aws-sdk-ec2 1.15.0 → 1.16.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 25d75c2f51054448f85c854d539278b8da2426f5
-  data.tar.gz: 8c1ecb97deb34103331684e3fc52d3bfce4189da
+  metadata.gz: 6c14273f5963c6c83cbbb5d9bbf9daf99dc13024
+  data.tar.gz: fc2101e351f5f0d1096ba9736dc46b3e1dbb2241
 SHA512:
-  metadata.gz: 270e237975b9aff832c27b74c6ce43bd20cfb6dd4b06df4cc347b23273d1f5acd985b08e99798f58a5ee688950ef21683e229e0b81dac60ef8485bb39f4a5a57
-  data.tar.gz: 604753c9f9f1aaa4a06242091ed76e9eef6901ad2121b8e800c42eda2a91fb07ec5ed65f1d8b7152794c4948a807f552079494b1c19017bd0bbbb8d241ada868
+  metadata.gz: dd483411785ace2121d5077b55d2bee9b913c50e0120c8946a6f2f83f1e38d177438a378f9507d3f07db1a5f600dd84a2dd7511e4063e4cae0a7f48d210b7f01
+  data.tar.gz: ccd2f5a5cb539b9ed819e1dea70e4268ced1f689629efac0f356f5ad62dd602e97b4c871a2a6f52da2aec96eea191afcf7679bd0a4a00833f0da1eca7a2e836c

data/lib/aws-sdk-ec2.rb

@@ -65,6 +65,6 @@ require_relative 'aws-sdk-ec2/customizations'
 # @service
 module Aws::EC2
 
-  GEM_VERSION = '1.15.0'
+  GEM_VERSION = '1.16.0'
 
 end

data/lib/aws-sdk-ec2/client.rb

@@ -4977,22 +4977,20 @@ module Aws::EC2
 
     # Creates a VPC endpoint for a specified AWS service. An endpoint
     # enables you to create a private connection between your VPC and
-    # another AWS service in your account. You can specify an endpoint
-    # policy to attach to the endpoint that will control access to the
-    # service from your VPC. You can also specify the VPC route tables that
-    # use the endpoint.
-    #
-    # Use DescribeVpcEndpointServices to get a list of supported AWS
-    # services.
-    #
-    # @option params [String] :client_token
-    #   Unique, case-sensitive identifier you provide to ensure the
-    #   idempotency of the request. For more information, see [How to Ensure
-    #   Idempotency][1].
-    #
-    #
-    #
-    #   [1]: http://docs.aws.amazon.com/AWSEC2/latest/APIReference/Run_Instance_Idempotency.html
+    # another AWS service in your account. You can create a gateway endpoint
+    # or an interface endpoint.
+    #
+    # A gateway endpoint serves as a target for a route in your route table
+    # for traffic destined for the AWS service. You can specify the VPC
+    # route tables that use the endpoint, and you can optionally specify an
+    # endpoint policy to attach to the endpoint that will control access to
+    # the service from your VPC.
+    #
+    # An interface endpoint is a network interface in your subnet with a
+    # private IP address that serves as an entry point for traffic destined
+    # to the AWS service. You can specify the subnets in which to create an
+    # endpoint, and the security groups to associate with the network
+    # interface.
     #
     # @option params [Boolean] :dry_run
     #   Checks whether you have the required permissions for the action,
@@ -5000,50 +4998,103 @@ module Aws::EC2
     #   If you have the required permissions, the error response is
     #   `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
     #
-    # @option params [String] :policy_document
-    #   A policy to attach to the endpoint that controls access to the
-    #   service. The policy must be in valid JSON format. If this parameter is
-    #   not specified, we attach a default policy that allows full access to
-    #   the service.
+    # @option params [String] :vpc_endpoint_type
+    #   The type of endpoint. If not specified, the default is a gateway
+    #   endpoint.
     #
-    # @option params [Array<String>] :route_table_ids
-    #   One or more route table IDs.
+    # @option params [required, String] :vpc_id
+    #   The ID of the VPC in which the endpoint will be used.
     #
     # @option params [required, String] :service_name
     #   The AWS service name, in the form `com.amazonaws.region.service `. To
     #   get a list of available services, use the DescribeVpcEndpointServices
     #   request.
     #
-    # @option params [required, String] :vpc_id
-    #   The ID of the VPC in which the endpoint will be used.
