google-cloud-container-v1beta1 0.51.1 → 0.52.0

data/proto_docs/google/container/v1beta1/cluster_service.rb

@@ -21,6 +21,20 @@ module Google
   module Cloud
     module Container
       module V1beta1
+        # CompleteControlPlaneUpgradeRequest sets the name of target cluster to
+        # complete upgrade.
+        # @!attribute [rw] name
+        #   @return [::String]
+        #     The name (project, location, cluster) of the cluster to complete upgrade.
+        #     Specified in the format `projects/*/locations/*/clusters/*`.
+        # @!attribute [rw] version
+        #   @return [::String]
+        #     API request version that initiates this operation.
+        class CompleteControlPlaneUpgradeRequest
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
         # Parameters that can be configured on Linux nodes.
         # @!attribute [rw] sysctls
         #   @return [::Google::Protobuf::Map{::String => ::String}]
@@ -41,7 +55,12 @@ module Google
         #     net.ipv4.tcp_rmem
         #     net.ipv4.tcp_wmem
         #     net.ipv4.tcp_tw_reuse
+        #     net.ipv4.tcp_mtu_probing
         #     net.ipv4.tcp_max_orphans
+        #     net.ipv4.tcp_max_tw_buckets
+        #     net.ipv4.tcp_syn_retries
+        #     net.ipv4.tcp_ecn
+        #     net.ipv4.tcp_congestion_control
         #     net.netfilter.nf_conntrack_max
         #     net.netfilter.nf_conntrack_buckets
         #     net.netfilter.nf_conntrack_tcp_timeout_close_wait
@@ -51,14 +70,23 @@ module Google
         #     kernel.shmmni
         #     kernel.shmmax
         #     kernel.shmall
+        #     kernel.perf_event_paranoid
+        #     kernel.sched_rt_runtime_us
+        #     kernel.softlockup_panic
+        #     kernel.yama.ptrace_scope
+        #     kernel.kptr_restrict
+        #     kernel.dmesg_restrict
+        #     kernel.sysrq
         #     fs.aio-max-nr
         #     fs.file-max
         #     fs.inotify.max_user_instances
         #     fs.inotify.max_user_watches
         #     fs.nr_open
         #     vm.dirty_background_ratio
+        #     vm.dirty_background_bytes
         #     vm.dirty_expire_centisecs
         #     vm.dirty_ratio
+        #     vm.dirty_bytes
         #     vm.dirty_writeback_centisecs
         #     vm.max_map_count
         #     vm.overcommit_memory
@@ -501,6 +529,24 @@ module Google
         #     If true, will prevent the memory.oom.group flag from being set for
         #     container cgroups in cgroups v2. This causes processes in the container to
         #     be OOM killed individually instead of as a group.
+        # @!attribute [rw] shutdown_grace_period_seconds
+        #   @return [::Integer]
+        #     Optional. shutdown_grace_period_seconds is the maximum allowed grace period
+        #     (in seconds) the total duration that the node should delay the shutdown
+        #     during a graceful shutdown. This is the total grace period for pod
+        #     termination for both regular and critical pods.
+        #     https://kubernetes.io/docs/concepts/cluster-administration/node-shutdown/
+        #     If set to 0, node will not enable the graceful node shutdown functionality.
+        #     This field is only valid for Spot VMs.
+        #     Allowed values: 0, 30, 120.
+        # @!attribute [rw] shutdown_grace_period_critical_pods_seconds
+        #   @return [::Integer]
+        #     Optional. shutdown_grace_period_critical_pod_seconds is the maximum allowed
+        #     grace period (in seconds) used to terminate critical pods during a node
+        #     shutdown. This value should be <= shutdown_grace_period_seconds, and is
+        #     only valid if shutdown_grace_period_seconds is set.
