aws-sdk-ec2 1.627.0 → 1.628.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: c0121a6ab2ff430ed6203db816eafd2bd51aac1c464d99822634e7062217e590
4
- data.tar.gz: ca6bf4efb42ef07012558ea2b1d8ad127c974391cb70ab06a1db23de22e2809d
3
+ metadata.gz: 28d42c96402c1f1a6258778c764b8832912351481b4c7b394138703c9fa1ec45
4
+ data.tar.gz: 1c0142bccffe706e44b0601bfdb7751729b7ddeca921d5c9c8cbe4474c2a2735
5
5
  SHA512:
6
- metadata.gz: e62d8552d66451ba039217815982c7647542ea728b0a5829c979f66cf015c19af75dc2a883c09f7055dbf906169e65ea4a45a27cc2ec044cf1b4047c23b9b091
7
- data.tar.gz: 403ec550b1350919a4a5c82653efd5fd93d060f7fcce70394743a53edf7c8821ff4ae4601eaa2dfa18089887cc1f81e52989ea2576b5cc5176ceee2de47e1360
6
+ metadata.gz: bf4f21dd86d26c061dc642306f1d67733a23aac06e977d43fae038269b5f9f69928df22d45e013c8a2d16e676484ba150e3968b067af425410846b6ec554d81b
7
+ data.tar.gz: 7ab20826f74c1c470d91979c79d256c289d75d229c4f9c502847a7ed4889e19b1b53c8ca662a9eaee704019a9fb834592d66024506a8ccc971db94b45546d380
data/CHANGELOG.md CHANGED
@@ -1,6 +1,11 @@
1
1
  Unreleased Changes
2
2
  ------------------
3
3
 
4
+ 1.628.0 (2026-07-01)
5
+ ------------------
6
+
7
+ * Feature - Use declarative policies to enable VPC Encryption Controls across your organization or select accounts. Added AMD SEV-SNP support for EC2 Dedicated Hosts. Managed resource visibility settings control whether AWS-provisioned resources in your account appear in console views and API list operations.
8
+
4
9
  1.627.0 (2026-06-30)
5
10
  ------------------
6
11
 
data/VERSION CHANGED
@@ -1 +1 @@
1
- 1.627.0
1
+ 1.628.0
@@ -1253,6 +1253,9 @@ module Aws::EC2
1253
1253
  # @option params [String] :availability_zone_id
1254
1254
  # The ID of the Availability Zone.
1255
1255
  #
1256
+ # @option params [Types::HostCpuOptionsRequest] :cpu_options
1257
+ # The CPU configuration options to apply to the Dedicated Host.
1258
+ #
1256
1259
  # @option params [String] :auto_placement
1257
1260
  # Indicates whether the host accepts any untargeted instance launches
1258
1261
  # that match its instance type configuration, or if it only accepts Host
@@ -1321,6 +1324,9 @@ module Aws::EC2
1321
1324
  # host_maintenance: "on", # accepts on, off
1322
1325
  # asset_ids: ["AssetId"],
1323
1326
  # availability_zone_id: "AvailabilityZoneId",
1327
+ # cpu_options: {
1328
+ # amd_sev_snp: "enabled", # accepts enabled, disabled
1329
+ # },
1324
1330
  # auto_placement: "on", # accepts on, off
1325
1331
  # client_token: "String",
1326
1332
  # instance_type: "String",
@@ -4376,26 +4382,29 @@ module Aws::EC2
4376
4382
  #
4377
4383
  # * `assessing`
4378
4384
  #
4379
- # * `scheduled`
4385
+ # * `scheduled` — requires a cancellation quote. Use
4386
+ # `CreateCapacityReservationCancellationQuote` to generate a quote,
4387
+ # then pass the quote ID with `ApplyCancellationCharges` set to
4388
+ # `commitment-wind-down`. The cancellation charge depends on how close
4389
+ # the reservation is to its start date.
4380
4390
  #
4381
4391
  # * `active` and there is no commitment duration or the commitment
4382
4392
  # duration has elapsed.
4383
4393
  #
4384
- # * `active` during the commitment duration, if you provide a
4385
- # cancellation quote ID and accept the cancellation charges. Use
4386
- # `CreateCapacityReservationCancellationQuote` to generate a quote.
4387
- # The Capacity Reservation transitions to `cancelling` while charges
4388
- # are applied.
4394
+ # * `active` during the commitment duration requires a cancellation
4395
+ # quote. Use `CreateCapacityReservationCancellationQuote` to generate
4396
+ # a quote, then pass the quote ID with `ApplyCancellationCharges` set
4397
+ # to `commitment-wind-down`. The Capacity Reservation transitions to
4398
+ # `cancelling` while charges are applied.
4399
+ #
4400
+ # * `delayed` — the commitment duration is waived, so no cancellation
4401
+ # charge applies.
4389
4402
  #
4390
4403
  # <note markdown="1"> You can't modify or cancel a Capacity Block. For more information,
4391
4404
  # see [Capacity Blocks for ML][1].
4392
4405
  #
4393
4406
  # </note>
4394
4407
  #
4395
- # If a future-dated Capacity Reservation enters the `delayed` state, the
4396
- # commitment duration is waived, and you can cancel it as soon as it
4397
- # enters the `active` state.
4398
- #
4399
4408
  # Instances running in the reserved capacity continue running until you
4400
4409
  # stop them. Stopped instances that target the Capacity Reservation can
4401
4410
  # no longer launch. Modify these instances to either target a different
@@ -13501,8 +13510,8 @@ module Aws::EC2
13501
13510
  # instances in different partitions, where instances in one partition do
13502
13511
  # not share the same hardware with instances in another partition. A
13503
13512
  # `precision-time` placement group places instances on supported
13504
- # hardware with direct access to high-precision time sources in AWS
13505
- # infrastructure.
13513
+ # hardware with direct access to high-precision time sources in Amazon
13514
+ # Web Services infrastructure.
13506
13515
  #
13507
13516
  # For more information, see [Placement groups][1] in the *Amazon EC2
13508
13517
  # User Guide*.
@@ -24991,6 +25000,58 @@ module Aws::EC2
24991
25000
  req.send_request(options)
24992
25001
  end
24993
25002
 
