Updates since 2022-04-08
<PR ID>: (activity this week / total activity) summary
There was 1 Prioritized Active pull request:
-
1067: (76/311) agent-installer: Automated Workflow for Agent-based Installer (dhellmann) (AGENT-10)
tide/merge-method-squash, priority/important-soon"Cluster 0" deployments, for the first cluster in an environment, are unique because they occur in situations where there may not be a lot of other infrastructure to support long-running services normally associated with automated provisioning for on-premises use cases. Nevertheless, users and partners want to automate these deployments. The assisted installer GUI provides an excellent user experience for deploying connected clusters. This enhancement covers the automation use case for disconnected clusters.
<PR ID>: (activity this week / total activity) summary
There were 9 Other Merged pull requests:
-
461: (4/34) ingress: NE-406: ingress: Add aws-elb-idle-timeout enhancement (Miciah) (NE-357)
This enhancement extends the IngressController API to allow the user to configure the timeout period for idle connections to an IngressController that is published using an AWS Classic Elastic Load Balancer.
-
1048: (9/120) network: Dual Stack VIPs for on-prem deployments (cybertron)
Originally the on-prem loadbalancer architecture supported only single-stack ipv4 or ipv6 deployments. When dual stack support was added for the baremetal platform, we carried over the VIP configuration that only allowed for a single VIP to be specified. The thinking was that in dual stack clusters every node would have access to either ipv4 or ipv6 endpoints. While this is true of the nodes, it is not necessarily true of the applications that run in or out of the cluster and may need to interact with the API or ingress services.
This design is proposing the addition of a second pair of VIPs for dual stack clusters so API and ingress are accessible from either ip version.
-
1075: (5/87) machine-api: [OCPCLOUD-1436] AWS IMDSv2 support in MAPI and Installer config (lobziik)
For increasing security and add protection against open firewalls, reverse proxies, and SSRF vulnerabilities Amazon introduced enhancements to the EC2 Instance Metadata Service (IMDSv2). It is a session-based interaction method with Instance Metadata Service (IMDS), in other words, all requests to
http://169.254.169.254will require prior PUT requests for obtaining token and such token must be used in further requests. This document describes and proposes several interfaces for configuring IMDS behaviour for newly created machines via Machine API and during the installation procedure. -
1087: (35/35) single-node: tools: add metadata linting step to linter job (dhellmann) (MGMT-8414)
This enhancement aims to enable adding workers to a single control-plane node cluster by attempting to tackle multiple issues that arise when worker nodes are added to such clusters.
- 1061: (5/5) dev-guide: Host port registry: Add konnectivity agent (alvaroaleman)
- 1088: (4/4) installer: Add link to redhat support policy for tech preview (bparees)
- 1091: (3/3) ingress: tunable-router-kubelet-probes: Fix heading (Miciah) (NE-683)
- 1092: (8/8) installer: Correct description of cap separation character (bparees)
- 1094: (3/3) dev-guide: dev-guide/operators.md: fix links to CVO documentation (simonpasquier)
<PR ID>: (activity this week / total activity) summary
There were 3 Other New pull requests:
- 1089: (4/4) cluster-logging: Update flow-control-api.md - inline rate limits. (alanconway)
- 1090: (25/25) guidelines: add workflow description section to the template (dhellmann)
- 1093: (16/16) general: enhancements/update/update-blocker-lifecycle: Pivot to "update recommendations" (wking)
<PR ID>: (activity this week / total activity) summary