+        #     https://kubernetes.io/docs/concepts/cluster-administration/node-shutdown/
+        #     Range: [0, 120].
         class NodeKubeletConfig
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -932,6 +978,9 @@ module Google
         # @!attribute [rw] secondary_boot_disk_update_strategy
         #   @return [::Google::Cloud::Container::V1beta1::SecondaryBootDiskUpdateStrategy]
         #     Secondary boot disk update strategy.
+        # @!attribute [rw] gpu_direct_config
+        #   @return [::Google::Cloud::Container::V1beta1::GPUDirectConfig]
+        #     The configuration for GPU Direct
         # @!attribute [rw] max_run_duration
         #   @return [::Google::Protobuf::Duration]
         #     The maximum duration for the nodes to exist.
@@ -952,6 +1001,11 @@ module Google
         # @!attribute [rw] boot_disk
         #   @return [::Google::Cloud::Container::V1beta1::BootDisk]
         #     Boot disk configuration for the node pool.
+        # @!attribute [rw] consolidation_delay
+        #   @return [::Google::Protobuf::Duration]
+        #     Consolidation delay defines duration after which the Cluster Autoscaler can
+        #     scale down underutilized nodes. If not set, nodes are scaled down by
+        #     default behavior, i.e. according to the chosen autoscaling profile.
         class NodeConfig
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -1129,13 +1183,17 @@ module Google
         #     Output only. The utilization of the IPv4 range for the pod.
         #     The ratio is Usage/[Total number of IPs in the secondary range],
         #     Usage=numNodes*numZones*podIPsPerNode.
-        # @!attribute [r] subnetwork
+        # @!attribute [rw] subnetwork
         #   @return [::String]
-        #     Output only. The subnetwork path for the node pool.
+        #     Optional. The subnetwork name/path for the node pool.
         #     Format: projects/\\{project}/regions/\\{region}/subnetworks/\\{subnetwork}
-        #     If the cluster is associated with multiple subnetworks, the subnetwork for
-        #     the node pool is picked based on the IP utilization during node pool
-        #     creation and is immutable.
+        #     If the cluster is associated with multiple subnetworks, the subnetwork can
+        #     be either:
+        #     1. A user supplied subnetwork name/full path during node pool creation.
+        #        Example1: my-subnet
+        #        Example2: projects/gke-project/regions/us-central1/subnetworks/my-subnet
+        #     2. A subnetwork path picked based on the IP utilization during node pool
+        #        creation and is immutable.
         # @!attribute [r] network_tier_config
         #   @return [::Google::Cloud::Container::V1beta1::NetworkTierConfig]
         #     Output only. The network tier configuration for the node pool inherits from
@@ -1427,6 +1485,11 @@ module Google
         #   @return [::Google::Cloud::Container::V1beta1::ContainerdConfig::WritableCgroups]
         #     Optional. WritableCgroups defines writable cgroups configuration for the
         #     node pool.
+        # @!attribute [rw] registry_hosts
+        #   @return [::Array<::Google::Cloud::Container::V1beta1::ContainerdConfig::RegistryHostConfig>]
+        #     RegistryHostConfig configures containerd registry host configuration.
+        #     Each registry_hosts represents a hosts.toml file.
+        #     At most 25 registry_hosts are allowed.
         class ContainerdConfig
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -1482,6 +1545,128 @@ module Google
             include ::Google::Protobuf::MessageExts
             extend ::Google::Protobuf::MessageExts::ClassMethods
           end
+
+          # RegistryHostConfig configures the top-level structure for a single
+          # containerd registry server's configuration, which represents one hosts.toml
+          # file on the node. It will override the same fqdns in
+          # PrivateRegistryAccessConfig.
+          # @!attribute [rw] server
+          #   @return [::String]
+          #     Defines the host name of the registry server, which will be used to
+          #     create configuration file as /etc/containerd/hosts.d/<server>/hosts.toml.
+          #     It supports fully qualified domain names (FQDN) and IP addresses:
+          #     Specifying port is supported.
+          #     Wildcards are NOT supported.
+          #     Examples:
+          #     - my.customdomain.com
+          #     - 10.0.1.2:5000
+          # @!attribute [rw] hosts
+          #   @return [::Array<::Google::Cloud::Container::V1beta1::ContainerdConfig::RegistryHostConfig::HostConfig>]
+          #     HostConfig configures a list of host-specific configurations for the
+          #     server.
+          #     Each server can have at most 10 host configurations.
+          class RegistryHostConfig
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
+
+            # CertificateConfig configures certificate for the registry.