25003
+ # Describes the account-level VPC Encryption Control configuration for
25004
+ # your account. VPC Encryption Control enables you to enforce encryption
25005
+ # for all data in transit within and between VPCs to meet compliance
25006
+ # requirements.
25007
+ #
25008
+ # For more information, see [Enforce VPC encryption in transit][1] in
25009
+ # the *Amazon VPC User Guide*.
25010
+ #
25011
+ #
25012
+ #
25013
+ # [1]: https://docs.aws.amazon.com/vpc/latest/userguide/vpc-encryption-controls.html
25014
+ #
25015
+ # @option params [Boolean] :dry_run
25016
+ # Checks whether you have the required permissions for the action,
25017
+ # without actually making the request, and provides an error response.
25018
+ # If you have the required permissions, the error response is
25019
+ # `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
25020
+ #
25021
+ # @return [Types::DescribeAccountVpcEncryptionControlResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
25022
+ #
25023
+ # * {Types::DescribeAccountVpcEncryptionControlResult#account_vpc_encryption_control #account_vpc_encryption_control} => Types::AccountVpcEncryptionControl
25024
+ #
25025
+ # @example Request syntax with placeholder values
25026
+ #
25027
+ # resp = client.describe_account_vpc_encryption_control({
25028
+ # dry_run: false,
25029
+ # })
25030
+ #
25031
+ # @example Response structure
25032
+ #
25033
+ # resp.account_vpc_encryption_control.state #=> String, one of "default-state", "transitions-in-progress", "transitions-partially-successful", "transitions-successful", "transitions-failed"
25034
+ # resp.account_vpc_encryption_control.mode #=> String, one of "unmanaged", "attempt-monitor", "attempt-enforce"
25035
+ # resp.account_vpc_encryption_control.exclusions.internet_gateway #=> String, one of "enabling", "enabled", "disabling", "disabled"
25036
+ # resp.account_vpc_encryption_control.exclusions.egress_only_internet_gateway #=> String, one of "enabling", "enabled", "disabling", "disabled"
25037
+ # resp.account_vpc_encryption_control.exclusions.nat_gateway #=> String, one of "enabling", "enabled", "disabling", "disabled"
25038
+ # resp.account_vpc_encryption_control.exclusions.virtual_private_gateway #=> String, one of "enabling", "enabled", "disabling", "disabled"
25039
+ # resp.account_vpc_encryption_control.exclusions.vpc_peering #=> String, one of "enabling", "enabled", "disabling", "disabled"
25040
+ # resp.account_vpc_encryption_control.exclusions.lambda #=> String, one of "enabling", "enabled", "disabling", "disabled"
25041
+ # resp.account_vpc_encryption_control.exclusions.vpc_lattice #=> String, one of "enabling", "enabled", "disabling", "disabled"
25042
+ # resp.account_vpc_encryption_control.exclusions.elastic_file_system #=> String, one of "enabling", "enabled", "disabling", "disabled"
25043
+ # resp.account_vpc_encryption_control.managed_by #=> String, one of "account", "declarative-policy"
25044
+ # resp.account_vpc_encryption_control.last_update_timestamp #=> Time
25045
+ #
25046
+ # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/DescribeAccountVpcEncryptionControl AWS API Documentation
25047
+ #
25048
+ # @overload describe_account_vpc_encryption_control(params = {})
25049
+ # @param [Hash] params ({})
25050
+ def describe_account_vpc_encryption_control(params = {}, options = {})
25051
+ req = build_request(:describe_account_vpc_encryption_control, params)
25052
+ req.send_request(options)
25053
+ end
25054
+
24994
25055
  # Describes an Elastic IP address transfer. For more information, see
24995
25056
  # [Transfer Elastic IP addresses][1] in the *Amazon VPC User Guide*.
24996
25057
  #
@@ -29449,7 +29510,7 @@ module Aws::EC2
29449
29510
  # resp.hosts[0].instances[0].instance_id #=> String
29450
29511
  # resp.hosts[0].instances[0].instance_type #=> String
29451
29512
  # resp.hosts[0].instances[0].owner_id #=> String
29452
- # resp.hosts[0].state #=> String, one of "available", "under-assessment", "permanent-failure", "released", "released-permanent-failure", "pending"
29513
+ # resp.hosts[0].state #=> String, one of "available", "under-assessment", "permanent-failure", "released", "released-permanent-failure", "pending", "configuring"
29453
29514
  # resp.hosts[0].allocation_time #=> Time
29454
29515
  # resp.hosts[0].release_time #=> Time
29455
29516
  # resp.hosts[0].tags #=> Array
@@ -29463,6 +29524,7 @@ module Aws::EC2
29463
29524
  # resp.hosts[0].outpost_arn #=> String
29464
29525
  # resp.hosts[0].host_maintenance #=> String, one of "on", "off"
29465
29526
  # resp.hosts[0].asset_id #=> String
29527
+ # resp.hosts[0].cpu_options.amd_sev_snp #=> String, one of "enabled", "disabled"
29466
29528
  # resp.next_token #=> String
29467
29529
  #
29468
29530
  # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/DescribeHosts AWS API Documentation
@@ -45803,6 +45865,12 @@ module Aws::EC2
45803
45865
  #
45804
45866
  # [1]: https://docs.aws.amazon.com/AWSEC2/latest/APIReference/Query-Requests.html#api-pagination
45805
45867
  #
45868
+ # @option params [Boolean] :include_managed_resources
45869
+ # Indicates whether to include managed resources in the output. If this
45870
+ # parameter is set to `true`, the output includes resources that are
45871
+ # managed by Amazon Web Services services, even if managed resource
45872
+ # visibility is set to hidden.
45873
+ #
45806
45874
  # @return [Types::DescribeVolumesModificationsResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
45807
45875
  #
45808
45876
  # * {Types::DescribeVolumesModificationsResult#next_token #next_token} => String
@@ -45823,6 +45891,7 @@ module Aws::EC2
45823
45891
  # ],
45824
45892
  # next_token: "String",
45825
45893
  # max_results: 1,
45894
+ # include_managed_resources: false,
45826
45895
  # })
45827
45896
  #
45828
45897
  # @example Response structure
@@ -45845,6 +45914,9 @@ module Aws::EC2
45845
45914
  # resp.volumes_modifications[0].progress #=> Integer
45846
45915
  # resp.volumes_modifications[0].start_time #=> Time
45847
45916
  # resp.volumes_modifications[0].end_time #=> Time
45917
+ # resp.volumes_modifications[0].operator.managed #=> Boolean
45918
+ # resp.volumes_modifications[0].operator.principal #=> String
45919
+ # resp.volumes_modifications[0].operator.hidden_by_default #=> Boolean
45848
45920
  #
45849
45921
  # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/DescribeVolumesModifications AWS API Documentation
45850
45922
  #
@@ -58180,6 +58252,103 @@ module Aws::EC2
58180
58252
  req.send_request(options)
58181
58253
  end
58182
58254
 
58255
+ # Modifies the account-level VPC Encryption Control configuration. This
58256
+ # sets the encryption control mode and resource exclusions that apply to
58257
+ # the VPCs in your account. VPC Encryption Control enables you to
58258
+ # enforce encryption for all data in transit within and between VPCs to
58259
+ # meet compliance requirements.
58260
+ #
58261
+ # For more information, see [Enforce VPC encryption in transit][1] in
58262
+ # the *Amazon VPC User Guide*.
58263
+ #
58264
+ #
58265
+ #
58266
+ # [1]: https://docs.aws.amazon.com/vpc/latest/userguide/vpc-encryption-controls.html
58267
+ #
58268
+ # @option params [Boolean] :dry_run
58269
+ # Checks whether you have the required permissions for the action,
58270
+ # without actually making the request, and provides an error response.
58271
+ # If you have the required permissions, the error response is
58272
+ # `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
58273
+ #
58274
+ # @option params [String] :mode
58275
+ # The encryption mode for the account encryption control configuration.
58276
+ #
58277
+ # @option params [String] :internet_gateway
58278
+ # Specifies whether to exclude internet gateway resource from
58279
+ # account-level encryption enforcement.
58280
+ #
58281
+ # @option params [String] :egress_only_internet_gateway
58282
+ # Specifies whether to exclude egress-only internet gateway resource
58283
+ # from account-level encryption enforcement.
58284
+ #
58285
+ # @option params [String] :nat_gateway
58286
+ # Specifies whether to exclude NAT gateway resource from account-level
58287
+ # encryption enforcement.
58288
+ #
58289
+ # @option params [String] :virtual_private_gateway
58290
+ # Specifies whether to exclude virtual private gateway resource from
58291
+ # account-level encryption enforcement.
58292
+ #
58293
+ # @option params [String] :vpc_peering
58294
+ # Specifies whether to exclude VPC peering connection resource from
58295
+ # account-level encryption enforcement.
58296
+ #
58297
+ # @option params [String] :lambda
58298
+ # Specifies whether to exclude Lambda service from account-level
58299
+ # encryption enforcement.
58300
+ #
58301
+ # @option params [String] :vpc_lattice
58302
+ # Specifies whether to exclude VPC Lattice service from account-level
58303
+ # encryption enforcement.
58304
+ #
58305
+ # @option params [String] :elastic_file_system
58306
+ # Specifies whether to exclude Elastic File System service from
58307
+ # account-level encryption enforcement.
58308
+ #
58309
+ # @return [Types::ModifyAccountVpcEncryptionControlResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
58310
+ #
58311
+ # * {Types::ModifyAccountVpcEncryptionControlResult#account_vpc_encryption_control #account_vpc_encryption_control} => Types::AccountVpcEncryptionControl
58312
+ #
58313
+ # @example Request syntax with placeholder values
58314
+ #
58315
+ # resp = client.modify_account_vpc_encryption_control({
58316
+ # dry_run: false,
58317
+ # mode: "unmanaged", # accepts unmanaged, attempt-monitor, attempt-enforce
58318
+ # internet_gateway: "enable", # accepts enable, disable
58319
+ # egress_only_internet_gateway: "enable", # accepts enable, disable
58320
+ # nat_gateway: "enable", # accepts enable, disable
58321
+ # virtual_private_gateway: "enable", # accepts enable, disable
58322
+ # vpc_peering: "enable", # accepts enable, disable
58323
+ # lambda: "enable", # accepts enable, disable
58324
+ # vpc_lattice: "enable", # accepts enable, disable
58325
+ # elastic_file_system: "enable", # accepts enable, disable
58326
+ # })
58327
+ #
58328
+ # @example Response structure
58329
+ #
58330
+ # resp.account_vpc_encryption_control.state #=> String, one of "default-state", "transitions-in-progress", "transitions-partially-successful", "transitions-successful", "transitions-failed"
58331
+ # resp.account_vpc_encryption_control.mode #=> String, one of "unmanaged", "attempt-monitor", "attempt-enforce"
58332
+ # resp.account_vpc_encryption_control.exclusions.internet_gateway #=> String, one of "enabling", "enabled", "disabling", "disabled"
58333
+ # resp.account_vpc_encryption_control.exclusions.egress_only_internet_gateway #=> String, one of "enabling", "enabled", "disabling", "disabled"
58334
+ # resp.account_vpc_encryption_control.exclusions.nat_gateway #=> String, one of "enabling", "enabled", "disabling", "disabled"
58335
+ # resp.account_vpc_encryption_control.exclusions.virtual_private_gateway #=> String, one of "enabling", "enabled", "disabling", "disabled"
58336
+ # resp.account_vpc_encryption_control.exclusions.vpc_peering #=> String, one of "enabling", "enabled", "disabling", "disabled"
58337
+ # resp.account_vpc_encryption_control.exclusions.lambda #=> String, one of "enabling", "enabled", "disabling", "disabled"
58338
+ # resp.account_vpc_encryption_control.exclusions.vpc_lattice #=> String, one of "enabling", "enabled", "disabling", "disabled"
58339
+ # resp.account_vpc_encryption_control.exclusions.elastic_file_system #=> String, one of "enabling", "enabled", "disabling", "disabled"
58340
+ # resp.account_vpc_encryption_control.managed_by #=> String, one of "account", "declarative-policy"
58341
+ # resp.account_vpc_encryption_control.last_update_timestamp #=> Time
58342
+ #
58343
+ # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ModifyAccountVpcEncryptionControl AWS API Documentation
58344
+ #
58345
+ # @overload modify_account_vpc_encryption_control(params = {})
58346
+ # @param [Hash] params ({})
58347
+ def modify_account_vpc_encryption_control(params = {}, options = {})
58348
+ req = build_request(:modify_account_vpc_encryption_control, params)
58349
+ req.send_request(options)
58350
+ end
58351
+
58183
58352
  # Modifies an attribute of the specified Elastic IP address. For
58184
58353
  # requirements, see [Using reverse DNS for email applications][1].
58185
58354
  #
@@ -64102,6 +64271,9 @@ module Aws::EC2
64102
64271
  # resp.volume_modification.progress #=> Integer
64103
64272
  # resp.volume_modification.start_time #=> Time
64104
64273
  # resp.volume_modification.end_time #=> Time
64274
+ # resp.volume_modification.operator.managed #=> Boolean
64275
+ # resp.volume_modification.operator.principal #=> String
64276
+ # resp.volume_modification.operator.hidden_by_default #=> Boolean
64105
64277
  #
64106
64278
  # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ModifyVolume AWS API Documentation
64107
64279
  #
@@ -74175,7 +74347,7 @@ module Aws::EC2
74175
74347
  tracer: tracer
74176
74348
  )
74177
74349
  context[:gem_name] = 'aws-sdk-ec2'
74178
- context[:gem_version] = '1.627.0'
74350
+ context[:gem_version] = '1.628.0'
74179
74351
  Seahorse::Client::Request.new(handlers, context)
74180
74352
  end
74181
74353
 