There were 17 Other Active pull requests:
- 1037: (73/425) insights: New Insights config API proposal (tremes) (CCXDEV-6852)
- 1030: (72/171) monitoring: enhancements/monitoring: User-Defined Alerting and Relabeling Rules (bison)
- 1059: (56/274) baremetal: Converge ZTP and Metal3 flows (dtantsur) (METAL-10) (METAL-192)
- 918: (36/186) installer: vsphere: add multiple datacenter and clusters (jcpowermac)
- 1084: (21/22) ingress: enhancement/ingress: add max connections tuning (frobware) (NE-577)
- 987: (19/124) dns: Add the DNS-over-TLS enhancement initial draft (brandisher) (NE-703)
- 1023: (17/37) ingress: NE-881: ingress: Add route-subdomain enhancement (Miciah) (NE-700)
- 1014: (9/373) multi-arch: Heterogeneous architecture clusters (Prashanth684) (RFE-2240) (OCPPLAN-4577)
- 1035: (9/142) network: Pods Egress DSCP QoS proposal (oribon) (SDN-2097)
- 1064: (7/51) network: Add enhancement proposal for SDN live migration (pliurh) (SDN-2612)
- 1010: (7/87) authentication: add enhancement on PSa autolabeling (stlaz)
- 1071: (3/14) baremetal: Add bootstrap-external-ip (honza) (METAL-175)
- 1019: (2/25) node-tuning: Enhancement for improving image pull via shortname security (umohnani8) (RUN-1134)
- 745: (2/137) security: Security Profiles Operator integration in OpenShift (JAORMX)
- 1054: (2/7) ingress: NE-585 Update enhancement after implementation (candita)
- 1068: (1/5) dev-guide: Add etcd readyz port (hasbro17)
- 1077: (1/25) monitoring: Add a priority label to alerts (sradco)
<PR ID>: (activity this week / total activity) summary
There were 4 Revived (closed more than 14 days ago, but with new comments) pull requests:
- 163: (2/73) installer: AWS custom region and endpoints (abhinavdahiya)
- 1039: (0/6) ingress: NE-780: ingress: Add tunable-router-kubelet-probes (Miciah)
Revived (closed more than 14 days ago, but with new comments) Pull Requests Modifying Existing Documents
- 1051: (14/223) api-review: Update enhancement proposal to support update of user-defined AWS tags (TrilokGeer)
- 1080: (8/71) guidelines: enhancements process documentation improvements (dhellmann)
<PR ID>: (activity this week / total activity) summary
There were 13 Idle (no comments for at least 14 days) pull requests:
- 371: (0/39) ingress: Add forwarded-header-policy enhancement (Miciah)
- 811: (0/80) network: Enhancement proposal for OVN secondary networks (maiqueb)
- 981: (0/159) general: Added proposal for HyperShift monitoring. (bwplotka)
- 1008: (0/251) machine-api: [OCPCLOUD-1248] Add initial iteration of ControlPlaneMachineSet operator enhancement (JoelSpeed)
- 1009: (0/87) general: OpenStack Cloud Provider Config Upgrade (stephenfin) (OSASINFRA-2758)
- 1027: (0/6) general: Enable ProjectRequestLimit on OpenShift 4.x (josefkarasek)
- 1047: (0/5) authentication: AUTH-125 Cert Manager enhancement document (slaskawi) (AUTH-5)
- 1057: (0/126) installer: Enhancement for enabling 4-node cluster deployments as a day0 operation (flaper87)
- 1046: (0/5) ingress: transition-ingress-from-beta-to-stable status → implemented (Miciah)
- 1073: (0/10) general: Fix links to make relative to page (johnbwork)
- 1076: (0/6) dev-guide: Add on-prem internal loadbalancer ports to host port registry (cybertron)
- 1078: (0/10) monitoring: Add operator name and component labels (sradco)
- 1081: (0/3) single-node: Change wording in SNO+Workers Operational Aspects of API Extensions section (omertuc)
<PR ID>: (activity this week / total activity) summary
There were 3 With lifecycle/stale or lifecycle/rotten pull requests:
- 1005: (2/109) general: Non-disruptive upgrades in DPU clusters (danwinship) (SDN-2603)
- 1066: (2/8) dev-guide: Document the various event files produced by CI (DennisPeriquet)
- 1072: (1/10) machine-api: update machine-api-usage-telemetry (elmiko)