google-cloud-container-v1 0.39.0 → 0.41.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
@@ -43,10 +43,25 @@ module Google
43
43
  # @!attribute [rw] cgroup_mode
44
44
  # @return [::Google::Cloud::Container::V1::LinuxNodeConfig::CgroupMode]
45
45
  # cgroup_mode specifies the cgroup mode to be used on the node.
46
+ # @!attribute [rw] hugepages
47
+ # @return [::Google::Cloud::Container::V1::LinuxNodeConfig::HugepagesConfig]
48
+ # Optional. Amounts for 2M and 1G hugepages
46
49
  class LinuxNodeConfig
47
50
  include ::Google::Protobuf::MessageExts
48
51
  extend ::Google::Protobuf::MessageExts::ClassMethods
49
52
 
53
+ # Hugepages amount in both 2m and 1g size
54
+ # @!attribute [rw] hugepage_size2m
55
+ # @return [::Integer]
56
+ # Optional. Amount of 2M hugepages
57
+ # @!attribute [rw] hugepage_size1g
58
+ # @return [::Integer]
59
+ # Optional. Amount of 1G hugepages
60
+ class HugepagesConfig
61
+ include ::Google::Protobuf::MessageExts
62
+ extend ::Google::Protobuf::MessageExts::ClassMethods
63
+ end
64
+
50
65
  # @!attribute [rw] key
51
66
  # @return [::String]
52
67
  # @!attribute [rw] value
@@ -353,6 +368,9 @@ module Google
353
368
  # @!attribute [rw] sole_tenant_config
354
369
  # @return [::Google::Cloud::Container::V1::SoleTenantConfig]
355
370
  # Parameters for node pools to be backed by shared sole tenant node groups.
371
+ # @!attribute [rw] containerd_config
372
+ # @return [::Google::Cloud::Container::V1::ContainerdConfig]
373
+ # Parameters for containerd customization.
356
374
  # @!attribute [rw] resource_manager_tags
357
375
  # @return [::Google::Cloud::Container::V1::ResourceManagerTags]
358
376
  # A map of resource manager tag keys and values to be attached to the nodes.
@@ -362,6 +380,9 @@ module Google
362
380
  # @!attribute [rw] secondary_boot_disks
363
381
  # @return [::Array<::Google::Cloud::Container::V1::SecondaryBootDisk>]
364
382
  # List of secondary boot disks attached to the nodes.
383
+ # @!attribute [rw] secondary_boot_disk_update_strategy
384
+ # @return [::Google::Cloud::Container::V1::SecondaryBootDiskUpdateStrategy]
385
+ # Secondary boot disk update strategy.
365
386
  class NodeConfig
366
387
  include ::Google::Protobuf::MessageExts
367
388
  extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -400,6 +421,9 @@ module Google
400
421
  # The number of threads per physical core. To disable simultaneous
401
422
  # multithreading (SMT) set this to 1. If unset, the maximum number of threads
402
423
  # supported per core by the underlying processor is assumed.
424
+ # @!attribute [rw] enable_nested_virtualization
425
+ # @return [::Boolean]
426
+ # Whether or not to enable nested virtualization (defaults to false).
403
427
  class AdvancedMachineFeatures
404
428
  include ::Google::Protobuf::MessageExts
405
429
  extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -660,6 +684,59 @@ module Google
660
684
  end
661
685
  end
662
686
 