@@ -55,6 +55,10 @@ module Aws::EC2
55
55
  AccountAttributeValue = Shapes::StructureShape.new(name: 'AccountAttributeValue')
56
56
  AccountAttributeValueList = Shapes::ListShape.new(name: 'AccountAttributeValueList')
57
57
  AccountID = Shapes::StringShape.new(name: 'AccountID')
58
+ AccountVpcEncryptionControl = Shapes::StructureShape.new(name: 'AccountVpcEncryptionControl')
59
+ AccountVpcEncryptionControlExclusions = Shapes::StructureShape.new(name: 'AccountVpcEncryptionControlExclusions')
60
+ AccountVpcEncryptionControlMode = Shapes::StringShape.new(name: 'AccountVpcEncryptionControlMode')
61
+ AccountVpcEncryptionControlState = Shapes::StringShape.new(name: 'AccountVpcEncryptionControlState')
58
62
  ActiveInstance = Shapes::StructureShape.new(name: 'ActiveInstance')
59
63
  ActiveInstanceSet = Shapes::ListShape.new(name: 'ActiveInstanceSet')
60
64
  ActiveVpnTunnelStatus = Shapes::StructureShape.new(name: 'ActiveVpnTunnelStatus')
@@ -104,6 +108,7 @@ module Aws::EC2
104
108
  AllowsMultipleInstanceTypes = Shapes::StringShape.new(name: 'AllowsMultipleInstanceTypes')
105
109
  AlternatePathHint = Shapes::StructureShape.new(name: 'AlternatePathHint')
106
110
  AlternatePathHintList = Shapes::ListShape.new(name: 'AlternatePathHintList')
111
+ AmdSevSnp = Shapes::StringShape.new(name: 'AmdSevSnp')
107
112
  AmdSevSnpSpecification = Shapes::StringShape.new(name: 'AmdSevSnpSpecification')
108
113
  AnalysisAclRule = Shapes::StructureShape.new(name: 'AnalysisAclRule')
109
114
  AnalysisComponent = Shapes::StructureShape.new(name: 'AnalysisComponent')
@@ -980,6 +985,8 @@ module Aws::EC2
980
985
  DeregisterTransitGatewayMulticastGroupSourcesResult = Shapes::StructureShape.new(name: 'DeregisterTransitGatewayMulticastGroupSourcesResult')
981
986
  DescribeAccountAttributesRequest = Shapes::StructureShape.new(name: 'DescribeAccountAttributesRequest')
982
987
  DescribeAccountAttributesResult = Shapes::StructureShape.new(name: 'DescribeAccountAttributesResult')
988
+ DescribeAccountVpcEncryptionControlRequest = Shapes::StructureShape.new(name: 'DescribeAccountVpcEncryptionControlRequest')
989
+ DescribeAccountVpcEncryptionControlResult = Shapes::StructureShape.new(name: 'DescribeAccountVpcEncryptionControlResult')
983
990
  DescribeAddressTransfersMaxResults = Shapes::IntegerShape.new(name: 'DescribeAddressTransfersMaxResults')
984
991
  DescribeAddressTransfersRequest = Shapes::StructureShape.new(name: 'DescribeAddressTransfersRequest')
985
992
  DescribeAddressTransfersResult = Shapes::StructureShape.new(name: 'DescribeAddressTransfersResult')
@@ -1983,6 +1990,8 @@ module Aws::EC2
1983
1990
  HistoryRecordSet = Shapes::ListShape.new(name: 'HistoryRecordSet')
1984
1991
  HistoryRecords = Shapes::ListShape.new(name: 'HistoryRecords')
1985
1992
  Host = Shapes::StructureShape.new(name: 'Host')
1993
+ HostCpuOptions = Shapes::StructureShape.new(name: 'HostCpuOptions')
1994
+ HostCpuOptionsRequest = Shapes::StructureShape.new(name: 'HostCpuOptionsRequest')
1986
1995
  HostInstance = Shapes::StructureShape.new(name: 'HostInstance')
1987
1996
  HostInstanceList = Shapes::ListShape.new(name: 'HostInstanceList')
1988
1997
  HostList = Shapes::ListShape.new(name: 'HostList')
@@ -2668,6 +2677,8 @@ module Aws::EC2
2668
2677
  MetricValue = Shapes::StructureShape.new(name: 'MetricValue')
2669
2678
  MetricValueSet = Shapes::ListShape.new(name: 'MetricValueSet')
2670
2679
  MillisecondDateTime = Shapes::TimestampShape.new(name: 'MillisecondDateTime')
2680
+ ModifyAccountVpcEncryptionControlRequest = Shapes::StructureShape.new(name: 'ModifyAccountVpcEncryptionControlRequest')
2681
+ ModifyAccountVpcEncryptionControlResult = Shapes::StructureShape.new(name: 'ModifyAccountVpcEncryptionControlResult')
2671
2682
  ModifyAddressAttributeRequest = Shapes::StructureShape.new(name: 'ModifyAddressAttributeRequest')
2672
2683
  ModifyAddressAttributeResult = Shapes::StructureShape.new(name: 'ModifyAddressAttributeResult')
2673
2684
  ModifyAvailabilityZoneGroupRequest = Shapes::StructureShape.new(name: 'ModifyAvailabilityZoneGroupRequest')
@@ -4194,6 +4205,23 @@ module Aws::EC2
4194
4205
 
