Skip to content

Latest commit

 

History

History
156 lines (104 loc) · 10.1 KB

2022-03-04.md

File metadata and controls

156 lines (104 loc) · 10.1 KB

This Week in Enhancements - 2022-03-04

Updates since 2022-02-25

Enhancements for Release Priorities

Prioritized Merged Changes

<PR ID>: (activity this week / total activity) summary

There was 1 Prioritized Merged pull request:

  • 1029: (4/213) network: OVN-Kubernetes on Hypershift (squeed)

    Hypershift is a new deployment model for OpenShift which removes the requirement that clusters be "self-hosted". Rather, a given hosted cluster's control plane actually resides as pods on another "management" cluster.

    Adapting the OVN networking plugin to the Hypershift model requires some careful design. Specifically, OVN provides its own control plane and datastore, all of which will be hosted external to the hosted cluster.

    Thus, the OpenShift OVN deployment model must be updated to support split control planes. Likewise, the Network Operator must be able to manage components on both the control plane as well as the hosted cluster.

Other Enhancements

Other Merged Changes

<PR ID>: (activity this week / total activity) summary

There were 3 Other Merged pull requests:

  • 952: (11/53) ingress: NE-585 Expose HealthCheck Interval (candita)

    Expose and make configurable the ROUTER_BACKEND_CHECK_INTERVAL environment variable in HAProxy's template so that administrators may customize the length of time between consecutive healthchecks of backend services.

    This is already configurable via a route annotation called router.openshift.io/haproxy.health.check.interval, but exposing the healthcheck interval at a global scope is desired for efficient administration of routes. HAProxy allows setting the healthcheck globally as well as per-route, and both options will be addressed as a part of this proposal.

Other Merged Pull Requests Modifying Existing Documents

  • 1044: (3/3) api-review: Revert "Update enhancement proposal to support update of user-defined AWS tags " (sdodson)
  • 1049: (3/3) housekeeping: OWNERS: replace staebler with patrickdillon (staebler)

Other New Changes

<PR ID>: (activity this week / total activity) summary

There were 3 Other New pull requests:

  • 1047: (3/3) authentication: AUTH-125 Cert Manager enhancement document (slaskawi)

    This enhancement outlines the implementation details of a Cert Manager support for OpenShift.

    The key things to highlight are:

    • This feature will be provided as an OLM-based Operator
    • The Operator implementation will be based on library-go
    • The productization pipeline will be used for the release process

  • 1048: (13/13) network: Dual Stack VIPs for on-prem deployments (cybertron)

    Originally the on-prem loadbalancer architecture supported only single-stack ipv4 or ipv6 deployments. When dual stack support was added for the baremetal platform, we carried over the VIP configuration that only allowed for a single VIP to be specified. The thinking was that in dual stack clusters every node would have access to either ipv4 or ipv6 endpoints. While this is true of the nodes, it is not necessarily true of the applications that run in the cluster and may need to interact with the API or ingress services.

    This design is proposing the addition of a second VIP for dual stack clusters so API and ingress are accessible from either ip version.

Other New Pull Requests Modifying Existing Documents

  • 1046: (2/2) ingress: transition-ingress-from-beta-to-stable status → implemented (Miciah)

Other Active Changes

<PR ID>: (activity this week / total activity) summary

There were 14 Other Active pull requests:

  • 1037: (110/136) insights: New Insights config API proposal (tremes)
  • 1036: (71/118) insights: Insights Operator Prometheus Alerts for Insights Recommendations (natiiix)
  • 1041: (43/49) single-node: Enhancement for enabling single-node-openshift with workers (omertuc)
  • 1014: (30/304) multi-arch: Heterogeneous architecture clusters (Prashanth684)
  • 1005: (26/103) general: Non-disruptive upgrades in DPU clusters (danwinship)
  • 1002: (17/96) ingress: CFE-10: Add host-network-bind-options (Elbehery)
  • 1035: (17/66) network: Pods Egress DSCP QoS proposal (oribon)
  • 987: (14/104) dns: Add the DNS-over-TLS enhancement initial draft (brandisher)
  • 1032: (13/15) general: OpenShift CoreOS Layering (provisional) (cgwalters)
  • 981: (13/151) general: Added proposal for HyperShift monitoring. (bwplotka)
  • 1010: (12/70) authentication: add enhancement on PSa autolabeling (stlaz)
  • 929: (3/237) api-review: [OCPNODE-747] New CRD ImageDigestMirrorSet and ImageTagMirrorSet to support AllowMirrByTags (QiWang19)
  • 1008: (1/185) machine-api: [OCPCLOUD-1248] Add initial iteration of ControlPlaneMachineSet operator enhancement (JoelSpeed)
  • 1023: (1/20) ingress: Add route-subdomain enhancement (Miciah)

Other Closed Changes

<PR ID>: (activity this week / total activity) summary

There was 1 Other Closed pull request:

  • 912: (2/44) installer: Enhancement proposal for OpenShift IPI on Nutanix AOS with AHV (vnephologist)

Revived (closed more than 7 days ago, but with new comments) Changes

<PR ID>: (activity this week / total activity) summary

There were 2 Revived (closed more than 7 days ago, but with new comments) pull requests:

  • 697: (0/34) ingress: Add transition-ingress-from-beta-to-stable enhancement (Miciah)

Revived (closed more than 7 days ago, but with new comments) Pull Requests Modifying Existing Documents

  • 1000: (1/342) api-review: Update enhancement proposal to support update of user-defined AWS tags (TrilokGeer)

Idle (no comments for at least 7 days) Changes

<PR ID>: (activity this week / total activity) summary

There were 12 Idle (no comments for at least 7 days) pull requests:

  • 745: (0/133) security: Security Profiles Operator integration in OpenShift (JAORMX)
  • 811: (0/71) network: Enhancement proposal for OVN secondary networks (maiqueb)
  • 943: (0/110) etcd: [OCPCLOUD-1244] Add proposal for etcd protection mechanism during control plane scaling (JoelSpeed)
  • 958: (0/108) monitoring: enhancements/monitoring: User-defined alerting rules proposal (bison)
  • 995: (0/231) machine-api: Add enhancement for AWS Placement Groups in Machine API (JoelSpeed)
  • 1009: (0/81) general: OpenStack Cloud Provider Config Upgrade (stephenfin)
  • 1025: (0/47) kube-apiserver: Introduce detection of stale clusteroperator conditions (mfojtik)
  • 1027: (0/2) general: Enable ProjectRequestLimit on OpenShift 4.x (josefkarasek)
  • 1028: (0/11) cluster-logging: flow-control-api spec (pmoogi-redhat)
  • 1030: (0/30) monitoring: enhancements/monitoring: User-Defined Alerting and Relabeling Rules (bison)
  • 1034: (0/36) testing: Ephemeral Agent Installer e2e Tests (lranjbar)
  • 1039: (0/2) ingress: Add tunable-router-kubelet-probes (Miciah)

With lifecycle/stale or lifecycle/rotten Changes

<PR ID>: (activity this week / total activity) summary

There were 8 With lifecycle/stale or lifecycle/rotten pull requests:

  • 918: (1/94) installer: vsphere: add multiple datacenter and clusters (jcpowermac)
  • 937: (1/133) monitoring: support configuration of alerting notifications by application owners (simonpasquier)
  • 980: (5/83) authentication: enhancements/authentication: detect invalid certificates (s-urbaniak)
  • 992: (1/18) authentication: auth: add enhancement for direct kube-apiserver oidc config (stlaz)
  • 994: (1/8) authentication: auth: add enhancement about pinning SCCs to pods (stlaz)
  • 1006: (1/4) storage: CSI Inline Ephemeral Volume Security (adambkaplan)
  • 1019: (1/20) node-tuning: Enhancement for improving image pull via shortname security (umohnani8)

With lifecycle/stale or lifecycle/rotten Pull Requests Modifying Existing Documents

  • 1003: (1/4) authentication: add log level, stage and request uri mask (ibihim)