687
+ # ContainerdConfig contains configuration to customize containerd.
688
+ # @!attribute [rw] private_registry_access_config
689
+ # @return [::Google::Cloud::Container::V1::ContainerdConfig::PrivateRegistryAccessConfig]
690
+ # PrivateRegistryAccessConfig is used to configure access configuration
691
+ # for private container registries.
692
+ class ContainerdConfig
693
+ include ::Google::Protobuf::MessageExts
694
+ extend ::Google::Protobuf::MessageExts::ClassMethods
695
+
696
+ # PrivateRegistryAccessConfig contains access configuration for
697
+ # private container registries.
698
+ # @!attribute [rw] enabled
699
+ # @return [::Boolean]
700
+ # Private registry access is enabled.
701
+ # @!attribute [rw] certificate_authority_domain_config
702
+ # @return [::Array<::Google::Cloud::Container::V1::ContainerdConfig::PrivateRegistryAccessConfig::CertificateAuthorityDomainConfig>]
703
+ # Private registry access configuration.
704
+ class PrivateRegistryAccessConfig
705
+ include ::Google::Protobuf::MessageExts
706
+ extend ::Google::Protobuf::MessageExts::ClassMethods
707
+
708
+ # CertificateAuthorityDomainConfig configures one or more fully qualified
709
+ # domain names (FQDN) to a specific certificate.
710
+ # @!attribute [rw] fqdns
711
+ # @return [::Array<::String>]
712
+ # List of fully qualified domain names (FQDN).
713
+ # Specifying port is supported.
714
+ # Wilcards are NOT supported.
715
+ # Examples:
716
+ # - my.customdomain.com
717
+ # - 10.0.1.2:5000
718
+ # @!attribute [rw] gcp_secret_manager_certificate_config
719
+ # @return [::Google::Cloud::Container::V1::ContainerdConfig::PrivateRegistryAccessConfig::CertificateAuthorityDomainConfig::GCPSecretManagerCertificateConfig]
720
+ # Google Secret Manager (GCP) certificate configuration.
721
+ class CertificateAuthorityDomainConfig
722
+ include ::Google::Protobuf::MessageExts
723
+ extend ::Google::Protobuf::MessageExts::ClassMethods
724
+
725
+ # GCPSecretManagerCertificateConfig configures a secret from
726
+ # [Google Secret Manager](https://cloud.google.com/secret-manager).
727
+ # @!attribute [rw] secret_uri
728
+ # @return [::String]
729
+ # Secret URI, in the form
730
+ # "projects/$PROJECT_ID/secrets/$SECRET_NAME/versions/$VERSION".
731
+ # Version can be fixed (e.g. "2") or "latest"
732
+ class GCPSecretManagerCertificateConfig
733
+ include ::Google::Protobuf::MessageExts
734
+ extend ::Google::Protobuf::MessageExts::ClassMethods
735
+ end
736
+ end
737
+ end
738
+ end
739
+
663
740
  # Kubernetes taint is composed of three fields: key, value, and effect. Effect
664
741
  # can only be one of three types: NoSchedule, PreferNoSchedule or NoExecute.
665
742
  #
@@ -1666,6 +1743,12 @@ module Google
1666
1743
  # @!attribute [rw] enterprise_config
1667
1744
  # @return [::Google::Cloud::Container::V1::EnterpriseConfig]
1668
1745
  # GKE Enterprise Configuration.
1746
+ # @!attribute [r] satisfies_pzs
1747
+ # @return [::Boolean]
1748
+ # Output only. Reserved for future use.
1749
+ # @!attribute [r] satisfies_pzi
1750
+ # @return [::Boolean]
1751
+ # Output only. Reserved for future use.
1669
1752
  class Cluster
1670
1753
  include ::Google::Protobuf::MessageExts
1671
1754
  extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -1740,6 +1823,9 @@ module Google
1740
1823
 
1741
1824
  # Applies Security Posture features on the cluster.
1742
1825
  BASIC = 2
1826
+
1827
+ # Applies the Security Posture off cluster Enterprise level features.
1828
+ ENTERPRISE = 3
1743
1829
  end
1744
1830
 