4195
4206
  AccountAttributeValueList.member = Shapes::ShapeRef.new(shape: AccountAttributeValue, location_name: "item")
4196
4207
 
4208
+ AccountVpcEncryptionControl.add_member(:state, Shapes::ShapeRef.new(shape: AccountVpcEncryptionControlState, location_name: "state"))
4209
+ AccountVpcEncryptionControl.add_member(:mode, Shapes::ShapeRef.new(shape: AccountVpcEncryptionControlMode, location_name: "mode"))
4210
+ AccountVpcEncryptionControl.add_member(:exclusions, Shapes::ShapeRef.new(shape: AccountVpcEncryptionControlExclusions, location_name: "exclusions"))
4211
+ AccountVpcEncryptionControl.add_member(:managed_by, Shapes::ShapeRef.new(shape: ManagedBy, location_name: "managedBy"))
4212
+ AccountVpcEncryptionControl.add_member(:last_update_timestamp, Shapes::ShapeRef.new(shape: MillisecondDateTime, location_name: "lastUpdateTimestamp"))
4213
+ AccountVpcEncryptionControl.struct_class = Types::AccountVpcEncryptionControl
4214
+
4215
+ AccountVpcEncryptionControlExclusions.add_member(:internet_gateway, Shapes::ShapeRef.new(shape: VpcEncryptionControlExclusionState, location_name: "internetGateway"))
4216
+ AccountVpcEncryptionControlExclusions.add_member(:egress_only_internet_gateway, Shapes::ShapeRef.new(shape: VpcEncryptionControlExclusionState, location_name: "egressOnlyInternetGateway"))
4217
+ AccountVpcEncryptionControlExclusions.add_member(:nat_gateway, Shapes::ShapeRef.new(shape: VpcEncryptionControlExclusionState, location_name: "natGateway"))
4218
+ AccountVpcEncryptionControlExclusions.add_member(:virtual_private_gateway, Shapes::ShapeRef.new(shape: VpcEncryptionControlExclusionState, location_name: "virtualPrivateGateway"))
4219
+ AccountVpcEncryptionControlExclusions.add_member(:vpc_peering, Shapes::ShapeRef.new(shape: VpcEncryptionControlExclusionState, location_name: "vpcPeering"))
4220
+ AccountVpcEncryptionControlExclusions.add_member(:lambda, Shapes::ShapeRef.new(shape: VpcEncryptionControlExclusionState, location_name: "lambda"))
4221
+ AccountVpcEncryptionControlExclusions.add_member(:vpc_lattice, Shapes::ShapeRef.new(shape: VpcEncryptionControlExclusionState, location_name: "vpcLattice"))
4222
+ AccountVpcEncryptionControlExclusions.add_member(:elastic_file_system, Shapes::ShapeRef.new(shape: VpcEncryptionControlExclusionState, location_name: "elasticFileSystem"))
4223
+ AccountVpcEncryptionControlExclusions.struct_class = Types::AccountVpcEncryptionControlExclusions
4224
+
4197
4225
  ActiveInstance.add_member(:instance_id, Shapes::ShapeRef.new(shape: String, location_name: "instanceId"))
4198
4226
  ActiveInstance.add_member(:instance_type, Shapes::ShapeRef.new(shape: String, location_name: "instanceType"))
4199
4227
  ActiveInstance.add_member(:spot_instance_request_id, Shapes::ShapeRef.new(shape: String, location_name: "spotInstanceRequestId"))
@@ -4323,6 +4351,7 @@ module Aws::EC2
4323
4351
  AllocateHostsRequest.add_member(:host_maintenance, Shapes::ShapeRef.new(shape: HostMaintenance, location_name: "HostMaintenance"))
4324
4352
  AllocateHostsRequest.add_member(:asset_ids, Shapes::ShapeRef.new(shape: AssetIdList, location_name: "AssetId"))
4325
4353
  AllocateHostsRequest.add_member(:availability_zone_id, Shapes::ShapeRef.new(shape: AvailabilityZoneId, location_name: "AvailabilityZoneId"))
4354
+ AllocateHostsRequest.add_member(:cpu_options, Shapes::ShapeRef.new(shape: HostCpuOptionsRequest, location_name: "CpuOptions"))
4326
4355
  AllocateHostsRequest.add_member(:auto_placement, Shapes::ShapeRef.new(shape: AutoPlacement, location_name: "autoPlacement"))
4327
4356
  AllocateHostsRequest.add_member(:client_token, Shapes::ShapeRef.new(shape: String, location_name: "clientToken"))
4328
4357
  AllocateHostsRequest.add_member(:instance_type, Shapes::ShapeRef.new(shape: String, location_name: "instanceType"))
@@ -7999,6 +8028,12 @@ module Aws::EC2
7999
8028
  DescribeAccountAttributesResult.add_member(:account_attributes, Shapes::ShapeRef.new(shape: AccountAttributeList, location_name: "accountAttributeSet"))
8000
8029
  DescribeAccountAttributesResult.struct_class = Types::DescribeAccountAttributesResult
8001
8030
 
8031
+ DescribeAccountVpcEncryptionControlRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: Boolean, location_name: "DryRun"))
8032
+ DescribeAccountVpcEncryptionControlRequest.struct_class = Types::DescribeAccountVpcEncryptionControlRequest
8033
+
8034
+ DescribeAccountVpcEncryptionControlResult.add_member(:account_vpc_encryption_control, Shapes::ShapeRef.new(shape: AccountVpcEncryptionControl, location_name: "accountVpcEncryptionControl"))
8035
+ DescribeAccountVpcEncryptionControlResult.struct_class = Types::DescribeAccountVpcEncryptionControlResult
8036
+
8002
8037
  DescribeAddressTransfersRequest.add_member(:allocation_ids, Shapes::ShapeRef.new(shape: AllocationIdList, location_name: "AllocationId"))
8003
8038
  DescribeAddressTransfersRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: String, location_name: "NextToken"))
8004
8039
  DescribeAddressTransfersRequest.add_member(:max_results, Shapes::ShapeRef.new(shape: DescribeAddressTransfersMaxResults, location_name: "MaxResults"))
@@ -9874,6 +9909,7 @@ module Aws::EC2
9874
9909
  DescribeVolumesModificationsRequest.add_member(:filters, Shapes::ShapeRef.new(shape: FilterList, location_name: "Filter"))
9875
9910
  DescribeVolumesModificationsRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: String, location_name: "NextToken"))
9876
9911
  DescribeVolumesModificationsRequest.add_member(:max_results, Shapes::ShapeRef.new(shape: Integer, location_name: "MaxResults"))
9912
+ DescribeVolumesModificationsRequest.add_member(:include_managed_resources, Shapes::ShapeRef.new(shape: Boolean, location_name: "IncludeManagedResources"))
9877
9913
  DescribeVolumesModificationsRequest.struct_class = Types::DescribeVolumesModificationsRequest
9878
9914
 
9879
9915
  DescribeVolumesModificationsResult.add_member(:next_token, Shapes::ShapeRef.new(shape: String, location_name: "nextToken"))
@@ -12202,8 +12238,15 @@ module Aws::EC2
12202
12238
  Host.add_member(:outpost_arn, Shapes::ShapeRef.new(shape: String, location_name: "outpostArn"))
12203
12239
  Host.add_member(:host_maintenance, Shapes::ShapeRef.new(shape: HostMaintenance, location_name: "hostMaintenance"))
12204
12240
  Host.add_member(:asset_id, Shapes::ShapeRef.new(shape: AssetId, location_name: "assetId"))
12241
+ Host.add_member(:cpu_options, Shapes::ShapeRef.new(shape: HostCpuOptions, location_name: "cpuOptions"))
12205
12242
  Host.struct_class = Types::Host
12206
12243
 