+    # @option params [String] :policy_document
+    #   (Gateway endpoint) A policy to attach to the endpoint that controls
+    #   access to the service. The policy must be in valid JSON format. If
+    #   this parameter is not specified, we attach a default policy that
+    #   allows full access to the service.
+    #
+    # @option params [Array<String>] :route_table_ids
+    #   (Gateway endpoint) One or more route table IDs.
+    #
+    # @option params [Array<String>] :subnet_ids
+    #   (Interface endpoint) The ID of one or more subnets in which to create
+    #   a network interface for the endpoint.
+    #
+    # @option params [Array<String>] :security_group_ids
+    #   (Interface endpoint) The ID of one or more security groups to
+    #   associate with the network interface.
+    #
+    # @option params [String] :client_token
+    #   Unique, case-sensitive identifier you provide to ensure the
+    #   idempotency of the request. For more information, see [How to Ensure
+    #   Idempotency][1].
+    #
+    #
+    #
+    #   [1]: http://docs.aws.amazon.com/AWSEC2/latest/APIReference/Run_Instance_Idempotency.html
+    #
+    # @option params [Boolean] :private_dns_enabled
+    #   (Interface endpoint) Indicate whether to associate a private hosted
+    #   zone with the specified VPC. The private hosted zone contains a record
+    #   set for the default public DNS name for the service for the region
+    #   (for example, `kinesis.us-east-1.amazonaws.com`) which resolves to the
+    #   private IP addresses of the endpoint network interfaces in the VPC.
+    #   This enables you to make requests to the default public DNS name for
+    #   the service instead of the public DNS names that are automatically
+    #   generated by the VPC endpoint service.
+    #
+    #   To use a private hosted zone, you must set the following VPC
+    #   attributes to `true`\: `enableDnsHostnames` and `enableDnsSupport`.
+    #   Use ModifyVpcAttribute to set the VPC attributes.
+    #
+    #   Default: `true`
     #
     # @return [Types::CreateVpcEndpointResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
-    #   * {Types::CreateVpcEndpointResult#client_token #client_token} => String
     #   * {Types::CreateVpcEndpointResult#vpc_endpoint #vpc_endpoint} => Types::VpcEndpoint
+    #   * {Types::CreateVpcEndpointResult#client_token #client_token} => String
     #
     # @example Request syntax with placeholder values
     #
     #   resp = client.create_vpc_endpoint({
-    #     client_token: "String",
     #     dry_run: false,
+    #     vpc_endpoint_type: "Interface", # accepts Interface, Gateway
+    #     vpc_id: "String", # required
+    #     service_name: "String", # required
     #     policy_document: "String",
     #     route_table_ids: ["String"],
-    #     service_name: "String", # required
-    #     vpc_id: "String", # required
+    #     subnet_ids: ["String"],
+    #     security_group_ids: ["String"],
+    #     client_token: "String",
+    #     private_dns_enabled: false,
     #   })
     #
     # @example Response structure
     #
-    #   resp.client_token #=> String
-    #   resp.vpc_endpoint.creation_timestamp #=> Time
+    #   resp.vpc_endpoint.vpc_endpoint_id #=> String
+    #   resp.vpc_endpoint.vpc_endpoint_type #=> String, one of "Interface", "Gateway"
+    #   resp.vpc_endpoint.vpc_id #=> String
+    #   resp.vpc_endpoint.service_name #=> String
+    #   resp.vpc_endpoint.state #=> String, one of "PendingAcceptance", "Pending", "Available", "Deleting", "Deleted", "Rejected", "Failed", "Expired"
     #   resp.vpc_endpoint.policy_document #=> String
     #   resp.vpc_endpoint.route_table_ids #=> Array
     #   resp.vpc_endpoint.route_table_ids[0] #=> String
-    #   resp.vpc_endpoint.service_name #=> String
-    #   resp.vpc_endpoint.state #=> String, one of "Pending", "Available", "Deleting", "Deleted"
-    #   resp.vpc_endpoint.vpc_endpoint_id #=> String
-    #   resp.vpc_endpoint.vpc_id #=> String
+    #   resp.vpc_endpoint.subnet_ids #=> Array
+    #   resp.vpc_endpoint.subnet_ids[0] #=> String
+    #   resp.vpc_endpoint.groups #=> Array
+    #   resp.vpc_endpoint.groups[0].group_id #=> String
+    #   resp.vpc_endpoint.groups[0].group_name #=> String
+    #   resp.vpc_endpoint.private_dns_enabled #=> Boolean
+    #   resp.vpc_endpoint.network_interface_ids #=> Array
+    #   resp.vpc_endpoint.network_interface_ids[0] #=> String
+    #   resp.vpc_endpoint.dns_entries #=> Array
+    #   resp.vpc_endpoint.dns_entries[0].dns_name #=> String
+    #   resp.vpc_endpoint.dns_entries[0].hosted_zone_id #=> String
+    #   resp.vpc_endpoint.creation_timestamp #=> Time
+    #   resp.client_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/CreateVpcEndpoint AWS API Documentation
     #
@@ -6292,9 +6343,10 @@ module Aws::EC2
       req.send_request(options)
     end
 
-    # Deletes one or more specified VPC endpoints. Deleting the endpoint
-    # also deletes the endpoint routes in the route tables that were
-    # associated with the endpoint.
