrane)
- 711: (0/4) olm: add "fail open" risk/mitigation (njhale)
<PR ID>: (activity this week / total activity) summary
There were 53 Idle (no comments for at least 7 days) pull requests:
- 146: (0/215) installer: openstack: Add Baremetal Compute Nodes RFE (pierreprinetti)
- 201: (0/95) general: bootimages: Downloading and updating bootimages via release image (cgwalters)
- 292: (0/203) machine-api: Add Managing Control Plane machines proposal (enxebre)
- 341: (0/80) maintenance: Machine-maintenance operator proposal (dofinn)
- 343: (0/43) authentication: cluster-wide oauth-proxy settings (deads2k)
- 346: (0/85) installer: Installer pre-flight validations (mandre)
- 363: (0/201) cvo: Enhancement for adding upgrade preflight checks for operators (LalatenduMohanty)
- 371: (0/22) ingress: Add forwarded-header-policy enhancement (Miciah)
- 427: (0/54) update: enhancements/update/phased-rollouts: Propose a new enhancement (wking)
- 461: (0/9) ingress: Add aws-elb-idle-timeout enhancement (Miciah)
- 468: (0/54) machine-api: Add dedicated instances proposal (alexander-demichev)
- 475: (0/31) general: enhancements/update/update-blocker-lifecycle: Propose a new enhancement (wking)
- 520: (0/15) network: Static IP Addresses from DHCP (cybertron)
- 562: (0/152) security: Enhancing SCC to Gate Runtime Classes (haircommander)
- 575: (0/76) installer: Installer Enhacement Proposal: Manifests from STDIN (oglok)
- 593: (0/135) general: Add proposal for hiding container mountpoints from systemd (lack)
- 624: (0/21) update: Add: upgrade-blocker-operator (michaelgugino)
- 652: (0/4) node: Enable cgroup v2 support (harche)
- 654: (0/20) dns: ARO private DNS zone resource removal (jim-minter)
- 660: (0/21) cluster-logging: Flow control API enhancements, first draft. (alanconway)
- 706: (0/154) api-review: apply user defined tags to all resources (gregsheremeta)
- 707: (0/28) installer: Add Enhancement for Installing to Alibaba Cloud (lemondlut)
- 722: (0/7) multi-arch: Add "Build OKD for ppc64le" proposal (mjturek)
- 725: (0/12) distributed-tracing: distributed tracing (sallyom)
- 732: (0/147) network: Add Smart NIC OVN offload enhancement (zshi-redhat)
- 736: (0/104) installer: Add enhancement - IBM Cloud provider for Power Virtual Server platform (jaypoulz)
- 738: (0/103) network: Installing OCP on ARM-Based Smart NICs (danwinship)
- 745: (0/99) security: Security Profiles Operator integration in OpenShift (JAORMX)
- 747: (0/60) network: Enable Kubernetes NMstate by default for selected platforms (yboaron)
- 748: (0/4) cluster-logging: New proposal: Forwarder output parameter templates (alanconway)
- 749: (0/183) ingress: NE-310 Enhancement proposal for HSTS route admission plugin (candita)
- 751: (0/50) builds: WIP - Disable Jenkins Pipeline Build Strategy (adambkaplan)
- 753: (0/136) workload-partitioning: add plan for configuration and enablement ownership (dhellmann)
- 758: (0/20) security: Security Context Constraints for CSI Volumes (adambkaplan)
- 771: (0/12) update: add eus MCO enhancement (rphillips)
- 773: (0/40) installer: Enhancement proposal for OpenShift IPI on IBM Cloud (jeffnowicki)
- 775: (0/9) network: Drop Node Hostname Resolution (cybertron)
- 781: (0/67) installer: CORS-1650: RHEL 8 Server Worker/Infra Node Support (mtnbikenc)
- 784: (0/44) installer: Allow installer to include/exclude components based on user select install solution (bparees)
- 787: (0/8) update: Add no drain upgrade filter (michaelgugino)
- 802: (0/37) workload-partitioning: WIP Workload partitioning API enhancement (MarSik)
- 804: (0/28) workload-partitioning: PAO render initial draft (MarSik)
- 806: (0/1) ingress: Ingress: Add ingress operator and operand logging level API (sgreene570)
- 811: (0/2) network: Enhancement proposal for OVN secondary networks (maiqueb)
- 522: (0/40) olm: Update OLM managed operator metrics enhancement (awgreene)
- 538: (0/16) machine-api: update machine-api-usage-telemetry (elmiko)
- 666: (0/27) kube-apiserver: adding new userequest audit policy (EmilyM1)
- 742: (0/93) cluster-scope-secret-volumes: Update projected resource CSI driver proposal (adambkaplan)
- 774: (0/6) network: Remove OpenShift-SDN requirement for Bare Metal Load Balancer (markdgray)
- 779: (0/1) general: Update High Availability Conventions (ravisantoshgudimetla)
- 800: (0/11) update: updates: capture offline discussion on eus-upgrades-mvp (dhellmann)
- 805: (0/3) general: CONVENTIONS.md: add runlevel documentation (mcoops)
- 810: (0/2) general: tools: update make dependency to build lint image (dhellmann)