12244
+ HostCpuOptions.add_member(:amd_sev_snp, Shapes::ShapeRef.new(shape: AmdSevSnp, location_name: "amdSevSnp"))
12245
+ HostCpuOptions.struct_class = Types::HostCpuOptions
12246
+
12247
+ HostCpuOptionsRequest.add_member(:amd_sev_snp, Shapes::ShapeRef.new(shape: AmdSevSnp, location_name: "AmdSevSnp"))
12248
+ HostCpuOptionsRequest.struct_class = Types::HostCpuOptionsRequest
12249
+
12207
12250
  HostInstance.add_member(:instance_id, Shapes::ShapeRef.new(shape: String, location_name: "instanceId"))
12208
12251
  HostInstance.add_member(:instance_type, Shapes::ShapeRef.new(shape: String, location_name: "instanceType"))
12209
12252
  HostInstance.add_member(:owner_id, Shapes::ShapeRef.new(shape: String, location_name: "ownerId"))
@@ -14539,6 +14582,21 @@ module Aws::EC2
14539
14582
 
14540
14583
  MetricValueSet.member = Shapes::ShapeRef.new(shape: MetricValue, location_name: "item")
14541
14584
 
14585
+ ModifyAccountVpcEncryptionControlRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: Boolean, location_name: "DryRun"))
14586
+ ModifyAccountVpcEncryptionControlRequest.add_member(:mode, Shapes::ShapeRef.new(shape: AccountVpcEncryptionControlMode, location_name: "Mode"))
14587
+ ModifyAccountVpcEncryptionControlRequest.add_member(:internet_gateway, Shapes::ShapeRef.new(shape: VpcEncryptionControlExclusionStateInput, location_name: "InternetGateway"))
14588
+ ModifyAccountVpcEncryptionControlRequest.add_member(:egress_only_internet_gateway, Shapes::ShapeRef.new(shape: VpcEncryptionControlExclusionStateInput, location_name: "EgressOnlyInternetGateway"))
14589
+ ModifyAccountVpcEncryptionControlRequest.add_member(:nat_gateway, Shapes::ShapeRef.new(shape: VpcEncryptionControlExclusionStateInput, location_name: "NatGateway"))
14590
+ ModifyAccountVpcEncryptionControlRequest.add_member(:virtual_private_gateway, Shapes::ShapeRef.new(shape: VpcEncryptionControlExclusionStateInput, location_name: "VirtualPrivateGateway"))
14591
+ ModifyAccountVpcEncryptionControlRequest.add_member(:vpc_peering, Shapes::ShapeRef.new(shape: VpcEncryptionControlExclusionStateInput, location_name: "VpcPeering"))
14592
+ ModifyAccountVpcEncryptionControlRequest.add_member(:lambda, Shapes::ShapeRef.new(shape: VpcEncryptionControlExclusionStateInput, location_name: "Lambda"))
14593
+ ModifyAccountVpcEncryptionControlRequest.add_member(:vpc_lattice, Shapes::ShapeRef.new(shape: VpcEncryptionControlExclusionStateInput, location_name: "VpcLattice"))
14594
+ ModifyAccountVpcEncryptionControlRequest.add_member(:elastic_file_system, Shapes::ShapeRef.new(shape: VpcEncryptionControlExclusionStateInput, location_name: "ElasticFileSystem"))
14595
+ ModifyAccountVpcEncryptionControlRequest.struct_class = Types::ModifyAccountVpcEncryptionControlRequest
14596
+
14597
+ ModifyAccountVpcEncryptionControlResult.add_member(:account_vpc_encryption_control, Shapes::ShapeRef.new(shape: AccountVpcEncryptionControl, location_name: "accountVpcEncryptionControl"))
14598
+ ModifyAccountVpcEncryptionControlResult.struct_class = Types::ModifyAccountVpcEncryptionControlResult
14599
+
14542
14600
  ModifyAddressAttributeRequest.add_member(:allocation_id, Shapes::ShapeRef.new(shape: AllocationId, required: true, location_name: "AllocationId"))
14543
14601
  ModifyAddressAttributeRequest.add_member(:domain_name, Shapes::ShapeRef.new(shape: String, location_name: "DomainName"))
14544
14602
  ModifyAddressAttributeRequest.add_member(:dry_run, Shapes::ShapeRef.new(shape: Boolean, location_name: "DryRun"))
@@ -19476,6 +19534,7 @@ module Aws::EC2
19476
19534
  VolumeModification.add_member(:progress, Shapes::ShapeRef.new(shape: Long, location_name: "progress"))
19477
19535
  VolumeModification.add_member(:start_time, Shapes::ShapeRef.new(shape: DateTime, location_name: "startTime"))
19478
19536
  VolumeModification.add_member(:end_time, Shapes::ShapeRef.new(shape: DateTime, location_name: "endTime"))
19537
+ VolumeModification.add_member(:operator, Shapes::ShapeRef.new(shape: OperatorResponse, location_name: "operator"))
19479
19538
  VolumeModification.struct_class = Types::VolumeModification
19480
19539
 
19481
19540
  VolumeModificationList.member = Shapes::ShapeRef.new(shape: VolumeModification, location_name: "item")
@@ -22090,6 +22149,14 @@ module Aws::EC2
22090
22149
  o.output = Shapes::ShapeRef.new(shape: DescribeAccountAttributesResult)
22091
22150
  end)
22092
22151
 
22152
+ api.add_operation(:describe_account_vpc_encryption_control, Seahorse::Model::Operation.new.tap do |o|
22153
+ o.name = "DescribeAccountVpcEncryptionControl"
22154
+ o.http_method = "POST"
22155
+ o.http_request_uri = "/"
22156
+ o.input = Shapes::ShapeRef.new(shape: DescribeAccountVpcEncryptionControlRequest)
22157
+ o.output = Shapes::ShapeRef.new(shape: DescribeAccountVpcEncryptionControlResult)
22158
+ end)
22159
+
22093
22160
  api.add_operation(:describe_address_transfers, Seahorse::Model::Operation.new.tap do |o|
22094
22161
  o.name = "DescribeAddressTransfers"
22095
22162
  o.http_method = "POST"
@@ -25805,6 +25872,14 @@ module Aws::EC2
25805
25872
  o.output = Shapes::ShapeRef.new(shape: LockSnapshotResult)
25806
25873
  end)
25807
25874
 
25875
+ api.add_operation(:modify_account_vpc_encryption_control, Seahorse::Model::Operation.new.tap do |o|
25876
+ o.name = "ModifyAccountVpcEncryptionControl"
25877
+ o.http_method = "POST"
25878
+ o.http_request_uri = "/"
25879
+ o.input = Shapes::ShapeRef.new(shape: ModifyAccountVpcEncryptionControlRequest)
25880
+ o.output = Shapes::ShapeRef.new(shape: ModifyAccountVpcEncryptionControlResult)
25881
+ end)
25882
+
25808
25883
  api.add_operation(:modify_address_attribute, Seahorse::Model::Operation.new.tap do |o|
25809
25884
  o.name = "ModifyAddressAttribute"
25810
25885
  o.http_method = "POST"
@@ -535,6 +535,111 @@ module Aws::EC2
535
535
  include Aws::Structure
536
536
  end
537
537
 