+    # Deletes one or more specified VPC endpoints. Deleting a gateway
+    # endpoint also deletes the endpoint routes in the route tables that
+    # were associated with the endpoint. Deleting an interface endpoint
+    # deletes the endpoint network interfaces.
     #
     # @option params [Boolean] :dry_run
     #   Checks whether you have the required permissions for the action,
@@ -7498,7 +7550,7 @@ module Aws::EC2
     #
     #
     #
-    # [1]: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/elastic-gpus.html
+    # [1]: http://docs.aws.amazon.com/AWSEC2/latest/WindowsGuide/elastic-gpus.html
     #
     # @option params [Array<String>] :elastic_gpu_ids
     #   One or more Elastic GPU IDs.
@@ -8436,6 +8488,9 @@ module Aws::EC2
     #
     #   * `state-reason-message` - The message for the state change.
     #
+    #   * `sriov-net-support` - A value of `simple` indicates that enhanced
+    #     networking with the Intel 82599 VF interface is enabled.
+    #
     #   * `tag`\:*key*=*value* - The key/value combination of a tag assigned
     #     to the resource. Specify the key of the tag in the filter name and
     #     the value of the tag in the filter value. For example, for the tag
@@ -11862,36 +11917,63 @@ module Aws::EC2
     #
     #   * `description` - The description of the security group.
     #
+    #   * `egress.ip-permission.cidr` - An IPv4 CIDR block for an outbound
+    #     security group rule.
+    #
+    #   * `egress.ip-permission.from-port` - For an outbound rule, the start
+    #     of port range for the TCP and UDP protocols, or an ICMP type number.
+    #
+    #   * `egress.ip-permission.group-id` - The ID of a security group that
+    #     has been referenced in an outbound security group rule.
+    #
+    #   * `egress.ip-permission.group-name` - The name of a security group
+    #     that has been referenced in an outbound security group rule.
+    #
+    #   * `egress.ip-permission.ipv6-cidr` - An IPv6 CIDR block for an
+    #     outbound security group rule.
+    #
     #   * `egress.ip-permission.prefix-list-id` - The ID (prefix) of the AWS
-    #     service to which the security group allows access.
+    #     service to which a security group rule allows outbound access.
+    #
+    #   * `egress.ip-permission.protocol` - The IP protocol for an outbound
+    #     security group rule (`tcp` \| `udp` \| `icmp` or a protocol number).
+    #
+    #   * `egress.ip-permission.to-port` - For an outbound rule, the end of
+    #     port range for the TCP and UDP protocols, or an ICMP code.
+    #
+    #   * `egress.ip-permission.user-id` - The ID of an AWS account that has
+    #     been referenced in an outbound security group rule.
     #
     #   * `group-id` - The ID of the security group.
     #
     #   * `group-name` - The name of the security group.
     #
-    #   * `ip-permission.cidr` - An IPv4 CIDR range that has been granted
-    #     permission in a security group rule.
+    #   * `ip-permission.cidr` - An IPv4 CIDR block for an inbound security
+    #     group rule.
     #
-    #   * `ip-permission.from-port` - The start of port range for the TCP and
-    #     UDP protocols, or an ICMP type number.
+    #   * `ip-permission.from-port` - For an inbound rule, the start of port
+    #     range for the TCP and UDP protocols, or an ICMP type number.