+            # @!attribute [rw] gcp_secret_manager_secret_uri
+            #   @return [::String]
+            #     The URI configures a secret from
+            #     [Secret Manager](https://cloud.google.com/secret-manager)
+            #     in the format
+            #     "projects/$PROJECT_ID/secrets/$SECRET_NAME/versions/$VERSION" for
+            #     global secret or
+            #     "projects/$PROJECT_ID/locations/$REGION/secrets/$SECRET_NAME/versions/$VERSION"
+            #     for regional secret. Version can be fixed (e.g. "2") or "latest"
+            class CertificateConfig
+              include ::Google::Protobuf::MessageExts
+              extend ::Google::Protobuf::MessageExts::ClassMethods
+            end
+
+            # CertificateConfigPair configures pairs of certificates, which is used for
+            # client certificate and key pairs under a registry.
+            # @!attribute [rw] cert
+            #   @return [::Google::Cloud::Container::V1beta1::ContainerdConfig::RegistryHostConfig::CertificateConfig]
+            #     Cert configures the client certificate.
+            # @!attribute [rw] key
+            #   @return [::Google::Cloud::Container::V1beta1::ContainerdConfig::RegistryHostConfig::CertificateConfig]
+            #     Key configures the client private key. Optional.
+            class CertificateConfigPair
+              include ::Google::Protobuf::MessageExts
+              extend ::Google::Protobuf::MessageExts::ClassMethods
+            end
+
+            # RegistryHeader configures headers for the registry.
+            # @!attribute [rw] key
+            #   @return [::String]
+            #     Key configures the header key.
+            # @!attribute [rw] value
+            #   @return [::Array<::String>]
+            #     Value configures the header value.
+            class RegistryHeader
+              include ::Google::Protobuf::MessageExts
+              extend ::Google::Protobuf::MessageExts::ClassMethods
+            end
+
+            # HostConfig configures the registry host under a given Server.
+            # @!attribute [rw] host
+            #   @return [::String]
+            #     Host configures the registry host/mirror.
+            #     It supports fully qualified domain names (FQDN) and IP addresses:
+            #     Specifying port is supported.
+            #     Wildcards are NOT supported.
+            #     Examples:
+            #     - my.customdomain.com
+            #     - 10.0.1.2:5000
+            # @!attribute [rw] capabilities
+            #   @return [::Array<::Google::Cloud::Container::V1beta1::ContainerdConfig::RegistryHostConfig::HostCapability>]
+            #     Capabilities represent the capabilities of the registry host,
+            #     specifying what operations a host is capable of performing.
+            #     If not set, containerd enables all capabilities by default.
+            # @!attribute [rw] override_path
+            #   @return [::Boolean]
+            #     OverridePath is used to indicate the host's API root endpoint is
+            #     defined in the URL path rather than by the API specification. This may
+            #     be used with non-compliant OCI registries which are missing the /v2
+            #     prefix.
+            #     If not set, containerd sets default false.
+            # @!attribute [rw] header
+            #   @return [::Array<::Google::Cloud::Container::V1beta1::ContainerdConfig::RegistryHostConfig::RegistryHeader>]
+            #     Header configures the registry host headers.
+            # @!attribute [rw] ca
+            #   @return [::Array<::Google::Cloud::Container::V1beta1::ContainerdConfig::RegistryHostConfig::CertificateConfig>]
+            #     CA configures the registry host certificate.
+            # @!attribute [rw] client
+            #   @return [::Array<::Google::Cloud::Container::V1beta1::ContainerdConfig::RegistryHostConfig::CertificateConfigPair>]
+            #     Client configures the registry host client certificate and key.
+            # @!attribute [rw] dial_timeout
+            #   @return [::Google::Protobuf::Duration]
+            #     Specifies the maximum duration allowed for a connection attempt to
+            #     complete. A shorter timeout helps reduce delays when falling back to
+            #     the original registry if the mirror is unreachable.
+            #     Maximum allowed value is 180s. If not set, containerd sets default 30s.
+            #     The value should be a decimal number of seconds with an `s` suffix.
+            class HostConfig
+              include ::Google::Protobuf::MessageExts
+              extend ::Google::Protobuf::MessageExts::ClassMethods
+            end
+
+            # HostCapability configures capabilities for the registry host.
+            module HostCapability
+              # UNKNOWN should never be set.
+              HOST_CAPABILITY_UNSPECIFIED = 0
+
+              # Pull represents the capability to fetch manifests and blobs by digest.
+              HOST_CAPABILITY_PULL = 1
+
+              # Resolve represents the capability to fetch manifests by name.
+              HOST_CAPABILITY_RESOLVE = 2
+
+              # Push represents the capability to push blobs and manifests.