538
+ # Describes the account-level VPC Encryption Control configuration,
539
+ # including its mode, state, and exclusions.
540
+ #
541
+ # For more information, see [Enforce VPC encryption in transit][1] in
542
+ # the *Amazon VPC User Guide*.
543
+ #
544
+ #
545
+ #
546
+ # [1]: https://docs.aws.amazon.com/vpc/latest/userguide/vpc-encryption-controls.html
547
+ #
548
+ # @!attribute [rw] state
549
+ # The current state of the account-level VPC Encryption Control
550
+ # configuration.
551
+ # @return [String]
552
+ #
553
+ # @!attribute [rw] mode
554
+ # The encryption mode for the account-level VPC Encryption Control
555
+ # configuration.
556
+ # @return [String]
557
+ #
558
+ # @!attribute [rw] exclusions
559
+ # Information about the traffic exclusions for the account-level VPC
560
+ # Encryption Control configuration.
561
+ # @return [Types::AccountVpcEncryptionControlExclusions]
562
+ #
563
+ # @!attribute [rw] managed_by
564
+ # The entity that manages the account-level VPC Encryption Control
565
+ # configuration.
566
+ # @return [String]
567
+ #
568
+ # @!attribute [rw] last_update_timestamp
569
+ # The date and time when the account-level VPC Encryption Control
570
+ # configuration was last updated.
571
+ # @return [Time]
572
+ #
573
+ # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/AccountVpcEncryptionControl AWS API Documentation
574
+ #
575
+ class AccountVpcEncryptionControl < Struct.new(
576
+ :state,
577
+ :mode,
578
+ :exclusions,
579
+ :managed_by,
580
+ :last_update_timestamp)
581
+ SENSITIVE = []
582
+ include Aws::Structure
583
+ end
584
+
585
+ # Describes the exclusion configurations for the various resource types
586
+ # in the account-level VPC Encryption Control configuration.
587
+ #
588
+ # For more information, see [Enforce VPC encryption in transit][1] in
589
+ # the *Amazon VPC User Guide*.
590
+ #
591
+ #
592
+ #
593
+ # [1]: https://docs.aws.amazon.com/vpc/latest/userguide/vpc-encryption-controls.html
594
+ #
595
+ # @!attribute [rw] internet_gateway
596
+ # The exclusion configuration for internet gateway resource.
597
+ # @return [String]
598
+ #
599
+ # @!attribute [rw] egress_only_internet_gateway
600
+ # The exclusion configuration for egress-only internet gateway
601
+ # resource.
602
+ # @return [String]
603
+ #
604
+ # @!attribute [rw] nat_gateway
605
+ # The exclusion configuration for NAT gateway resource.
606
+ # @return [String]
607
+ #
608
+ # @!attribute [rw] virtual_private_gateway
609
+ # The exclusion configuration for virtual private gateway resource.
610
+ # @return [String]
611
+ #
612
+ # @!attribute [rw] vpc_peering
613
+ # The exclusion configuration for VPC peering connection resource.
614
+ # @return [String]
615
+ #
616
+ # @!attribute [rw] lambda
617
+ # The exclusion configuration for Lambda service.
618
+ # @return [String]
619
+ #
620
+ # @!attribute [rw] vpc_lattice
621
+ # The exclusion configuration for VPC Lattice service.
622
+ # @return [String]
623
+ #
624
+ # @!attribute [rw] elastic_file_system
625
+ # The exclusion configuration for Elastic File System service.
626
+ # @return [String]
627
+ #
628
+ # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/AccountVpcEncryptionControlExclusions AWS API Documentation
629
+ #
630
+ class AccountVpcEncryptionControlExclusions < Struct.new(
631
+ :internet_gateway,
632
+ :egress_only_internet_gateway,
633
+ :nat_gateway,
634
+ :virtual_private_gateway,
635
+ :vpc_peering,
636
+ :lambda,
637
+ :vpc_lattice,
638
+ :elastic_file_system)
639
+ SENSITIVE = []
640
+ include Aws::Structure
641
+ end
642
+
538
643
  # Describes a running instance in a Spot Fleet.
539
644
  #
540
645
  # @!attribute [rw] instance_id
@@ -1228,6 +1333,10 @@ module Aws::EC2
1228
1333
  # The ID of the Availability Zone.
1229
1334
  # @return [String]
1230
1335
  #
1336
+ # @!attribute [rw] cpu_options
1337
+ # The CPU configuration options to apply to the Dedicated Host.
1338
+ # @return [Types::HostCpuOptionsRequest]
1339
+ #
1231
1340
  # @!attribute [rw] auto_placement
1232
1341
  # Indicates whether the host accepts any untargeted instance launches
1233
1342
  # that match its instance type configuration, or if it only accepts
@@ -1287,6 +1396,7 @@ module Aws::EC2
1287
1396
  :host_maintenance,
1288
1397
  :asset_ids,
1289
1398
  :availability_zone_id,
1399
+ :cpu_options,
1290
1400
  :auto_placement,
1291
1401
  :client_token,
1292
1402
  :instance_type,
@@ -21723,6 +21833,34 @@ module Aws::EC2
21723
21833
  include Aws::Structure
21724
21834
  end
21725
21835
 
21836
+ # @!attribute [rw] dry_run
21837
+ # Checks whether you have the required permissions for the action,
21838
+ # without actually making the request, and provides an error response.
21839
+ # If you have the required permissions, the error response is
21840
+ # `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
21841
+ # @return [Boolean]
21842
+ #
21843
+ # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/DescribeAccountVpcEncryptionControlRequest AWS API Documentation
21844
+ #
21845
+ class DescribeAccountVpcEncryptionControlRequest < Struct.new(
21846
+ :dry_run)
21847
+ SENSITIVE = []
21848
+ include Aws::Structure
21849
+ end
21850
+
21851
+ # @!attribute [rw] account_vpc_encryption_control
21852
+ # Information about the account-level VPC Encryption Control
21853
+ # configuration.
21854
+ # @return [Types::AccountVpcEncryptionControl]
21855
+ #
21856
+ # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/DescribeAccountVpcEncryptionControlResult AWS API Documentation
21857
+ #
21858
+ class DescribeAccountVpcEncryptionControlResult < Struct.new(
21859
+ :account_vpc_encryption_control)
21860
+ SENSITIVE = []
21861
+ include Aws::Structure
21862
+ end
21863
+
21726
21864
  # @!attribute [rw] allocation_ids
21727
21865
  # The allocation IDs of Elastic IP addresses.
21728
21866
  # @return [Array<String>]
@@ -34996,6 +35134,13 @@ module Aws::EC2
34996
35134
  # [1]: https://docs.aws.amazon.com/AWSEC2/latest/APIReference/Query-Requests.html#api-pagination
34997
35135
  # @return [Integer]
34998
35136
  #
35137
+ # @!attribute [rw] include_managed_resources
35138
+ # Indicates whether to include managed resources in the output. If
35139
+ # this parameter is set to `true`, the output includes resources that
35140
+ # are managed by Amazon Web Services services, even if managed
35141
+ # resource visibility is set to hidden.
35142
+ # @return [Boolean]
35143
+ #
34999
35144
  # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/DescribeVolumesModificationsRequest AWS API Documentation
35000
35145
  #
35001
35146
  class DescribeVolumesModificationsRequest < Struct.new(
@@ -35003,7 +35148,8 @@ module Aws::EC2
35003
35148
  :volume_ids,
35004
35149
  :filters,
35005
35150
  :next_token,
35006
- :max_results)
35151
+ :max_results,
35152
+ :include_managed_resources)
35007
35153
  SENSITIVE = []
35008
35154
  include Aws::Structure
35009
35155
  end
@@ -48004,6 +48150,12 @@ module Aws::EC2
48004
48150
  # allocated.
48005
48151
  # @return [String]
48006
48152
  #
48153
+ # @!attribute [rw] cpu_options
48154
+ # The CPU options for the Dedicated Host, including AMD Secure
48155
+ # Encrypted Virtualization-Secure Nested Paging (AMD SEV-SNP)
48156
+ # settings.
48157
+ # @return [Types::HostCpuOptions]
48158
+ #
48007
48159
  # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/Host AWS API Documentation
48008
48160
  #
48009
48161
  class Host < Struct.new(
@@ -48026,7 +48178,43 @@ module Aws::EC2
48026
48178
  :member_of_service_linked_resource_group,
48027
48179
  :outpost_arn,
48028
48180
  :host_maintenance,
48029
- :asset_id)
48181
+ :asset_id,
48182
+ :cpu_options)
48183
+ SENSITIVE = []
48184
+ include Aws::Structure
48185
+ end
48186
+
48187
+ # Contains the CPU options for a Dedicated Host, including AMD Secure
48188
+ # Encrypted Virtualization-Secure Nested Paging (AMD SEV-SNP) settings.
48189
+ #
48190
+ # @!attribute [rw] amd_sev_snp
48191
+ # Specifies whether AMD Secure Encrypted Virtualization-Secure Nested
48192
+ # Paging (AMD SEV-SNP) is enabled or disabled for the Dedicated Host.
48193
+ # If you don't specify a value, AMD SEV-SNP is `disabled`.
48194
+ # @return [String]
48195
+ #
48196
+ # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/HostCpuOptions AWS API Documentation
48197
+ #
48198
+ class HostCpuOptions < Struct.new(
48199
+ :amd_sev_snp)
48200
+ SENSITIVE = []
48201
+ include Aws::Structure
48202
+ end
48203
+
48204
+ # Contains the CPU configuration options for a Dedicated Host allocation
48205
+ # request. Options include AMD Secure Encrypted Virtualization-Secure
48206
+ # Nested Paging (AMD SEV-SNP) settings.
48207
+ #
48208
+ # @!attribute [rw] amd_sev_snp
48209
+ # Specifies whether AMD Secure Encrypted Virtualization-Secure Nested
48210
+ # Paging (AMD SEV-SNP) is enabled or disabled for the Dedicated Host.
48211
+ # If you don't specify a value, AMD SEV-SNP is `disabled`.
48212
+ # @return [String]
48213
+ #
48214
+ # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/HostCpuOptionsRequest AWS API Documentation
48215
+ #
48216
+ class HostCpuOptionsRequest < Struct.new(
48217
+ :amd_sev_snp)
48030
48218
  SENSITIVE = []
48031
48219
  include Aws::Structure
48032
48220
  end
@@ -60998,6 +61186,88 @@ module Aws::EC2
60998
61186
  include Aws::Structure
60999
61187
  end
61000
61188
 
