google-cloud-container-v1 0.39.0 → 0.41.0
Sign up to get free protection for your applications and to get access to all the features.
@@ -43,10 +43,25 @@ module Google
|
|
43
43
|
# @!attribute [rw] cgroup_mode
|
44
44
|
# @return [::Google::Cloud::Container::V1::LinuxNodeConfig::CgroupMode]
|
45
45
|
# cgroup_mode specifies the cgroup mode to be used on the node.
|
46
|
+
# @!attribute [rw] hugepages
|
47
|
+
# @return [::Google::Cloud::Container::V1::LinuxNodeConfig::HugepagesConfig]
|
48
|
+
# Optional. Amounts for 2M and 1G hugepages
|
46
49
|
class LinuxNodeConfig
|
47
50
|
include ::Google::Protobuf::MessageExts
|
48
51
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
49
52
|
|
53
|
+
# Hugepages amount in both 2m and 1g size
|
54
|
+
# @!attribute [rw] hugepage_size2m
|
55
|
+
# @return [::Integer]
|
56
|
+
# Optional. Amount of 2M hugepages
|
57
|
+
# @!attribute [rw] hugepage_size1g
|
58
|
+
# @return [::Integer]
|
59
|
+
# Optional. Amount of 1G hugepages
|
60
|
+
class HugepagesConfig
|
61
|
+
include ::Google::Protobuf::MessageExts
|
62
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
63
|
+
end
|
64
|
+
|
50
65
|
# @!attribute [rw] key
|
51
66
|
# @return [::String]
|
52
67
|
# @!attribute [rw] value
|
@@ -353,6 +368,9 @@ module Google
|
|
353
368
|
# @!attribute [rw] sole_tenant_config
|
354
369
|
# @return [::Google::Cloud::Container::V1::SoleTenantConfig]
|
355
370
|
# Parameters for node pools to be backed by shared sole tenant node groups.
|
371
|
+
# @!attribute [rw] containerd_config
|
372
|
+
# @return [::Google::Cloud::Container::V1::ContainerdConfig]
|
373
|
+
# Parameters for containerd customization.
|
356
374
|
# @!attribute [rw] resource_manager_tags
|
357
375
|
# @return [::Google::Cloud::Container::V1::ResourceManagerTags]
|
358
376
|
# A map of resource manager tag keys and values to be attached to the nodes.
|
@@ -362,6 +380,9 @@ module Google
|
|
362
380
|
# @!attribute [rw] secondary_boot_disks
|
363
381
|
# @return [::Array<::Google::Cloud::Container::V1::SecondaryBootDisk>]
|
364
382
|
# List of secondary boot disks attached to the nodes.
|
383
|
+
# @!attribute [rw] secondary_boot_disk_update_strategy
|
384
|
+
# @return [::Google::Cloud::Container::V1::SecondaryBootDiskUpdateStrategy]
|
385
|
+
# Secondary boot disk update strategy.
|
365
386
|
class NodeConfig
|
366
387
|
include ::Google::Protobuf::MessageExts
|
367
388
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -400,6 +421,9 @@ module Google
|
|
400
421
|
# The number of threads per physical core. To disable simultaneous
|
401
422
|
# multithreading (SMT) set this to 1. If unset, the maximum number of threads
|
402
423
|
# supported per core by the underlying processor is assumed.
|
424
|
+
# @!attribute [rw] enable_nested_virtualization
|
425
|
+
# @return [::Boolean]
|
426
|
+
# Whether or not to enable nested virtualization (defaults to false).
|
403
427
|
class AdvancedMachineFeatures
|
404
428
|
include ::Google::Protobuf::MessageExts
|
405
429
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -660,6 +684,59 @@ module Google