     #
     #   * `ip-permission.group-id` - The ID of a security group that has been
-    #     granted permission.
+    #     referenced in an inbound security group rule.
     #
     #   * `ip-permission.group-name` - The name of a security group that has
-    #     been granted permission.
+    #     been referenced in an inbound security group rule.
     #
-    #   * `ip-permission.ipv6-cidr` - An IPv6 CIDR range that has been granted
-    #     permission in a security group rule.
+    #   * `ip-permission.ipv6-cidr` - An IPv6 CIDR block for an inbound
+    #     security group rule.
     #
-    #   * `ip-permission.protocol` - The IP protocol for the permission (`tcp`
-    #     \| `udp` \| `icmp` or a protocol number).
+    #   * `ip-permission.prefix-list-id` - The ID (prefix) of the AWS service
+    #     from which a security group rule allows inbound access.
     #
-    #   * `ip-permission.to-port` - The end of port range for the TCP and UDP
-    #     protocols, or an ICMP code.
+    #   * `ip-permission.protocol` - The IP protocol for an inbound security
+    #     group rule (`tcp` \| `udp` \| `icmp` or a protocol number).
+    #
+    #   * `ip-permission.to-port` - For an inbound rule, the end of port range
+    #     for the TCP and UDP protocols, or an ICMP code.
     #
     #   * `ip-permission.user-id` - The ID of an AWS account that has been
-    #     granted permission.
+    #     referenced in an inbound security group rule.
     #
     #   * `owner-id` - The AWS account ID of the owner of the security group.
     #
@@ -14407,6 +14489,16 @@ module Aws::EC2
     #   If you have the required permissions, the error response is
     #   `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
     #
+    # @option params [Array<String>] :service_names
+    #   One or more service names.
+    #
+    # @option params [Array<Types::Filter>] :filters
+    #   One or more filters.
+    #
+    #   * `service-name`\: The name of the service.
+    #
+    #   ^
+    #
     # @option params [Integer] :max_results
     #   The maximum number of items to return for this request. The request
     #   returns a token that you can specify in a subsequent call to get the
@@ -14421,22 +14513,42 @@ module Aws::EC2
     #
     # @return [Types::DescribeVpcEndpointServicesResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
-    #   * {Types::DescribeVpcEndpointServicesResult#next_token #next_token} => String
     #   * {Types::DescribeVpcEndpointServicesResult#service_names #service_names} => Array&lt;String&gt;
+    #   * {Types::DescribeVpcEndpointServicesResult#service_details #service_details} => Array&lt;Types::ServiceDetail&gt;
+    #   * {Types::DescribeVpcEndpointServicesResult#next_token #next_token} => String
     #
     # @example Request syntax with placeholder values
     #
     #   resp = client.describe_vpc_endpoint_services({
     #     dry_run: false,
+    #     service_names: ["String"],
+    #     filters: [
+    #       {
+    #         name: "String",
+    #         values: ["String"],
+    #       },
+    #     ],
     #     max_results: 1,
     #     next_token: "String",
     #   })
     #
     # @example Response structure
     #
-    #   resp.next_token #=> String
     #   resp.service_names #=> Array
     #   resp.service_names[0] #=> String
+    #   resp.service_details #=> Array
+    #   resp.service_details[0].service_name #=> String
+    #   resp.service_details[0].service_type #=> Array
+    #   resp.service_details[0].service_type[0].service_type #=> String, one of "Interface", "Gateway"
+    #   resp.service_details[0].availability_zones #=> Array
+    #   resp.service_details[0].availability_zones[0] #=> String
+    #   resp.service_details[0].owner #=> String
+    #   resp.service_details[0].base_endpoint_dns_names #=> Array
+    #   resp.service_details[0].base_endpoint_dns_names[0] #=> String
+    #   resp.service_details[0].private_dns_name #=> String
+    #   resp.service_details[0].vpc_endpoint_policy_supported #=> Boolean
+    #   resp.service_details[0].acceptance_required #=> Boolean
+    #   resp.next_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/DescribeVpcEndpointServices AWS API Documentation
     #
@@ -14455,6 +14567,9 @@ module Aws::EC2
     #   If you have the required permissions, the error response is
     #   `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
     #
+    # @option params [Array<String>] :vpc_endpoint_ids
+    #   One or more endpoint IDs.