+              HOST_CAPABILITY_PUSH = 3
+            end
+          end
         end
 
         # HostMaintenancePolicy contains the maintenance policy for the hosts on which
@@ -1765,6 +1950,12 @@ module Google
         # @!attribute [rw] lustre_csi_driver_config
         #   @return [::Google::Cloud::Container::V1beta1::LustreCsiDriverConfig]
         #     Configuration for the Lustre CSI driver.
+        # @!attribute [rw] pod_snapshot_config
+        #   @return [::Google::Cloud::Container::V1beta1::PodSnapshotConfig]
+        #     Configuration for the Pod Snapshot feature.
+        # @!attribute [rw] slice_controller_config
+        #   @return [::Google::Cloud::Container::V1beta1::SliceControllerConfig]
+        #     Optional. Configuration for the slice controller add-on.
         class AddonsConfig
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -1923,11 +2114,23 @@ module Google
         #     1. The GKE node version is older than 1.33.2-gke.4655000.
         #     2. You're connecting to a Lustre instance that has the
         #     'gke-support-enabled' flag.
+        #     Deprecated: This flag is no longer required as of GKE node version
+        #     1.33.2-gke.4655000, unless you are connecting to a Lustre instance
+        #     that has the `gke-support-enabled` flag.
         class LustreCsiDriverConfig
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
+        # Configuration for the Slice Controller.
+        # @!attribute [rw] enabled
+        #   @return [::Boolean]
+        #     Optional. Indicates whether Slice Controller is enabled in the cluster.
+        class SliceControllerConfig
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
         # Configuration options for the Ray Operator add-on.
         # @!attribute [rw] enabled
         #   @return [::Boolean]
@@ -2205,7 +2408,7 @@ module Google
         #     netmask.
         #
         #     Set to a
-        #     [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
+        #     [CIDR](https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
         #     notation (e.g. `10.96.0.0/14`) from the RFC-1918 private networks (e.g.
         #     `10.0.0.0/8`, `172.16.0.0/12`, `192.168.0.0/16`) to pick a specific range
         #     to use.
@@ -2221,7 +2424,7 @@ module Google
         #     netmask.
         #
         #     Set to a
-        #     [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
+        #     [CIDR](https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
         #     notation (e.g. `10.96.0.0/14`) from the RFC-1918 private networks (e.g.
         #     `10.0.0.0/8`, `172.16.0.0/12`, `192.168.0.0/16`) to pick a specific range
         #     to use.
@@ -2238,7 +2441,7 @@ module Google
         #     netmask.
         #
         #     Set to a
-        #     [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
+        #     [CIDR](https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
         #     notation (e.g. `10.96.0.0/14`) from the RFC-1918 private networks (e.g.
         #     `10.0.0.0/8`, `172.16.0.0/12`, `192.168.0.0/16`) to pick a specific range
         #     to use.
@@ -2270,7 +2473,7 @@ module Google
         #     netmask.
         #
         #     Set to a
-        #     [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
+        #     [CIDR](https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
         #     notation (e.g. `10.96.0.0/14`) from the RFC-1918 private networks (e.g.
         #     `10.0.0.0/8`, `172.16.0.0/12`, `192.168.0.0/16`) to pick a specific range
         #     to use.
@@ -2547,7 +2750,7 @@ module Google
         # @!attribute [rw] cluster_ipv4_cidr
         #   @return [::String]
         #     The IP address range of the container pods in this cluster, in
-        #     [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
+        #     [CIDR](https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
         #     notation (e.g. `10.96.0.0/14`). Leave blank to have
         #     one automatically chosen or specify a `/14` block in `10.0.0.0/8`.
         # @!attribute [rw] addons_config
@@ -2751,6 +2954,15 @@ module Google
         # @!attribute [r] current_master_version
         #   @return [::String]
         #     Output only. The current software version of the master endpoint.
+        # @!attribute [r] current_emulated_version
+        #   @return [::String]
+        #     Output only. The current emulated version of the master endpoint.
+        #     The version is in minor version format, e.g. 1.30.
+        #     No value or empty string means the cluster has no emulated version.
+        # @!attribute [rw] rollback_safe_upgrade
+        #   @return [::Google::Cloud::Container::V1beta1::RollbackSafeUpgrade]
+        #     The rollback safe upgrade information of the cluster.
+        #     This field is used when user manually triggers a rollback safe upgrade.