|
|
660
684
|
end
|
661
685
|
end
|
662
686
|
|
687
|
+
# ContainerdConfig contains configuration to customize containerd.
|
688
|
+
# @!attribute [rw] private_registry_access_config
|
689
|
+
# @return [::Google::Cloud::Container::V1::ContainerdConfig::PrivateRegistryAccessConfig]
|
690
|
+
# PrivateRegistryAccessConfig is used to configure access configuration
|
691
|
+
# for private container registries.
|
692
|
+
class ContainerdConfig
|
693
|
+
include ::Google::Protobuf::MessageExts
|
694
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
695
|
+
|
696
|
+
# PrivateRegistryAccessConfig contains access configuration for
|
697
|
+
# private container registries.
|
698
|
+
# @!attribute [rw] enabled
|
699
|
+
# @return [::Boolean]
|
700
|
+
# Private registry access is enabled.
|
701
|
+
# @!attribute [rw] certificate_authority_domain_config
|
702
|
+
# @return [::Array<::Google::Cloud::Container::V1::ContainerdConfig::PrivateRegistryAccessConfig::CertificateAuthorityDomainConfig>]
|
703
|
+
# Private registry access configuration.
|
704
|
+
class PrivateRegistryAccessConfig
|
705
|
+
include ::Google::Protobuf::MessageExts
|
706
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
707
|
+
|
708
|
+
# CertificateAuthorityDomainConfig configures one or more fully qualified
|
709
|
+
# domain names (FQDN) to a specific certificate.
|
710
|
+
# @!attribute [rw] fqdns
|
711
|
+
# @return [::Array<::String>]
|
712
|
+
# List of fully qualified domain names (FQDN).
|
713
|
+
# Specifying port is supported.
|
714
|
+
# Wilcards are NOT supported.
|
715
|
+
# Examples:
|
716
|
+
# - my.customdomain.com
|
717
|
+
# - 10.0.1.2:5000
|
718
|
+
# @!attribute [rw] gcp_secret_manager_certificate_config
|
719
|
+
# @return [::Google::Cloud::Container::V1::ContainerdConfig::PrivateRegistryAccessConfig::CertificateAuthorityDomainConfig::GCPSecretManagerCertificateConfig]
|
720
|
+
# Google Secret Manager (GCP) certificate configuration.
|
721
|
+
class CertificateAuthorityDomainConfig
|
722
|
+
include ::Google::Protobuf::MessageExts
|
723
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
724
|
+
|
725
|
+
# GCPSecretManagerCertificateConfig configures a secret from
|
726
|
+
# [Google Secret Manager](https://cloud.google.com/secret-manager).
|
727
|
+
# @!attribute [rw] secret_uri
|
728
|
+
# @return [::String]
|
729
|
+
# Secret URI, in the form
|
730
|
+
# "projects/$PROJECT_ID/secrets/$SECRET_NAME/versions/$VERSION".
|
731
|
+
# Version can be fixed (e.g. "2") or "latest"
|
732
|
+
class GCPSecretManagerCertificateConfig
|
733
|
+
include ::Google::Protobuf::MessageExts
|
734
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
735
|
+
end
|
736
|
+
end
|
737
|
+
end
|
738
|
+
end
|
739
|
+
|
663
740
|
# Kubernetes taint is composed of three fields: key, value, and effect. Effect
|
664
741
|
# can only be one of three types: NoSchedule, PreferNoSchedule or NoExecute.
|
665
742
|
#
|
@@ -1666,6 +1743,12 @@ module Google
|
|
1666
1743
|
# @!attribute [rw] enterprise_config
|
1667
1744
|
# @return [::Google::Cloud::Container::V1::EnterpriseConfig]
|
1668
1745
|
# GKE Enterprise Configuration.
|
1746
|
+
# @!attribute [r] satisfies_pzs
|
1747
|
+
# @return [::Boolean]
|
1748
|
+
# Output only. Reserved for future use.
|
1749
|
+
# @!attribute [r] satisfies_pzi
|
1750
|
+
# @return [::Boolean]
|
1751
|
+
# Output only. Reserved for future use.
|
1669
1752
|
class Cluster
|
1670
1753
|
include ::Google::Protobuf::MessageExts
|
1671
1754
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -1740,6 +1823,9 @@ module Google