1745
1831
  # VulnerabilityMode defines enablement mode for vulnerability scanning.
@@ -1771,6 +1857,11 @@ module Google
1771
1857
  # @return [::Google::Cloud::Container::V1::ResourceManagerTags]
1772
1858
  # Resource manager tag keys and values to be attached to the nodes
1773
1859
  # for managing Compute Engine firewalls using Network Firewall Policies.
1860
+ # @!attribute [rw] node_kubelet_config
1861
+ # @return [::Google::Cloud::Container::V1::NodeKubeletConfig]
1862
+ # NodeKubeletConfig controls the defaults for autoprovisioned node-pools.
1863
+ #
1864
+ # Currently only `insecure_kubelet_readonly_port_enabled` can be set here.
1774
1865
  class NodePoolAutoConfig
1775
1866
  include ::Google::Protobuf::MessageExts
1776
1867
  extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -1792,6 +1883,14 @@ module Google
1792
1883
  # @!attribute [rw] logging_config
1793
1884
  # @return [::Google::Cloud::Container::V1::NodePoolLoggingConfig]
1794
1885
  # Logging configuration for node pools.
1886
+ # @!attribute [rw] containerd_config
1887
+ # @return [::Google::Cloud::Container::V1::ContainerdConfig]
1888
+ # Parameters for containerd customization.
1889
+ # @!attribute [rw] node_kubelet_config
1890
+ # @return [::Google::Cloud::Container::V1::NodeKubeletConfig]
1891
+ # NodeKubeletConfig controls the defaults for new node-pools.
1892
+ #
1893
+ # Currently only `insecure_kubelet_readonly_port_enabled` can be set here.
1795
1894
  class NodeConfigDefaults
1796
1895
  include ::Google::Protobuf::MessageExts
1797
1896
  extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -1904,7 +2003,12 @@ module Google
1904
2003
  # Cluster-level Vertical Pod Autoscaling configuration.
1905
2004
  # @!attribute [rw] desired_private_cluster_config
1906
2005
  # @return [::Google::Cloud::Container::V1::PrivateClusterConfig]
1907
- # The desired private cluster configuration.
2006
+ # The desired private cluster configuration. master_global_access_config is
2007
+ # the only field that can be changed via this field.
2008
+ # See also
2009
+ # {::Google::Cloud::Container::V1::ClusterUpdate#desired_enable_private_endpoint ClusterUpdate.desired_enable_private_endpoint}
2010
+ # for modifying other fields within
2011
+ # {::Google::Cloud::Container::V1::PrivateClusterConfig PrivateClusterConfig}.
1908
2012
  # @!attribute [rw] desired_intra_node_visibility_config
1909
2013
  # @return [::Google::Cloud::Container::V1::IntraNodeVisibilityConfig]
1910
2014
  # The desired config of Intra-node visibility.
@@ -2010,6 +2114,12 @@ module Google
2010
2114
  # @!attribute [rw] desired_k8s_beta_apis
2011
2115
  # @return [::Google::Cloud::Container::V1::K8sBetaAPIConfig]
2012
2116
  # Desired Beta APIs to be enabled for cluster.
2117
+ # @!attribute [rw] desired_containerd_config
2118
+ # @return [::Google::Cloud::Container::V1::ContainerdConfig]
2119
+ # The desired containerd config for the cluster.
2120
+ # @!attribute [rw] desired_enable_multi_networking
2121
+ # @return [::Boolean]
2122
+ # Enable/Disable Multi-Networking for the cluster
2013
2123
  # @!attribute [rw] desired_node_pool_auto_config_resource_manager_tags
2014
2124
  # @return [::Google::Cloud::Container::V1::ResourceManagerTags]
2015
2125
  # The desired resource manager tags that apply to all auto-provisioned node
@@ -2020,6 +2130,13 @@ module Google
2020
2130
  # @!attribute [rw] desired_enable_cilium_clusterwide_network_policy
2021
2131
  # @return [::Boolean]
2022
2132
  # Enable/Disable Cilium Clusterwide Network Policy for the cluster.
2133
+ # @!attribute [rw] desired_node_kubelet_config
2134
+ # @return [::Google::Cloud::Container::V1::NodeKubeletConfig]
2135
+ # The desired node kubelet config for the cluster.
2136
+ # @!attribute [rw] desired_node_pool_auto_config_kubelet_config
2137
+ # @return [::Google::Cloud::Container::V1::NodeKubeletConfig]
2138
+ # The desired node kubelet config for all auto-provisioned node pools
2139
+ # in autopilot clusters and node auto-provisioning enabled clusters.
2023
2140
  class ClusterUpdate
2024
2141
  include ::Google::Protobuf::MessageExts
2025
2142
  extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -2516,6 +2633,11 @@ module Google
2516
2633
  # @!attribute [rw] windows_node_config
2517
2634
  # @return [::Google::Cloud::Container::V1::WindowsNodeConfig]
2518
2635
  # Parameters that can be configured on Windows nodes.
2636
+ # @!attribute [rw] accelerators
2637
+ # @return [::Array<::Google::Cloud::Container::V1::AcceleratorConfig>]
2638
+ # A list of hardware accelerators to be attached to each node.
2639
+ # See https://cloud.google.com/compute/docs/gpus for more information about
2640
+ # support for GPUs.
2519
2641
  # @!attribute [rw] machine_type
2520
2642
  # @return [::String]
2521
2643
  # Optional. The desired [Google Compute Engine machine
@@ -2539,6 +2661,11 @@ module Google
2539
2661
  # Desired resource manager tag keys and values to be attached to the nodes
2540
2662
  # for managing Compute Engine firewalls using Network Firewall Policies.
2541
2663
  # Existing tags will be replaced with new values.
2664
+ # @!attribute [rw] containerd_config
2665
+ # @return [::Google::Cloud::Container::V1::ContainerdConfig]
2666
+ # The desired containerd config for nodes in the node pool.
2667
+ # Initiates an upgrade operation that recreates the nodes with the new
2668
+ # config.
2542
2669
  # @!attribute [rw] queued_provisioning
2543
2670
  # @return [::Google::Cloud::Container::V1::NodePool::QueuedProvisioning]
2544
2671
  # Specifies the configuration of queued provisioning.
@@ -4197,6 +4324,9 @@ module Google
4197
4324
 