         # @!attribute [r] current_node_version
         #   @deprecated This field is deprecated and may be removed in the next major version update.
         #   @return [::String]
@@ -2782,7 +2994,7 @@ module Google
         #   @return [::String]
         #     Output only. The IP address range of the Kubernetes services in
         #     this cluster, in
-        #     [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
+        #     [CIDR](https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
         #     notation (e.g. `1.2.3.4/29`). Service addresses are
         #     typically put in the last `/16` from the container CIDR.
         # @!attribute [r] instance_group_urls
@@ -2816,7 +3028,7 @@ module Google
         #   @deprecated This field is deprecated and may be removed in the next major version update.
         #   @return [::String]
         #     Output only. The IP address range of the Cloud TPUs in this cluster, in
-        #     [CIDR](http://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
+        #     [CIDR](https://en.wikipedia.org/wiki/Classless_Inter-Domain_Routing)
         #     notation (e.g. `1.2.3.4/29`).
         #     This field is deprecated due to the deprecation of 2VM TPU. The end of life
         #     date for 2VM TPU is 2025-04-25.
@@ -2907,6 +3119,9 @@ module Google
         # @!attribute [rw] secret_sync_config
         #   @return [::Google::Cloud::Container::V1beta1::SecretSyncConfig]
         #     Configuration for sync Secret Manager secrets as k8s secrets.
+        # @!attribute [rw] managed_opentelemetry_config
+        #   @return [::Google::Cloud::Container::V1beta1::ManagedOpenTelemetryConfig]
+        #     Configuration for Managed OpenTelemetry pipeline.
         class Cluster
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -3001,6 +3216,10 @@ module Google
         #   @return [::String]
         #     The Cloud KMS cryptoKey to use for Confidential Hyperdisk on the control
         #     plane nodes.
+        # @!attribute [r] control_plane_disk_encryption_key_versions
+        #   @return [::Array<::String>]
+        #     Output only. All of the versions of the Cloud KMS cryptoKey that are used
+        #     by Confidential Hyperdisks on the control plane nodes.
         # @!attribute [rw] gkeops_etcd_backup_encryption_key
         #   @return [::String]
         #     Resource path of the Cloud KMS cryptoKey to use for encryption of internal
@@ -3604,6 +3823,15 @@ module Google
         # @!attribute [rw] desired_secret_sync_config
         #   @return [::Google::Cloud::Container::V1beta1::SecretSyncConfig]
         #     Configuration for sync Secret Manager secrets as k8s secrets.
+        # @!attribute [rw] desired_privileged_admission_config
+        #   @return [::Google::Cloud::Container::V1beta1::PrivilegedAdmissionConfig]
+        #     The desired privileged admission config for the cluster.
+        # @!attribute [rw] desired_rollback_safe_upgrade
+        #   @return [::Google::Cloud::Container::V1beta1::RollbackSafeUpgrade]
+        #     The desired rollback safe upgrade configuration.
+        # @!attribute [rw] desired_managed_opentelemetry_config
+        #   @return [::Google::Cloud::Container::V1beta1::ManagedOpenTelemetryConfig]
+        #     The desired managed open telemetry configuration.
         class ClusterUpdate
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -3636,9 +3864,31 @@ module Google
         #     pod IPs.
         #     Example1: gke-pod-range1
         #     Example2: gke-pod-range1,gke-pod-range2
+        # @!attribute [rw] status
+        #   @return [::Google::Cloud::Container::V1beta1::AdditionalIPRangesConfig::Status]
+        #     Draining status of the additional subnet.
         class AdditionalIPRangesConfig
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
+
+          # Additional subnet with DRAINING status will not be selected during new node
+          # pool creation. To undrain the draining status, update the cluster to set
+          # the sunbet to ACTIVE status. To remove the additional subnet, use the
+          # update cluster API to remove the subnet from the
+          # desired_additional_ip_ranges list. IP ranges can be removed regardless of
+          # its status, as long as no node pools are using them.
+          module Status
+            # Not set, same as ACTIVE.
+            STATUS_UNSPECIFIED = 0
+
+            # ACTIVE status indicates that the subnet is available for new node pool
+            # creation.
+            ACTIVE = 1
+
+            # DRAINING status indicates that the subnet is not used for new node pool
+            # creation.