+    #
     # @option params [Array<Types::Filter>] :filters
     #   One or more filters.
     #
@@ -14479,18 +14594,16 @@ module Aws::EC2
     #   The token for the next set of items to return. (You received this
     #   token from a prior call.)
     #
-    # @option params [Array<String>] :vpc_endpoint_ids
-    #   One or more endpoint IDs.
-    #
     # @return [Types::DescribeVpcEndpointsResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
-    #   * {Types::DescribeVpcEndpointsResult#next_token #next_token} => String
     #   * {Types::DescribeVpcEndpointsResult#vpc_endpoints #vpc_endpoints} => Array&lt;Types::VpcEndpoint&gt;
+    #   * {Types::DescribeVpcEndpointsResult#next_token #next_token} => String
     #
     # @example Request syntax with placeholder values
     #
     #   resp = client.describe_vpc_endpoints({
     #     dry_run: false,
+    #     vpc_endpoint_ids: ["String"],
     #     filters: [
     #       {
     #         name: "String",
@@ -14499,21 +14612,32 @@ module Aws::EC2
     #     ],
     #     max_results: 1,
     #     next_token: "String",
-    #     vpc_endpoint_ids: ["String"],
     #   })
     #
     # @example Response structure
     #
-    #   resp.next_token #=> String
     #   resp.vpc_endpoints #=> Array
-    #   resp.vpc_endpoints[0].creation_timestamp #=> Time
+    #   resp.vpc_endpoints[0].vpc_endpoint_id #=> String
+    #   resp.vpc_endpoints[0].vpc_endpoint_type #=> String, one of "Interface", "Gateway"
+    #   resp.vpc_endpoints[0].vpc_id #=> String
+    #   resp.vpc_endpoints[0].service_name #=> String
+    #   resp.vpc_endpoints[0].state #=> String, one of "PendingAcceptance", "Pending", "Available", "Deleting", "Deleted", "Rejected", "Failed", "Expired"
     #   resp.vpc_endpoints[0].policy_document #=> String
     #   resp.vpc_endpoints[0].route_table_ids #=> Array
     #   resp.vpc_endpoints[0].route_table_ids[0] #=> String
-    #   resp.vpc_endpoints[0].service_name #=> String
-    #   resp.vpc_endpoints[0].state #=> String, one of "Pending", "Available", "Deleting", "Deleted"
-    #   resp.vpc_endpoints[0].vpc_endpoint_id #=> String
-    #   resp.vpc_endpoints[0].vpc_id #=> String
+    #   resp.vpc_endpoints[0].subnet_ids #=> Array
+    #   resp.vpc_endpoints[0].subnet_ids[0] #=> String
+    #   resp.vpc_endpoints[0].groups #=> Array
+    #   resp.vpc_endpoints[0].groups[0].group_id #=> String
+    #   resp.vpc_endpoints[0].groups[0].group_name #=> String
+    #   resp.vpc_endpoints[0].private_dns_enabled #=> Boolean
+    #   resp.vpc_endpoints[0].network_interface_ids #=> Array
+    #   resp.vpc_endpoints[0].network_interface_ids[0] #=> String
+    #   resp.vpc_endpoints[0].dns_entries #=> Array
+    #   resp.vpc_endpoints[0].dns_entries[0].dns_name #=> String
+    #   resp.vpc_endpoints[0].dns_entries[0].hosted_zone_id #=> String
+    #   resp.vpc_endpoints[0].creation_timestamp #=> Time
+    #   resp.next_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/DescribeVpcEndpoints AWS API Documentation
     #
@@ -17826,12 +17950,14 @@ module Aws::EC2
       req.send_request(options)
     end
 
-    # Modifies attributes of a specified VPC endpoint. You can modify the
-    # policy associated with the endpoint, and you can add and remove route
-    # tables associated with the endpoint.
+    # Modifies attributes of a specified VPC endpoint. The attributes that
+    # you can modify depend on the type of VPC endpoint (interface or
+    # gateway). For more information, see [VPC Endpoints][1] in the *Amazon
+    # Virtual Private Cloud User Guide*.
     #
-    # @option params [Array<String>] :add_route_table_ids
-    #   One or more route tables IDs to associate with the endpoint.