4198
4325
  # GPUs are time-shared between containers.
4199
4326
  TIME_SHARING = 1
4327
+
4328
+ # GPUs are shared between containers with NVIDIA MPS.
4329
+ MPS = 2
4200
4330
  end
4201
4331
  end
4202
4332
 
@@ -4414,6 +4544,7 @@ module Google
4414
4544
  # @!attribute [rw] in_transit_encryption_config
4415
4545
  # @return [::Google::Cloud::Container::V1::InTransitEncryptionConfig]
4416
4546
  # Specify the details of in-transit encryption.
4547
+ # Now named inter-node transparent encryption.
4417
4548
  # @!attribute [rw] enable_cilium_clusterwide_network_policy
4418
4549
  # @return [::Boolean]
4419
4550
  # Whether CiliumClusterwideNetworkPolicy is enabled on this cluster.
@@ -4712,6 +4843,9 @@ module Google
4712
4843
  # @!attribute [rw] cluster_dns_domain
4713
4844
  # @return [::String]
4714
4845
  # cluster_dns_domain is the suffix used for all cluster service records.
4846
+ # @!attribute [rw] additive_vpc_scope_dns_domain
4847
+ # @return [::String]
4848
+ # Optional. The domain used in Additive VPC scope.
4715
4849
  class DNSConfig
4716
4850
  include ::Google::Protobuf::MessageExts
4717
4851
  extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -4798,10 +4932,39 @@ module Google
4798
4932
  # @!attribute [rw] state
4799
4933
  # @return [::Google::Cloud::Container::V1::DatabaseEncryption::State]
4800
4934
  # The desired state of etcd encryption.
4935
+ # @!attribute [r] current_state
4936
+ # @return [::Google::Cloud::Container::V1::DatabaseEncryption::CurrentState]
4937
+ # Output only. The current state of etcd encryption.
4938
+ # @!attribute [r] decryption_keys
4939
+ # @return [::Array<::String>]
4940
+ # Output only. Keys in use by the cluster for decrypting
4941
+ # existing objects, in addition to the key in `key_name`.
4942
+ #
4943
+ # Each item is a CloudKMS key resource.
4944
+ # @!attribute [r] last_operation_errors
4945
+ # @return [::Array<::Google::Cloud::Container::V1::DatabaseEncryption::OperationError>]
4946
+ # Output only. Records errors seen during DatabaseEncryption update
4947
+ # operations.
4801
4948
  class DatabaseEncryption
4802
4949
  include ::Google::Protobuf::MessageExts
4803
4950
  extend ::Google::Protobuf::MessageExts::ClassMethods
4804
4951
 