|
|
1740
1823
|
|
1741
1824
|
# Applies Security Posture features on the cluster.
|
1742
1825
|
BASIC = 2
|
1826
|
+
|
1827
|
+
# Applies the Security Posture off cluster Enterprise level features.
|
1828
|
+
ENTERPRISE = 3
|
1743
1829
|
end
|
1744
1830
|
|
1745
1831
|
# VulnerabilityMode defines enablement mode for vulnerability scanning.
|
@@ -1771,6 +1857,11 @@ module Google
|
|
1771
1857
|
# @return [::Google::Cloud::Container::V1::ResourceManagerTags]
|
1772
1858
|
# Resource manager tag keys and values to be attached to the nodes
|
1773
1859
|
# for managing Compute Engine firewalls using Network Firewall Policies.
|
1860
|
+
# @!attribute [rw] node_kubelet_config
|
1861
|
+
# @return [::Google::Cloud::Container::V1::NodeKubeletConfig]
|
1862
|
+
# NodeKubeletConfig controls the defaults for autoprovisioned node-pools.
|
1863
|
+
#
|
1864
|
+
# Currently only `insecure_kubelet_readonly_port_enabled` can be set here.
|
1774
1865
|
class NodePoolAutoConfig
|
1775
1866
|
include ::Google::Protobuf::MessageExts
|
1776
1867
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -1792,6 +1883,14 @@ module Google
|
|
1792
1883
|
# @!attribute [rw] logging_config
|
1793
1884
|
# @return [::Google::Cloud::Container::V1::NodePoolLoggingConfig]
|
1794
1885
|
# Logging configuration for node pools.
|
1886
|
+
# @!attribute [rw] containerd_config
|
1887
|
+
# @return [::Google::Cloud::Container::V1::ContainerdConfig]
|
1888
|
+
# Parameters for containerd customization.
|
1889
|
+
# @!attribute [rw] node_kubelet_config
|
1890
|
+
# @return [::Google::Cloud::Container::V1::NodeKubeletConfig]
|
1891
|
+
# NodeKubeletConfig controls the defaults for new node-pools.
|
1892
|
+
#
|
1893
|
+
# Currently only `insecure_kubelet_readonly_port_enabled` can be set here.
|
1795
1894
|
class NodeConfigDefaults
|
1796
1895
|
include ::Google::Protobuf::MessageExts
|
1797
1896
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -1904,7 +2003,12 @@ module Google
|
|
1904
2003
|
# Cluster-level Vertical Pod Autoscaling configuration.
|
1905
2004
|
# @!attribute [rw] desired_private_cluster_config
|
1906
2005
|
# @return [::Google::Cloud::Container::V1::PrivateClusterConfig]
|
1907
|
-
# The desired private cluster configuration.
|
2006
|
+
# The desired private cluster configuration. master_global_access_config is
|
2007
|
+
# the only field that can be changed via this field.
|
2008
|
+
# See also
|
2009
|
+
# {::Google::Cloud::Container::V1::ClusterUpdate#desired_enable_private_endpoint ClusterUpdate.desired_enable_private_endpoint}
