Skip to content

Latest commit

 

History

History
266 lines (190 loc) · 19.2 KB

2021-04-30.md

File metadata and controls

266 lines (190 loc) · 19.2 KB

This Week in Enhancements - 2021-04-30

Enhancements for Release Priorities

Prioritized Merged Changes

<PR ID>: (activity this week / total activity) summary

There were 3 Prioritized Merged pull requests:

Prioritized Merged Pull Requests Modifying Existing Documents

  • 741: (6/31) general: workload-partitioning: update cri-o annotation handling (dhellmann)
  • 743: (4/19) general: workload-partitioning: describe warning annotation (dhellmann)
  • 754: (5/5) general: workload-partitioning: fix a couple of typos (dhellmann)

Prioritized New Changes

<PR ID>: (activity this week / total activity) summary

There were 2 Prioritized New pull requests:

  • 753: (4/4) workload-partitioning: add plan for configuration and enablement ownership (dhellmann)

    The initial iteration of workload partitioning focused on a short path to a minimum viable implementation. This enhancement describes the loose ends for preparing the feature for GA at a high level, and explains the set of other design documents that need to be written separately during the next iteration.

Prioritized New Pull Requests Modifying Existing Documents

  • 759: (2/2) 100 enhancements: workload-partitioning: reorganize (dhellmann)

Prioritized Active Changes

<PR ID>: (activity this week / total activity) summary

There were 2 Prioritized Active pull requests:

  • 744: (50/52) general: External control plane topology (csrwng)

    External control plane support was introduced in OCP 4 with the support for the IBM Cloud Managed service (ROKS). At the time, this was the only platform that was run with an external control plane. It was sufficient to use a platform type of IBMCloud to distinguish it from other OCP installations with traditional control plane topology.

    More recently, an orthogonal field was added to the Infrastructure resource to indicate the type of control plane topology. Current supported values for the controlPlaneTopology field are HighlyAvailable and SingleReplica.

    This enhancement proposes adding a third possible value to the control plane topology field: External. A value of External in this field indicates that control plane components such as Etcd, Kube API server, Kube Controller Manager, and Kube Scheduler are running outside the cluster and are not visible as pods inside the cluster.

Prioritized Active Pull Requests Modifying Existing Documents

  • 740: (1/9) general: workload-partitioning: change crio annotation name (dhellmann)

Prioritized Closed Changes

<PR ID>: (activity this week / total activity) summary

There was 1 Prioritized Closed pull request:

  • 636: (1/60) kube-apiserver: API Removal Notifications (sanchezl)

Other Enhancements

Other Merged Changes

<PR ID>: (activity this week / total activity) summary

There were 3 Other Merged pull requests:

  • 635: (1/57) manifestlist: IR-57: API changes for manifest list support (ricardomaraschini)

    A manifest list is a group of image manifests, it is used to keep track of references to images targeting different platforms/architectures in a single entity. OpenShift does not support this type of manifest, it currently supports only a 1 to 1 mapping (one manifest pointing to one image).

    This enhancement proposal designs a plan to add support for this new type of manifest in OpenShift.

  • 637: (10/278) monitoring: Add: Alerting Standards (michaelgugino)

    Clear and actionable alerts are a key component of a smooth operational experience. Ensuring we have clear and concise guidelines for our alerts will allow developers to better inform users of problem situations and how to resolve them.

Other Merged Pull Requests Modifying Existing Documents

  • 724: (16/54) console: Update internationalization enhancement for how to handle login template translation strings (sg00dwin)

Other New Changes

<PR ID>: (activity this week / total activity) summary

There were 5 Other New pull requests:

  • 751: (50/50) builds: WIP - Disable Jenkins Pipeline Build Strategy (adambkaplan)

    OpenShift 3.0 included a way to invoke a Jenkins pipeline from an OpenShift build. The status of the build on the OpenShift cluster would reflect the state of the pipeline in Jenkins. This was the first feature to support continuous integration/delivery processes on OpenShift.

    As OpenShift and Kubernetes have evolved, so has cloud-native CI/CD. Tekton and its downstream distribution - OpenShift Pipelines - provide a way of running CI/CD processes natively on Kubernetes. The Jenkins pipeline strategy was officially deprecated in OpenShift 4.1, but at that time there was no meaningful replacement. We now have that meaningful replacement with the general availability of OpenShift Pipelines. It is time to disable OpenShift's direct integration with Jenkins.

  • 758: (20/20) security: Security Context Constraints for CSI Volumes (adambkaplan)

    Ephemeral CSI volumes are a newer type of volume in Kubernetes, which allows content to mounted into pods with underlying ephemeral file systems. OpenShift Security Context Constraints (SCCs) take an all-or-nothing approach when it comes to these volumes. A service account/user can either mount a csi volume, or it cannot. This proposal will enhance SCCs to control which CSI drivers are allowed.