+            DRAINING = 2
+          end
         end
 
         # DesiredAdditionalIPRangesConfig is a wrapper used for cluster update
@@ -4218,6 +4468,14 @@ module Google
         #     The desired boot disk config for nodes in the node pool.
         #     Initiates an upgrade operation that migrates the nodes in the
         #     node pool to the specified boot disk config.
+        # @!attribute [rw] node_drain_config
+        #   @return [::Google::Cloud::Container::V1beta1::NodePool::NodeDrainConfig]
+        #     The desired node drain configuration for nodes in the node pool.
+        # @!attribute [rw] consolidation_delay
+        #   @return [::Google::Protobuf::Duration]
+        #     Consolidation delay defines duration after which the Cluster Autoscaler can
+        #     scale down underutilized nodes. If not set, nodes are scaled down by
+        #     default behavior, i.e. according to the chosen autoscaling profile.
         class UpdateNodePoolRequest
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -5075,6 +5333,9 @@ module Google
         # @!attribute [rw] best_effort_provisioning
         #   @return [::Google::Cloud::Container::V1beta1::BestEffortProvisioning]
         #     Enable best effort provisioning for nodes
+        # @!attribute [rw] node_drain_config
+        #   @return [::Google::Cloud::Container::V1beta1::NodePool::NodeDrainConfig]
+        #     Specifies the node drain configuration for this node pool.
         class NodePool
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -5251,6 +5512,16 @@ module Google
             extend ::Google::Protobuf::MessageExts::ClassMethods
           end
 
+          # NodeDrainConfig contains the node drain related configurations for this
+          # nodepool.
+          # @!attribute [rw] respect_pdb_during_node_pool_deletion
+          #   @return [::Boolean]
+          #     Whether to respect PDB during node pool deletion.
+          class NodeDrainConfig
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
+          end
+
           # The current status of the node pool instance.
           module Status
             # Not set.
@@ -5639,6 +5910,10 @@ module Google
         # @!attribute [rw] default_compute_class_config
         #   @return [::Google::Cloud::Container::V1beta1::DefaultComputeClassConfig]
         #     Default compute class is a configuration for default compute class.
+        # @!attribute [rw] autopilot_general_profile
+        #   @return [::Google::Cloud::Container::V1beta1::ClusterAutoscaling::AutopilotGeneralProfile]
+        #     Autopilot general profile for the cluster, which defines the
+        #     configuration for the cluster.
         class ClusterAutoscaling
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -5654,6 +5929,15 @@ module Google
             # Use default (balanced) autoscaling configuration.
             BALANCED = 2
           end
+
+          # Defines possible options for Autopilot general profile.
+          module AutopilotGeneralProfile
+            # Use default configuration.
+            AUTOPILOT_GENERAL_PROFILE_UNSPECIFIED = 0
+
+            # Avoid extra IP consumption.
+            NO_PERFORMANCE = 1
+          end
         end
 
         # AutoprovisioningNodePoolDefaults contains defaults for a node pool created
@@ -6836,6 +7120,24 @@ module Google
           extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
+        # GPUDirectConfig specifies the GPU direct strategy on the node pool.
+        # @!attribute [rw] gpu_direct_strategy
+        #   @return [::Google::Cloud::Container::V1beta1::GPUDirectConfig::GPUDirectStrategy]
+        #     The type of GPU direct strategy to enable on the node pool.
+        class GPUDirectConfig
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+
+          # Option for GPU direct Strategies
+          module GPUDirectStrategy
+            # Default value. No GPU Direct strategy is enabled on the node.
+            GPU_DIRECT_STRATEGY_UNSPECIFIED = 0
+
+            # GPUDirect-RDMA on A3 Ultra, and A4 machine types
+            RDMA = 2
+          end
+        end
+
         # GetOpenIDConfigRequest gets the OIDC discovery document for the
         # cluster. See the OpenID Connect Discovery 1.0 specification for details.
         # @!attribute [rw] parent
@@ -7067,11 +7369,42 @@ module Google
         end
 
         # Master is the configuration for components on master.
+        # @!attribute [r] compatibility_status
+        #   @return [::Google::Cloud::Container::V1beta1::CompatibilityStatus]
+        #     Output only. The compatibility status of the control plane.
+        #     It should be empty if the cluster does not have emulated version.
         class Master
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
         end
 
+        # CompatibilityStatus is the status regarding the control plane's
+        # compatibility.