4952
+ # OperationError records errors seen from CloudKMS keys
4953
+ # encountered during updates to DatabaseEncryption configuration.
4954
+ # @!attribute [rw] key_name
4955
+ # @return [::String]
4956
+ # CloudKMS key resource that had the error.
4957
+ # @!attribute [rw] error_message
4958
+ # @return [::String]
4959
+ # Description of the error seen during the operation.
4960
+ # @!attribute [rw] timestamp
4961
+ # @return [::Google::Protobuf::Timestamp]
4962
+ # Time when the CloudKMS error was seen.
4963
+ class OperationError
4964
+ include ::Google::Protobuf::MessageExts
4965
+ extend ::Google::Protobuf::MessageExts::ClassMethods
4966
+ end
4967
+
4805
4968
  # State of etcd encryption.
4806
4969
  module State
4807
4970
  # Should never be set
@@ -4814,6 +4977,33 @@ module Google
4814
4977
  # unrelated to Compute Engine level full disk encryption.
4815
4978
  DECRYPTED = 2
4816
4979
  end
4980
+
4981
+ # Current State of etcd encryption.
4982
+ module CurrentState
4983
+ # Should never be set
4984
+ CURRENT_STATE_UNSPECIFIED = 0
4985
+
4986
+ # Secrets in etcd are encrypted.
4987
+ CURRENT_STATE_ENCRYPTED = 7
4988
+
4989
+ # Secrets in etcd are stored in plain text (at etcd level) - this is
4990
+ # unrelated to Compute Engine level full disk encryption.
4991
+ CURRENT_STATE_DECRYPTED = 2
4992
+
4993
+ # Encryption (or re-encryption with a different CloudKMS key)
4994
+ # of Secrets is in progress.
4995
+ CURRENT_STATE_ENCRYPTION_PENDING = 3
4996
+
4997
+ # Encryption (or re-encryption with a different CloudKMS key) of Secrets in
4998
+ # etcd encountered an error.
4999
+ CURRENT_STATE_ENCRYPTION_ERROR = 4
5000
+
5001
+ # De-crypting Secrets to plain text in etcd is in progress.
5002
+ CURRENT_STATE_DECRYPTION_PENDING = 5
5003
+
5004
+ # De-crypting Secrets to plain text in etcd encountered an error.
5005
+ CURRENT_STATE_DECRYPTION_ERROR = 6
5006
+ end
4817
5007
  end
4818
5008
 
4819
5009
  # ListUsableSubnetworksRequest requests the list of usable subnetworks
@@ -5347,6 +5537,12 @@ module Google
5347
5537
 
5348
5538
  # Statefulset
5349
5539
  STATEFULSET = 12
5540
+
5541
+ # CADVISOR
5542
+ CADVISOR = 13
5543
+
5544
+ # KUBELET
5545
+ KUBELET = 14
5350
5546
  end
5351
5547
  end
5352
5548
 
@@ -5504,6 +5700,13 @@ module Google
5504
5700
  end
5505
5701
  end
5506
5702
 
5703
+ # SecondaryBootDiskUpdateStrategy is a placeholder which will be extended
5704
+ # in the future to define different options for updating secondary boot disks.
5705
+ class SecondaryBootDiskUpdateStrategy
5706
+ include ::Google::Protobuf::MessageExts
5707
+ extend ::Google::Protobuf::MessageExts::ClassMethods
5708
+ end
5709
+
5507
5710
  # PrivateIPv6GoogleAccess controls whether and how the pods can communicate
5508
5711
  # with Google Services through gRPC over IPv6.
5509
5712
  module PrivateIPv6GoogleAccess
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: google-cloud-container-v1
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.39.0
4
+ version: 0.41.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Google LLC
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2024-03-10 00:00:00.000000000 Z
11
+ date: 2024-06-10 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: gapic-common