+    #
+    #
+    # [1]: http://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/vpc-endpoints.html
     #
     # @option params [Boolean] :dry_run
     #   Checks whether you have the required permissions for the action,
@@ -17839,19 +17965,44 @@ module Aws::EC2
     #   If you have the required permissions, the error response is
     #   `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
     #
+    # @option params [required, String] :vpc_endpoint_id
+    #   The ID of the endpoint.
+    #
+    # @option params [Boolean] :reset_policy
+    #   (Gateway endpoint) Specify `true` to reset the policy document to the
+    #   default policy. The default policy allows full access to the service.
+    #
     # @option params [String] :policy_document
-    #   A policy document to attach to the endpoint. The policy must be in
-    #   valid JSON format.
+    #   (Gateway endpoint) A policy document to attach to the endpoint. The
+    #   policy must be in valid JSON format.
+    #
+    # @option params [Array<String>] :add_route_table_ids
+    #   (Gateway endpoint) One or more route tables IDs to associate with the
+    #   endpoint.
     #
     # @option params [Array<String>] :remove_route_table_ids
-    #   One or more route table IDs to disassociate from the endpoint.
+    #   (Gateway endpoint) One or more route table IDs to disassociate from
+    #   the endpoint.
     #
-    # @option params [Boolean] :reset_policy
-    #   Specify `true` to reset the policy document to the default policy. The
-    #   default policy allows access to the service.
+    # @option params [Array<String>] :add_subnet_ids
+    #   (Interface endpoint) One or more subnet IDs in which to serve the
+    #   endpoint.
     #
-    # @option params [required, String] :vpc_endpoint_id
-    #   The ID of the endpoint.
+    # @option params [Array<String>] :remove_subnet_ids
+    #   (Interface endpoint) One or more subnets IDs in which to remove the
+    #   endpoint.
+    #
+    # @option params [Array<String>] :add_security_group_ids
+    #   (Interface endpoint) One or more security group IDs to associate with
+    #   the network interface.
+    #
+    # @option params [Array<String>] :remove_security_group_ids
+    #   (Interface endpoint) One or more security group IDs to disassociate
+    #   from the network interface.
+    #
+    # @option params [Boolean] :private_dns_enabled
+    #   (Interface endpoint) Indicate whether a private hosted zone is
+    #   associated with the VPC.
     #
     # @return [Types::ModifyVpcEndpointResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -17860,12 +18011,17 @@ module Aws::EC2
     # @example Request syntax with placeholder values
     #
     #   resp = client.modify_vpc_endpoint({
-    #     add_route_table_ids: ["String"],
     #     dry_run: false,
+    #     vpc_endpoint_id: "String", # required
+    #     reset_policy: false,
     #     policy_document: "String",
+    #     add_route_table_ids: ["String"],
     #     remove_route_table_ids: ["String"],
-    #     reset_policy: false,
-    #     vpc_endpoint_id: "String", # required
+    #     add_subnet_ids: ["String"],
+    #     remove_subnet_ids: ["String"],
+    #     add_security_group_ids: ["String"],
+    #     remove_security_group_ids: ["String"],
+    #     private_dns_enabled: false,
     #   })
     #
     # @example Response structure
@@ -20400,14 +20556,11 @@ module Aws::EC2
     # [7]: http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/TroubleshootingInstancesConnecting.html
     #
     # @option params [Array<Types::BlockDeviceMapping>] :block_device_mappings
-    #   The block device mapping.
-    #
-    #   Supplying both a snapshot ID and an encryption value as arguments for
-    #   block-device mapping results in an error. This is because only blank
-    #   volumes can be encrypted on start, and these are not created from a
-    #   snapshot. If a snapshot is the basis for the volume, it contains data
-    #   by definition and its encryption status cannot be changed using this
-    #   action.
+    #   One or more block device mapping entries. You can't specify both a
+    #   snapshot ID and an encryption value. This is because only blank
+    #   volumes can be encrypted on creation. If a snapshot is the basis for a
+    #   volume, it is not blank and its encryption status is used for the
+    #   volume encryption status.
     #
     # @option params [required, String] :image_id
     #   The ID of the AMI, which you can get by calling DescribeImages.
@@ -21562,7 +21715,7 @@ module Aws::EC2
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-ec2'
-      context[:gem_version] = '1.15.0'
+      context[:gem_version] = '1.16.0'
       Seahorse::Client::Request.new(handlers, context)
     end