+        # @!attribute [r] downgradable_version
+        #   @return [::String]
+        #     Output only. The GKE version that the cluster can be safely downgraded to
+        #     if the cluster is emulating the previous minor version. It is usually the
+        #     cluster's previous version before a minor version upgrade.
+        # @!attribute [r] emulated_version_time
+        #   @return [::Google::Protobuf::Timestamp]
+        #     Output only. Last time the control plane became available after a minor
+        #     version binary upgrade with emulated version set. It indicates the last
+        #     time the cluster entered the rollback safe mode.
+        class CompatibilityStatus
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
+        # RollbackSafeUpgrade is the configuration for the rollback safe upgrade.
+        # @!attribute [rw] control_plane_soak_duration
+        #   @return [::Google::Protobuf::Duration]
+        #     A user-defined period for the cluster remains in the rollbackable state.
+        #     ex: \\{seconds: 21600}.
+        class RollbackSafeUpgrade
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
         # AutopilotConversionStatus represents conversion status.
         # @!attribute [r] state
         #   @return [::Google::Cloud::Container::V1beta1::AutopilotConversionStatus::State]
@@ -7306,6 +7639,10 @@ module Google
         # @!attribute [rw] event_type
         #   @return [::Google::Cloud::Container::V1beta1::UpgradeInfoEvent::EventType]
         #     The type of the event.
+        # @!attribute [rw] disruption_event
+        #   @return [::Google::Cloud::Container::V1beta1::DisruptionEvent]
+        #     The information about the disruption event. This field is only populated
+        #     when event_type is DISRUPTION_EVENT.
         class UpgradeInfoEvent
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -7344,6 +7681,59 @@ module Google
 
             # UPGRADE_LIFECYCLE indicates the event is about the upgrade lifecycle.
             UPGRADE_LIFECYCLE = 3
+
+            # DISRUPTION_EVENT indicates the event is about the disruption.
+            DISRUPTION_EVENT = 4
+          end
+        end
+
+        # DisruptionEvent is a notification sent to customers about the disruption
+        # event of a resource.
+        # @!attribute [rw] disruption_type
+        #   @return [::Google::Cloud::Container::V1beta1::DisruptionEvent::DisruptionType]
+        #     The type of the disruption event.
+        # @!attribute [rw] pdb_blocked_node
+        #   @return [::String]
+        #     The node whose drain is blocked by PDB. This field is set for both
+        #     POD_PDB_VIOLATION and POD_NOT_ENOUGH_PDB event.
+        # @!attribute [rw] pdb_blocked_pod
+        #   @return [::Array<::Google::Cloud::Container::V1beta1::DisruptionEvent::PdbBlockedPod>]
+        #     The pods whose evictions are blocked by PDB. This field is set for
+        #     both POD_PDB_VIOLATION and POD_NOT_ENOUGH_PDB event.
+        # @!attribute [rw] pdb_violation_timeout
+        #   @return [::Google::Protobuf::Duration]
+        #     The timeout in seconds for which the node drain is blocked by PDB.
+        #     After this timeout, pods are forcefully evicted.
+        #     This field is only populated when event_type is
+        #     POD_PDB_VIOLATION.
+        class DisruptionEvent
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+
+          # The namespace/name of the pod whose eviction is blocked by PDB.
+          # @!attribute [rw] namespace
+          #   @return [::String]
+          #     The namespace of the pod.
+          # @!attribute [rw] name
+          #   @return [::String]
+          #     The name of the pod.
+          class PdbBlockedPod
+            include ::Google::Protobuf::MessageExts
+            extend ::Google::Protobuf::MessageExts::ClassMethods
+          end
+
+          # The type of the disruption event.
+          module DisruptionType
+            # DISRUPTION_TYPE_UNSPECIFIED indicates the disruption type is unspecified.
+            DISRUPTION_TYPE_UNSPECIFIED = 0
+
+            # POD_NOT_ENOUGH_PDB indicates there are still running pods
+            # on the node during node drain because their evictions are blocked by PDB.
+            POD_NOT_ENOUGH_PDB = 1
+
+            # POD_PDB_VIOLATION indicates that there are force pod
+            # evictions during node drain which violate the PDB.