|
2010
|
+
# for modifying other fields within
|
2011
|
+
# {::Google::Cloud::Container::V1::PrivateClusterConfig PrivateClusterConfig}.
|
1908
2012
|
# @!attribute [rw] desired_intra_node_visibility_config
|
1909
2013
|
# @return [::Google::Cloud::Container::V1::IntraNodeVisibilityConfig]
|
1910
2014
|
# The desired config of Intra-node visibility.
|
@@ -2010,6 +2114,12 @@ module Google
|
|
2010
2114
|
# @!attribute [rw] desired_k8s_beta_apis
|
2011
2115
|
# @return [::Google::Cloud::Container::V1::K8sBetaAPIConfig]
|
2012
2116
|
# Desired Beta APIs to be enabled for cluster.
|
2117
|
+
# @!attribute [rw] desired_containerd_config
|
2118
|
+
# @return [::Google::Cloud::Container::V1::ContainerdConfig]
|
2119
|
+
# The desired containerd config for the cluster.
|
2120
|
+
# @!attribute [rw] desired_enable_multi_networking
|
2121
|
+
# @return [::Boolean]
|
2122
|
+
# Enable/Disable Multi-Networking for the cluster
|
2013
2123
|
# @!attribute [rw] desired_node_pool_auto_config_resource_manager_tags
|
2014
2124
|
# @return [::Google::Cloud::Container::V1::ResourceManagerTags]
|
2015
2125
|
# The desired resource manager tags that apply to all auto-provisioned node
|
@@ -2020,6 +2130,13 @@ module Google
|
|
2020
2130
|
# @!attribute [rw] desired_enable_cilium_clusterwide_network_policy
|
2021
2131
|
# @return [::Boolean]
|
2022
2132
|
# Enable/Disable Cilium Clusterwide Network Policy for the cluster.
|
2133
|
+
# @!attribute [rw] desired_node_kubelet_config
|
2134
|
+
# @return [::Google::Cloud::Container::V1::NodeKubeletConfig]
|
2135
|
+
# The desired node kubelet config for the cluster.
|
2136
|
+
# @!attribute [rw] desired_node_pool_auto_config_kubelet_config
|
2137
|
+
# @return [::Google::Cloud::Container::V1::NodeKubeletConfig]
|
2138
|
+
# The desired node kubelet config for all auto-provisioned node pools
|
2139
|
+
# in autopilot clusters and node auto-provisioning enabled clusters.
|
2023
2140
|
class ClusterUpdate
|
2024
2141
|
include ::Google::Protobuf::MessageExts
|
2025
2142
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -2516,6 +2633,11 @@ module Google
|
|
2516
2633
|
# @!attribute [rw] windows_node_config
|
2517
2634
|
# @return [::Google::Cloud::Container::V1::WindowsNodeConfig]
|
2518
2635
|
# Parameters that can be configured on Windows nodes.
|
2636
|
+
# @!attribute [rw] accelerators
|
2637
|
+
# @return [::Array<::Google::Cloud::Container::V1::AcceleratorConfig>]
|
2638
|
+
# A list of hardware accelerators to be attached to each node.
|
2639
|
+
# See https://cloud.google.com/compute/docs/gpus for more information about
|
2640
|
+
# support for GPUs.
|
2519
2641
|
# @!attribute [rw] machine_type
|
2520
2642
|
# @return [::String]
|
2521
2643
|
# Optional. The desired [Google Compute Engine machine
|
@@ -2539,6 +2661,11 @@ module Google
|
|
2539
2661
|
# Desired resource manager tag keys and values to be attached to the nodes
|
2540
2662
|
# for managing Compute Engine firewalls using Network Firewall Policies.
|
2541
2663
|
# Existing tags will be replaced with new values.
|
2664
|
+
# @!attribute [rw] containerd_config
|
2665
|
+
# @return [::Google::Cloud::Container::V1::ContainerdConfig]
|
2666
|
+
# The desired containerd config for nodes in the node pool.
|
2667
|
+
# Initiates an upgrade operation that recreates the nodes with the new
|
2668
|
+
# config.
|
2542
2669
|
# @!attribute [rw] queued_provisioning
|
2543
2670
|
# @return [::Google::Cloud::Container::V1::NodePool::QueuedProvisioning]
|
2544
2671
|
# Specifies the configuration of queued provisioning.
|
@@ -4197,6 +4324,9 @@ module Google
|
|
4197
4324
|
|
4198
4325
|
# GPUs are time-shared between containers.
|
4199
4326
|
TIME_SHARING = 1
|
4327
|
+
|
4328
|
+
# GPUs are shared between containers with NVIDIA MPS.
|
4329
|
+
MPS = 2
|
4200
4330
|
end
|
4201
4331
|
end
|
4202
4332
|
|
@@ -4414,6 +4544,7 @@ module Google
|
|
4414
4544
|
# @!attribute [rw] in_transit_encryption_config
|
4415
4545
|
# @return [::Google::Cloud::Container::V1::InTransitEncryptionConfig]
|
4416
4546
|
# Specify the details of in-transit encryption.
|
4547
|
+
# Now named inter-node transparent encryption.
|
4417
4548
|
# @!attribute [rw] enable_cilium_clusterwide_network_policy
|
4418
4549
|
# @return [::Boolean]
|
4419
4550
|
# Whether CiliumClusterwideNetworkPolicy is enabled on this cluster.
|
@@ -4712,6 +4843,9 @@ module Google
|
|
4712
4843
|
# @!attribute [rw] cluster_dns_domain
|
4713
4844
|
# @return [::String]
|
4714
4845
|
# cluster_dns_domain is the suffix used for all cluster service records.
|
4846
|
+
# @!attribute [rw] additive_vpc_scope_dns_domain
|
4847
|
+
# @return [::String]
|
4848
|
+
# Optional. The domain used in Additive VPC scope.
|
4715
4849
|
class DNSConfig
|
4716
4850
|
include ::Google::Protobuf::MessageExts
|
4717
4851
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -4798,10 +4932,39 @@ module Google