Other New Pull Requests Modifying Existing Documents

  • 762: (27/27) update: eus-upgrades-mvp: don't enforce skew check in MCO (crawford)
  • 763: (8/8) general: Introduce priority class conventions (ravisantoshgudimetla)
  • 764: (19/19) kube-apiserver: removed api notifications (deads2k)

Other Active Changes

<PR ID>: (activity this week / total activity) summary

There were 16 Other Active pull requests:

  • 749: (81/86) ingress: NE-310 Enhancement proposal for HSTS route admission plugin (candita)
  • 732: (45/97) network: Add Smart NIC OVN offload enhancement (zshi-redhat)
  • 736: (37/41) installer: Add enhancement - IBM Cloud provider for Power Virtual Server platform (jaypoulz)
  • 738: (18/97) network: Installing OCP on ARM-Based Smart NICs (danwinship)
  • 709: (14/80) installer: Add proposal for credentials management outside the openshift cluster for new platforms (akhil-rane)
  • 733: (12/82) builds: build: Support Mounted Resource Volumes (adambkaplan)
  • 683: (12/36) insights: Insights Operator pulling and exposing data from the OCM API (tremes)
  • 712: (12/169) cluster-logging: [cluster-logging] Add proposal for loki as an alternative log store (periklis)
  • 201: (9/92) general: bootimages: Downloading and updating bootimages via release image (cgwalters)
  • 426: (7/132) general: enhancements/update/targeted-update-edge-blocking: Propose a new enhancement (wking)
  • 747: (6/17) network: Enable Kubernetes NMstate by default for selected platforms (yboaron)
  • 475: (2/22) general: enhancements/update/update-blocker-lifecycle: Propose a new enhancement (wking)
  • 707: (1/13) installer: Add Enhancement for Installing to Alibaba Cloud (lemondlut)
  • 647: (1/63) windows-containers: WINC-544: Enhancement proposal for monitoring Windows Nodes (VaishnaviHire)

Other Active Pull Requests Modifying Existing Documents

  • 742: (17/51) cluster-scope-secret-volumes: Update projected resource CSI driver proposal (adambkaplan)
  • 721: (1/15) network: metallb: Use CNO as the integration point (russellb)

Other Closed Changes

<PR ID>: (activity this week / total activity) summary

There were 2 Other Closed pull requests:

  • 443: (2/98) machine-config: Support a provisioning token for the Machine Config Server (cgwalters)
  • 746: (1/3) update: Add RFE for unordered OCP versions label (bentito)

Revived (closed more than 7 days ago, but with new comments) Changes

<PR ID>: (activity this week / total activity) summary

There was 1 Revived (closed more than 7 days ago, but with new comments) pull request:

  • 436: (0/130) installer: enhancement proposal for Equinix Metal IPI (displague)

Old (labeled as stale, but discussion in last 7 days) Changes

<PR ID>: (activity this week / total activity) summary

There was 1 Old (labeled as stale, but discussion in last 7 days) pull request:

  • 400: (1/19) installer: OpenStack AZ Support (iamemilio)

Other lifecycle/stale Changes

<PR ID>: (activity this week / total activity) summary

There were 5 Other lifecycle/stale pull requests:

  • 255: (0/109) monitoring: add restart metrics enhancement (rphillips)
  • 361: (0/110) baremetal: Minimise Baremetal footprint, live-iso bootstrap (hardys)
  • 468: (0/52) machine-api: Add dedicated instances proposal (alexander-demichev)
  • 486: (0/72) local-storage: Adds proposal for auto partitioning in LSO (rohan47)
  • 566: (0/45) general: Separating provider-specific code in the installer (janoszen)

Idle (no comments for at least 7 days) Changes

<PR ID>: (activity this week / total activity) summary

There were 60 Idle (no comments for at least 7 days) pull requests:

  • 124: (0/75) update: enhancements/update/automatic-updates: Propose a new enhancement (wking)
  • 137: (0/299) general: CLI in-cluster management (sallyom)
  • 146: (0/213) installer: openstack: Add Baremetal Compute Nodes RFE (pierreprinetti)
  • 265: (0/139) installer: Signal cluster deletion (abutcher)
  • 292: (0/203) machine-api: Add Managing Control Plane machines proposal (enxebre)
  • 302: (0/29) kube-apiserver: [thought-experiment] single-node cluster static pod creation (deads2k)
  • 341: (0/80) maintenance: Machine-maintenance operator proposal (dofinn)
  • 343: (0/43) authentication: cluster-wide oauth-proxy settings (deads2k)
  • 346: (0/83) installer: Installer pre-flight validations (mandre)
  • 357: (0/229) accelerators: Supporting out-of-tree drivers on OpenShift (zvonkok)
  • 363: (0/201) cvo: Enhancement for adding upgrade preflight checks for operators (LalatenduMohanty)
  • 371: (0/15) ingress: Add forwarded-header-policy enhancement (Miciah)
  • 427: (0/54) update: enhancements/update/phased-rollouts: Propose a new enhancement (wking)
  • 462: (0/56) ingress: Add client-tls enhancement (Miciah)
  • 463: (0/601) machine-api: Describing steps to support out-of-tree providers (Danil-Grigorev)
  • 477: (0/43) update: enhancements/update/manifest-install-levels: Propose a new enhancement (wking)
  • 492: (0/48) rhcos: add rhcos-inject enhancement (crawford)
  • 520: (0/13) network: Static IP Addresses from DHCP (cybertron)
  • 547: (0/38) baremetal: Propose BMC-less remediation enhancement (AKA poison pill) (n1r1)
  • 562: (0/149) security: Enhancing SCC to Gate Runtime Classes (haircommander)
  • 564: (0/18) cluster-logging: Allowing users to specify a delete policy based on amount of storage used within the ES cluster (ewolinetz)
  • 567: (0/106) machine-api: Added proposal for remediation history (slintes)
  • 571: (0/231) network: Cloud API component for egress IP (alexanderConstantinescu)
  • 575: (0/74) installer: Installer Enhacement Proposal: Manifests from STDIN (oglok)
  • 593: (0/131) general: Add proposal for hiding container mountpoints from systemd (lack)
  • 613: (0/18) network: NetworkPolicies for System Namespaces (danwinship)
  • 624: (0/19) update: Add: upgrade-blocker-operator (michaelgugino)
  • 626: (0/38) machine-config: enhancements/machine-config: securing MCS (crawford)
  • 642: (0/48) kubelet: Auto Node Sizing (harche)
  • 643: (0/65) update: Add Reduced Reboots enhancement (sdodson)
  • 652: (0/1) node: Enable cgroup v2 support (harche)
  • 654: (0/10) dns: ARO private DNS zone resource removal (jim-minter)
  • 660: (0/19) cluster-logging: Flow control API enhancements, first draft. (alanconway)
  • 661: (0/118) operator-framework-api: New OpenshiftCatalogueValidator (camilamacedo86)
  • 673: (0/42) machine-api: short-circuiting-backoff (mshitrit)
  • 676: (0/1) kube-apiserver: api compatibility (sanchezl)
  • 682: (0/31) alerting: alerting as a feature (dofinn)
  • 687: (0/82) storage: Add AWS EFS CSI driver operator (jsafrane)
  • 690: (0/3) api-review: Add mirror-by-digest-only to ImageContentSourcePolicy (QiWang19)
  • 691: (0/2) installer: OpenStack root volume AZs (Fedosin)
  • 695: (0/25) cluster-version-operator: move CVO upgrades doc to enhancements (deads2k)
  • 701: (0/43) monitoring: metrics scraping with local authentication and authorization (deads2k)
  • 706: (0/135) api-review: apply user defined tags to all resources (gregsheremeta)
  • 722: (0/7) multi-arch: Add "Build OKD for ppc64le" proposal (mjturek)
  • 725: (0/2) distributed-tracing: WIP distributed tracing doc (sallyom)
  • 730: (0/7) network: mtu: ability to change running cluster's mtu setting (msherif1234)
  • 737: (0/1) general: enhancements/update/targeted-update-edge-blocking: Client-side platform parameter (wking)
  • 745: (0/65) security: Security Profiles Operator integration in OpenShift (JAORMX)
  • 748: (0/4) cluster-logging: New proposal: Forwarder output parameter templates (alanconway)

Idle (no comments for at least 7 days) Pull Requests Modifying Existing Documents

  • 403: (0/16) authentication: webhook authentication: kubeconfig auth specification, 0-ttl cache (stlaz)
  • 406: (0/16) kube-apiserver: Add preliminary data section to network check enhancement. (sanchezl)
  • 522: (0/40) olm: Update OLM managed operator metrics enhancement (awgreene)
  • 538: (0/14) machine-api: update machine-api-usage-telemetry (elmiko)
  • 554: (0/9) general: conventions: Clarify when workload disruption is allowed (smarterclayton)
  • 618: (0/15) network: Add more details about host port ownership (danwinship)
  • 623: (0/1) storage: Confirm Azure Disk names (huffmanca)
  • 650: (0/39) general: Add ClusterOperator Scheduling (michaelgugino)
  • 666: (0/16) kube-apiserver: adding new userequest audit policy (EmilyM1)
  • 693: (0/26) general: CONVENTIONS: Add section on limits (smarterclayton)
  • 711: (0/3) olm: add "fail open" risk/mitigation (njhale)