61189
+ # @!attribute [rw] dry_run
61190
+ # Checks whether you have the required permissions for the action,
61191
+ # without actually making the request, and provides an error response.
61192
+ # If you have the required permissions, the error response is
61193
+ # `DryRunOperation`. Otherwise, it is `UnauthorizedOperation`.
61194
+ # @return [Boolean]
61195
+ #
61196
+ # @!attribute [rw] mode
61197
+ # The encryption mode for the account encryption control
61198
+ # configuration.
61199
+ # @return [String]
61200
+ #
61201
+ # @!attribute [rw] internet_gateway
61202
+ # Specifies whether to exclude internet gateway resource from
61203
+ # account-level encryption enforcement.
61204
+ # @return [String]
61205
+ #
61206
+ # @!attribute [rw] egress_only_internet_gateway
61207
+ # Specifies whether to exclude egress-only internet gateway resource
61208
+ # from account-level encryption enforcement.
61209
+ # @return [String]
61210
+ #
61211
+ # @!attribute [rw] nat_gateway
61212
+ # Specifies whether to exclude NAT gateway resource from account-level
61213
+ # encryption enforcement.
61214
+ # @return [String]
61215
+ #
61216
+ # @!attribute [rw] virtual_private_gateway
61217
+ # Specifies whether to exclude virtual private gateway resource from
61218
+ # account-level encryption enforcement.
61219
+ # @return [String]
61220
+ #
61221
+ # @!attribute [rw] vpc_peering
61222
+ # Specifies whether to exclude VPC peering connection resource from
61223
+ # account-level encryption enforcement.
61224
+ # @return [String]
61225
+ #
61226
+ # @!attribute [rw] lambda
61227
+ # Specifies whether to exclude Lambda service from account-level
61228
+ # encryption enforcement.
61229
+ # @return [String]
61230
+ #
61231
+ # @!attribute [rw] vpc_lattice
61232
+ # Specifies whether to exclude VPC Lattice service from account-level
61233
+ # encryption enforcement.
61234
+ # @return [String]
61235
+ #
61236
+ # @!attribute [rw] elastic_file_system
61237
+ # Specifies whether to exclude Elastic File System service from
61238
+ # account-level encryption enforcement.
61239
+ # @return [String]
61240
+ #
61241
+ # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ModifyAccountVpcEncryptionControlRequest AWS API Documentation
61242
+ #
61243
+ class ModifyAccountVpcEncryptionControlRequest < Struct.new(
61244
+ :dry_run,
61245
+ :mode,
61246
+ :internet_gateway,
61247
+ :egress_only_internet_gateway,
61248
+ :nat_gateway,
61249
+ :virtual_private_gateway,
61250
+ :vpc_peering,
61251
+ :lambda,
61252
+ :vpc_lattice,
61253
+ :elastic_file_system)
61254
+ SENSITIVE = []
61255
+ include Aws::Structure
61256
+ end
61257
+
61258
+ # @!attribute [rw] account_vpc_encryption_control
61259
+ # Information about the account-level VPC Encryption Control
61260
+ # configuration.
61261
+ # @return [Types::AccountVpcEncryptionControl]
61262
+ #
61263
+ # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/ModifyAccountVpcEncryptionControlResult AWS API Documentation
61264
+ #
61265
+ class ModifyAccountVpcEncryptionControlResult < Struct.new(
61266
+ :account_vpc_encryption_control)
61267
+ SENSITIVE = []
61268
+ include Aws::Structure
61269
+ end
61270
+
61001
61271
  # @!attribute [rw] allocation_id
61002
61272
  # \[EC2-VPC\] The allocation ID.
61003
61273
  # @return [String]
@@ -86613,6 +86883,10 @@ module Aws::EC2
86613
86883
  # The modification completion or failure time.
86614
86884
  # @return [Time]
86615
86885
  #
86886
+ # @!attribute [rw] operator
86887
+ # The service provider that manages the resource.
86888
+ # @return [Types::OperatorResponse]
86889
+ #
86616
86890
  # @see http://docs.aws.amazon.com/goto/WebAPI/ec2-2016-11-15/VolumeModification AWS API Documentation
86617
86891
  #
86618
86892
  class VolumeModification < Struct.new(
@@ -86631,7 +86905,8 @@ module Aws::EC2
86631
86905
  :original_multi_attach_enabled,
86632
86906
  :progress,
86633
86907
  :start_time,
86634
- :end_time)
86908
+ :end_time,
86909
+ :operator)
86635
86910
  SENSITIVE = []
86636
86911
  include Aws::Structure
86637
86912
  end
data/lib/aws-sdk-ec2.rb CHANGED
@@ -78,7 +78,7 @@ module Aws::EC2
78
78
  autoload :VpcPeeringConnection, 'aws-sdk-ec2/vpc_peering_connection'
79
79
  autoload :VpcAddress, 'aws-sdk-ec2/vpc_address'
80
80
 
81
- GEM_VERSION = '1.627.0'
81
+ GEM_VERSION = '1.628.0'
82
82
 
83
83
  end
84
84
 
data/sig/client.rbs CHANGED
@@ -267,6 +267,9 @@ module Aws
267
267
  ?host_maintenance: ("on" | "off"),
268
268
  ?asset_ids: Array[::String],
269
269
  ?availability_zone_id: ::String,
270
+ ?cpu_options: {
271
+ amd_sev_snp: ("enabled" | "disabled")?
272
+ },
270
273
  ?auto_placement: ("on" | "off"),
271
274
  ?client_token: ::String,
272
275
  ?instance_type: ::String,
@@ -5232,6 +5235,16 @@ module Aws
5232
5235
  ) -> _DescribeAccountAttributesResponseSuccess
5233
5236
  | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DescribeAccountAttributesResponseSuccess
5234
5237
 
5238
+ interface _DescribeAccountVpcEncryptionControlResponseSuccess
5239
+ include ::Seahorse::Client::_ResponseSuccess[Types::DescribeAccountVpcEncryptionControlResult]
5240
+ def account_vpc_encryption_control: () -> Types::AccountVpcEncryptionControl
5241
+ end
5242
+ # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/EC2/Client.html#describe_account_vpc_encryption_control-instance_method
5243
+ def describe_account_vpc_encryption_control: (
5244
+ ?dry_run: bool
5245
+ ) -> _DescribeAccountVpcEncryptionControlResponseSuccess
5246
+ | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DescribeAccountVpcEncryptionControlResponseSuccess
5247
+
5235
5248
  interface _DescribeAddressTransfersResponseSuccess
5236
5249
  include ::Seahorse::Client::_ResponseSuccess[Types::DescribeAddressTransfersResult]
5237
5250
  def address_transfers: () -> ::Array[Types::AddressTransfer]
@@ -8499,7 +8512,8 @@ module Aws
8499
8512
  }
8500
8513
  ],
8501
8514
  ?next_token: ::String,
8502
- ?max_results: ::Integer
8515
+ ?max_results: ::Integer,
8516
+ ?include_managed_resources: bool
8503
8517
  ) -> _DescribeVolumesModificationsResponseSuccess
8504
8518
  | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DescribeVolumesModificationsResponseSuccess
8505
8519
 
@@ -11193,6 +11207,25 @@ module Aws
11193
11207
  ) -> _LockSnapshotResponseSuccess
11194
11208
  | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _LockSnapshotResponseSuccess
11195
11209
 