|
|
4798
4932
|
# @!attribute [rw] state
|
4799
4933
|
# @return [::Google::Cloud::Container::V1::DatabaseEncryption::State]
|
4800
4934
|
# The desired state of etcd encryption.
|
4935
|
+
# @!attribute [r] current_state
|
4936
|
+
# @return [::Google::Cloud::Container::V1::DatabaseEncryption::CurrentState]
|
4937
|
+
# Output only. The current state of etcd encryption.
|
4938
|
+
# @!attribute [r] decryption_keys
|
4939
|
+
# @return [::Array<::String>]
|
4940
|
+
# Output only. Keys in use by the cluster for decrypting
|
4941
|
+
# existing objects, in addition to the key in `key_name`.
|
4942
|
+
#
|
4943
|
+
# Each item is a CloudKMS key resource.
|
4944
|
+
# @!attribute [r] last_operation_errors
|
4945
|
+
# @return [::Array<::Google::Cloud::Container::V1::DatabaseEncryption::OperationError>]
|
4946
|
+
# Output only. Records errors seen during DatabaseEncryption update
|
4947
|
+
# operations.
|
4801
4948
|
class DatabaseEncryption
|
4802
4949
|
include ::Google::Protobuf::MessageExts
|
4803
4950
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
4804
4951
|
|
4952
|
+
# OperationError records errors seen from CloudKMS keys
|
4953
|
+
# encountered during updates to DatabaseEncryption configuration.
|
4954
|
+
# @!attribute [rw] key_name
|
4955
|
+
# @return [::String]
|
4956
|
+
# CloudKMS key resource that had the error.
|
4957
|
+
# @!attribute [rw] error_message
|
4958
|
+
# @return [::String]
|
4959
|
+
# Description of the error seen during the operation.
|
4960
|
+
# @!attribute [rw] timestamp
|
4961
|
+
# @return [::Google::Protobuf::Timestamp]
|
4962
|
+
# Time when the CloudKMS error was seen.
|
4963
|
+
class OperationError
|
4964
|
+
include ::Google::Protobuf::MessageExts
|
4965
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
4966
|
+
end
|
4967
|
+
|
4805
4968
|
# State of etcd encryption.
|
4806
4969
|
module State
|
4807
4970
|
# Should never be set
|
@@ -4814,6 +4977,33 @@ module Google
|
|
4814
4977
|
# unrelated to Compute Engine level full disk encryption.
|
4815
4978
|
DECRYPTED = 2
|
4816
4979
|
end
|
4980
|
+
|
4981
|
+
# Current State of etcd encryption.
|
4982
|
+
module CurrentState
|
4983
|
+
# Should never be set
|
4984
|
+
CURRENT_STATE_UNSPECIFIED = 0
|
4985
|
+
|
4986
|
+
# Secrets in etcd are encrypted.
|
4987
|
+
CURRENT_STATE_ENCRYPTED = 7
|
4988
|
+
|
4989
|
+
# Secrets in etcd are stored in plain text (at etcd level) - this is
|
4990
|
+
# unrelated to Compute Engine level full disk encryption.
|
4991
|
+
CURRENT_STATE_DECRYPTED = 2
|
4992
|
+
|
4993
|
+
# Encryption (or re-encryption with a different CloudKMS key)
|
4994
|
+
# of Secrets is in progress.
|
4995
|
+
CURRENT_STATE_ENCRYPTION_PENDING = 3
|
4996
|
+
|
4997
|
+
# Encryption (or re-encryption with a different CloudKMS key) of Secrets in
|
4998
|
+
# etcd encountered an error.
|
4999
|
+
CURRENT_STATE_ENCRYPTION_ERROR = 4
|
5000
|
+
|
5001
|
+
# De-crypting Secrets to plain text in etcd is in progress.
|
5002
|
+
CURRENT_STATE_DECRYPTION_PENDING = 5
|
5003
|
+
|
5004
|
+
# De-crypting Secrets to plain text in etcd encountered an error.
|
5005
|
+
CURRENT_STATE_DECRYPTION_ERROR = 6
|
5006
|
+
end
|
4817
5007
|
end
|
4818
5008
|
|
4819
5009
|
# ListUsableSubnetworksRequest requests the list of usable subnetworks
|
@@ -5347,6 +5537,12 @@ module Google
|
|
5347
5537
|
|
5348
5538
|
# Statefulset
|
5349
5539
|
STATEFULSET = 12
|
5540
|
+
|
5541
|
+
# CADVISOR
|
5542
|
+
CADVISOR = 13
|
5543
|
+
|
5544
|
+
# KUBELET
|
5545
|
+
KUBELET = 14
|
5350
5546
|
end
|
5351
5547
|
end
|
5352
5548
|
|
@@ -5504,6 +5700,13 @@ module Google
|
|
5504
5700
|
end
|
5505
5701
|
end
|
5506
5702
|
|
5703
|
+
# SecondaryBootDiskUpdateStrategy is a placeholder which will be extended
|
5704
|
+
# in the future to define different options for updating secondary boot disks.
|
5705
|
+
class SecondaryBootDiskUpdateStrategy
|
5706
|
+
include ::Google::Protobuf::MessageExts
|
5707
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
5708
|
+
end
|
5709
|
+
|
5507
5710
|
# PrivateIPv6GoogleAccess controls whether and how the pods can communicate
|
5508
5711
|
# with Google Services through gRPC over IPv6.
|
5509
5712
|
module PrivateIPv6GoogleAccess
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: google-cloud-container-v1
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.41.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Google LLC
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2024-
|
11
|
+
date: 2024-06-10 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: gapic-common
|