+            POD_PDB_VIOLATION = 2
           end
         end
 
@@ -7940,6 +8330,9 @@ module Google
         # @!attribute [rw] end_of_extended_support_timestamp
         #   @return [::String]
         #     The cluster's current minor version's end of extended support timestamp.
+        # @!attribute [rw] rollback_safe_upgrade_status
+        #   @return [::Google::Cloud::Container::V1beta1::RollbackSafeUpgradeStatus]
+        #     The cluster's rollback-safe upgrade status.
         class ClusterUpgradeInfo
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -7991,6 +8384,32 @@ module Google
           end
         end
 
+        # RollbackSafeUpgradeStatus contains the rollback-safe upgrade status of a
+        # cluster.
+        # @!attribute [rw] mode
+        #   @return [::Google::Cloud::Container::V1beta1::RollbackSafeUpgradeStatus::Mode]
+        #     The mode of the rollback-safe upgrade.
+        # @!attribute [rw] control_plane_upgrade_rollback_end_time
+        #   @return [::Google::Protobuf::Timestamp]
+        #     The rollback-safe mode expiration time.
+        # @!attribute [rw] previous_version
+        #   @return [::String]
+        #     The GKE version that the cluster previously used before step-one upgrade.
+        class RollbackSafeUpgradeStatus
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+
+          # Mode indicates the mode of the rollback-safe upgrade.
+          module Mode
+            # MODE_UNSPECIFIED means it's in regular upgrade mode.
+            MODE_UNSPECIFIED = 0
+
+            # KCP_MINOR_UPGRADE_ROLLBACK_SAFE_MODE means it's in rollback-safe mode
+            # after a KCP minor version step-one upgrade.
+            KCP_MINOR_UPGRADE_ROLLBACK_SAFE_MODE = 1
+          end
+        end
+
         # UpgradeDetails contains detailed information of each individual upgrade
         # operation.
         # @!attribute [r] state
@@ -8011,6 +8430,12 @@ module Google
         # @!attribute [rw] start_type
         #   @return [::Google::Cloud::Container::V1beta1::UpgradeDetails::StartType]
         #     The start type of the upgrade.
+        # @!attribute [rw] initial_emulated_version
+        #   @return [::String]
+        #     The emulated version before the upgrade.
+        # @!attribute [rw] target_emulated_version
+        #   @return [::String]
+        #     The emulated version after the upgrade.
         class UpgradeDetails
           include ::Google::Protobuf::MessageExts
           extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -8205,6 +8630,38 @@ module Google
           end
         end
 
+        # ManagedOpenTelemetryConfig is the configuration for the GKE Managed
+        # OpenTelemetry pipeline.
+        # @!attribute [rw] scope
+        #   @return [::Google::Cloud::Container::V1beta1::ManagedOpenTelemetryConfig::Scope]
+        #     Scope of the Managed OpenTelemetry pipeline.
+        class ManagedOpenTelemetryConfig
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+
+          # Scope is the scope of the Managed OpenTelemetry pipeline.
+          module Scope
+            # SCOPE_UNSPECIFIED is when the scope is not set.
+            SCOPE_UNSPECIFIED = 0
+
+            # NONE is used to disable the Managed OpenTelemetry pipeline.
+            NONE = 1
+
+            # COLLECTION_AND_INSTRUMENTATION_COMPONENTS is used to enable the Managed
+            # OpenTelemetry pipeline for collection and instrumentation components.
+            COLLECTION_AND_INSTRUMENTATION_COMPONENTS = 2
+          end
+        end
+
+        # PodSnapshotConfig is the configuration for GKE Pod Snapshots feature.
+        # @!attribute [rw] enabled
+        #   @return [::Boolean]
+        #     Whether or not the Pod Snapshots feature is enabled.
+        class PodSnapshotConfig
+          include ::Google::Protobuf::MessageExts
+          extend ::Google::Protobuf::MessageExts::ClassMethods
+        end
+
         # PrivateIPv6GoogleAccess controls whether and how the pods can communicate
         # with Google Services through gRPC over IPv6.
         module PrivateIPv6GoogleAccess
@@ -8246,6 +8703,11 @@ module Google
           # SURGE is the traditional way of upgrading a node pool.
           # max_surge and max_unavailable determines the level of upgrade parallelism.
           SURGE = 3
+
+          # SHORT_LIVED is the dedicated upgrade strategy for
+          # QueuedProvisioning and flex start nodepools scaled up only by enqueueing to
+          # the Dynamic Workload Scheduler (DWS).
+          SHORT_LIVED = 5
         end
 
         # The datapath provider selects the implementation of the Kubernetes networking