11210
+ interface _ModifyAccountVpcEncryptionControlResponseSuccess
11211
+ include ::Seahorse::Client::_ResponseSuccess[Types::ModifyAccountVpcEncryptionControlResult]
11212
+ def account_vpc_encryption_control: () -> Types::AccountVpcEncryptionControl
11213
+ end
11214
+ # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/EC2/Client.html#modify_account_vpc_encryption_control-instance_method
11215
+ def modify_account_vpc_encryption_control: (
11216
+ ?dry_run: bool,
11217
+ ?mode: ("unmanaged" | "attempt-monitor" | "attempt-enforce"),
11218
+ ?internet_gateway: ("enable" | "disable"),
11219
+ ?egress_only_internet_gateway: ("enable" | "disable"),
11220
+ ?nat_gateway: ("enable" | "disable"),
11221
+ ?virtual_private_gateway: ("enable" | "disable"),
11222
+ ?vpc_peering: ("enable" | "disable"),
11223
+ ?lambda: ("enable" | "disable"),
11224
+ ?vpc_lattice: ("enable" | "disable"),
11225
+ ?elastic_file_system: ("enable" | "disable")
11226
+ ) -> _ModifyAccountVpcEncryptionControlResponseSuccess
11227
+ | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _ModifyAccountVpcEncryptionControlResponseSuccess
11228
+
11196
11229
  interface _ModifyAddressAttributeResponseSuccess
11197
11230
  include ::Seahorse::Client::_ResponseSuccess[Types::ModifyAddressAttributeResult]
11198
11231
  def address: () -> Types::AddressAttribute
data/sig/types.rbs CHANGED
@@ -169,6 +169,27 @@ module Aws::EC2
169
169
  SENSITIVE: []
170
170
  end
171
171
 
172
+ class AccountVpcEncryptionControl
173
+ attr_accessor state: ("default-state" | "transitions-in-progress" | "transitions-partially-successful" | "transitions-successful" | "transitions-failed")
174
+ attr_accessor mode: ("unmanaged" | "attempt-monitor" | "attempt-enforce")
175
+ attr_accessor exclusions: Types::AccountVpcEncryptionControlExclusions
176
+ attr_accessor managed_by: ("account" | "declarative-policy")
177
+ attr_accessor last_update_timestamp: ::Time
178
+ SENSITIVE: []
179
+ end
180
+
181
+ class AccountVpcEncryptionControlExclusions
182
+ attr_accessor internet_gateway: ("enabling" | "enabled" | "disabling" | "disabled")
183
+ attr_accessor egress_only_internet_gateway: ("enabling" | "enabled" | "disabling" | "disabled")
184
+ attr_accessor nat_gateway: ("enabling" | "enabled" | "disabling" | "disabled")
185
+ attr_accessor virtual_private_gateway: ("enabling" | "enabled" | "disabling" | "disabled")
186
+ attr_accessor vpc_peering: ("enabling" | "enabled" | "disabling" | "disabled")
187
+ attr_accessor lambda: ("enabling" | "enabled" | "disabling" | "disabled")
188
+ attr_accessor vpc_lattice: ("enabling" | "enabled" | "disabling" | "disabled")
189
+ attr_accessor elastic_file_system: ("enabling" | "enabled" | "disabling" | "disabled")
190
+ SENSITIVE: []
191
+ end
192
+
172
193
  class ActiveInstance
173
194
  attr_accessor instance_id: ::String
174
195
  attr_accessor instance_type: ::String
@@ -309,6 +330,7 @@ module Aws::EC2
309
330
  attr_accessor host_maintenance: ("on" | "off")
310
331
  attr_accessor asset_ids: ::Array[::String]
311
332
  attr_accessor availability_zone_id: ::String
333
+ attr_accessor cpu_options: Types::HostCpuOptionsRequest
312
334
  attr_accessor auto_placement: ("on" | "off")
313
335
  attr_accessor client_token: ::String
314
336
  attr_accessor instance_type: ::String
@@ -5056,6 +5078,16 @@ module Aws::EC2
5056
5078
  SENSITIVE: []
5057
5079
  end
5058
5080
 
5081
+ class DescribeAccountVpcEncryptionControlRequest
5082
+ attr_accessor dry_run: bool
5083
+ SENSITIVE: []
5084
+ end
5085
+
5086
+ class DescribeAccountVpcEncryptionControlResult
5087
+ attr_accessor account_vpc_encryption_control: Types::AccountVpcEncryptionControl
5088
+ SENSITIVE: []
5089
+ end
5090
+
5059
5091
  class DescribeAddressTransfersRequest
5060
5092
  attr_accessor allocation_ids: ::Array[::String]
5061
5093
  attr_accessor next_token: ::String
@@ -7582,6 +7614,7 @@ module Aws::EC2
7582
7614
  attr_accessor filters: ::Array[Types::Filter]
7583
7615
  attr_accessor next_token: ::String
7584
7616
  attr_accessor max_results: ::Integer
7617
+ attr_accessor include_managed_resources: bool
7585
7618
  SENSITIVE: []
7586
7619
  end
7587
7620
 
@@ -10612,7 +10645,7 @@ module Aws::EC2
10612
10645
  attr_accessor host_properties: Types::HostProperties
10613
10646
  attr_accessor host_reservation_id: ::String
10614
10647
  attr_accessor instances: ::Array[Types::HostInstance]
10615
- attr_accessor state: ("available" | "under-assessment" | "permanent-failure" | "released" | "released-permanent-failure" | "pending")
10648
+ attr_accessor state: ("available" | "under-assessment" | "permanent-failure" | "released" | "released-permanent-failure" | "pending" | "configuring")
10616
10649
  attr_accessor allocation_time: ::Time
10617
10650
  attr_accessor release_time: ::Time
10618
10651
  attr_accessor tags: ::Array[Types::Tag]
@@ -10624,6 +10657,17 @@ module Aws::EC2
10624
10657
  attr_accessor outpost_arn: ::String
10625
10658
  attr_accessor host_maintenance: ("on" | "off")
10626
10659
  attr_accessor asset_id: ::String
10660
+ attr_accessor cpu_options: Types::HostCpuOptions
10661
+ SENSITIVE: []
10662
+ end
10663
+
10664
+ class HostCpuOptions
10665
+ attr_accessor amd_sev_snp: ("enabled" | "disabled")
10666
+ SENSITIVE: []
10667
+ end
10668
+
10669
+ class HostCpuOptionsRequest
10670
+ attr_accessor amd_sev_snp: ("enabled" | "disabled")
10627
10671
  SENSITIVE: []
10628
10672
  end
10629
10673
 
@@ -13098,6 +13142,25 @@ module Aws::EC2
13098
13142
  SENSITIVE: []
13099
13143
  end
13100
13144
 
13145
+ class ModifyAccountVpcEncryptionControlRequest
13146
+ attr_accessor dry_run: bool
13147
+ attr_accessor mode: ("unmanaged" | "attempt-monitor" | "attempt-enforce")
13148
+ attr_accessor internet_gateway: ("enable" | "disable")
13149
+ attr_accessor egress_only_internet_gateway: ("enable" | "disable")
13150
+ attr_accessor nat_gateway: ("enable" | "disable")
13151
+ attr_accessor virtual_private_gateway: ("enable" | "disable")
13152
+ attr_accessor vpc_peering: ("enable" | "disable")
13153
+ attr_accessor lambda: ("enable" | "disable")
13154
+ attr_accessor vpc_lattice: ("enable" | "disable")
13155
+ attr_accessor elastic_file_system: ("enable" | "disable")
13156
+ SENSITIVE: []
13157
+ end
13158
+
13159
+ class ModifyAccountVpcEncryptionControlResult
13160
+ attr_accessor account_vpc_encryption_control: Types::AccountVpcEncryptionControl
13161
+ SENSITIVE: []
13162
+ end
13163
+
13101
13164
  class ModifyAddressAttributeRequest
13102
13165
  attr_accessor allocation_id: ::String
13103
13166
  attr_accessor domain_name: ::String
@@ -18730,6 +18793,7 @@ module Aws::EC2
18730
18793
  attr_accessor progress: ::Integer
18731
18794
  attr_accessor start_time: ::Time
18732
18795
  attr_accessor end_time: ::Time
18796
+ attr_accessor operator: Types::OperatorResponse
18733
18797
  SENSITIVE: []
18734
18798
  end
18735
18799
 
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: aws-sdk-ec2
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.627.0
4
+ version: 1.628.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Amazon Web Services